Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org> , <debian-experimental-changes@lists.debian.org>
Subject: Accepted linux-signed-arm64 5.16.3+1~exp1 (source) into experimental, experimental
Date: Sun, 30 Jan 2022 18:00:09 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 27 Jan 2022 23:12:52 +0100
Source: linux-signed-arm64
Architecture: source
Version: 5.16.3+1~exp1
Distribution: experimental
Urgency: medium
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Changes:
 linux-signed-arm64 (5.16.3+1~exp1) experimental; urgency=medium
 .
   * Sign kernel from linux 5.16.3-1~exp1
 .
   * New upstream release: https://kernelnewbies.org/Linux_5.16
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.16.1
     - bpf: Fix out of bounds access from invalid *_or_null type verification
       (CVE-2022-23222)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.16.2
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.16.3
     - netfilter: nft_payload: do not update layer 4 checksum when mangling
       fragments (Closes: #1002706)
 .
   [ Helmut Grohne ]
   * Multiarchify python build-depends. (Closes: #983757)
 .
   [ Ben Hutchings ]
   * linux-perf: Fix detection of libperl and libpython in cross-build
   * debian/README.source: Tag signatures are automatically verified
   * [rt] trace: Enable OSNOISE_TRACER, TIMERLAT_TRACER, HIST_TRIGGERS
   * d/bin/git-tag-gpg-wrapper, debian/upstream: Use ASCII-armored keyring
   * d/watch: Rewrite to find all upstream versions through Git
   * d/bin/genorig.py, d/README.source: Only support Git as upstream
   * d/bin/genorig.py, d/README.source: Add support for remote upstream repos
   * lintian: Refresh lintian-overrides
   * d/copyright: Fix license name with spaces in it
   * d/copyright: Update for removed and renamed source files
   * d/tests/selftests: Use $AUTOPKGTEST_TMP instead of $ADTTMP
   * Fix missing user-space hardening:
     - d/rules.real: Define KBUILD_HOST{C,LD}FLAGS for sub-make
     - linux-kbuild: Build modpost with standard CPPFLAGS
     - cpupower: Build with standard CPPFLAGS
     - usbip: Build with standard CPPFLAGS
     - objtool: Build with standard CFLAGS and CPPFLAGS
     - tools/perf: Define DEBUG=0 for sub-make so libapi doesn't use wrong flags
     - libapi: Define _FORTIFY_SOURCE as 2, not empty
     - tools/perf: Fix missing LDFLAGS for some programs
   * d/rules: Tell blhc to ignore missing flags for perf-read-vdso* helpers
   * d/rules: Tell blhc to ignore kernel compilation
   * d/rules: Filter out -s option so that Kbuild is not silent
   * d/bin/gencontrol.py, d/lib/python: Use classes for build restriction
     formulae
   * d/bin/gencontrol.py, d/rules.real: Replace DEBUG variable with if_package
   * Introduce pkg.linux.quick build profile for quicker CI builds
   * d/salsa-ci.yml: Add CI config using some of the common pipeline
   * d/salsa-ci.yml, d/tests/python: Only run static checks in CI
   * d/salsa-ci.yml: Run kconfigeditor2 as kconfig static check
   * d/rules, d/salsa-ci.yml: Enable blhc, ignoring terse output
   * bpftool, objtool, usbip: Always build with V=1 so blhc can check them
   * d/salsa-ci.yml: Use per-release cache of orig tarballs
   * linux-perf: Build a single unversioned package of perf, as it is no
     longer necessary to match the kernel version
 .
   [ Vincent Blut ]
   * drivers/net/wireless/realtek/rtw89: Enable RTW89 and RTW89_8852AE as
     modules (Closes: #1004095)
 .
   [ Aurelien Jarno ]
   * [riscv64] Add support for SBI SRST extension
 .
   [ YunQiang Su ]
   * [mips*/generic] Change zload address for QEMU compatibility.
 .
   [ Salvatore Bonaccorso ]
   * [rt] Update to 5.16.2-rt18
   * [rt] Update to 5.16.2-rt19
   * [x86] drm/i915: Flush TLBs before releasing backing store (CVE-2022-0330)
   * drm/vmwgfx: Fix stale file descriptors on failed usercopy (CVE-2022-22942)
 .
   [ Bastian Blank ]
   * Build-depend on pahole after rename from dwarves.
   * Remove remaining aufs patches for good.
Checksums-Sha1:
 d194526d92993baf3b0398cd51c0c0e4b14e6972 7640 linux-signed-arm64_5.16.3+1~exp1.dsc
 5a6253cd8b773b71b2ed944cb99a0485b3994912 2529508 linux-signed-arm64_5.16.3+1~exp1.tar.xz
Checksums-Sha256:
 954ac37cdc88c0a3a8e4335c6752332b7c7e088f52d201ca5804783f0108703c 7640 linux-signed-arm64_5.16.3+1~exp1.dsc
 8ef583f96f40758908d9e0d30d78db9bc865661d9ba82b3ea042b085ede6b84a 2529508 linux-signed-arm64_5.16.3+1~exp1.tar.xz
Files:
 231b8b32adbe6f766024e6492ace02e0 7640 kernel optional linux-signed-arm64_5.16.3+1~exp1.dsc
 10b865242b99c1432a64205f4cabac42 2529508 kernel optional linux-signed-arm64_5.16.3+1~exp1.tar.xz

-----BEGIN PGP SIGNATURE-----
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=2OsF
-----END PGP SIGNATURE-----
News for package linux-signed-arm64
