From mboxrd@z Thu Jan  1 00:00:00 1970
From: Andrew Cooper <andrew.cooper3@citrix.com>
Subject: [PATCH v8 00/17] x86: Mitigations for
	SP2/CVE-2017-5715/Branch Target Injection
Date: Fri, 12 Jan 2018 18:00:50 +0000
Message-ID: <1515780067-31735-1-git-send-email-andrew.cooper3@citrix.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Return-path: <xen-devel-bounces@lists.xenproject.org>
List-Unsubscribe: <https://lists.xenproject.org/mailman/options/xen-devel>,
 <mailto:xen-devel-request@lists.xenproject.org?subject=unsubscribe>
List-Post: <mailto:xen-devel@lists.xenproject.org>
List-Help: <mailto:xen-devel-request@lists.xenproject.org?subject=help>
List-Subscribe: <https://lists.xenproject.org/mailman/listinfo/xen-devel>,
 <mailto:xen-devel-request@lists.xenproject.org?subject=subscribe>
Errors-To: xen-devel-bounces@lists.xenproject.org
Sender: "Xen-devel" <xen-devel-bounces@lists.xenproject.org>
To: Xen-devel <xen-devel@lists.xen.org>
Cc: Andrew Cooper <andrew.cooper3@citrix.com>
List-Id: xen-devel@lists.xenproject.org
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