Artful update to v4.12.3 stable release
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Artful |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The v4.12.3 upstream stable
patch set is now available. It should be included in the Ubuntu
kernel as well.
TEST CASE: TBD
The following patches from the v4.12.3 stable release shall be applied:
staging: android: uapi: drop definitions of removed ION_IOC_
net/mlx5: Fix driver load error flow when firmware is stuck
net/mlx5: Cancel delayed recovery work when unloading the driver
net/mlx5e: Fix TX carrier errors report in get stats ndo
ipv6: dad: don't remove dynamic addresses if link is down
vxlan: fix hlist corruption
geneve: fix hlist corruption
net: core: Fix slab-out-of-bounds in netdev_
liquidio: fix bug in soft reset failure detection
net: ipv6: Compare lwstate in detecting duplicate nexthops
vrf: fix bug_on triggered by rx when destroying a vrf
virtio-net: fix leaking of ctx array
rds: tcp: use sock_create_lite() to create the accept socket
net/mlx5e: Initialize CEE's getpermhwaddr address buffer to 0xff
cxgb4: fix BUG() on interrupt deallocating path of ULD
tap: convert a mutex to a spinlock
bridge: mdb: fix leak on complete_info ptr on fail path
brcmfmac: fix possible buffer overflow in brcmf_cfg80211_
sfc: don't read beyond unicast address list
Adding asm-prototypes.h for genksyms to generate crc
sed regex in Makefile.build requires line break between exported symbols
Adding the type of exported symbols
sparc64: Fix gup_huge_pmd
brcmfmac: Fix a memory leak in error handling path in 'brcmf_
brcmfmac: Fix glom_skb leak in brcmf_sdiod_
efi: Process the MEMATTR table only if EFI_MEMMAP is enabled
cfg80211: Define nla_policy for NL80211_
cfg80211: Validate frequencies nested in NL80211_
cfg80211: Check if PMKID attribute is of expected size
cfg80211: Check if NAN service ID is of expected size
drm/amdgpu/gfx6: properly cache mc_arb_ramcfg
KVM: ARM64: fix phy counter access failure in guest.
KVM: PPC: Book3S: Fix typo in XICS-on-XIVE state saving code
kvm-vfio: Decouple only when we match a group
irqchip/gic-v3: Fix out-of-bound access in gic_set_affinity
parisc: Report SIGSEGV instead of SIGBUS when running out of stack
parisc: use compat_sys_keyctl()
parisc: DMA API: return error instead of BUG_ON for dma ops on non dma devs
parisc/mm: Ensure IRQs are off in switch_mm()
tools/lib/lockdep: Reduce MAX_LOCK_DEPTH to avoid overflowing lock_chain/: Depth
compiler, clang: always inline when CONFIG_
thp, mm: fix crash due race in MADV_FREE handling
kernel/extable.c: mark core_kernel_text notrace
mm/list_lru.c: fix list_lru_
fs/dcache.c: fix spin lockup issue on nlru->lock
checkpatch: silence perl 5.26.0 unescaped left brace warnings
binfmt_elf: use ELF_ET_DYN_BASE only for PIE
arm: move ELF_ET_DYN_BASE to 4MB
arm64: move ELF_ET_DYN_BASE to 4GB / 4MB
powerpc: move ELF_ET_DYN_BASE to 4GB / 4MB
s390: reduce ELF_ET_DYN_BASE
exec: Limit arg stack to at most 75% of _STK_LIM
powerpc/kexec: Fix radix to hash kexec due to IAMR/AMOR
ARM64: dts: marvell: armada37xx: Fix timer interrupt specifiers
arm64: Preventing READ_IMPLIES_EXEC propagation
vt: fix unchecked __put_user() in tioclinux ioctls
rcu: Add memory barriers for NOCB leader wakeup
nvmem: core: fix leaks on registration errors
Drivers: hv: vmbus: Close timing hole that can corrupt per-cpu page
mnt: In umount propagation reparent in a separate pass
mnt: In propgate_umount handle visiting mounts in any order
mnt: Make propagate_umount less slow for overlapping mount propagation trees
selftests/
mm: fix overflow check in expand_upwards()
crypto: talitos - Extend max key length for SHA384/512-HMAC and AEAD
crypto: atmel - only treat EBUSY as transient if backlog
crypto: sha1-ssse3 - Disable avx2
crypto: caam - properly set IV after {en,de}crypt
crypto: caam - fix signals handling
KEYS: DH: validate __spare field
sched/headers/uapi: Fix linux/sched/types.h userspace compilation errors
sched/topology: Fix building of overlapping sched-groups
sched/topology: Optimize build_group_mask()
sched/topology: Fix overlapping sched_group_mask
PM / wakeirq: Convert to SRCU
pstore: Fix leaked pstore_record in pstore_
ALSA: x86: Clear the pdata.notify_
ALSA: hda/realtek - change the location for one of two front microphones
PM / QoS: return -EINVAL for bogus strings
kvm: vmx: Do not disable intercepts for BNDCFGS
kvm: x86: Guest BNDCFGS requires guest MPX support
kvm: vmx: Check value written to IA32_BNDCFGS
kvm: vmx: allow host to access guest MSR_IA32_BNDCFGS
Linux 4.12.3
CVE References
tags: | added: kernel-stable-tracking-bug |
description: | updated |
Changed in linux (Ubuntu Artful): | |
status: | New → Fix Committed |
This bug was fixed in the package linux - 4.12.0-11.12
---------------
linux (4.12.0-11.12) artful; urgency=low
* linux: 4.12.0-11.12 -proposed tracker (LP: #1709929)
* CVE-2017-1000111
- packet: fix tp_reserve race in packet_set_ring
* CVE-2017-1000112
- udp: consistently apply ufo or fragmentation
* Please only recommend or suggest initramfs-tools | linux-initramfs -tool for
kernels able to boot without initramfs (LP: #1700972)
- Revert "UBUNTU: [Debian] Don't depend on initramfs-tools"
- [Debian] Don't depend on initramfs-tools
* Miscellaneous Ubuntu changes
- SAUCE: (noup) Update spl to 0.6.5.11-ubuntu1, zfs to 0.6.5.11-1ubuntu3
- SAUCE: powerpc: Always initialize input array when calling epapr_hypercall()
* Miscellaneous upstream changes
- selftests: typo correction for memory-hotplug test
- selftests: check hot-pluggagble memory for memory-hotplug test
- selftests: check percentage range for memory-hotplug test
- selftests: add missing test name in memory-hotplug test
- selftests: fix memory-hotplug test
-- Seth Forshee <email address hidden> Thu, 10 Aug 2017 13:37:00 -0500