ubuntu/+source/amd64-microcode:applied/debian/wheezy

Last commit made on 2016-04-02
Get this branch:
git clone -b applied/debian/wheezy https://git.launchpad.net/ubuntu/+source/amd64-microcode
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/debian/wheezy
Repository:
lp:ubuntu/+source/amd64-microcode

Recent commits

0b6098f... by Henrique de Moraes Holschuh on 2016-03-19

Import patches-applied version 1.20160316.1 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 8a6fcca4ce8070eea04421e7ed3d96c533d23510
Unapplied parent: 85d4866131083c279cd1e6fd600f1af2dd289e99

New changelog entries:
  * Upstream release 20160316 built from linux-firmware:
    + Updated Microcodes:
      sig 0x00600f20, patch id 0x0600084f, 2016-01-25
    + This microcode updates fixes a critical erratum on NMI handling
      introduced by microcode patch id 0x6000832 from the 20141028 update.
      The erratum is also present on microcode patch id 0x6000836.
    + THIS IS A CRITICAL STABILITY AND SECURITY UPDATE FOR THE EARLIER
      AMD PILEDRIVER PROCESSORS, including:
      + AMD Opteron 3300, 4300, 6300
      + AMD FX "Vishera" (43xx, 63xx, 83xx, 93xx, 95xx)
      + AMD processors with family 21, model 2, stepping 0
  * Robert Święcki, while fuzzing the kernel using the syzkaller tool,
    uncovered very strange behavior on an AMD FX-8320, later reproduced on
    other AMD Piledriver model 2, stepping 0 processors including the Opteron
    6300. Robert discovered, using his proof-of-concept exploit code, that
    the incorrect behavior allows an unpriviledged attacker on an unpriviledged
    VM to corrupt the return stack of the host kernel's NMI handler. At best,
    this results in unpredictable host behavior. At worst, it allows for an
    unpriviledged user on unpriviledged VM to carry a sucessful host-kernel
    ring 0 code injection attack.
  * The erratum is timing-dependant, easily triggered by workloads that
    cause a high number of NMIs, such as running the "perf" tool.

85d4866... by Henrique de Moraes Holschuh on 2016-03-19

Import patches-unapplied version 1.20160316.1 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: b59ee273ed3bcda6f1fa15a65f3a4dbc779ba725

New changelog entries:
  * Upstream release 20160316 built from linux-firmware:
    + Updated Microcodes:
      sig 0x00600f20, patch id 0x0600084f, 2016-01-25
    + This microcode updates fixes a critical erratum on NMI handling
      introduced by microcode patch id 0x6000832 from the 20141028 update.
      The erratum is also present on microcode patch id 0x6000836.
    + THIS IS A CRITICAL STABILITY AND SECURITY UPDATE FOR THE EARLIER
      AMD PILEDRIVER PROCESSORS, including:
      + AMD Opteron 3300, 4300, 6300
      + AMD FX "Vishera" (43xx, 63xx, 83xx, 93xx, 95xx)
      + AMD processors with family 21, model 2, stepping 0
  * Robert Święcki, while fuzzing the kernel using the syzkaller tool,
    uncovered very strange behavior on an AMD FX-8320, later reproduced on
    other AMD Piledriver model 2, stepping 0 processors including the Opteron
    6300. Robert discovered, using his proof-of-concept exploit code, that
    the incorrect behavior allows an unpriviledged attacker on an unpriviledged
    VM to corrupt the return stack of the host kernel's NMI handler. At best,
    this results in unpredictable host behavior. At worst, it allows for an
    unpriviledged user on unpriviledged VM to carry a sucessful host-kernel
    ring 0 code injection attack.
  * The erratum is timing-dependant, easily triggered by workloads that
    cause a high number of NMIs, such as running the "perf" tool.

8a6fcca... by Henrique de Moraes Holschuh on 2015-01-20

Import patches-applied version 1.20141028.1 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: c978c0341d62c977a807ac074c192f4475a3d3d2
Unapplied parent: b59ee273ed3bcda6f1fa15a65f3a4dbc779ba725

New changelog entries:
  * Upstream release 20141028 built from linux-firmware
    + Updated microcode patches for family 0x15 processors
    + Added microcode patches for family 0x16 processors
  * AMD did not update the relevant microcode documentation (errata fixed,
    microcode patch levels, etc) for the 20141028 release, so there is no
    documentation for the family 0x16 microcode patches, and the
    documentation for the family 0x15 microcode patches is stale.
  * Upstream release 20131007 built from linux-firmware
    + updated microcode:
      sig 0x00500F10, id 0x05000029: erratum (+) 784;
      sig 0x00500F20, id 0x05000119: erratum (+) 784;
      sig 0x00600F12, id 0x0600063D: errata (-) 668, (+) 759, 778;
    + new microcode:
      sig 0x00200F31, id 0x02000032: errata 311, 316;
      sig 0x00600F20, id 0x06000822: errata 691, 699, 704, 708, 709, 734,
          740, 778;
    + This update fixes important processor bugs that cause data corruption
      or unpredictable system behaviour. It also fixes a performance issue
      and several issues that cause system lockup.
  * Switch to native package, since there is no upstream tarball
  * debian/copyright: update upstream URL (Closes: #753593)
  * debian/copyright: update with new license
  * debian/install: all _fam microcode files for install
  * docs: use glob pattern for _fam* README
  * control: remove homepage and update standards-version

b59ee27... by Henrique de Moraes Holschuh on 2015-01-20

Import patches-unapplied version 1.20141028.1 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: da73420ae9074cca6f5236408f7048ffc78c9740

New changelog entries:
  * Upstream release 20141028 built from linux-firmware
    + Updated microcode patches for family 0x15 processors
    + Added microcode patches for family 0x16 processors
  * AMD did not update the relevant microcode documentation (errata fixed,
    microcode patch levels, etc) for the 20141028 release, so there is no
    documentation for the family 0x16 microcode patches, and the
    documentation for the family 0x15 microcode patches is stale.
  * Upstream release 20131007 built from linux-firmware
    + updated microcode:
      sig 0x00500F10, id 0x05000029: erratum (+) 784;
      sig 0x00500F20, id 0x05000119: erratum (+) 784;
      sig 0x00600F12, id 0x0600063D: errata (-) 668, (+) 759, 778;
    + new microcode:
      sig 0x00200F31, id 0x02000032: errata 311, 316;
      sig 0x00600F20, id 0x06000822: errata 691, 699, 704, 708, 709, 734,
          740, 778;
    + This update fixes important processor bugs that cause data corruption
      or unpredictable system behaviour. It also fixes a performance issue
      and several issues that cause system lockup.
  * Switch to native package, since there is no upstream tarball
  * debian/copyright: update upstream URL (Closes: #753593)
  * debian/copyright: update with new license
  * debian/install: all _fam microcode files for install
  * docs: use glob pattern for _fam* README
  * control: remove homepage and update standards-version

c978c03... by Henrique de Moraes Holschuh on 2012-10-09

Import patches-applied version 1.20120910-2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: e449a2166d413d6a26391b1369a6339444b59df0
Unapplied parent: da73420ae9074cca6f5236408f7048ffc78c9740

New changelog entries:
  * initramfs: work around initramfs-tools bug #688794.
    Use "_" in place of "+-." for the initramfs script name. This works
    around a PANIC during boot when the initramfs was created in a system
    with noexec $TMPDIR.

da73420... by Henrique de Moraes Holschuh on 2012-10-09

Import patches-unapplied version 1.20120910-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d7d8c06a61ac60753ce98ef3b0bfb63b5a368d31

New changelog entries:
  * initramfs: work around initramfs-tools bug #688794.
    Use "_" in place of "+-." for the initramfs script name. This works
    around a PANIC during boot when the initramfs was created in a system
    with noexec $TMPDIR.

e449a21... by Henrique de Moraes Holschuh on 2012-09-14

Import patches-applied version 1.20120910-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: ea65d04e5dd6c2cf97e31c23e765174558fe9507
Unapplied parent: d7d8c06a61ac60753ce98ef3b0bfb63b5a368d31

New changelog entries:
  * AMD microcode release 20120910
    + updated microcode:
      sig 0x00600F12, id 0x06000629: errata (+) 691, 709, 740;
    + new microcode:
      sig 0x00610F01, id 0x06001119: errata 671, 686, 697, 698, 699, 704, 709,
          734, 740;
    + This update adds critical errata fixes for commonly used features.
      The hit probability of these errata is unknown to the Debian maintainer.
  * README.Debian: mention module-init-tools, not just kmod. This is useful
    when backporting to Debian Squeeze
  * debian/control: add Vcs-* fields

d7d8c06... by Henrique de Moraes Holschuh on 2012-09-14

Import patches-unapplied version 1.20120910-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 4d44ccb0363199f5a4e7dae34192cb295b6a21db

New changelog entries:
  * AMD microcode release 20120910
    + updated microcode:
      sig 0x00600F12, id 0x06000629: errata (+) 691, 709, 740;
    + new microcode:
      sig 0x00610F01, id 0x06001119: errata 671, 686, 697, 698, 699, 704, 709,
          734, 740;
    + This update adds critical errata fixes for commonly used features.
      The hit probability of these errata is unknown to the Debian maintainer.
  * README.Debian: mention module-init-tools, not just kmod. This is useful
    when backporting to Debian Squeeze
  * debian/control: add Vcs-* fields

ea65d04... by Henrique de Moraes Holschuh on 2012-07-10

Import patches-applied version 1.20120117-2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: b0c1bb41dbabcab02cbb7d7474065119fc4370bf
Unapplied parent: 4d44ccb0363199f5a4e7dae34192cb295b6a21db

New changelog entries:
  * debian/control: priority of this package should be standard,
    not extra. All AMD-based X86 boxes should install this package
  * debian/control: update package description
  * Update ABI (first component of package version) to 1, to match
    the ABI of intel-microcode packages with /lib/firmware support
  * Update online processor cores and the initramfs image on package
    upgrade and the initramfs on package removal
  * Install initramfs-tools helpers to handle boot-time microcode
    updates
  * README.Debian: describe supported mod/built-in configs

4d44ccb... by Henrique de Moraes Holschuh on 2012-07-10

Import patches-unapplied version 1.20120117-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d0d945335153e0cf29ed9c8fef5d9d673c7279e5

New changelog entries:
  * debian/control: priority of this package should be standard,
    not extra. All AMD-based X86 boxes should install this package
  * debian/control: update package description
  * Update ABI (first component of package version) to 1, to match
    the ABI of intel-microcode packages with /lib/firmware support
  * Update online processor cores and the initramfs image on package
    upgrade and the initramfs on package removal
  * Install initramfs-tools helpers to handle boot-time microcode
    updates
  * README.Debian: describe supported mod/built-in configs