Note the following patches were skipped as they were already applied:
* CIFS: Fix NULL-pointer dereference in smb2_push_mandatory_locks
* crypto: user - fix memory leak in crypto_report
The following patch was reverted in favor of its upstream stable
version:
* KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID
(CVE-2019-19332
** Description changed:
+ SRU Justification
- SRU Justification
+ Impact:
+ The upstream process for stable tree updates is quite similar
+ in scope to the Ubuntu SRU process, e.g., each patch has to
+ demonstrably fix a bug, and each patch is vetted by upstream
+ by originating either directly from a mainline/stable Linux tree or
+ a minimally backported form of that patch. The following upstream
+ stable patches should be included in the Ubuntu kernel:
- Impact:
- The upstream process for stable tree updates is quite similar
- in scope to the Ubuntu SRU process, e.g., each patch has to
- demonstrably fix a bug, and each patch is vetted by upstream
- by originating either directly from a mainline/stable Linux tree or
- a minimally backported form of that patch. The following upstream
- stable patches should be included in the Ubuntu kernel:
+ * x86/apic/32: Avoid bogus LDR warnings
+ * usb: gadget: u_serial: add missing port entry locking
+ * tty: serial: msm_serial: Fix flow control
+ * x86/PCI: Avoid AMD FCH XHCI USB PME# from D0 defect
+ * serial: serial_core: Perform NULL checks for break_ctl ops
+ * serial: ifx6x60: add missed pm_runtime_disable
+ * autofs: fix a leak in autofs_expire_indirect()
+ * NFC: nxp-nci: Fix NULL pointer dereference after I2C communication error
+ * Input: cyttsp4_core - fix use after free bug
+ * ALSA: pcm: Fix stream lock usage in snd_pcm_period_elapsed()
+ * rsxx: add missed destroy_workqueue calls in remove
+ * net: ep93xx_eth: fix mismatch of request_mem_region in remove
+ * serial: core: Allow processing sysrq at port unlock time
+ * iwlwifi: mvm: Send non offchannel traffic via AP sta
+ * ARM: 8813/1: Make aligned 2-byte getuser()/putuser() atomic on ARMv6+
+ * extcon: max8997: Fix lack of path setting in USB device mode
+ * clk: rockchip: fix rk3188 sclk_smc gate data
+ * clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering
+ * dlm: fix missing idr_destroy for recover_idr
+ * MIPS: SiByte: Enable ZONE_DMA32 for LittleSur
+ * scsi: zfcp: drop default switch case which might paper over missing case
+ * pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues
+ * Staging: iio: adt7316: Fix i2c data reading, set the data field
+ * regulator: Fix return value of _set_load() stub
+ * MIPS: OCTEON: octeon-platform: fix typing
+ * math-emu/soft-fp.h: (_FP_ROUND_ZERO) cast 0 to void to fix warning
+ * rtc: max8997: Fix the returned value in case of error in
'max8997_rtc_read_alarm()'
+ * rtc: dt-binding: abx80x: fix resistance scale
+ * ARM: dts: exynos: Use Samsung SoC specific compatible for DWC2 module
+ * dmaengine: coh901318: Fix a double-lock bug
+ * dmaengine: coh901318: Remove unused variable
+ * ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion()
+ * dma-mapping: fix return type of dma_set_max_seg_size()
+ * altera-stapl: check for a null key before strcasecmp'ing it
+ * serial: imx: fix error handling in console_setup
+ * i2c: imx: don't print error message on probe defer
+ * dlm: NULL check before kmem_cache_destroy is not needed
+ * nfsd: fix a warning in __cld_pipe_upcall()
+ * ARM: OMAP1/2: fix SoC name printing
+ * net/x25: fix called/calling length calculation in x25_parse_address_block
+ * net/x25: fix null_x25_address handling
+ * ARM: dts: mmp2: fix the gpio interrupt cell number
+ * tcp: fix off-by-one bug on aborting window-probing socket
+ * modpost: skip ELF local symbols during section mismatch check
+ * kbuild: fix single target build for external module
+ * ARM: dts: pxa: clean up USB controller nodes
+ * dlm: fix invalid cluster name warning
+ * powerpc/math-emu: Update macros from GCC
+ * MIPS: OCTEON: cvmx_pko_mem_debug8: use oldest forward compatible definition
+ * nfsd: Return EPERM, not EACCES, in some SETATTR cases
+ * mlx4: Use snprintf instead of complicated strcpy
+ * ARM: dts: sunxi: Fix PMU compatible strings
+ * sched/fair: Scale bandwidth quota and period without losing quota/period
ratio precision
+ * fuse: verify nlink
+ * fuse: verify attributes
+ * ALSA: pcm: oss: Avoid potential buffer overflows
+ * Input: goodix - add upside-down quirk for Teclast X89 tablet
+ * CIFS: Fix SMB2 oplock break processing
+ * tty: vt: keyboard: reject invalid keycodes
+ * can: slcan: Fix use-after-free Read in slcan_open
+ * jbd2: Fix possible overflow in jbd2_log_space_left()
+ * drm/i810: Prevent underflow in ioctl
+ * KVM: x86: do not modify masked bits of shared MSRs
+ * KVM: x86: fix presentation of TSX feature in ARCH_CAPABILITIES
+ * crypto: crypto4xx - fix double-free in crypto4xx_destroy_sdr
+ * spi: atmel: Fix CS high support
+ * RDMA/qib: Validate ->show()/store() callbacks before calling them
+ * thermal: Fix deadlock in thermal thermal_zone_device_check
+ * Revert "KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID
(CVE-2019-19332)"
+ * KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID (CVE-2019-19332)
+ * appletalk: Fix potential NULL pointer dereference in unregister_snap_client
+ * appletalk: Set error code if register_snap_client failed
+ * ALSA: hda - Fix pending unsol events at shutdown
+ * sched/core: Allow putting thread_info into task_struct
+ * sched/core: Add try_get_task_stack() and put_task_stack()
+ * sched/core, x86: Make struct thread_info arch specific again
+ * fs/proc: Stop reporting eip and esp in /proc/PID/stat
+ * fs/proc: Report eip/esp in /prod/PID/stat for coredumping
+ * proc: fix coredump vs read /proc/*/stat race
+ * fs/proc/array.c: allow reporting eip/esp for all coredumping threads
+ * usb: gadget: configfs: Fix missing spin_lock_init()
+ * usb: Allow USB device to be warm reset in suspended state
+ * staging: rtl8188eu: fix interface sanity check
+ * staging: rtl8712: fix interface sanity check
+ * staging: gigaset: fix general protection fault on probe
+ * staging: gigaset: fix illegal free on probe errors
+ * staging: gigaset: add endpoint-type sanity check
+ * xhci: Increase STS_HALT timeout in xhci_suspend()
+ * iio: humidity: hdc100x: fix IIO_HUMIDITYRELATIVE channel reporting
+ * USB: atm: ueagle-atm: add missing endpoint check
+ * USB: idmouse: fix interface sanity checks
+ * USB: serial: io_edgeport: fix epic endpoint lookup
+ * USB: adutux: fix interface sanity check
+ * usb: core: urb: fix URB structure initialization function
+ * usb: mon: Fix a deadlock in usbmon between mmap and read
+ * mtd: spear_smi: Fix Write Burst mode
+ * virtio-balloon: fix managed page counts when migrating pages between zones
+ * btrfs: check page->mapping when loading free space cache
+ * btrfs: Remove btrfs_bio::flags member
+ * rtlwifi: rtl8192de: Fix missing code to retrieve RX buffer address
+ * rtlwifi: rtl8192de: Fix missing callback that tests for hw release of buffer
+ * rtlwifi: rtl8192de: Fix missing enable interrupt flag
+ * lib: raid6: fix awk build warnings
+ * workqueue: Fix spurious sanity check failures in destroy_workqueue()
+ * workqueue: Fix pwq ref leak in rescuer_thread()
+ * ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report
+ * blk-mq: avoid sysfs buffer overflow with too many CPU cores
+ * cgroup: pids: use atomic64_t for pids->limit
+ * ar5523: check NULL before memcpy() in ar5523_cmd()
+ * media: bdisp: fix memleak on release
+ * media: radio: wl1273: fix interrupt masking on release
+ * cpuidle: Do not unset the driver if it is there already
+ * ACPI: OSL: only free map once in osl.c
+ * ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data()
+ * ACPI: PM: Avoid attaching ACPI PM domain to certain devices
+ * pinctrl: samsung: Fix device node refcount leaks in S3C24xx wakeup
controller init
+ * pinctrl: samsung: Fix device node refcount leaks in init code
+ * powerpc: Allow 64bit VDSO __kernel_sync_dicache to work across ranges >4GB
+ * video/hdmi: Fix AVI bar unpack
+ * quota: Check that quota is not dirty before release
+ * quota: fix livelock in dquot_writeback_dquots
+ * scsi: zfcp: trace channel log even for FCP command responses
+ * usb: xhci: only set D3hot for pci device
+ * xhci: Fix memory leak in xhci_add_in_port()
+ * xhci: make sure interrupts are restored to correct state
+ * iio: adis16480: Add debugfs_reg_access entry
+ * Btrfs: fix negative subv_writers counter and data space leak after buffered
write
+ * scsi: lpfc: Cap NPIV vports to 256
+ * e100: Fix passing zero to 'PTR_ERR' warning in e100_load_ucode_wait
+ * x86/MCE/AMD: Turn off MC4_MISC thresholding on all family 0x15 models
+ * ARM: dts: omap3-tao3530: Fix incorrect MMC card detection GPIO polarity
+ * pinctrl: samsung: Fix device node refcount leaks in S3C64xx wakeup
controller init
+ * scsi: qla2xxx: Fix DMA unmap leak
+ * scsi: qla2xxx: Fix qla24xx_process_bidir_cmd()
+ * scsi: qla2xxx: Always check the qla2x00_wait_for_hba_online() return value
+ * powerpc: Fix vDSO clock_getres()
+ * mm/shmem.c: cast the type of unmap_start to u64
+ * blk-mq: make sure that line break can be printed
+ * workqueue: Fix missing kfree(rescuer) in destroy_workqueue()
+ * sunrpc: fix crash when cache_head become valid before update
+ * kernel/module.c: wakeup processes in module_wq on module unload
+ * net: bridge: deny dev_set_mac_address() when unregistering
+ * tcp: md5: fix potential overestimation of TCP option space
+ * tipc: fix ordering of tipc module init and exit routine
+ * inet: protect against too small mtu values.
+ * tcp: fix rejected syncookies due to stale timestamps
+ * tcp: tighten acceptance of ACKs not matching a child socket
+ * tcp: Protect accesses to .ts_recent_stamp with {READ,WRITE}_ONCE()
+ * net: ethernet: ti: cpsw: fix extra rx interrupt
+ * PCI: Fix Intel ACS quirk UPDCR register address
+ * PCI/MSI: Fix incorrect MSI-X masking on resume
+ * xtensa: fix TLB sanity checker
+ * CIFS: Respect O_SYNC and O_DIRECT flags during reconnect
+ * ARM: dts: s3c64xx: Fix init order of clock providers
+ * ARM: tegra: Fix FLOW_CTLR_HALT register clobbering by tegra_resume()
+ * vfio/pci: call irq_bypass_unregister_producer() before freeing irq
+ * dm btree: increase rebalance threshold in __rebalance2()
+ * drm/radeon: fix r1xx/r2xx register checker for POT textures
+ * xhci: fix USB3 device initiated resume race with roothub autosuspend
+ * net: stmmac: use correct DMA buffer size in the RX descriptor
+ * net: stmmac: don't stop NAPI processing when dropping a packet
+ * Linux 4.4.207
+ * UBUNTU: upstream stable to v4.4.207
- 4.4.207 upstream stable release
- from git://git.kernel.org/
+ 4.4.207 upstream stable release
+ from git://git.kernel.org/
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2019-19332
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1858489
Title:
Xenial update: 4.4.207 upstream stable release
Status in linux package in Ubuntu:
Invalid
Status in linux source package in Xenial:
In Progress
Bug description:
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The following upstream
stable patches should be included in the Ubuntu kernel:
* x86/apic/32: Avoid bogus LDR warnings
* usb: gadget: u_serial: add missing port entry locking
* tty: serial: msm_serial: Fix flow control
* x86/PCI: Avoid AMD FCH XHCI USB PME# from D0 defect
* serial: serial_core: Perform NULL checks for break_ctl ops
* serial: ifx6x60: add missed pm_runtime_disable
* autofs: fix a leak in autofs_expire_indirect()
* NFC: nxp-nci: Fix NULL pointer dereference after I2C communication error
* Input: cyttsp4_core - fix use after free bug
* ALSA: pcm: Fix stream lock usage in snd_pcm_period_elapsed()
* rsxx: add missed destroy_workqueue calls in remove
* net: ep93xx_eth: fix mismatch of request_mem_region in remove
* serial: core: Allow processing sysrq at port unlock time
* iwlwifi: mvm: Send non offchannel traffic via AP sta
* ARM: 8813/1: Make aligned 2-byte getuser()/putuser() atomic on ARMv6+
* extcon: max8997: Fix lack of path setting in USB device mode
* clk: rockchip: fix rk3188 sclk_smc gate data
* clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering
* dlm: fix missing idr_destroy for recover_idr
* MIPS: SiByte: Enable ZONE_DMA32 for LittleSur
* scsi: zfcp: drop default switch case which might paper over missing case
* pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues
* Staging: iio: adt7316: Fix i2c data reading, set the data field
* regulator: Fix return value of _set_load() stub
* MIPS: OCTEON: octeon-platform: fix typing
* math-emu/soft-fp.h: (_FP_ROUND_ZERO) cast 0 to void to fix warning
* rtc: max8997: Fix the returned value in case of error in
'max8997_rtc_read_alarm()'
* rtc: dt-binding: abx80x: fix resistance scale
* ARM: dts: exynos: Use Samsung SoC specific compatible for DWC2 module
* dmaengine: coh901318: Fix a double-lock bug
* dmaengine: coh901318: Remove unused variable
* ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion()
* dma-mapping: fix return type of dma_set_max_seg_size()
* altera-stapl: check for a null key before strcasecmp'ing it
* serial: imx: fix error handling in console_setup
* i2c: imx: don't print error message on probe defer
* dlm: NULL check before kmem_cache_destroy is not needed
* nfsd: fix a warning in __cld_pipe_upcall()
* ARM: OMAP1/2: fix SoC name printing
* net/x25: fix called/calling length calculation in x25_parse_address_block
* net/x25: fix null_x25_address handling
* ARM: dts: mmp2: fix the gpio interrupt cell number
* tcp: fix off-by-one bug on aborting window-probing socket
* modpost: skip ELF local symbols during section mismatch check
* kbuild: fix single target build for external module
* ARM: dts: pxa: clean up USB controller nodes
* dlm: fix invalid cluster name warning
* powerpc/math-emu: Update macros from GCC
* MIPS: OCTEON: cvmx_pko_mem_debug8: use oldest forward compatible definition
* nfsd: Return EPERM, not EACCES, in some SETATTR cases
* mlx4: Use snprintf instead of complicated strcpy
* ARM: dts: sunxi: Fix PMU compatible strings
* sched/fair: Scale bandwidth quota and period without losing quota/period
ratio precision
* fuse: verify nlink
* fuse: verify attributes
* ALSA: pcm: oss: Avoid potential buffer overflows
* Input: goodix - add upside-down quirk for Teclast X89 tablet
* CIFS: Fix SMB2 oplock break processing
* tty: vt: keyboard: reject invalid keycodes
* can: slcan: Fix use-after-free Read in slcan_open
* jbd2: Fix possible overflow in jbd2_log_space_left()
* drm/i810: Prevent underflow in ioctl
* KVM: x86: do not modify masked bits of shared MSRs
* KVM: x86: fix presentation of TSX feature in ARCH_CAPABILITIES
* crypto: crypto4xx - fix double-free in crypto4xx_destroy_sdr
* spi: atmel: Fix CS high support
* RDMA/qib: Validate ->show()/store() callbacks before calling them
* thermal: Fix deadlock in thermal thermal_zone_device_check
* Revert "KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID
(CVE-2019-19332)"
* KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID (CVE-2019-19332)
* appletalk: Fix potential NULL pointer dereference in unregister_snap_client
* appletalk: Set error code if register_snap_client failed
* ALSA: hda - Fix pending unsol events at shutdown
* sched/core: Allow putting thread_info into task_struct
* sched/core: Add try_get_task_stack() and put_task_stack()
* sched/core, x86: Make struct thread_info arch specific again
* fs/proc: Stop reporting eip and esp in /proc/PID/stat
* fs/proc: Report eip/esp in /prod/PID/stat for coredumping
* proc: fix coredump vs read /proc/*/stat race
* fs/proc/array.c: allow reporting eip/esp for all coredumping threads
* usb: gadget: configfs: Fix missing spin_lock_init()
* usb: Allow USB device to be warm reset in suspended state
* staging: rtl8188eu: fix interface sanity check
* staging: rtl8712: fix interface sanity check
* staging: gigaset: fix general protection fault on probe
* staging: gigaset: fix illegal free on probe errors
* staging: gigaset: add endpoint-type sanity check
* xhci: Increase STS_HALT timeout in xhci_suspend()
* iio: humidity: hdc100x: fix IIO_HUMIDITYRELATIVE channel reporting
* USB: atm: ueagle-atm: add missing endpoint check
* USB: idmouse: fix interface sanity checks
* USB: serial: io_edgeport: fix epic endpoint lookup
* USB: adutux: fix interface sanity check
* usb: core: urb: fix URB structure initialization function
* usb: mon: Fix a deadlock in usbmon between mmap and read
* mtd: spear_smi: Fix Write Burst mode
* virtio-balloon: fix managed page counts when migrating pages between zones
* btrfs: check page->mapping when loading free space cache
* btrfs: Remove btrfs_bio::flags member
* rtlwifi: rtl8192de: Fix missing code to retrieve RX buffer address
* rtlwifi: rtl8192de: Fix missing callback that tests for hw release of buffer
* rtlwifi: rtl8192de: Fix missing enable interrupt flag
* lib: raid6: fix awk build warnings
* workqueue: Fix spurious sanity check failures in destroy_workqueue()
* workqueue: Fix pwq ref leak in rescuer_thread()
* ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report
* blk-mq: avoid sysfs buffer overflow with too many CPU cores
* cgroup: pids: use atomic64_t for pids->limit
* ar5523: check NULL before memcpy() in ar5523_cmd()
* media: bdisp: fix memleak on release
* media: radio: wl1273: fix interrupt masking on release
* cpuidle: Do not unset the driver if it is there already
* ACPI: OSL: only free map once in osl.c
* ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data()
* ACPI: PM: Avoid attaching ACPI PM domain to certain devices
* pinctrl: samsung: Fix device node refcount leaks in S3C24xx wakeup
controller init
* pinctrl: samsung: Fix device node refcount leaks in init code
* powerpc: Allow 64bit VDSO __kernel_sync_dicache to work across ranges >4GB
* video/hdmi: Fix AVI bar unpack
* quota: Check that quota is not dirty before release
* quota: fix livelock in dquot_writeback_dquots
* scsi: zfcp: trace channel log even for FCP command responses
* usb: xhci: only set D3hot for pci device
* xhci: Fix memory leak in xhci_add_in_port()
* xhci: make sure interrupts are restored to correct state
* iio: adis16480: Add debugfs_reg_access entry
* Btrfs: fix negative subv_writers counter and data space leak after buffered
write
* scsi: lpfc: Cap NPIV vports to 256
* e100: Fix passing zero to 'PTR_ERR' warning in e100_load_ucode_wait
* x86/MCE/AMD: Turn off MC4_MISC thresholding on all family 0x15 models
* ARM: dts: omap3-tao3530: Fix incorrect MMC card detection GPIO polarity
* pinctrl: samsung: Fix device node refcount leaks in S3C64xx wakeup
controller init
* scsi: qla2xxx: Fix DMA unmap leak
* scsi: qla2xxx: Fix qla24xx_process_bidir_cmd()
* scsi: qla2xxx: Always check the qla2x00_wait_for_hba_online() return value
* powerpc: Fix vDSO clock_getres()
* mm/shmem.c: cast the type of unmap_start to u64
* blk-mq: make sure that line break can be printed
* workqueue: Fix missing kfree(rescuer) in destroy_workqueue()
* sunrpc: fix crash when cache_head become valid before update
* kernel/module.c: wakeup processes in module_wq on module unload
* net: bridge: deny dev_set_mac_address() when unregistering
* tcp: md5: fix potential overestimation of TCP option space
* tipc: fix ordering of tipc module init and exit routine
* inet: protect against too small mtu values.
* tcp: fix rejected syncookies due to stale timestamps
* tcp: tighten acceptance of ACKs not matching a child socket
* tcp: Protect accesses to .ts_recent_stamp with {READ,WRITE}_ONCE()
* net: ethernet: ti: cpsw: fix extra rx interrupt
* PCI: Fix Intel ACS quirk UPDCR register address
* PCI/MSI: Fix incorrect MSI-X masking on resume
* xtensa: fix TLB sanity checker
* CIFS: Respect O_SYNC and O_DIRECT flags during reconnect
* ARM: dts: s3c64xx: Fix init order of clock providers
* ARM: tegra: Fix FLOW_CTLR_HALT register clobbering by tegra_resume()
* vfio/pci: call irq_bypass_unregister_producer() before freeing irq
* dm btree: increase rebalance threshold in __rebalance2()
* drm/radeon: fix r1xx/r2xx register checker for POT textures
* xhci: fix USB3 device initiated resume race with roothub autosuspend
* net: stmmac: use correct DMA buffer size in the RX descriptor
* net: stmmac: don't stop NAPI processing when dropping a packet
* Linux 4.4.207
* UBUNTU: upstream stable to v4.4.207
4.4.207 upstream stable release
from git://git.kernel.org/
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1858489/+subscriptions
--
Mailing list: https://launchpad.net/~kernel-packages
Post to : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help : https://help.launchpad.net/ListHelp
