Re: Linux-libre-4.1.x is EOL. Any objection to removing it?

Hi Mark, Ludovic Courtès writes: > Mark H Weaver skribis: > >> Linux-libre-4.1.x has reached end-of-life, so it will no longer receive >> security updates from upstream. Any objections to removing it? > > No objections from me. Also none from me. Please remove it. Thank you! -- Ricardo

Re: Linux-libre-4.1.x is EOL. Any objection to removing it?

Mark H Weaver skribis: > Linux-libre-4.1.x has reached end-of-life, so it will no longer receive > security updates from upstream. Any objections to removing it? No objections from me. Thanks, Ludo’.

Linux-libre-4.1.x is EOL. Any objection to removing it?

Linux-libre-4.1.x has reached end-of-life, so it will no longer receive security updates from upstream. Any objections to removing it? Mark

Re: linux-libre@4.1 lacks Stack Clash mitigation; reaches EOL soon

Mark H Weaver writes: > linux-4.1.42 has just been released, which includes a backport of the > Stack Clash mitigation. Hopefully the corresponding linux-libre release > will be out in the next day or so. I just pushed the update to linux-libre-4.1.42. Mark

Re: linux-libre@4.1 lacks Stack Clash mitigation; reaches EOL soon

lar to commit 91c623aae0f10992aa46957b9072679534e4cd28, but applied only to linux-libre-4.1. Mark

linux-libre@4.1 lacks Stack Clash mitigation; reaches EOL soon

Users of linux-libre@4.1 should take notice: I've been unable to find backported patches for CVE-2017-1000364 (Stack Clash mitigation) for linux-4.1. Also, upstream support for that kernel version will reach end-of-life in about a month, so you should plan to migrate to another kernel ve

Re: Any objections to removing linux-libre@4.1?

Ricardo Wurmus writes: > Mark H Weaver writes: > >> Does anyone here still need linux-libre@4.1 in Guix? If not, I'd like >> to remove it. > > Is this not the only version of Linux libre that does not expose the > system clock bug Libreboot users suffer fro

Re: Any objections to removing linux-libre@4.1?

Mark H Weaver writes: > Does anyone here still need linux-libre@4.1 in Guix? If not, I'd like > to remove it. Is this not the only version of Linux libre that does not expose the system clock bug Libreboot users suffer from? I’m still using 4.1 on one of my machines for that rea

Re: Any objections to removing linux-libre@4.1?

pdates to the 'linux-4.1' package they've specified in >> > their GuixSD configuration. >> >> I think they could not fail to notice, because if we removed it, any >> attempt to build a system with linux-libre-4.1 would fail immediately. > > Ah, right. I w

Re: Any objections to removing linux-libre@4.1?

#x27;ve specified in > > their GuixSD configuration. > > I think they could not fail to notice, because if we removed it, any > attempt to build a system with linux-libre-4.1 would fail immediately. Ah, right. I was thinking of `guix package -u .` for out-of-tree packages. signature.asc Description: PGP signature

Re: Any objections to removing linux-libre@4.1?

, because if we removed it, any attempt to build a system with linux-libre-4.1 would fail immediately. Mark

Re: Any objections to removing linux-libre@4.1?

Mark H Weaver skribis: > Does anyone here still need linux-libre@4.1 in Guix? If not, I'd like > to remove it. > > Upstream security updates for it seem to be quite infrequent (2.5 months > between the last two releases), and the recent update to 4.1.40 > neglected to inc

Re: Any objections to removing linux-libre@4.1?

Leo Famulari writes: > On Sun, Jun 04, 2017 at 02:11:39AM -0400, Mark H Weaver wrote: >> Does anyone here still need linux-libre@4.1 in Guix? If not, I'd like >> to remove it. >> >> Upstream security updates for it seem to be quite infrequent (2.5 months >&g

Re: Any objections to removing linux-libre@4.1?

On Sun, Jun 04, 2017 at 02:11:39AM -0400, Mark H Weaver wrote: > Does anyone here still need linux-libre@4.1 in Guix? If not, I'd like > to remove it. > > Upstream security updates for it seem to be quite infrequent (2.5 months > between the last two releases), and the rec

Any objections to removing linux-libre@4.1?

Does anyone here still need linux-libre@4.1 in Guix? If not, I'd like to remove it. Upstream security updates for it seem to be quite infrequent (2.5 months between the last two releases), and the recent update to 4.1.40 neglected to include a fix for CVE-2017-6074, which does not in

Re: [PATCH 1/1] gnu: linux-libre@4.1, linux-libre@4.4, linux-libre@4.9: Fix CVE-2017-6074.

On Mon, Mar 06, 2017 at 11:00:15AM +0100, Ludovic Courtès wrote: > Leo Famulari skribis: > > > * gnu/packages/linux.scm (linux-libre-4.1, linux-libre-4.4, > > linux-libre-4.9): Add patch for CVE-2017-6074. > > If you haven’t done already, please push! Especially since

Re: [PATCH 1/1] gnu: linux-libre@4.1, linux-libre@4.4, linux-libre@4.9: Fix CVE-2017-6074.

Leo Famulari skribis: > * gnu/packages/linux.scm (linux-libre-4.1, linux-libre-4.4, > linux-libre-4.9): Add patch for CVE-2017-6074. If you haven’t done already, please push! Especially since this vulnerability is ranked as “high”. Thank you! Ludo’.

[PATCH 1/1] gnu: linux-libre@4.1, linux-libre@4.4, linux-libre@4.9: Fix CVE-2017-6074.

* gnu/packages/linux.scm (linux-libre-4.1, linux-libre-4.4, linux-libre-4.9): Add patch for CVE-2017-6074. --- gnu/packages/linux.scm | 36 +--- 1 file changed, 33 insertions(+), 3 deletions(-) diff --git a/gnu/packages/linux.scm b/gnu/packages/linux.scm index

Re: Linux-libre 4.1

"Jason Self" writes: > Hello, just wanted to let you know I've made up some kernel > configuration files for 4.1. Just in case you want to use them. > > https://jxself.org/git/?p=kernel-configs.git Already done: http://git.savannah.gnu.org/cgit/guix.git/commit/?id=f3457e7001c44b4455d80c6d44ec92a

Linux-libre 4.1

Hello, just wanted to let you know I've made up some kernel configuration files for 4.1. Just in case you want to use them. https://jxself.org/git/?p=kernel-configs.git signature.asc Description: PGP signature