Skipped "tcp: initialize rcv_mss to TCP_MIN_MSS instead of 0" because it is already applied for CVE-2017-14106.
Accepted fuzz 1 for "scsi: storvsc: fix memory leak on ring buffer busy". ** Description changed: + SRU Justification - SRU Justification + Impact: + The upstream process for stable tree updates is quite similar + in scope to the Ubuntu SRU process, e.g., each patch has to + demonstrably fix a bug, and each patch is vetted by upstream + by originating either directly from a mainline/stable Linux tree or + a minimally backported form of that patch. The 4.4.89 upstream stable + patch set is now available. It should be included in the Ubuntu + kernel as well. - Impact: - The upstream process for stable tree updates is quite similar - in scope to the Ubuntu SRU process, e.g., each patch has to - demonstrably fix a bug, and each patch is vetted by upstream - by originating either directly from a mainline/stable Linux tree or - a minimally backported form of that patch. The 4.4.89 upstream stable - patch set is now available. It should be included in the Ubuntu - kernel as well. + git://git.kernel.org/ - git://git.kernel.org/ + TEST CASE: TBD - TEST CASE: TBD - - The following patches from the 4.4.89 stable release shall be - applied: + The following patches from the 4.4.89 stable release shall be applied: + * ipv6: accept 64k - 1 packet length in ip6_find_1stfragopt() + * ipv6: add rcu grace period before freeing fib6_node + * ipv6: fix sparse warning on rt6i_node + * qlge: avoid memcpy buffer overflow + * Revert "net: phy: Correctly process PHY_HALTED in phy_stop_machine()" + * Revert "net: use lib/percpu_counter API for fragmentation mem accounting" + * Revert "net: fix percpu memory leaks" + * gianfar: Fix Tx flow control deactivation + * ipv6: fix memory leak with multiple tables during netns destruction + * ipv6: fix typo in fib6_net_exit() + * f2fs: check hot_data for roll-forward recovery + * x86/fsgsbase/64: Report FSBASE and GSBASE correctly in core dumps + * md/raid5: release/flush io in raid5_do_work() + * nfsd: Fix general protection fault in release_lock_stateid() + * mm: prevent double decrease of nr_reserved_highatomic + * tty: improve tty_insert_flip_char() fast path + * tty: improve tty_insert_flip_char() slow path + * tty: fix __tty_insert_flip_char regression + * Input: i8042 - add Gigabyte P57 to the keyboard reset table + * MIPS: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix quiet NaN propagation + * MIPS: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix cases of both inputs zero + * MIPS: math-emu: <MAX|MIN>.<D|S>: Fix cases of both inputs negative + * MIPS: math-emu: <MAXA|MINA>.<D|S>: Fix cases of input values with opposite + signs + * MIPS: math-emu: <MAXA|MINA>.<D|S>: Fix cases of both infinite inputs + * MIPS: math-emu: MINA.<D|S>: Fix some cases of infinity and zero inputs + * crypto: AF_ALG - remove SGL terminator indicator when chaining + * ext4: fix incorrect quotaoff if the quota feature is enabled + * ext4: fix quota inconsistency during orphan cleanup for read-only mounts + * powerpc: Fix DAR reporting when alignment handler faults + * block: Relax a check in blk_start_queue() + * md/bitmap: disable bitmap_resize for file-backed bitmaps. + * skd: Avoid that module unloading triggers a use-after-free + * skd: Submit requests to firmware before triggering the doorbell + * scsi: zfcp: fix queuecommand for scsi_eh commands when DIX enabled + * scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path + * scsi: zfcp: fix capping of unsuccessful GPN_FT SAN response trace records + * scsi: zfcp: fix passing fsf_req to SCSI trace on TMF to correlate with HBA + * scsi: zfcp: fix missing trace records for early returns in TMF eh handlers + * scsi: zfcp: fix payload with full FCP_RSP IU in SCSI trace records + * scsi: zfcp: trace HBA FSF response by default on dismiss or timedout late + response + * scsi: zfcp: trace high part of "new" 64 bit SCSI LUN + * scsi: megaraid_sas: Check valid aen class range to avoid kernel panic + * scsi: megaraid_sas: Return pended IOCTLs with cmd_status + MFI_STAT_WRONG_STATE in case adapter is dead + * scsi: storvsc: fix memory leak on ring buffer busy + * scsi: sg: remove 'save_scat_len' + * scsi: sg: use standard lists for sg_requests + * scsi: sg: off by one in sg_ioctl() + * scsi: sg: factor out sg_fill_request_table() + * scsi: sg: fixup infoleak when using SG_GET_REQUEST_TABLE + * scsi: qla2xxx: Fix an integer overflow in sysfs code + * ftrace: Fix selftest goto location on error + * tracing: Apply trace_clock changes to instance max buffer + * ARC: Re-enable MMU upon Machine Check exception + * PCI: shpchp: Enable bridge bus mastering if MSI is enabled + * media: v4l2-compat-ioctl32: Fix timespec conversion + * media: uvcvideo: Prevent heap overflow when accessing mapped controls + * bcache: initialize dirty stripes in flash_dev_run() + * bcache: Fix leak of bdev reference + * bcache: do not subtract sectors_to_gc for bypassed IO + * bcache: correct cache_dirty_target in __update_writeback_rate() + * bcache: Correct return value for sysfs attach errors + * bcache: fix for gc and write-back race + * bcache: fix bch_hprint crash and improve output + * ftrace: Fix memleak when unregistering dynamic ops when tracing disabled + * Linux 4.4.89 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-14106 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1721477 Title: Xenial update to 4.4.89 stable release To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1721477/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
