Zesty update to v4.10.9 stable release

Bug #1681875 reported by Tim Gardner on 2017-04-11
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)

Bug Description

SRU Justification

       The upstream process for stable tree updates is quite similar
       in scope to the Ubuntu SRU process, e.g., each patch has to
       demonstrably fix a bug, and each patch is vetted by upstream
       by originating either directly from a mainline/stable Linux tree or
       a minimally backported form of that patch. The v4.10.9 upstream stable
       patch set is now available. It should be included in the Ubuntu
       kernel as well.



       The following patches from the v4.10.9 stable release shall be applied:

libceph: force GFP_NOIO for socket allocations
KVM: nVMX: fix nested EPT detection
xfs: pull up iolock from xfs_free_eofblocks()
xfs: sync eofblocks scans under iolock are livelock prone
xfs: fix eofblocks race with file extending async dio writes
xfs: fix toctou race when locking an inode to access the data map
xfs: fail _dir_open when readahead fails
xfs: filter out obviously bad btree pointers
xfs: check for obviously bad level values in the bmbt root
xfs: verify free block header fields
xfs: allow unwritten extents in the CoW fork
xfs: mark speculative prealloc CoW fork extents unwritten
xfs: reset b_first_retry_time when clear the retry status of xfs_buf_t
xfs: reject all unaligned direct writes to reflinked files
xfs: update ctime and mtime on clone destinatation inodes
xfs: correct null checks and error processing in xfs_initialize_perag
xfs: don't fail xfs_extent_busy allocation
xfs: handle indlen shortage on delalloc extent merge
xfs: split indlen reservations fairly when under reserved
xfs: fix uninitialized variable in _reflink_convert_cow
xfs: don't reserve blocks for right shift transactions
xfs: Use xfs_icluster_size_fsb() to calculate inode chunk alignment
xfs: tune down agno asserts in the bmap code
xfs: only reclaim unwritten COW extents periodically
xfs: fix and streamline error handling in xfs_end_io
xfs: Use xfs_icluster_size_fsb() to calculate inode alignment mask
xfs: use iomap new flag for newly allocated delalloc blocks
xfs: try any AG when allocating the first btree block when reflinking
scsi: sg: check length passed to SG_NEXT_CMD_LEN
scsi: libsas: fix ata xfer length
scsi: scsi_dh_alua: Check scsi_device_get() return value
scsi: scsi_dh_alua: Ensure that alua_activate() calls the completion function
PCI: iproc: Save host bridge window resource in struct iproc_pcie
PCI: thunder-pem: Use Cavium assigned hardware ID for ThunderX host controller
ALSA: seq: Fix race during FIFO resize
ALSA: hda - fix a problem for lineout on a Dell AIO machine
ASoC: atmel-classd: fix audio clock rate
ASoC: Intel: Skylake: fix invalid memory access due to wrong reference of pointer
ASoC: rt5665: fix getting wrong work handler container
HID: wacom: Don't add ghost interface as shared data
mmc: sdhci: Disable runtime pm when the sdio_irq is enabled
mmc: sdhci-of-at91: fix MMC_DDR_52 timing selection
crypto: ccp - Make some CCP DMA channels private
crypto: xts,lrw - fix out-of-bounds write after kmalloc failure
ARCv2: SLC: Make sure busy bit is set properly on SLC flushing
NFSv4.1 fix infinite loop on IO BAD_STATEID error
nfsd: map the ENOKEY to nfserr_perm for avoiding warning
dt-bindings: rng: clocks property on omap_rng not always mandatory
parisc: Clean up fixup routines for get_user()/put_user()
parisc: Avoid stalled CPU warnings after system shutdown
parisc: Fix access fault handling in pa_memcpy()
ACPI: Fix incompatibility with mcount-based function graph tracing
ACPI: Do not create a platform_device for IOAPIC/IOxAPIC
tty/serial: atmel: fix race condition (TX+DMA)
tty/serial: atmel: fix TX path in atmel_console_write()
xhci: Set URB actual length for stopped control transfers
USB: fix linked-list corruption in rh_call_control()
serial: mxs-auart: Fix baudrate calculation
KVM: x86: clear bus pointer when destroyed
KVM: kvm_io_bus_unregister_dev() should never fail
drm/radeon: Override fpfn for all VRAM placements in radeon_evict_flags
drm/vc4: Allocate the right amount of space for boot-time CRTC state.
drm/etnaviv: (re-)protect fence allocation with GPU mutex
drm/i915/kvmgt: Hold struct kvm reference
x86/mm/KASLR: Exclude EFI region from KASLR VA space randomization
x86/mce: Fix copy/paste error in exception table entries
lib/syscall: Clear return values when no stack
mm: rmap: fix huge file mmap accounting in the memcg stats
mm: workingset: fix premature shadow node shrinking with cgroups
mm, hugetlb: use pte_present() instead of pmd_present() in follow_huge_pmd()
drm/armada: Fix compile fail
ARM: dts: BCM5301X: Correct GIC_PPI interrupt flags
MIPS: Lantiq: Fix cascaded IRQ setup
blk: improve order of bio handling in generic_make_request()
blk: Ensure users for current->bio_list can see the full list.
padata: avoid race in reordering
nvme/core: Fix race kicking freed request_queue
nvme/pci: Disable on removal when disconnected
drm/i915: Move the release of PT page to the upper caller
drm/i915: Let execlist_update_context() cover !FULL_PPGTT mode.
drm/i915: A hotfix for making aliasing PPGTT work for GVT-g
Linux 4.10.9

CVE References

Tim Gardner (timg-tpi) on 2017-04-11
tags: added: kernel-stable-tracking-bug
description: updated
Changed in linux (Ubuntu Zesty):
status: New → Fix Committed
Launchpad Janitor (janitor) wrote :
Download full text (14.0 KiB)

This bug was fixed in the package linux - 4.10.0-21.23

linux (4.10.0-21.23) zesty; urgency=low

  * linux: 4.10.0-21.23 -proposed tracker (LP: #1686414)

  * Need to stop using bzip2 compression in packages for zesty onward
    (LP: #1686782)
    - [Debian] Use default compression for all packages

  * [Hyper-V][SAUCE] pci-hyperv: Use only 16 bit integer for PCI domain
    (LP: #1684971)
    - SAUCE: pci-hyperv: Use only 16 bit integer for PCI domain

  * CVE-2017-7477: macsec: avoid heap overflow in skb_to_sgvec (LP: #1685892)
    - macsec: avoid heap overflow in skb_to_sgvec
    - macsec: dynamically allocate space for sglist

  * Zesty update to 4.10.11 stable release (LP: #1685140)
    - drm/i915: Fix forcewake active domain tracking
    - drm/i915: Move updating color management to before vblank evasion
    - drm/i915/fbdev: Stop repeating tile configuration on stagnation
    - drm/i915: Squelch any ktime/jiffie rounding errors for wait-ioctl
    - drm/i915/gen9: Increase PCODE request timeout to 50ms
    - drm/i915: Store a permanent error in obj->mm.pages
    - drm/i915: Nuke debug messages from the pipe update critical section
    - drm/i915: Avoid tweaking evaluation thresholds on Baytrail v3
    - drm/i915: Reject HDMI 12bpc if the sink doesn't indicate support
    - drm/i915: Only enable hotplug interrupts if the display interrupts are
    - drm/i915: Drop support for I915_EXEC_CONSTANTS_* execbuf parameters.
    - drm/i915: Stop using RP_DOWN_EI on Baytrail
    - drm/i915: Avoid rcu_barrier() from reclaim paths (shrinker)
    - drm/i915: Do .init_clock_gating() earlier to avoid it clobbering watermarks
    - orangefs: Dan Carpenter influenced cleanups...
    - orangefs: fix buffer size mis-match between kernel space and user space.
    - nfs: flexfiles: fix kernel OOPS if MDS returns unsupported DS type
    - rt2x00usb: fix anchor initialization
    - rt2x00usb: do not anchor rx and tx urb's
    - MIPS: Introduce irq_stack
    - MIPS: Stack unwinding while on IRQ stack
    - MIPS: Only change $28 to thread_info if coming from user mode
    - MIPS: Switch to the irq_stack in interrupts
    - MIPS: IRQ Stack: Fix erroneous jal to plat_irq_dispatch
    - crypto: caam - fix RNG deinstantiation error checking
    - crypto: caam - fix invalid dereference in caam_rsa_init_tfm()
    - dma-buf: add support for compat ioctl
    - Linux 4.10.11

  * Zesty update to v4.10.10 stable release (LP: #1682130)
    - drm/vmwgfx: Type-check lookups of fence objects
    - drm/vmwgfx: NULL pointer dereference in vmw_surface_define_ioctl()
    - drm/vmwgfx: avoid calling vzalloc with a 0 size in vmw_get_cap_3d_ioctl()
    - drm/ttm, drm/vmwgfx: Relax permission checking when opening surfaces
    - drm/vmwgfx: Remove getparam error message
    - drm/vmwgfx: fix integer overflow in vmw_surface_define_ioctl()
    - PCI: thunder-pem: Add legacy firmware support for Cavium ThunderX host
    - PCI: thunder-pem: Fix legacy firmware PEM-specific resources
    - sysfs: be careful of error returns from ops->show()
    - staging: android: ashmem: lseek failed due to no FM...

Changed in linux (Ubuntu Zesty):
status: Fix Committed → Fix Released
Changed in linux (Ubuntu):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers