Xenial update to 4.4.107 stable release

Bug #1745052 reported by Khaled El Mously on 2018-01-23
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)

Bug Description

SRU Justification

       The upstream process for stable tree updates is quite similar
       in scope to the Ubuntu SRU process, e.g., each patch has to
       demonstrably fix a bug, and each patch is vetted by upstream
       by originating either directly from a mainline/stable Linux tree or
       a minimally backported form of that patch. The 4.4.107 upstream stable
       patch set is now available. It should be included in the Ubuntu
       kernel as well.



       The following patches from the 4.4.107 stable release shall be applied:
* crypto: hmac - require that the underlying hash algorithm is unkeyed
* crypto: salsa20 - fix blkcipher_walk API usage
* autofs: fix careless error in recent commit
* tracing: Allocate mask_str buffer dynamically
* USB: uas and storage: Add US_FL_BROKEN_FUA for another JMicron JMS567 ID
* USB: core: prevent malicious bNumInterfaces overflow
* usbip: fix stub_send_ret_submit() vulnerability to null transfer_buffer
* ceph: drop negative child dentries before try pruning inode's alias
* Bluetooth: btusb: driver to enable the usb-wakeup feature
* xhci: Don't add a virt_dev to the devs array before it's fully allocated
* sched/rt: Do not pull from current CPU if only one CPU to pull
* dmaengine: dmatest: move callback wait queue to thread context
* ext4: fix fdatasync(2) after fallocate(2) operation
* ext4: fix crash when a directory's i_size is too small
* KEYS: add missing permission check for request_key() destination
* mac80211: Fix addition of mesh configuration element
* usb: phy: isp1301: Add OF device ID table
* md-cluster: free md_cluster_info if node leave cluster
* userfaultfd: shmem: __do_fault requires VM_FAULT_NOPAGE
* userfaultfd: selftest: vm: allow to build in vm/ directory
* net: initialize msg.msg_flags in recvfrom
* net: bcmgenet: correct the RBUF_OVFL_CNT and RBUF_ERR_CNT MIB values
* net: bcmgenet: correct MIB access of UniMAC RUNT counters
* net: bcmgenet: reserved phy revisions must be checked first
* net: bcmgenet: power down internal phy if open or resume fails
* net: bcmgenet: Power up the internal PHY before probing the MII
* NFSD: fix nfsd_minorversion(.., NFSD_AVAIL)
* NFSD: fix nfsd_reset_versions for NFSv4.
* Input: i8042 - add TUXEDO BU1406 (N24_25BU) to the nomux list
* drm/omap: fix dmabuf mmap for dma_alloc'ed buffers
* netfilter: bridge: honor frag_max_size when refragmenting
* writeback: fix memory leak in wb_queue_work()
* net: wimax/i2400m: fix NULL-deref at probe
* dmaengine: Fix array index out of bounds warning in __get_unmap_pool()
* net: Resend IGMP memberships upon peer notification.
* mlxsw: reg: Fix SPVM max record count
* mlxsw: reg: Fix SPVMLR max record count
* intel_th: pci: Add Gemini Lake support
* openrisc: fix issue handling 8 byte get_user calls
* scsi: hpsa: update check for logical volume status
* scsi: hpsa: limit outstanding rescans
* fjes: Fix wrong netdevice feature flags
* drm/radeon/si: add dpm quirk for Oland
* sched/deadline: Make sure the replenishment timer fires in the next period
* sched/deadline: Throttle a constrained deadline task activated after the deadline
* sched/deadline: Use deadline instead of period when calculating overflow
* mmc: mediatek: Fixed bug where clock frequency could be set wrong
* drm/radeon: reinstate oland workaround for sclk
* afs: Fix missing put_page()
* afs: Populate group ID from vnode status
* afs: Adjust mode bits processing
* afs: Flush outstanding writes when an fd is closed
* afs: Migrate vlocation fields to 64-bit
* afs: Prevent callback expiry timer overflow
* afs: Fix the maths in afs_fs_store_data()
* afs: Populate and use client modification time
* afs: Fix page leak in afs_write_begin()
* afs: Fix afs_kill_pages()
* net/mlx4_core: Avoid delays during VF driver device shutdown
* perf symbols: Fix symbols__fixup_end heuristic for corner cases
* efi/esrt: Cleanup bad memory map log messages
* NFSv4.1 respect server's max size in CREATE_SESSION
* btrfs: add missing memset while reading compressed inline extents
* target: Use system workqueue for ALUA transitions
* target: fix ALUA transition timeout handling
* target: fix race during implicit transition work flushes
* sfc: don't warn on successful change of MAC
* fbdev: controlfb: Add missing modes to fix out of bounds access
* video: udlfb: Fix read EDID timeout
* video: fbdev: au1200fb: Release some resources if a memory allocation fails
* video: fbdev: au1200fb: Return an error code if a memory allocation fails
* rtc: pcf8563: fix output clock rate
* dmaengine: ti-dma-crossbar: Correct am335x/am43xx mux value type
* PCI/PME: Handle invalid data when reading Root Status
* powerpc/powernv/cpufreq: Fix the frequency read by /proc/cpuinfo
* netfilter: ipvs: Fix inappropriate output of procfs
* powerpc/opal: Fix EBUSY bug in acquiring tokens
* powerpc/ipic: Fix status get and status clear
* target/iscsi: Fix a race condition in iscsit_add_reject_from_cmd()
* iscsi-target: fix memory leak in lio_target_tiqn_addtpg()
* target:fix condition return in core_pr_dump_initiator_port()
* target/file: Do not return error for UNMAP if length is zero
* arm-ccn: perf: Prevent module unload while PMU is in use
* crypto: tcrypt - fix buffer lengths in test_aead_speed()
* mm: Handle 0 flags in _calc_vm_trans() macro
* clk: mediatek: add the option for determining PLL source clock
* clk: imx6: refine hdmi_isfr's parent to make HDMI work on i.MX6 SoCs w/o VPU
* clk: tegra: Fix cclk_lp divisor register
* ppp: Destroy the mutex when cleanup
* thermal/drivers/step_wise: Fix temperature regulation misbehavior
* GFS2: Take inode off order_write list when setting jdata flag
* bcache: explicitly destroy mutex while exiting
* bcache: fix wrong cache_misses statistics
* l2tp: cleanup l2tp_tunnel_delete calls
* xfs: fix log block underflow during recovery cycle verification
* xfs: fix incorrect extent state in xfs_bmap_add_extent_unwritten_real
* PCI: Detach driver before procfs & sysfs teardown on device remove
* scsi: hpsa: cleanup sas_phy structures in sysfs when unloading
* scsi: hpsa: destroy sas transport properties before scsi_host
* powerpc/perf/hv-24x7: Fix incorrect comparison in memord
* tty fix oops when rmmod 8250
* usb: musb: da8xx: fix babble condition handling
* pinctrl: adi2: Fix Kconfig build problem
* raid5: Set R5_Expanded on parity devices as well as data.
* scsi: scsi_devinfo: Add REPORTLUN2 to EMC SYMMETRIX blacklist entry
* vt6655: Fix a possible sleep-in-atomic bug in vt6655_suspend
* scsi: sd: change manage_start_stop to bool in sysfs interface
* scsi: sd: change allow_restart to bool in sysfs interface
* scsi: bfa: integer overflow in debugfs
* udf: Avoid overflow when session starts at large offset
* macvlan: Only deliver one copy of the frame to the macvlan interface
* RDMA/cma: Avoid triggering undefined behavior
* IB/ipoib: Grab rtnl lock on heavy flush when calling ndo_open/stop
* ath9k: fix tx99 potential info leak
* Linux 4.4.107

tags: added: kernel-stable-tracking-bug
description: updated
Khaled El Mously (kmously) wrote :

The following patch was NOT applied because it was already applied in https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1672785

 * net/mlx4_core: Avoid delays during VF driver device shutdown

Khaled El Mously (kmously) wrote :

The following patches were not applied cleanly by 'git am' so I had to apply them manually. No code changes were required:

 * Bluetooth: btusb: driver to enable the usb-wakeup feature
 * net: initialize msg.msg_flags in recvfrom

Khaled El Mously (kmously) wrote :

Regarding comment #2: "applied manually" as in using 'patch'

Stefan Bader (smb) on 2018-02-20
Changed in linux (Ubuntu):
status: New → Invalid
Changed in linux (Ubuntu Xenial):
importance: Undecided → Medium
Stefan Bader (smb) on 2018-02-20
Changed in linux (Ubuntu Xenial):
status: New → Fix Committed
Launchpad Janitor (janitor) wrote :
Download full text (56.9 KiB)

This bug was fixed in the package linux - 4.4.0-119.143

linux (4.4.0-119.143) xenial; urgency=medium

  * linux: 4.4.0-119.143 -proposed tracker (LP: #1760327)

  * Dell XPS 13 9360 bluetooth scan can not detect any device (LP: #1759821)
    - Revert "Bluetooth: btusb: fix QCA Rome suspend/resume"

linux (4.4.0-118.142) xenial; urgency=medium

  * linux: 4.4.0-118.142 -proposed tracker (LP: #1759607)

  * Kernel panic with AWS 4.4.0-1053 / 4.4.0-1015 (Trusty) (LP: #1758869)
    - x86/microcode/AMD: Do not load when running on a hypervisor

  * CVE-2018-8043
    - net: phy: mdio-bcm-unimac: fix potential NULL dereference in

linux (4.4.0-117.141) xenial; urgency=medium

  * linux: 4.4.0-117.141 -proposed tracker (LP: #1755208)

  * Xenial update to 4.4.114 stable release (LP: #1754592)
    - x86/asm/32: Make sync_core() handle missing CPUID on all 32-bit kernels
    - usbip: prevent vhci_hcd driver from leaking a socket pointer address
    - usbip: Fix implicit fallthrough warning
    - usbip: Fix potential format overflow in userspace tools
    - x86/microcode/intel: Fix BDW late-loading revision check
    - x86/retpoline: Fill RSB on context switch for affected CPUs
    - sched/deadline: Use the revised wakeup rule for suspending constrained dl
    - can: af_can: can_rcv(): replace WARN_ONCE by pr_warn_once
    - can: af_can: canfd_rcv(): replace WARN_ONCE by pr_warn_once
    - PM / sleep: declare __tracedata symbols as char[] rather than char
    - time: Avoid undefined behaviour in ktime_add_safe()
    - timers: Plug locking race vs. timer migration
    - Prevent timer value 0 for MWAITX
    - drivers: base: cacheinfo: fix x86 with CONFIG_OF enabled
    - drivers: base: cacheinfo: fix boot error message when acpi is enabled
    - PCI: layerscape: Add "fsl,ls2085a-pcie" compatible ID
    - PCI: layerscape: Fix MSG TLP drop setting
    - mmc: sdhci-of-esdhc: add/remove some quirks according to vendor version
    - fs/select: add vmalloc fallback for select(2)
    - hwpoison, memcg: forcibly uncharge LRU pages
    - cma: fix calculation of aligned offset
    - mm, page_alloc: fix potential false positive in __zone_watermark_ok
    - ipc: msg, make msgrcv work with LONG_MIN
    - x86/ioapic: Fix incorrect pointers in ioapic_setup_resources()
    - ACPI / processor: Avoid reserving IO regions too early
    - ACPI / scan: Prefer devices without _HID/_CID for _ADR matching
    - ACPICA: Namespace: fix operand cache leak
    - netfilter: x_tables: speed up jump target validation
    - netfilter: arp_tables: fix invoking 32bit "iptable -P INPUT ACCEPT" failed
      in 64bit kernel
    - netfilter: nf_dup_ipv6: set again FLOWI_FLAG_KNOWN_NH at flowi6_flags
    - netfilter: nf_ct_expect: remove the redundant slash when policy name is
    - netfilter: nfnetlink_queue: reject verdict request from different portid
    - netfilter: restart search if moved to other chain
    - netfilter: nf_conntrack_sip: extend request line validation
    - netfilter: use fwmark_reflect in nf_send_reset
    - ext2: Don't clear SGID when inheriting ACLs
    - reiserfs: fix race in prealloc discard
    - re...

Changed in linux (Ubuntu Xenial):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers