ADT regressions caused by "audit: fix auditd/kernel connection state tracking"
Bug #1680532 reported by
Seth Forshee
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Fix Released
|
Critical
|
Seth Forshee | ||
Zesty |
Fix Released
|
Critical
|
Seth Forshee |
Bug Description
This commit was part of upstream 4.10.7 and has caused two ADT regressions:
- snapd tests have regressed because expected audit messages are not being printed.
- On i386, the apparmor regression tests are causing OOMs.
Both are fixed by reverting this patch.
CVE References
Changed in linux (Ubuntu Zesty): | |
status: | In Progress → Fix Committed |
To post a comment you must log in.
This bug was fixed in the package linux - 4.10.0-19.21
---------------
linux (4.10.0-19.21) zesty; urgency=low
[ Tim Gardner ]
* Release Tracking Bug
- LP: #1680535
* ADT regressions caused by "audit: fix auditd/kernel connection state
tracking" (LP: #1680532)
- SAUCE: Revert "audit: fix auditd/kernel connection state tracking"
* Miscellaneous Ubuntu changes
- [Config] updateconfigs to update CONFIG_GENERIC_CSUM for ppc64el
This cleans up behind a Kconfig change that went undetected.
linux (4.10.0-18.20) zesty; urgency=low
[ Tim Gardner ]
* Release Tracking Bug
- LP: #1680168
* smartpqi driver needed in initram disk and installer (LP: #1680156)
- UBUNU: [Config] Add smartpqi to d-i
linux (4.10.0-17.19) zesty; urgency=low
[ Tim Gardner ]
* Release Tracking Bug
- LP: #1679718
* Fix CVE-2017-7308 (LP: #1678009)
- net/packet: fix overflow in check for priv area size
- net/packet: fix overflow in check for tp_frame_nr
- net/packet: fix overflow in check for tp_reserve
* apparmor: oops on boot if parameters set on grub command line (LP: #1678048)
- SAUCE: apparmor: fix parameters so that the permission test is bypassed at boot
* apparmor: does not provide a way to detect policy updataes (LP: #1678032)
- SAUCE: apparmor: add policy revision file interface
* apparmor does not make support of query data visible (LP: #1678023)
- SAUCE: apparmor: add label data availability to the feature set
* apparmor query interface does not make supported query info available
(LP: #1678030)
- SAUCE: apparmor: add information about the query inteface to the feature set
* change_profile incorrect when using namespaces with a compound stack
(LP: #1677959)
- SAUCE: apparmor: fix label parse for stacked labels
* Zesty update to v4.10.8 stable release (LP: #1678930) ESN_VAL replay_window
- xfrm: policy: init locks early
- xfrm_user: validate XFRM_MSG_NEWAE XFRMA_REPLAY_
- xfrm_user: validate XFRM_MSG_NEWAE incoming ESN size harder
- KVM: nVMX: Fix nested VPID vmx exec control
- KVM: x86: cleanup the page tracking SRCU instance
- virtio_balloon: init 1st buffer in stats vq
- pinctrl: qcom: Don't clear status bit on irq_unmask
- c6x/ptrace: Remove useless PTRACE_SETREGSET implementation
- h8300/ptrace: Fix incorrect register transfer count
- mips/ptrace: Preserve previous registers for short regset write
- sparc/ptrace: Preserve previous registers for short regset write
- metag/ptrace: Preserve previous registers for short regset write
- metag/ptrace: Provide default TXSTATUS for short NT_PRSTATUS
- metag/ptrace: Reject partial NT_METAG_RPIPE writes
- qla2xxx: Allow vref count to timeout on vport delete.
- sched/rt: Add a missing rescheduling point
- usb: musb: fix possible spinlock deadlock
- Linux 4.10.8
* [Hyper-V] pci-hyperv: Use device serial number as PCI domain (LP: #1667527)
- net/mlx4_core: Use cq quota in SRIOV when creating completion EQs
- PCI: hv: Use device serial number as PCI domain
* Miscellaneous Ubuntu changes
- [Config] flash-kernel should be a...