Cosmic update: 4.18.16 upstream stable release
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Cosmic |
Fix Released
|
Medium
|
Stefan Bader |
Bug Description
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The following upstream
stable patches should be included in the Ubuntu kernel:
4.18.16 upstream stable release
from git://git.
The following patches will be applied:
* soundwire: Fix duplicate stream state assignment
* soundwire: Fix incorrect exit after configuring stream
* soundwire: Fix acquiring bus lock twice during master release
* media: af9035: prevent buffer overflow on write
* spi: gpio: Fix copy-and-paste error
* batman-adv: Avoid probe ELP information leak
* batman-adv: Fix segfault when writing to throughput_override
* batman-adv: Fix segfault when writing to sysfs elp_interval
* batman-adv: Prevent duplicated gateway_node entry
* batman-adv: Prevent duplicated nc_node entry
* batman-adv: Prevent duplicated softif_vlan entry
* batman-adv: Prevent duplicated global TT entry
* batman-adv: Prevent duplicated tvlv handler
* batman-adv: fix backbone_gw refcount on queue_work() failure
* batman-adv: fix hardif_neigh refcount on queue_work() failure
* cxgb4: fix abort_req_rss6 struct
* clocksource/
SoCs
* scsi: ibmvscsis: Fix a stringop-overflow warning
* scsi: ibmvscsis: Ensure partition name is properly NUL terminated
* intel_th: pci: Add Ice Lake PCH support
* Input: atakbd - fix Atari keymap
* Input: atakbd - fix Atari CapsLock behaviour
* selftests: pmtu: properly redirect stderr to /dev/null
* net: emac: fix fixed-link setup for the RTL8363SB switch
* ravb: do not write 1 to reserved bits
* net/smc: fix non-blocking connect problem
* net/smc: fix sizeof to int comparison
* qed: Fix populating the invalid stag value in multi function mode.
* qed: Do not add VLAN 0 tag to untagged frames in multi-function mode.
* PCI: dwc: Fix scheduling while atomic issues
* RDMA/uverbs: Fix validity check for modify QP
* scsi: lpfc: Synchronize access to remoteport via rport
* drm: mali-dp: Call drm_crtc_
* scsi: ipr: System hung while dlpar adding primary ipr adapter back
* scsi: sd: don't crash the host on invalid commands
* bpf: sockmap only allow ESTABLISHED sock state
* bpf: sockmap, fix transition through disconnect without close
* bpf: test_maps, only support ESTABLISHED socks
* net/mlx4: Use cpumask_available for eq->affinity_mask
* clocksource/
* RDMA/bnxt_re: Fix system crash during RDMA resource initialization
* RISC-V: include linux/ftrace.h in asm-prototypes.h
* iommu/rockchip: Free irqs in shutdown handler
* pinctrl/amd: poll InterruptEnable bits in amd_gpio_
* powerpc/tm: Fix userspace r13 corruption
* powerpc/tm: Avoid possible userspace r1 corruption on reclaim
* powerpc/numa: Use associativity if VPHN hcall is successful
* iommu/amd: Return devid as alias for ACPI HID devices
* x86/boot: Fix kexec booting failure in the SEV bit detection code
* Revert "vfs: fix freeze protection in mnt_want_
* mremap: properly flush TLB before releasing the page
* ARC: build: Get rid of toolchain check
* ARC: build: Don't set CROSS_COMPILE in arch's Makefile
* Linux 4.18.16
CVE References
tags: | added: kernel-stable-tracking-bug |
Changed in linux (Ubuntu Cosmic): | |
assignee: | nobody → Stefan Bader (smb) |
importance: | Undecided → Medium |
status: | New → In Progress |
Changed in linux (Ubuntu): | |
status: | New → Invalid |
description: | updated |
Changed in linux (Ubuntu Cosmic): | |
status: | In Progress → Fix Committed |
tags: | added: cscc |
This bug was fixed in the package linux - 4.18.0-12.13
---------------
linux (4.18.0-12.13) cosmic; urgency=medium
* linux: 4.18.0-12.13 -proposed tracker (LP: #1802743)
* [FEAT] Guest-dedicated Crypto Adapters (LP: #1787405) _available( ) returncodes VSIE_RESTART GET_INFO ioctl S390_AP_ IOMMU and set CONFIG_VFIO_AP to module.
- s390/zcrypt: Add ZAPQ inline function.
- s390/zcrypt: Review inline assembler constraints.
- s390/zcrypt: Integrate ap_asm.h into include/asm/ap.h.
- s390/zcrypt: fix ap_instructions
- KVM: s390: vsie: simulate VCPU SIE entry/exit
- KVM: s390: introduce and use KVM_REQ_
- KVM: s390: refactor crypto initialization
- s390: vfio-ap: base implementation of VFIO AP device driver
- s390: vfio-ap: register matrix device with VFIO mdev framework
- s390: vfio-ap: sysfs interfaces to configure adapters
- s390: vfio-ap: sysfs interfaces to configure domains
- s390: vfio-ap: sysfs interfaces to configure control domains
- s390: vfio-ap: sysfs interface to view matrix mdev matrix
- KVM: s390: interface to clear CRYCB masks
- s390: vfio-ap: implement mediated device open callback
- s390: vfio-ap: implement VFIO_DEVICE_
- s390: vfio-ap: zeroize the AP queues
- s390: vfio-ap: implement VFIO_DEVICE_RESET ioctl
- KVM: s390: Clear Crypto Control Block when using vSIE
- KVM: s390: vsie: Do the CRYCB validation first
- KVM: s390: vsie: Make use of CRYCB FORMAT2 clear
- KVM: s390: vsie: Allow CRYCB FORMAT-2
- KVM: s390: vsie: allow CRYCB FORMAT-1
- KVM: s390: vsie: allow CRYCB FORMAT-0
- KVM: s390: vsie: allow guest FORMAT-0 CRYCB on host FORMAT-1
- KVM: s390: vsie: allow guest FORMAT-1 CRYCB on host FORMAT-2
- KVM: s390: vsie: allow guest FORMAT-0 CRYCB on host FORMAT-2
- KVM: s390: device attrs to enable/disable AP interpretation
- KVM: s390: CPU model support for AP virtualization
- s390: doc: detailed specifications for AP virtualization
- KVM: s390: fix locking for crypto setting error path
- KVM: s390: Tracing APCB changes
- s390: vfio-ap: setup APCB mask using KVM dedicated function
- [Config:] Enable CONFIG_
* Bypass of mount visibility through userns + mount propagation (LP: #1789161) MNT_LOCKED mounts
- mount: Retest MNT_LOCKED in do_umount
- mount: Don't allow copying MNT_UNBINDABLE|
* CVE-2018-18955: nested user namespaces with more than five extents
incorrectly grant privileges over inode (LP: #1801924) // CVE-2018-18955
- userns: also map extents in the reverse map to kernel IDs
* kdump fail due to an IRQ storm (LP: #1797990)
- SAUCE: x86/PCI: Export find_cap() to be used in early PCI code
- SAUCE: x86/quirks: Add parameter to clear MSIs early on boot
- SAUCE: x86/quirks: Scan all busses for early PCI quirks
* crash in ENA driver on removing an interface (LP: #1802341)
- SAUCE: net: ena: fix crash during ena_remove()
* Ubuntu 18.04.1 - [s390x] Kernel panic while stressing network bonding
(LP: #1797367)
- s390/qeth: reduce hard-coded access to ccw channels
- s390/qeth: sanitize strings in debug messages
* Add checksum offload and T...