Ubuntu
linux-lowlatency package

*-3.2.0-33-lowlatency-pae i386 packages missing from build and the security repositories

Bug #1079594 reported by linuxball
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux-lowlatency (Ubuntu)
Invalid
Undecided
Unassigned
Precise
Fix Released
Critical
Andy Whitcroft

Bug Description

1) The release of Ubuntu:

  $ lsb_release -rd
  Description: Ubuntu 12.04.1 LTS
  Release: 12.04

  $ uname -r
  3.2.0-23-lowlatency-pae

  Derivate: Ubuntu Studio

2) The version of the package I am using

  $ sudo apt-cache policy linux-lowlatency
  linux-lowlatency:
    Installed: (none)
    Candidate: 3.2.0.33.21
    Version table:
       3.2.0.33.21 0
          500 http://archive.ubuntu.com/ubuntu/ precise-updates/universe i386 Packages
          500 http://security.ubuntu.com/ubuntu/ precise-security/universe i386 Packages
       3.2.0.23.20 0
          500 http://archive.ubuntu.com/ubuntu/ precise/universe i386 Packages

  $dpkg -l '*-lowlatency-*'
  ...
  ii linux-headers-3.2.0-23-lowlatency-pae 3.2.0-23.31
  ii linux-headers-lowlatency-pae 3.2.0.23.20
  ii linux-image-3.2.0-23-lowlatency-pae 3.2.0-23.31
  ii linux-image-lowlatency-pae 3.2.0.23.20
  ii linux-lowlatency-pae 3.2.0.23.20

3) Expected behavior

  For build: dpkg-buildpackage should build linux-*-pae packages (used for Ubuntu Studio), too.

  For apt-installation: "sudo apt-get update; sudo apt-get dist-upgrade" should upgrade to the 3.2.0-23-lowlatency-pae kernel.

  The pae versions should even take priority over the non-pae versions because (AFAIK) only they are used by an official Ubuntu 12.04 derivate (Ubuntu Studio i386).

4) Actual behavior
  For build: dpkg-buildpackage only builds non-pae paykages only
  For installation:
  $ sudo apt-get install linux-lowlatency-pae=3.2.0.33.21 linux-image-lowlatency-pae=3.2.0.33.21 linux-headers-lowlatency-pae=3.2.0.33.21
  Reading package lists... Done
  Building dependency tree
  Reading state information... Done
  Some packages could not be installed. This may mean that you have
  requested an impossible situation or if you are using the unstable
  distribution that some required packages have not yet been created
  or been moved out of Incoming.
  The following information may help to resolve the situation:

  The following packages have unmet dependencies:
   linux-headers-lowlatency-pae : Depends: linux-headers-3.2.0-33-lowlatency-pae but it is not installable
   linux-image-lowlatency-pae : Depends: linux-image-3.2.0-33-lowlatency-pae but it is not installable
  E: Unable to correct problems, you have held broken packages.

Ubuntu Studio 12.04 (precise) comes with kernel revision 3.2.0-23-lowlatency-pae, which has many open security issues.
Recently, a security update for the packages linux-lowlatency and linux-meta-lowlatency was released. For the linux-meta-lowlatency source package the -pae versions of the packages (linux-lowlatency-pae, linux-image-lowlatency-pae, linux-headers-lowlatency-pae) can be built and are in the Ubuntu repositories. Unfortunately, the pae-versions of the linux-lowlatency source package are missing from build and the security repositories, although they are required for fixing security issues of the kernel for Ubuntu Studio 12.04 (i386).

I rate this bug as a security vulnerability: Because of this bug known security wholes (which the Ubuntu team decided to create a security upgrade for) of the Ubuntu Studio (PAE) kernel cannot be closed.

Marc Deslauriers (mdeslaur)
information type: Private Security → Public
Revision history for this message
Adam Conrad (adconrad) wrote :

Confirmed on precise, Andy's working on uploading a fix as we speak, and we'll fasttrack it through after some smoketesting.

Changed in linux-lowlatency (Ubuntu):
status: New → Confirmed
Changed in linux-lowlatency (Ubuntu Precise):
status: New → In Progress
Changed in linux-lowlatency (Ubuntu):
status: Confirmed → Invalid
Changed in linux-lowlatency (Ubuntu Precise):
assignee: nobody → Andy Whitcroft (apw)
Andy Whitcroft (apw)
Changed in linux-lowlatency (Ubuntu Precise):
importance: Undecided → Critical
Andy Whitcroft (apw)
Changed in linux-lowlatency (Ubuntu Precise):
status: In Progress → Fix Committed
Revision history for this message
Adam Conrad (adconrad) wrote : Please test proposed package

Hello linuxball, or anyone else affected,

Accepted linux-lowlatency into precise-proposed. The package will build now and be available at http://launchpad.net/ubuntu/+source/linux-lowlatency/3.2.0-33.33 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please change the bug tag from verification-needed to verification-done. If it does not, change the tag to verification-failed. In either case, details of your testing will help us make a better decision.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance!

Revision history for this message
Adam Conrad (adconrad) wrote :

Smoketesting of the new images looks good, releasing this to unbreak the critical oops. Sorry about that. :/

tags: added: verification-done
Revision history for this message
Adam Conrad (adconrad) wrote : Update Released

The verification of this Stable Release Update has completed successfully and the package has now been released to -updates. Subsequently, the Ubuntu Stable Release Updates Team is being unsubscribed and will not receive messages about this bug report. In the event that you encounter a regression using the package from -updates please report a new bug using ubuntu-bug and tag the bug report regression-update so we can easily find any regresssions.

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package linux-lowlatency - 3.2.0-33.33

---------------
linux-lowlatency (3.2.0-33.33) precise-proposed; urgency=low

  [ Andy Whitcroft ]

  * [Config] enable lowlatency-pae on i386
    - LP: #1079594
 -- Andy Whitcroft <email address hidden> Fri, 16 Nov 2012 00:39:21 +0000

Changed in linux-lowlatency (Ubuntu Precise):
status: Fix Committed → Fix Released
Revision history for this message
linuxball (linuxball) wrote :

Dear Ubuntu team:

Great work! Thanks for the fast response!

I just verified that both ISSUES ARE FIXED.

(1) 'dpkg-buildpackage' has built the -pae packages, too.

(2) Using the standard apt sources (precise, precise-updates, precise-security) "sudo apt-get update; sudo apt-get dist-upgrade" has smoothly upgraded my kernel to rev '3.2.0-33-lowlatency-pae'

Ciao Wolfgang.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.