linux-kvm 5.0.0-1006.6 source package in Ubuntu

Changelog

linux-kvm (5.0.0-1006.6) disco; urgency=medium

  [ Ubuntu: 5.0.0-15.16 ]

  * CVE-2019-11683
    - udp: fix GRO reception in case of length mismatch
    - udp: fix GRO packet of death
  * CVE-2018-12126 // CVE-2018-12127 // CVE-2018-12130
    - x86/msr-index: Cleanup bit defines
    - x86/speculation: Consolidate CPU whitelists
    - x86/speculation/mds: Add basic bug infrastructure for MDS
    - x86/speculation/mds: Add BUG_MSBDS_ONLY
    - x86/kvm: Expose X86_FEATURE_MD_CLEAR to guests
    - x86/speculation/mds: Add mds_clear_cpu_buffers()
    - x86/speculation/mds: Clear CPU buffers on exit to user
    - x86/kvm/vmx: Add MDS protection when L1D Flush is not active
    - x86/speculation/mds: Conditionally clear CPU buffers on idle entry
    - x86/speculation/mds: Add mitigation control for MDS
    - x86/speculation/mds: Add sysfs reporting for MDS
    - x86/speculation/mds: Add mitigation mode VMWERV
    - Documentation: Move L1TF to separate directory
    - Documentation: Add MDS vulnerability documentation
    - x86/speculation/mds: Add mds=full,nosmt cmdline option
    - x86/speculation: Move arch_smt_update() call to after mitigation decisions
    - x86/speculation/mds: Add SMT warning message
    - x86/speculation/mds: Fix comment
    - x86/speculation/mds: Print SMT vulnerable on MSBDS with mitigations off
    - x86/speculation/mds: Add 'mitigations=' support for MDS
  * CVE-2017-5715 // CVE-2017-5753
    - s390/speculation: Support 'mitigations=' cmdline option
  * CVE-2017-5715 // CVE-2017-5753 // CVE-2017-5754 // CVE-2018-3639
    - powerpc/speculation: Support 'mitigations=' cmdline option
  * CVE-2017-5715 // CVE-2017-5754 // CVE-2018-3620 // CVE-2018-3639 //
    CVE-2018-3646
    - cpu/speculation: Add 'mitigations=' cmdline option
    - x86/speculation: Support 'mitigations=' cmdline option
  * Packaging resync (LP: #1786013)
    - [Packaging] resync git-ubuntu-log

linux-kvm (5.0.0-1005.5) disco; urgency=medium

  * linux-kvm: 5.0.0-1005.5 -proposed tracker (LP: #1826145)

  [ Ubuntu: 5.0.0-14.15 ]

  * linux: 5.0.0-14.15 -proposed tracker (LP: #1826150)
  * [SRU] Please sync vbox modules from virtualbox 6.0.6 on next kernel update
    (LP: #1825210)
    - vbox-update: updates for renamed makefiles
    - ubuntu: vbox -- update to 6.0.6-dfsg-1
  * Intel I210 Ethernet card not working after hotplug [8086:1533]
    (LP: #1818490)
    - igb: Fix WARN_ONCE on runtime suspend
  * [regression][snd_hda_codec_realtek] repeating crackling noise after 19.04
    upgrade (LP: #1821663)
    - ALSA: hda - Add two more machines to the power_save_blacklist
  * CVE-2019-9500
    - brcmfmac: assure SSID length from firmware is limited
  * CVE-2019-9503
    - brcmfmac: add subtype check for event handling in data path
  * CVE-2019-3882
    - vfio/type1: Limit DMA mappings per container
  * autofs kernel module missing (LP: #1824333)
    - [Config] Update autofs4 path in inclusion list
  * The Realtek card reader does not enter PCIe 1.1/1.2 (LP: #1825487)
    - misc: rtsx: Enable OCP for rts522a rts524a rts525a rts5260
    - SAUCE: misc: rtsx: Fixed rts5260 power saving parameter and sd glitch
  * headset-mic doesn't work on two Dell laptops. (LP: #1825272)
    - ALSA: hda/realtek - add two more pin configuration sets to quirk table
  * CVE-2019-3887
    - KVM: x86: nVMX: close leak of L0's x2APIC MSRs (CVE-2019-3887)
    - KVM: x86: nVMX: fix x2APIC VTPR read intercept
  * CVE-2019-3874
    - sctp: implement memory accounting on tx path
    - sctp: implement memory accounting on rx path
  * CVE-2019-1999
    - binder: fix race between munmap() and direct reclaim
  * apparmor does not start in Disco LXD containers (LP: #1824812)
    - SAUCE: shiftfs: use separate llseek method for directories

 -- Stefan Bader <email address hidden>  Tue, 07 May 2019 15:12:01 +0200

Upload details

Uploaded by:
Stefan Bader on 2019-05-07
Uploaded to:
Disco
Original maintainer:
Ubuntu Kernel Team
Architectures:
all amd64
Section:
devel
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Disco: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
linux-kvm_5.0.0.orig.tar.gz 155.1 MiB d9dcf8bafdd5778274c3f9d2634500d4cc186f3ba80fc71ea1a1a100aa65ad6f
linux-kvm_5.0.0-1006.6.diff.gz 4.3 MiB 4eac08cebd92d6a42ea870d86d40667ed5d3450abc441c8a1e96d4b6ff2bcd0a
linux-kvm_5.0.0-1006.6.dsc 4.0 KiB 665dca26f54478e7005cdea0e132b613c2a8fe7831556e638cdbf538ae9e671c

View changes file

Binary packages built by this source

linux-buildinfo-5.0.0-1006-kvm: No summary available for linux-buildinfo-5.0.0-1006-kvm in ubuntu eoan.

No description available for linux-buildinfo-5.0.0-1006-kvm in ubuntu eoan.

linux-headers-5.0.0-1006-kvm: Linux kernel headers for version 5.0.0 on 64 bit x86 SMP

 This package provides kernel header files for version 5.0.0 on
 64 bit x86 SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-5.0.0-1006/debian.README.gz for details.

linux-image-5.0.0-1006-kvm: No summary available for linux-image-5.0.0-1006-kvm in ubuntu eoan.

No description available for linux-image-5.0.0-1006-kvm in ubuntu eoan.

linux-image-5.0.0-1006-kvm-dbgsym: No summary available for linux-image-5.0.0-1006-kvm-dbgsym in ubuntu eoan.

No description available for linux-image-5.0.0-1006-kvm-dbgsym in ubuntu eoan.

linux-kvm-headers-5.0.0-1006: Header files related to Linux kernel version 5.0.0

 This package provides kernel header files for version 5.0.0, for sites
 that want the latest kernel headers. Please read
 /usr/share/doc/linux-kvm-headers-5.0.0-1006/debian.README.gz for details

linux-kvm-tools-5.0.0-1006: Linux kernel version specific tools for version 5.0.0-1006

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 5.0.0-1006 on
 64 bit x86.
 You probably want to install linux-tools-5.0.0-1006-<flavour>.

linux-modules-5.0.0-1006-kvm: Linux kernel extra modules for version 5.0.0 on 64 bit x86 SMP

 Contains the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports amd64 processors.
 .
 Geared toward virtual systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-kvm meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-tools-5.0.0-1006-kvm: Linux kernel version specific tools for version 5.0.0-1006

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 5.0.0-1006 on
 64 bit x86.