Bruce, Yocto kernel folks: Here is the *final* 4.18.x stable update "extension" primarily created for the Yocto project, continuing from the previous v4.18.44 release.
This final release closes out a run of 25 releases and about 4600 backports since GregKH stopped maintenance at v4.18.20, just under a year ago. I hope people have found the update extentsions useful during that period; both Yocto users and "vanilla" 4.18.x users alike. I didn't send an announce for 4.18.44, since I wanted to finish this 4.18.x run with the addition of the recent spectre-v1 (swapgs) variant fixes. But I wanted to also keep them separate to ease testing and evaluation for integrators. So the 44 is "normal" content, and the 45 is specific to spectre-v1/swapgs content, basically. More specifically, the 4.18.44 release contains about 235 mainline commits based on what was found in 4.19.51 --> 4.19.55 stable content. The 4.18.45 release contains the swapgs (CVE-2019-1125) content, plus a couple powerpc CVE fixes that caught my eye. The x86 users can check: # cat /sys/devices/system/cpu/vulnerabilities/spectre_v1 Mitigation: usercopy/swapgs barriers and __user pointer sanitization Check Documentation/admin-guide/hw-vuln/spectre.rst for more info. I've put this *final* 4.18.45 queue through the usual testing; build testing on x86-64/32, ARM-64/32, PPC and MIPS, plus some static analysis and finally some sanity runtime tests on x86-64. The 4.18.44 release also got the same independent testing prior to starting 4.18.45. I did the signed tag just as per the previously released versions. Please find a signed v4.18.45 tag using this key: http://pgp.mit.edu/pks/lookup?op=vindex&search=0xEBCE84042C07D1D6 in the repo in the kernel.org directory here: https://git.kernel.org/pub/scm/linux/kernel/git/paulg/linux-4.18.y.git/?h=linux-4.18.y git://git.kernel.org/pub/scm/linux/kernel/git/paulg/linux-4.18.y.git for merge to standard/base in linux-yocto-4.18 and then out from there into the other base and BSP branches. For those who are interested, the evolution of the commits is here: https://git.kernel.org/cgit/linux/kernel/git/paulg/longterm-queue-4.18.git/ This repo isn't needed for anything; it just exists for transparency and so people can see the evolution of the raw commits that were originally selected to create this 4.18.x release. Paul. -- _______________________________________________ linux-yocto mailing list linux-yocto@yoctoproject.org https://lists.yoctoproject.org/listinfo/linux-yocto
