This bug was fixed in the package linux-oem - 4.13.0-1028.31 --------------- linux-oem (4.13.0-1028.31) xenial; urgency=medium [ Ubuntu: 4.13.0-43.48 ] * CVE-2018-3639 (powerpc) - SAUCE: rfi-flush: update H_CPU_* macro names to upstream - SAUCE: rfi-flush: update plpar_get_cpu_characteristics() signature to upstream - SAUCE: update pseries_setup_rfi_flush() capitalization to upstream - powerpc/pseries: Support firmware disable of RFI flush - powerpc/powernv: Support firmware disable of RFI flush - powerpc/64s: Allow control of RFI flush via debugfs - powerpc/rfi-flush: Move the logic to avoid a redo into the debugfs code - powerpc/rfi-flush: Always enable fallback flush on pseries - powerpc/rfi-flush: Differentiate enabled and patched flush types - powerpc/pseries: Add new H_GET_CPU_CHARACTERISTICS flags - powerpc: Add security feature flags for Spectre/Meltdown - powerpc/powernv: Set or clear security feature flags - powerpc/pseries: Set or clear security feature flags - powerpc/powernv: Use the security flags in pnv_setup_rfi_flush() - powerpc/pseries: Use the security flags in pseries_setup_rfi_flush() - powerpc/pseries: Fix clearing of security feature flags - powerpc: Move default security feature flags - powerpc/pseries: Restore default security feature flags on setup - powerpc/64s: Add support for a store forwarding barrier at kernel entry/exit * CVE-2018-3639 (x86) - SAUCE: Add X86_FEATURE_ARCH_CAPABILITIES - SAUCE: x86: Add alternative_msr_write - x86/nospec: Simplify alternative_msr_write() - x86/pti: Do not enable PTI on CPUs which are not vulnerable to Meltdown - x86/bugs: Concentrate bug detection into a separate function - x86/bugs: Concentrate bug reporting into a separate function - x86/msr: Add definitions for new speculation control MSRs - x86/bugs: Read SPEC_CTRL MSR during boot and re-use reserved bits - x86/bugs, KVM: Support the combination of guest and host IBRS - x86/bugs: Expose /sys/../spec_store_bypass - x86/cpufeatures: Add X86_FEATURE_RDS - x86/bugs: Provide boot parameters for the spec_store_bypass_disable mitigation - x86/bugs/intel: Set proper CPU features and setup RDS - x86/bugs: Whitelist allowed SPEC_CTRL MSR values - x86/bugs/AMD: Add support to disable RDS on Fam[15,16,17]h if requested - x86/KVM/VMX: Expose SPEC_CTRL Bit(2) to the guest - x86/speculation: Create spec-ctrl.h to avoid include hell - prctl: Add speculation control prctls - x86/process: Allow runtime control of Speculative Store Bypass - x86/speculation: Add prctl for Speculative Store Bypass mitigation - nospec: Allow getting/setting on non-current task - proc: Provide details on speculation flaw mitigations - seccomp: Enable speculation flaw mitigations - SAUCE: x86/bugs: Honour SPEC_CTRL default - x86/bugs: Make boot modes __ro_after_init - prctl: Add force disable speculation - seccomp: Use PR_SPEC_FORCE_DISABLE - seccomp: Add filter flag to opt-out of SSB mitigation - seccomp: Move speculation migitation control to arch code - x86/speculation: Make "seccomp" the default mode for Speculative Store Bypass - x86/bugs: Rename _RDS to _SSBD - proc: Use underscores for SSBD in 'status' - Documentation/spec_ctrl: Do some minor cleanups - x86/bugs: Fix __ssb_select_mitigation() return type - x86/bugs: Make cpu_show_common() static * LSM Stacking prctl values should be redefined as to not collide with upstream prctls (LP: #1769263) // CVE-2018-3639 - SAUCE: LSM stacking: adjust prctl values linux-oem (4.13.0-1027.30) xenial; urgency=medium * linux-oem: 4.13.0-1027.30 -proposed tracker (LP: #1769996) * set PINCFG_HEADSET_MIC to parse_flags for Dell precision 3630 (LP: #1766398) - ALSA: hda/realtek - set PINCFG_HEADSET_MIC to parse_flags * Change the location for one of two front mics on a lenovo thinkcentre machine (LP: #1766477) - ALSA: hda/realtek - adjust the location of one mic * Update btusb reset-resume quirk to decrease power usage (LP: #1766197) - SAUCE: Revert "usb: quirks: Add reset-resume quirk for Dell DW1820 QCA Rome Bluetooth" - Bluetooth: btusb: Use DMI matching for QCA reset_resume quirking - Bluetooth: btusb: Remove Yoga 920 from the btusb_needs_reset_resume_table - Bluetooth: btusb: Add Dell OptiPlex 3060 to btusb_needs_reset_resume_table * Update Aquantia driver to fix various issues (LP: #1759303) - SAUCE: Revert "net: aquantia: Reset nic statistics on interface up/down" - SAUCE: Revert "net: aquantia: Add queue restarts stats counter" - SAUCE: Revert "net: aquantia: Fixed transient link up/down/up notification" - SAUCE: Revert "net: aquantia: Limit number of MSIX irqs to the number of cpus" - SAUCE: Revert "net: aquantia: mmio unmap was not performed on driver removal" - SAUCE: Revert "net: aquantia: Enable coalescing management via ethtool interface" - SAUCE: Revert "net: aquantia: Reset nic statistics on interface up/down" - SAUCE: Revert "aquantia: Fix Tx queue hangups" - SAUCE: Revert "net: aquantia: Bad udp rate on default interrupt coalescing" - aquantia: Switch to use napi_gro_receive - aquantia: Setup max_mtu in ndev to enable jumbo frames - aquantia: Fix Tx queue hangups - aquantia: Fix transient invalid link down/up indications - atlantic: fix iommu errors - net: aquantia: Reset nic statistics on interface up/down - net: aquantia: Add queue restarts stats counter - net: aquantia: Fixed transient link up/down/up notification - net: aquantia: Limit number of MSIX irqs to the number of cpus - net: aquantia: mmio unmap was not performed on driver removal - net: aquantia: Enable coalescing management via ethtool interface - net: aquantia: Bad udp rate on default interrupt coalescing - net: aquantia: Fix actual speed capabilities reporting - net: aquantia: Fix hardware DMA stream overload on large MRRS - net: aquantia: Extend stat counters to 64bit values - net: aquantia: Fill ndev stat couters from hardware - net: aquantia: Fill in multicast counter in ndev stats from hardware - net: aquantia: Improve link state and statistics check interval callback - net: aquantia: Update hw counters on hw init - net: aquantia: Fix typo in ethtool statistics names - net: aquantia: Increment driver version - net: aquantia: Eliminate AQ_DIMOF, replace with ARRAY_SIZE - net: aquantia: Cleanup status flags accesses - net: aquantia: Cleanup hardware access modules - net: aquantia: Remove duplicate hardware descriptors declarations - net: aquantia: Add const qualifiers for hardware ops tables - net: aquantia: Simplify dependencies between pci modules - net: aquantia: Eliminate aq_nic structure abstraction - net: aquantia: Fix register definitions to linux style - net: aquantia: Prepend hw access functions declarations with prefix - net: aquantia: Fix internal stats calculation on rx - net: aquantia: Introduce new device ids and constants - net: aquantia: Introduce new AQC devices and capabilities - net: aquantia: Convert hw and caps structures to const static pointers - net: aquantia: Cleanup pci functions module - net: aquantia: Remove create/destroy from hw ops - net: aquantia: Change confusing no_ff_addr to more meaningful name - net: aquantia: Introduce firmware ops callbacks - net: aquantia: Introduce support for new firmware on AQC cards - net: aquantia: Introduce global AQC hardware reset sequence - net: aquantia: Report correct mediatype via ethtool - net: aquantia: bump driver version to match aquantia internal numbering - net: aquantia: Fix hardware reset when SPI may rarely hangup - net: aquantia: Fix a regression with reset on old firmware - net: aquantia: Change inefficient wait loop on fw data reads - net: aquantia: Add tx clean budget and valid budget handling logic - net: aquantia: Allow live mac address changes - net: aquantia: Implement pci shutdown callback - net: aquantia: driver version bump * Fix an issue that some PCI devices get incorrectly suspended (LP: #1764684) - SAUCE: PCI / PM: Always check PME wakeup capability for runtime wakeup support * Miscellaneous Ubuntu changes - Rebase to 4.13.0-42.47 [ Ubuntu: 4.13.0-42.47 ] * linux: 4.13.0-42.47 -proposed tracker (LP: #1769993) * arm64: fix CONFIG_DEBUG_WX address reporting (LP: #1765850) - arm64: fix CONFIG_DEBUG_WX address reporting * HiSilicon HNS NIC names are truncated in /proc/interrupts (LP: #1765977) - net: hns: Avoid action name truncation * CVE-2017-18208 - mm/madvise.c: fix madvise() infinite loop under special circumstances * CVE-2018-8822 - staging: ncpfs: memory corruption in ncp_read_kernel() * CVE-2017-18203 - dm: fix race between dm_get_from_kobject() and __dm_destroy() * CVE-2017-17449 - netlink: Add netns check on taps * CVE-2017-17975 - media: usbtv: prevent double free in error case * [8086:3e92] display becomes blank after S3 (LP: #1763271) - drm/i915/edp: Allow alternate fixed mode for eDP if available. - drm/i915/dp: rename intel_dp_is_edp to intel_dp_is_port_edp - drm/i915/dp: make is_edp non-static and rename to intel_dp_is_edp - drm/i915/edp: Do not do link training fallback or prune modes on EDP * sky2 gigabit ethernet driver sometimes stops working after lid-open resume from sleep (88E8055) (LP: #1758507) - sky2: Increase D3 delay to sky2 stops working after suspend * perf vendor events arm64: Enable JSON events for ThunderX2 B0 (LP: #1760712) - perf vendor events arm64: Enable JSON events for ThunderX2 B0 * No network with e1000e driver on 4.13.0-38-generic (LP: #1762693) - e1000e: Fix e1000_check_for_copper_link_ich8lan return value. * /dev/ipmi enumeration flaky on Cavium Sabre nodes (LP: #1762812) - i2c: xlp9xx: return ENXIO on slave address NACK - i2c: xlp9xx: Handle transactions with I2C_M_RECV_LEN properly - i2c: xlp9xx: Check for Bus state before every transfer - i2c: xlp9xx: Handle NACK on DATA properly * "ip a" command on a guest VM shows UNKNOWN status (LP: #1761534) - virtio-net: Fix operstate for virtio when no VIRTIO_NET_F_STATUS * fix regression in mm/hotplug, allows NVIDIA driver to work (LP: #1761104) - SAUCE: Fix revert "mm, memory_hotplug: do not associate hotadded memory to zones until online" * ibrs/ibpb fixes result in excessive kernel logging (LP: #1755627) - SAUCE: remove ibrs_dump sysctl interface [ Ubuntu: 4.13.0-41.46 ] * CVE-2018-8897 - x86/entry/64: Don't use IST entry for #BP stack * CVE-2018-1087 - kvm/x86: fix icebp instruction handling * CVE-2018-1000199 - perf/hwbp: Simplify the perf-hwbp code, fix documentation -- Stefan Bader