Back to linux PTS page

Accepted linux 5.10.46-5 (source) into proposed-updates->stable-new, proposed-updates

To: debian-changes@lists.debian.org
Subject: Accepted linux 5.10.46-5 (source) into proposed-updates->stable-new, proposed-updates
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Sat, 25 Sep 2021 22:02:07 +0000
Mail-followup-to: debian-devel@lists.debian.org
Message-id: <E1mUFkF-000BoB-Nz@fasolo.debian.org>
Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 23 Sep 2021 22:35:21 +0200
Source: linux
Architecture: source
Version: 5.10.46-5
Distribution: bullseye-security
Urgency: high
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Closes: 993948 993978
Changes:
 linux (5.10.46-5) bullseye-security; urgency=high
 .
   * virtio_console: Assure used length from device is limited (CVE-2021-38160)
   * NFSv4: Initialise connection to the server in nfs4_alloc_client()
     (CVE-2021-38199)
   * tracing: Fix bug in rb_per_cpu_empty() that might cause deadloop.
     (CVE-2021-3679)
   * [poewrpc*] KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow
     (CVE-2021-37576)
   * ovl: prevent private clone if bind mount is not allowed (CVE-2021-3732)
   * [x86] KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl
     (CVE-2021-3653)
   * [x86] KVM: nSVM: always intercept VMLOAD/VMSAVE when nested (CVE-2021-3656)
   * bpf: Fix integer overflow involving bucket_size (CVE-2021-38166)
   * ath: Use safer key clearing with key cache entries (CVE-2020-3702)
   * ath9k: Clear key cache explicitly on disabling hardware (CVE-2020-3702)
   * ath: Export ath_hw_keysetmac() (CVE-2020-3702)
   * ath: Modify ath_key_delete() to not need full key entry (CVE-2020-3702)
   * ath9k: Postpone key cache entry deletion for TXQ frames reference it
     (CVE-2020-3702)
   * btrfs: fix NULL pointer dereference when deleting device by invalid id
     (CVE-2021-3739)
   * net: qrtr: fix another OOB Read in qrtr_endpoint_post (CVE-2021-3743)
   * vt_kdsetmode: extend console locking (CVE-2021-3753)
   * ext4: fix race writing to an inline_data file while its xattrs are changing
     (CVE-2021-40490)
   * dccp: don't duplicate ccid when cloning dccp sock (CVE-2020-16119)
   * io_uring: ensure symmetry in handling iter types in loop_rw_iter()
     (CVE-2021-41073)
   * netfilter: nftables: avoid potential overflows on 32bit arches
   * netfilter: nf_tables: initialize set before expression setup
     (Closes: #993978)
   * netfilter: nftables: clone set element expression template
   * bnx2x: Fix enabling network interfaces without VFs (Closes: #993948)
Checksums-Sha1:
 d1458c7326ce4332617212e98a983ac139344ba1 195000 linux_5.10.46-5.dsc
 28d0ba1a26c98af40cd304a2dbbb9e7c03f2d172 121572512 linux_5.10.46.orig.tar.xz
 4085ce547e614c23d59041a078bc5652c0df1db5 4390148 linux_5.10.46-5.debian.tar.xz
 ff3a78a06e7ae519192ad245030dfa58acaa0b95 6274 linux_5.10.46-5_source.buildinfo
Checksums-Sha256:
 faddec22b3f6d13ec8b86f54449307c424252abe4b155672b28501dafb26474f 195000 linux_5.10.46-5.dsc
 bcd8edcbc6ed21d93dc138a754b1ac08329452c2ea509ae2a4071cd521da38a3 121572512 linux_5.10.46.orig.tar.xz
 89b2f8dae10a1b167b2579eab73ddef07b713bb3dd96ed566538031466bf5c81 4390148 linux_5.10.46-5.debian.tar.xz
 1837fad0a852eb9c0dd57fc023bb056b05bc131e6a02f85bf961b906b1cdf1c4 6274 linux_5.10.46-5_source.buildinfo
Files:
 7c32c30fb6f87698983b725febb45572 195000 kernel optional linux_5.10.46-5.dsc
 20074caf4bbf7773920f6e5f08beb771 121572512 kernel optional linux_5.10.46.orig.tar.xz
 7fbaae18cabdac77a69b9de7299807b8 4390148 kernel optional linux_5.10.46-5.debian.tar.xz
 eda90cb533c6861c00b15a0d70a656dc 6274 kernel optional linux_5.10.46-5_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmFM5b9fFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk
ZWJpYW4ub3JnAAoJEAVMuPMTQ89EnawP/jnqcsJc2V5T7hnTwPKVd0buBGuBZhKG
WRTPy3/vzZPtC8Lakoc8Jr6QCoJfsRgPbrLP8cALujnZJMGGoJBzRYABAoitoDY5
1NxEzPuGe7dOo0SJ73x/9uWjmERelyoglTY5+pr6+R4bh9rg/d3nIzheajL9PgCR
OGDpvuR/I0RB3r0xn9UaiFiMoqNiL5SDtbB6TZNRkMMFvQDBoMcVPERUbhT2FMsO
6U1LOdGaTASkI8M2ZDQgySUlO20FGNE+D98p2KTXlxjSKFMdw/fIFdCYwX2eLoQ/
Ys9rVD6FIsrfAI/7uZ7yrO4URPCjmH9Po2yRVBrk13+dNmBG3Y22G1rcopPiLug2
YW/HhWeQ0QYtFknG1txeQuT+81Zxezu/9QjBZPdhi74Sjw7FzxfJwJKjdw5x8TMe
/W3hqJ9cPD1KiiI1xPVEf5WP7uY/M9hE53qv2MPc4XVT3Y5mWJBpZqBnVS6pGJc7
nHf25fXhpN0lLSPw6NGbcBr2JFswrKXIGOAGB05O06SgS2g8ChCiJOM6Qfb0TMno
w/tKkGI3ZegUYM0qveGpmimbBmUDGksH7MIBV3w3TyyECo2UI+Cfn6je3etXk4gS
0ei78jAlxdURdk57tKw4eEiQ+U/6TOgD6g6QIr6hfh6g4nPOmmxQND1yY+XfTaNZ
XMKyDaVx/0cs
=F4Sw
-----END PGP SIGNATURE-----