Zesty update to 4.10.17 stable release

Bug #1692898 reported by Stefan Bader on 2017-05-23
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Undecided
Unassigned
Zesty
Medium
Stefan Bader

Bug Description

SRU Justification

    Impact:
       The upstream process for stable tree updates is quite similar
       in scope to the Ubuntu SRU process, e.g., each patch has to
       demonstrably fix a bug, and each patch is vetted by upstream
       by originating either directly from a mainline/stable Linux tree or
       a minimally backported form of that patch. The 4.10.17 upstream stable
       patch set is now available. It should be included in the Ubuntu
       kernel as well.

       git://git.kernel.org/

    TEST CASE: TBD

The following patches from the 4.10.17 stable release shall be applied:
* xen: adjust early dom0 p2m handling to xen hypervisor behavior
* target: Fix compare_and_write_callback handling for non GOOD status
* target/fileio: Fix zero-length READ and WRITE handling
* iscsi-target: Set session_fall_back_to_erl0 when forcing reinstatement
* usb: xhci: bInterval quirk for TI TUSB73x0
* usb: host: xhci: print correct command ring address
* USB: serial: ftdi_sio: add device ID for Microsemi/Arrow SF2PLUS Dev Kit
* USB: Proper handling of Race Condition when two USB class drivers try to
  call init_usb_class simultaneously
* USB: Revert "cdc-wdm: fix "out-of-sync" due to missing notifications"
* staging: vt6656: use off stack for in buffer USB transfers.
* staging: vt6656: use off stack for out buffer USB transfers.
* staging: gdm724x: gdm_mux: fix use-after-free on module unload
* staging: wilc1000: Fix problem with wrong vif index
* staging: comedi: jr3_pci: fix possible null pointer dereference
* staging: comedi: jr3_pci: cope with jiffies wraparound
* usb: misc: add missing continue in switch
* usb: gadget: legacy gadgets are optional
* usb: Make sure usb/phy/of gets built-in
* usb: hub: Fix error loop seen after hub communication errors
* usb: hub: Do not attempt to autosuspend disconnected devices
* x86/boot: Fix BSS corruption/overwrite bug in early x86 kernel startup
* selftests/x86/ldt_gdt_32: Work around a glibc sigaction() bug
* x86, pmem: Fix cache flushing for iovec write < 8 bytes
* um: Fix PTRACE_POKEUSER on x86_64
* perf/x86: Fix Broadwell-EP DRAM RAPL events
* KVM: x86: fix user triggerable warning in kvm_apic_accept_events()
* KVM: arm/arm64: fix races in kvm_psci_vcpu_on
* arm64: KVM: Fix decoding of Rt/Rt2 when trapping AArch32 CP accesses
* block: fix blk_integrity_register to use template's interval_exp if not 0
* crypto: s5p-sss - Close possible race for completed requests
* crypto: algif_aead - Require setkey before accept(2)
* crypto: ccp - Use only the relevant interrupt bits
* crypto: ccp - Disable interrupts early on unload
* crypto: ccp - Change ISR handler method for a v3 CCP
* crypto: ccp - Change ISR handler method for a v5 CCP
* dm crypt: rewrite (wipe) key in crypto layer using random data
* dm era: save spacemap metadata root after the pre-commit
* dm rq: check blk_mq_register_dev() return value in
  dm_mq_init_request_queue()
* dm thin: fix a memory leak when passing discard bio down
* vfio/type1: Remove locked page accounting workqueue
* iov_iter: don't revert iov buffer if csum error
* IB/core: Fix sysfs registration error flow
* IB/core: For multicast functions, verify that LIDs are multicast LIDs
* IB/IPoIB: ibX: failed to create mcg debug file
* IB/mlx4: Fix ib device initialization error flow
* IB/mlx4: Reduce SRIOV multicast cleanup warning message to debug level
* IB/hfi1: Prevent kernel QP post send hard lockups
* perf auxtrace: Fix no_size logic in addr_filter__resolve_kernel_syms()
* perf annotate s390: Fix perf annotate error -95 (4.10 regression)
* perf annotate s390: Implement jump types for perf annotate
* jbd2: fix dbench4 performance regression for 'nobarrier' mounts
* ext4: evict inline data when writing to memory map
* orangefs: fix bounds check for listxattr
* orangefs: clean up oversize xattr validation
* orangefs: do not set getattr_time on orangefs_lookup
* orangefs: do not check possibly stale size on truncate
* fs/xattr.c: zero out memory copied to userspace in getxattr
* ceph: fix memory leak in __ceph_setxattr()
* fs/block_dev: always invalidate cleancache in invalidate_bdev()
* mm: prevent potential recursive reclaim due to clearing PF_MEMALLOC
* Fix match_prepath()
* Set unicode flag on cifs echo request to avoid Mac error
* SMB3: Work around mount failure when using SMB3 dialect to Macs
* CIFS: fix mapping of SFM_SPACE and SFM_PERIOD
* cifs: fix leak in FSCTL_ENUM_SNAPS response handling
* cifs: fix CIFS_ENUMERATE_SNAPSHOTS oops
* CIFS: fix oplock break deadlocks
* cifs: fix CIFS_IOC_GET_MNT_INFO oops
* CIFS: add misssing SFM mapping for doublequote
* ovl: do not set overlay.opaque on non-dir create
* padata: free correct variable
* md/raid1: avoid reusing a resync bio after error handling.
* device-dax: fix cdev leak
* device-dax: fix sysfs attribute deadlock
* dax: prevent invalidation of mapped DAX entries
* mm: fix data corruption due to stale mmap reads
* f2fs: fix fs corruption due to zero inode page
* fscrypt: fix context consistency check when key(s) unavailable
* serial: samsung: Use right device for DMA-mapping calls
* serial: omap: fix runtime-pm handling on unbind
* serial: omap: suspend device on probe errors
* tty: pty: Fix ldisc flush after userspace become aware of the data already
* Bluetooth: Fix user channel for 32bit userspace on 64bit kernel
* Bluetooth: hci_bcm: add missing tty-device sanity check
* Bluetooth: hci_intel: add missing tty-device sanity check
* libnvdimm, region: fix flush hint detection crash
* libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify
* libnvdimm: fix nvdimm_bus_lock() vs device_lock() ordering
* libnvdimm, pfn: fix 'npfns' vs section alignment
* pstore: Fix flags to enable dumps on powerpc
* pstore: Shut down worker when unregistering
* Linux 4.10.17

Stefan Bader (smb) on 2017-05-23
tags: added: kernel-stable-tracking-bug
Stefan Bader (smb) wrote :

Skipping "ipmi: Fix kernel panic at ipmi_ssif_thread()" because it was already applied fo bug #1689886 "[SRU][Zesty]QDF2400 kernel oops on ipmitool fru write 0 fru.bin".

description: updated
Stefan Bader (smb) on 2017-05-23
Changed in linux (Ubuntu Zesty):
assignee: nobody → Stefan Bader (smb)
importance: Undecided → Medium
status: New → In Progress

Patches applied to zesty/master-next.

Patch 90/92 (pstore: Fix flags to enable dumps on powerpc) was skipped since it has been already applied as a fix for LP #1691045.

Changed in linux (Ubuntu Zesty):
status: In Progress → Fix Committed
Launchpad Janitor (janitor) wrote :
Download full text (19.7 KiB)

This bug was fixed in the package linux - 4.10.0-26.30

---------------
linux (4.10.0-26.30) zesty; urgency=low

  * linux: 4.10.0-26.30 -proposed tracker (LP: #1700528)

  * CVE-2017-1000364
    - Revert "UBUNTU: SAUCE: mm: Only expand stack if guard area is hit"
    - Revert "mm: do not collapse stack gap into THP"
    - Revert "mm: enlarge stack guard gap"
    - mm: larger stack guard gap, between vmas
    - mm: fix new crash in unmapped_area_topdown()
    - Allow stack to grow up to address space limit

linux (4.10.0-25.29) zesty; urgency=low

  * linux: 4.10.0-25.29 -proposed tracker (LP: #1699028)

  * CVE-2017-1000364
    - SAUCE: mm: Only expand stack if guard area is hit

  * CVE-2017-9074
    - ipv6: Prevent overrun when parsing v6 header options
    - ipv6: Check ip6_find_1stfragopt() return value properly.

  * [Zesty] QDF2400 ARM64 server - NMI watchdog: BUG: soft lockup - CPU#8 stuck
    for 22s! (LP: #1680549)
    - iommu/dma: Stop getting dma_32bit_pfn wrong
    - iommu/dma: Implement PCI allocation optimisation
    - iommu/dma: Convert to address-based allocation
    - iommu/dma: Clean up MSI IOVA allocation
    - iommu/dma: Plumb in the per-CPU IOVA caches
    - iommu/iova: Fix underflow bug in __alloc_and_insert_iova_range

  * Zesty update to 4.10.17 stable release (LP: #1692898)
    - xen: adjust early dom0 p2m handling to xen hypervisor behavior
    - target: Fix compare_and_write_callback handling for non GOOD status
    - target/fileio: Fix zero-length READ and WRITE handling
    - iscsi-target: Set session_fall_back_to_erl0 when forcing reinstatement
    - usb: xhci: bInterval quirk for TI TUSB73x0
    - usb: host: xhci: print correct command ring address
    - USB: serial: ftdi_sio: add device ID for Microsemi/Arrow SF2PLUS Dev Kit
    - USB: Proper handling of Race Condition when two USB class drivers try to
      call init_usb_class simultaneously
    - USB: Revert "cdc-wdm: fix "out-of-sync" due to missing notifications"
    - staging: vt6656: use off stack for in buffer USB transfers.
    - staging: vt6656: use off stack for out buffer USB transfers.
    - staging: gdm724x: gdm_mux: fix use-after-free on module unload
    - staging: wilc1000: Fix problem with wrong vif index
    - staging: comedi: jr3_pci: fix possible null pointer dereference
    - staging: comedi: jr3_pci: cope with jiffies wraparound
    - usb: misc: add missing continue in switch
    - usb: gadget: legacy gadgets are optional
    - usb: Make sure usb/phy/of gets built-in
    - usb: hub: Fix error loop seen after hub communication errors
    - usb: hub: Do not attempt to autosuspend disconnected devices
    - x86/boot: Fix BSS corruption/overwrite bug in early x86 kernel startup
    - selftests/x86/ldt_gdt_32: Work around a glibc sigaction() bug
    - x86, pmem: Fix cache flushing for iovec write < 8 bytes
    - um: Fix PTRACE_POKEUSER on x86_64
    - perf/x86: Fix Broadwell-EP DRAM RAPL events
    - KVM: x86: fix user triggerable warning in kvm_apic_accept_events()
    - KVM: arm/arm64: fix races in kvm_psci_vcpu_on
    - arm64: KVM: Fix decoding of Rt/Rt2 when trapping AArch32 CP accesses
    - block: fix blk_integrity_register to use templ...

Changed in linux (Ubuntu Zesty):
status: Fix Committed → Fix Released
Changed in linux (Ubuntu):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers