Xenial update: 4.4.201 upstream stable release

Bug #1852335 reported by Connor Kuehl on 2019-11-12
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Undecided
Unassigned
Xenial
Medium
Connor Kuehl

Bug Description

SRU Justification

    Impact:
       The upstream process for stable tree updates is quite similar
       in scope to the Ubuntu SRU process, e.g., each patch has to
       demonstrably fix a bug, and each patch is vetted by upstream
       by originating either directly from a mainline/stable Linux tree or
       a minimally backported form of that patch. The following upstream
       stable patches should be included in the Ubuntu kernel:

* CDC-NCM: handle incomplete transfer of MTU
* net: fix data-race in neigh_event_send()
* NFC: fdp: fix incorrect free object
* NFC: st21nfca: fix double free
* qede: fix NULL pointer deref in __qede_remove()
* nfc: netlink: fix double device reference drop
* ALSA: bebob: fix to detect configured source of sampling clock for Focusrite Saffire Pro i/o series
* ALSA: hda/ca0132 - Fix possible workqueue stall
* mm, vmstat: hide /proc/pagetypeinfo from normal users
* dump_stack: avoid the livelock of the dump_lock
* perf tools: Fix time sorting
* drm/radeon: fix si_enable_smc_cac() failed issue
* ceph: fix use-after-free in __ceph_remove_cap()
* iio: imu: adis16480: make sure provided frequency is positive
* netfilter: nf_tables: Align nft_expr private data to 64-bit
* netfilter: ipset: Fix an error code in ip_set_sockfn_get()
* can: usb_8dev: fix use-after-free on disconnect
* can: c_can: c_can_poll(): only read status register after status IRQ
* can: peak_usb: fix a potential out-of-sync while decoding packets
* can: gs_usb: gs_can_open(): prevent memory leak
* can: peak_usb: fix slab info leak
* drivers: usb: usbip: Add missing break statement to switch
* configfs: fix a deadlock in configfs_symlink()
* PCI: tegra: Enable Relaxed Ordering only for Tegra20 & Tegra30
* scsi: qla2xxx: fixup incorrect usage of host_byte
* scsi: lpfc: Honor module parameter lpfc_use_adisc
* ipvs: move old_secure_tcp into struct netns_ipvs
* bonding: fix unexpected IFF_BONDING bit unset
* usb: fsl: Check memory resource before releasing it
* usb: gadget: udc: atmel: Fix interrupt storm in FIFO mode.
* usb: gadget: composite: Fix possible double free memory bug
* usb: gadget: configfs: fix concurrent issue between composite APIs
* perf/x86/amd/ibs: Fix reading of the IBS OpData register and thus precise RIP validity
* USB: Skip endpoints with 0 maxpacket length
* scsi: qla2xxx: stop timer in shutdown path
* net: hisilicon: Fix "Trying to free already-free IRQ"
* NFSv4: Don't allow a cached open with a revoked delegation
* igb: Fix constant media auto sense switching when no cable is connected
* e1000: fix memory leaks
* can: flexcan: disable completely the ECC mechanism
* mm/filemap.c: don't initiate writeback if mapping has no dirty pages
* cgroup,writeback: don't switch wbs immediately on dead wbs if the memcg is dead
* net: prevent load/store tearing on sk->sk_stamp
* Linux 4.4.201
* UBUNTU: upstream stable to v4.4.201

       4.4.201 upstream stable release
       from git://git.kernel.org/

Connor Kuehl (connork) on 2019-11-12
Changed in linux (Ubuntu):
status: New → Confirmed
tags: added: kernel-stable-tracking-bug
Connor Kuehl (connork) on 2019-11-18
Changed in linux (Ubuntu):
status: Confirmed → Invalid
Changed in linux (Ubuntu Xenial):
status: New → In Progress
importance: Undecided → Medium
assignee: nobody → Connor Kuehl (connork)
Connor Kuehl (connork) on 2019-11-19
description: updated
Connor Kuehl (connork) wrote :

The following patches were NOT applied from this upstream stable update in favor of their UBUNTU SAUCE equivalents:

* drm/i915/gtt: Add read only pages to gen8_pte_encode
* drm/i915/gtt: Read-only pages for insert_entries on bdw+
* drm/i915/gtt: Disable read-only support under GVT
* drm/i915: Rename gen7 cmdparser tables
* drm/i915: Disable Secure Batches for gen6+
* drm/i915: Remove Master tables from cmdparser
* drm/i915: Add support for mandatory cmdparsing
* drm/i915: Support ro ppgtt mapped cmdparser shadow buffers
* drm/i915: Allow parsing of unsized batches
* drm/i915: Add gen9 BCS cmdparsing
* drm/i915/cmdparser: Add support for backward jumps
* drm/i915/cmdparser: Ignore Length operands during command matching
* drm/i915: Lower RM timeout to avoid DSI hard hangs
* drm/i915/gen8+: Add RC6 CTX corruption WA
* drm/i915/cmdparser: Fix jump whitelist clearing

Connor Kuehl (connork) wrote :

Also of note:

* ("perf/x86/amd/ibs: Fix reading of the IBS OpData register and thus precise RIP validity") modified a routine that was expected to be in "arch/x86/kernel/cpu/perf_event_amd_ibs.c" but was found in "arch/x86/events/amd/ibs.c"

Stefan Bader (smb) on 2019-11-28
Changed in linux (Ubuntu Xenial):
status: In Progress → Fix Committed
Launchpad Janitor (janitor) wrote :
Download full text (15.0 KiB)

This bug was fixed in the package linux - 4.4.0-171.200

---------------
linux (4.4.0-171.200) xenial; urgency=medium

  * xenial/linux: 4.4.0-171.200 -proposed tracker (LP: #1854835)

  * CVE-2019-14901
    - SAUCE: mwifiex: Fix heap overflow in mmwifiex_process_tdls_action_frame()

  * CVE-2019-14896 // CVE-2019-14897
    - SAUCE: libertas: Fix two buffer overflows at parsing bss descriptor

  * CVE-2019-14895
    - SAUCE: mwifiex: fix possible heap overflow in mwifiex_process_country_ie()

  * CVE-2019-18660: patches for Ubuntu (LP: #1853142) // CVE-2019-18660
    - powerpc/64s: support nospectre_v2 cmdline option
    - powerpc/book3s64: Fix link stack flush on context switch
    - KVM: PPC: Book3S HV: Flush link stack on guest exit to host kernel

  * cloudimg: no iavf/i40evf module so no network available with SR-IOV enabled
    cloud (LP: #1848481)
    - [Packaging]: include i40evf in generic

  * update ENA driver for DIMLIB dynamic interrupt moderation (LP: #1853180)
    - net: ena: fix bug that might cause hang after consecutive open/close
      interface.
    - net: ena: add intr_moder_rx_interval to struct ena_com_dev and use it
    - net: ena: switch to dim algorithm for rx adaptive interrupt moderation
    - net: ena: reimplement set/get_coalesce()
    - net: ena: enable the interrupt_moderation in driver_supported_features
    - net: ena: remove code duplication in
      ena_com_update_nonadaptive_moderation_interval _*()
    - net: ena: remove old adaptive interrupt moderation code from ena_netdev
    - net: ena: remove ena_restore_ethtool_params() and relevant fields
    - net: ena: remove all old adaptive rx interrupt moderation code from ena_com
    - net: ena: fix update of interrupt moderation register
    - net: ena: fix retrieval of nonadaptive interrupt moderation intervals
    - net: ena: fix incorrect update of intr_delay_resolution
    - net: ena: Select DIMLIB for ENA_ETHERNET
    - SAUCE: net: ena: fix issues in setting interrupt moderation params in
      ethtool
    - SAUCE: net: ena: fix too long default tx interrupt moderation interval

  * backport DIMLIB (lib/dim/) to pre-5.2 kernels (LP: #1852637)
    - include/linux/bitops.h: introduce BITS_PER_TYPE
    - linux/kernel.h: move DIV_ROUND_DOWN_ULL() macro
    - [Config] enable DIMLIB
    - linux/dim: import DIMLIB (lib/dim/)
    - SAUCE: linux/dim: avoid library object filename clash

  * Enable framebuffer fonts auto selection for HighDPI screen (LP: #1851623)
    - fonts: Fix coding style
    - fonts: Prefer a bigger font for high resolution screens

  * Xenial update: 4.4.203 upstream stable release (LP: #1853881)
    - slip: Fix memory leak in slip_open error path
    - ax88172a: fix information leak on short answers
    - ALSA: usb-audio: Fix missing error check at mixer resolution test
    - ALSA: usb-audio: not submit urb for stopped endpoint
    - Input: ff-memless - kill timer in destroy()
    - ecryptfs_lookup_interpose(): lower_dentry->d_inode is not stable
    - ecryptfs_lookup_interpose(): lower_dentry->d_parent is not stable either
    - iommu/vt-d: Fix QI_DEV_IOTLB_PFSID and QI_DEV_EIOTLB_PFSID macros
    - mm: memcg: switch to css_tryget() in g...

Changed in linux (Ubuntu Xenial):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers