Package: release.debian.org
Severity: normal
Tags: bookworm
User: release.debian@packages.debian.org
Usertags: pu
[ Reason ]
In oder to fix CVE-2023-31022 we need to upgrade
nvidia-graphics-drivers-tesla-470 to a new upstream release.
[ Impact ]
A proprietary graphics driver with more CVEs open.
[ Tests ]
Only module building has been tested. Anything else would require
certain hardware and driver usage.
[ Risks ]
Low. Upgrading to a new nvidia driver release in (old-)stable is an
established procedure.
[ Checklist ]
[*] *all* changes are documented in the d/changelog
[*] I reviewed all changes and I approve them
(excluding the blobs)
[*] attach debdiff against the package in (old)stable
(excluding the blobs)
[*] the issue is verified as fixed in unstable
[ Changes ]
There is infrastructure prepared for a new binary package
(nvidia-suspend-common) that will not yet be enabled in the backport for
bookworm (but it is built in sid from the -tesla package).
(I expect that to be enabled once we switch to the 535 series in
bookworm.)
The nvidia-powerd package is not built from this source but from the
-tesla package. The changes were synced from there.
There are only minor additional packaging changes, most changes
originate from keeping the many driver packages in sync.
debian/README.source|
9 +-
debian/changelog|
175
debian/control |
2 +-
debian/control.in |
13 ++-
debian/control.md5sum |
8 +-
debian/copyright|
3 +-
debian/detect/nvidia-tesla.ids |
4 +
debian/not-installed.in |
14 ++-
debian/nv-readme.ids|
4 +
debian/nvidia-options.conf.in |
12 ++-
debian/nvidia-powerd.examples |
2 +
debian/nvidia-powerd.install|
2 +-
debian/nvidia-suspend-common.install|
5 ++
debian/nvidia-suspend-common.lintian-overrides |
18
.../patches/module/0001-bump-minimum-supported-kernel-version-to-3.10.patch |
4 +-
.../module/0002-conftest.sh-remove-empty-lines-from-uts_release-outp.patch |
6 +-
debian/patches/module/0010-backport-pci-dma-changes-for-ppc64el.patch |
68 --
debian/patches/module/bashisms.patch|
2 +-
debian/patches/module/cc_version_check-gcc5.patch |
2 +-
debian/patches/module/conftest-verbose.patch|
8 +-
debian/patches/module/series.in |
1 -
debian/rules|
12 ++-
debian/rules.defs |
6 +-
debian/xserver-xorg-video-nvidia.examples |
1 -
24 files changed, 259 insertions(+), 122 deletions(-)
[ Other info ]
This is a rebuild of the package from sid with only a minimal change:
not enabling nvidia-suspend-common.
Andreas
ngd-525.147.05-1~deb12u1.diff.xz
Description: application/xz