Bionic update: upstream stable patchset 2022-03-04
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Medium
|
Kamal Mostafa |
Bug Description
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The following upstream
stable patches should be included in the Ubuntu kernel:
upstream stable patchset 2022-03-04
from git://git.
can: bcm: fix UAF of bcm op
net: bridge: clear bridge's private skb space on xmit
UBUNTU: upstream stable to v4.14.264, v4.19.227
Bluetooth: refactor malicious adv data check
s390/hypfs: include z/VM guests with access control group set
scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices
udf: Restore i_lenAlloc when inode expansion fails
udf: Fix NULL ptr deref when converting from inline format
PM: wakeup: simplify the output logic of pm_show_wakelocks()
netfilter: nft_payload: do not update layer 4 checksum when mangling fragments
serial: stm32: fix software flow control transfer
tty: n_gsm: fix SW flow control encoding/handling
tty: Add support for Brainboxes UC cards.
usb-storage: Add unusual-devs entry for VL817 USB-SATA bridge
usb: common: ulpi: Fix crash in ulpi_match()
usb: gadget: f_sourcesink: Fix isoc transfer for USB_SPEED_
USB: core: Fix hang in usb_kill_urb by adding memory barriers
usb: typec: tcpm: Do not disconnect while receiving VBUS off
net: sfp: ignore disabled SFP node
powerpc/32: Fix boot failure with GCC latent entropy plugin
lkdtm: Fix content of section containing lkdtm_rodata_
i40e: Increase delay to 1 s after global EMP reset
i40e: fix unsigned stat widths
rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev
rpmsg: char: Fix race between the release of rpmsg_eptdev and cdev
scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_
ipv6_tunnel: Rate limit warning messages
net: fix information leakage in /proc/net/ptype
ping: fix the sk_bound_dev_if match in ping_lookup
ipv4: avoid using shared IP generator for connected sockets
hwmon: (lm90) Reduce maximum conversion rate for G781
NFSv4: Handle case where the lookup of a directory fails
NFSv4: nfs_atomic_open() can race when looking up a non-regular file
net-procfs: show net devices bound packet types
drm/msm: Fix wrong size calculation
drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable
ibmvnic: don't spin in tasklet
yam: fix a memory leak in yam_siocdevpriv
ipv4: raw: lock the socket in raw_bind()
ipv4: tcp: send zero IPID in SYNACK messages
netfilter: nat: remove l4 protocol port rovers
netfilter: nat: limit port clash resolution attempts
ipheth: fix EOVERFLOW in ipheth_
net: amd-xgbe: ensure to reset the tx_timer_active flag
net: amd-xgbe: Fix skb data length underflow
rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink()
af_packet: fix data-race in packet_setsockopt / packet_setsockopt
audit: improve audit queue handling when "audit=1" on cmdline
ASoC: ops: Reject out of bounds values in snd_soc_put_volsw()
ASoC: ops: Reject out of bounds values in snd_soc_
ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx()
drm/nouveau: fix off by one in BIOS boundary checking
block: bio-integrity: Advance seed correctly for larger interval sizes
RDMA/mlx4: Don't continue event handler after memory allocation failure
iommu/vt-d: Fix potential memory leak in intel_setup_
iommu/amd: Fix loop timeout issue in iommu_ga_
spi: bcm-qspi: check for valid cs before applying chip select
spi: mediatek: Avoid NULL pointer crash in interrupt
spi: meson-spicc: add IRQ check in meson_spicc_probe
net: ieee802154: ca8210: Stop leaking skb's
net: ieee802154: Return meaningful error codes from the netlink helpers
net: macsec: Verify that send_sci is on when setting Tx sci explicitly
drm/i915/overlay: Prevent divide by zero bugs in scaling
ASoC: fsl: Add missing error handling in pcm030_fabric_probe
scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe
nfsd: nfsd4_setclient
selftests: futex: Use variable MAKE instead of make
rtc: cmos: Evaluate century appropriate
EDAC/altera: Fix deferred probing
EDAC/xgene: Fix deferred probing
ext4: fix error handling in ext4_restore_
serial: 8250: of: Fix mapped region size when using reg-offset property
i40e: Fix issue when maximum queues is exceeded
i40e: Fix queues reservation for XDP
ipv6: annotate accesses to fn->fn_sernum
ibmvnic: init ->running_cap_crqs early
UBUNTU: upstream stable to v4.14.265, v4.19.228
CVE References
Changed in linux (Ubuntu): | |
status: | New → Confirmed |
tags: | added: kernel-stable-tracking-bug |
Changed in linux (Ubuntu Bionic): | |
status: | New → In Progress |
importance: | Undecided → Medium |
assignee: | nobody → Kamal Mostafa (kamalmostafa) |
Changed in linux (Ubuntu): | |
status: | Confirmed → Invalid |
description: | updated |
Changed in linux (Ubuntu Bionic): | |
status: | In Progress → Fix Committed |
This bug was fixed in the package linux - 4.15.0-176.185
---------------
linux (4.15.0-176.185) bionic; urgency=medium
* bionic/linux: 4.15.0-176.185 -proposed tracker (LP: #1966771)
* Bionic update: upstream stable patchset 2022-03-04 (LP: #1963717) SUPER_PLUS do_nothing( ) interface_ put() ate() rcvbulk_ callback put_volsw_ sx()
- can: bcm: fix UAF of bcm op
- net: bridge: clear bridge's private skb space on xmit
- s390/hypfs: include z/VM guests with access control group set
- scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP
devices
- udf: Restore i_lenAlloc when inode expansion fails
- udf: Fix NULL ptr deref when converting from inline format
- PM: wakeup: simplify the output logic of pm_show_wakelocks()
- netfilter: nft_payload: do not update layer 4 checksum when mangling
fragments
- serial: stm32: fix software flow control transfer
- tty: n_gsm: fix SW flow control encoding/handling
- tty: Add support for Brainboxes UC cards.
- usb-storage: Add unusual-devs entry for VL817 USB-SATA bridge
- usb: common: ulpi: Fix crash in ulpi_match()
- usb: gadget: f_sourcesink: Fix isoc transfer for USB_SPEED_
- USB: core: Fix hang in usb_kill_urb by adding memory barriers
- usb: typec: tcpm: Do not disconnect while receiving VBUS off
- net: sfp: ignore disabled SFP node
- powerpc/32: Fix boot failure with GCC latent entropy plugin
- lkdtm: Fix content of section containing lkdtm_rodata_
- i40e: Increase delay to 1 s after global EMP reset
- i40e: fix unsigned stat widths
- rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev
- rpmsg: char: Fix race between the release of rpmsg_eptdev and cdev
- scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_
- ipv6_tunnel: Rate limit warning messages
- net: fix information leakage in /proc/net/ptype
- ping: fix the sk_bound_dev_if match in ping_lookup
- ipv4: avoid using shared IP generator for connected sockets
- hwmon: (lm90) Reduce maximum conversion rate for G781
- NFSv4: Handle case where the lookup of a directory fails
- NFSv4: nfs_atomic_open() can race when looking up a non-regular file
- net-procfs: show net devices bound packet types
- drm/msm: Fix wrong size calculation
- drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable
- ibmvnic: don't spin in tasklet
- yam: fix a memory leak in yam_siocdevpriv
- ipv4: raw: lock the socket in raw_bind()
- ipv4: tcp: send zero IPID in SYNACK messages
- netfilter: nat: remove l4 protocol port rovers
- netfilter: nat: limit port clash resolution attempts
- ipheth: fix EOVERFLOW in ipheth_
- net: amd-xgbe: ensure to reset the tx_timer_active flag
- net: amd-xgbe: Fix skb data length underflow
- rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink()
- af_packet: fix data-race in packet_setsockopt / packet_setsockopt
- ASoC: ops: Reject out of bounds values in snd_soc_put_volsw()
- ASoC: ops: Reject out of bounds values in snd_soc_
- ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx()
- drm/n...