Copied from
Canonical Kernel Security Proposed
by Andy Whitcroft
Originally uploaded to
ubuntu bionic in
Canonical Kernel Security PPA
Changelog
linux-kvm (4.15.0-1122.127) bionic; urgency=medium
[ Ubuntu: 4.15.0-187.198 ]
* CVE-2022-21123 // CVE-2022-21125 // CVE-2022-21166
- x86/cpu: Add Elkhart Lake to Intel family
- cpu/speculation: Add prototype for cpu_show_srbds()
- x86/cpu: Add Jasper Lake to Intel family
- x86/cpu: Add Lakefield, Alder Lake and Rocket Lake models to the to Intel
CPU family
- x86/cpu: Add another Alder Lake CPU to the Intel family
- Documentation: Add documentation for Processor MMIO Stale Data
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug
- x86/speculation: Add a common function for MD_CLEAR mitigation update
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data
- x86/speculation/srbds: Update SRBDS mitigation selection
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS
- KVM: x86/speculation: Disable Fill buffer clear within guests
- x86/speculation/mmio: Print SMT warning
-- Thadeu Lima de Souza Cascardo <email address hidden> Mon, 13 Jun 2022 19:29:34 -0300