Uploading linux (6.7.9-2)

To: Debian kernel maintainers <debian-kernel@lists.debian.org>
Cc: Debian release team <debian-release@lists.debian.org>, Debian FTP Master <ftpmaster@debian.org>, kibi@debian.org, hmh@debian.org
Subject: Uploading linux (6.7.9-2)
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 13 Mar 2024 09:04:12 +0100
Message-id: <[🔎] ZfFd_FS1iymFWb3W@eldamar.lan>
Mail-followup-to: Debian kernel maintainers <debian-kernel@lists.debian.org>, Debian release team <debian-release@lists.debian.org>, Debian FTP Master <ftpmaster@debian.org>, kibi@debian.org, hmh@debian.org

Hi

While I realize there are much of changes going on unstable, I still
would like to upload linux version (6.7.9-2) (yes no new upstream
version) mitigating the Register File Data Sampling (RFDS)
vulnerability (CVE-2023-28746).

This goes along with a intel-microcode update which already was
uploaded to unstable:
https://tracker.debian.org/news/1511674/accepted-intel-microcode-3202403121-source-into-unstable/

  * [x86] Mitigate Register File Data Sampling (RFDS) vulnerability
    (CVE-2023-28746):
    - x86/mmio: Disable KVM mitigation when X86_FEATURE_CLEAR_CPU_BUF is set
    - Documentation/hw-vuln: Add documentation for RFDS
    - x86/rfds: Mitigate Register File Data Sampling (RFDS)
    - KVM/x86: Export RFDS_NO and RFDS_CLEAR to guests

Regards,
Salvatore

Attachment: signature.asc
Description: PGP signature

Reply to:

Prev by Date: linux-signed-amd64_6.6.13+1~bpo12+1_source.changes ACCEPTED into stable-backports
Next by Date: Bug#1033663:
Previous by thread: linux-signed-amd64_6.6.13+1~bpo12+1_source.changes ACCEPTED into stable-backports
Next by thread: Bug#1062968: initramfs-tools-core: Use zstdmt instead of zstd by default
Index(es):
- Date
- Thread