Mapping stable-security to proposed-updates.
Accepted:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 08 Aug 2019 03:02:38 +0100
Source: linux
Architecture: source
Version: 4.19.37-5+deb10u2
Distribution: buster-security
Urgency: high
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Ben Hutchings <b...@decadent.org.uk>
Changes:
linux (4.19.37-5+deb10u2) buster-security; urgency=high
.
[ Romain Perier ]
* [x86] x86/insn-eval: Fix use-after-free access to LDT entry
(CVE-2019-13233)
* [powerpc*] mm/64s/hash: Reallocate context ids on fork (CVE-2019-12817)
* nfc: Ensure presence of required attributes in the deactivate_target
handler
(CVE-2019-12984)
* binder: fix race between munmap() and direct reclaim (CVE-2019-1999)
* scsi: libsas: fix a race condition when smp task timeout (CVE-2018-20836)
* Input: gtco - bounds check collection indent level (CVE-2019-13631)
* floppy: fix out-of-bounds read in copy_buffer (CVE-2019-14283)
* inet: switch IP ID generator to siphash (CVE-2019-10638)
* floppy: fix div-by-zero in setup_format_params (CVE-2019-14284)
* Bluetooth: hci_uart: check for missing tty operations (CVE-2019-10207)
* [powerpc/tm] Fix oops on sigreturn on systems without TM (CVE-2019-13648)
.
[ Salvatore Bonaccorso ]
* [x86] cpufeatures: Carve out CQM features retrieval
* [x86] cpufeatures: Combine word 11 and 12 into a new scattered features
word
* [x86] speculation: Prepare entry code for Spectre v1 swapgs mitigations
* [x86] speculation: Enable Spectre v1 swapgs mitigations (CVE-2019-1125)
* [amd64] entry: Use JMP instead of JMPQ
* [x86] speculation/swapgs: Exclude ATOMs from speculation through SWAPGS
* Documentation: Add section about CPU vulnerabilities for Spectre
* Documentation: Add swapgs description to the Spectre v1 documentation
.
[ Ben Hutchings ]
* [x86] cpufeatures: Avoid ABI change for swapgs mitigations:
- Move swapgs feature bits to existing scattered words
- Revert "x86/cpufeatures: Combine word 11 and 12 into a new scattered
features word"
* inet: Avoid ABI change for IP ID hash change
Checksums-Sha1:
c3b3ccecdd6c928053829cd2f8fb6f32c5e5c118 189156 linux_4.19.37-5+deb10u2.dsc
3fbf3f021eaae00f14ca6b092af6b8690b027c6a 4282720
linux_4.19.37-5+deb10u2.debian.tar.xz
138e91c6ab9be276d3f8db3647a5ee3f17d394fa 47476
linux_4.19.37-5+deb10u2_source.buildinfo
Checksums-Sha256:
6404682ba9e10f97a5f65769cc7ae545a1bed6ed36e4a69029f6da701b5a9e05 189156
linux_4.19.37-5+deb10u2.dsc
184d823c07916f897b2359aa5592e4e524eb2f517bf261400b875b2882b8ac3c 4282720
linux_4.19.37-5+deb10u2.debian.tar.xz
d986663ba92f7067e461cb32cab9c7e4481b63519c60e5b8eabc068e552bff9a 47476
linux_4.19.37-5+deb10u2_source.buildinfo
Files:
f1dab83dfb3803315d809c587fa1b5f7 189156 kernel optional
linux_4.19.37-5+deb10u2.dsc
6bfdbe3daba6f54e0c92a5dcfdb39534 4282720 kernel optional
linux_4.19.37-5+deb10u2.debian.tar.xz
aa9bf0fec55dfa8a22623d1da4e7fb96 47476 kernel optional
linux_4.19.37-5+deb10u2_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=zDyi
-----END PGP SIGNATURE-----
Thank you for your contribution to Debian.
