This bug was fixed in the package linux-azure-4.15 - 4.15.0-1106.118
---------------
linux-azure-4.15 (4.15.0-1106.118) bionic; urgency=medium
* bionic/linux-azure-4.15: 4.15.0-1106.118 -proposed tracker (LP:
#1911280)
[ Ubuntu: 4.15.0-133.137 ]
* bionic/linux: 4.15.0-133.137 -proposed tracker (LP: #1911295)
* [drm:qxl_enc_commit [qxl]] *ERROR* head number too large or missing monitors
config: (LP: #1908219)
- qxl: remove qxl_io_log()
- qxl: move qxl_send_monitors_config()
- qxl: hook monitors_config updates into crtc, not encoder.
* Touchpad not detected on ByteSpeed C15B laptop (LP: #1906128)
- Input: i8042 - add ByteSpeed touchpad to noloop table
* vmx_nm_test in ubuntu_kvm_unit_tests interrupted on X-oracle-4.15 /
B-oracle-4.15 / X-KVM / B-KVM (LP: #1872401)
- KVM: nVMX: Always reflect #NM VM-exits to L1
* stack trace in kernel (LP: #1903596)
- net: napi: remove useless stack trace
* CVE-2020-27777
- [Config]: Set CONFIG_PPC_RTAS_FILTER
* Bionic update: upstream stable patchset 2020-12-04 (LP: #1906875)
- regulator: defer probe when trying to get voltage from unresolved supply
- ring-buffer: Fix recursion protection transitions between interrupt
context
- time: Prevent undefined behaviour in timespec64_to_ns()
- nbd: don't update block size after device is started
- btrfs: sysfs: init devices outside of the chunk_mutex
- btrfs: reschedule when cloning lots of extents
- genirq: Let GENERIC_IRQ_IPI select IRQ_DOMAIN_HIERARCHY
- hv_balloon: disable warning when floor reached
- net: xfrm: fix a race condition during allocing spi
- perf tools: Add missing swap for ino_generation
- ALSA: hda: prevent undefined shift in snd_hdac_ext_bus_get_link()
- can: rx-offload: don't call kfree_skb() from IRQ context
- can: dev: can_get_echo_skb(): prevent call to kfree_skb() in hard IRQ
context
- can: dev: __can_get_echo_skb(): fix real payload length return value for
RTR
frames
- can: can_create_echo_skb(): fix echo skb generation: always use
skb_clone()
- can: peak_usb: add range checking in decode operations
- can: peak_usb: peak_usb_get_ts_time(): fix timestamp wrapping
- can: peak_canfd: pucan_handle_can_rx(): fix echo management when loopback
is
on
- xfs: flush new eof page on truncate to avoid post-eof corruption
- Btrfs: fix missing error return if writeback for extent buffer never
started
- ath9k_htc: Use appropriate rs_datalen type
- usb: gadget: goku_udc: fix potential crashes in probe
- gfs2: Free rd_bits later in gfs2_clear_rgrpd to fix use-after-free
- gfs2: Add missing truncate_inode_pages_final for sd_aspace
- gfs2: check for live vs. read-only file system in gfs2_fitrim
- scsi: hpsa: Fix memory leak in hpsa_init_one()
- drm/amdgpu: perform srbm soft reset always on SDMA resume
- mac80211: fix use of skb payload instead of header
- cfg80211: regulatory: Fix inconsistent format argument
- scsi: scsi_dh_alua: Avoid crash during alua_bus_detach()
- iommu/amd: Increase interrupt remapping table limit to 512 entries
- pinctrl: intel: Set default bias in case no particular value given
- ARM: 9019/1: kprobes: Avoid fortify_panic() when copying optprobe template
- pinctrl: aspeed: Fix GPI only function problem.
