This bug was fixed in the package linux - 3.11.0-23.40
---------------
linux (3.11.0-23.40) saucy; urgency=low
[ Upstream Kernel Changes ]
* futex-prevent-requeue-pi-on-same-futex.patch futex: Forbid uaddr ==
uaddr2 in futex_requeue(..., requeue_pi=1)
- LP: #1326367
- CVE-2014-3153
* futex: Validate atomic acquisition in futex_lock_pi_atomic()
- LP: #1326367
- CVE-2014-3153
* futex: Always cleanup owner tid in unlock_pi
- LP: #1326367
- CVE-2014-3153
* futex: Make lookup_pi_state more robust
- LP: #1326367
- CVE-2014-3153
-- Brad Figg <brad.f...@canonical.com> Wed, 04 Jun 2014 09:12:14 -0700
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1319933
Title:
Saucy update to v3.11.10.10 stable release
Status in “linux” package in Ubuntu:
Fix Committed
Status in “linux” source package in Saucy:
Fix Released
Bug description:
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from Linus' tree or in a minimally
backported form of that patch. The v3.11.10.10 upstream stable
patch set is now available. It should be included in the Ubuntu
kernel as well.
git://git.kernel.org/
TEST CASE: TBD
The following patches are in the v3.11.10.10 stable release:
Linux 3.11.10.10
KVM: s390: Optimize ucontrol path
iser-target: Add missing se_cmd put for WRITE_PENDING in tx_comp_err
ARC: !PREEMPT: Ensure Return to kernel mode is IRQ safe
ARC: Entry Handler tweaks: Optimize away redundant IRQ_DISABLE_SAVE
timer: Prevent overflow in apply_slack
hrtimer: Prevent remote enqueue of leftmost timers
hrtimer: Prevent all reprogramming if hang detected
drivercore: deferral race condition fix
[SCSI] virtio-scsi: Skip setting affinity on uninitialized vq
[SCSI] mpt2sas: Don't disable device twice at suspend.
ftrace/module: Hardcode ftrace_module_init() call into load_module()
KVM: ARM: vgic: Fix sgi dispatch problem
arm: KVM: fix possible misalignment of PGDs and bounce page
s390/bpf,jit: initialize A register if 1st insn is BPF_S_LDX_B_MSH
drm/vmwgfx: Make sure user-space can't DMA across buffer object boundaries v2
drm/i915: Don't check gmch state on inherited configs
s390/chsc: fix SEI usage on old FW levels
ARM: 7840/1: LPAE: don't reject mapping /dev/mem above 4GB
[SCSI] arcmsr: upper 32 of dma address lost
[SCSI] qla2xxx: fix error handling of qla2x00_mem_alloc()
xhci: extend quirk for Renesas cards
ARM: OMAP4: Fix definition of IS_PM44XX_ERRATUM
ARM: OMAP3: hwmod data: Correct clock domains for USB modules
ARM: mvebu: ensure the mdio node has a clock reference on Armada 370/XP
ARM: 8007/1: Remove extraneous kcmp syscall ignore
Bluetooth: Add support for Intel Bluetooth device [8087:0a2a]
ftrace/x86: One more missing sync after fixup of function modification failure
i2c: i801: enable Intel BayTrail SMBUS
i2c: i801: Add Device IDs for Intel Wildcat Point-LP PCH
crypto: crypto_wq - Fix late crypto work queue initialization
usb: option: add and update a number of CMOTech devices
usb: option: add Alcatel L800MA
usb: option: add Olivetti Olicard 500
usb: qcserial: add Sierra Wireless MC7305/MC7355
usb: qcserial: add Sierra Wireless MC73xx
usb: qcserial: add Sierra Wireless EM7355
USB: io_ti: fix firmware download on big-endian machines
usb/xhci: fix compilation warning when !CONFIG_PCI && !CONFIG_PM
xhci: Switch Intel Lynx Point ports to EHCI on shutdown.
usb: xhci: Prefer endpoint context dequeue pointer over stopped_trb
Btrfs: fix inode caching vs tree log
serial: 8250: Fix thread unsafe __dma_tx_complete function
8250_core: Fix unwanted TX chars write
USB: serial: fix sysfs-attribute removal deadlock
ARM: 8030/1: ARM : kdump : add arch_crash_save_vmcoreinfo
ARM: 8027/1: fix do_div() bug in big-endian systems
mm: make fixup_user_fault() check the vma access rights too
drm/radeon: fix ATPX detection on non-VGA GPUs
drm/radeon/pm: don't walk the crtc list before it has been initialized (v2)
drm/radeon: fix count in cik_sdma_ring_test()
Input: synaptics - add min/max quirk for ThinkPad T431s, L440, L540, S1 Yoga
and X1
libata/ahci: accommodate tag ordered controllers
ahci: Do not receive interrupts sent by dummy ports
nfsd: set timeparms.to_maxval in setup_callback_client
clocksource: Exynos_mct: Register clock event after request_irq()
irqchip: Gic: Support forced affinity setting
genirq: Allow forcing cpu affinity of interrupts
ahci: do not request irq for dummy port
usb: gadget: zero: Fix SuperSpeed enumeration for alternate setting 1
locks: allow __break_lease to sleep even when break_time is 0
ext4: use i_size_read in ext4_unaligned_aio()
ext4: fix jbd2 warning under heavy xattr load
ext4: note the error in ext4_end_bio()
pata_at91: fix ata_host_activate() failure handling
iio: querying buffer scan_mask should return 0/1
KVM: ioapic: fix assignment of ioapic->rtc_status.pending_eoi (CVE-2014-0155)
core, nfqueue, openvswitch: Orphan frags in skb_zerocopy and handle errors
The following patches from 3.11.10.10 had already been applied to the saucy
due to CVE fixes:
n_tty: Fix n_tty_write crash when echoing in raw mode
floppy: don't write kernel-only members to FDRAWCMD ioctl output
floppy: ignore kernel-only members in FDRAWCMD ioctl input
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1319933/+subscriptions
--
Mailing list: https://launchpad.net/~kernel-packages
Post to : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help : https://help.launchpad.net/ListHelp
