I intend to upload linux version 4.18.10-1 to unstable on Monday. This includes two upstream stable updates, including the fix for CVE-2018-17182. There will be an ABI bump (which resolves the FTBFS on arm64 and armhf). The other pending changes are: * debian/rules.real: Generate linux-source tarball with root user and group specified, to fix reproducibility issues. * [arm64] ACPI: Change ACPI_NFIT from built-in to module * [i386/686] Enable MGEODE_LX instead of M686 (regression in 4.16) - x86-32: Disable 3D-Now in generic config * [x86] enable PINCTRL_AMD for touchpad support on Lenovo IdeaPad. * [arm64] Add support for new server hardware (Closes: #900581) * [arm64] acpi: Add fixup for HPE m400 quirks * floppy: Do not copy a kernel pointer to user memory in FDGETPRM ioctl (CVE-2018-7755) * scsi: target: iscsi: Use hex2bin instead of a re-implementation (CVE-2018-14633) * scsi: target: iscsi: Use bin2hex instead of a re-implementation Ben. -- Ben Hutchings Who are all these weirdos? - David Bowie, on joining IRC
Attachment:
signature.asc
Description: This is a digitally signed message part