diff options
Diffstat (limited to '')
-rw-r--r-- | debian/changelog | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog index 8e667a8fc..1381a45e7 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,25 @@ +linux (4.19.289-2) buster-security; urgency=high + + * [x86] Add mitigations for Gather Data Sampling (GDS) (CVE-2022-40982) + - init: Provide arch_cpu_finalize_init() + - x86/cpu: Switch to arch_cpu_finalize_init() + - ARM: cpu: Switch to arch_cpu_finalize_init() + - init: Remove check_bugs() leftovers + - init: Invoke arch_cpu_finalize_init() earlier + - init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init() + - x86/fpu: Remove cpuinfo argument from init functions + - x86/fpu: Mark init functions __init + - x86/fpu: Move FPU initialization into arch_cpu_finalize_init() + - x86/speculation: Add Gather Data Sampling mitigation + - x86/speculation: Add force option to GDS mitigation + - x86/speculation: Add Kconfig option for GDS + - KVM: Add GDS_NO support to KVM + - x86/xen: Fix secondary processors' FPU initialization + - Documentation/x86: Fix backwards on/off logic about YMM support + * [x86] cpu: Avoid ABI change for GDS mitigations + + -- Ben Hutchings <benh@debian.org> Tue, 08 Aug 2023 04:35:25 +0200 + linux (4.19.289-1progress5u1) engywuck-security; urgency=high * Uploading to engywuck-security, remaining changes: |