eoan/linux-azure: 5.3.0-1005.5 -proposed tracker
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Kernel SRU Workflow |
Fix Released
|
Medium
|
Unassigned | ||
Automated-testing |
Incomplete
|
Medium
|
Canonical Kernel Team | ||
Certification-testing |
Invalid
|
Medium
|
Canonical Hardware Certification | ||
Prepare-package |
Fix Released
|
Medium
|
Andrea Righi | ||
Prepare-package-lrm |
Fix Released
|
Medium
|
Andrea Righi | ||
Prepare-package-meta |
Fix Released
|
Medium
|
Andrea Righi | ||
Prepare-package-signed |
Fix Released
|
Medium
|
Andrea Righi | ||
Promote-to-proposed |
Fix Released
|
Medium
|
Łukasz Zemczak | ||
Promote-to-security |
New
|
Medium
|
Ubuntu Stable Release Updates Team | ||
Promote-to-updates |
New
|
Medium
|
Ubuntu Stable Release Updates Team | ||
Regression-testing |
Fix Released
|
Medium
|
Canonical Kernel Team | ||
Security-signoff |
In Progress
|
Medium
|
Steve Beattie | ||
Stakeholder-signoff |
Confirmed
|
Medium
|
linux-azure stakeholder signoff | ||
Verification-testing |
In Progress
|
Medium
|
Canonical Kernel Team | ||
linux-azure (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Eoan |
Fix Released
|
Medium
|
Unassigned |
Bug Description
This bug will contain status and test results related to a kernel source (or snap) as stated in the title.
For an explanation of the tasks and the associated workflow see:
https:/
-- swm properties --
boot-testing-
kernel-
packages:
lrm: linux-restricte
main: linux-azure
meta: linux-meta-azure
signed: linux-signed-azure
phase: Testing
phase-changed: Friday, 25. October 2019 12:01 UTC
proposed-
proposed-
reason:
automated-
security-signoff: Stalled -- waiting for signoff
stakeholder-
verification-
variant: debs
CVE References
tags: | added: eoan kernel-release-tracking-bug |
Changed in linux-azure (Ubuntu Eoan): | |
status: | New → Confirmed |
Changed in linux-azure (Ubuntu): | |
status: | New → Invalid |
Changed in linux-azure (Ubuntu Eoan): | |
importance: | Undecided → Medium |
tags: | added: kernel-release-tracking-bug-live |
description: | updated |
tags: | added: kernel-sru-cycle-2019.10.21-1 |
description: | updated |
tags: | added: kernel-sru-derivative-of-1849064 |
Changed in kernel-sru-workflow: | |
status: | New → In Progress |
importance: | Undecided → Medium |
summary: |
- linux-azure: <version to be filled> -proposed tracker + eoan/linux-azure: <version to be filled> -proposed tracker |
description: | updated |
description: | updated |
summary: |
- eoan/linux-azure: <version to be filled> -proposed tracker + eoan/linux-azure: 5.3.0-1005.5 -proposed tracker |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
tags: | added: block-proposed-eoan |
tags: | added: block-proposed |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
tags: | removed: kernel-sru-derivative-of-1849064 |
tags: | added: kernel-sru-derivative-of-1850486 |
tags: | added: regression-testing-passed |
description: | updated |
tags: | removed: kernel-release-tracking-bug-live |
Changed in kernel-sru-workflow: | |
status: | In Progress → Fix Released |
This bug was fixed in the package linux-azure - 5.3.0-1007.8
---------------
linux-azure (5.3.0-1007.8) eoan; urgency=medium
* CVE-2019-11135
- [Config] azure: Disable TSX by default when possible
[ Ubuntu: 5.3.0-22.24 ]
* [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout arch_cap_ msr() /taa: Add mitigation for TSX Async Abort /taa: Add sysfs reporting for TSX Async Abort /taa: Add documentation for TSX Async Abort
setting (LP: #1849682)
- Revert "md/raid0: avoid RAID0 data corruption due to layout confusion."
* refcount underflow and type confusion in shiftfs (LP: #1850867) // CVE-2019-15793
- SAUCE: shiftfs: Correct id translation for lower fs operations
- SAUCE: shiftfs: prevent type confusion
- SAUCE: shiftfs: Fix refcount underflow in btrfs ioctl handling
* CVE-2018-12207
- kvm: x86, powerpc: do not allow clearing largepages debugfs entry
- SAUCE: KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is
active
- SAUCE: x86: Add ITLB_MULTIHIT bug infrastructure
- SAUCE: kvm: mmu: ITLB_MULTIHIT mitigation
- SAUCE: kvm: Add helper function for creating VM worker threads
- SAUCE: kvm: x86: mmu: Recovery of shattered NX large pages
- SAUCE: cpu/speculation: Uninline and export CPU mitigations helpers
- SAUCE: kvm: x86: mmu: Apply global mitigations knob to ITLB_MULTIHIT
* CVE-2019-11135
- x86/msr: Add the IA32_TSX_CTRL MSR
- x86/cpu: Add a helper function x86_read_
- x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default
- x86/speculation
- x86/speculation
- kvm/x86: Export MDS_NO=0 to guests when TSX is enabled
- x86/tsx: Add "auto" option to the tsx= cmdline parameter
- x86/speculation
- x86/tsx: Add config options to set tsx=on|off|auto
- [Config] Disable TSX by default when possible
* CVE-2019-0154
- SAUCE: drm/i915: Lower RM timeout to avoid DSI hard hangs
- SAUCE: drm/i915/gen8+: Add RC6 CTX corruption WA
* CVE-2019-0155
- SAUCE: drm/i915: Rename gen7 cmdparser tables
- SAUCE: drm/i915: Disable Secure Batches for gen6+
- SAUCE: drm/i915: Remove Master tables from cmdparser
- SAUCE: drm/i915: Add support for mandatory cmdparsing
- SAUCE: drm/i915: Support ro ppgtt mapped cmdparser shadow buffers
- SAUCE: drm/i915: Allow parsing of unsized batches
- SAUCE: drm/i915: Add gen9 BCS cmdparsing
- SAUCE: drm/i915/cmdparser: Use explicit goto for error paths
- SAUCE: drm/i915/cmdparser: Add support for backward jumps
- SAUCE: drm/i915/cmdparser: Ignore Length operands during command matching
linux-azure (5.3.0-1006.6) eoan; urgency=medium
* eoan/linux-azure: 5.3.0-1006.6 -proposed tracker (LP: #1850480)
[ Ubuntu: 5.3.0-21.22 ]
* eoan/linux: 5.3.0-21.22 -proposed tracker (LP: #1850486)
* Fix signing of staging modules in eoan (LP: #1850234)
- [Packaging] Leave unsigned modules unsigned after adding .gnu_debuglink
linux-azure (5.3.0-1005.5) eoan; urgency=medium
* eoan/linux-azure: 5.3.0-1005.5 -proposed tracker (LP: #1849058)
* eoan: alsa/sof: Enable SOF_HDA link and codec (LP: #1848490)
- [Config] linux-azure: ig...