kernel-image-2.6.8-alpha (2.6.8-17) oldstable; urgency=high

  * Rebuild against kernel-tree-2.6.8-17
    [ Simon Horman ]
    * drivers-net-via-rhine-wol-oops.dpatch (removed):
      This patch breaks the via-rhine driver and 2.6.8 and is
      completely bogus for this version of the kernel
      (closes: #311357)

    * drivers-media-vidio-bttv-vc100xp-detect.dpatch
      Allow Leadtek WinFast VC100 XP cards to work.

    * fs-jbd-checkpoint-assertion.dpatch
      Fix possible false assertion failure in log_do_checkpoint(). We might fail
      to detect that we actually made a progress when cleaning up the checkpoint
      lists if we don't retry after writing something to disk.

    * mm-rmap-out-of-bounds-pte.dpatch
      Stop try_to_unmap_cluster() passing out-of-bounds pte to pte_unmap()

    * net-ipv4-netfilter-ip_queue-deadlock.dpatch
      Fix deadlock with ip_queue and tcp local input path.

    * asm-i386-mem-clobber.dpatch:
      Make sure gcc doesn't reorder memory accesses in strncmp and friends on
      i386.

    * drivers-acpi-pci_irq-elcr.dpatch:
      Make sure we call acpi_register_gsi() even for default PCI interrupt
      assignment. That's the part that keeps track of the ELCR register, and we
      want to make sure that the PCI interrupts are properly marked level/low.

    [ dann frazier ]
    * Merge in applicable fixes from 2.6.12.4
       - netfilter-deadlock-ip6_queue.dpatch
       - rocket_c-fix-ldisc-ref-count.dpatch
       - early-vlan-fix.dpatch

    [ Simon Horman ]
    * drivers-sata-promise-sataii_tx2_tx4.dpatch
      Add SATAII TX2 and TX2/TX4 support to sata promise driver
      (Closes: #317286)

    * module-per-cpu-alignment-fix.dpatch
      Module per-cpu alignment cannot always be met
      From 2.6.12.5

    * genelink-usbnet-skb-typo.dpatch
      fix gl_skb/skb type error in genelink driver in usbnet
      Backported From 2.6.12.6

    * drivers-ide-ppp-pmac-build.dpatch
      Make sure BLK_DEV_IDEDMA_PCI is defined for pmac ide driver builds
      (closes: #321442)

    * fs-ext3-nfs-parent-fix.dpatch
      ext3 file systems mounted over nfs may lookup .. in dx directories
      causing an oops.
      (closes: #323557)

    * sparc-request_irq-in-RTC-fix.dpatch
      Use SA_SHIRQ in sparc specific code.
      From 2.6.13.1

    * forcedeth-init-link-settings-in-nv_open.patch
      forcedeth: Initialize link settings in every nv_open()
      From 2.6.13.2

    * fix-MPOL_F_VERIFY.patch
      Fix MPOL_F_VERIFY
      From 2.6.13.2

    * fix-more-byte-to-dword-writes-to-PCI_ROM_ADDRESS-config-word.patch
      Fix up more strange byte writes to the PCI_ROM_ADDRESS config word
      From 2.6.13.2

    * yenta-oops-fix.patch
      yenta oops fix
      From 2.6.13.3

    * fix-de_thread-BUG_ON.patch
      Fix fs/exec.c:788 (de_thread()) BUG_ON
      From 2.6.13.3

    * ipv6-fix-per-socket-multicast-filtering.patch
      fix IPv6 per-socket multicast filtering in exact-match case
      From 2.6.13.3

    * ipvs-ip_vs_ftp-breaks-connections.patch
      ipvs: ip_vs_ftp breaks connections using persistence
      From 2.6.13.3

    * ieee1394-sbp2-fixes-for-hot-unplug-and-module-unloading.dpatch
      ieee1394/sbp2: fixes for hot-unplug and module unloading
      From 2.6.13.4

    * fix-sparc64-fpu-register-corruption.dpatch
      [SPARC64]: Fix userland FPU state corruption.
      From 2.6.13.4

    [ dann frazier ]
    * drivers-block-raw-ioctl2.dpatch, drivers-block-ioctl-enotty.dpatch:
      Fix a bug in the block layer that causes a bootloader installation
      error under certain conditions - breaks installation on cciss devices.
      (closes: #354493)
    * Fix data corruption with dm-crypt over RAID5 (closes: #336153)
    * Fix VLAN support for 3c59x/90x series hardware (closes: #349774)
    * Fix erroneous calculation of 'len' parameter to NLMSG_PUT resulting in
      bogus 'error during NLMSG_PUT' messages (closes: #372621)
    * hp-diva-rmp3.dpatch, hp-diva-hurricane.dpatch:
      Add PCI IDs for newer Diva console ports

 -- dann frazier <dannf@debian.org>  Sat, 26 May 2007 03:54:13 -0600

kernel-image-2.6.8-alpha (2.6.8-16sarge7) oldstable-security; urgency=high

  * Rebuild against kernel-tree-2.6.8-16sarge7 which requires
    an ABI increment:
    * [ERRATA] smbfs-honor-mount-opts-2.dpatch
      Fix some regressions with respect to file types (e.g., symlinks)
      introduced by the fix for CVE-2006-5871 in 2.6.8-16sarge6
    * mincore_hang.dpatch
      [SECURITY] Fix a potential deadlock in mincore, thanks to Marcel
      Holtmann for the patch.
      See CVE-2006-4814
    * mincore-fixes.dpatch
      This patch includes a few fixes, necessary for mincore_hang.dpatch to
      apply cleanly.
    * dev_queue_xmit-error-path.dpatch
      [SECURITY] Correct an error path in dev_queue_xmit() to rebalance
      local_bh_enable() calls. Patch from Vasily Averin.
      See CVE-2006-6535
    * dvb-core-handle-0-length-ule-sndu.dpatch
      [SECURITY] Avoid sending invalid ULE packets which may not properly
      handled by the receiving side triggering a crash. This is a backport
      of the patch that went into 2.6.17.y. It would be better to fix the
      receiving end, but no patch for the era kernel has been developed yet.
      See CVE-2006-4623
    * bluetooth-capi-size-checks.dpatch
      [SECURITY] Add additional length checks to avoid potential remote
      DoS attacks in the handling of CAPI messages in the bluetooth driver
      See CVE-2006-6106
    * __find_get_block_slow-race.dpatch
      [SECURITY] Fix infinite loop in __find_get_block_slow that can
      be triggered by mounting and accessing a malicious iso9660 or NTFS
      filesystem
      See CVE-2006-5757, CVE-2006-6060
    * listxattr-mem-corruption.dpatch
      [SECURITY] Fix userspace corruption vulnerability caused by
      incorrectly promoted return values in bad_inode_ops
      This patches changes the kernel ABI.
      See CVE-2006-5753
    * aio-fix-nr_pages-init.dpatch
      [SECURITY] Fix initialization of info->nr_pages in aio_setup_ring() to
      avoid a race that can lead to a system crash
      See CVE-2006-5754
    * unmap_hugepage_area-check-null-pte.dpatch
      [SECURITY] Fix a potential DoS (crash) in unmap_hugepage_area().
      No kernel-image builds appear to compile this code, so this fix is only
      for users that compile their own kernels with the Debian source and
      enable/use huge pages.
      See CVE-2005-4811
    * ext3-fsfuzz.dpatch
      [SECURITY] Fix a DoS vulnerability that can be triggered by a local
      user with the ability to mount a corrupted ext3 filesystem
      See CVE-2006-6053
    * hfs-no-root-inode.dpatch
      [SECURITY] Fix bug in HFS where hfs_fill_super returns success even
      if no root inode is found. On an SELinux-enabled system, this can
      be used to trigger a local DoS. Debian does not enable SELinux by
      default.
      See CVE-2006-6056
    * ipv6_fl_socklist-no-share.dpatch
      [SECURITY] Fix local DoS vulnerability caused by inadvertently sharing
      ipv6_fl_socklist between the listening socket and the socket created
      for connection.
      See CVE-2007-1592
    * core-dump-unreadable-PT_INTERP.dpatch
      [SECURITY] Fix a vulnerability that allows local users to read
      otherwise unreadable (but executable) files by triggering a core dump.
      See CVE-2007-0958
    * appletalk-length-mismatch.dpatch
      [SECURITY] Fix a remote DoS (crash) in appletalk
      Depends upon appletalk-endianness-annotations.dpatch
      See CVE-2007-1357

 -- dann frazier <dannf@debian.org>  Mon, 23 Apr 2007 16:29:10 -0600

kernel-image-2.6.8-alpha (2.6.8-16sarge6) stable-security; urgency=high

  * Build against kernel-tree-2.6.8-16sarge6:
    * perfmon-fd-refcnt.dpatch
      [SECURITY][ia64] Fix file descriptor leak in perfmonctl
      system call which could be used as a local denial of service attack
      by depleting the system of file descriptors
      See CVE-2006-3741
    * ia64-sparc-cross-region-mappings.dpatch
      [SECURITY] Prevent cross-region mappings on ia64 and sparc which
      could be used in a local DoS attack (system crash)
      See CVE-2006-4538
    * __block_prepare_write-recovery.dpatch
      [SECURITY] Fix an information leak in __block_prepare_write()
      See CVE-2006-4813
    * atm-clip-freed-skb-deref.dpatch
      [SECURITY] Avoid dereferencing an already freed skb, preventing a
      potential remote DoS (system crash) vector
      See CVE-2006-4997
    * ip6_flowlabel-lockup.dpatch
      [SECURITY] Fix local DoS attack vector (lockups, oopses) in the
      sequence handling for /proc/net/ip6_flowlabel
      See CVE-2006-5619
    * ppc-alignment-exception-table-check.dpatch
      [SECURITY][ppc] Avoid potential DoS which can be triggered by some
      futex ops
      See CVE-2006-5649
    * s390-uaccess-memleak.dpatch
      [SECURITY][s390] Fix memory leak in copy_from_user by clearing the
      remaining bytes of the kernel buffer after a fault on the userspace
      address in copy_from_user()
      See CVE-2006-5174
    * smbfs-honor-mount-opts.dpatch
      Honor uid, gid and mode mount options for smbfs even when unix extensions
      are enabled
      See CVE-2006-5871
    * bridge-get_fdb_entries-overflow.dpatch
      Protect against possible overflow in get_fdb_entries
      See CVE-2006-5751

 -- dann frazier <dannf@debian.org>  Tue,  5 Dec 2006 02:19:29 -0700

kernel-image-2.6.8-alpha (2.6.8-16sarge5) stable-security; urgency=high

  * Build against kernel-tree-2.6.8-16sarge5:
    * [ERRATA] madvise_remove-restrict.dpatch
      [SECURITY] The 2.6.8-16sarge3 changelog associated this patch with
      CVE-2006-1524. However, this patch fixes an mprotect issue that was
      split off from the original report into CVE-2006-2071. 2.6.8 is not
      vulnerable to CVE-2006-1524 the madvise_remove issue.
      See CVE-2006-2071
    * fs-ext3-bad-nfs-handle.dpatch
      [SECURITY] James McKenzie discovered a Denial of Service vulnerability
      in the NFS driver. When exporting an ext3 file system over NFS, a remote
      attacker could exploit this to trigger a file system panic by sending
      a specially crafted UDP packet.
      See CVE-2006-3468
    * direct-io-write-mem-leak.dpatch
      [SECURITY] Fix memory leak in O_DIRECT write.
      See CVE-2004-2660
    * nfs-handle-long-symlinks.dpatch
      [SECURITY] Fix buffer overflow in NFS readline handling that allows a
      remote server to cause a denial of service (crash) via a long symlink
      See CVE-2005-4798
    * cdrom-bad-cgc.buflen-assign.dpatch
      [SECURITY] Fix buffer overflow in dvd_read_bca which could potentially
      be used by a local user to trigger a buffer overflow via a specially
      crafted DVD, USB stick, or similar automatically mounted device.
      See CVE-2006-2935
    * usb-serial-ftdi_sio-dos.patch
      [SECURITY] fix userspace DoS in ftdi_sio driver
      See CVE-2006-2936
    * selinux-tracer-SID-fix.dpatch
      [SECURITY] Fix vulnerability in selinux_ptrace that prevents local
      users from changing the tracer SID to the SID of another process
      See CVE-2006-1052
    * netfilter-SO_ORIGINAL_DST-leak.dpatch
      [SECURITY] Fix information leak in SO_ORIGINAL_DST
      See CVE-2006-1343
    * sg-no-mmap-VM_IO.dpatch
      [SECURITY] Fix DoS vulnerability whereby a local user could attempt
      a dio/mmap and cause the sg driver to oops.
      See CVE-2006-1528
    * exit-bogus-bugon.dpatch
      [SECURITY] Remove bogus BUG() in exit.c which could be maliciously
      triggered by a local user
      See CVE-2006-1855
    * readv-writev-missing-lsm-check.dpatch,
      readv-writev-missing-lsm-check-compat.dpatch
      [SECURITY] Add missing file_permission callback in readv/writev syscalls
      See CVE-2006-1856
    * snmp-nat-mem-corruption-fix.dpatch
      [SECURITY] Fix memory corruption in snmp_trap_decode
      See CVE-2006-2444
    * kfree_skb-race.dpatch
      [SECURITY] Fix race between kfree_skb and __skb_unlink
      See CVE-2006-2446
    * hppa-mb-extraneous-semicolon.dpatch,
      sparc32-mb-extraneous-semicolons.dpatch,
      sparc64-mb-extraneous-semicolons.dpatch:
      Fix a syntax error caused by extranous semicolons in smp_mb() macros
      which resulted in a build failure with kfree_skb-race.dpatch
    * sctp-priv-elevation.dpatch
      [SECURITY] Fix SCTP privelege escalation
      See CVE-2006-3745
    * sctp-priv-elevation-2.dpatch
      [SECURITY] Fix local DoS resulting from sctp-priv-elevation.dpatch
      See CVE-2006-4535
    * ppc-hid0-dos.dpatch
      [SECURITY][ppc] Fix local DoS by clearing HID0 attention enable on
      PPC970 at boot time
      See CVE-2006-4093
    * udf-deadlock.dpatch
      [SECURITY] Fix possible UDF deadlock and memory corruption
      See CVE-2006-4145

 -- dann frazier <dannf@debian.org>  Mon,  4 Sep 2006 09:58:45 -0600

kernel-image-2.6.8-alpha (2.6.8-16sarge4) stable-security; urgency=high

  * Build against kernel-tree-2.6.8-16sarge4:
    * proc-environ-race-1.dpatch, proc-environ-race-2.dpatch
      [SECURITY] Fix local root vulnerability caused by a race in proc
      See CVE-2006-3626

 -- dann frazier <dannf@debian.org>  Sat, 15 Jul 2006 09:12:48 -0600

kernel-image-2.6.8-alpha (2.6.8-16sarge3) stable-security; urgency=low

  * Build against kernel-tree-2.6.8-16sarge3:
    * net-protocol-mod-refcounts-pre.dpatch, net-protocol-mod-refcounts.dpatch
      [SECURITY] Fix potential DoS (panic) cause by inconsistent reference
      counting in network protocol modules.
      See CVE-2005-3359
    * netfilter-do_replace-overflow.dpatch
      [SECURITY] Fix buffer overflow in netfilter do_replace which can could
      be triggered by users with CAP_NET_ADMIN rights.
      See CVE-2006-0038
    * sys_mbind-sanity-checking.dpatch
      [SECURITY] Make sure maxnodes is safe size before calculating nlongs in
      get_nodes() to prevent a local DoS vulnerability.
      See CVE-2006-0557
    * smbfs-chroot-escape.dpatch
      [SECURITY] Fix directory traversal vulnerability in smbfs that permits
      local users to escape chroot restrictions
      See CVE-2006-1864
    * perfmon-exit-race.dpatch
      [SECURITY][ia64] Fix local denial of service vulnerability (oops) in
      the ia64 perfmon subsystem
      See CVE-2006-0558
    * ia64-die_if_kernel-returns.dpatch
      [SECURITY][ia64] Fix a potential local DoS on ia64 systems caused by
      an incorrect 'noreturn' attribute on die_if_kernel()
      See CVE-2006-0742
    * smbfs-chroot-escape.dpatch
      [SECURITY] Fix directory traversal vulnerability in smbfs that permits
      local users to escape chroot restrictions
      See CVE-2006-1863
    * binfmt-bad-elf-entry-address.dpatch
      [SECURITY][amd64] Fix potential local DoS vulnerability in the binfmt_elf
      code on em64t processors
      See CVE-2006-0741
    * em64t-uncanonical-return-addr.dpatch
      [SECURITY][amd64] Fix local DoS vulnerability on em64t systems that
      arises when returning program control using SYSRET
      See CVE-2006-0744
    * sctp-discard-unexpected-in-closed.dpatch
      [SECURITY] Fix remote DoS in SCTP code by discarding unexpected chunks
      received in CLOSED state instead of calling BUG()
      See CVE-2006-2271
    * ipv4-id-no-increment.dpatch
      [SECURITY] Fix vulnerability that allows remote attackers to conduct an
      Idle Scan attack, bypassing intended protections against such attacks
      See CVE-2006-1242
    * usb-gadget-rndis-bufoverflow.dpatch
      [SECURITY] Fix buffer overflow in the USB Gadget RNDIS implementation that
      allows for a remote DoS attack (kmalloc'd memory corruption)
      See CVE-2006-1368
    * group_complete_signal-BUG_ON.dpatch
      [SECURITY] Fix improper use of BUG_ON in __group_complete_signal()
      See CVE-2006-1523
    * madvise_remove-restrict.dpatch
      [SECURITY] Fix vulnerability that allows local users to bypass IPC
      permissions and replace portions of read-only tmpfs files with zeroes.
      See CVE-2006-1524
    * mcast-ip-route-null-deref.dpatch
      [SECURITY] Fix local DoS vulnerability that allows local users to panic
      a system by requesting a route for a multicast IP
      See CVE-2006-1525
    * sctp-fragment-recurse.dpatch
      [SECURITY] Fix remote DoS vulnerability that can lead to infinite
      recursion when a packet containing two or more DATA fragments is received
      See CVE-2006-2274
    * sctp-fragmented-receive-fix.dpatch
      [SECURITY] Fix remote DoS vulnerability that allows IP fragmented
      COOKIE_ECHO and HEARTBEAT SCTP control chunks to cause a kernel panic
      See CVE-2006-2272
    * amd64-fp-reg-leak-dep[1-3].dpatch, amd64-fp-reg-leak.dpatch
      [SECURITY][amd64] Fix an information leak that allows a process to see
      a portion of the floating point state of other processes, possibly
      exposing sensitive information.
      See CVE-2006-1056
    * do_add_counters-race.dpatch
      [SECURITY] Fix race condition in the do_add_counters() function in
      netfilter that allows local users with CAP_NET_ADMIN capabilities to
      read kernel memory
      See CVE-2006-0039
    * s390-strnlen_user-return.dpatch
      [SECURITY][s390] Fix local DoS on s390 that may result from strnlen_user
      returning a value that is too large
      See CVE-2006-0456
    * xfs-ftruncate-leak.dpatch
      [SECURITY] Fix leak in the ftruncate call in the XFS filesystem that may
      permit local users to view sensitive information
      See CVE-2006-0554
    * nfs-another-O_DIRECT-fix.dpatch
      [SECURITY] Fix a potential local DoS vulnerability in the NFS O_DIRECT
      code
      See CVE-2006-0555
    * sctp-hb-ack-overflow.dpatch
      [SECURITY] Fix a remote buffer overflow that can result from a badly
      formatted HB-ACK chunk
      See CVE-2006-1857
    * sctp-param-bound-checks.dpatch
      [SECURITY] Fix a bound checking error (remote DoS) in the SCTP parameter
      checking code
      See CVE-2006-1858

 -- dann frazier <dannf@debian.org>  Tue, 23 May 2006 13:23:48 -0600

kernel-image-2.6.8-alpha (2.6.8-16sarge2) stable-security; urgency=high

  * Built against kernel-tree 2.6.8-16sarge2
  * Increment ABI to -3

 -- dann frazier <dannf@debian.org>  Tue, 31 Jan 2006 23:53:47 -0700

kernel-image-2.6.8-alpha (2.6.8-16sarge1) stable-security; urgency=high

  * Built against kernel-tree 2.6.8-16sarge1.

 -- Norbert Tretkowski <nobse@debian.org>  Tue, 16 Aug 2005 13:46:25 +0200

kernel-image-2.6.8-alpha (2.6.8-16) unstable; urgency=low

  * Built against kernel-tree 2.6.8-16.

 -- Norbert Tretkowski <nobse@debian.org>  Sun, 29 May 2005 10:25:10 +0200

kernel-image-2.6.8-alpha (2.6.8-9) unstable; urgency=high

  * Depend on initrd-tools >= 0.1.78. (closes: #301486)
  * Disabled CONFIG_SCSI_QLOGIC_ISP, we now have CONFIG_SCSI_QLOGIC_1280_1040.

