Focal update: v5.4.153 upstream stable release
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Focal |
Fix Released
|
Medium
|
Kamal Mostafa |
Bug Description
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The following upstream
stable patches should be included in the Ubuntu kernel:
v5.4.153 upstream stable release
from git://git.
Partially revert "usb: Kconfig: using select for USB_COMMON dependency"
USB: cdc-acm: fix racy tty buffer accesses
USB: cdc-acm: fix break reporting
usb: typec: tcpm: handle SRC_STARTUP state if cc changes
xen/privcmd: fix error handling in mmap-resource processing
mmc: meson-gx: do not use memcpy_to/fromio for dram-access-quirk
ovl: fix missing negative dentry check in ovl_rename()
nfsd: fix error handling of register_
nfsd4: Handle the NFSv4 READDIR 'dircount' hint being zero
xen/balloon: fix cancelled balloon action
ARM: dts: omap3430-sdp: Fix NAND device node
ARM: dts: qcom: apq8064: use compatible which contains chipid
MIPS: BPF: Restore MIPS32 cBPF JIT
bpf, mips: Validate conditional branch offsets
soc: qcom: socinfo: Fixed argument passed to platform_set_data()
ARM: dts: qcom: apq8064: Use 27MHz PXO clock as DSI PLL reference
soc: qcom: mdt_loader: Drop PT_LOAD check on hash segment
ARM: dts: imx: Add missing pinctrl-names for panel on M53Menlo
ARM: dts: imx: Fix USB host power regulator polarity on M53Menlo
arm64: dts: qcom: pm8150: use qcom,pm8998-pon binding
xtensa: move XCHAL_KIO_* definitions to kmem_layout.h
xtensa: use CONFIG_USE_OF instead of CONFIG_OF
xtensa: call irqchip_init only when CONFIG_USE_OF is selected
bpf, arm: Fix register clobbering in div/mod implementation
bpf: Fix integer overflow in prealloc_
phy: mdio: fix memory leak
net_sched: fix NULL deref in fifo_set_limit()
powerpc/fsl/dts: Fix phy-connection-type for fm1mac3
ptp_pch: Load module automatically if ID matches
arm64: dts: freescale: Fix SP805 clock-names
arm64: dts: ls1028a: add missing CAN nodes
ARM: imx6: disable the GIC CPU interface before calling stby-poweroff sequence
net: bridge: use nla_total_
net/sched: sch_taprio: properly cancel timer from taprio_destroy()
net: sfp: Fix typo in state machine debug string
netlink: annotate data races around nlk->bound
bus: ti-sysc: Use CLKDM_NOAUTO for dra7 dcan1 for errata i893
video: fbdev: gbefb: Only instantiate device when built for IP32
drm/nouveau/
gve: Correct available tx qpl check
rtnetlink: fix if_nlmsg_
gve: fix gve_get_stats()
i40e: fix endless loop under rtnl
i40e: Fix freeing of uninitialized misc IRQ vector
net: prefer socket bound to interface when not in VRF
i2c: acpi: fix resource leak in reconfiguration device addition
bpf, s390: Fix potential memory leak about jit_data
RISC-V: Include clone3() on rv32
x86/platform/olpc: Correct ifdef symbol to intended CONFIG_
x86/hpet: Use another crystalball to evaluate HPET usability
x86/Kconfig: Correct reference to MWINCHIP3D
Linux 5.4.153
UBUNTU: upstream stable to v5.4.153
CVE References
Changed in linux (Ubuntu): | |
status: | New → Confirmed |
tags: | added: kernel-stable-tracking-bug |
Changed in linux (Ubuntu Focal): | |
status: | New → In Progress |
importance: | Undecided → Medium |
assignee: | nobody → Kamal Mostafa (kamalmostafa) |
Changed in linux (Ubuntu): | |
status: | Confirmed → Invalid |
description: | updated |
Changed in linux (Ubuntu Focal): | |
status: | In Progress → Fix Committed |
This bug was fixed in the package linux - 5.4.0-92.103
---------------
linux (5.4.0-92.103) focal; urgency=medium
* focal/linux: 5.4.0-92.103 -proposed tracker (LP: #1952316)
* Packaging resync (LP: #1786013) dkms-versions helper dkms-versions -- update from kernel-versions (main/2021.11.29)
- [Packaging] resync update-
- debian/
* CVE-2021-4002
- tlb: mmu_gather: add tlb_flush_*_range APIs
- hugetlbfs: flush TLBs correctly after huge_pmd_unshare
* Re-enable DEBUG_INFO_BTF where it was disabled (LP: #1945632) DEBUG_INFO_ BTF on all arches
- [Config] Enable CONFIG_
* Focal linux-azure: Vm crash on Dv5/Ev5 (LP: #1950462) exec_ctrls( ) work again
- KVM: VMX: eVMCS: make evmcs_sanitize_
- jump_label: Fix usage in module __init
* Support builtin revoked certificates (LP: #1932029) n_list' to gitignore revoked- certs.pem from branch/arch certs SYSTEM_ REVOCATION_ KEYS with revoked keys
- Revert "UBUNTU: SAUCE: (lockdown) Make get_cert_list() not complain about
cert lists that aren't present."
- integrity: Move import of MokListRT certs to a separate routine
- integrity: Load certs from the EFI MOK config table
- certs: Add ability to preload revocation certs
- integrity: Load mokx variables into the blacklist keyring
- certs: add 'x509_revocatio
- SAUCE: Dump stack when X.509 certificates cannot be loaded
- [Packaging] build canonical-
- [Packaging] Revoke 2012 UEFI signing certificate as built-in
- [Config] Configure CONFIG_
* Support importing mokx keys into revocation list from the mok table
(LP: #1928679)
- efi: Support for MOK variable config table
- efi: mokvar-table: fix some issues in new code
- efi: mokvar: add missing include of asm/early_ioremap.h
- efi/mokvar: Reserve the table only if it is in boot services data
- SAUCE: integrity: add informational messages when revoking certs
* Support importing mokx keys into revocation list from the mok table
(LP: #1928679) // CVE-2020-26541 when certificates are revoked via
MokListXRT.
- SAUCE: integrity: Load mokx certs from the EFI MOK config table
* Focal update: v5.4.157 upstream stable release (LP: #1951883) hash()
- ARM: 9133/1: mm: proc-macros: ensure *_tlb_fns are 4B aligned
- ARM: 9134/1: remove duplicate memcpy() definition
- ARM: 9139/1: kprobes: fix arch_init_kprobes() prototype
- ARM: 9141/1: only warn about XIP address when not compile testing
- ipv6: use siphash in rt6_exception_
- ipv4: use siphash instead of Jenkins in fnhe_hashfun()
- usbnet: sanity check for maxpacket
- usbnet: fix error return code in usbnet_probe()
- Revert "pinctrl: bcm: ns: support updated DT binding as syscon subnode"
- ata: sata_mv: Fix the error handling of mv_chip_id()
- nfc: port100: fix using -ERRNO as command type mask
- net/tls: Fix flipped sign in tls_err_abort() calls
- mmc: vub300: fix control-message timeouts
- mmc: cqhci: clear HALT state after CQE enable
- mmc: dw_mmc: exynos: fix the finding clock sample value
- mmc: sdhci: Map more voltage level to SDHCI_POWER_330
- mmc: sdhci-esdhc-imx: clear the buffe...