Xenial update to 4.4.64 stable release

Bug #1687638 reported by Stefan Bader
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Fix Released
Stefan Bader

Bug Description

SRU Justification

       The upstream process for stable tree updates is quite similar
       in scope to the Ubuntu SRU process, e.g., each patch has to
       demonstrably fix a bug, and each patch is vetted by upstream
       by originating either directly from a mainline/stable Linux tree or
       a minimally backported form of that patch. The 4.4.64 upstream stable
       patch set is now available. It should be included in the Ubuntu
       kernel as well.



The following patches from the 4.4.64 stable release shall be applied:
* KEYS: Disallow keyrings beginning with '.' to be joined as session keyrings
* KEYS: Change the name of the dead type to ".dead" to prevent user access
* KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyrings
* tracing: Allocate the snapshot buffer before enabling probe
* ring-buffer: Have ring_buffer_iter_empty() return true when empty
* cifs: Do not send echoes before Negotiate is complete
* CIFS: remove bad_network_name flag
* s390/mm: fix CMMA vs KSM vs others
* VSOCK: Detach QP check should filter out non matching QPs.
* Input: elantech - add Fujitsu Lifebook E547 to force crc_enabled
* ACPI / power: Avoid maybe-uninitialized warning
* mmc: sdhci-esdhc-imx: increase the pad I/O drive strength for DDR50 card
* mac80211: reject ToDS broadcast data frames
* ubi/upd: Always flush after prepared for an update
* powerpc/kprobe: Fix oops when kprobed on 'stdu' instruction
* x86/mce/AMD: Give a name to MCA bank 3 when accessed with legacy MSRs
* kvm: arm/arm64: Fix locking for kvm_free_stage2_pgd
* x86, pmem: fix broken __copy_user_nocache cache-bypass assumptions
* block: fix del_gendisk() vs blkdev_ioctl crash
* tipc: fix crash during node removal
* Linux 4.4.64

CVE References

Stefan Bader (smb)
tags: added: kernel-stable-tracking-bug
Revision history for this message
Stefan Bader (smb) wrote :

The following patches were skipped because they were already applied:

* bug #1650059: [Hyper-V] Rebase Hyper-V in 16.04 and 16.10 to the the
  upstream 4.9 kernel
  - Drivers: hv: don't leak memory in vmbus_establish_gpadl()
  - Drivers: hv: get rid of timeout in vmbus_open()" failed to apply
    for the same reason
  - Drivers: hv: vmbus: Reduce the delay between retries in
  - Tools: hv: kvp: ensure kvp device fd is closed on exec
  - Drivers: hv: balloon: keep track of where ha_region starts
  - Drivers: hv: balloon: account for gaps in hot add regions
* bug #1630924: Kdump through NMI SMP and single core not working on
  - hv: don't reset hv_context.tsc_page on crash

Stefan Bader (smb)
description: updated
Stefan Bader (smb)
Changed in linux (Ubuntu Xenial):
assignee: nobody → Stefan Bader (smb)
status: New → In Progress
Changed in linux (Ubuntu Xenial):
status: In Progress → Fix Committed
Revision history for this message
Launchpad Janitor (janitor) wrote :
Download full text (9.7 KiB)

This bug was fixed in the package linux - 4.4.0-79.100

linux (4.4.0-79.100) xenial; urgency=low

  * linux: 4.4.0-79.100 -proposed tracker (LP: #1691180)

  * linux-aws/linux-gke incorrectly producing and using linux-*-tools-
    common/linux-*-cloud-tools-common (LP: #1688579)
    - [Config] make linux-tools-common and linux-cloud-tools-common provide linux-
      gke versions
    - [Config] make linux-tools-common and linux-cloud-tools-common provide linux-
      aws versions
    - [Packaging] prevent linux-*-tools-common from being produced from non linux

  * CVE-2017-0605
    - tracing: Use strlcpy() instead of strcpy() in __trace_find_cmdline()

  * i915-bpo crashes on external hdmi input (LP: #1580272)
    - SAUCE: i915_bpo: Silence the warning about watermark entries not changing

  * Kernel panics on Xenial when using cgroups and strict CFS limits
    (LP: #1687512)
    - sched/fair: Initialize throttle_count for new task-groups lazily
    - sched/fair: Do not announce throttled next buddy in dequeue_task_fair()

  * bonding - mlx5 - speed changed to 0 after changing ring size (LP: #1687877)
    - bonding: allow notifications for bond_set_slave_link_state

  * Xenial update to 4.4.67 stable release (LP: #1689296)
    - timerfd: Protect the might cancel mechanism proper
    - Handle mismatched open calls
    - ASoC: intel: Fix PM and non-atomic crash in bytcr drivers
    - ALSA: ppc/awacs: shut up maybe-uninitialized warning
    - drbd: avoid redefinition of BITS_PER_PAGE
    - mtd: avoid stack overflow in MTD CFI code
    - net: tg3: avoid uninitialized variable warning
    - netlink: Allow direct reclaim for fallback allocation
    - IB/qib: rename BITS_PER_PAGE to RVT_BITS_PER_PAGE
    - IB/ehca: fix maybe-uninitialized warnings
    - ext4: require encryption feature for EXT4_IOC_SET_ENCRYPTION_POLICY
    - ext4 crypto: revalidate dentry after adding or removing the key
    - ext4 crypto: use dget_parent() in ext4_d_revalidate()
    - ext4/fscrypto: avoid RCU lookup in d_revalidate
    - nfsd4: minor NFSv2/v3 write decoding cleanup
    - nfsd: stricter decoding of write-like NFSv2/v3 ops
    - dm ioctl: prevent stack leak in dm ioctl call
    - Linux 4.4.67

  * Precision Rack failed to resume from S4 (LP: #1686061)
    - x86 / hibernate: Use hlt_play_dead() when resuming from hibernation
    - x86/boot: Split out kernel_ident_mapping_init()
    - x86/power/64: Always create temporary identity mapping correctly

  * Xenial update to 4.4.66 stable release (LP: #1688505)
    - f2fs: do more integrity verification for superblock
    - xc2028: unlock on error in xc2028_set_config()
    - ARM: OMAP2+: timer: add probe for clocksources
    - clk: sunxi: Add apb0 gates for H3
    - crypto: testmgr - fix out of bound read in __test_aead()
    - drm/amdgpu: fix array out of bounds
    - ext4: check if in-inode xattr is corrupted in ext4_expand_extra_isize_ea()
    - md:raid1: fix a dead loop when read from a WriteMostly disk
    - MIPS: Fix crash registers on non-crashing CPUs
    - net: cavium: liquidio: Avoid dma_unmap_single on uninitialized ndata
    - net_sched: close another race condition in tcf_mirre...


Changed in linux (Ubuntu Xenial):
status: Fix Committed → Fix Released
Po-Hsu Lin (cypressyew)
Changed in linux (Ubuntu):
status: New → Invalid
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.