 -- Norbert Tretkowski <nobse@debian.org>  Sun, 10 Apr 2005 19:39:45 +0200

kernel-image-2.6.8-alpha (2.6.8-8) unstable; urgency=high

  * Built against kernel-tree 2.6.8-15.

 -- Norbert Tretkowski <nobse@debian.org>  Sat, 25 Mar 2005 11:34:25 +0100

kernel-image-2.6.8-alpha (2.6.8-7) unstable; urgency=high

  * Built against kernel-tree 2.6.8-13.
    + Added backport of qla1280 driver from 2.6.10. (closes: #261893)
  * Bumped SONAME because of ABI changes in one of the security fixes from
    kernel-source-2.6.8 2.6.8-11.
  * Enabled CONFIG_SCSI_QLOGIC_1280_1040.
  * Enabled CONFIG_FB_MATROX* again.
  * Compiled CONFIG_SECURITY_CAPABILITIES into kernel.

 -- Norbert Tretkowski <nobse@debian.org>  Mon, 24 Jan 2005 08:06:11 +0100

kernel-image-2.6.8-alpha (2.6.8-6) unstable; urgency=high

  * Built against kernel-tree 2.6.8-10.

 -- Norbert Tretkowski <nobse@debian.org>  Sat, 27 Nov 2004 01:01:33 +0100

kernel-image-2.6.8-alpha (2.6.8-5) unstable; urgency=high

  * Built against kernel-tree 2.6.8-7.

 -- Norbert Tretkowski <nobse@debian.org>  Sun, 10 Oct 2004 22:34:11 +0200

kernel-image-2.6.8-alpha (2.6.8-4) unstable; urgency=high

  * Built against kernel-tree 2.6.8-6.

 -- Norbert Tretkowski <nobse@debian.org>  Thu, 16 Sep 2004 16:08:23 +0200

kernel-image-2.6.8-alpha (2.6.8-3) unstable; urgency=high

  * Built against kernel-tree 2.6.8-5.
  * Removed the following packages which are now provided by
    kernel-latest-2.6-alpha:
    . kernel-headers-2.6-generic
    . kernel-headers-2.6-smp
    . kernel-image-2.6-generic
    . kernel-image-2.6-smp

 -- Norbert Tretkowski <nobse@debian.org>  Sat, 28 Aug 2004 22:44:35 +0200

kernel-image-2.6.8-alpha (2.6.8-2) unstable; urgency=low

  * Built against kernel-tree 2.6.8-4.
  * Enabled CONFIG_DEBUG_KERNEL and CONFIG_KALLSYMS.
  * Fixed typos in debian/control.

 -- Norbert Tretkowski <nobse@debian.org>  Thu, 26 Aug 2004 17:39:34 +0200

kernel-image-2.6.8-alpha (2.6.8-1) unstable; urgency=low

  * New upstream release, built against kernel-tree 2.6.8-1.
  * Disabled CONFIG_FB_MATROX, which is still broken on 2.6 kernels.

 -- Norbert Tretkowski <nobse@debian.org>  Sat, 14 Aug 2004 13:58:11 +0200

kernel-image-2.6.7-alpha (2.6.7-1) unstable; urgency=low

  * New upstream release, built against kernel-tree 2.6.7-3.
  * Transfer maintainership to kernel team and added myself to uploaders.

 -- Norbert Tretkowski <nobse@debian.org>  Thu, 29 Jul 2004 01:31:25 +0200

kernel-image-2.6.6-alpha (2.6.6-1) unstable; urgency=low

  * New upstream release.
  * Updated kernel-kbuild dependency.
  * Install Module.symvers in kernel-headers packages.

 -- Herbert Xu <herbert@debian.org>  Wed, 12 May 2004 13:01:49 +1000

kernel-image-2.6.5-alpha (2.6.5-4) unstable; urgency=high

  * Built against kernel-tree 2.6.5-4.

 -- Herbert Xu <herbert@debian.org>  Fri, 30 Apr 2004 18:44:00 +1000

kernel-image-2.6.5-alpha (2.6.5-3) unstable; urgency=medium

  * Create .extraversion file.
  * Get kernel-build package name from control.
  * Built against kernel-tree 2.6.5-3.

 -- Herbert Xu <herbert@debian.org>  Tue, 27 Apr 2004 21:02:21 +1000

kernel-image-2.6.5-alpha (2.6.5-2) unstable; urgency=low

  * Depend on kernel-kbuild-2.6-2.
  * Built against kernel-tree 2.6.5-2.

 -- Herbert Xu <herbert@debian.org>  Fri, 23 Apr 2004 22:37:20 +1000

kernel-image-2.6.5-alpha (2.6.5-1) unstable; urgency=low

  * New upstream release.
  * Load capability at boot.
  * Depend on initrd-tools 0.1.63 for ide-generic support.
  * Explain SMP in long description.

 -- Herbert Xu <herbert@debian.org>  Tue,  6 Apr 2004 22:29:29 +1000

kernel-image-2.6.4-alpha (2.6.4-1) unstable; urgency=low

  * New upstream release.
  * Added vmlinux.syms to kernel-headers packages.
  * Depend on new kernel-kbuild for vmlinux.syms support.
  * header-install: Call cpio with --preserve-modification-time.
  * Enabled SECURITY_CAPABILITIES and SECURITY_ROOTPLUG.

