Bug #1927632 “bionic/linux-dell300x: 4.15.0-1019.23 -proposed tr...” : Bugs : Kernel SRU Workflow

Kelsey Steele (kelsey-steele) on 2021-05-06

tags:	added: kernel-release-tracking-bug-live
description:	updated
tags:	added: kernel-sru-cycle-2021.05.10-1
description:	updated
tags:	added: kernel-sru-derivative-of-1927648
Changed in kernel-sru-workflow:
status:	New → Confirmed
importance:	Undecided → Medium

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-07

Changed in linux-dell300x (Ubuntu Bionic):
importance:	Undecided → Medium
Changed in kernel-sru-workflow:
status:	Confirmed → In Progress

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-07

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-11

description:

updated

Stefan Bader (smb) on 2021-05-12

summary:

- bionic/linux-dell300x: <version to be filled> -proposed tracker
+ bionic/linux-dell300x: 4.15.0-1019.23 -proposed tracker

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-12

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-12

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-12

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-12

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-13

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-14

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-15

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-20

description:

updated

Revision history for this message

Gavin Lin (gavin.lin) wrote on 2021-05-24:

#1

Found a potential regression, project team is investigating: https://bugs.launchpad.net/plano/+bug/1929366

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-24

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-05-28

description:

updated

Revision history for this message

Kleber Sacilotto de Souza (kleber-souza) wrote on 2021-06-04:

#2

Skipping the promotion of this kernel to -updates/-security due to the issue found with certification tests. This kernel will be replaced in -proposed by the build from the next SRU cycle.

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-06-04

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-06-04

description:

updated

Revision history for this message

Kleber Sacilotto de Souza (kleber-souza) wrote on 2021-06-04:

#3

This build is not going to be published to -updates/-security. Marking security-signoff as 'Invalid'.

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-06-04

description:

updated

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2021-06-04: Workflow done!

#4

All tasks have been completed and the bug is being set to Fix Released

Changed in kernel-sru-workflow:
status:	In Progress → Fix Released
tags:	removed: kernel-release-tracking-bug-live

Revision history for this message

Launchpad Janitor (janitor) wrote on 2021-06-22:

#5

Download full text (27.3 KiB)

This bug was fixed in the package linux-dell300x - 4.15.0-1022.26

---------------
linux-dell300x (4.15.0-1022.26) bionic; urgency=medium

[ Ubuntu: 4.15.0-147.151 ]

  * CVE-2021-3444
    - bpf: Fix truncation handling for mod32 dst reg wrt zero
  * CVE-2021-3600
    - SAUCE: bpf: Do not use ax register in interpreter on div/mod
    - bpf: fix subprog verifier bypass by div/mod by 0 exception
    - SAUCE: bpf: Fix 32-bit register truncation on div/mod instruction

linux-dell300x (4.15.0-1021.25) bionic; urgency=medium

[ Ubuntu: 4.15.0-146.150 ]

* UAF on CAN BCM bcm_rx_handler (LP: #1931855)
- SAUCE: can: bcm: delay release of struct bcm_op after synchronize_rcu

linux-dell300x (4.15.0-1020.24) bionic; urgency=medium

* bionic/linux-dell300x: 4.15.0-1020.24 -proposed tracker (LP: #1929950)

[ Ubuntu: 4.15.0-145.149 ]

  * bionic/linux: 4.15.0-145.149 -proposed tracker (LP: #1929967)
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * raid10: Block discard is very slow, causing severe delays for mkfs and
    fstrim operations (LP: #1896578)
    - md: add md_submit_discard_bio() for submitting discard bio
    - md/raid10: extend r10bio devs to raid disks
    - md/raid10: pull the code that wait for blocked dev into one function
    - md/raid10: improve raid10 discard request
    - md/raid10: improve discard request for far layout
  * CVE-2021-23133
    - sctp: delay auto_asconf init until binding the first addr
  * Bionic update: upstream stable patchset 2021-05-25 (LP: #1929603)
    - Input: nspire-keypad - enable interrupts only when opened
    - dmaengine: dw: Make it dependent to HAS_IOMEM
    - ARM: dts: Fix moving mmc devices with aliases for omap4 & 5
    - arc: kernel: Return -EFAULT if copy_to_user() fails
    - neighbour: Disregard DEAD dst in neigh_update
    - ARM: keystone: fix integer overflow warning
    - ASoC: fsl_esai: Fix TDM slot setup for I2S mode
    - scsi: scsi_transport_srp: Don't block target in SRP_PORT_LOST state
    - net: ieee802154: stop dump llsec keys for monitors
    - net: ieee802154: stop dump llsec devs for monitors
    - net: ieee802154: forbid monitor for add llsec dev
    - net: ieee802154: stop dump llsec devkeys for monitors
    - net: ieee802154: forbid monitor for add llsec devkey
    - net: ieee802154: stop dump llsec seclevels for monitors
    - net: ieee802154: forbid monitor for add llsec seclevel
    - pcnet32: Use pci_resource_len to validate PCI resource
    - mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN
    - Input: i8042 - fix Pegatron C15B ID entry
    - HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices
    - readdir: make sure to verify directory entry for legacy interfaces too
    - arm64: fix inline asm in load_unaligned_zeropad()
    - arm64: alternatives: Move length validation in alternative_{insn, endif}
    - scsi: libsas: Reset num_scatter if libata marks qc as NODATA
    - netfilter: conntrack: do not print icmpv6 as unknown via /proc
    - netfilter: nft_limit: avoid possible divide error in nft_limit_init
    - net: davicom: Fix regulator not turned off on failed probe
    - net: sit: Unregister cat...

This bug was fixed in the package linux-dell300x - 4.15.0-1022.26

---------------
linux-dell300x (4.15.0-1022.26) bionic; urgency=medium

[ Ubuntu: 4.15.0-147.151 ]

* CVE-2021-3444
    - bpf: Fix truncation handling for mod32 dst reg wrt zero
  * CVE-2021-3600
    - SAUCE: bpf: Do not use ax register in interpreter on div/mod
    - bpf: fix subprog verifier bypass by div/mod by 0 exception
    - SAUCE: bpf: Fix 32-bit register truncation on div/mod instruction

linux-dell300x (4.15.0-1021.25) bionic; urgency=medium

[ Ubuntu: 4.15.0-146.150 ]

* UAF on CAN BCM bcm_rx_handler (LP: #1931855)
    - SAUCE: can: bcm: delay release of struct bcm_op after synchronize_rcu

linux-dell300x (4.15.0-1020.24) bionic; urgency=medium

* bionic/linux-dell300x: 4.15.0-1020.24 -proposed tracker (LP: #1929950)

[ Ubuntu: 4.15.0-145.149 ]

* bionic/linux: 4.15.0-145.149 -proposed tracker (LP: #1929967)
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * raid10: Block discard is very slow, causing severe delays for mkfs and
    fstrim operations (LP: #1896578)
    - md: add md_submit_discard_bio() for submitting discard bio
    - md/raid10: extend r10bio devs to raid disks
    - md/raid10: pull the code that wait for blocked dev into one function
    - md/raid10: improve raid10 discard request
    - md/raid10: improve discard request for far layout
  * CVE-2021-23133
    - sctp: delay auto_asconf init until binding the first addr
  * Bionic update: upstream stable patchset 2021-05-25 (LP: #1929603)
    - Input: nspire-keypad - enable interrupts only when opened
    - dmaengine: dw: Make it dependent to HAS_IOMEM
    - ARM: dts: Fix moving mmc devices with aliases for omap4 & 5
    - arc: kernel: Return -EFAULT if copy_to_user() fails
    - neighbour: Disregard DEAD dst in neigh_update
    - ARM: keystone: fix integer overflow warning
    - ASoC: fsl_esai: Fix TDM slot setup for I2S mode
    - scsi: scsi_transport_srp: Don't block target in SRP_PORT_LOST state
    - net: ieee802154: stop dump llsec keys for monitors
    - net: ieee802154: stop dump llsec devs for monitors
    - net: ieee802154: forbid monitor for add llsec dev
    - net: ieee802154: stop dump llsec devkeys for monitors
    - net: ieee802154: forbid monitor for add llsec devkey
    - net: ieee802154: stop dump llsec seclevels for monitors
    - net: ieee802154: forbid monitor for add llsec seclevel
    - pcnet32: Use pci_resource_len to validate PCI resource
    - mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN
    - Input: i8042 - fix Pegatron C15B ID entry
    - HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices
    - readdir: make sure to verify directory entry for legacy interfaces too
    - arm64: fix inline asm in load_unaligned_zeropad()
    - arm64: alternatives: Move length validation in alternative_{insn, endif}
    - scsi: libsas: Reset num_scatter if libata marks qc as NODATA
    - netfilter: conntrack: do not print icmpv6 as unknown via /proc
    - netfilter: nft_limit: avoid possible divide error in nft_limit_init
    - net: davicom: Fix regulator not turned off on failed probe
    - net: sit: Unregister catch-all devices
    - i40e: fix the panic when running bpf in xdpdrv mode
    - ibmvnic: avoid calling napi_disable() twice
    - ibmvnic: remove duplicate napi_schedule call in do_reset function
    - ibmvnic: remove duplicate napi_schedule call in open function
    - ARM: footbridge: fix PCI interrupt mapping
    - ARM: 9071/1: uprobes: Don't hook on thumb instructions
    - pinctrl: lewisburg: Update number of pins in community
    - HID: wacom: Assign boolean values to a bool variable
    - ARM: dts: Fix swapped mmc order for omap3
    - net: geneve: check skb is large enough for IPv4/IPv6 header
    - s390/entry: save the caller of psw_idle
    - xen-netback: Check for hotplug-status existence before watching
    - cavium/liquidio: Fix duplicate argument
    - ia64: fix discontig.c section mismatches
    - ia64: tools: remove duplicate definition of ia64_mf() on ia64
    - x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access
    - net: hso: fix NULL-deref on disconnect regression
    - USB: CDC-ACM: fix poison/unpoison imbalance
    - lockdep: Add a missing initialization hint to the "INFO: Trying to register
      non-static key" message
    - drm/msm: Fix a5xx/a6xx timestamps
    - Input: s6sy761 - fix coordinate read bit shift
    - net: ip6_tunnel: Unregister catch-all devices
    - ACPI: tables: x86: Reserve memory occupied by ACPI tables
    - ACPI: x86: Call acpi_boot_table_init() after acpi_table_upgrade()
    - net: usb: ax88179_178a: initialize local variables before use
    - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_enqueue_hcmd()
    - mips: Do not include hi and lo in clobber list for R6
    - bpf: Fix masking negation logic upon negative dst register
    - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_gen2_enqueue_hcmd()
    - ALSA: usb-audio: Add MIDI quirk for Vox ToneLab EX
    - USB: Add reset-resume quirk for WD19's Realtek Hub
    - platform/x86: thinkpad_acpi: Correct thermal sensor allocation
  * r8152 tx status -71 (LP: #1922651) // Bionic update: upstream stable
    patchset 2021-05-25 (LP: #1929603)
    - USB: Add LPM quirk for Lenovo ThinkPad USB-C Dock Gen2 Ethernet
  * seccomp_bpf:syscall_faked from kselftests fail on s390x (LP: #1928522)
    - selftests/seccomp: s390 shares the syscall and return value register
  * Fix kdump failures (LP: #1927518)
    - video: hyperv_fb: Add ratelimit on error message
    - Drivers: hv: vmbus: Increase wait time for VMbus unload
    - Drivers: hv: vmbus: Initialize unload_event statically

linux-dell300x (4.15.0-1019.23) bionic; urgency=medium

* bionic/linux-dell300x: 4.15.0-1019.23 -proposed tracker (LP: #1927632)

[ Ubuntu: 4.15.0-144.148 ]

* bionic/linux: 4.15.0-144.148 -proposed tracker (LP: #1927648)
  * Introduce the 465 driver series, fabric-manager, and libnvidia-nscq
    (LP: #1925522)
    - debian/dkms-versions -- add NVIDIA 465 and migrate 450 to 460
  * xfrm_policy.sh / pmtu.sh / udpgso_bench.sh from net in
    ubuntu_kernel_selftests will fail if running the whole suite (LP: #1856010)
    - selftests/net: bump timeout to 5 minutes
  * locking/qrwlock: Fix ordering in queued_write_lock_slowpath() (LP: #1926184)
    - locking/barriers: Introduce smp_cond_load_relaxed() and
      atomic_cond_read_relaxed()
    - locking/qrwlock: Fix ordering in queued_write_lock_slowpath()
  * Bionic update: upstream stable patchset 2021-04-30 (LP: #1926808)
    - net: fec: ptp: avoid register access when ipg clock is disabled
    - powerpc/4xx: Fix build errors from mfdcr()
    - atm: eni: dont release is never initialized
    - atm: lanai: dont run lanai_dev_close if not open
    - Revert "r8152: adjust the settings about MAC clock speed down for RTL8153"
    - ixgbe: Fix memleak in ixgbe_configure_clsu32
    - net: tehuti: fix error return code in bdx_probe()
    - sun/niu: fix wrong RXMAC_BC_FRM_CNT_COUNT count
    - gpiolib: acpi: Add missing IRQF_ONESHOT
    - nfs: fix PNFS_FLEXFILE_LAYOUT Kconfig default
    - NFS: Correct size calculation for create reply length
    - net: hisilicon: hns: fix error return code of hns_nic_clear_all_rx_fetch()
    - net: wan: fix error return code of uhdlc_init()
    - atm: uPD98402: fix incorrect allocation
    - atm: idt77252: fix null-ptr-dereference
    - sparc64: Fix opcode filtering in handling of no fault loads
    - u64_stats,lockdep: Fix u64_stats_init() vs lockdep
    - drm/radeon: fix AGP dependency
    - nfs: we don't support removing system.nfs4_acl
    - ia64: fix ia64_syscall_get_set_arguments() for break-based syscalls
    - ia64: fix ptrace(PTRACE_SYSCALL_INFO_EXIT) sign
    - squashfs: fix inode lookup sanity checks
    - squashfs: fix xattr id and id lookup sanity checks
    - arm64: dts: ls1046a: mark crypto engine dma coherent
    - arm64: dts: ls1012a: mark crypto engine dma coherent
    - arm64: dts: ls1043a: mark crypto engine dma coherent
    - ARM: dts: at91-sama5d27_som1: fix phy address to 7
    - dm ioctl: fix out of bounds array access when no devices
    - bus: omap_l3_noc: mark l3 irqs as IRQF_NO_THREAD
    - libbpf: Fix INSTALL flag order
    - macvlan: macvlan_count_rx() needs to be aware of preemption
    - net: dsa: bcm_sf2: Qualify phydev->dev_flags based on port
    - e1000e: add rtnl_lock() to e1000_reset_task
    - e1000e: Fix error handling in e1000_set_d0_lplu_state_82571
    - net/qlcnic: Fix a use after free in qlcnic_83xx_get_minidump_template
    - ftgmac100: Restart MAC HW once
    - can: peak_usb: add forgotten supported devices
    - can: c_can_pci: c_can_pci_remove(): fix use-after-free
    - can: c_can: move runtime PM enable/disable to c_can_platform
    - can: m_can: m_can_do_rx_poll(): fix extraneous msg loss warning
    - mac80211: fix rate mask reset
    - net: cdc-phonet: fix data-interface release on probe failure
    - net: stmmac: dwmac-sun8i: Provide TX and RX fifo sizes
    - drm/msm: fix shutdown hook in case GPU components failed to bind
    - arm64: kdump: update ppos when reading elfcorehdr
    - net/mlx5e: Fix error path for ethtool set-priv-flag
    - RDMA/cxgb4: Fix adapter LE hash errors while destroying ipv6 listening
      server
    - ACPI: scan: Rearrange memory allocation in acpi_device_add()
    - ACPI: scan: Use unique number for instance_no
    - perf auxtrace: Fix auxtrace queue conflict
    - scsi: qedi: Fix error return code of qedi_alloc_global_queues()
    - scsi: mpt3sas: Fix error return code of mpt3sas_base_attach()
    - locking/mutex: Fix non debug version of mutex_lock_io_nested()
    - can: dev: Move device back to init netns on owning netns delete
    - net: sched: validate stab values
    - net: qrtr: fix a kernel-infoleak in qrtr_recvmsg()
    - mac80211: fix double free in ibss_leave
    - ext4: add reclaim checks to xattr code
    - can: peak_usb: Revert "can: peak_usb: add forgotten supported devices"
    - block: Suppress uevent for hidden device when removed
    - netsec: restore phy power state after controller reset
    - can: flexcan: flexcan_chip_freeze(): fix chip freeze for missing bitrate
    - dm verity: add root hash pkcs#7 signature verification
    - x86/mem_encrypt: Correct physical address calculation in __set_clr_pte_enc()
    - selinux: vsock: Set SID for socket returned by accept()
    - ipv6: weaken the v4mapped source check
    - ext4: fix bh ref count on error paths
    - rpc: fix NULL dereference on kmalloc failure
    - ASoC: rt5640: Fix dac- and adc- vol-tlv values being off by a factor of 10
    - ASoC: rt5651: Fix dac- and adc- vol-tlv values being off by a factor of 10
    - ASoC: sgtl5000: set DAP_AVC_CTRL register to correct default value on probe
    - ASoC: es8316: Simplify adc_pga_gain_tlv table
    - ASoC: cs42l42: Fix mixer volume control
    - ASoC: cs42l42: Always wait at least 3ms after reset
    - vhost: Fix vhost_vq_reset()
    - scsi: st: Fix a use after free in st_open()
    - scsi: qla2xxx: Fix broken #endif placement
    - staging: comedi: cb_pcidas: fix request_irq() warn
    - staging: comedi: cb_pcidas64: fix request_irq() warn
    - ASoC: rt5659: Update MCLK rate in set_sysclk()
    - ext4: do not iput inode under running transaction in ext4_rename()
    - brcmfmac: clear EAP/association status bits on linkdown events
    - net: ethernet: aquantia: Handle error cleanup of start on open
    - appletalk: Fix skb allocation size in loopback case
    - net: wan/lmc: unregister device when no matching device is found
    - bpf: Remove MTU check in __bpf_skb_max_len
    - ALSA: usb-audio: Apply sample rate quirk to Logitech Connect
    - ALSA: hda/realtek: fix a determine_headset_type issue for a Dell AIO
    - ALSA: hda/realtek: call alc_update_headset_mode() in hp_automute_hook
    - tracing: Fix stack trace event size
    - mm: fix race by making init_zero_pfn() early_initcall
    - drm/amdgpu: fix offset calculation in amdgpu_vm_bo_clear_mappings()
    - drm/amdgpu: check alignment on CPU page for bo map
    - reiserfs: update reiserfs_xattrs_initialized() condition
    - mm: memcontrol: fix NR_WRITEBACK leak in memcg and system stats
    - mm: memcg: make sure memory.events is uptodate when waking pollers
    - mem_cgroup: make sure moving_account, move_lock_task and stat_cpu in the
      same cacheline
    - mm: fix oom_kill event handling
    - mm: writeback: use exact memcg dirty counts
    - pinctrl: rockchip: fix restore error in resume
    - extcon: Add stubs for extcon_register_notifier_all() functions
    - extcon: Fix error handling in extcon_dev_register
    - firewire: nosy: Fix a use-after-free bug in nosy_ioctl()
    - usbip: vhci_hcd fix shift out-of-bounds in vhci_hub_control()
    - USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem
    - usb: musb: Fix suspend with devices connected for a64
    - usb: xhci-mtk: fix broken streams issue on 0.96 xHCI
    - cdc-acm: fix BREAK rx code path adding necessary calls
    - USB: cdc-acm: untangle a circular dependency between callback and softint
    - USB: cdc-acm: downgrade message to debug
    - USB: cdc-acm: fix use-after-free after probe failure
    - usb: gadget: udc: amd5536udc_pci fix null-ptr-dereference
    - staging: rtl8192e: Fix incorrect source in memcpy()
    - staging: rtl8192e: Change state information from u16 to u8
    - drivers: video: fbcon: fix NULL dereference in fbcon_cursor()
    - ARM: dts: am33xx: add aliases for mmc interfaces
    - net: pxa168_eth: Fix a potential data race in pxa168_eth_remove
    - mISDN: fix crash in fritzpci
    - mac80211: choose first enabled channel for monitor
    - drm/msm: Ratelimit invalid-fence message
    - platform/x86: thinkpad_acpi: Allow the FnLock LED to change state
    - x86/build: Turn off -fcf-protection for realmode targets
    - scsi: target: pscsi: Clean up after failure in pscsi_map_sg()
    - ia64: mca: allocate early mca with GFP_ATOMIC
    - cifs: revalidate mapping when we open files for SMB1 POSIX
    - cifs: Silently ignore unknown oplock break handle
    - init/Kconfig: make COMPILE_TEST depend on !S390
    - init/Kconfig: make COMPILE_TEST depend on HAS_IOMEM
    - ia64: fix format strings for err_inject
    - ALSA: aloop: Fix initialization of controls
    - ASoC: intel: atom: Stop advertising non working S24LE support
    - nfc: fix refcount leak in llcp_sock_bind()
    - nfc: fix refcount leak in llcp_sock_connect()
    - nfc: fix memory leak in llcp_sock_connect()
    - nfc: Avoid endless loops caused by repeated llcp_sock_connect()
    - xen/evtchn: Change irq_info lock to raw_spinlock_t
    - net: ipv6: check for validity before dereferencing cfg->fc_nlinfo.nlh
    - ia64: fix user_stack_pointer() for ptrace()
    - ocfs2: fix deadlock between setattr and dio_end_io_write
    - fs: direct-io: fix missing sdio->boundary
    - parisc: parisc-agp requires SBA IOMMU driver
    - parisc: avoid a warning on u8 cast for cmpxchg on u8 pointers
    - ARM: dts: turris-omnia: configure LED[2]/INTn pin as interrupt pin
    - batman-adv: initialize "struct batadv_tvlv_tt_vlan_data"->reserved field
    - net: ensure mac header is set in virtio_net_hdr_to_skb()
    - net: sched: sch_teql: fix null-pointer dereference
    - usbip: add sysfs_lock to synchronize sysfs code paths
    - usbip: stub-dev synchronize sysfs code paths
    - usbip: synchronize event handler with sysfs code paths
    - i2c: turn recovery error on init to debug
    - regulator: bd9571mwv: Fix AVS and DVFS voltage range
    - ASoC: wm8960: Fix wrong bclk and lrclk with pll enabled for some chips
    - amd-xgbe: Update DMA coherency values
    - sch_red: fix off-by-one checks in red_check_params()
    - gianfar: Handle error code at MAC address change
    - net:tipc: Fix a double free in tipc_sk_mcast_rcv
    - ARM: dts: imx6: pbab01: Set vmmc supply for both SD interfaces
    - net/ncsi: Avoid channel_monitor hrtimer deadlock
    - ASoC: sunxi: sun4i-codec: fill ASoC card owner
    - soc/fsl: qbman: fix conflicting alignment attributes
    - clk: fix invalid usage of list cursor in register
    - clk: fix invalid usage of list cursor in unregister
    - workqueue: Move the position of debug_work_activate() in __queue_work()
    - s390/cpcmd: fix inline assembly register clobbering
    - net/mlx5: Fix placement of log_max_flow_counter
    - RDMA/cxgb4: check for ipv6 address properly while destroying listener
    - clk: socfpga: fix iomem pointer cast on 64-bit
    - net/ncsi: Add generic netlink family
    - net/ncsi: Refactor MAC, VLAN filters
    - net/ncsi: Avoid GFP_KERNEL in response handler
    - cfg80211: remove WARN_ON() in cfg80211_sme_connect
    - net: tun: set tun->dev->addr_len during TUNSETLINK processing
    - drivers: net: fix memory leak in atusb_probe
    - drivers: net: fix memory leak in peak_usb_create_dev
    - net: mac802154: Fix general protection fault
    - net: ieee802154: nl-mac: fix check on panid
    - net: ieee802154: fix nl802154 del llsec key
    - net: ieee802154: fix nl802154 del llsec dev
    - net: ieee802154: fix nl802154 add llsec key
    - net: ieee802154: fix nl802154 del llsec devkey
    - net: ieee802154: forbid monitor for set llsec params
    - net: ieee802154: forbid monitor for del llsec seclevel
    - net: ieee802154: stop dump llsec params for monitors
    - Revert "cifs: Set CIFS_MOUNT_USE_PREFIX_PATH flag on setting
      cifs_sb->prepath."
    - KVM: arm64: Hide system instruction access to Trace registers
    - KVM: arm64: Disable guest access to trace filter controls
    - drm/imx: imx-ldb: fix out of bounds array access warning
    - gfs2: report "already frozen/thawed" errors
    - block: only update parent bi_status when bio fail
    - net: phy: broadcom: Only advertise EEE for supported modes
    - netfilter: x_tables: fix compat match/target pad out-of-bound write
    - perf map: Tighten snprintf() string precision to pass gcc check on some
      32-bit arches
    - xen/events: fix setting irq affinity
    - net: hso: fix null-ptr-deref during tty device unregistration
    - usbip: vudc synchronize sysfs code paths
    - net: xfrm: Localize sequence counter per network namespace
    - i40e: Added Asym_Pause to supported link modes
    - i40e: Fix kernel oops when i40e driver removes VF's
    - drm/tegra: dc: Don't set PLL clock to 0Hz
    - riscv,entry: fix misaligned base for excp_vect_table
  * s390x broken with unknown syscall number on kernels < 5.8 (LP: #1895132)
    - s390/ptrace: return -ENOSYS when invalid syscall is supplied
    - s390/ptrace: pass invalid syscall numbers to tracing
  * Bionic update: upstream stable patchset 2021-04-14 (LP: #1923897)
    - uapi: nfnetlink_cthelper.h: fix userspace compilation error
    - ath9k: fix transmitting to stations in dynamic SMPS mode
    - net: Fix gro aggregation for udp encaps with zero csum
    - net: Introduce parse_protocol header_ops callback
    - net: check if protocol extracted by virtio_net_hdr_set_proto is correct
    - net: avoid infinite loop in mpls_gso_segment when mpls_hlen == 0
    - can: skb: can_skb_set_owner(): fix ref counting if socket was closed before
      setting skb ownership
    - can: flexcan: assert FRZ bit in flexcan_chip_freeze()
    - can: flexcan: enable RX FIFO after FRZ/HALT valid
    - netfilter: x_tables: gpf inside xt_find_revision()
    - cifs: return proper error code in statfs(2)
    - scripts/recordmcount.{c,pl}: support -ffunction-sections .text.* section
      names
    - Revert "mm, slub: consider rest of partial list if acquire_slab() fails"
    - sh_eth: fix TRSCER mask for SH771x
    - net/mlx4_en: update moderation when config reset
    - net: stmmac: fix incorrect DMA channel intr enable setting of EQoS v4.10
    - net: sched: avoid duplicates in classes dump
    - net: usb: qmi_wwan: allow qmimux add/del with master up
    - cipso,calipso: resolve a number of problems with the DOI refcounts
    - net: lapbether: Remove netif_start_queue / netif_stop_queue
    - net: davicom: Fix regulator not turned off on failed probe
    - net: davicom: Fix regulator not turned off on driver removal
    - net: stmmac: stop each tx channel independently
    - perf traceevent: Ensure read cmdlines are null terminated.
    - s390/cio: return -EFAULT if copy_to_user() fails again
    - drm/compat: Clear bounce structures
    - drm: meson_drv add shutdown function
    - s390/cio: return -EFAULT if copy_to_user() fails
    - media: usbtv: Fix deadlock on suspend
    - net: phy: fix save wrong speed and duplex problem if autoneg is on
    - udf: fix silent AED tagLocation corruption
    - mmc: mxs-mmc: Fix a resource leak in an error handling path in
      'mxs_mmc_probe()'
    - mmc: mediatek: fix race condition between msdc_request_timeout and irq
    - powerpc: improve handling of unrecoverable system reset
    - powerpc/perf: Record counter overflow always if SAMPLE_IP is unset
    - PCI: xgene-msi: Fix race in installing chained irq handler
    - PCI: mediatek: Add missing of_node_put() to fix reference leak
    - s390/smp: __smp_rescan_cpus() - move cpumask away from stack
    - scsi: libiscsi: Fix iscsi_prep_scsi_cmd_pdu() error handling
    - ALSA: hda/hdmi: Cancel pending works before suspend
    - ALSA: hda: Drop the BATCH workaround for AMD controllers
    - ALSA: hda: Avoid spurious unsol event handling during S3/S4
    - ALSA: usb-audio: Fix "cannot get freq eq" errors on Dell AE515 sound bar
    - Revert 95ebabde382c ("capabilities: Don't allow writing ambiguous v3 file
      capabilities")
    - s390/dasd: fix hanging DASD driver unbind
    - s390/dasd: fix hanging IO request during DASD driver unbind
    - mmc: core: Fix partition switch time for eMMC
    - Goodix Fingerprint device is not a modem
    - USB: gadget: u_ether: Fix a configfs return code
    - usb: gadget: f_uac2: always increase endpoint max_packet_size by one audio
      slot
    - usb: gadget: f_uac1: stop playback on function disable
    - usb: renesas_usbhs: Clear PIPECFG for re-enabling pipe with other EPNUM
    - xhci: Improve detection of device initiated wake signal.
    - usb: xhci: Fix ASMedia ASM1042A and ASM3242 DMA addressing
    - USB: serial: io_edgeport: fix memory leak in edge_startup
    - USB: serial: ch341: add new Product ID
    - USB: serial: cp210x: add ID for Acuity Brands nLight Air Adapter
    - USB: serial: cp210x: add some more GE USB IDs
    - usbip: fix stub_dev to check for stream socket
    - usbip: fix vhci_hcd to check for stream socket
    - usbip: fix vudc to check for stream socket
    - usbip: fix vhci_hcd attach_store() races leading to gpf
    - staging: rtl8192u: fix ->ssid overflow in r8192_wx_set_scan()
    - staging: rtl8188eu: prevent ->ssid overflow in rtw_wx_set_scan()
    - staging: rtl8712: unterminated string leads to read overflow
    - staging: rtl8188eu: fix potential memory corruption in
      rtw_check_beacon_data()
    - staging: ks7010: prevent buffer overflow in ks_wlan_set_scan()
    - staging: rtl8712: Fix possible buffer overflow in r8712_sitesurvey_cmd
    - staging: rtl8192e: Fix possible buffer overflow in _rtl92e_wx_set_scan
    - staging: comedi: addi_apci_1032: Fix endian problem for COS sample
    - staging: comedi: addi_apci_1500: Fix endian problem for command sample
    - staging: comedi: adv_pci1710: Fix endian problem for AI command data
    - staging: comedi: das6402: Fix endian problem for AI command data
    - staging: comedi: das800: Fix endian problem for AI command data
    - staging: comedi: dmm32at: Fix endian problem for AI command data
    - staging: comedi: me4000: Fix endian problem for AI command data
    - staging: comedi: pcl711: Fix endian problem for AI command data
    - staging: comedi: pcl818: Fix endian problem for AI command data
    - sh_eth: fix TRSCER mask for R7S72100
    - NFSv4.2: fix return value of _nfs4_get_security_label()
    - block: rsxx: fix error return code of rsxx_pci_probe()
    - configfs: fix a use-after-free in __configfs_open_file
    - stop_machine: mark helpers __always_inline
    - include/linux/sched/mm.h: use rcu_dereference in in_vfork()
    - powerpc/64s: Fix instruction encoding for lis in ppc_function_entry()
    - binfmt_misc: fix possible deadlock in bm_register_write
    - hwmon: (lm90) Fix max6658 sporadic wrong temperature reading
    - KVM: arm64: Fix exclusive limit for IPA size
    - xen/events: reset affinity of 2-level event when tearing it down
    - xen/events: don't unmask an event channel when an eoi is pending
    - xen/events: avoid handling the same event on two cpus at the same time
    - tcp: add sanity tests to TCP_QUEUE_SEQ
    - net: qrtr: fix error return code of qrtr_sendmsg()
    - net: stmmac: fix watchdog timeout during suspend/resume stress test
    - i2c: rcar: optimize cacheline to minimize HW race condition
    - powerpc/pci: Add ppc_md.discover_phbs()
    - PCI: Fix pci_register_io_range() memory leak
    - i40e: Fix memory leak in i40e_probe
    - ALSA: usb: Add Plantronics C320-M USB ctrl msg delay quirk
    - ALSA: usb-audio: Apply the control quirk to Plantronics headsets
    - mmc: cqhci: Fix random crash when remove mmc module/card
    - usbip: fix vudc usbip_sockfd_store races leading to gpf
    - net: dsa: b53: Support setting learning on port
    - ext4: check journal inode extents more carefully
    - perf tools: Use %define api.pure full instead of %pure-parser
    - tools build feature: Check if get_current_dir_name() is available
    - tools build feature: Check if eventfd() is available
    - tools build: Check if gettid() is available before providing helper
    - tools build feature: Check if pthread_barrier_t is available
    - btrfs: fix race when cloning extent buffer during rewind of an old root
    - nvmet: don't check iosqes,iocqes for discovery controllers
    - NFSD: Repair misuse of sv_lock in 5.10.16-rt30.
    - svcrdma: disable timeouts on rdma backchannel
    - sunrpc: fix refcount leak for rpc auth modules
    - net/qrtr: fix __netdev_alloc_skb call
    - scsi: lpfc: Fix some error codes in debugfs
    - nvme-rdma: fix possible hang when failing to set io queues
    - usb-storage: Add quirk to defeat Kindle's automatic unload
    - USB: replace hardcode maximum usb string length by definition
    - usb: gadget: configfs: Fix KASAN use-after-free
    - iio:adc:stm32-adc: Add HAS_IOMEM dependency
    - iio:adc:qcom-spmi-vadc: add default scale to LR_MUX2_BAT_ID channel
    - iio: adis16400: Fix an error code in adis16400_initial_setup()
    - iio: gyro: mpu3050: Fix error handling in mpu3050_trigger_handler
    - iio: hid-sensor-humidity: Fix alignment issue of timestamp channel
    - iio: hid-sensor-prox: Fix scale not correct issue
    - iio: hid-sensor-temperature: Fix issues of timestamp channel
    - PCI: rpadlpar: Fix potential drc_name corruption in store functions
    - perf/x86/intel: Fix a crash caused by zero PEBS status
    - x86/ioapic: Ignore IRQ2 again
    - kernel, fs: Introduce and use set_restart_fn() and arch_set_restart_data()
    - x86: Move TS_COMPAT back to asm/thread_info.h
    - x86: Introduce TS_COMPAT_RESTART to fix get_nr_restart_syscall()
    - ext4: find old entry again if failed to rename whiteout
    - ext4: do not try to set xattr into ea_inode if value is empty
    - ext4: fix potential error in ext4_do_update_inode
    - genirq: Disable interrupts for force threaded handlers
    - btrfs: fix slab cache flags for free space tree bitmap
    - powerpc: Force inlining of cpu_has_feature() to avoid build failure
    - usbip: Fix incorrect double assignment to udc->ud.tcp_rx
    - x86/apic/of: Fix CPU devicetree-node lookups

