Bug #1902934 “dmesg is not restricted in linux-raspi kernel” : Bugs : linux-raspi package : Ubuntu

Juerg Haefliger (juergh) on 2020-11-06

Changed in linux-raspi (Ubuntu Groovy):
status:	New → Triaged
Changed in linux-raspi (Ubuntu Hirsute):
status:	New → Triaged

Juerg Haefliger (juergh) on 2020-11-06

description:

updated

Juerg Haefliger (juergh) on 2020-11-17

Changed in linux-raspi (Ubuntu Groovy):
status:	Triaged → Fix Committed
no longer affects:	linux-raspi (Ubuntu Hirsute)

Revision history for this message

Launchpad Janitor (janitor) wrote on 2021-01-04:

#1

Download full text (7.0 KiB)

This bug was fixed in the package linux-raspi - 5.8.0-1011.14

---------------
linux-raspi (5.8.0-1011.14) groovy; urgency=medium

* groovy/linux-raspi: 5.8.0-1011.14 -proposed tracker (LP: #1907562)

* dmesg is not restricted in linux-raspi kernel (LP: #1902934)
- [Config] raspi: SECURITY_DMESG_RESTRICT=y

[ Ubuntu: 5.8.0-34.37 ]

  * groovy/linux: 5.8.0-34.37 -proposed tracker (LP: #1907576)
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * [Ubuntu 21.04 FEAT] mpt3sas: Request to include the patch set which supports
    topology where zoning is enabled in expander (LP: #1899802)
    - scsi: mpt3sas: Define hba_port structure
    - scsi: mpt3sas: Allocate memory for hba_port objects
    - scsi: mpt3sas: Rearrange _scsih_mark_responding_sas_device()
    - scsi: mpt3sas: Update hba_port's sas_address & phy_mask
    - scsi: mpt3sas: Get device objects using sas_address & portID
    - scsi: mpt3sas: Rename transport_del_phy_from_an_existing_port()
    - scsi: mpt3sas: Get sas_device objects using device's rphy
    - scsi: mpt3sas: Update hba_port objects after host reset
    - scsi: mpt3sas: Set valid PhysicalPort in SMPPassThrough
    - scsi: mpt3sas: Handling HBA vSES device
    - scsi: mpt3sas: Add bypass_dirty_port_flag parameter
    - scsi: mpt3sas: Handle vSES vphy object during HBA reset
    - scsi: mpt3sas: Add module parameter multipath_on_hba
    - scsi: mpt3sas: Bump driver version to 35.101.00.00
  * CVE-2020-12912
    - hwmon: (amd_energy) modify the visibility of the counters
  * Intel Tiger Lake IDs supplement (LP: #1904521)
    - mtd: spi-nor: intel-spi: Add support for Intel Tiger Lake-H SPI serial flash
    - pinctrl: tigerlake: Add support for Tiger Lake-H
  * [i915] Noise-like lines of graphics corruption when moving windows in Xorg
    sessions (LP: #1896091)
    - Revert "UBUNTU: SAUCE: drm/i915: Synchronize active and retire callbacks"
  * Fix no headset sound after S3 on Intel HDA (LP: #1904595)
    - ALSA: hda: Refactor codec PM to use direct-complete optimization
    - ALSA: hda: Separate runtime and system suspend
    - ALSA: hda: Reinstate runtime_allow() for all hda controllers
  * Ask 8821C Bluetooth controller to drop old firmware (LP: #1904221)
    - Bluetooth: btrtl: Ask 8821C to drop old firmware
    - Bluetooth: btrtl: fix incorrect skb allocation failure check
  * Use ACPI S5 for reboot (LP: #1904225)
    - PM: ACPI: reboot: Use S5 for reboot
  * Groovy update: v5.8.18 upstream stable release (LP: #1904941)
    - netfilter: nftables_offload: KASAN slab-out-of-bounds Read in
      nft_flow_rule_create
    - io_uring: don't run task work on an exiting task
    - io_uring: allow timeout/poll/files killing to take task into account
    - io_uring: move dropping of files into separate helper
    - io_uring: stash ctx task reference for SQPOLL
    - io_uring: unconditionally grab req->task
    - io_uring: return cancelation status from poll/timeout/files handlers
    - io_uring: enable task/files specific overflow flushing
    - io_uring: don't rely on weak ->files references
    - io_uring: reference ->nsproxy for file table commands
    - io_wq: Make io_wqe::lock a raw_spinlock_t...

This bug was fixed in the package linux-raspi - 5.8.0-1011.14

---------------
linux-raspi (5.8.0-1011.14) groovy; urgency=medium

* groovy/linux-raspi: 5.8.0-1011.14 -proposed tracker (LP: #1907562)

* dmesg is not restricted in linux-raspi kernel (LP: #1902934)
    - [Config] raspi: SECURITY_DMESG_RESTRICT=y

[ Ubuntu: 5.8.0-34.37 ]

* groovy/linux: 5.8.0-34.37 -proposed tracker (LP: #1907576)
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * [Ubuntu 21.04 FEAT] mpt3sas: Request to include the patch set which supports
    topology where zoning is enabled in expander (LP: #1899802)
    - scsi: mpt3sas: Define hba_port structure
    - scsi: mpt3sas: Allocate memory for hba_port objects
    - scsi: mpt3sas: Rearrange _scsih_mark_responding_sas_device()
    - scsi: mpt3sas: Update hba_port's sas_address & phy_mask
    - scsi: mpt3sas: Get device objects using sas_address & portID
    - scsi: mpt3sas: Rename transport_del_phy_from_an_existing_port()
    - scsi: mpt3sas: Get sas_device objects using device's rphy
    - scsi: mpt3sas: Update hba_port objects after host reset
    - scsi: mpt3sas: Set valid PhysicalPort in SMPPassThrough
    - scsi: mpt3sas: Handling HBA vSES device
    - scsi: mpt3sas: Add bypass_dirty_port_flag parameter
    - scsi: mpt3sas: Handle vSES vphy object during HBA reset
    - scsi: mpt3sas: Add module parameter multipath_on_hba
    - scsi: mpt3sas: Bump driver version to 35.101.00.00
  * CVE-2020-12912
    - hwmon: (amd_energy) modify the visibility of the counters
  * Intel Tiger Lake IDs supplement (LP: #1904521)
    - mtd: spi-nor: intel-spi: Add support for Intel Tiger Lake-H SPI serial flash
    - pinctrl: tigerlake: Add support for Tiger Lake-H
  * [i915] Noise-like lines of graphics corruption when moving windows in Xorg
    sessions (LP: #1896091)
    - Revert "UBUNTU: SAUCE: drm/i915: Synchronize active and retire callbacks"
  * Fix no headset sound after S3 on Intel HDA (LP: #1904595)
    - ALSA: hda: Refactor codec PM to use direct-complete optimization
    - ALSA: hda: Separate runtime and system suspend
    - ALSA: hda: Reinstate runtime_allow() for all hda controllers
  * Ask 8821C Bluetooth controller to drop old firmware (LP: #1904221)
    - Bluetooth: btrtl: Ask 8821C to drop old firmware
    - Bluetooth: btrtl: fix incorrect skb allocation failure check
  * Use ACPI S5 for reboot (LP: #1904225)
    - PM: ACPI: reboot: Use S5 for reboot
  * Groovy update: v5.8.18 upstream stable release (LP: #1904941)
    - netfilter: nftables_offload: KASAN slab-out-of-bounds Read in
      nft_flow_rule_create
    - io_uring: don't run task work on an exiting task
    - io_uring: allow timeout/poll/files killing to take task into account
    - io_uring: move dropping of files into separate helper
    - io_uring: stash ctx task reference for SQPOLL
    - io_uring: unconditionally grab req->task
    - io_uring: return cancelation status from poll/timeout/files handlers
    - io_uring: enable task/files specific overflow flushing
    - io_uring: don't rely on weak ->files references
    - io_uring: reference ->nsproxy for file table commands
    - io_wq: Make io_wqe::lock a raw_spinlock_t
    - io-wq: fix use-after-free in io_wq_worker_running
    - io_uring: no need to call xa_destroy() on empty xarray
    - io_uring: Fix use of XArray in __io_uring_files_cancel
    - io_uring: Fix XArray usage in io_uring_add_task_file
    - io_uring: Convert advanced XArray uses to the normal API
    - scripts/setlocalversion: make git describe output more reliable
    - efi/arm64: libstub: Deal gracefully with EFI_RNG_PROTOCOL failure
    - fs/kernel_read_file: Remove FIRMWARE_EFI_EMBEDDED enum
    - arm64: Run ARCH_WORKAROUND_1 enabling code on all CPUs
    - arm64: Run ARCH_WORKAROUND_2 enabling code on all CPUs
    - arm64: link with -z norelro regardless of CONFIG_RELOCATABLE
    - x86/PCI: Fix intel_mid_pci.c build error when ACPI is not enabled
    - x86, powerpc: Rename memcpy_mcsafe() to copy_mc_to_{user, kernel}()
    - [Config] update config for ARCH_HAS_COPY_MC
    - x86/copy_mc: Introduce copy_mc_enhanced_fast_string()
    - bnxt_en: Check abort error state in bnxt_open_nic().
    - bnxt_en: Fix regression in workqueue cleanup logic in bnxt_remove_one().
    - bnxt_en: Invoke cancel_delayed_work_sync() for PFs also.
    - bnxt_en: Re-write PCI BARs after PCI fatal error.
    - bnxt_en: Send HWRM_FUNC_RESET fw command unconditionally.
    - chelsio/chtls: fix deadlock issue
    - chelsio/chtls: fix memory leaks in CPL handlers
    - chelsio/chtls: fix tls record info to user
    - cxgb4: set up filter action after rewrites
    - gtp: fix an use-before-init in gtp_newlink()
    - ibmveth: Fix use of ibmveth in a bridge.
    - ibmvnic: fix ibmvnic_set_mac
    - mlxsw: core: Fix memory leak on module removal
    - netem: fix zero division in tabledist
    - net: hns3: Clear the CMDQ registers before unmapping BAR region
    - net: ipa: command payloads already mapped
    - net/sched: act_mpls: Add softdep on mpls_gso.ko
    - r8169: fix issue with forced threading in combination with shared interrupts
    - ravb: Fix bit fields checking in ravb_hwtstamp_get()
    - tcp: Prevent low rmem stalls with SO_RCVLOWAT.
    - tipc: fix memory leak caused by tipc_buf_append()
    - net: protect tcf_block_unbind with block lock
    - erofs: avoid duplicated permission check for "trusted." xattrs
    - arch/x86/amd/ibs: Fix re-arming IBS Fetch
    - x86/traps: Fix #DE Oops message regression
    - x86/xen: disable Firmware First mode for correctable memory errors
    - PCI: aardvark: Fix initialization with old Marvell's Arm Trusted Firmware
    - ata: ahci: mvebu: Make SATA PHY optional for Armada 3720
    - fuse: fix page dereference after free
    - bpf: Fix comment for helper bpf_current_task_under_cgroup()
    - evm: Check size of security.evm before using it
    - p54: avoid accessing the data mapped to streaming DMA
    - cxl: Rework error message for incompatible slots
    - RDMA/addr: Fix race with netevent_callback()/rdma_addr_cancel()
    - mtd: lpddr: Fix bad logic in print_drs_error
    - drm/i915/gem: Serialise debugfs i915_gem_objects with ctx->mutex
    - serial: qcom_geni_serial: To correct QUP Version detection logic
    - serial: pl011: Fix lockdep splat when handling magic-sysrq interrupt
    - PM: runtime: Fix timer_expires data type on 32-bit arches
    - ata: sata_rcar: Fix DMA boundary mask
    - xen/gntdev.c: Mark pages as dirty
    - openrisc: Fix issue with get_user for 64-bit values
    - misc: rtsx: do not setting OC_POWER_DOWN reg in rtsx_pci_init_ocp()
    - phy: marvell: comphy: Convert internal SMCC firmware return codes to errno
    - Linux 5.8.18
  * linux-riscv 5.8.0-9-generic (all 5.8 kernels) fail to boot in qemu
    (LP: #1904912)
    - riscv: Fixup bootup failure with HARDENED_USERCOPY
  * Bionic: btrfs: kernel BUG at /build/linux-
    eTBZpZ/linux-4.15.0/fs/btrfs/ctree.c:3233! (LP: #1902254)
    - btrfs: tree-checker: fix incorrect printk format

-- Stefan Bader <stefan.bader@canonical.com>  Tue, 15 Dec 2020 09:33:32 +0100

Changed in linux-raspi (Ubuntu Groovy):
status:	Fix Committed → Fix Released

Revision history for this message

Launchpad Janitor (janitor) wrote on 2021-01-05:

#2

Download full text (15.6 KiB)

This bug was fixed in the package linux-raspi - 5.8.0-1011.14+21.04.1

---------------
linux-raspi (5.8.0-1011.14+21.04.1) hirsute; urgency=medium

* hirsute/linux-raspi: 5.8.0-1011.14+21.04.1 -proposed tracker (LP: #1907561)

[ Ubuntu: 5.8.0-1011.14 ]

  * groovy/linux-raspi: 5.8.0-1011.14 -proposed tracker (LP: #1907562)
  * dmesg is not restricted in linux-raspi kernel (LP: #1902934)
    - [Config] raspi: SECURITY_DMESG_RESTRICT=y
  * groovy/linux: 5.8.0-34.37 -proposed tracker (LP: #1907576)
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * [Ubuntu 21.04 FEAT] mpt3sas: Request to include the patch set which supports
    topology where zoning is enabled in expander (LP: #1899802)
    - scsi: mpt3sas: Define hba_port structure
    - scsi: mpt3sas: Allocate memory for hba_port objects
    - scsi: mpt3sas: Rearrange _scsih_mark_responding_sas_device()
    - scsi: mpt3sas: Update hba_port's sas_address & phy_mask
    - scsi: mpt3sas: Get device objects using sas_address & portID
    - scsi: mpt3sas: Rename transport_del_phy_from_an_existing_port()
    - scsi: mpt3sas: Get sas_device objects using device's rphy
    - scsi: mpt3sas: Update hba_port objects after host reset
    - scsi: mpt3sas: Set valid PhysicalPort in SMPPassThrough
    - scsi: mpt3sas: Handling HBA vSES device
    - scsi: mpt3sas: Add bypass_dirty_port_flag parameter
    - scsi: mpt3sas: Handle vSES vphy object during HBA reset
    - scsi: mpt3sas: Add module parameter multipath_on_hba
    - scsi: mpt3sas: Bump driver version to 35.101.00.00
  * CVE-2020-12912
    - hwmon: (amd_energy) modify the visibility of the counters
  * Intel Tiger Lake IDs supplement (LP: #1904521)
    - mtd: spi-nor: intel-spi: Add support for Intel Tiger Lake-H SPI serial flash
    - pinctrl: tigerlake: Add support for Tiger Lake-H
  * [i915] Noise-like lines of graphics corruption when moving windows in Xorg
    sessions (LP: #1896091)
    - Revert "UBUNTU: SAUCE: drm/i915: Synchronize active and retire callbacks"
  * Fix no headset sound after S3 on Intel HDA (LP: #1904595)
    - ALSA: hda: Refactor codec PM to use direct-complete optimization
    - ALSA: hda: Separate runtime and system suspend
    - ALSA: hda: Reinstate runtime_allow() for all hda controllers
  * Ask 8821C Bluetooth controller to drop old firmware (LP: #1904221)
    - Bluetooth: btrtl: Ask 8821C to drop old firmware
    - Bluetooth: btrtl: fix incorrect skb allocation failure check
  * Use ACPI S5 for reboot (LP: #1904225)
    - PM: ACPI: reboot: Use S5 for reboot
  * Groovy update: v5.8.18 upstream stable release (LP: #1904941)
    - netfilter: nftables_offload: KASAN slab-out-of-bounds Read in
      nft_flow_rule_create
    - io_uring: don't run task work on an exiting task
    - io_uring: allow timeout/poll/files killing to take task into account
    - io_uring: move dropping of files into separate helper
    - io_uring: stash ctx task reference for SQPOLL
    - io_uring: unconditionally grab req->task
    - io_uring: return cancelation status from poll/timeout/files handlers
    - io_uring: enable task/files specific overflow flushing
    - io_uring: don't rely on weak ->files references
    - io_...

This bug was fixed in the package linux-raspi - 5.8.0-1011.14+21.04.1

---------------
linux-raspi (5.8.0-1011.14+21.04.1) hirsute; urgency=medium

* hirsute/linux-raspi: 5.8.0-1011.14+21.04.1 -proposed tracker (LP: #1907561)

[ Ubuntu: 5.8.0-1011.14 ]

* groovy/linux-raspi: 5.8.0-1011.14 -proposed tracker (LP: #1907562)
  * dmesg is not restricted in linux-raspi kernel (LP: #1902934)
    - [Config] raspi: SECURITY_DMESG_RESTRICT=y
  * groovy/linux: 5.8.0-34.37 -proposed tracker (LP: #1907576)
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * [Ubuntu 21.04 FEAT] mpt3sas: Request to include the patch set which supports
    topology where zoning is enabled in expander (LP: #1899802)
    - scsi: mpt3sas: Define hba_port structure
    - scsi: mpt3sas: Allocate memory for hba_port objects
    - scsi: mpt3sas: Rearrange _scsih_mark_responding_sas_device()
    - scsi: mpt3sas: Update hba_port's sas_address & phy_mask
    - scsi: mpt3sas: Get device objects using sas_address & portID
    - scsi: mpt3sas: Rename transport_del_phy_from_an_existing_port()
    - scsi: mpt3sas: Get sas_device objects using device's rphy
    - scsi: mpt3sas: Update hba_port objects after host reset
    - scsi: mpt3sas: Set valid PhysicalPort in SMPPassThrough
    - scsi: mpt3sas: Handling HBA vSES device
    - scsi: mpt3sas: Add bypass_dirty_port_flag parameter
    - scsi: mpt3sas: Handle vSES vphy object during HBA reset
    - scsi: mpt3sas: Add module parameter multipath_on_hba
    - scsi: mpt3sas: Bump driver version to 35.101.00.00
  * CVE-2020-12912
    - hwmon: (amd_energy) modify the visibility of the counters
  * Intel Tiger Lake IDs supplement (LP: #1904521)
    - mtd: spi-nor: intel-spi: Add support for Intel Tiger Lake-H SPI serial flash
    - pinctrl: tigerlake: Add support for Tiger Lake-H
  * [i915] Noise-like lines of graphics corruption when moving windows in Xorg
    sessions (LP: #1896091)
    - Revert "UBUNTU: SAUCE: drm/i915: Synchronize active and retire callbacks"
  * Fix no headset sound after S3 on Intel HDA (LP: #1904595)
    - ALSA: hda: Refactor codec PM to use direct-complete optimization
    - ALSA: hda: Separate runtime and system suspend
    - ALSA: hda: Reinstate runtime_allow() for all hda controllers
  * Ask 8821C Bluetooth controller to drop old firmware (LP: #1904221)
    - Bluetooth: btrtl: Ask 8821C to drop old firmware
    - Bluetooth: btrtl: fix incorrect skb allocation failure check
  * Use ACPI S5 for reboot (LP: #1904225)
    - PM: ACPI: reboot: Use S5 for reboot
  * Groovy update: v5.8.18 upstream stable release (LP: #1904941)
    - netfilter: nftables_offload: KASAN slab-out-of-bounds Read in
      nft_flow_rule_create
    - io_uring: don't run task work on an exiting task
    - io_uring: allow timeout/poll/files killing to take task into account
    - io_uring: move dropping of files into separate helper
    - io_uring: stash ctx task reference for SQPOLL
    - io_uring: unconditionally grab req->task
    - io_uring: return cancelation status from poll/timeout/files handlers
    - io_uring: enable task/files specific overflow flushing
    - io_uring: don't rely on weak ->files references
    - io_uring: reference ->nsproxy for file table commands
    - io_wq: Make io_wqe::lock a raw_spinlock_t
    - io-wq: fix use-after-free in io_wq_worker_running
    - io_uring: no need to call xa_destroy() on empty xarray
    - io_uring: Fix use of XArray in __io_uring_files_cancel
    - io_uring: Fix XArray usage in io_uring_add_task_file
    - io_uring: Convert advanced XArray uses to the normal API
    - scripts/setlocalversion: make git describe output more reliable
    - efi/arm64: libstub: Deal gracefully with EFI_RNG_PROTOCOL failure
    - fs/kernel_read_file: Remove FIRMWARE_EFI_EMBEDDED enum
    - arm64: Run ARCH_WORKAROUND_1 enabling code on all CPUs
    - arm64: Run ARCH_WORKAROUND_2 enabling code on all CPUs
    - arm64: link with -z norelro regardless of CONFIG_RELOCATABLE
    - x86/PCI: Fix intel_mid_pci.c build error when ACPI is not enabled
    - x86, powerpc: Rename memcpy_mcsafe() to copy_mc_to_{user, kernel}()
    - [Config] update config for ARCH_HAS_COPY_MC
    - x86/copy_mc: Introduce copy_mc_enhanced_fast_string()
    - bnxt_en: Check abort error state in bnxt_open_nic().
    - bnxt_en: Fix regression in workqueue cleanup logic in bnxt_remove_one().
    - bnxt_en: Invoke cancel_delayed_work_sync() for PFs also.
    - bnxt_en: Re-write PCI BARs after PCI fatal error.
    - bnxt_en: Send HWRM_FUNC_RESET fw command unconditionally.
    - chelsio/chtls: fix deadlock issue
    - chelsio/chtls: fix memory leaks in CPL handlers
    - chelsio/chtls: fix tls record info to user
    - cxgb4: set up filter action after rewrites
    - gtp: fix an use-before-init in gtp_newlink()
    - ibmveth: Fix use of ibmveth in a bridge.
    - ibmvnic: fix ibmvnic_set_mac
    - mlxsw: core: Fix memory leak on module removal
    - netem: fix zero division in tabledist
    - net: hns3: Clear the CMDQ registers before unmapping BAR region
    - net: ipa: command payloads already mapped
    - net/sched: act_mpls: Add softdep on mpls_gso.ko
    - r8169: fix issue with forced threading in combination with shared interrupts
    - ravb: Fix bit fields checking in ravb_hwtstamp_get()
    - tcp: Prevent low rmem stalls with SO_RCVLOWAT.
    - tipc: fix memory leak caused by tipc_buf_append()
    - net: protect tcf_block_unbind with block lock
    - erofs: avoid duplicated permission check for "trusted." xattrs
    - arch/x86/amd/ibs: Fix re-arming IBS Fetch
    - x86/traps: Fix #DE Oops message regression
    - x86/xen: disable Firmware First mode for correctable memory errors
    - PCI: aardvark: Fix initialization with old Marvell's Arm Trusted Firmware
    - ata: ahci: mvebu: Make SATA PHY optional for Armada 3720
    - fuse: fix page dereference after free
    - bpf: Fix comment for helper bpf_current_task_under_cgroup()
    - evm: Check size of security.evm before using it
    - p54: avoid accessing the data mapped to streaming DMA
    - cxl: Rework error message for incompatible slots
    - RDMA/addr: Fix race with netevent_callback()/rdma_addr_cancel()
    - mtd: lpddr: Fix bad logic in print_drs_error
    - drm/i915/gem: Serialise debugfs i915_gem_objects with ctx->mutex
    - serial: qcom_geni_serial: To correct QUP Version detection logic
    - serial: pl011: Fix lockdep splat when handling magic-sysrq interrupt
    - PM: runtime: Fix timer_expires data type on 32-bit arches
    - ata: sata_rcar: Fix DMA boundary mask
    - xen/gntdev.c: Mark pages as dirty
    - openrisc: Fix issue with get_user for 64-bit values
    - misc: rtsx: do not setting OC_POWER_DOWN reg in rtsx_pci_init_ocp()
    - phy: marvell: comphy: Convert internal SMCC firmware return codes to errno
    - Linux 5.8.18
  * linux-riscv 5.8.0-9-generic (all 5.8 kernels) fail to boot in qemu
    (LP: #1904912)
    - riscv: Fixup bootup failure with HARDENED_USERCOPY
  * Bionic: btrfs: kernel BUG at /build/linux-
    eTBZpZ/linux-4.15.0/fs/btrfs/ctree.c:3233! (LP: #1902254)
    - btrfs: tree-checker: fix incorrect printk format

[ Ubuntu: 5.8.0-1010.13 ]

* groovy/linux-raspi: 5.8.0-1010.13 -proposed tracker (LP: #1907394)
  * groovy/linux: 5.8.0-33.36 -proposed tracker (LP: #1907408)
  * raid10: discard leads to corrupted file system (LP: #1907262)
    - Revert "dm raid: remove unnecessary discard limits for raid10"
    - Revert "dm raid: fix discard limits for raid1 and raid10"
    - Revert "md/raid10: improve discard request for far layout"
    - Revert "md/raid10: improve raid10 discard request"
    - Revert "md/raid10: pull codes that wait for blocked dev into one function"
    - Revert "md/raid10: extend r10bio devs to raid disks"
    - Revert "md: add md_submit_discard_bio() for submitting discard bio"
  * groovy/linux: 5.8.0-31.33 -proposed tracker (LP: #1905299)
  * Groovy 5.8 kernel hangs on boot on CPUs with eLLC (LP: #1903397)
    - drm/i915: Mark ininitial fb obj as WT on eLLC machines to avoid rcu lockup
      during fbdev init
  * CVE-2020-4788
    - selftests/powerpc: rfi_flush: disable entry flush if present
    - powerpc/64s: flush L1D on kernel entry
    - powerpc/64s: flush L1D after user accesses
    - selftests/powerpc: entry flush test

linux-raspi (5.8.0-1009.12+21.04.1) hirsute; urgency=medium

* hirsute/linux-raspi: 5.8.0-1009.12+21.04.1 -proposed tracker (LP: #1905850)

* Packaging resync (LP: #1786013)
    - update dkms package versions

[ Ubuntu: 5.8.0-1009.12 ]

* groovy/linux-raspi: 5.8.0-1009.12 -proposed tracker (LP: #1905851)
  * dmesg is not restricted in linux-raspi kernel (LP: #1902934)
    - [Config] raspi: SECURITY_DMESG_RESTRICT=y
  * groovy/linux: 5.8.0-32.34 -proposed tracker (LP: #1905865)
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * [Ubuntu 21.04 FEAT] mpt3sas: Request to include the patch set which supports
    topology where zoning is enabled in expander (LP: #1899802)
    - scsi: mpt3sas: Define hba_port structure
    - scsi: mpt3sas: Allocate memory for hba_port objects
    - scsi: mpt3sas: Rearrange _scsih_mark_responding_sas_device()
    - scsi: mpt3sas: Update hba_port's sas_address & phy_mask
    - scsi: mpt3sas: Get device objects using sas_address & portID
    - scsi: mpt3sas: Rename transport_del_phy_from_an_existing_port()
    - scsi: mpt3sas: Get sas_device objects using device's rphy
    - scsi: mpt3sas: Update hba_port objects after host reset
    - scsi: mpt3sas: Set valid PhysicalPort in SMPPassThrough
    - scsi: mpt3sas: Handling HBA vSES device
    - scsi: mpt3sas: Add bypass_dirty_port_flag parameter
    - scsi: mpt3sas: Handle vSES vphy object during HBA reset
    - scsi: mpt3sas: Add module parameter multipath_on_hba
    - scsi: mpt3sas: Bump driver version to 35.101.00.00
  * CVE-2020-12912
    - hwmon: (amd_energy) modify the visibility of the counters
  * Intel Tiger Lake IDs supplement (LP: #1904521)
    - mtd: spi-nor: intel-spi: Add support for Intel Tiger Lake-H SPI serial flash
    - pinctrl: tigerlake: Add support for Tiger Lake-H
  * [i915] Noise-like lines of graphics corruption when moving windows in Xorg
    sessions (LP: #1896091)
    - Revert "UBUNTU: SAUCE: drm/i915: Synchronize active and retire callbacks"
  * Fix no headset sound after S3 on Intel HDA (LP: #1904595)
    - ALSA: hda: Refactor codec PM to use direct-complete optimization
    - ALSA: hda: Separate runtime and system suspend
    - ALSA: hda: Reinstate runtime_allow() for all hda controllers
  * Ask 8821C Bluetooth controller to drop old firmware (LP: #1904221)
    - Bluetooth: btrtl: Ask 8821C to drop old firmware
    - Bluetooth: btrtl: fix incorrect skb allocation failure check
  * Use ACPI S5 for reboot (LP: #1904225)
    - PM: ACPI: reboot: Use S5 for reboot
  * Groovy update: v5.8.18 upstream stable release (LP: #1904941)
    - netfilter: nftables_offload: KASAN slab-out-of-bounds Read in
      nft_flow_rule_create
    - io_uring: don't run task work on an exiting task
    - io_uring: allow timeout/poll/files killing to take task into account
    - io_uring: move dropping of files into separate helper
    - io_uring: stash ctx task reference for SQPOLL
    - io_uring: unconditionally grab req->task
    - io_uring: return cancelation status from poll/timeout/files handlers
    - io_uring: enable task/files specific overflow flushing
    - io_uring: don't rely on weak ->files references
    - io_uring: reference ->nsproxy for file table commands
    - io_wq: Make io_wqe::lock a raw_spinlock_t
    - io-wq: fix use-after-free in io_wq_worker_running
    - io_uring: no need to call xa_destroy() on empty xarray
    - io_uring: Fix use of XArray in __io_uring_files_cancel
    - io_uring: Fix XArray usage in io_uring_add_task_file
    - io_uring: Convert advanced XArray uses to the normal API
    - scripts/setlocalversion: make git describe output more reliable
    - efi/arm64: libstub: Deal gracefully with EFI_RNG_PROTOCOL failure
    - fs/kernel_read_file: Remove FIRMWARE_EFI_EMBEDDED enum
    - arm64: Run ARCH_WORKAROUND_1 enabling code on all CPUs
    - arm64: Run ARCH_WORKAROUND_2 enabling code on all CPUs
    - arm64: link with -z norelro regardless of CONFIG_RELOCATABLE
    - x86/PCI: Fix intel_mid_pci.c build error when ACPI is not enabled
    - x86, powerpc: Rename memcpy_mcsafe() to copy_mc_to_{user, kernel}()
    - [Config] update config for ARCH_HAS_COPY_MC
