Hi I'm aiming to upload linux version 5.10.24-1 today or tomorrow. It imports stable versions up to 5.10.24 with an usual round of important bugfixes upstream, and including security fixes for CVE-2021-27363, CVE-2021-27364, CVE-2021-27365, CVE-2021-28038, CVE-2021-28039, CVE-2021-28375 and CVE-2021-28660.
An ABI bump is included.
There are as well a couple of changes on top included, which we think
are still safe at this stage of the release preparation, even though
in hard freeze (and in particular as well because we would need to
rebase to further 5.10.y versions in upcoming bullseye point
releases).
* Bump ABI to 5
* [rt] Refresh "printk: remove logbuf_lock"
* [rt] Refresh "printk: remove safe buffers"
* [rt] Refresh "printk: remove deferred printing"
* [rt] Refresh "mm/memcontrol: Replace local_irq_disable with local locks"
* [rt] Update to 5.10.21-rt34
* Refresh "Include package version along with kernel release in stack
traces"
Those were needed due to the new upstream stable versions import.
* bpf: Prohibit alu ops for pointer types not defining ptr_limit
(CVE-2020-27170)
* bpf: Fix off-by-one for area size in creating mask to left
(CVE-2020-27171)
* bpf: Simplify alu_limit masking for pointer arithmetic
* bpf: Add sanity check for upper ptr_limit
* bpf, selftests: Fix up some test_verifier cases for unprivileged
The bpf fixes were cherry-picked as they are upcoming included for
5.10.25 and are needed to address CVE-2020-27170 and CVE-2020-27171.
The selftest commit is just added for consistency.
There is one change for improving "hardware support", enabling some
PMU event monitoring on arm64, closing #981186, where I asked Wookey
and Vincent if they can confirm. This might be included as well.
Regards,
Salvatore
signature.asc
Description: PGP signature
