* CVE-2019-1125
- x86/cpufeatures: Carve out CQM features retrieval
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word
- x86/speculation: Prepare entry code for Spectre v1 swapgs mitigations
- x86/speculation: Enable Spectre v1 swapgs mitigations
- x86/entry/64: Use JMP instead of JMPQ
- x86/speculation/swapgs: Exclude ATOMs from speculation through SWAPGS
This bug was fixed in the package linux-aws - 4.15.0-1045.47
---------------
linux-aws (4.15.0-1045.47) bionic; urgency=medium
* CVE-2019-1125 /swapgs: Exclude ATOMs from speculation through SWAPGS
- x86/cpufeatures: Carve out CQM features retrieval
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word
- x86/speculation: Prepare entry code for Spectre v1 swapgs mitigations
- x86/speculation: Enable Spectre v1 swapgs mitigations
- x86/entry/64: Use JMP instead of JMPQ
- x86/speculation
* CVE-2018-12126 // CVE-2018-12127 // CVE-2018-12130 // CVE-2019-11091
- SAUCE: Synchronize MDS mitigations with upstream
* add support for Amazon Graviton PCIe controller (LP: #1834962)
- PCI: al: Add Amazon Annapurna Labs PCIe host controller driver
- SAUCE: [aws] irqchip/gic-v2m: invoke from gic-v3 initialization and add acpi
quirk flow
- SAUCE: [aws] arm64: acpi/pci: invoke _DSM whether to preserve firmware PCI
setup
* linux-aws builds modules which are not shipped (LP: #1836706)
- [Packaging] Start shipping modules-extra
-- Kleber Sacilotto de Souza <email address hidden> Fri, 02 Aug 2019 14:16:59 +0200