Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org> , <debian-experimental-changes@lists.debian.org>
Subject: Accepted linux 5.19~rc6-1~exp1 (source) into experimental, experimental
Date: Wed, 13 Jul 2022 14:10:09 +0000
Signed by: Ben Hutchings <benh@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 13 Jul 2022 01:20:17 +0200
Source: linux
Architecture: source
Version: 5.19~rc6-1~exp1
Distribution: experimental
Urgency: medium
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Ben Hutchings <benh@debian.org>
Changes:
 linux (5.19~rc6-1~exp1) experimental; urgency=medium
 .
   * New upstream release candidate
 .
   [ Ben Hutchings ]
   * [mips64el/mips64r2el] Fix package description
   * [x86] Add mitigations for RETbleed on AMD/Hygon (CVE-2022-29900) and
     Intel (CVE-2022-29901) processors:
     - x86/kvm/vmx: Make noinstr clean
     - x86/cpufeatures: Move RETPOLINE flags to word 11
     - x86/retpoline: Cleanup some #ifdefery
     - x86/retpoline: Swizzle retpoline thunk
     - x86/retpoline: Use -mfunction-return
     - x86: Undo return-thunk damage
     - x86,objtool: Create .return_sites
     - x86,static_call: Use alternative RET encoding
     - x86/ftrace: Use alternative RET encoding
     - x86/bpf: Use alternative RET encoding
     - x86/kvm: Fix SETcc emulation for return thunks
     - x86/vsyscall_emu/64: Don't use RET in vsyscall emulation
     - x86/sev: Avoid using __x86_return_thunk
     - x86: Use return-thunk in asm code
     - x86/entry: Avoid very early RET
     - objtool: Treat .text.__x86.* as noinstr
     - x86: Add magic AMD return-thunk
     - x86/bugs: Report AMD retbleed vulnerability
     - x86/bugs: Add AMD retbleed= boot parameter
     - x86/bugs: Enable STIBP for JMP2RET
     - x86/bugs: Keep a per-CPU IA32_SPEC_CTRL value
     - x86/entry: Add kernel IBRS implementation
     - x86/bugs: Optimize SPEC_CTRL MSR writes
     - x86/speculation: Add spectre_v2=ibrs option to support Kernel IBRS
     - x86/bugs: Split spectre_v2_select_mitigation() and
       spectre_v2_user_select_mitigation()
     - x86/bugs: Report Intel retbleed vulnerability
     - intel_idle: Disable IBRS during long idle
     - objtool: Update Retpoline validation
     - x86/xen: Rename SYS* entry points
     - x86/xen: Add UNTRAIN_RET
     - x86/bugs: Add retbleed=ibpb
     - x86/bugs: Do IBPB fallback check only once
     - objtool: Add entry UNRET validation
     - x86/cpu/amd: Add Spectral Chicken
     - x86/speculation: Fix RSB filling with CONFIG_RETPOLINE=n
     - x86/speculation: Fix firmware entry SPEC_CTRL handling
     - x86/speculation: Fix SPEC_CTRL write on SMT state change
     - x86/speculation: Use cached host SPEC_CTRL value for guest entry/exit
     - x86/speculation: Remove x86_spec_ctrl_mask
     - objtool: Re-add UNWIND_HINT_{SAVE_RESTORE}
     - KVM: VMX: Flatten __vmx_vcpu_run()
     - KVM: VMX: Convert launched argument to flags
     - KVM: VMX: Prevent guest RSB poisoning attacks with eIBRS
     - KVM: VMX: Fix IBRS handling after vmexit
     - x86/speculation: Fill RSB on vmexit for IBRS
     - KVM: VMX: Prevent RSB underflow before vmenter
     - x86/common: Stamp out the stepping madness
     - x86/cpu/amd: Enumerate BTC_NO
     - x86/retbleed: Add fine grained Kconfig knobs
     - x86/bugs: Add Cannon lake to RETBleed affected CPU list
     - x86/entry: Move PUSH_AND_CLEAR_REGS() back into error_entry
     - x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported
     - x86/kexec: Disable RET on kexec
     - x86/speculation: Disable RRSBA behavior
     - x86/static_call: Serialize __static_call_fixup() properly
   * [amd64] Enable SLS mitigation
Checksums-Sha1:
 c450425945cb7773e5b254eea3c16d72169d3269 257118 linux_5.19~rc6-1~exp1.dsc
 6e9729ceb8479519e563b8900a7b2f468ce9250c 133692840 linux_5.19~rc6.orig.tar.xz
 43fab6105a28e24e5be3f67148a0e81d9436134c 1342488 linux_5.19~rc6-1~exp1.debian.tar.xz
 692325621a849afc244c9ee5906ca372505af634 7604 linux_5.19~rc6-1~exp1_source.buildinfo
Checksums-Sha256:
 29ff44642f76fc921354c41d3bde0508c63676ee5bd57f0cad6c4bf08e75f25a 257118 linux_5.19~rc6-1~exp1.dsc
 c8c17311d5b1ab57c216fd2c4b3ee1ea3f70446f26dade38b18f1549475a79b9 133692840 linux_5.19~rc6.orig.tar.xz
 5f92acfd7fc4a97d66393c9215ecc916eafaa8817bdc76748f8a16f897485255 1342488 linux_5.19~rc6-1~exp1.debian.tar.xz
 9c27605f82419788f914db39cb690cc83e1d61599ba032a87b544239585de83f 7604 linux_5.19~rc6-1~exp1_source.buildinfo
Files:
 696fd128ca92441e6f835e88690258cd 257118 kernel optional linux_5.19~rc6-1~exp1.dsc
 80f3c64e5d4a06cc5ba6b0cf47ee19a1 133692840 kernel optional linux_5.19~rc6.orig.tar.xz
 7c9f35e707a7e76238343baa2d7e822c 1342488 kernel optional linux_5.19~rc6-1~exp1.debian.tar.xz
 1ec3fb4ebdc03cd4250a347403f280bc 7604 kernel optional linux_5.19~rc6-1~exp1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=YPEp
-----END PGP SIGNATURE-----
News for package linux
