-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 07 Aug 2021 08:00:09 +0200 Source: linux Architecture: source Version: 5.10.46-4~bpo10+1 Distribution: buster-backports Urgency: medium Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org> Changed-By: Salvatore Bonaccorso <carnil@debian.org> Closes: 990411 Changes: linux (5.10.46-4~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. . linux (5.10.46-4) unstable; urgency=medium . * bpf: Introduce BPF nospec instruction for mitigating Spectre v4 (CVE-2021-34556, CVE-2021-35477) * bpf: Fix leakage due to insufficient speculative store bypass mitigation (CVE-2021-34556, CVE-2021-35477) * bpf: Remove superfluous aux sanitation on subprog rejection * Ignore ABI changes for bpf_offload_dev_create and bpf_verifier_log_write * bpf: Add kconfig knob for disabling unpriv bpf by default * init: Enable BPF_UNPRIV_DEFAULT_OFF (Closes: #990411) * linux-image: Add NEWS entry documenting that unprivileged calls to bpf() are disabled by default in Debian. * bpf: verifier: Allocate idmap scratch in verifier env * bpf: Fix pointer arithmetic mask tightening under state pruning Checksums-Sha1: 682972430138318c6df20aacd66bf178999970b9 208226 linux_5.10.46-4~bpo10+1.dsc 6da323dd6976a0e232b609f3227a59046d234b5b 3812308 linux_5.10.46-4~bpo10+1.debian.tar.xz bfe7ec71d8190ab9078772fe227215831ff2e1b0 6259 linux_5.10.46-4~bpo10+1_source.buildinfo Checksums-Sha256: b74812d72d39b76d4913d42185fb10571012deaf294a8395ae0a978f308b0071 208226 linux_5.10.46-4~bpo10+1.dsc e354d1527f8d5d290570c41b5689edb22a9e8047991d97df906499df5f8e9557 3812308 linux_5.10.46-4~bpo10+1.debian.tar.xz 0d55e15fa9c7164412b899ac47c7c0911ced757bac560c34b0573abb01cdd899 6259 linux_5.10.46-4~bpo10+1_source.buildinfo Files: 5ac88224ff21baa3a9009ce63b194ef1 208226 kernel optional linux_5.10.46-4~bpo10+1.dsc 3a6c71a210e589fa5659b85f49c30309 3812308 kernel optional linux_5.10.46-4~bpo10+1.debian.tar.xz bc47f45ad5cef5d356ba12eea825a328 6259 kernel optional linux_5.10.46-4~bpo10+1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmEOIyxfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89EZ5UP/jB/QVsGSJ4IiZuBlZ5ofto4r1d4jvKT 7pAbYHKA+ed/E5+Zl2q23d9vZM8ODIbzvSNkCHMeBOkqYzeRVe2ZP0NEIn5wSVmL Pc+7tlriCP6EMeVMyYzn90vJNpaL3BZh3gfA6zWbQlFE/G7dL7XBJSpwbpl6BesP 4A19CK6CBAyAO55rYDpYdbMZSciVtegTDZ5E1TwDPZnhS2g/MmG7V6agnCDeH6FT J6JxL9MWS3+baGCV7eWIlZJcnv1Fv6WnWlIhZQzP7mxA2OMxxvvkEdtruGFrbtJx XhOkIUwnUpbh4YBgdoW5ToT3odn9r2mEAsJuvnlj0/iNtE6Q5Yv1xrJWA0Sv4hTn A7Gt3VNAvKppdqjh5K2cRtW997eZT9LpJElUW5EYiBPzQnbU7fcsWvja4UHEfoCj JK2Lsc19SMvXMOA6k8uypxBtHAmsspdhyr/KiG5e3U7EnyiMC+3/KoLEcFS1SzSP 0RkA3gbTJZDiTcxcB9J/DEAYD4cTTiIN+ZoRD5YYsVwByVF71hkA7t8X5kKD2bpi /z1mfXVVKly1VNaeFldXXJzQVGLa+4/pmXLyuS7QDLtLyFU2rahwwuVm4ZUR2XCi sgbPvYRNpkmU3SIS2QCVjgbM4hB1hO46ck39r8TRfIo6UC+EQ7pEqwHqnbf15HKw UL3UPPaLIXdi =c8+m -----END PGP SIGNATURE-----