2018-04-25 04:44:25 |
Po-Hsu Lin |
bug |
|
|
added bug |
2018-04-25 04:44:34 |
Po-Hsu Lin |
nominated for series |
|
Ubuntu Bionic |
|
2018-04-25 04:44:46 |
Po-Hsu Lin |
bug task added |
|
qa-regression-testing |
|
2018-06-01 12:09:43 |
Po-Hsu Lin |
bug task added |
|
ubuntu-kernel-tests |
|
2018-06-12 09:32:20 |
Po-Hsu Lin |
linux-kvm (Ubuntu): assignee |
|
Po-Hsu Lin (cypressyew) |
|
2018-06-12 09:32:24 |
Po-Hsu Lin |
ubuntu-kernel-tests: assignee |
|
Po-Hsu Lin (cypressyew) |
|
2018-06-12 09:32:26 |
Po-Hsu Lin |
bug task deleted |
qa-regression-testing |
|
|
2018-06-12 09:32:31 |
Po-Hsu Lin |
ubuntu-kernel-tests: status |
New |
In Progress |
|
2018-06-12 09:32:34 |
Po-Hsu Lin |
linux-kvm (Ubuntu): status |
New |
In Progress |
|
2018-06-12 10:36:26 |
Po-Hsu Lin |
description |
test_250_config_security_perf_events_restrict from the kernel security test suite failed with 4.15.0-1008 KVM kernel.
FAIL: test_250_config_security_perf_events_restrict (__main__.KernelSecurityTest)
Ensure CONFIG_SECURITY_PERF_EVENTS_RESTRICT is set
----------------------------------------------------------------------
Traceback (most recent call last):
File "./test-kernel-security.py", line 2313, in test_250_config_security_perf_events_restrict
self.assertEqual(expected, self._test_config(config_name))
AssertionError: True != False
The CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set.
$ cat /boot/config-4.15.0-1008-kvm | grep CONFIG_SECURITY_PERF_EVENTS_RESTRICT
# CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: linux-image-4.15.0-1008-kvm 4.15.0-1008.8
ProcVersionSignature: User Name 4.15.0-1008.8-kvm 4.15.17
Uname: Linux 4.15.0-1008-kvm x86_64
NonfreeKernelModules: signpost
ApportVersion: 2.20.9-0ubuntu7
Architecture: amd64
Date: Wed Apr 25 04:41:49 2018
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=C.UTF-8
SHELL=/bin/bash
SourcePackage: linux-kvm
UpgradeStatus: No upgrade log present (probably fresh install) |
== Justification ==
In the Bionic KVM kernel, the CONFIG_FORTIFY_SOURCE and
CONFIG_SECURITY_PERF_EVENTS_RESTRICT were not set, they need to be enabled to
meet the security team's requirement.
== Test ==
Before enabling the config, test case test_190_config_kernel_fortify and
test_250_config_security_perf_events_restrict will fail in the kernel
security testsuite for the kernel SRU regression test.
It will pass with these two patches applied, tested on a KVM node.
== Fix ==
Set CONFIG_SECURITY_PERF_EVENTS_RESTRICT to "y".
Set CONFIG_FORTIFY_SOURCE to "y".
== Regression Potential ==
Minimal.
No code changes, just two config change without disabling any other configs.
test_250_config_security_perf_events_restrict from the kernel security test suite failed with 4.15.0-1008 KVM kernel.
FAIL: test_250_config_security_perf_events_restrict (__main__.KernelSecurityTest)
Ensure CONFIG_SECURITY_PERF_EVENTS_RESTRICT is set
----------------------------------------------------------------------
Traceback (most recent call last):
File "./test-kernel-security.py", line 2313, in test_250_config_security_perf_events_restrict
self.assertEqual(expected, self._test_config(config_name))
AssertionError: True != False
The CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set.
$ cat /boot/config-4.15.0-1008-kvm | grep CONFIG_SECURITY_PERF_EVENTS_RESTRICT
# CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: linux-image-4.15.0-1008-kvm 4.15.0-1008.8
ProcVersionSignature: User Name 4.15.0-1008.8-kvm 4.15.17
Uname: Linux 4.15.0-1008-kvm x86_64
NonfreeKernelModules: signpost
ApportVersion: 2.20.9-0ubuntu7
Architecture: amd64
Date: Wed Apr 25 04:41:49 2018
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=C.UTF-8
SHELL=/bin/bash
SourcePackage: linux-kvm
UpgradeStatus: No upgrade log present (probably fresh install) |
|
2018-06-12 10:36:51 |
Po-Hsu Lin |
description |
== Justification ==
In the Bionic KVM kernel, the CONFIG_FORTIFY_SOURCE and
CONFIG_SECURITY_PERF_EVENTS_RESTRICT were not set, they need to be enabled to
meet the security team's requirement.
== Test ==
Before enabling the config, test case test_190_config_kernel_fortify and
test_250_config_security_perf_events_restrict will fail in the kernel
security testsuite for the kernel SRU regression test.
It will pass with these two patches applied, tested on a KVM node.
== Fix ==
Set CONFIG_SECURITY_PERF_EVENTS_RESTRICT to "y".
Set CONFIG_FORTIFY_SOURCE to "y".
== Regression Potential ==
Minimal.
No code changes, just two config change without disabling any other configs.
test_250_config_security_perf_events_restrict from the kernel security test suite failed with 4.15.0-1008 KVM kernel.
FAIL: test_250_config_security_perf_events_restrict (__main__.KernelSecurityTest)
Ensure CONFIG_SECURITY_PERF_EVENTS_RESTRICT is set
----------------------------------------------------------------------
Traceback (most recent call last):
File "./test-kernel-security.py", line 2313, in test_250_config_security_perf_events_restrict
self.assertEqual(expected, self._test_config(config_name))
AssertionError: True != False
The CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set.
$ cat /boot/config-4.15.0-1008-kvm | grep CONFIG_SECURITY_PERF_EVENTS_RESTRICT
# CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: linux-image-4.15.0-1008-kvm 4.15.0-1008.8
ProcVersionSignature: User Name 4.15.0-1008.8-kvm 4.15.17
Uname: Linux 4.15.0-1008-kvm x86_64
NonfreeKernelModules: signpost
ApportVersion: 2.20.9-0ubuntu7
Architecture: amd64
Date: Wed Apr 25 04:41:49 2018
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=C.UTF-8
SHELL=/bin/bash
SourcePackage: linux-kvm
UpgradeStatus: No upgrade log present (probably fresh install) |
== Justification ==
In the Bionic KVM kernel, the CONFIG_FORTIFY_SOURCE and
CONFIG_SECURITY_PERF_EVENTS_RESTRICT were not set, they need to be enabled to
meet the security team's requirement.
== Test ==
Before enabling the config, test case test_190_config_kernel_fortify and
test_250_config_security_perf_events_restrict will fail in the kernel
security testsuite for the kernel SRU regression test.
It will pass with these two patches applied, tested on a KVM node.
== Fix ==
Set CONFIG_SECURITY_PERF_EVENTS_RESTRICT to "y".
Set CONFIG_FORTIFY_SOURCE to "y".
== Regression Potential ==
Minimal.
No code changes, just two config change without disabling any other configs.
--------------------------------------------------
test_250_config_security_perf_events_restrict from the kernel security test suite failed with 4.15.0-1008 KVM kernel.
FAIL: test_250_config_security_perf_events_restrict (__main__.KernelSecurityTest)
Ensure CONFIG_SECURITY_PERF_EVENTS_RESTRICT is set
----------------------------------------------------------------------
Traceback (most recent call last):
File "./test-kernel-security.py", line 2313, in test_250_config_security_perf_events_restrict
self.assertEqual(expected, self._test_config(config_name))
AssertionError: True != False
The CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set.
$ cat /boot/config-4.15.0-1008-kvm | grep CONFIG_SECURITY_PERF_EVENTS_RESTRICT
# CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: linux-image-4.15.0-1008-kvm 4.15.0-1008.8
ProcVersionSignature: User Name 4.15.0-1008.8-kvm 4.15.17
Uname: Linux 4.15.0-1008-kvm x86_64
NonfreeKernelModules: signpost
ApportVersion: 2.20.9-0ubuntu7
Architecture: amd64
Date: Wed Apr 25 04:41:49 2018
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=C.UTF-8
SHELL=/bin/bash
SourcePackage: linux-kvm
UpgradeStatus: No upgrade log present (probably fresh install) |
|
2018-06-12 10:37:36 |
Po-Hsu Lin |
description |
== Justification ==
In the Bionic KVM kernel, the CONFIG_FORTIFY_SOURCE and
CONFIG_SECURITY_PERF_EVENTS_RESTRICT were not set, they need to be enabled to
meet the security team's requirement.
== Test ==
Before enabling the config, test case test_190_config_kernel_fortify and
test_250_config_security_perf_events_restrict will fail in the kernel
security testsuite for the kernel SRU regression test.
It will pass with these two patches applied, tested on a KVM node.
== Fix ==
Set CONFIG_SECURITY_PERF_EVENTS_RESTRICT to "y".
Set CONFIG_FORTIFY_SOURCE to "y".
== Regression Potential ==
Minimal.
No code changes, just two config change without disabling any other configs.
--------------------------------------------------
test_250_config_security_perf_events_restrict from the kernel security test suite failed with 4.15.0-1008 KVM kernel.
FAIL: test_250_config_security_perf_events_restrict (__main__.KernelSecurityTest)
Ensure CONFIG_SECURITY_PERF_EVENTS_RESTRICT is set
----------------------------------------------------------------------
Traceback (most recent call last):
File "./test-kernel-security.py", line 2313, in test_250_config_security_perf_events_restrict
self.assertEqual(expected, self._test_config(config_name))
AssertionError: True != False
The CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set.
$ cat /boot/config-4.15.0-1008-kvm | grep CONFIG_SECURITY_PERF_EVENTS_RESTRICT
# CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: linux-image-4.15.0-1008-kvm 4.15.0-1008.8
ProcVersionSignature: User Name 4.15.0-1008.8-kvm 4.15.17
Uname: Linux 4.15.0-1008-kvm x86_64
NonfreeKernelModules: signpost
ApportVersion: 2.20.9-0ubuntu7
Architecture: amd64
Date: Wed Apr 25 04:41:49 2018
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=C.UTF-8
SHELL=/bin/bash
SourcePackage: linux-kvm
UpgradeStatus: No upgrade log present (probably fresh install) |
== Justification ==
In the Bionic KVM kernel, the CONFIG_FORTIFY_SOURCE and
CONFIG_SECURITY_PERF_EVENTS_RESTRICT were not set, they need to be enabled to
meet the security team's requirement.
== Test ==
Before enabling the config, test case test_190_config_kernel_fortify and
test_250_config_security_perf_events_restrict will fail in the kernel
security testsuite for the kernel SRU regression test.
It will pass with these two patches applied, tested on a KVM node.
== Fix ==
Set CONFIG_SECURITY_PERF_EVENTS_RESTRICT to "y".
Set CONFIG_FORTIFY_SOURCE to "y".
== Regression Potential ==
Minimal.
No code changes, just two config change without disabling any other configs.
BugLink: https://bugs.launchpad.net/bugs/1766780
BugLink: https://bugs.launchpad.net/bugs/1766774
--------------------------------------------------
test_250_config_security_perf_events_restrict from the kernel security test suite failed with 4.15.0-1008 KVM kernel.
FAIL: test_250_config_security_perf_events_restrict (__main__.KernelSecurityTest)
Ensure CONFIG_SECURITY_PERF_EVENTS_RESTRICT is set
----------------------------------------------------------------------
Traceback (most recent call last):
File "./test-kernel-security.py", line 2313, in test_250_config_security_perf_events_restrict
self.assertEqual(expected, self._test_config(config_name))
AssertionError: True != False
The CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set.
$ cat /boot/config-4.15.0-1008-kvm | grep CONFIG_SECURITY_PERF_EVENTS_RESTRICT
# CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: linux-image-4.15.0-1008-kvm 4.15.0-1008.8
ProcVersionSignature: User Name 4.15.0-1008.8-kvm 4.15.17
Uname: Linux 4.15.0-1008-kvm x86_64
NonfreeKernelModules: signpost
ApportVersion: 2.20.9-0ubuntu7
Architecture: amd64
Date: Wed Apr 25 04:41:49 2018
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=C.UTF-8
SHELL=/bin/bash
SourcePackage: linux-kvm
UpgradeStatus: No upgrade log present (probably fresh install) |
|
2018-06-12 10:51:07 |
Po-Hsu Lin |
description |
== Justification ==
In the Bionic KVM kernel, the CONFIG_FORTIFY_SOURCE and
CONFIG_SECURITY_PERF_EVENTS_RESTRICT were not set, they need to be enabled to
meet the security team's requirement.
== Test ==
Before enabling the config, test case test_190_config_kernel_fortify and
test_250_config_security_perf_events_restrict will fail in the kernel
security testsuite for the kernel SRU regression test.
It will pass with these two patches applied, tested on a KVM node.
== Fix ==
Set CONFIG_SECURITY_PERF_EVENTS_RESTRICT to "y".
Set CONFIG_FORTIFY_SOURCE to "y".
== Regression Potential ==
Minimal.
No code changes, just two config change without disabling any other configs.
BugLink: https://bugs.launchpad.net/bugs/1766780
BugLink: https://bugs.launchpad.net/bugs/1766774
--------------------------------------------------
test_250_config_security_perf_events_restrict from the kernel security test suite failed with 4.15.0-1008 KVM kernel.
FAIL: test_250_config_security_perf_events_restrict (__main__.KernelSecurityTest)
Ensure CONFIG_SECURITY_PERF_EVENTS_RESTRICT is set
----------------------------------------------------------------------
Traceback (most recent call last):
File "./test-kernel-security.py", line 2313, in test_250_config_security_perf_events_restrict
self.assertEqual(expected, self._test_config(config_name))
AssertionError: True != False
The CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set.
$ cat /boot/config-4.15.0-1008-kvm | grep CONFIG_SECURITY_PERF_EVENTS_RESTRICT
# CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: linux-image-4.15.0-1008-kvm 4.15.0-1008.8
ProcVersionSignature: User Name 4.15.0-1008.8-kvm 4.15.17
Uname: Linux 4.15.0-1008-kvm x86_64
NonfreeKernelModules: signpost
ApportVersion: 2.20.9-0ubuntu7
Architecture: amd64
Date: Wed Apr 25 04:41:49 2018
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=C.UTF-8
SHELL=/bin/bash
SourcePackage: linux-kvm
UpgradeStatus: No upgrade log present (probably fresh install) |
== Justification ==
In the Bionic KVM kernel, the CONFIG_FORTIFY_SOURCE and
CONFIG_SECURITY_PERF_EVENTS_RESTRICT were not set, they need to be enabled to
meet the security team's requirement.
== Test ==
Before enabling the config, test case test_190_config_kernel_fortify and
test_250_config_security_perf_events_restrict will fail in the kernel
security testsuite for the kernel SRU regression test.
It will pass with these two patches applied, tested on a KVM node.
== Fix ==
Set CONFIG_SECURITY_PERF_EVENTS_RESTRICT to "y".
Set CONFIG_FORTIFY_SOURCE to "y".
== Regression Potential ==
Minimal.
No code changes, just two config changes without disabling any other configs.
BugLink: https://bugs.launchpad.net/bugs/1766780
BugLink: https://bugs.launchpad.net/bugs/1766774
--------------------------------------------------
test_250_config_security_perf_events_restrict from the kernel security test suite failed with 4.15.0-1008 KVM kernel.
FAIL: test_250_config_security_perf_events_restrict (__main__.KernelSecurityTest)
Ensure CONFIG_SECURITY_PERF_EVENTS_RESTRICT is set
----------------------------------------------------------------------
Traceback (most recent call last):
File "./test-kernel-security.py", line 2313, in test_250_config_security_perf_events_restrict
self.assertEqual(expected, self._test_config(config_name))
AssertionError: True != False
The CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set.
$ cat /boot/config-4.15.0-1008-kvm | grep CONFIG_SECURITY_PERF_EVENTS_RESTRICT
# CONFIG_SECURITY_PERF_EVENTS_RESTRICT is not set
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: linux-image-4.15.0-1008-kvm 4.15.0-1008.8
ProcVersionSignature: User Name 4.15.0-1008.8-kvm 4.15.17
Uname: Linux 4.15.0-1008-kvm x86_64
NonfreeKernelModules: signpost
ApportVersion: 2.20.9-0ubuntu7
Architecture: amd64
Date: Wed Apr 25 04:41:49 2018
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=C.UTF-8
SHELL=/bin/bash
SourcePackage: linux-kvm
UpgradeStatus: No upgrade log present (probably fresh install) |
|
2018-06-22 03:04:00 |
Khaled El Mously |
linux-kvm (Ubuntu): status |
In Progress |
Fix Committed |
|
2018-06-22 04:56:20 |
Po-Hsu Lin |
ubuntu-kernel-tests: status |
In Progress |
Fix Committed |
|
2018-06-22 08:00:46 |
Kleber Sacilotto de Souza |
bug task added |
|
linux-kvm (Ubuntu Bionic) |
|
2018-07-02 10:07:30 |
Kleber Sacilotto de Souza |
linux-kvm (Ubuntu Bionic): status |
New |
Fix Committed |
|
2018-07-20 07:34:12 |
Po-Hsu Lin |
ubuntu-kernel-tests: status |
Fix Committed |
Fix Released |
|
2018-07-20 15:44:31 |
Launchpad Janitor |
linux-kvm (Ubuntu Bionic): status |
Fix Committed |
Fix Released |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
linux-kvm (Ubuntu): status |
Fix Committed |
Fix Released |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-10323 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-10840 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-10881 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-1108 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-11412 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-11506 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-12232 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-12233 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-12904 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-13094 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-13405 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-13406 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-3620 |
|
2018-09-10 11:06:04 |
Launchpad Janitor |
cve linked |
|
2018-3646 |
|