Xenial update: 4.4.201 upstream stable release

Bug #1852335 reported by Connor Kuehl on 2019-11-12
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Connor Kuehl

Bug Description

SRU Justification

       The upstream process for stable tree updates is quite similar
       in scope to the Ubuntu SRU process, e.g., each patch has to
       demonstrably fix a bug, and each patch is vetted by upstream
       by originating either directly from a mainline/stable Linux tree or
       a minimally backported form of that patch. The following upstream
       stable patches should be included in the Ubuntu kernel:

* CDC-NCM: handle incomplete transfer of MTU
* net: fix data-race in neigh_event_send()
* NFC: fdp: fix incorrect free object
* NFC: st21nfca: fix double free
* qede: fix NULL pointer deref in __qede_remove()
* nfc: netlink: fix double device reference drop
* ALSA: bebob: fix to detect configured source of sampling clock for Focusrite Saffire Pro i/o series
* ALSA: hda/ca0132 - Fix possible workqueue stall
* mm, vmstat: hide /proc/pagetypeinfo from normal users
* dump_stack: avoid the livelock of the dump_lock
* perf tools: Fix time sorting
* drm/radeon: fix si_enable_smc_cac() failed issue
* ceph: fix use-after-free in __ceph_remove_cap()
* iio: imu: adis16480: make sure provided frequency is positive
* netfilter: nf_tables: Align nft_expr private data to 64-bit
* netfilter: ipset: Fix an error code in ip_set_sockfn_get()
* can: usb_8dev: fix use-after-free on disconnect
* can: c_can: c_can_poll(): only read status register after status IRQ
* can: peak_usb: fix a potential out-of-sync while decoding packets
* can: gs_usb: gs_can_open(): prevent memory leak
* can: peak_usb: fix slab info leak
* drivers: usb: usbip: Add missing break statement to switch
* configfs: fix a deadlock in configfs_symlink()
* PCI: tegra: Enable Relaxed Ordering only for Tegra20 & Tegra30
* scsi: qla2xxx: fixup incorrect usage of host_byte
* scsi: lpfc: Honor module parameter lpfc_use_adisc
* ipvs: move old_secure_tcp into struct netns_ipvs
* bonding: fix unexpected IFF_BONDING bit unset
* usb: fsl: Check memory resource before releasing it
* usb: gadget: udc: atmel: Fix interrupt storm in FIFO mode.
* usb: gadget: composite: Fix possible double free memory bug
* usb: gadget: configfs: fix concurrent issue between composite APIs
* perf/x86/amd/ibs: Fix reading of the IBS OpData register and thus precise RIP validity
* USB: Skip endpoints with 0 maxpacket length
* scsi: qla2xxx: stop timer in shutdown path
* net: hisilicon: Fix "Trying to free already-free IRQ"
* NFSv4: Don't allow a cached open with a revoked delegation
* igb: Fix constant media auto sense switching when no cable is connected
* e1000: fix memory leaks
* can: flexcan: disable completely the ECC mechanism
* mm/filemap.c: don't initiate writeback if mapping has no dirty pages
* cgroup,writeback: don't switch wbs immediately on dead wbs if the memcg is dead
* net: prevent load/store tearing on sk->sk_stamp
* Linux 4.4.201
* UBUNTU: upstream stable to v4.4.201

       4.4.201 upstream stable release
       from git://git.kernel.org/

Connor Kuehl (connork) on 2019-11-12
Changed in linux (Ubuntu):
status: New → Confirmed
tags: added: kernel-stable-tracking-bug
Connor Kuehl (connork) on 2019-11-18
Changed in linux (Ubuntu):
status: Confirmed → Invalid
Changed in linux (Ubuntu Xenial):
status: New → In Progress
importance: Undecided → Medium
assignee: nobody → Connor Kuehl (connork)
Connor Kuehl (connork) on 2019-11-19
description: updated
Connor Kuehl (connork) wrote :

The following patches were NOT applied from this upstream stable update in favor of their UBUNTU SAUCE equivalents:

* drm/i915/gtt: Add read only pages to gen8_pte_encode
* drm/i915/gtt: Read-only pages for insert_entries on bdw+
* drm/i915/gtt: Disable read-only support under GVT
* drm/i915: Rename gen7 cmdparser tables
* drm/i915: Disable Secure Batches for gen6+
* drm/i915: Remove Master tables from cmdparser
* drm/i915: Add support for mandatory cmdparsing
* drm/i915: Support ro ppgtt mapped cmdparser shadow buffers
* drm/i915: Allow parsing of unsized batches
* drm/i915: Add gen9 BCS cmdparsing
* drm/i915/cmdparser: Add support for backward jumps
* drm/i915/cmdparser: Ignore Length operands during command matching
* drm/i915: Lower RM timeout to avoid DSI hard hangs
* drm/i915/gen8+: Add RC6 CTX corruption WA
* drm/i915/cmdparser: Fix jump whitelist clearing

Connor Kuehl (connork) wrote :

Also of note:

* ("perf/x86/amd/ibs: Fix reading of the IBS OpData register and thus precise RIP validity") modified a routine that was expected to be in "arch/x86/kernel/cpu/perf_event_amd_ibs.c" but was found in "arch/x86/events/amd/ibs.c"

Stefan Bader (smb) on 2019-11-28
Changed in linux (Ubuntu Xenial):
status: In Progress → Fix Committed
Launchpad Janitor (janitor) wrote :
Download full text (15.0 KiB)

This bug was fixed in the package linux - 4.4.0-171.200

linux (4.4.0-171.200) xenial; urgency=medium

  * xenial/linux: 4.4.0-171.200 -proposed tracker (LP: #1854835)

  * CVE-2019-14901
    - SAUCE: mwifiex: Fix heap overflow in mmwifiex_process_tdls_action_frame()

  * CVE-2019-14896 // CVE-2019-14897
    - SAUCE: libertas: Fix two buffer overflows at parsing bss descriptor

  * CVE-2019-14895
    - SAUCE: mwifiex: fix possible heap overflow in mwifiex_process_country_ie()

  * CVE-2019-18660: patches for Ubuntu (LP: #1853142) // CVE-2019-18660
    - powerpc/64s: support nospectre_v2 cmdline option
    - powerpc/book3s64: Fix link stack flush on context switch
    - KVM: PPC: Book3S HV: Flush link stack on guest exit to host kernel

  * cloudimg: no iavf/i40evf module so no network available with SR-IOV enabled
    cloud (LP: #1848481)
    - [Packaging]: include i40evf in generic

  * update ENA driver for DIMLIB dynamic interrupt moderation (LP: #1853180)
    - net: ena: fix bug that might cause hang after consecutive open/close
    - net: ena: add intr_moder_rx_interval to struct ena_com_dev and use it
    - net: ena: switch to dim algorithm for rx adaptive interrupt moderation
    - net: ena: reimplement set/get_coalesce()
    - net: ena: enable the interrupt_moderation in driver_supported_features
    - net: ena: remove code duplication in
      ena_com_update_nonadaptive_moderation_interval _*()
    - net: ena: remove old adaptive interrupt moderation code from ena_netdev
    - net: ena: remove ena_restore_ethtool_params() and relevant fields
    - net: ena: remove all old adaptive rx interrupt moderation code from ena_com
    - net: ena: fix update of interrupt moderation register
    - net: ena: fix retrieval of nonadaptive interrupt moderation intervals
    - net: ena: fix incorrect update of intr_delay_resolution
    - net: ena: Select DIMLIB for ENA_ETHERNET
    - SAUCE: net: ena: fix issues in setting interrupt moderation params in
    - SAUCE: net: ena: fix too long default tx interrupt moderation interval

  * backport DIMLIB (lib/dim/) to pre-5.2 kernels (LP: #1852637)
    - include/linux/bitops.h: introduce BITS_PER_TYPE
    - linux/kernel.h: move DIV_ROUND_DOWN_ULL() macro
    - [Config] enable DIMLIB
    - linux/dim: import DIMLIB (lib/dim/)
    - SAUCE: linux/dim: avoid library object filename clash

  * Enable framebuffer fonts auto selection for HighDPI screen (LP: #1851623)
    - fonts: Fix coding style
    - fonts: Prefer a bigger font for high resolution screens

  * Xenial update: 4.4.203 upstream stable release (LP: #1853881)
    - slip: Fix memory leak in slip_open error path
    - ax88172a: fix information leak on short answers
    - ALSA: usb-audio: Fix missing error check at mixer resolution test
    - ALSA: usb-audio: not submit urb for stopped endpoint
    - Input: ff-memless - kill timer in destroy()
    - ecryptfs_lookup_interpose(): lower_dentry->d_inode is not stable
    - ecryptfs_lookup_interpose(): lower_dentry->d_parent is not stable either
    - iommu/vt-d: Fix QI_DEV_IOTLB_PFSID and QI_DEV_EIOTLB_PFSID macros
    - mm: memcg: switch to css_tryget() in g...

Changed in linux (Ubuntu Xenial):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers