linux-azure 5.0.0-1025.27~18.04.1 source package in Ubuntu

Changelog

linux-azure (5.0.0-1025.27~18.04.1) bionic; urgency=medium

  [ Ubuntu: 5.0.0-1025.27 ]

  * CVE-2019-11135
    - [Config] azure: Disable TSX by default when possible
  * [REGRESSION]  md/raid0: cannot assemble multi-zone RAID0 with default_layout
    setting (LP: #1849682)
    - SAUCE: Fix revert "md/raid0: avoid RAID0 data corruption due to layout
      confusion."
  * refcount underflow and type confusion in shiftfs (LP: #1850867) // CVE-2019-15793
    - SAUCE: shiftfs: Correct id translation for lower fs operations
    - SAUCE: shiftfs: prevent type confusion
    - SAUCE: shiftfs: Fix refcount underflow in btrfs ioctl handling
  * CVE-2018-12207
    - kvm: Convert kvm_lock to a mutex
    - kvm: x86: Do not release the page inside mmu_set_spte()
    - KVM: x86: make FNAME(fetch) and __direct_map more similar
    - KVM: x86: remove now unneeded hugepage gfn adjustment
    - KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON
    - KVM: x86: add tracepoints around __direct_map and FNAME(fetch)
    - kvm: x86, powerpc: do not allow clearing largepages debugfs entry
    - SAUCE: KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is
      active
    - SAUCE: x86: Add ITLB_MULTIHIT bug infrastructure
    - SAUCE: kvm: mmu: ITLB_MULTIHIT mitigation
    - SAUCE: kvm: Add helper function for creating VM worker threads
    - SAUCE: kvm: x86: mmu: Recovery of shattered NX large pages
    - SAUCE: cpu/speculation: Uninline and export CPU mitigations helpers
    - SAUCE: kvm: x86: mmu: Apply global mitigations knob to ITLB_MULTIHIT
  * CVE-2019-11135
    - KVM: x86: use Intel speculation bugs and features as derived in generic x86
      code
    - x86/msr: Add the IA32_TSX_CTRL MSR
    - x86/cpu: Add a helper function x86_read_arch_cap_msr()
    - x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default
    - x86/speculation/taa: Add mitigation for TSX Async Abort
    - x86/speculation/taa: Add sysfs reporting for TSX Async Abort
    - kvm/x86: Export MDS_NO=0 to guests when TSX is enabled
    - x86/tsx: Add "auto" option to the tsx= cmdline parameter
    - x86/speculation/taa: Add documentation for TSX Async Abort
    - x86/tsx: Add config options to set tsx=on|off|auto
    - SAUCE: x86/speculation/taa: Call tsx_init()
    - [Config] Disable TSX by default when possible
  * CVE-2019-0154
    - SAUCE: drm/i915: Lower RM timeout to avoid DSI hard hangs
    - SAUCE: drm/i915/gen8+: Add RC6 CTX corruption WA
  * CVE-2019-0155
    - SAUCE: drm/i915: Rename gen7 cmdparser tables
    - SAUCE: drm/i915: Disable Secure Batches for gen6+
    - SAUCE: drm/i915: Remove Master tables from cmdparser
    - SAUCE: drm/i915: Add support for mandatory cmdparsing
    - SAUCE: drm/i915: Support ro ppgtt mapped cmdparser shadow buffers
    - SAUCE: drm/i915: Allow parsing of unsized batches
    - SAUCE: drm/i915: Add gen9 BCS cmdparsing
    - SAUCE: drm/i915/cmdparser: Use explicit goto for error paths
    - SAUCE: drm/i915/cmdparser: Add support for backward jumps
    - SAUCE: drm/i915/cmdparser: Ignore Length operands during command matching
  * disco/linux: <version to be filled> -proposed tracker (LP: #1850574)
  * [REGRESSION]  md/raid0: cannot assemble multi-zone RAID0 with default_layout
    setting (LP: #1849682)
    - Revert "md/raid0: avoid RAID0 data corruption due to layout confusion."

 -- Juerg Haefliger <email address hidden>  Mon, 11 Nov 2019 14:39:00 +0100

Upload details

Uploaded by:
Juerg Haefliger on 2019-11-11
Uploaded to:
Bionic
Original maintainer:
Ubuntu Kernel Team
Architectures:
all amd64
Section:
devel
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Bionic: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
linux-azure_5.0.0.orig.tar.gz 155.1 MiB d9dcf8bafdd5778274c3f9d2634500d4cc186f3ba80fc71ea1a1a100aa65ad6f
linux-azure_5.0.0-1025.27~18.04.1.diff.gz 7.6 MiB 53cceff5beb4d61c77aa908eb8b336b9fc76bb3cfd67113abd1d88629da44393
linux-azure_5.0.0-1025.27~18.04.1.dsc 4.1 KiB fc3621318e989769d5be198a15824a6d2541087d284d9baab800f0c7f4ca84a8

View changes file

Binary packages built by this source

linux-azure-cloud-tools-5.0.0-1025: Linux kernel version specific cloud tools for version 5.0.0-1025

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud tools for version 5.0.0-1025 on
 64 bit x86.
 You probably want to install linux-cloud-tools-5.0.0-1025-<flavour>.

linux-azure-headers-5.0.0-1025: Header files related to Linux kernel version 5.0.0

 This package provides kernel header files for version 5.0.0, for sites
 that want the latest kernel headers. Please read
 /usr/share/doc/linux-azure-headers-5.0.0-1025/debian.README.gz for details

linux-azure-tools-5.0.0-1025: Linux kernel version specific tools for version 5.0.0-1025

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 5.0.0-1025 on
 64 bit x86.
 You probably want to install linux-tools-5.0.0-1025-<flavour>.

linux-buildinfo-5.0.0-1025-azure: Linux kernel buildinfo for version 5.0.0 on 64 bit x86 SMP

 This package contains the Linux kernel buildinfo for version 5.0.0 on
 64 bit x86 SMP.
 .
 You likely do not want to install this package.

linux-cloud-tools-5.0.0-1025-azure: Linux kernel version specific cloud tools for version 5.0.0-1025

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud for version 5.0.0-1025 on
 64 bit x86.

linux-headers-5.0.0-1025-azure: Linux kernel headers for version 5.0.0 on 64 bit x86 SMP

 This package provides kernel header files for version 5.0.0 on
 64 bit x86 SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-5.0.0-1025/debian.README.gz for details.

linux-image-unsigned-5.0.0-1025-azure: Linux kernel image for version 5.0.0 on 64 bit x86 SMP

 This package contains the unsigned Linux kernel image for version 5.0.0 on
 64 bit x86 SMP.
 .
 Supports Azure processors.
 .
 Geared toward Azure systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-azure meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-unsigned-5.0.0-1025-azure-dbgsym: Linux kernel debug image for version 5.0.0 on 64 bit x86 SMP

 This package provides the unsigned kernel debug image for version 5.0.0 on
 64 bit x86 SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-modules-5.0.0-1025-azure: Linux kernel extra modules for version 5.0.0 on 64 bit x86 SMP

 Contains the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Azure processors.
 .
 Geared toward Azure systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-azure meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-modules-extra-5.0.0-1025-azure: Linux kernel extra modules for version 5.0.0 on 64 bit x86 SMP

 This package contains the Linux kernel extra modules for version 5.0.0 on
 64 bit x86 SMP.
 .
 Also includes the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Azure processors.
 .
 Geared toward Azure systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-azure meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-tools-5.0.0-1025-azure: Linux kernel version specific tools for version 5.0.0-1025

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 5.0.0-1025 on
 64 bit x86.