-- Marcelo Henrique Cerri <marcelo.cerri@canonical.com>  Mon, 21 Jun 2021 14:10:46 -0300

Changed in linux-dell300x (Ubuntu Bionic):
status:	New → Fix Released

Kernel SRU Workflow

bionic/linux-dell300x: 4.15.0-1019.23 -proposed tracker

Bug Description

CVE References

Other bug subscribers

Remote bug watches

	Status	Importance	Assigned to
Kernel SRU Workflow	Fix Released	Medium	Unassigned
Automated-testing	Fix Released	Medium	Canonical Kernel Team
Certification-testing	Invalid	Medium	Canonical Hardware Certification
Prepare-package	Fix Released	Medium	Stefan Bader
Prepare-package-meta	Fix Released	Medium	Stefan Bader
Prepare-package-signed	Fix Released	Medium	Stefan Bader
Promote-to-proposed	Fix Released	Medium	Andy Whitcroft
Promote-to-security	Invalid	Medium	Ubuntu Stable Release Updates Team
Promote-to-updates	Invalid	Medium	Ubuntu Stable Release Updates Team
Regression-testing	Invalid	Medium	Unassigned
Security-signoff	Invalid	Medium	Steve Beattie
Sru-review	Fix Released	Medium	Andy Whitcroft
Verification-testing	Fix Released	Medium	Canonical Kernel Team
linux-dell300x (Ubuntu)
Bionic	Fix Released	Medium	Unassigned