    - x86/copy_mc: Introduce copy_mc_enhanced_fast_string()
    - bnxt_en: Check abort error state in bnxt_open_nic().
    - bnxt_en: Fix regression in workqueue cleanup logic in bnxt_remove_one().
    - bnxt_en: Invoke cancel_delayed_work_sync() for PFs also.
    - bnxt_en: Re-write PCI BARs after PCI fatal error.
    - bnxt_en: Send HWRM_FUNC_RESET fw command unconditionally.
    - chelsio/chtls: fix deadlock issue
    - chelsio/chtls: fix memory leaks in CPL handlers
    - chelsio/chtls: fix tls record info to user
    - cxgb4: set up filter action after rewrites
    - gtp: fix an use-before-init in gtp_newlink()
    - ibmveth: Fix use of ibmveth in a bridge.
    - ibmvnic: fix ibmvnic_set_mac
    - mlxsw: core: Fix memory leak on module removal
    - netem: fix zero division in tabledist
    - net: hns3: Clear the CMDQ registers before unmapping BAR region
    - net: ipa: command payloads already mapped
    - net/sched: act_mpls: Add softdep on mpls_gso.ko
    - r8169: fix issue with forced threading in combination with shared interrupts
    - ravb: Fix bit fields checking in ravb_hwtstamp_get()
    - tcp: Prevent low rmem stalls with SO_RCVLOWAT.
    - tipc: fix memory leak caused by tipc_buf_append()
    - net: protect tcf_block_unbind with block lock
    - erofs: avoid duplicated permission check for "trusted." xattrs
    - arch/x86/amd/ibs: Fix re-arming IBS Fetch
    - x86/traps: Fix #DE Oops message regression
    - x86/xen: disable Firmware First mode for correctable memory errors
    - PCI: aardvark: Fix initialization with old Marvell's Arm Trusted Firmware
    - ata: ahci: mvebu: Make SATA PHY optional for Armada 3720
    - fuse: fix page dereference after free
    - bpf: Fix comment for helper bpf_current_task_under_cgroup()
    - evm: Check size of security.evm before using it
    - p54: avoid accessing the data mapped to streaming DMA
    - cxl: Rework error message for incompatible slots
    - RDMA/addr: Fix race with netevent_callback()/rdma_addr_cancel()
    - mtd: lpddr: Fix bad logic in print_drs_error
    - drm/i915/gem: Serialise debugfs i915_gem_objects with ctx->mutex
    - serial: qcom_geni_serial: To correct QUP Version detection logic
    - serial: pl011: Fix lockdep splat when handling magic-sysrq interrupt
    - PM: runtime: Fix timer_expires data type on 32-bit arches
    - ata: sata_rcar: Fix DMA boundary mask
    - xen/gntdev.c: Mark pages as dirty
    - openrisc: Fix issue with get_user for 64-bit values
    - misc: rtsx: do not setting OC_POWER_DOWN reg in rtsx_pci_init_ocp()
    - phy: marvell: comphy: Convert internal SMCC firmware return codes to errno
    - Linux 5.8.18
  * linux-riscv 5.8.0-9-generic (all 5.8 kernels) fail to boot in qemu
    (LP: #1904912)
    - riscv: Fixup bootup failure with HARDENED_USERCOPY
  * Bionic: btrfs: kernel BUG at /build/linux-
    eTBZpZ/linux-4.15.0/fs/btrfs/ctree.c:3233! (LP: #1902254)
    - btrfs: tree-checker: fix incorrect printk format
  * groovy/linux: 5.8.0-31.33 -proposed tracker (LP: #1905299)
  * Groovy 5.8 kernel hangs on boot on CPUs with eLLC (LP: #1903397)
    - drm/i915: Mark ininitial fb obj as WT on eLLC machines to avoid rcu lockup
      during fbdev init
  * CVE-2020-4788
    - selftests/powerpc: rfi_flush: disable entry flush if present
    - powerpc/64s: flush L1D on kernel entry
    - powerpc/64s: flush L1D after user accesses
    - selftests/powerpc: entry flush test

-- Ian May <ian.may@canonical.com>  Tue, 15 Dec 2020 16:53:47 -0600

Changed in linux-raspi (Ubuntu):
status:	Triaged → Fix Released

Affects		Status	Importance	Assigned to	Milestone
	linux-raspi (Ubuntu)	Fix Released	Undecided	Unassigned
	Groovy	Fix Released	Undecided	Unassigned

Ubuntu
linux-raspi package

dmesg is not restricted in linux-raspi kernel

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Ubuntulinux-raspi package