kernel-image-2.4.27-i386 (2.4.27-10sarge6) oldstable-security; urgency=high

  * Build against kernel-tree-2.4.27-10sarge6:
    * 239_mincore-hang.diff
      [SECURITY] Fix a potential deadlock in mincore
      See CVE-2006-4814
    * [ERRATA] 240_smbfs-honor-mount-opts-2.diff
      Fix some regressions with respect to file types (e.g., symlinks)
      introduced by the fix for CVE-2006-5871 in 2.4.27-10sarge5
    * 241_bluetooth-capi-size-checks.diff
      [SECURITY] Add additional length checks to avoid potential remote
      DoS attacks in the handling of CAPI messages in the bluetooth driver
      See CVE-2006-6106
    * 242_ext3-fsfuzz.diff
      [SECURITY] Fix a DoS vulnerability that can be triggered by a local
      user with the ability to mount a corrupted ext3 filesystem
      See CVE-2006-6053
    * 243_ipv6_fl_socklist-no-share.diff
      [SECURITY] Fix local DoS vulnerability caused by inadvertently sharing
      ipv6_fl_socklist between the listening socket and the socket created
      for connection.
      See CVE-2007-1592
    * 244_bluetooth-l2cap-hci-info-leaks.diff
      245_bluetooth-l2cap-hci-info-leaks-2.diff
      [SECURITY] Fix information leaks in setsockopt() implementations
      See CVE-2007-1353
    * 246_dn_fib-out-of-bounds.diff
      266_ipv4-fib_props-out-of-bounds.diff
      267_ipv4-fib_props-out-of-bounds-2.diff
      [SECURITY] Fix out of bounds condition in dn_fib_props[]
      See CVE-2007-2172
    * 247_reset-pdeathsig-on-suid.diff
      [SECURITY] Fix potential privilege escalation caused by improper
      clearing of the child process' pdeath signal.
      Thanks to Marcel Holtmann for the patch.
      See CVE-2007-3848
    * 248_random-reseed-sizeof-fix.diff
      [SECURITY] Fix a bug in the random driver reseeding code that reduces
      entropy by reseeding a smaller buffer size than expected
      See CVE-2007-4311
    * 249_openpromfs-signedness-bug.diff
      250_openpromfs-checks-1.diff
      251_openpromfs-checks-2.diff
      252_openpromfs-checks-3.diff
      [SECURITY] Fix a number of data checks in openprom code
      See CVE-2004-2731
    * 253_coredump-only-to-same-uid.diff
      [SECURITY] Fix an issue where core dumping over a file that
      already exists retains the ownership of the original file
      See CVE-2007-6206
    * 254_cramfs-check-block-length.diff
      [SECURITY] Add a sanity check of the block length in cramfs_readpage to
      avoid a potential oops condition
      See CVE-2006-5823
    * 255_pppoe-socket-release-mem-leak.diff
      [SECURITY] fix unpriveleged memory leak when a PPPoE socket is released
      after connect but before PPPIOCGCHAN ioctl is called upon it
      See CVE-2007-2525
    * 256_i4l-isdn_ioctl-mem-overrun.diff
      [SECURITY] Fix potential isdn ioctl memory overrun
      See CVE-2007-6151
    * 257_isdn-net-overflow.diff
      [SECURITY] Fix potential overflows in the ISDN subsystem
      See CVE-2007-6063
    * 258_ext2_readdir-f_pos-fix.diff,
      259_ext2_readdir-infinite-loop.diff,
      260_ext2-skip-pages-past-num-blocks.diff
      [SECURITY] Add some sanity checking for a corrupted i_size in
      ext2_find_entry()
      See CVE-2006-6054
    * 261_listxattr-mem-corruption.diff
      [SECURITY] Fix userspace corruption vulnerability caused by
      incorrectly promoted return values in bad_inode_ops
      This patches changes the kernel ABI.
      See CVE-2006-5753
    * 262_aacraid-ioctl-perm-check.diff
      [SECURITY] Require admin capabilities to issue ioctls to aacraid devices
      See CVE-2007-4308
    * 263_usb-pwc-disconnect-block.diff
      [SECURITY] Fix issue with unplugging webcams that use the pwc driver.
      If userspace still has the device open it can result, the driver would
      wait for the device to close, blocking the USB subsystem.
      See CVE-2007-5093
    * 264_mmap-VM_DONTEXPAND.diff
      [SECURITY] Add VM_DONTEXPAND to vm_flags in drivers that register
      a fault handler but do not bounds check the offset argument
      See CVE-2008-0007
    * 265_powerpc-chrp-null-deref.diff
      [SECURITY][powerpc] Fix NULL pointer dereference if get_property
      fails on the subarchitecture
      See CVE-2007-6694
  * ABI changing update, increment ABI number to 4. If you don't understand
    what this means, see http://wiki.debian.org/DebianKernelABIChanges

 -- dann frazier <dannf@debian.org>  Sun, 17 Feb 2008 16:49:02 -0700

kernel-image-2.4.27-i386 (2.4.27-10sarge5) stable-security; urgency=high

  * Build against kernel-tree-2.4.27-10sarge5:
    * 233_ia64-sparc-cross-region-mappings.diff
      [SECURITY] Prevent cross-region mappings on ia64 and sparc which
      could be used in a local DoS attack (system crash)
      See CVE-2006-4538
    * 234_atm-clip-freed-skb-deref.diff
      [SECURITY] Avoid dereferencing an already freed skb, preventing a
      potential remote DoS (system crash) vector
      See CVE-2006-4997
    * 235_ppc-alignment-exception-table-check.diff
      [SECURITY][ppc] Avoid potential DoS which can be triggered by some
      futex ops
      See CVE-2006-5649
    * 236_s390-uaccess-memleak.diff
      [SECURITY][s390] Fix memory leak in copy_from_user by clearing the
      remaining bytes of the kernel buffer after a fault on the userspace
      address in copy_from_user()
      See CVE-2006-5174
    * 237_smbfs-honor-mount-opts.diff
      Honor uid, gid and mode mount options for smbfs even when unix extensions
      are enabled (closes: #310982)
      See CVE-2006-5871
    * 238_ppc-hid0-dos.diff
      [SECURITY] [ppc] Fix local DoS by clearing HID0 attention enable on
      PPC970 at boot time
      See CVE-2006-4093

 -- dann frazier <dannf@debian.org>  Tue,  5 Dec 2006 01:20:25 -0700

kernel-image-2.4.27-i386 (2.4.27-10sarge4) stable-security; urgency=high

  * Build against kernel-tree-2.4.27-10sarge4:
    * [ERRATA] 213_madvise_remove-restrict.diff
      [SECURITY] The 2.4.27-10sarge3 changelog associated this patch with
      CVE-2006-1524. However, this patch fixes an mprotect issue that was
      split off from the original report into CVE-2006-2071. 2.4.27 is not
      vulnerable to CVE-2006-1524 the madvise_remove issue.
      See CVE-2006-2071
    * 223_nfs-handle-long-symlinks.diff
      [SECURITY] Fix buffer overflow in NFS readline handling that allows a
      remote server to cause a denial of service (crash) via a long symlink
      See CVE-2005-4798
    * 224_cdrom-bad-cgc.buflen-assign.diff
      [SECURITY] Fix buffer overflow in dvd_read_bca which could potentially
      be used by a local user to trigger a buffer overflow via a specially
      crafted DVD, USB stick, or similar automatically mounted device.
      See CVE-2006-2935
    * 225_sg-no-mmap-VM_IO.diff
      [SECURITY] Fix DoS vulnerability whereby a local user could attempt
      a dio/mmap and cause the sg driver to oops.
      See CVE-2006-1528
    * 226_snmp-nat-mem-corruption-fix.diff
      [SECURITY] Fix memory corruption in snmp_trap_decode
      See CVE-2006-2444
    * 227_kfree_skb.diff
      [SECURITY] Fix race between kfree_skb and __skb_unlink
      See CVE-2006-2446
    * 228_sparc-mb-extraneous-semicolons.diff
      Fix a syntax error caused by extranous semicolons in smp_mb() macros
      which resulted in a build failure with 227_kfree_skb.diff
    * 229_sctp-priv-elevation.diff, 230_sctp-priv-elevation-2.diff
      [SECURITY] Fix SCTP privelege escalation
      See CVE-2006-3745
    * 231_udf-deadlock.diff
      [SECURITY] Fix possible UDF deadlock and memory corruption
      See CVE-2006-4145
    * 232_sparc-membar-extraneous-semicolons.diff
      Fix an additional syntax error caused by extraneous semicolons
      in membar macros on sparc

 -- dann frazier <dannf@debian.org>  Sun,  3 Sep 2006 17:44:10 -0600

kernel-image-2.4.27-i386 (2.4.27-10sarge3) stable-security; urgency=high

  * Build against kernel-tree-2.4.27-10sarge3:
    * 207_smbfs-chroot-escape.diff
      [SECURITY] Fix directory traversal vulnerability in smbfs that permits
      local users to escape chroot restrictions
      See CVE-2006-1864
    * 208_ia64-die_if_kernel-returns.diff
      [SECURITY][ia64] Fix a potential local DoS on ia64 systems caused by
      an incorrect 'noreturn' attribute on die_if_kernel()
      See CVE-2006-0742
    * 209_sctp-discard-unexpected-in-closed.diff
      [SECURITY] Fix remote DoS in SCTP code by discarding unexpected chunks
      received in CLOSED state instead of calling BUG()
      See CVE-2006-2271
    * 210_ipv4-id-no-increment.diff
      [SECURITY] Fix vulnerability that allows remote attackers to conduct an
      Idle Scan attack, bypassing intended protections against such attacks
      See CVE-2006-1242
    * 211_usb-gadget-rndis-bufoverflow.diff
      [SECURITY] Fix buffer overflow in the USB Gadget RNDIS implementation
      that allows for a remote DoS attack (kmalloc'd memory corruption)
      See CVE-2006-1368
    * 212_ipv4-sin_zero_clear.diff
      [SECURITY] Fix local information leak in af_inet code
      See CVE-2006-1343
    * 213_madvise_remove-restrict.diff
      [SECURITY] Fix vulnerability that allows local users to bypass IPC
      permissions and replace portions of read-only tmpfs files with zeroes.
      See CVE-2006-1524
    * 214_mcast-ip-route-null-deref.diff
      [SECURITY] Fix local DoS vulnerability that allows local users to panic
      a system by requesting a route for a multicast IP
      See CVE-2006-1525
    * 215_sctp-fragment-recurse.diff
      [SECURITY] Fix remote DoS vulnerability that can lead to infinite
      recursion when a packet containing two or more DATA fragments is received
      See CVE-2006-2274
    * 216_sctp-fragmented-receive-fix.diff
      [SECURITY] Fix remote DoS vulnerability that allows IP fragmented
      COOKIE_ECHO and HEARTBEAT SCTP control chunks to cause a kernel panic
      See CVE-2006-2272
    * 217_amd64-fp-reg-leak.diff
      [SECURITY][amd64] Fix an information leak that allows a process to see
      a portion of the floating point state of other processes, possibly
      exposing sensitive information.
      See CVE-2006-1056
    * 218_do_add_counters-race.diff
      [SECURITY] Fix race condition in the do_add_counters() function in
      netfilter that allows local users with CAP_NET_ADMIN capabilities to
      read kernel memory
      See CVE-2006-0039
    * 219_sctp-hb-ack-overflow.diff
      [SECURITY] Fix a remote buffer overflow that can result from a badly
      formatted HB-ACK chunk
      See CVE-2006-1857
    * 220_sctp-param-bound-checks.diff
      [SECURITY] Fix a bound checking error (remote DoS) in the SCTP parameter
      checking code
      See CVE-2006-1858
    * 221_netfilter-do_replace-overflow.diff
      [SECURITY] Fix buffer overflow in netfilter do_replace which can could
      be triggered by users with CAP_NET_ADMIN rights.
      See CVE-2006-0038
    * 222_binfmt-bad-elf-entry-address.diff
      [SECURITY][amd64] Fix potential local DoS vulnerability in the binfmt_elf
      code on em64t processors
      See CVE-2006-0741

 -- dann frazier <dannf@debian.org>  Mon, 29 May 2006 17:18:58 -0600

kernel-image-2.4.27-i386 (2.4.27-10sarge2) stable-security; urgency=high

  *** Note this release introduces an ABI Change for CVE-2005-2709 ***
  *** and CAN-2005-0449                                            ***

  [ dann frazier ]
  * Build against kernel-tree-2.4.27-10sarge2
  * Increment ABI to -3

 -- Simon Horman <horms@debian.org>  Wed,  8 Feb 2006 19:32:04 +0900

kernel-image-2.4.27-i386 (2.4.27-10sarge1) stable-security; urgency=high

  * Build against kernel-tree-2.4.27-10sarge1. (Simon Horman)

 -- Simon Horman <horms@debian.org>  Wed, 17 Aug 2005 17:13:01 +0900

kernel-image-2.4.27-i386 (2.4.27-10) unstable; urgency=low

  * Build against kernel-tree-2.4.27-10. (Simon Horman)

 -- Simon Horman <horms@debian.org>  Mon, 16 May 2005 14:48:26 +0900

kernel-image-2.4.27-i386 (2.4.27-9) unstable; urgency=low

  * Remove one more file in clean target. (Josh Kwan)
  * Build against 2.4.27-kernel-tree-2.4.27-9. (Simon Horman)
  * Fix up AMD descriptions to include CPU name.
    Thanks to J. Grant. (Simon Horman)

 -- Simon Horman <horms@debian.org>  Wed, 30 Mar 2005 18:41:16 +0900

kernel-image-2.4.27-i386 (2.4.27-8) unstable; urgency=low

  * Built against kernel-source-2.4.27 2.4.27-8
  * Use cp -a instead of cp -al. The latter used to
    work using a doctored version of touch that would
    try and effect copy on write. Unfortunately this
    broke horribly with parallalised builds.

 -- Simon Horman <horms@debian.org>  Wed, 12 Jan 2005 17:31:48 +0900

kernel-image-2.4.27-i386 (2.4.27-7) unstable; urgency=high

  * Change Pentium IV/PIV to Pentium 4/P4
    (closes: #284138). (Simon Horman)
  * Increment SONAME to 2 as the CAN-2004-0814 fix
    included in kernel-source 2.4.27-6 breaks binary compatibility.
    (closes: #284356)
  * Built against kernel-source-2.4.27 2.4.27-7

 -- Simon Horman <horms@debian.org>  Mon, 20 Dec 2004 17:57:59 +0900

kernel-image-2.4.27-i386 (2.4.27-6) unstable; urgency=low

  * Enable Zoran Video Devices. (Simon Horman)
  * Added symlinks to missing files Rules.make and
    arch/$(KERNEL_ARCH)/Makefile to kernel-headers packages.
    (Closes: Bug#273878) (Simon Horman)
  * Enable Magic SysRq (Closes: Bug#270297) (Simon Horman)
  * Use DEB_HOST_ARCH instead of ARCH in post-install (Simon Horman)
  * Added link to scripts in header packages (Simon Horman)
  * Removed headers that are both non-i386 and non-generic
    from header packges (Simon Horman)
  * Built against kernel-source-2.4.27 2.4.27-6

 -- Simon Horman <horms@debian.org>  Wed,  1 Dec 2004 12:11:42 +0900

kernel-image-2.4.27-i386 (2.4.27-2) unstable; urgency=high

  * Build against kernel-tree-2.4.27-5:
    - More TG3 woes fixed; this time with HW autoneg causing problems on
      unrelated cards.
    - EHCI problems seem to be fixed.
    - Add very very important ide-probe.c patch missed out in previous 
      uploads of the kernel source. (Closes: #266538, #266510)
  * Fix typos in debian/control.
  * Nuke the metapackages - now provided by kernel-latest-2.4-i386.

 -- Joshua Kwan <joshk@triplehelix.org>  Wed, 25 Aug 2004 00:32:28 +0000

kernel-image-2.4.27-i386 (2.4.27-1) unstable; urgency=low

  * New upstream version.
  * Note: [CAN-2004-0554] referenced in #253871 is fixed upstream in 2.4.27
    now.
  * Don't copy whole kernel source trees: hardlink farm them.

 -- Joshua Kwan <joshk@triplehelix.org>  Thu, 12 Aug 2004 16:31:48 -0700

kernel-image-2.4.26-i386 (2.4.26-5) unstable; urgency=low

  * Added myself (Simon Horman <horms@debian.org>) to the list of uploaders,
    as I seem to have missed it the first time around.
  * Include symlinks to the toplevel kernel-headers.revision and Makefile
    in the kernel-headers-<version>-<arch> packages from the
    kernel-headers-<version> package. (closes: Bug#261776)
  * Copy files for different build trees rather than using hard links.
    Also removed customised touch command. The customised touch + hard links
    completely breaks parallised builds as files can be zeroed as the
    customised touch command tries to make a fresh copy of a file while
    another process tries to do the same.

 -- Simon Horman <horms@debian.org>  Thu, 29 Jul 2004 10:54:45 +0900

kernel-image-2.4.26-i386 (2.4.26-4) unstable; urgency=low

  * Built against 2.4.26-4

 -- Simon Horman <horms@debian.org>  Tue, 20 Jul 2004 21:07:52 +0900

kernel-image-2.4.26-i386 (2.4.26-3) unstable; urgency=low

  * Built against kernel-tree 2.4.26-3
  * Changed Maintainer to kernel team.
  * Set uploaders to DD members of that team as per the alioth.debian.org 
    kernel project

 -- Simon Horman <horms@debian.org>  Fri,  9 Jul 2004 20:09:06 +0900

kernel-image-2.4.26-i386 (2.4.26-2) unstable; urgency=low

  * Built against kernel-tree 2.4.26-2.
  * Enabled SATA drivers.

 -- Herbert Xu <herbert@debian.org>  Sat,  1 May 2004 15:06:37 +1000

kernel-image-2.4.26-i386 (2.4.26-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Sat, 17 Apr 2004 20:38:22 +1000

kernel-image-2.4.25-i386 (2.4.25-3) unstable; urgency=low

  * Built against kernel-tree 2.4.25-3.
  * Enabled 8139TOO_PIO (closes: #223702).

 -- Herbert Xu <herbert@debian.org>  Wed, 14 Apr 2004 19:35:25 +1000

kernel-image-2.4.25-i386 (2.4.25-2) unstable; urgency=low

  * Built against kernel-tree 2.4.25-2.
  * Depend on lilo or grub and kernel-doc or kernel-source (closes: #242399).
  * Explain SMP in long description (closes: #241562).

 -- Herbert Xu <herbert@debian.org>  Mon, 12 Apr 2004 11:55:40 +1000

kernel-image-2.4.25-i386 (2.4.25-1) unstable; urgency=low

  * New upstream release.
  * Set default RAM disk size to 8192M.

 -- Herbert Xu <herbert@debian.org>  Mon, 23 Feb 2004 20:39:55 +1100

kernel-image-2.4.24-i386 (2.4.24-3) unstable; urgency=high

  * Built against kernel-tree 2.4.24-3.
  * Enabled local and IO APIC in 386 flavour (closes: #224494).

 -- Herbert Xu <herbert@debian.org>  Wed, 18 Feb 2004 19:38:30 +1100

kernel-image-2.4.24-i386 (2.4.24-2) unstable; urgency=low

  * Built against kernel-tree 2.4.24-2.

 -- Herbert Xu <herbert@debian.org>  Tue,  3 Feb 2004 21:49:54 +1100

kernel-image-2.4.24-i386 (2.4.24-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Tue,  6 Jan 2004 19:12:46 +1100

kernel-image-2.4.23-i386 (2.4.23-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Sun, 30 Nov 2003 11:35:50 +1100

kernel-image-2.4.22-i386 (2.4.22-4) unstable; urgency=low

  * Added /lib build symlink in flavoured kernel-headers package.
  * Built against kernel-tree 2.4.22-4.
  * Changed modules ABI.

 -- Herbert Xu <herbert@debian.org>  Sat, 15 Nov 2003 14:57:06 +1100

kernel-image-2.4.22-i386 (2.4.22-3) unstable; urgency=medium

  * Built against kernel-tree 2.4.22-3.

 -- Herbert Xu <herbert@debian.org>  Sat,  4 Oct 2003 14:25:54 +1000

kernel-image-2.4.22-i386 (2.4.22-2) unstable; urgency=low

  * Built against kernel-tree 2.4.22-2.
  * Enabled CONFIG_OPTIMISE_SIZE on 386.
  * Disable ACPI by default (closes: #210512, #210563, #210727, #211594,
    #212611).
  * Added debnum target (closes: #204030).

 -- Herbert Xu <herbert@debian.org>  Sat, 27 Sep 2003 18:12:24 +1000

kernel-image-2.4.22-i386 (2.4.22-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Fri,  5 Sep 2003 20:46:07 +1000

kernel-image-2.4.21-1-i386 (2.4.21-5) unstable; urgency=low

  * Built against kernel-tree 2.4.21-5.
  * Changed modules ABI.
  * Enabled DECNET_ROUTER.
  * Added kernel-pcmcia-modules-2.4 packages.

 -- Herbert Xu <herbert@debian.org>  Sun, 24 Aug 2003 13:07:04 +1000

kernel-image-2.4.21-1-i386 (2.4.21-4) unstable; urgency=low

  * Built against kernel-tree 2.4.21-4 containing various security fixes.
  * Changed modules ABI.

 -- Herbert Xu <herbert@debian.org>  Sat,  2 Aug 2003 21:09:18 +1000

kernel-image-2.4.21-1-i386 (2.4.21-3) unstable; urgency=low

  * Build-depend on kernel-package 8.042 (closes: #200512).
  * Built against kernel-tree 2.4.21-3.
  * Changed modules ABI.

 -- Herbert Xu <herbert@debian.org>  Sun, 20 Jul 2003 12:23:57 +1000

kernel-image-2.4.21-1-i386 (2.4.21-2) unstable; urgency=low

  * Source package name no longer changes with debnum.
  * Built against kernel-tree 2.4.21-2 (closes: #199117).
  * Get kernel-patch-debian from new location.
  * Enabled 486 emulation in 386 flavour.
  * Changed modules ABI.

 -- Herbert Xu <herbert@debian.org>  Fri,  4 Jul 2003 22:19:18 +1000

kernel-image-2.4.21-1-i386 (2.4.21-1) unstable; urgency=low

  * New upstream release.
  * Use kernel-tree instead of kernel-source.

 -- Herbert Xu <herbert@debian.org>  Sun, 15 Jun 2003 10:27:51 +1000

kernel-image-2.4.20-3-i386 (2.4.20-9) unstable; urgency=low

  * Enabled SOUND_GUS16 and SOUND_GUSMAX.
  * Built against kernel-source 2.4.20-8.
    . Fixed mxcsr security hole in arch/i386/kernel/i387.c.
    . Fixed TIOCCONS and writing to /dev/console.
    . Fixed hashing exploits in fragment processing.
  * First build using gcc 3.3.

 -- Herbert Xu <herbert@debian.org>  Sat,  7 Jun 2003 20:09:29 +1000

kernel-image-2.4.20-3-i386 (2.4.20-8) unstable; urgency=low

  * Enabled X86_TSC_DISABLE on all relevant flavours.
  * Added copyright file to kernel-build package.
  * Enabled CONFIG_NET_QOS and assorted goodies (closes: #186899).
  * Rebuilt against kernel-source-2.4.20-7:
   . Fixed TSS I/O bitmap initialisation in arch/i386/kernel/ioport.c.
   . Fixed hashing exploits in network stack.
   . Fixed ptrace fix.
  * Changed modules ABI.
  * First build using gcc 3.2.

 -- Herbert Xu <herbert@debian.org>  Sun, 18 May 2003 18:06:34 +1000

kernel-image-2.4.20-1-i386 (2.4.20-7) unstable; urgency=low

  * Fixed symlinks in flavoured kernel-headers packages.

 -- Herbert Xu <herbert@debian.org>  Tue, 25 Mar 2003 20:41:38 +1100

kernel-image-2.4.20-1-i386 (2.4.20-6) unstable; urgency=low

  * Moved INITRD modules to initrd from boot (closes: #183349).
  * Added support for additional revision number in kernel name.
  * Rebuilt against kernel-source-2.4.20-6.
   . Fixed ptrace security hole.
   . Changed modules ABI.
  * Resplit kernel-build into individual kernel-headers (closes: #180709).

 -- Herbert Xu <herbert@debian.org>  Sat, 22 Mar 2003 11:38:36 +1100

kernel-image-2.4.20-i386 (2.4.20-5) unstable; urgency=high

  * Rebuilt against kernel-source 2.4.20-5 (closes: #176488).

 -- Herbert Xu <herbert@debian.org>  Mon, 13 Jan 2003 20:35:13 +1100

kernel-image-2.4.20-i386 (2.4.20-4) unstable; urgency=high

  * Disabled CONFIG_INET_ECN again.
  * Rebuilt against kernel-source 2.4.20-4.
  * Fixed ethernet packet padding information leak (2.4ac, see #176178):
    . 3c501
    . 3c505
    . 3c507
    . 3c523
    . 3c527
    . 7990
    . 8139too
    . 82596
    . 8390
    . a2065
    . am79c961a
    . ariadne
    . at1700
    . atarilance
    . atp
    . bagetlance
    . de600
    . de620
    . declance
    . depca
    . eepro
    . eexpress
    . epic100
    . eth16i
    . fmv18x
    . hp100
    . lance
    . lasi_82596
    . lp486e
    . ni5010
    . ni52
    . ni65
    . axnet_cs
    . fmvj18x_cs
    . ray_cs
    . xirc2ps_cs
    . xircom_tulip_cb
    . seeq8005
    . sgiseeq
    . sk_g16
    . smc9194
    . sun3_82586
    . sun3lance
    . wavelan
    . yellowfin
    . znet

 -- Herbert Xu <herbert@debian.org>  Sat, 11 Jan 2003 18:02:41 +1100

kernel-image-2.4.20-i386 (2.4.20-3) unstable; urgency=low

  * Rebuilt against kernel-source 2.4.20-3.

 -- Herbert Xu <herbert@debian.org>  Sat, 21 Dec 2002 14:26:38 +1100

kernel-image-2.4.20-i386 (2.4.20-2) unstable; urgency=low

  * Get linux/version.h from the build directories (closes: #171919).

 -- Herbert Xu <herbert@debian.org>  Sat,  7 Dec 2002 14:15:07 +1100

kernel-image-2.4.20-i386 (2.4.20-1) unstable; urgency=low

  * New upstream release.
  * Reenabled CONFIG_VIDEO_SELECT since CONFIG_VIDEO_VESA is now conditional
    (closes: #165405).
  * Moved udebs to standalone source package.
  * Enabled CONFIG_HOTPLUG_PCI_ACPI.
  * Enabled CONFIG_VESA_FB as a module (closes: #104101).
  * Depend on initrd-tools 0.1.34 so that VESA FB can be loaded correctly.
  * Added coreutils as an alternative to fileutils.
  * Disabled EPATC8 by default (closes: #166986).
  * Disabled CONFIG_NET_SCH_INGRESS (closes: #167732).
  * Consolidated flavoured kernel header packages into one.

 -- Herbert Xu <herbert@debian.org>  Sat, 30 Nov 2002 19:59:25 +1100

kernel-image-2.4.19-i386 (2.4.19-4) unstable; urgency=high

  * Moved udebs to standalone source package.
  * Fixed i386 lcall DoS (Petr Vandrovec).

 -- Herbert Xu <herbert@debian.org>  Mon, 18 Nov 2002 21:43:45 +1100

kernel-image-2.4.19-i386 (2.4.19-3) unstable; urgency=low

  * Added pcnet32 to nic-modules-extra.
  * Depend on modutils 2.4.19 due to new binutils (closes: #163011).
  * Turned CONFIG_VIDEO_SELECT off.

 -- Herbert Xu <herbert@debian.org>  Sun,  6 Oct 2002 17:18:33 +1000

kernel-image-2.4.19-i386 (2.4.19-2) unstable; urgency=low

  * Built against kernel-source 2.4.19-2.
  * Added kernel-image-2.4-* packages.
  * Enabled CONFIG_ACPI as a module (closes: #159253).
  * Enabled HIGHMEM4G on 686, 686-smp and k7 (closes: #143575, #161124).
  * Enabled CONFIG_IDEDMA_PCI_AUTO.
  * Added k7-smp flavour (closes: #141743).
  * Added floppy-modules udeb (closes: #156570).
  * Enabled CONFIG_AIC7XXX_PROBE_EISA_VL.

 -- Herbert Xu <herbert@debian.org>  Sat, 28 Sep 2002 17:50:52 +1000

kernel-image-2.4.19-i386 (2.4.19-1) unstable; urgency=low

  * New upstream release.
  * Call dh_installdocs for kernel-pcmcia-modules (closes: #144953).
  * Enabled sunhme (closes: #150813).
  * Updated dependency versioned on initrd-tools since 2.4.19 broke modprobe
    inside the initrd.

 -- Herbert Xu <herbert@debian.org>  Thu,  8 Aug 2002 20:07:30 +1000

kernel-image-2.4.18-i386 (2.4.18-5) unstable; urgency=low

  * Built against kernel-source 2.4.18-5.
  * Added replaces header for kernel-pcmcia-modules (closes: #140719).
  * Enabled MTD devices (closes: #139316).

 -- Herbert Xu <herbert@debian.org>  Sun, 14 Apr 2002 10:06:38 +1000

kernel-image-2.4.18-i386 (2.4.18-4) unstable; urgency=high

  * Built against kernel-source 2.4.18-4.

 -- Herbert Xu <herbert@debian.org>  Wed, 20 Mar 2002 20:10:26 +1100

kernel-image-2.4.18-i386 (2.4.18-3) unstable; urgency=high

  * Build 4.1 DRM modules instead of 4.0 ones (closes: #138382).

 -- Herbert Xu <herbert@debian.org>  Fri, 15 Mar 2002 19:45:22 +1100

kernel-image-2.4.18-i386 (2.4.18-2) unstable; urgency=high

  * Built against kernel-source 2.4.18-3.
  * Added dependency on modutils-* to kernel-image-udeb (closes: #136743).
  * Per request from PCMCIA maintainer:
   . Moved PCMCIA modules back again.
   . Split PCMCIA modules into their own packages.

 -- Herbert Xu <herbert@debian.org>  Wed, 13 Mar 2002 21:34:25 +1100

kernel-image-2.4.18-i386 (2.4.18-1) unstable; urgency=low

  * New upstream release.
  * Built with kernel-package 7.80 (closes: #128665).
  * Added note about Pentium IV in -686* packages (closes: #134213).
  * Disabled ACORN_PARTITION_POWERTEC as it's too aggresive (closes: #129373).
  * Moved PCMCIA modules to kernel-pcmcia-$(version) (closes: #128662).

 -- Herbert Xu <herbert@debian.org>  Thu, 28 Feb 2002 21:52:37 +1100

kernel-image-2.4.17-i386 (2.4.17-1) unstable; urgency=low

  * New upstream release.
  * Removed 586 flavour due to lack of interest.
  * Fixed typos in control file (Alexey Mahotkin, Matt Zimmerman,
    closes: #124828).
  * Built with kernel-package 7.75 (closes: 121960).
  * Enabled ATM support (closes: #126130).

 -- Herbert Xu <herbert@debian.org>  Sat, 22 Dec 2001 16:03:32 +1100

kernel-image-2.4.16-i386 (2.4.16-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Wed, 28 Nov 2001 07:44:56 +1100

kernel-image-2.4.15-i386 (2.4.15-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Sat, 24 Nov 2001 18:51:38 +1100

kernel-image-2.4.14-i386 (2.4.14-1) unstable; urgency=low

  * New upstream release.
  * Reinstated k7 flavour.

 -- Herbert Xu <herbert@debian.org>  Fri,  9 Nov 2001 20:45:25 +1100

kernel-image-2.4.13-i386 (2.4.13-1) unstable; urgency=low

  * New upstream release.
  * Put nic-modules on a diet.
  * Added nic-modules-shared and nic-modules-extra.
  * Added plip-modules (closes: #116016).
  * Added support for capifs.
  * Increased versioned dependency on initrd-tools for new mkcramfs to work
    around tmpfs bug in 2.4.12.

 -- Herbert Xu <herbert@debian.org>  Sat, 27 Oct 2001 17:56:21 +1000

kernel-image-2.4.12-i386 (2.4.12-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Sat, 13 Oct 2001 12:42:42 +1000

kernel-image-2.4.10-i386 (2.4.10-1) unstable; urgency=low

  * New upstream release.
  * Disabled ACORN_PARTITION_ADFS as it's too aggressive.
  * Disable ECN by default.  It's still compiled in though.
  * Added drivers to nic-modules per reqeust from Raphael Hertzog.

 -- Herbert Xu <herbert@debian.org>  Sat, 29 Sep 2001 17:46:10 +1000

kernel-image-2.4.9-i386 (2.4.9-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Sat, 18 Aug 2001 22:16:41 +1000

kernel-image-2.4.8-i386 (2.4.8-1) unstable; urgency=low

  * New upstream release.
  * Added ide/cdrom/scsi udeb packages.

 -- Herbert Xu <herbert@debian.org>  Sun, 12 Aug 2001 09:36:26 +1000

kernel-image-2.4.7-i386 (2.4.7-1) unstable; urgency=low

  * New upstream release.
  * Recommend the k6 flavour for Duron/Athlon systems (closes: #103656).

 -- Herbert Xu <herbert@debian.org>  Sat, 21 Jul 2001 22:26:43 +1000

kernel-image-2.4.6-i386 (2.4.6-1) unstable; urgency=low

  * New upstream release.
  * Enabled USB_STORAGE_FREECOM (closes: #100674).

 -- Herbert Xu <herbert@debian.org>  Thu,  5 Jul 2001 20:04:24 +1000

kernel-image-2.4.5-i386 (2.4.5-1) unstable; urgency=low

  * New upstream release.
  * Built against new kernel-packages (closes: #93957, #98083).
  * Removed k7 flavour until it works consistently.
  * Integrated the di image (closes: #96220).

 -- Herbert Xu <herbert@debian.org>  Sun, 27 May 2001 14:24:39 +1000

kernel-image-2.4.4-i386 (2.4.4-1) unstable; urgency=low

  * New upstream release.
  * Removed pentium4 for cost/benefit reasons.  Either compile your own or
    use 686.

 -- Herbert Xu <herbert@debian.org>  Sun, 29 Apr 2001 10:53:41 +1000

kernel-image-2.4.3-i386 (2.4.3-2) unstable; urgency=low

  * Removed unnecessary pentiumiii/pentiumiii-smp flavours.
  * Built against kernel-source 2.4.3-4.
  * Built against modified kernel-package which generates correct lilo.conf for
    initrd.

 -- Herbert Xu <herbert@debian.org>  Sun, 22 Apr 2001 11:43:45 +1000

kernel-image-2.4.3-i386 (2.4.3-1) unstable; urgency=low

  * New upstream release.
  * Added versioned dependency on modutils for kernel-image packages
    (closes: #90906).
  * Built with modified kernel-package (closes: #91320, #91326).
  * Disabled CONFIG_VIDEO_ZORAN since it doesn't build with 2.4.3.
  * Exported proc_get_inode (ac patches, closes: #91325).

 -- Herbert Xu <herbert@debian.org>  Mon, 16 Apr 2001 08:39:36 +1000

kernel-image-2.4.2-i386 (2.4.2-1) unstable; urgency=low

  * New upstream release (closes: #83689).
  * Started using initrd (closes: #54292, #65559, #81474).
  * Added build-time dependency on modutils.

 -- Herbert Xu <herbert@debian.org>  Sun, 11 Mar 2001 15:12:53 +1100

kernel-image-2.4.0-test11-i386 (2.4.0-test11-1) unstable; urgency=low

  * New upstream release.
  * Only kernel-headers for now.

 -- Herbert Xu <herbert@debian.org>  Sun, 10 Dec 2000 08:22:07 +1100

kernel-image-2.2.18pre21-i386 (2.2.18pre21-1) stable unstable; urgency=low

  * New upstream release.
  * Build QLOGIC_FC as a module since we're over 1M again.

 -- Herbert Xu <herbert@debian.org>  Sat, 18 Nov 2000 14:50:54 +1100

kernel-image-2.2.17-i386 (1:2.2.17-1) stable unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Sat,  9 Sep 2000 12:25:28 +1100

kernel-image-2.2.17-i386 (2.2.17pre6-1) frozen unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Sun, 25 Jun 2000 09:17:30 +1000

kernel-image-2.2.16-i386 (2.2.16-1) frozen unstable; urgency=low

  * New upstream release (2.2.16).
  * DAC960 is now built as a module since 2.2.16 puts us over 1M again.

 -- Herbert Xu <herbert@debian.org>  Sun, 18 Jun 2000 15:50:07 +1000

kernel-image-2.2.15-i386 (1:2.2.15-2) frozen unstable; urgency=low

  * Rebuilt with kernel-source 2.2.15-3.

 -- Herbert Xu <herbert@debian.org>  Thu,  1 Jun 2000 10:13:30 +1000

kernel-image-2.2.15-i386 (1:2.2.15-1) frozen unstable; urgency=low

  * New upstream release (2.2.15-2).

 -- Herbert Xu <herbert@debian.org>  Sat, 13 May 2000 10:00:51 +1000

kernel-image-2.2.15-i386 (2.2.15pre20-1) frozen unstable; urgency=low

  * New upstream release.
  * The kernel version now includes the flavour.

 -- Herbert Xu <herbert@debian.org>  Tue, 25 Apr 2000 15:27:44 +1000

kernel-image-2.2.15-i386 (2.2.15pre19-1) frozen unstable; urgency=low

  * New upstream release.
  * Swapped AM53C974 and DC390T since the former seems to work better
    (closes: #56634).

 -- Herbert Xu <herbert@debian.org>  Fri, 21 Apr 2000 13:36:02 +1000

kernel-image-2.2.14-i386 (2.2.14-4) frozen unstable; urgency=low

  * Enabled CONFIG_NCPFS_NFS_NS and CONFIG_NCPFS_OS2_NS (closes: #61704).
  * Enabled IDESCSI.
  * kernel-image-*-ide is now built as a flavour.

 -- Herbert Xu <herbert@debian.org>  Sun, 16 Apr 2000 13:05:53 +1000

kernel-image-2.2.14-i386 (2.2.14-3) frozen unstable; urgency=low

  * Enabled IP masquerading (closes: #61201).
  * kernel-image-*-ide now has a distinct Description field (closes: #56891).

 -- Herbert Xu <herbert@debian.org>  Mon,  3 Apr 2000 08:34:45 +1000

kernel-image-2.2.14-i386 (2.2.14-2) frozen unstable; urgency=low

  * Enabled ServerRAID (closes: #52597).
  * Enabled DAC960 (closes: #49863).
  * Enabled CONFIG_FILTER (closes: #50996).
  * Enabled quota support (closes: #60206).

 -- Herbert Xu <herbert@debian.org>  Wed, 22 Mar 2000 15:12:21 +1100

kernel-image-2.2.14-i386 (2.2.14-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Sat, 15 Jan 2000 13:13:29 +1100

kernel-image-2.2.13-i386 (2.2.13-3) unstable; urgency=low

  * Added an ide subarch (closes: #50908).

 -- Herbert Xu <herbert@debian.org>  Thu,  2 Dec 1999 00:30:15 +1100

kernel-image-2.2.13-i386 (2.2.13-2) unstable; urgency=low

  * Initial release.
  * Disabled CONFIG_APM_RTC_IS_GMT (closes: #48503).
  * Enabled Unix98 ptys (closes: #49723).
  * Turned initrd back on as it was accidentally disabled (closes: #50109).
  * Downgraded CONFIG_SCSI_AM53C974 to a module (closes: #49559).
  * Enabled Stallion drivers as modules.

 -- Herbert Xu <herbert@debian.org>  Fri, 19 Nov 1999 21:56:37 +1100