- nbd: fix a block_device refcount leak in nbd_release
- xfs: fix flags argument to rmap lookup when converting shared file rmaps
- xfs: fix rmap key and record comparison functions
- xfs: fix a missing unlock on error in xfs_fs_map_blocks
- of/address: Fix of_node memory leak in of_dma_is_coherent
- cosa: Add missing kfree in error path of cosa_write
- perf: Fix get_recursion_context()
- ext4: correctly report "not supported" for {usr,grp}jquota when
!CONFIG_QUOTA
- ext4: unlock xattr_sem properly in ext4_inline_data_truncate()
- thunderbolt: Add the missed ida_simple_remove() in ring_request_msix()
- uio: Fix use-after-free in uio_unregister_device()
- usb: cdc-acm: Add DISABLE_ECHO for Renesas USB Download mode
- mei: protect mei_cl_mtu from null dereference
- futex: Don't enable IRQs unconditionally in put_pi_state()
- ocfs2: initialize ip_next_orphan
- selinux: Fix error return code in sel_ib_pkey_sid_slow()
- don't dump the threads that had been already exiting when zapped.
- drm/gma500: Fix out-of-bounds access to struct drm_device.vblank[]
- pinctrl: amd: use higher precision for 512 RtcClk
- pinctrl: amd: fix incorrect way to disable debounce filter
- swiotlb: fix "x86: Don't panic if can not alloc buffer for swiotlb"
- IPv6: Set SIT tunnel hard_header_len to zero
- net/af_iucv: fix null pointer dereference on shutdown
- net/x25: Fix null-ptr-deref in x25_connect
- vrf: Fix fast path output packet handling with async Netfilter rules
- r8169: fix potential skb double free in an error path
- net: Update window_clamp if SOCK_RCVBUF is set
- random32: make prandom_u32() output unpredictable
- x86/speculation: Allow IBPB to be conditionally enabled on CPUs with
always-
on STIBP
- perf/core: Fix bad use of igrab()
- perf/core: Fix crash when using HW tracing kernel filters
- perf/core: Fix a memory leak in perf_event_parse_addr_filter()
- Revert "kernel/reboot.c: convert simple_strtoul to kstrtoint"
- reboot: fix overflow parsing reboot cpu number
- Convert trailing spaces and periods in path components
- xfs: fix scrub flagging rtinherit even if there is no rt device
- drm/amd/pm: perform SMC reset on suspend/hibernation
- drm/amd/pm: do not use ixFEATURE_STATUS for checking smc running
- s390/smp: move rcu_cpu_starting() earlier
- tpm_tis: Disable interrupts on ThinkPad T490s
- tick/common: Touch watchdog in tick_unfreeze() on all CPUs
- mfd: sprd: Add wakeup capability for PMIC IRQ
- btrfs: ref-verify: fix memory leak in btrfs_ref_tree_mod
- thunderbolt: Fix memory leak if ida_simple_get() fails in
enumerate_services()
- btrfs: fix potential overflow in cluster_pages_for_defrag on 32bit arch
- mmc: renesas_sdhi_core: Add missing tmio_mmc_host_free() at remove
[ Ubuntu: 4.15.0-132.136 ]
* bionic/linux: 4.15.0-132.136 -proposed tracker (LP: #1911147)
* Packaging resync (LP: #1786013)
- update dkms package versions
* CVE-2020-28374
- SAUCE: target: fix XCOPY NAA identifier lookup
linux-azure-4.15 (4.15.0-1105.117) bionic; urgency=medium
* bionic/linux-azure-4.15: 4.15.0-1105.117 -proposed tracker (LP:
#1910053)
* Use Azure host for time keeping in all images (LP: #1896784)
- hv_utils: return error if host timesysnc update is stale
- hv_utils: drain the timesync packets on onchannelcallback
[ Ubuntu: 4.15.0-131.135 ]
* bionic/linux: 4.15.0-131.135 -proposed tracker (LP: #1910068)
* Packaging resync (LP: #1786013)
- update dkms package versions
* [drm:qxl_enc_commit [qxl]] *ERROR* head number too large or missing monitors
config: (LP: #1908219)
- qxl: remove qxl_io_log()
- qxl: move qxl_send_monitors_config()
- qxl: hook monitors_config updates into crtc, not encoder.
* Touchpad not detected on ByteSpeed C15B laptop (LP: #1906128)
- Input: i8042 - add ByteSpeed touchpad to noloop table
* vmx_nm_test in ubuntu_kvm_unit_tests interrupted on X-oracle-4.15 /
B-oracle-4.15 / X-KVM / B-KVM (LP: #1872401)
- KVM: nVMX: Always reflect #NM VM-exits to L1
* stack trace in kernel (LP: #1903596)
- net: napi: remove useless stack trace
* CVE-2020-27777
- [Config]: Set CONFIG_PPC_RTAS_FILTER
* Bionic update: upstream stable patchset 2020-12-04 (LP: #1906875)
- regulator: defer probe when trying to get voltage from unresolved supply
- ring-buffer: Fix recursion protection transitions between interrupt
context
- time: Prevent undefined behaviour in timespec64_to_ns()
- nbd: don't update block size after device is started
- btrfs: sysfs: init devices outside of the chunk_mutex
- btrfs: reschedule when cloning lots of extents
- genirq: Let GENERIC_IRQ_IPI select IRQ_DOMAIN_HIERARCHY
- hv_balloon: disable warning when floor reached
- net: xfrm: fix a race condition during allocing spi
- perf tools: Add missing swap for ino_generation
- ALSA: hda: prevent undefined shift in snd_hdac_ext_bus_get_link()
- can: rx-offload: don't call kfree_skb() from IRQ context
- can: dev: can_get_echo_skb(): prevent call to kfree_skb() in hard IRQ
context
- can: dev: __can_get_echo_skb(): fix real payload length return value for
RTR
frames
- can: can_create_echo_skb(): fix echo skb generation: always use
skb_clone()
- can: peak_usb: add range checking in decode operations
- can: peak_usb: peak_usb_get_ts_time(): fix timestamp wrapping
- can: peak_canfd: pucan_handle_can_rx(): fix echo management when loopback
is
on
- xfs: flush new eof page on truncate to avoid post-eof corruption
- Btrfs: fix missing error return if writeback for extent buffer never
started
- ath9k_htc: Use appropriate rs_datalen type
- usb: gadget: goku_udc: fix potential crashes in probe
- gfs2: Free rd_bits later in gfs2_clear_rgrpd to fix use-after-free
- gfs2: Add missing truncate_inode_pages_final for sd_aspace
- gfs2: check for live vs. read-only file system in gfs2_fitrim
- scsi: hpsa: Fix memory leak in hpsa_init_one()
- drm/amdgpu: perform srbm soft reset always on SDMA resume
- mac80211: fix use of skb payload instead of header
- cfg80211: regulatory: Fix inconsistent format argument
- scsi: scsi_dh_alua: Avoid crash during alua_bus_detach()
- iommu/amd: Increase interrupt remapping table limit to 512 entries
- pinctrl: intel: Set default bias in case no particular value given
- ARM: 9019/1: kprobes: Avoid fortify_panic() when copying optprobe template
- pinctrl: aspeed: Fix GPI only function problem.
- nbd: fix a block_device refcount leak in nbd_release
- xfs: fix flags argument to rmap lookup when converting shared file rmaps
- xfs: fix rmap key and record comparison functions
- xfs: fix a missing unlock on error in xfs_fs_map_blocks
- of/address: Fix of_node memory leak in of_dma_is_coherent
- cosa: Add missing kfree in error path of cosa_write
- perf: Fix get_recursion_context()
- ext4: correctly report "not supported" for {usr,grp}jquota when
!CONFIG_QUOTA
- ext4: unlock xattr_sem properly in ext4_inline_data_truncate()
- thunderbolt: Add the missed ida_simple_remove() in ring_request_msix()
- uio: Fix use-after-free in uio_unregister_device()
- usb: cdc-acm: Add DISABLE_ECHO for Renesas USB Download mode
- mei: protect mei_cl_mtu from null dereference
- futex: Don't enable IRQs unconditionally in put_pi_state()
- ocfs2: initialize ip_next_orphan
- selinux: Fix error return code in sel_ib_pkey_sid_slow()
- don't dump the threads that had been already exiting when zapped.
- drm/gma500: Fix out-of-bounds access to struct drm_device.vblank[]
- pinctrl: amd: use higher precision for 512 RtcClk
- pinctrl: amd: fix incorrect way to disable debounce filter
- swiotlb: fix "x86: Don't panic if can not alloc buffer for swiotlb"
- IPv6: Set SIT tunnel hard_header_len to zero
- net/af_iucv: fix null pointer dereference on shutdown
- net/x25: Fix null-ptr-deref in x25_connect
- vrf: Fix fast path output packet handling with async Netfilter rules
- r8169: fix potential skb double free in an error path
- net: Update window_clamp if SOCK_RCVBUF is set
- random32: make prandom_u32() output unpredictable
- x86/speculation: Allow IBPB to be conditionally enabled on CPUs with
always-
on STIBP
- perf/core: Fix bad use of igrab()
- perf/core: Fix crash when using HW tracing kernel filters
- perf/core: Fix a memory leak in perf_event_parse_addr_filter()
- Revert "kernel/reboot.c: convert simple_strtoul to kstrtoint"
- reboot: fix overflow parsing reboot cpu number
- Convert trailing spaces and periods in path components
- xfs: fix scrub flagging rtinherit even if there is no rt device
- drm/amd/pm: perform SMC reset on suspend/hibernation
- drm/amd/pm: do not use ixFEATURE_STATUS for checking smc running
- s390/smp: move rcu_cpu_starting() earlier
- tpm_tis: Disable interrupts on ThinkPad T490s
- tick/common: Touch watchdog in tick_unfreeze() on all CPUs
- mfd: sprd: Add wakeup capability for PMIC IRQ
- btrfs: ref-verify: fix memory leak in btrfs_ref_tree_mod
- thunderbolt: Fix memory leak if ida_simple_get() fails in
enumerate_services()
- btrfs: fix potential overflow in cluster_pages_for_defrag on 32bit arch
- mmc: renesas_sdhi_core: Add missing tmio_mmc_host_free() at remove
-- Khalid Elmously <khalid.elmou...@canonical.com> Sun, 17 Jan 2021
22:06:30 -0500
** Changed in: linux-azure-4.15 (Ubuntu Bionic)
Status: Fix Committed => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-27777
** Changed in: linux-azure (Ubuntu)
Status: New => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-1052
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-1053
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux-azure in Ubuntu.
https://bugs.launchpad.net/bugs/1896784
Title:
Use Azure host for time keeping in all images
Status in linux-azure package in Ubuntu:
Fix Released
Status in linux-azure-4.15 package in Ubuntu:
New
Status in linux-azure source package in Bionic:
Invalid
Status in linux-azure-4.15 source package in Bionic:
Fix Released
Status in linux-azure source package in Focal:
Fix Released
Status in linux-azure-4.15 source package in Focal:
Invalid
Bug description:
SRU Justification:
[Impact]
Microsoft would like to request a change to the time keeping method in
the Azure images.
We would like to request that an Azure image uses the Azure host for
time sync by default. This will require the use of the Chrony
package.
The Chrony package would need to be installed by default in all images
and be configured to use /dev/ptp0 for timekeeping.
There is a request for two patches to be backported so Chrony time can
stay in sync before being set as the default.
Patches are already in the 5.8 kernel. Only needed for azure 5.4 and
4.15
[Fix]
backport these two patches:
b46b4a8a57c3 ("hv_utils: drain the timesync packets on onchannelcallback")
90b125f4cd26 ("hv_utils: return error if host timesysnc update is stale")
[Test Case]
Desired test cases:
- verify Chrony time can stay in sync
- verify caller is notified if host timesync update is stale
- verify all timesync packets are drained on onchannelcallback to avoid
stale packets
Microsoft holds test cases for the above. They verified a 4.15 and 5.4
test kernels with the above patches backported to work as expected.
[Regression Potential]
Caller may get an error now if host timesync messages were not
processed by the guest. This wasn't getting reported to the caller
before and may appear to be a regression if it occurs.
Regression potential may also lay in still incorrectly managing
timesync packets on onchannelcallback.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux-azure/+bug/1896784/+subscriptions
--
Mailing list: https://launchpad.net/~kernel-packages
Post to : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help : https://help.launchpad.net/ListHelp
