[kernel-sec-discuss] [Git][kernel-team/kernel-sec][master] Note Spectre mitigations in 3.2.101 and 3.16.56

Ben Hutchings gitlab at salsa.debian.org
Mon Mar 19 20:05:08 UTC 2018 

Ben Hutchings pushed to branch master at Debian kernel team / kernel-sec


Commits:
a78005b8 by Ben Hutchings at 2018-03-19T20:05:02+00:00
Note Spectre mitigations in 3.2.101 and 3.16.56

- - - - -


2 changed files:

- active/CVE-2017-5715
- active/CVE-2017-5753


Changes:

=====================================
active/CVE-2017-5715
=====================================
--- a/active/CVE-2017-5715
+++ b/active/CVE-2017-5715
@@ -18,11 +18,13 @@ Notes:
  carnil> with retpoline support.
  carnil> 4.9.82-1+deb9u1 upload enforces a dependency on the used
  carnil> compiler with retpoline support.
+ bwh> 3.2.101 and 3.16.56 stable branches have retpoline support, but
+ bwh> microcode support is TBD.
 Bugs:
 upstream: released (4.15-rc8)
 4.9-upstream-stable: released (4.9.77)
-3.16-upstream-stable: needed
-3.2-upstream-stable: needed
+3.16-upstream-stable: released (3.16.56)
+3.2-upstream-stable: released (3.2.101)
 sid: released (4.14.17-1)
 4.9-stretch-security: released (4.9.82-1+deb9u1)
 3.16-jessie-security: needed


=====================================
active/CVE-2017-5753
=====================================
--- a/active/CVE-2017-5753
+++ b/active/CVE-2017-5753
@@ -6,6 +6,7 @@ Notes:
  carnil> "kvm: vmx: Scrub hardware GPRs at VM-exit" in 4.15-rc7
  carnil> Further work went in in 4.16-rc1, 4.15.2 and 4.9.81 and following
  carnil> for mitigations (Mitigation: __user pointer sanitization).
+ bwh> Same mitigations are included in 3.2.101 and 3.16.56.
 Bugs:
 upstream: needed
 4.9-upstream-stable: needed



View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/a78005b8413301205f69dd854eaaf93f7ad82c6c

---
View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/a78005b8413301205f69dd854eaaf93f7ad82c6c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/kernel-sec-discuss/attachments/20180319/4ee36a67/attachment.html>

More information about the kernel-sec-discuss mailing list