Uploading linux (5.15.5-2)

To: Debian kernel maintainers <debian-kernel@lists.debian.org>
Cc: Debian release team <debian-release@lists.debian.org>, Debian FTP Master <ftpmaster@debian.org>, kibi@debian.org
Subject: Uploading linux (5.15.5-2)
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sun, 19 Dec 2021 00:19:29 +0100
Message-id: <[🔎] Yb5sgcuE9cp0XqwU@eldamar.lan>
Mail-followup-to: Debian kernel maintainers <debian-kernel@lists.debian.org>, Debian release team <debian-release@lists.debian.org>, Debian FTP Master <ftpmaster@debian.org>, kibi@debian.org

Hi

I would like to upload linux version 5.15.5-2 to unstable later today.
It does not contain rebases to newer 5.15.y version, which will follow
later. The update cherry-picks a couple of fixes which were present in
5.15.7, 5.15.8 and queued for 5.15.11:

   * atlantic: Fix OOB read and write in hw_atl_utils_fw_rpc_wait
     (CVE-2021-43975)
   * fget: check that the fd still exists after getting a ref to it
     (CVE-2021-4083)
   * USB: gadget: detect too-big endpoint 0 requests (CVE-2021-39685)
   * USB: gadget: zero allocate endpoint 0 buffers (CVE-2021-39685)
   * [x86] Revert "drm/i915: Implement Wa_1508744258" (Closes: #1001128)
   * nfsd: fix use-after-free due to delegation race (Closes: #988044)
   * bpf: Fix kernel address leakage in atomic fetch
   * bpf: Fix signed bounds propagation after mov32
   * bpf: Make 32->64 bounds propagation slightly more robust
   * bpf: Fix kernel address leakage in atomic cmpxchg's r0 aux reg

Regards,
Salvatore

Attachment: signature.asc
Description: PGP signature

Reply to:

Prev by Date: Bug#1001474: marked as done (bullseye-pu: package bpftrace/0.11.3-5)
Next by Date: Bug#996997: marked as done (buster-pu: Cleaning up the http-parser ABI breakage in Debian 10 ("buster"))
Previous by thread: Bug#1000785: marked as done (bullseye-pu: package curl/7.74.0-1.3+deb11u1)
Next by thread: Bug#1001749: rust-cbindgen 0.20.0-1~deb10u1 flagged for acceptance
Index(es):
- Date
- Thread