 -- Herbert Xu <herbert@debian.org>  Sat, 13 Mar 2004 17:38:46 +1100

kernel-image-2.6.3-alpha (2.6.3-2) unstable; urgency=low

  * Depend on initrd-tools >= 0.1.59.

 -- Herbert Xu <herbert@debian.org>  Tue, 24 Feb 2004 20:19:24 +1100

kernel-image-2.6.3-alpha (2.6.3-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Fri, 20 Feb 2004 22:16:04 +1100

kernel-image-2.6.2-alpha (2.6.2-2) unstable; urgency=high

  * Built against kernel-tree 2.6.2-2.
  * Reenabled INPUT_MOUSEDEV_PSAUX_ENABLE.

 -- Herbert Xu <herbert@debian.org>  Wed, 18 Feb 2004 22:03:00 +1100

kernel-image-2.6.2-alpha (2.6.2-1) unstable; urgency=low

  * New upstream release.
  * Enabled PDC202XX_BURST and PDC202XX_FORCE.
  * Enabled CONFIG_FB_MATROX as a module.
  * Disabled INPUT_MOUSEDEV_PSAUX_ENABLE.
  * Get upstream version from debian/rules.

 -- Herbert Xu <herbert@debian.org>  Sat,  7 Feb 2004 12:19:42 +1100

kernel-image-2.6.0-alpha (2.6.0-2) unstable; urgency=low

  * Built against kernel-tree 2.6.0-2.
  * Changed default RAM disk size to 8192M.

 -- Herbert Xu <herbert@debian.org>  Sun, 11 Jan 2004 16:37:24 +1100

kernel-image-2.6.0-alpha (2.6.0-1) unstable; urgency=low

  * New upstream release.
  * Added smp flavour.
  * Use kernel-tree package.

 -- Herbert Xu <herbert@debian.org>  Tue, 30 Dec 2003 16:16:27 +1100

kernel-image-2.6.0-test11-alpha (2.6.0-test11-1) unstable; urgency=low

  * New upstream release.
  * Added headers package for -generic flavour.
  * Added files needed by kbuild to all headers packages.
  * Enabled NET_QOS and associated goodies.

 -- Herbert Xu <herbert@debian.org>  Mon,  8 Dec 2003 20:54:20 +1100

kernel-image-2.6.0-test9-alpha (2.6.0-test9-1) unstable; urgency=low

  * New upstream release.
  * Added debnum target.
  * Only provide one flavour until 2.6.0 is released.
  * Depend on initrd-tools 0.1.53 for sysfs probing.
  * Depend on new kernel-package which does make prepare.

 -- Herbert Xu <herbert@debian.org>  Sun, 26 Oct 2003 16:47:48 +1100

kernel-image-2.4.22-alpha (2.4.22-3) unstable; urgency=low

  * Built against kernel-tree 2.4.22-3.

 -- Herbert Xu <herbert@debian.org>  Sat,  4 Oct 2003 14:31:07 +1000

kernel-image-2.4.22-alpha (2.4.22-2) unstable; urgency=low

  * Built against kernel-tree 2.4.22-2.

 -- Herbert Xu <herbert@debian.org>  Sat, 27 Sep 2003 18:22:41 +1000

kernel-image-2.4.22-alpha (2.4.22-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Fri,  5 Sep 2003 20:50:39 +1000

kernel-image-2.4.21-1-alpha (2.4.21-5) unstable; urgency=low

  * Built against kernel-tree 2.4.21-5.
  * Changed modules ABI.
  * Enabled DECNET_ROUTER.

 -- Herbert Xu <herbert@debian.org>  Sun, 24 Aug 2003 13:14:22 +1000

kernel-image-2.4.21-1-alpha (2.4.21-4) unstable; urgency=low

  * Built against kernel-tree 2.4.21-4 containing various security fixes.
  * Changed modules ABI.

 -- Herbert Xu <herbert@debian.org>  Sat,  2 Aug 2003 21:11:49 +1000

kernel-image-2.4.21-1-alpha (2.4.21-3) unstable; urgency=low

  * Build-depend on kernel-package 8.042.
  * Built against kernel-tree 2.4.21-3.
  * Changed modules ABI.

 -- Herbert Xu <herbert@debian.org>  Sun, 20 Jul 2003 12:52:19 +1000

kernel-image-2.4.21-1-alpha (2.4.21-2) unstable; urgency=low

  * Source package name no longer changes with debnum.
  * Get kernel-patch-debian from new location.
  * Built against kernel-tree 2.4.21-2.
  * Changed modules ABI.

 -- Herbert Xu <herbert@debian.org>  Fri,  4 Jul 2003 22:53:34 +1000

kernel-image-2.4.21-1-alpha (2.4.21-1) unstable; urgency=low

  * New upstream release.
  * Use kernel-tree instead of kernel-source.
  * Removed wildfire flavour.  Users should switch to the smp flavour.

 -- Herbert Xu <herbert@debian.org>  Sun, 15 Jun 2003 11:43:23 +1000

kernel-image-2.4.20-3-alpha (2.4.20-8) unstable; urgency=low

  * Enabled SOUND_GUS16 and SOUND_GUSMAX.
  * Built against kernel-source 2.4.20-8.
    . Fixed TIOCCONS and writing to /dev/console.
    . Fixed hashing exploits in fragment processing.

 -- Herbert Xu <herbert@debian.org>  Sat,  7 Jun 2003 20:17:14 +1000

kernel-image-2.4.20-3-alpha (2.4.20-7) unstable; urgency=low

  * Added copyright file to kernel-build package.
  * Enabled CONFIG_NET_QOS and assorted goodies (see i386).
  * Rebuilt against kernel-source-2.4.20-7:
   . Fixed hashing exploits in network stack.
   . Fixed ptrace fix.
  * Changed modules ABI.

 -- Herbert Xu <herbert@debian.org>  Sun, 18 May 2003 18:11:47 +1000

kernel-image-2.4.20-1-alpha (2.4.20-6) unstable; urgency=low

  * Fixed symlinks in flavoured kernel-headers packages.

 -- Herbert Xu <herbert@debian.org>  Tue, 25 Mar 2003 20:45:59 +1100

kernel-image-2.4.20-1-alpha (2.4.20-5) unstable; urgency=low

  * Moved INITRD modules to initrd from boot.
  * Enabled OSF4 compatitbility option.
  * Added support for additional revision number in kernel name.
  * Rebuilt against kernel-source-2.4.20-6.
   . Fixed ptrace security hole.
   . Changed modules ABI.
  * Resplit kernel-build into individual kernel-headers.

 -- Herbert Xu <herbert@debian.org>  Sat, 22 Mar 2003 20:55:41 +1100

kernel-image-2.4.20-alpha (2.4.20-4) unstable; urgency=high

  * Rebuilt against kernel-source 2.4.20-5 (closes: #176489).
  * Compile floppy driver into the kernel.

 -- Herbert Xu <herbert@debian.org>  Tue, 14 Jan 2003 07:30:30 +1100

kernel-image-2.4.20-alpha (2.4.20-3) unstable; urgency=high

  * Disabled CONFIG_INET_ECN again.
  * Rebuilt against kernel-source 2.4.20-4.
  * Fixed ethernet packet padding information leak (2.4ac, see #176178):
    . 3c501
    . 3c505
    . 3c507
    . 3c523
    . 3c527
    . 7990
    . 8139too
    . 82596
    . 8390
    . a2065
    . am79c961a
    . ariadne
    . at1700
    . atarilance
    . atp
    . bagetlance
    . de600
    . de620
    . declance
    . depca
    . eepro
    . eexpress
    . epic100
    . eth16i
    . fmv18x
    . hp100
    . lance
    . lasi_82596
    . lp486e
    . ni5010
    . ni52
    . ni65
    . axnet_cs
    . fmvj18x_cs
    . ray_cs
    . xirc2ps_cs
    . xircom_tulip_cb
    . seeq8005
    . sgiseeq
    . sk_g16
    . smc9194
    . sun3_82586
    . sun3lance
    . wavelan
    . yellowfin
    . znet

 -- Herbert Xu <herbert@debian.org>  Sun, 12 Jan 2003 12:30:17 +1100

kernel-image-2.4.20-alpha (2.4.20-2) unstable; urgency=low

  * Rebuilt against kernel-source 2.4.20-3.

 -- Herbert Xu <herbert@debian.org>  Sat, 21 Dec 2002 14:32:49 +1100

kernel-image-2.4.20-alpha (2.4.20-1) unstable; urgency=low

  * New upstream release.
  * Enabled LEGACY_START_ADDRESS in generic image.
  * Added UP wildfire flavour.
  * Added ipv6 udeb.
  * Depend on initrd-tools 0.1.34 so that TGA FB can be loaded correctly.
  * Added coreutils as an alternative to fileutils.
  * Moved udebs to standalone source package.
  * Consolidated flavoured kernel header packages into one.
  * Disabled EPATC8 by default (see i386).
  * Disabled CONFIG_NET_SCH_INGRESS (see i386).
  * Get linux/version.h from the build directories.
  * Options disabled on wildfire since they do not compile:
   . CONFIG_ISTALLION
   . CONFIG_SOUND_VIA82CXXX

 -- Herbert Xu <herbert@debian.org>  Sun,  1 Dec 2002 15:53:16 +1100

kernel-image-2.4.19-alpha (2.4.19-1) unstable; urgency=low

  * New upstream release.
  * Added kernel-image-2.4-* packages.
  * Added kernel-image udebs (closes: #157687).

 -- Herbert Xu <herbert@debian.org>  Tue, 15 Oct 2002 21:51:03 +1000

kernel-image-2.4.18-alpha (2.4.18-5) unstable; urgency=low

  * Set default RAM disk size to 8192K.

 -- Herbert Xu <herbert@debian.org>  Sat,  6 Apr 2002 20:47:36 +1000

kernel-image-2.4.18-alpha (2.4.18-4) unstable; urgency=low

  * Rebuilt to correct OSF partition detection.

 -- Herbert Xu <herbert@debian.org>  Sat, 23 Mar 2002 16:55:20 +1100

kernel-image-2.4.18-alpha (2.4.18-3) unstable; urgency=low

  * Built against kernel-source 2.4.18-4.

 -- Herbert Xu <herbert@debian.org>  Wed, 20 Mar 2002 20:27:31 +1100

kernel-image-2.4.18-alpha (2.4.18-2) unstable; urgency=low

  * Built against kernel-source 2.4.18-3.

 -- Herbert Xu <herbert@debian.org>  Thu, 14 Mar 2002 19:54:39 +1100

kernel-image-2.4.18-alpha (2.4.18-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Mon,  4 Mar 2002 19:12:30 +1100

kernel-image-2.4.17-alpha (2.4.17-1) unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Sat,  5 Jan 2002 19:57:44 +1100

kernel-image-2.2.20-alpha (2.2.20-2) unstable; urgency=low

  * Built against kernel-source 2.2.20-3.
  * Set default RAMDISK size to 8M on non-smp flavours (closes: #126513).

 -- Herbert Xu <herbert@debian.org>  Mon, 31 Dec 2001 07:06:17 +1100

kernel-image-2.2.20-alpha (2.2.20-1) unstable; urgency=high

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Mon,  5 Nov 2001 18:44:55 +1100

kernel-image-2.2.19-alpha (2.2.19-4) unstable; urgency=low

  * Enabled AHA1740 (closes: #109380).
  * Enabled AUTOFS (closes: #109625).

 -- Herbert Xu <herbert@debian.org>  Sat, 25 Aug 2001 15:02:27 +1000

kernel-image-2.2.19-alpha (2.2.19-3) unstable; urgency=high

  * Built against kernel-source 2.2.19-5.

 -- Herbert Xu <herbert@debian.org>  Sun, 10 Jun 2001 15:31:25 +1000

kernel-image-2.2.19-alpha (2.2.19-2) unstable; urgency=low

  * All kernel-headers packages now provide kernel-headers-2.2.
  * Updated tar command for sid.
  * Use make-kpkg --append_to_version.
  * Built against kernel-source 2.2.19-4.
  * Enabled NFSv3 support.

 -- Herbert Xu <herbert@debian.org>  Sun, 27 May 2001 19:36:27 +1000

kernel-image-2.2.19-alpha (2.2.19-1) stable unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Mon,  2 Apr 2001 21:04:19 +1000

kernel-image-2.2.19pre17-alpha (2.2.19pre17-1) stable unstable; urgency=high

  * New upstream release with security fixes.

 -- Herbert Xu <herbert@debian.org>  Tue, 13 Mar 2001 22:42:20 +1100

kernel-image-2.2.19pre16-alpha (2.2.19pre16-1) stable unstable; urgency=low

  * New upstream release with TCP bug fix.

 -- Herbert Xu <herbert@debian.org>  Sat, 10 Mar 2001 18:14:13 +1100

kernel-image-2.2.19pre13-alpha (2.2.19pre13-1) stable unstable; urgency=high

  * New upstream release with security fixes.

 -- Herbert Xu <herbert@debian.org>  Fri, 16 Feb 2001 22:02:58 +1100

kernel-image-2.2.18-alpha (2.2.18-1) stable unstable; urgency=low

  * New upstream release.

 -- Herbert Xu <herbert@debian.org>  Sun, 28 Jan 2001 12:06:09 +1100

kernel-image-2.2.18pre21-alpha (2.2.18pre21-1) stable unstable; urgency=low

  * New upstream release.
  * New maintainer.

 -- Herbert Xu <herbert@debian.org>  Sun, 19 Nov 2000 14:05:56 +1100

kernel-image-2.2.17-alpha (1:2.2.17-1) stable unstable; urgency=low

  * New kernel version.

 -- David Huggins-Daines <dhd@debian.org>  Sat, 16 Sep 2000 20:36:57 -0400

kernel-image-2.2.17-alpha (2.2.17pre6-1) unstable; urgency=low

  * New kernel version.

 -- David Huggins-Daines <dhd@debian.org>  Thu, 29 Jun 2000 10:40:52 -0400

kernel-image-2.2.15-alpha (1:2.2.15-2) frozen unstable; urgency=medium

  * Rebuilt with kernel-source 2.2.15-3, fixes a security bug.

 -- David Huggins-Daines <dhd@debian.org>  Thu,  8 Jun 2000 10:28:14 -0400

kernel-image-2.2.15-alpha (1:2.2.15-1) frozen unstable; urgency=medium

  * Don't use CONFIG_RTC, as it breaks Sable and maybe some others.
  * Add the DAC960 driver, found on lots of DEC systems.
  * Update to official 2.2.15 source.

 -- David Huggins-Daines <dhd@debian.org>  Thu, 18 May 2000 22:26:28 -0400

kernel-image-2.2.15-alpha (2.2.15pre20-2) frozen unstable; urgency=medium

  * That's "frozen unstable", not "unstable".
  * Also, don't use CONFIG_BLK_DEV_IDEPCI, as it disagrees with the broken
    firmware on some Miatas when booting from SRM.

 -- David Huggins-Daines <dhd@debian.org>  Thu,  4 May 2000 15:23:03 -0400

kernel-image-2.2.15-alpha (2.2.15pre20-1) unstable; urgency=low

  * That's "20", not "9".

 -- David Huggins-Daines <dhd@debian.org>  Mon,  1 May 2000 11:33:22 -0400

kernel-image-2.2.15-alpha (2.2.15pre9-1) frozen unstable; urgency=low

  * Initial release.

 -- David Huggins-Daines <dhd@debian.org>  Sun, 23 Apr 2000 13:33:54 -0400

kernel-image-2.2.13-alpha (2.2.13-1) unstable; urgency=low

  * Initial release.

 -- Herbert Xu <herbert@debian.org>  Sat, 20 Nov 1999 12:11:10 +1100

