This bug was fixed in the package linux-azure - 5.13.0-1026.30

---------------
linux-azure (5.13.0-1026.30) impish; urgency=medium

  * impish/linux-azure: 5.13.0-1026.30 -proposed tracker (LP: #1974334)

  * [Azure] WARNING: CPU: 0 PID: 499 at include/linux/dma-mapping.h:555
    netvsc_probe+0x3c9/0x3e0 (LP: #1975717)
    - Drivers: hv: vmbus: Rework use of DMA_BIT_MASK(64)
    - Drivers: hv: vmbus: Fix initialization of device object in
      vmbus_device_register()

  * [Azure] hv_netvsc: Add support for XDP_REDIRECT (LP: #1972832)
    - hv_netvsc: Add comment of netvsc_xdp_xmit()
    - hv_netvsc: Add support for XDP_REDIRECT

  * linux-azure: Patch Set for ARM64 Images 20.04 and 18.04 (LP: #1970468)
    - Drivers: hv: vmbus: Replace smp_store_mb() with virt_store_mb()
    - Drivers: hv: balloon: Support status report for larger page sizes
    - Drivers: hv: balloon: Disable balloon and hot-add accordingly

  * [Azure] PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time
    (LP: #1972662)
    - PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time

  * config CONFIG_HISI_PMU for  kunpeng920 (LP: #1956086)
    - [Config] azure: CONFIG_HISI_PMU=m

  [ Ubuntu: 5.13.0-46.51 ]

  * CVE-2022-21499
    - SAUCE: debug: Lock down kgdb

  [ Ubuntu: 5.13.0-45.50 ]

  * impish/linux: 5.13.0-45.50 -proposed tracker (LP: #1974347)
  * CVE-2022-1158
    - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address
  * config CONFIG_HISI_PMU for  kunpeng920 (LP: #1956086)
    - [Config] CONFIG_HISI_PMU=m
  * re-apply missing overlayfs SAUCE patch (LP: #1967924)
    - SAUCE: overlayfs: fix incorrect mnt_id of files opened from map_files
  * Impish update: upstream stable patchset 2022-04-20 (LP: #1969666)
    - mac80211_hwsim: report NOACK frames in tx_status
    - mac80211_hwsim: initialize ieee80211_tx_info at hw_scan_work
    - i2c: bcm2835: Avoid clock stretching timeouts
    - ASoC: rt5668: do not block workqueue if card is unbound
    - ASoC: rt5682: do not block workqueue if card is unbound
    - regulator: core: fix false positive in regulator_late_cleanup()
    - KVM: arm64: vgic: Read HW interrupt pending state from the HW
    - tipc: fix a bit overflow in tipc_crypto_key_rcv()
    - cifs: fix double free race when mount fails in cifs_get_root()
    - selftests/seccomp: Fix seccomp failure by adding missing headers
    - i2c: cadence: allow COMPILE_TEST
    - i2c: qup: allow COMPILE_TEST
    - net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990
    - usb: gadget: don't release an existing dev->buf
    - usb: gadget: clear related members when goto fail
    - exfat: reuse exfat_inode_info variable instead of calling EXFAT_I()
    - exfat: fix i_blocks for files truncated over 4 GiB
    - tracing: Add test for user space strings when filtering on string pointers
    - serial: stm32: prevent TDR register overwrite when sending x_char
    - ata: pata_hpt37x: fix PCI clock detection
    - drm/amdgpu: check vm ready by amdgpu_vm->evicting flag
    - tracing: Add ustring operation to filtering string pointers
    - ALSA: intel_hdmi: Fix reference to PCM buffer address
    - riscv/efi_stub: Fix get_boot_hartid_from_fdt() return value
    - riscv: Fix config KASAN && SPARSEMEM && !SPARSE_VMEMMAP
    - riscv: Fix config KASAN && DEBUG_VIRTUAL
    - ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min
    - iommu/amd: Recover from event log overflow
    - drm/i915: s/JSP2/ICP2/ PCH
    - xen/netfront: destroy queues before real_num_tx_queues is zeroed
    - thermal: core: Fix TZ_GET_TRIP NULL pointer dereference
    - ntb: intel: fix port config status offset for SPR
    - mm: Consider __GFP_NOWARN flag for oversized kvmalloc() calls
    - xfrm: fix MTU regression
    - netfilter: fix use-after-free in __nf_register_net_hook()
    - bpf, sockmap: Do not ignore orig_len parameter
    - xfrm: enforce validity of offload input flags
    - e1000e: Correct NVM checksum verification flow
    - net: fix up skbs delta_truesize in UDP GRO frag_list
    - netfilter: nf_queue: don't assume sk is full socket
    - netfilter: nf_queue: fix possible use-after-free
    - netfilter: nf_queue: handle socket prefetch
    - batman-adv: Request iflink once in batadv-on-batadv check
    - batman-adv: Request iflink once in batadv_get_real_netdevice
    - batman-adv: Don't expect inter-netns unique iflink indices
    - net: ipv6: ensure we call ipv6_mc_down() at most once
    - net: dcb: flush lingering app table entries for unregistered devices
    - net/smc: fix connection leak
    - net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error generated by client
    - net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error cause by server
    - mac80211: fix forwarded mesh frames AC & queue selection
    - net: stmmac: fix return value of __setup handler
    - mac80211: treat some SAE auth steps as final
    - iavf: Fix missing check for running netdev
    - net: sxgbe: fix return value of __setup handler
    - ibmvnic: register netdev after init of adapter
    - net: arcnet: com20020: Fix null-ptr-deref in com20020pci_probe()
    - ixgbe: xsk: change !netif_carrier_ok() handling in ixgbe_xmit_zc()
    - efivars: Respect "block" flag in efivar_entry_set_safe()
    - firmware: arm_scmi: Remove space in MODULE_ALIAS name
    - ASoC: cs4265: Fix the duplicated control name
    - can: gs_usb: change active_channels's type from atomic_t to u8
    - arm64: dts: rockchip: Switch RK3399-Gru DP to SPDIF output
    - igc: igc_read_phy_reg_gpy: drop premature return
    - ARM: Fix kgdb breakpoint for Thumb2
    - ARM: 9182/1: mmu: fix returns from early_param() and __setup() functions
    - selftests: mlxsw: tc_police_scale: Make test more robust
    - pinctrl: sunxi: Use unique lockdep classes for IRQs
    - igc: igc_write_phy_reg_gpy: drop premature return
    - ibmvnic: free reset-work-item when flushing
    - memfd: fix F_SEAL_WRITE after shmem huge page allocated
    - s390/extable: fix exception table sorting
    - ARM: dts: switch timer config to common devkit8000 devicetree
    - ARM: dts: Use 32KiHz oscillator on devkit8000
    - soc: fsl: guts: Revert commit 3c0d64e867ed
    - soc: fsl: guts: Add a missing memory allocation failure check
    - soc: fsl: qe: Check of ioremap return value
    - ARM: tegra: Move panels to AUX bus
    - ibmvnic: complete init_done on transport events
    - net: chelsio: cxgb3: check the return value of pci_find_capability()
    - iavf: Refactor iavf state machine tracking
    - nl80211: Handle nla_memdup failures in handle_nan_filter
    - drm/amdgpu: fix suspend/resume hang regression
    - net: dcb: disable softirqs in dcbnl_flush_dev()
    - Input: elan_i2c - move regulator_[en|dis]able() out of
      elan_[en|dis]able_power()
    - Input: elan_i2c - fix regulator enable count imbalance after 
suspend/resume
    - Input: samsung-keypad - properly state IOMEM dependency
    - HID: add mapping for KEY_DICTATE
    - HID: add mapping for KEY_ALL_APPLICATIONS
    - tracing/histogram: Fix sorting on old "cpu" value
    - tracing: Fix return value of __setup handlers
    - btrfs: fix lost prealloc extents beyond eof after full fsync
    - btrfs: qgroup: fix deadlock between rescan worker and remove qgroup
    - btrfs: add missing run of delayed items after unlink during log replay
    - Revert "xfrm: xfrm_state_mtu should return at least 1280 for ipv6"
    - hamradio: fix macro redefine warning
    - arm64: Mark start_backtrace() notrace and NOKPROBE_SYMBOL
    - sched/fair: Fix fault in reweight_entity
    - tools/resolve_btf_ids: Close ELF file on error
    - mtd: spi-nor: Fix mtd size for s3an flashes
    - MIPS: fix local_{add,sub}_return on MIPS64
    - signal: In get_signal test for signal_group_exit every time through the 
loop
    - PCI: mediatek-gen3: Disable DVFSRC voltage request
    - PCI: dwc: Do not remap invalid res
    - PCI: aardvark: Fix checking for MEM resource type
    - KVM: VMX: Don't unblock vCPU w/ Posted IRQ if IRQs are disabled in guest
    - KVM: s390: Ensure kvm_arch_no_poll() is read once when blocking vCPU
    - KVM: VMX: Read Posted Interrupt "control" exactly once per loop iteration
    - KVM: x86: Handle 32-bit wrap of EIP for EMULTYPE_SKIP with flat code seg
    - KVM: x86: Exit to userspace if emulation prepared a completion callback
    - i3c: fix incorrect address slot lookup on 64-bit
    - i3c/master/mipi-i3c-hci: Fix a potentially infinite loop in
      'hci_dat_v1_get_index()'
    - tracing: Do not let synth_events block other dyn_event systems during 
create
    - Input: ti_am335x_tsc - set ADCREFM for X configuration
    - Input: ti_am335x_tsc - fix STEPCONFIG setup for Z2
    - NFSD: Fix verifier returned in stable WRITEs
    - Revert "nfsd: skip some unnecessary stats in the v4 case"
    - nfsd: fix crash on COPY_NOTIFY with special stateid
    - x86/hyperv: Properly deal with empty cpumasks in hyperv_flush_tlb_multi()
    - SUNRPC: Fix sockaddr handling in the svc_xprt_create_error trace point
    - SUNRPC: Fix sockaddr handling in svcsock_accept_class trace points
    - drm/sun4i: dw-hdmi: Fix missing put_device() call in sun8i_hdmi_phy_get
    - drm/atomic: Check new_crtc_state->active to determine if CRTC needs 
disable
      in self refresh mode
    - ntb_hw_switchtec: Fix pff ioread to read into mmio_part_cfg_all
    - ntb_hw_switchtec: Fix bug with more than 32 partitions
    - drm/amdkfd: Check for null pointer after calling kmemdup
    - i3c: master: dw: check return of dw_i3c_master_get_free_pos()
    - dma-buf: cma_heap: Fix mutex locking section
    - tracing/uprobes: Check the return value of kstrdup() for tu->filename
    - tracing/probes: check the return value of kstrndup() for pbuf
    - mm: defer kmemleak object creation of module_alloc()
    - kasan: fix quarantine conflicting with init_on_free
    - selftests/vm: make charge_reserved_hugetlb.sh work with existing cgroup
      setting
    - hugetlbfs: fix off-by-one error in hugetlb_vmdelete_list()
    - ethtool: Fix link extended state for big endian
    - bpf: Fix possible race in inc_misses_counter
    - gve: Recording rx queue before sending to napi
    - ibmvnic: don't release napi in __ibmvnic_open()
    - bnxt_en: Fix occasional ethtool -t loopback test failures
    - iwlwifi: mvm: check debugfs_dir ptr before use
    - iommu/vt-d: Fix double list_add when enabling VMD in scalable mode
    - mac80211: fix EAPoL rekey fail in 802.3 rx path
    - blktrace: fix use after free for struct blk_trace
    - net: ipa: add an interconnect dependency
    - iavf: Fix deadlock in iavf_reset_task
    - auxdisplay: lcd2s: Fix lcd2s_redefine_char() feature
    - auxdisplay: lcd2s: Fix memory leak in ->remove()
    - auxdisplay: lcd2s: Use proper API to free the instance of charlcd object
    - iommu/tegra-smmu: Fix missing put_device() call in tegra_smmu_find
    - mips: setup: fix setnocoherentio() boolean setting
    - mptcp: Correctly set DATA_FIN timeout when number of retransmits is large
    - sched: Fix yet more sched_fork() races
    - arm64: dts: juno: Remove GICv2m dma-range
    - iommu/amd: Fix I/O page table memory leak
    - netfilter: nf_tables: prefer kfree_rcu(ptr, rcu) variant
    - can: etas_es58x: change opened_channel_cnt's type from atomic_t to u8
    - e1000e: Fix possible HW unit hang after an s0ix exit
    - selftests: mlxsw: resource_scale: Fix return value
    - iavf: do not override the adapter state in the watchdog task (again)
    - btrfs: fix relocation crash due to premature return from
      btrfs_commit_transaction()
    - KVM: x86/mmu: Passing up the error state of mmu_alloc_shadow_roots()
  * CVE-2022-28390
    - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error 
path

linux-azure (5.13.0-1025.29) impish; urgency=medium

  * impish/linux-azure: 5.13.0-1025.29 -proposed tracker (LP: #1973931)

  [ Ubuntu: 5.13.0-44.49 ]

  * impish/linux: 5.13.0-44.49 -proposed tracker (LP: #1973941)
  * CVE-2022-29581
    - net/sched: cls_u32: fix netns refcount changes in u32_change()
  * Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP
    option (LP: #1972740)
    - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE
  * ext4: limit length to bitmap_maxbytes (LP: #1972281)
    - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole

 -- Tim Gardner <tim.gard...@canonical.com>  Thu, 26 May 2022 10:46:59
-0600

** Changed in: linux-azure (Ubuntu Impish)
       Status: Fix Committed => Fix Released

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-1158

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-21499

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-28390

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-29581

** Changed in: linux-azure (Ubuntu Jammy)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1975717

Title:
  [Azure] WARNING: CPU: 0 PID: 499 at include/linux/dma-mapping.h:555
  netvsc_probe+0x3c9/0x3e0

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux-azure/+bug/1975717/+subscriptions


-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to