From 430d174f3dc8b6d0e43103e3a03e06a0a107e660 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Thu, 11 Aug 2022 21:30:47 +0200 Subject: Track fixes in 4.19.255, 5.10.136, 5.18.17 and 5.19.1 --- active/CVE-2022-26373 | 5 +++-- active/CVE-2022-36946 | 2 +- 2 files changed, 4 insertions(+), 3 deletions(-) diff --git a/active/CVE-2022-26373 b/active/CVE-2022-26373 index 16b9aa71..ab97b442 100644 --- a/active/CVE-2022-26373 +++ b/active/CVE-2022-26373 @@ -3,10 +3,11 @@ References: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00706.html https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/advisory-guidance/post-barrier-return-stack-buffer-predictions.html Notes: + carnil> Fixed as well in 5.18.17 for 5.18.y and 5.19.1 for 5.19.y. Bugs: upstream: pending [2b1299322016731d56807aa49254a5ea3080b6b3, ba6e31af2be96c4d0536f2152ed6f7b6c11bca47] -5.10-upstream-stable: needed -4.19-upstream-stable: needed +5.10-upstream-stable: released (5.10.136) [509c2c9fe75ea7493eebbb6bb2f711f37530ae19, 1bea03b44ea2267988cce064f5887b01d421b28c] +4.19-upstream-stable: released (4.19.255) [b6c5011934a15762cd694e36fe74f2f2f93eac9b, b1c9f470fb724d3cfd6cf8fe4a70c2ec4de2e9f4] sid: released (5.18.16-1) [bugfix/x86/pbrsb/0001-x86-speculation-Add-RSB-VM-Exit-protections.patch, bugfix/x86/pbrsb/0002-x86-speculation-Add-LFENCE-to-RSB-fill-sequence.patch] 5.10-bullseye-security: needed 4.19-buster-security: needed diff --git a/active/CVE-2022-36946 b/active/CVE-2022-36946 index 99c895a8..5118e2a7 100644 --- a/active/CVE-2022-36946 +++ b/active/CVE-2022-36946 @@ -8,7 +8,7 @@ Notes: Bugs: upstream: released (5.19) [99a63d36cb3ed5ca3aa6fcb64cffbeaf3b0fb164] 5.10-upstream-stable: released (5.10.135) [440dccd80f627e0e11ceb0429e4cdab61857d17e] -4.19-upstream-stable: needed +4.19-upstream-stable: released (4.19.255) [f295d365b30626f82423a923695274024016380e] sid: released (5.18.16-1) 5.10-bullseye-security: needed 4.19-buster-security: needed -- cgit v1.2.3