Package: src:linux Version: 4.9.110-3+deb9u4 Severity: important Tags: patch
Dear Maintainer, due to an off-by-one bug in the L1TF patch, the "rare" case of systems still vulnerable is more frequent. Originally this was reported in OpenSUSE, but I can confirm this is also true with the latest Debian kernel. Please cherry-pick the following upstream patch to resolve this issue: https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=b0a182f875689647b014bc01d36b340217792852 Best regards, Markus