Public bug reported:
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The v4.4.19 upstream stable
patch set is now available. It should be included in the Ubuntu
kernel as well.
git://git.kernel.org/
TEST CASE: TBD
The following patches from the v4.4.19 stable release shall be
applied:
usb: gadget: avoid exposing kernel stack
usb: f_fs: off by one bug in _ffs_func_bind()
usb: renesas_usbhs: protect the CFIFOSEL setting in usbhsg_ep_enable()
usb: dwc3: fix for the isoc transfer EP_BUSY flag
USB: serial: option: add support for Telit LE910 PID 0x1206
usb: renesas_usbhs: fix NULL pointer dereference in xfer_work()
arm64: kernel: Save and restore UAO and addr_limit on exception entry
arm64: debug: unmask PSTATE.D earlier
arm64: Fix incorrect per-cpu usage for boot CPU
tty: serial: msm: Don't read off end of tx fifo
serial: samsung: Fix ERR pointer dereference on deferred probe
tty/serial: atmel: fix RS485 half duplex with DMA
gpio: pca953x: Fix NBANK calculation for PCA9536
gpio: intel-mid: Remove potentially harmful code
Bluetooth: hci_intel: Fix null gpio desc pointer dereference
pinctrl: cherryview: prevent concurrent access to GPIO controllers
arm64: dts: rockchip: fixes the gic400 2nd region size for rk3368
arm64: mm: avoid fdt_check_header() before the FDT is fully mapped
KVM: PPC: Book3S HV: Pull out TM state save/restore into separate procedures
KVM: PPC: Book3S HV: Save/restore TM state in H_CEDE
KVM: MTRR: fix kvm_mtrr_check_gfn_range_consistency page fault
KVM: VMX: handle PML full VMEXIT that occurs during event delivery
KVM: nVMX: Fix memory corruption when using VMCS shadowing
intel_pstate: Fix MSR_CONFIG_TDP_x addressing in core_get_max_pstate()
mfd: qcom_rpm: Fix offset error for msm8660
mfd: qcom_rpm: Parametrize also ack selector size
media: usbtv: prevent access to free'd resources
media: dvb_ringbuffer: Add memory barriers
vb2: core: Skip planes array verification if pb is NULL
Fix RC5 decoding with Fintek CIR chipset
sur40: lower poll interval to fix occasional FPS drops to ~56 FPS
sur40: fix occasional oopses on device close
dm: set DMF_SUSPENDED* _before_ clearing DMF_NOFLUSH_SUSPENDING
hp-wmi: Fix wifi cannot be hard-unblocked
s5p-mfc: Set device name for reserved memory region devs
s5p-mfc: Add release callback for memory region devs
i2c: efm32: fix a failure path in efm32_i2c_probe()
spi: pxa2xx: Clear all RFT bits in reset_sccr1() on Intel Quark
Bluetooth: Fix l2cap_sock_setsockopt() with optname BT_RCVMTU
EDAC: Correct channel count limit
HID: uhid: fix timeout when probe races with IO
ovl: disallow overlayfs as upperdir
remoteproc: Fix potential race condition in rproc_add
ARC: mm: don't loose PTE_SPECIAL in pte_modify()
jbd2: make journal y2038 safe
fs/cifs: make share unaccessible at root level mountable
cifs: Check for existing directory when opening file with O_CREAT
cifs: fix crash due to race in hmac(md5) handling
CIFS: Fix a possible invalid memory access in smb2_query_symlink()
random: initialize the non-blocking pool via add_hwgenerator_randomness()
random: print a warning for the first ten uninitialized random users
random: add interrupt callback to VMBus IRQ handler
MIPS: KVM: Fix mapped fault broken commpage handling
MIPS: KVM: Add missing gfn range check
MIPS: KVM: Fix gfn range check in kseg0 tlb faults
MIPS: KVM: Propagate kseg0/mapped tlb fault errors
nfs: don't create zero-length requests
nfsd: Fix race between FREE_STATEID and LOCK
nfsd: don't return an unhashed lock stateid after taking mutex
drm/i915: Don't complain about lack of ACPI video bios
iommu/exynos: Suppress unbinding to prevent system failure
iommu/vt-d: Return error code in domain_context_mapping_one()
iommu/amd: Handle IOMMU_DOMAIN_DMA in ops->domain_free call-back
iommu/amd: Init unity mappings only for dma_ops domains
iommu/amd: Update Alias-DTE in update_device_table()
audit: fix a double fetch in audit_log_single_execve_arg()
ARM: dts: sunxi: Add a startup delay for fixed regulator enabled phys
netlabel: add address family checks to netlbl_{sock,req}_delattr()
w1:omap_hdq: fix regression
drm/amdgpu: add a delay after ATPX dGPU power off
drm/amdgpu: Poll for both connect/disconnect on analog connectors
drm/amdgpu: support backlight control for UNIPHY3
drm/amdgpu: Disable RPM helpers while reprobing connectors on resume
drm/amdgpu: fix firmware info version checks
drm/amdgpu/gmc7: add missing mullins case
drm/radeon: add a delay after ATPX dGPU power off
drm/radeon: Poll for both connect/disconnect on analog connectors
drm/radeon: fix firmware info version checks
drm/radeon: support backlight control for UNIPHY3
drm/nouveau/gr/nv3x: fix instobj write offsets in gr setup
drm/nouveau/fbcon: fix font width not divisible by 8
drm: Restore double clflush on the last partial cacheline
drm/edid: Add 6 bpc quirk for display AEO model 0.
drm/i915: Never fully mask the the EI up rps interrupt on SNB/IVB
drm/i915/dp: Revert "drm/i915/dp: fall back to 18 bpp when sink capability is
unknown"
balloon: check the number of available pages in leak balloon
ftrace/recordmcount: Work around for addition of metag magic but not relocations
metag: Fix __cmpxchg_u32 asm constraint for CMP
block: add missing group association in bio-cloning functions
block: fix bdi vs gendisk lifetime mismatch
mtd: nand: fix bug writing 1 byte less than page size
mm/hugetlb: avoid soft lockup in set_max_huge_pages()
ALSA: hda: Fix krealloc() with __GFP_ZERO usage
ALSA: hda/realtek - Can't adjust speaker's volume on a Dell AIO
ALSA: hda: add AMD Bonaire AZ PCI ID with proper driver caps
ALSA: hda - Fix headset mic detection problem for two dell machines
IB/mlx5: Fix MODIFY_QP command input structure
IB/mlx5: Fix entries checks in mlx5_ib_create_cq
IB/mlx5: Fix returned values of query QP
IB/mlx5: Fix entries check in mlx5_ib_resize_cq
IB/mlx5: Fix post send fence logic
IB/mlx5: Return PORT_ERR in Active to Initializing tranisition
IB/SA: Use correct free function
IB/IPoIB: Don't update neigh validity for unresolved entries
IB/IWPM: Fix a potential skb leak
IB/mlx4: Fix the SQ size of an RC QP
IB/mlx4: Fix error flow when sending mads under SRIOV
IB/mlx4: Fix memory leak if QP creation failed
of: fix memory leak related to safe_name()
ubi: Make volume resize power cut aware
ubi: Fix early logging
ubi: Fix race condition between ubi device creation and udev
iscsi-target: Fix panic when adding second TCP connection to iSCSI session
target: Fix ordered task target_setup_cmd_from_cdb exception hang
target: Fix missing complete during ABORT_TASK + CMD_T_FABRIC_STOP
target: Fix race between iscsi-target connection shutdown + ABORT_TASK
target: Fix max_unmap_lba_count calc overflow
target: Fix ordered task CHECK_CONDITION early exception handling
Input: elan_i2c - properly wake up touchpad on ASUS laptops
SUNRPC: Don't allocate a full sockaddr_storage for tracing
MIPS: mm: Fix definition of R6 cache instruction
MIPS: Don't register r4k sched clock when CPUFREQ enabled
MIPS: hpet: Increase HPET_MIN_PROG_DELTA and decrease HPET_MIN_CYCLES
PCI: Mark Atheros AR9485 and QCA9882 to avoid bus reset
x86/platform/intel_mid_pci: Rework IRQ0 workaround
ACPI / EC: Work around method reentrancy limit in ACPICA for _Qxx
rtc: s3c: Add s3c_rtc_{enable/disable}_clk in s3c_rtc_setfreq()
dm flakey: error READ bios during the down_interval
module: Invalidate signatures on force-loaded modules
Documentation/module-signing.txt: Note need for version info if reusing a key
Linux 4.4.19
** Affects: linux (Ubuntu)
Importance: Undecided
Status: New
** Affects: linux (Ubuntu Xenial)
Importance: Undecided
Status: New
** Tags: kernel-stable-tracking-bug
** Tags added: kernel-stable-tracking-bug
** Also affects: linux (Ubuntu Xenial)
Importance: Undecided
Status: New
** Description changed:
+ SRU Justification
- SRU Justification
+ Impact:
+ The upstream process for stable tree updates is quite similar
+ in scope to the Ubuntu SRU process, e.g., each patch has to
+ demonstrably fix a bug, and each patch is vetted by upstream
+ by originating either directly from a mainline/stable Linux tree or
+ a minimally backported form of that patch. The v4.4.19 upstream stable
+ patch set is now available. It should be included in the Ubuntu
+ kernel as well.
- Impact:
- The upstream process for stable tree updates is quite similar
- in scope to the Ubuntu SRU process, e.g., each patch has to
- demonstrably fix a bug, and each patch is vetted by upstream
- by originating either directly from a mainline/stable Linux tree or
- a minimally backported form of that patch. The v4.4.19 upstream stable
- patch set is now available. It should be included in the Ubuntu
- kernel as well.
+ git://git.kernel.org/
- git://git.kernel.org/
+ TEST CASE: TBD
- TEST CASE: TBD
+ The following patches from the v4.4.19 stable release shall be
+ applied:
- The following patches from the v4.4.19 stable release shall be
- applied:
+ usb: gadget: avoid exposing kernel stack
+ usb: f_fs: off by one bug in _ffs_func_bind()
+ usb: renesas_usbhs: protect the CFIFOSEL setting in usbhsg_ep_enable()
+ usb: dwc3: fix for the isoc transfer EP_BUSY flag
+ USB: serial: option: add support for Telit LE910 PID 0x1206
+ usb: renesas_usbhs: fix NULL pointer dereference in xfer_work()
+ arm64: kernel: Save and restore UAO and addr_limit on exception entry
+ arm64: debug: unmask PSTATE.D earlier
+ arm64: Fix incorrect per-cpu usage for boot CPU
+ tty: serial: msm: Don't read off end of tx fifo
+ serial: samsung: Fix ERR pointer dereference on deferred probe
+ tty/serial: atmel: fix RS485 half duplex with DMA
+ gpio: pca953x: Fix NBANK calculation for PCA9536
+ gpio: intel-mid: Remove potentially harmful code
+ Bluetooth: hci_intel: Fix null gpio desc pointer dereference
+ pinctrl: cherryview: prevent concurrent access to GPIO controllers
+ arm64: dts: rockchip: fixes the gic400 2nd region size for rk3368
+ arm64: mm: avoid fdt_check_header() before the FDT is fully mapped
+ KVM: PPC: Book3S HV: Pull out TM state save/restore into separate procedures
+ KVM: PPC: Book3S HV: Save/restore TM state in H_CEDE
+ KVM: MTRR: fix kvm_mtrr_check_gfn_range_consistency page fault
+ KVM: VMX: handle PML full VMEXIT that occurs during event delivery
+ KVM: nVMX: Fix memory corruption when using VMCS shadowing
+ intel_pstate: Fix MSR_CONFIG_TDP_x addressing in core_get_max_pstate()
+ mfd: qcom_rpm: Fix offset error for msm8660
+ mfd: qcom_rpm: Parametrize also ack selector size
+ media: usbtv: prevent access to free'd resources
+ media: dvb_ringbuffer: Add memory barriers
+ vb2: core: Skip planes array verification if pb is NULL
+ Fix RC5 decoding with Fintek CIR chipset
+ sur40: lower poll interval to fix occasional FPS drops to ~56 FPS
+ sur40: fix occasional oopses on device close
+ dm: set DMF_SUSPENDED* _before_ clearing DMF_NOFLUSH_SUSPENDING
+ hp-wmi: Fix wifi cannot be hard-unblocked
+ s5p-mfc: Set device name for reserved memory region devs
+ s5p-mfc: Add release callback for memory region devs
+ i2c: efm32: fix a failure path in efm32_i2c_probe()
+ spi: pxa2xx: Clear all RFT bits in reset_sccr1() on Intel Quark
+ Bluetooth: Fix l2cap_sock_setsockopt() with optname BT_RCVMTU
+ EDAC: Correct channel count limit
+ HID: uhid: fix timeout when probe races with IO
+ ovl: disallow overlayfs as upperdir
+ remoteproc: Fix potential race condition in rproc_add
+ ARC: mm: don't loose PTE_SPECIAL in pte_modify()
+ jbd2: make journal y2038 safe
+ fs/cifs: make share unaccessible at root level mountable
+ cifs: Check for existing directory when opening file with O_CREAT
+ cifs: fix crash due to race in hmac(md5) handling
+ CIFS: Fix a possible invalid memory access in smb2_query_symlink()
+ random: initialize the non-blocking pool via add_hwgenerator_randomness()
+ random: print a warning for the first ten uninitialized random users
+ random: add interrupt callback to VMBus IRQ handler
+ MIPS: KVM: Fix mapped fault broken commpage handling
+ MIPS: KVM: Add missing gfn range check
+ MIPS: KVM: Fix gfn range check in kseg0 tlb faults
+ MIPS: KVM: Propagate kseg0/mapped tlb fault errors
+ nfs: don't create zero-length requests
+ nfsd: Fix race between FREE_STATEID and LOCK
+ nfsd: don't return an unhashed lock stateid after taking mutex
+ drm/i915: Don't complain about lack of ACPI video bios
+ iommu/exynos: Suppress unbinding to prevent system failure
+ iommu/vt-d: Return error code in domain_context_mapping_one()
+ iommu/amd: Handle IOMMU_DOMAIN_DMA in ops->domain_free call-back
+ iommu/amd: Init unity mappings only for dma_ops domains
+ iommu/amd: Update Alias-DTE in update_device_table()
+ audit: fix a double fetch in audit_log_single_execve_arg()
+ ARM: dts: sunxi: Add a startup delay for fixed regulator enabled phys
+ netlabel: add address family checks to netlbl_{sock,req}_delattr()
+ w1:omap_hdq: fix regression
+ drm/amdgpu: add a delay after ATPX dGPU power off
+ drm/amdgpu: Poll for both connect/disconnect on analog connectors
+ drm/amdgpu: support backlight control for UNIPHY3
+ drm/amdgpu: Disable RPM helpers while reprobing connectors on resume
+ drm/amdgpu: fix firmware info version checks
+ drm/amdgpu/gmc7: add missing mullins case
+ drm/radeon: add a delay after ATPX dGPU power off
+ drm/radeon: Poll for both connect/disconnect on analog connectors
+ drm/radeon: fix firmware info version checks
+ drm/radeon: support backlight control for UNIPHY3
+ drm/nouveau/gr/nv3x: fix instobj write offsets in gr setup
+ drm/nouveau/fbcon: fix font width not divisible by 8
+ drm: Restore double clflush on the last partial cacheline
+ drm/edid: Add 6 bpc quirk for display AEO model 0.
+ drm/i915: Never fully mask the the EI up rps interrupt on SNB/IVB
+ drm/i915/dp: Revert "drm/i915/dp: fall back to 18 bpp when sink capability is
unknown"
+ balloon: check the number of available pages in leak balloon
+ ftrace/recordmcount: Work around for addition of metag magic but not
relocations
+ metag: Fix __cmpxchg_u32 asm constraint for CMP
+ block: add missing group association in bio-cloning functions
+ block: fix bdi vs gendisk lifetime mismatch
+ mtd: nand: fix bug writing 1 byte less than page size
+ mm/hugetlb: avoid soft lockup in set_max_huge_pages()
+ ALSA: hda: Fix krealloc() with __GFP_ZERO usage
+ ALSA: hda/realtek - Can't adjust speaker's volume on a Dell AIO
+ ALSA: hda: add AMD Bonaire AZ PCI ID with proper driver caps
+ ALSA: hda - Fix headset mic detection problem for two dell machines
+ IB/mlx5: Fix MODIFY_QP command input structure
+ IB/mlx5: Fix entries checks in mlx5_ib_create_cq
+ IB/mlx5: Fix returned values of query QP
+ IB/mlx5: Fix entries check in mlx5_ib_resize_cq
+ IB/mlx5: Fix post send fence logic
+ IB/mlx5: Return PORT_ERR in Active to Initializing tranisition
+ IB/SA: Use correct free function
+ IB/IPoIB: Don't update neigh validity for unresolved entries
+ IB/IWPM: Fix a potential skb leak
+ IB/mlx4: Fix the SQ size of an RC QP
+ IB/mlx4: Fix error flow when sending mads under SRIOV
+ IB/mlx4: Fix memory leak if QP creation failed
+ of: fix memory leak related to safe_name()
+ ubi: Make volume resize power cut aware
+ ubi: Fix early logging
+ ubi: Fix race condition between ubi device creation and udev
+ iscsi-target: Fix panic when adding second TCP connection to iSCSI session
+ target: Fix ordered task target_setup_cmd_from_cdb exception hang
+ target: Fix missing complete during ABORT_TASK + CMD_T_FABRIC_STOP
+ target: Fix race between iscsi-target connection shutdown + ABORT_TASK
+ target: Fix max_unmap_lba_count calc overflow
+ target: Fix ordered task CHECK_CONDITION early exception handling
+ Input: elan_i2c - properly wake up touchpad on ASUS laptops
+ SUNRPC: Don't allocate a full sockaddr_storage for tracing
+ MIPS: mm: Fix definition of R6 cache instruction
+ MIPS: Don't register r4k sched clock when CPUFREQ enabled
+ MIPS: hpet: Increase HPET_MIN_PROG_DELTA and decrease HPET_MIN_CYCLES
+ PCI: Mark Atheros AR9485 and QCA9882 to avoid bus reset
+ x86/platform/intel_mid_pci: Rework IRQ0 workaround
+ ACPI / EC: Work around method reentrancy limit in ACPICA for _Qxx
+ rtc: s3c: Add s3c_rtc_{enable/disable}_clk in s3c_rtc_setfreq()
+ dm flakey: error READ bios during the down_interval
+ module: Invalidate signatures on force-loaded modules
+ Documentation/module-signing.txt: Note need for version info if reusing a key
+ Linux 4.4.19
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1615620
Title:
Xenial update to v4.4.19 stable release
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1615620/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
