Xenial update: 4.4.224 upstream stable release
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The following upstream
stable patches should be included in the Ubuntu kernel:
4.4.224 upstream stable release
from git://git.
The following patches from the 4.4.224 stable release shall be applied:
* USB: serial: qcserial: Add DW5816e support
* Revert "net: phy: Avoid polling PHY with PHY_IGNORE_
* dp83640: reverse arguments to list_add_tail
* net/mlx4_core: Fix use of ENOSPC around mlx4_counter_
* sch_sfq: validate silly quantum values
* sch_choke: avoid potential panic in choke_reset()
* Revert "ACPI / video: Add force_native quirk for HP Pavilion dv6"
* enic: do not overwrite error code
* ipv6: fix cleanup ordering for ip6_mr failure
* binfmt_elf: move brk out of mmap when doing direct loader exec
* x86/apm: Don't access __preempt_count with zeroed fs
* Revert "IB/ipoib: Update broadcast object if PKey value was changed in index 0"
* USB: uas: add quirk for LaCie 2Big Quadra
* USB: serial: garmin_gps: add sanity checking for data length
* batman-adv: fix batadv_
* scripts/decodecode: fix trapping instruction formatting
* phy: micrel: Ensure interrupts are reenabled on resume
* binfmt_elf: Do not move brk for INTERP-less ET_EXEC
* ext4: add cond_resched() to ext4_protect_
* net: ipv6: add net argument to ip6_dst_lookup_flow
* net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup
* blktrace: Fix potential deadlock between delete & sysfs ops
* blktrace: fix unlocked access to init/start-
* blktrace: fix trace mutex deadlock
* blktrace: Protect q->blk_trace with RCU
* blktrace: fix dereference after null check
* ptp: do not explicitly set drvdata in ptp_clock_
* ptp: use is_visible method to hide unused attributes
* ptp: create "pins" together with the rest of attributes
* chardev: add helper function to register char devs with a struct device
* ptp: Fix pass zero to ERR_PTR() in ptp_clock_register
* ptp: fix the race between the release of ptp_clock and cdev
* ptp: free ptp device pin descriptors properly
* net: handle no dst on skb in icmp6_send
* net/sonic: Fix a resource leak in an error handling path in 'jazz_sonic_
* net: moxa: Fix a potential double 'free_irq()'
* drop_monitor: work around gcc-10 stringop-overflow warning
* scsi: sg: add sg_remove_request in sg_write
* spi: spi-dw: Add lock protect dw_spi rx/tx to prevent concurrent calls
* cifs: Check for timeout on Negotiate stage
* cifs: Fix a race condition with cifs_echo_request
* dmaengine: pch_dma.c: Avoid data race between probe and irq handler
* dmaengine: mmp_tdma: Reset channel error on release
* drm/qxl: lost qxl_bo_
* ipc/util.c: sysvipc_find_ipc() incorrectly updates position index
* net: openvswitch: fix csum updates for MPLS actions
* gre: do not keep the GRE header around in collect medata mode
* mm/memory_
* scsi: qla2xxx: Avoid double completion of abort command
* i40e: avoid NVM acquire deadlock during NVM update
* net/mlx5: Fix driver load error flow when firmware is stuck
* netfilter: conntrack: avoid gcc-10 zero-length-bounds warning
* IB/mlx4: Test return value of calls to ib_get_cached_pkey
* pnp: Use list_for_
* gcc-10 warnings: fix low-hanging fruit
* kbuild: compute false-positive -Wmaybe-
* Stop the ad-hoc games with -Wno-maybe-
* gcc-10: disable 'zero-length-
* gcc-10: disable 'array-bounds' warning for now
* gcc-10: disable 'stringop-overflow' warning for now
* gcc-10: disable 'restrict' warning for now
* block: defer timeouts to a workqueue
* blk-mq: Allow timeouts to run while queue is freezing
* blk-mq: sync the update nr_hw_queues with blk_mq_
* blk-mq: Allow blocking queue tag iter callbacks
* x86/paravirt: Remove the unused irq_enable_sysexit pv op
* gcc-10: avoid shadowing standard library 'free()' in crypto
* net: fix a potential recursive NETDEV_FEAT_CHANGE
* net: ipv4: really enforce backoff for redirects
* netlabel: cope with NULL catmap
* ALSA: hda/realtek - Limit int mic boost for Thinkpad T530
* ALSA: rawmidi: Fix racy buffer resize under concurrent accesses
* ALSA: rawmidi: Initialize allocated buffers
* USB: gadget: fix illegal array access in binding with UDC
* ARM: dts: imx27-phytec-
* x86: Fix early boot crash on gcc-10, third try
* exec: Move would_dump into flush_old_exec
* usb: gadget: net2272: Fix a memory leak in an error handling path in 'net2272_
* usb: gadget: audio: Fix a missing error return value in audio_bind()
* usb: gadget: legacy: fix error return code in gncm_bind()
* usb: gadget: legacy: fix error return code in cdc_bind()
* Revert "ALSA: hda/realtek: Fix pop noise on ALC225"
* ARM: dts: r8a7740: Add missing extal2 to CPG node
* KVM: x86: Fix off-by-one error in kvm_vcpu_
* Makefile: disallow data races on gcc-10 as well
* scsi: iscsi: Fix a potential deadlock in the timeout handler
* Linux 4.4.224
CVE References
Changed in linux (Ubuntu): | |
status: | New → Confirmed |
tags: | added: kernel-stable-tracking-bug |
description: | updated |
Changed in linux (Ubuntu Xenial): | |
status: | New → Fix Committed |
information type: | Public → Public Security |
information type: | Public Security → Private Security |
information type: | Private Security → Public |
Changed in linux (Ubuntu): | |
status: | Confirmed → Invalid |
Please note that the following patches have been skipped as they were already applied to xenial/linux:
*Revert "ACPI / video: Add force_native quirk for HP Pavilion dv6"
*net: ipv6: add net argument to ip6_dst_lookup_flow
*net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup
*blktrace: Protect q->blk_trace with RCU
*blktrace: fix dereference after null check
*spi: spi-dw: Add lock protect dw_spi rx/tx to prevent concurrent calls
*block: defer timeouts to a workqueue
*blk-mq: Allow timeouts to run while queue is freezing
The following patch needed some context adjustment: stop/teardown
*blktrace: Fix potential deadlock between delete & sysfs ops
*blktrace: fix unlocked access to init/start-
*cifs: Check for timeout on Negotiate stage
*cifs: Fix a race condition with cifs_echo_request
*x86/paravirt: Remove the unused irq_enable_sysexit pv op
*x86: Fix early boot crash on gcc-10, third try
*scsi: iscsi: Fix a potential deadlock in the timeout handler
All the other patches applied cleanly.