Zesty update to v4.10.9 stable release

Bug #1681875 reported by Tim Gardner on 2017-04-11
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Undecided
Unassigned
Zesty
Undecided
Unassigned

Bug Description

SRU Justification

    Impact:
       The upstream process for stable tree updates is quite similar
       in scope to the Ubuntu SRU process, e.g., each patch has to
       demonstrably fix a bug, and each patch is vetted by upstream
       by originating either directly from a mainline/stable Linux tree or
       a minimally backported form of that patch. The v4.10.9 upstream stable
       patch set is now available. It should be included in the Ubuntu
       kernel as well.

       git://git.kernel.org/

    TEST CASE: TBD

       The following patches from the v4.10.9 stable release shall be applied:

libceph: force GFP_NOIO for socket allocations
KVM: nVMX: fix nested EPT detection
xfs: pull up iolock from xfs_free_eofblocks()
xfs: sync eofblocks scans under iolock are livelock prone
xfs: fix eofblocks race with file extending async dio writes
xfs: fix toctou race when locking an inode to access the data map
xfs: fail _dir_open when readahead fails
xfs: filter out obviously bad btree pointers
xfs: check for obviously bad level values in the bmbt root
xfs: verify free block header fields
xfs: allow unwritten extents in the CoW fork
xfs: mark speculative prealloc CoW fork extents unwritten
xfs: reset b_first_retry_time when clear the retry status of xfs_buf_t
xfs: reject all unaligned direct writes to reflinked files
xfs: update ctime and mtime on clone destinatation inodes
xfs: correct null checks and error processing in xfs_initialize_perag
xfs: don't fail xfs_extent_busy allocation
xfs: handle indlen shortage on delalloc extent merge
xfs: split indlen reservations fairly when under reserved
xfs: fix uninitialized variable in _reflink_convert_cow
xfs: don't reserve blocks for right shift transactions
xfs: Use xfs_icluster_size_fsb() to calculate inode chunk alignment
xfs: tune down agno asserts in the bmap code
xfs: only reclaim unwritten COW extents periodically
xfs: fix and streamline error handling in xfs_end_io
xfs: Use xfs_icluster_size_fsb() to calculate inode alignment mask
xfs: use iomap new flag for newly allocated delalloc blocks
xfs: try any AG when allocating the first btree block when reflinking
scsi: sg: check length passed to SG_NEXT_CMD_LEN
scsi: libsas: fix ata xfer length
scsi: scsi_dh_alua: Check scsi_device_get() return value
scsi: scsi_dh_alua: Ensure that alua_activate() calls the completion function
PCI: iproc: Save host bridge window resource in struct iproc_pcie
PCI: thunder-pem: Use Cavium assigned hardware ID for ThunderX host controller
ALSA: seq: Fix race during FIFO resize
ALSA: hda - fix a problem for lineout on a Dell AIO machine
ASoC: atmel-classd: fix audio clock rate
ASoC: Intel: Skylake: fix invalid memory access due to wrong reference of pointer
ASoC: rt5665: fix getting wrong work handler container
HID: wacom: Don't add ghost interface as shared data
mmc: sdhci: Disable runtime pm when the sdio_irq is enabled
mmc: sdhci-of-at91: fix MMC_DDR_52 timing selection
crypto: ccp - Make some CCP DMA channels private
crypto: xts,lrw - fix out-of-bounds write after kmalloc failure
ARCv2: SLC: Make sure busy bit is set properly on SLC flushing
NFSv4.1 fix infinite loop on IO BAD_STATEID error
nfsd: map the ENOKEY to nfserr_perm for avoiding warning
dt-bindings: rng: clocks property on omap_rng not always mandatory
parisc: Clean up fixup routines for get_user()/put_user()
parisc: Avoid stalled CPU warnings after system shutdown
parisc: Fix access fault handling in pa_memcpy()
ACPI: Fix incompatibility with mcount-based function graph tracing
ACPI: Do not create a platform_device for IOAPIC/IOxAPIC
tty/serial: atmel: fix race condition (TX+DMA)
tty/serial: atmel: fix TX path in atmel_console_write()
xhci: Set URB actual length for stopped control transfers
USB: fix linked-list corruption in rh_call_control()
serial: mxs-auart: Fix baudrate calculation
KVM: x86: clear bus pointer when destroyed
KVM: kvm_io_bus_unregister_dev() should never fail
drm/radeon: Override fpfn for all VRAM placements in radeon_evict_flags
drm/vc4: Allocate the right amount of space for boot-time CRTC state.
drm/etnaviv: (re-)protect fence allocation with GPU mutex
drm/i915/kvmgt: Hold struct kvm reference
x86/mm/KASLR: Exclude EFI region from KASLR VA space randomization
x86/mce: Fix copy/paste error in exception table entries
lib/syscall: Clear return values when no stack
mm: rmap: fix huge file mmap accounting in the memcg stats
mm: workingset: fix premature shadow node shrinking with cgroups
mm, hugetlb: use pte_present() instead of pmd_present() in follow_huge_pmd()
drm/armada: Fix compile fail
ARM: dts: BCM5301X: Correct GIC_PPI interrupt flags
MIPS: Lantiq: Fix cascaded IRQ setup
blk: improve order of bio handling in generic_make_request()
blk: Ensure users for current->bio_list can see the full list.
padata: avoid race in reordering
nvme/core: Fix race kicking freed request_queue
nvme/pci: Disable on removal when disconnected
drm/i915: Move the release of PT page to the upper caller
drm/i915: Let execlist_update_context() cover !FULL_PPGTT mode.
drm/i915: A hotfix for making aliasing PPGTT work for GVT-g
Linux 4.10.9

CVE References

Tim Gardner (timg-tpi) on 2017-04-11
tags: added: kernel-stable-tracking-bug
description: updated
Changed in linux (Ubuntu Zesty):
status: New → Fix Committed
Launchpad Janitor (janitor) wrote :
Download full text (14.0 KiB)

This bug was fixed in the package linux - 4.10.0-21.23

---------------
linux (4.10.0-21.23) zesty; urgency=low

  * linux: 4.10.0-21.23 -proposed tracker (LP: #1686414)

  * Need to stop using bzip2 compression in packages for zesty onward
    (LP: #1686782)
    - [Debian] Use default compression for all packages

  * [Hyper-V][SAUCE] pci-hyperv: Use only 16 bit integer for PCI domain
    (LP: #1684971)
    - SAUCE: pci-hyperv: Use only 16 bit integer for PCI domain

  * CVE-2017-7477: macsec: avoid heap overflow in skb_to_sgvec (LP: #1685892)
    - macsec: avoid heap overflow in skb_to_sgvec
    - macsec: dynamically allocate space for sglist

  * Zesty update to 4.10.11 stable release (LP: #1685140)
    - drm/i915: Fix forcewake active domain tracking
    - drm/i915: Move updating color management to before vblank evasion
    - drm/i915/fbdev: Stop repeating tile configuration on stagnation
    - drm/i915: Squelch any ktime/jiffie rounding errors for wait-ioctl
    - drm/i915/gen9: Increase PCODE request timeout to 50ms
    - drm/i915: Store a permanent error in obj->mm.pages
    - drm/i915: Nuke debug messages from the pipe update critical section
    - drm/i915: Avoid tweaking evaluation thresholds on Baytrail v3
    - drm/i915: Reject HDMI 12bpc if the sink doesn't indicate support
    - drm/i915: Only enable hotplug interrupts if the display interrupts are
      enabled
    - drm/i915: Drop support for I915_EXEC_CONSTANTS_* execbuf parameters.
    - drm/i915: Stop using RP_DOWN_EI on Baytrail
    - drm/i915: Avoid rcu_barrier() from reclaim paths (shrinker)
    - drm/i915: Do .init_clock_gating() earlier to avoid it clobbering watermarks
    - orangefs: Dan Carpenter influenced cleanups...
    - orangefs: fix buffer size mis-match between kernel space and user space.
    - nfs: flexfiles: fix kernel OOPS if MDS returns unsupported DS type
    - rt2x00usb: fix anchor initialization
    - rt2x00usb: do not anchor rx and tx urb's
    - MIPS: Introduce irq_stack
    - MIPS: Stack unwinding while on IRQ stack
    - MIPS: Only change $28 to thread_info if coming from user mode
    - MIPS: Switch to the irq_stack in interrupts
    - MIPS: Select HAVE_IRQ_EXIT_ON_IRQ_STACK
    - MIPS: IRQ Stack: Fix erroneous jal to plat_irq_dispatch
    - crypto: caam - fix RNG deinstantiation error checking
    - crypto: caam - fix invalid dereference in caam_rsa_init_tfm()
    - dma-buf: add support for compat ioctl
    - Linux 4.10.11

  * Zesty update to v4.10.10 stable release (LP: #1682130)
    - drm/vmwgfx: Type-check lookups of fence objects
    - drm/vmwgfx: NULL pointer dereference in vmw_surface_define_ioctl()
    - drm/vmwgfx: avoid calling vzalloc with a 0 size in vmw_get_cap_3d_ioctl()
    - drm/ttm, drm/vmwgfx: Relax permission checking when opening surfaces
    - drm/vmwgfx: Remove getparam error message
    - drm/vmwgfx: fix integer overflow in vmw_surface_define_ioctl()
    - PCI: thunder-pem: Add legacy firmware support for Cavium ThunderX host
      controller
    - PCI: thunder-pem: Fix legacy firmware PEM-specific resources
    - sysfs: be careful of error returns from ops->show()
    - staging: android: ashmem: lseek failed due to no FM...

Changed in linux (Ubuntu Zesty):
status: Fix Committed → Fix Released
Changed in linux (Ubuntu):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers