Xenial update to 4.4.109 stable release

Bug #1745069 reported by Khaled El Mously on 2018-01-24
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Undecided
Unassigned
Xenial
Medium
Unassigned

Bug Description

SRU Justification

    Impact:
       The upstream process for stable tree updates is quite similar
       in scope to the Ubuntu SRU process, e.g., each patch has to
       demonstrably fix a bug, and each patch is vetted by upstream
       by originating either directly from a mainline/stable Linux tree or
       a minimally backported form of that patch. The 4.4.109 upstream stable
       patch set is now available. It should be included in the Ubuntu
       kernel as well.

       git://git.kernel.org/

    TEST CASE: TBD

       The following patches from the 4.4.109 stable release shall be applied:
* ACPI: APEI / ERST: Fix missing error handling in erst_reader()
* crypto: mcryptd - protect the per-CPU queue with a lock
* mfd: cros ec: spi: Don't send first message too soon
* mfd: twl4030-audio: Fix sibling-node lookup
* mfd: twl6040: Fix child-node lookup
* ALSA: rawmidi: Avoid racy info ioctl via ctl device
* ALSA: usb-audio: Fix the missing ctl name suffix at parsing SU
* PCI / PM: Force devices to D0 in pci_pm_thaw_noirq()
* parisc: Hide Diva-built-in serial aux and graphics card
* spi: xilinx: Detect stall with Unknown commands
* KVM: X86: Fix load RFLAGS w/o the fixed bit
* kvm: x86: fix RSM when PCID is non-zero
* powerpc/perf: Dereference BHRB entries safely
* net: mvneta: clear interface link status on port disable
* tracing: Remove extra zeroing out of the ring buffer page
* tracing: Fix possible double free on failure of allocating trace buffer
* tracing: Fix crash when it fails to alloc ring buffer
* ring-buffer: Mask out the info bits when returning buffer page length
* iw_cxgb4: Only validate the MSN for successful completions
* ASoC: fsl_ssi: AC'97 ops need regmap, clock and cleaning up on failure
* ASoC: twl4030: fix child-node lookup
* ALSA: hda: Drop useless WARN_ON()
* ALSA: hda - fix headset mic detection issue on a Dell machine
* x86/vm86/32: Switch to flush_tlb_mm_range() in mark_screen_rdonly()
* x86/mm: Remove flush_tlb() and flush_tlb_current_task()
* x86/mm: Make flush_tlb_mm_range() more predictable
* x86/mm: Reimplement flush_tlb_page() using flush_tlb_mm_range()
* x86/mm: Remove the UP asm/tlbflush.h code, always use the (formerly) SMP code
* x86/mm: Disable PCID on 32-bit kernels
* x86/mm: Add the 'nopcid' boot option to turn off PCID
* x86/mm: Enable CR4.PCIDE on supported systems
* x86/mm/64: Fix reboot interaction with CR4.PCIDE
* kbuild: add '-fno-stack-check' to kernel build options
* ipv4: igmp: guard against silly MTU values
* ipv6: mcast: better catch silly mtu values
* net: igmp: Use correct source address on IGMPv3 reports
* netlink: Add netns check on taps
* net: qmi_wwan: add Sierra EM7565 1199:9091
* net: reevalulate autoflowlabel setting after sysctl setting
* tcp md5sig: Use skb's saddr when replying to an incoming segment
* tg3: Fix rx hang on MTU change with 5717/5719
* net: ipv4: fix for a race condition in raw_sendmsg
* net: mvmdio: disable/unprepare clocks in EPROBE_DEFER case
* sctp: Replace use of sockets_allocated with specified macro.
* ipv4: Fix use-after-free when flushing FIB tables
* net: bridge: fix early call to br_stp_change_bridge_id and plug newlink leaks
* net: Fix double free and memory corruption in get_net_ns_by_id()
* net: phy: micrel: ksz9031: reconfigure autoneg after phy autoneg workaround
* sock: free skb in skb_complete_tx_timestamp on error
* usbip: fix usbip bind writing random string after command in match_busid
* usbip: stub: stop printing kernel pointer addresses in messages
* usbip: vhci: stop printing kernel pointer addresses in messages
* USB: serial: ftdi_sio: add id for Airbus DS P8GR
* USB: serial: qcserial: add Sierra Wireless EM7565
* USB: serial: option: add support for Telit ME910 PID 0x1101
* USB: serial: option: adding support for YUGA CLM920-NC5
* usb: Add device quirk for Logitech HD Pro Webcam C925e
* usb: add RESET_RESUME for ELSA MicroLink 56K
* USB: Fix off by one in type-specific length check of BOS SSP capability
* usb: xhci: Add XHCI_TRUST_TX_LENGTH for Renesas uPD720201
* nohz: Prevent a timer interrupt storm in tick_nohz_stop_sched_tick()
* x86/smpboot: Remove stale TLB flush invocations
* n_tty: fix EXTPROC vs ICANON interaction with TIOCINQ (aka FIONREAD)
* mm/vmstat: Make NR_TLB_REMOTE_FLUSH_RECEIVED available even on UP
* Linux 4.4.109

tags: added: kernel-stable-tracking-bug
Khaled El Mously (kmously) wrote :

The following patches were skipped as they were previously applied:
 * kvm: x86: fix RSM when PCID is non-zero
 * x86/mm: Disable PCID on 32-bit kernels
 * x86/mm: Enable CR4.PCIDE on supported systems

description: updated
Stefan Bader (smb) wrote :

Since preparation the following patches also got applied already:
* net: ipv4: fix for a race condition in raw_sendmsg (CVE-2017-17712)
* net: Fix double free and memory corruption in get_net_ns_by_id()
  (CVE-2017-15129)

Changed in linux (Ubuntu):
status: New → Invalid
Changed in linux (Ubuntu Xenial):
importance: Undecided → Medium
Stefan Bader (smb) on 2018-02-21
Changed in linux (Ubuntu Xenial):
status: New → Fix Committed
Launchpad Janitor (janitor) wrote :
Download full text (56.9 KiB)

This bug was fixed in the package linux - 4.4.0-119.143

---------------
linux (4.4.0-119.143) xenial; urgency=medium

  * linux: 4.4.0-119.143 -proposed tracker (LP: #1760327)

  * Dell XPS 13 9360 bluetooth scan can not detect any device (LP: #1759821)
    - Revert "Bluetooth: btusb: fix QCA Rome suspend/resume"

linux (4.4.0-118.142) xenial; urgency=medium

  * linux: 4.4.0-118.142 -proposed tracker (LP: #1759607)

  * Kernel panic with AWS 4.4.0-1053 / 4.4.0-1015 (Trusty) (LP: #1758869)
    - x86/microcode/AMD: Do not load when running on a hypervisor

  * CVE-2018-8043
    - net: phy: mdio-bcm-unimac: fix potential NULL dereference in
      unimac_mdio_probe()

linux (4.4.0-117.141) xenial; urgency=medium

  * linux: 4.4.0-117.141 -proposed tracker (LP: #1755208)

  * Xenial update to 4.4.114 stable release (LP: #1754592)
    - x86/asm/32: Make sync_core() handle missing CPUID on all 32-bit kernels
    - usbip: prevent vhci_hcd driver from leaking a socket pointer address
    - usbip: Fix implicit fallthrough warning
    - usbip: Fix potential format overflow in userspace tools
    - x86/microcode/intel: Fix BDW late-loading revision check
    - x86/retpoline: Fill RSB on context switch for affected CPUs
    - sched/deadline: Use the revised wakeup rule for suspending constrained dl
      tasks
    - can: af_can: can_rcv(): replace WARN_ONCE by pr_warn_once
    - can: af_can: canfd_rcv(): replace WARN_ONCE by pr_warn_once
    - PM / sleep: declare __tracedata symbols as char[] rather than char
    - time: Avoid undefined behaviour in ktime_add_safe()
    - timers: Plug locking race vs. timer migration
    - Prevent timer value 0 for MWAITX
    - drivers: base: cacheinfo: fix x86 with CONFIG_OF enabled
    - drivers: base: cacheinfo: fix boot error message when acpi is enabled
    - PCI: layerscape: Add "fsl,ls2085a-pcie" compatible ID
    - PCI: layerscape: Fix MSG TLP drop setting
    - mmc: sdhci-of-esdhc: add/remove some quirks according to vendor version
    - fs/select: add vmalloc fallback for select(2)
    - hwpoison, memcg: forcibly uncharge LRU pages
    - cma: fix calculation of aligned offset
    - mm, page_alloc: fix potential false positive in __zone_watermark_ok
    - ipc: msg, make msgrcv work with LONG_MIN
    - x86/ioapic: Fix incorrect pointers in ioapic_setup_resources()
    - ACPI / processor: Avoid reserving IO regions too early
    - ACPI / scan: Prefer devices without _HID/_CID for _ADR matching
    - ACPICA: Namespace: fix operand cache leak
    - netfilter: x_tables: speed up jump target validation
    - netfilter: arp_tables: fix invoking 32bit "iptable -P INPUT ACCEPT" failed
      in 64bit kernel
    - netfilter: nf_dup_ipv6: set again FLOWI_FLAG_KNOWN_NH at flowi6_flags
    - netfilter: nf_ct_expect: remove the redundant slash when policy name is
      empty
    - netfilter: nfnetlink_queue: reject verdict request from different portid
    - netfilter: restart search if moved to other chain
    - netfilter: nf_conntrack_sip: extend request line validation
    - netfilter: use fwmark_reflect in nf_send_reset
    - ext2: Don't clear SGID when inheriting ACLs
    - reiserfs: fix race in prealloc discard
    - re...

Changed in linux (Ubuntu Xenial):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers