Bug #15457
Upgrade Linux in Tails 3.6.2
Start date:
2018-03-22
Due date:
% Done:
100%
Description
Subtasks
Related issues
Related to Tails - |
Resolved | 2018-03-22 | |
Blocks Tails - |
Resolved | 2017-06-29 | |
Blocks Tails - |
Resolved | 2018-03-27 |
History
#1 Updated by intrigeri 2018-03-27 10:17:19
- blocked by
Bug #15456: Upgrade Linux to 4.15.0-2 added
#2 Updated by intrigeri 2018-03-27 10:17:31
- related to
Bug #15435: Consider upgrading Linux in Tails 3.7 added
#3 Updated by intrigeri 2018-03-27 10:17:52
- blocks
Feature #13245: Core work 2018Q1: Foundations Team added
#4 Updated by intrigeri 2018-03-27 11:49:53
- Status changed from Confirmed to In Progress
- % Done changed from 0 to 10
linux (4.15.11-1) unstable; urgency=medium
* New upstream stable update:
https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.5
- IB/umad: Fix use of unprotected device pointer
- IB/qib: Fix comparison error with qperf compare/swap test
- IB/mlx4: Fix incorrectly releasing steerable UD QPs when have only ETH
ports
- IB/core: Fix two kernel warnings triggered by rxe registration
- IB/core: Fix ib_wc structure size to remain in 64 bytes boundary
- IB/core: Avoid a potential OOPs for an unused optional parameter
- RDMA/rxe: Fix a race condition related to the QP error state
- RDMA/rxe: Fix a race condition in rxe_requester()
- RDMA/rxe: Fix rxe_qp_cleanup()
- [powerpc*] cpufreq: powernv: Dont assume distinct pstate values for
nominal and pmin
- swiotlb: suppress warning when __GFP_NOWARN is set
- PM / devfreq: Propagate error from devfreq_add_device()
- mwifiex: resolve reset vs. remove()/shutdown() deadlocks
- ocfs2: try a blocking lock before return AOP_TRUNCATED_PAGE
- trace_uprobe: Display correct offset in uprobe_events
- [powerpc*] radix: Remove trace_tlbie call from radix__flush_tlb_all
- [powerpc*] kernel: Block interrupts when updating TIDR
- [powerpc*] vas: Don't set uses_vas for kernel windows
- [powerpc*] numa: Invalidate numa_cpu_lookup_table on cpu remove
- [powerpc*] mm: Flush radix process translations when setting MMU type
- [powerpc*] xive: Use hw CPU ids when configuring the CPU queues
- dma-buf: fix reservation_object_wait_timeout_rcu once more v2
- [s390x] fix handling of -1 in set{,fs}[gu]id16 syscalls
- [arm64] dts: msm8916: Correct ipc references for smsm
- [x86] gpu: add CFL to early quirks
- [x86] kexec: Make kexec (mostly) work in 5-level paging mode
- [x86] xen: init %gs very early to avoid page faults with stack protector
- [x86] PM: Make APM idle driver initialize polling state
- mm, memory_hotplug: fix memmap initialization
- [amd64] entry: Clear extra registers beyond syscall arguments, to reduce
speculation attack surface
- [amd64] entry/compat: Clear registers for compat syscalls, to reduce
speculation attack surface
- [armhf] crypto: sun4i_ss_prng - fix return value of sun4i_ss_prng_generate
- [armhf] crypto: sun4i_ss_prng - convert lock to _bh in
sun4i_ss_prng_generate
- [powerpc*] mm/radix: Split linear mapping on hot-unplug
- [x86] speculation: Update Speculation Control microcode blacklist
- [x86] speculation: Correct Speculation Control microcode blacklist again
- [x86] Revert "x86/speculation: Simplify
indirect_branch_prediction_barrier()"
- [x86] KVM: Reduce retpoline performance impact in
slot_handle_level_range(), by always inlining iterator helper methods
- [X86] nVMX: Properly set spec_ctrl and pred_cmd before merging MSRs
- [x86] KVM/nVMX: Set the CPU_BASED_USE_MSR_BITMAPS if we have a valid L02
MSR bitmap
- [x86] speculation: Clean up various Spectre related details
- PM / runtime: Update links_count also if !CONFIG_SRCU
- PM: cpuidle: Fix cpuidle_poll_state_init() prototype
- [x86] platform: wmi: fix off-by-one write in wmi_dev_probe()
- [amd64] entry: Clear registers for exceptions/interrupts, to reduce
speculation attack surface
- [amd64] entry: Merge SAVE_C_REGS and SAVE_EXTRA_REGS, remove unused
extensions
- [amd64] entry: Merge the POP_C_REGS and POP_EXTRA_REGS macros into a
single POP_REGS macro
- [amd64] entry: Interleave XOR register clearing with PUSH instructions
- [amd64] entry: Introduce the PUSH_AND_CLEAN_REGS macro
- [amd64] entry: Use PUSH_AND_CLEAN_REGS in more cases
- [amd64] entry: Get rid of the ALLOC_PT_GPREGS_ON_STACK and
SAVE_AND_CLEAR_REGS macros
- [amd64] entry: Indent PUSH_AND_CLEAR_REGS and POP_REGS properly
- [amd64] entry: Fix paranoid_entry() frame pointer warning
- [amd64] entry: Remove the unused 'icebp' macro
- gfs2: Fixes to "Implement iomap for block_map"
- objtool: Fix segfault in ignore_unreachable_insn()
- [x86] debug, objtool: Annotate WARN()-related UD2 as reachable
- [x86] debug: Use UD2 for WARN()
- [x86] speculation: Fix up array_index_nospec_mask() asm constraint
- nospec: Move array_index_nospec() parameter checking into separate macro
- [x86] speculation: Add <asm/msr-index.h> dependency
- [x86] mm: Rename flush_tlb_single() and flush_tlb_one() to
__flush_tlb_one_[user|kernel]()
- [x86] cpu: Rename cpu_data.x86_mask to cpu_data.x86_stepping
- [x86] spectre: Fix an error message
- [x86] cpu: Change type of x86_cache_size variable to unsigned int
- [amd64] entry: Fix CR3 restore in paranoid_exit()
- drm/ttm: Don't add swapped BOs to swap-LRU list
- drm/ttm: Fix 'buf' pointer update in ttm_bo_vm_access_kmap() (v2)
- drm/qxl: unref cursor bo when finished with it
- drm/qxl: reapply cursor after resetting primary
- drm/amd/powerplay: Fix smu_table_entry.handle type
- drm/ast: Load lut in crtc_commit
- drm: Check for lessee in DROP_MASTER ioctl
- [arm64] Add missing Falkor part number for branch predictor hardening
- drm/radeon: Add dpm quirk for Jet PRO (v2)
- drm/radeon: adjust tested variable
- [x86] smpboot: Fix uncore_pci_remove() indexing bug when hot-removing a
physical CPU
- [powerpc*] rtc-opal: Fix handling of firmware error codes, prevent busy
loops
- mbcache: initialize entry->e_referenced in mb_cache_entry_create()
- mmc: sdhci: Implement an SDHCI-specific bounce buffer
- [armhf,arm64] mmc: bcm2835: Don't overwrite max frequency unconditionally
- [arm64] Revert "mmc: meson-gx: include tx phase in the tuning process"
- mlx5: fix mlx5_get_vector_affinity to start from completion vector 0
- [x86] Revert "apple-gmux: lock iGP IO to protect from vgaarb changes"
- ext4: fix a race in the ext4 shutdown path
- ext4: save error to disk in __ext4_grp_locked_error()
- ext4: correct documentation for grpid mount option
- mm: Fix memory size alignment in devm_memremap_pages_release()
- [mips*] Fix typo BIG_ENDIAN to CPU_BIG_ENDIAN
- [mips*] CPS: Fix MIPS_ISA_LEVEL_RAW fallout
- [mips*] Fix incorrect mem=X@Y handling
- [arm64] PCI: Disable MSI for HiSilicon Hip06/Hip07 only in Root Port mode
- [armhf,arm64] PCI: iproc: Fix NULL pointer dereference for BCMA
- [x86] PCI: pciehp: Assume NoCompl+ for Thunderbolt ports
- console/dummy: leave .con_font_get set to NULL
- rbd: whitelist RBD_FEATURE_OPERATIONS feature bit
- xen: Fix {set,clear}_foreign_p2m_mapping on autotranslating guests
- xenbus: track caller request id
- seq_file: fix incomplete reset on read from zero offset
- tracing: Fix parsing of globs with a wildcard at the beginning
- mpls, nospec: Sanitize array index in mpls_label_ok() (CVE-2017-5753)
- rtlwifi: rtl8821ae: Fix connection lost problem correctly
- [arm64] proc: Set PTE_NG for table entries to avoid traversing them twice
- xprtrdma: Fix calculation of ri_max_send_sges
- xprtrdma: Fix BUG after a device removal
- blk-wbt: account flush requests correctly
- target/iscsi: avoid NULL dereference in CHAP auth error path
- iscsi-target: make sure to wake up sleeping login worker
- dm: correctly handle chained bios in dec_pending()
- Btrfs: fix deadlock in run_delalloc_nocow
- Btrfs: fix crash due to not cleaning up tree log block's dirty bits
- Btrfs: fix extent state leak from tree log
- Btrfs: fix btrfs_evict_inode to handle abnormal inodes correctly
- Btrfs: fix use-after-free on root->orphan_block_rsv
- Btrfs: fix unexpected -EEXIST when creating new inode
- 9p/trans_virtio: discard zero-length reply
- mtd: nand: vf610: set correct ooblayout
- ALSA: hda - Fix headset mic detection problem for two Dell machines
- ALSA: usb-audio: Fix UAC2 get_ctl request with a RANGE attribute
- ALSA: hda/realtek - Add headset mode support for Dell laptop
- ALSA: hda/realtek - Enable Thinkpad Dock device for ALC298 platform
- ALSA: hda/realtek: PCI quirk for Fujitsu U7x7
- ALSA: usb-audio: add implicit fb quirk for Behringer UFX1204
- ALSA: usb: add more device quirks for USB DSD devices
- ALSA: seq: Fix racy pool initializations (CVE-2018-7566)
- [armhf,arm64] mvpp2: fix multicast address filter
- usb: Move USB_UHCI_BIG_ENDIAN_* out of USB_SUPPORT
- [x86] mm, mm/hwpoison: Don't unconditionally unmap kernel 1:1 pages
- [armhf] dts: exynos: fix RTC interrupt for exynos5410
- [arm64] dts: msm8916: Add missing #phy-cells
https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.6
- tun: fix tun_napi_alloc_frags() frag allocator
- ptr_ring: fail early if queue occupies more than KMALLOC_MAX_SIZE
- ptr_ring: try vmalloc() when kmalloc() fails
- selinux: ensure the context is NUL terminated in
security_context_to_sid_core()
- selinux: skip bounded transition processing if the policy isn't loaded
- media: pvrusb2: properly check endpoint types
- [x86] crypto: twofish-3way - Fix %rbp usage
- blk_rq_map_user_iov: fix error override
- [x86] KVM: fix escape of guest dr6 to the host
- kcov: detect double association with a single task
- netfilter: x_tables: fix int overflow in xt_alloc_table_info()
- netfilter: x_tables: avoid out-of-bounds reads in
xt_request_find_{match|target}
- netfilter: ipt_CLUSTERIP: fix out-of-bounds accesses in
clusterip_tg_check()
- netfilter: on sockopt() acquire sock lock only in the required scope
- netfilter: xt_cgroup: initialize info->priv in cgroup_mt_check_v1()
- netfilter: xt_RATEEST: acquire xt_rateest_mutex for hash insert
- rds: tcp: correctly sequence cleanup on netns deletion.
- rds: tcp: atomically purge entries from rds_tcp_conn_list during netns
delete
- net: avoid skb_warn_bad_offload on IS_ERR
- net_sched: gen_estimator: fix lockdep splat
- [arm64] dts: add #cooling-cells to CPU nodes
- dn_getsockoptdecnet: move nf_{get/set}sockopt outside sock lock
- xhci: Fix NULL pointer in xhci debugfs
- xhci: Fix xhci debugfs devices node disappearance after hibernation
- xhci: xhci debugfs device nodes weren't removed after device plugged out
- xhci: fix xhci debugfs errors in xhci_stop
- usbip: keep usbip_device sockfd state in sync with tcp_socket
- [x86] mei: me: add cannon point device ids
- [x86] mei: me: add cannon point device ids for 4th device
- vmalloc: fix __GFP_HIGHMEM usage for vmalloc_32 on 32b systems
https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.7
- netfilter: drop outermost socket lock in getsockopt()
- [arm64] mm: don't write garbage into TTBR1_EL1 register
- kconfig.h: Include compiler types to avoid missed struct attributes
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info
- [mips*] Drop spurious __unused in struct compat_flock
- cfg80211: fix cfg80211_beacon_dup
- i2c: designware: must wait for enable
- [armhf,arm64] i2c: bcm2835: Set up the rising/falling edge delays
- X.509: fix BUG_ON() when hash algorithm is unsupported
- X.509: fix NULL dereference when restricting key with unsupported_sig
- PKCS#7: fix certificate chain verification
- PKCS#7: fix certificate blacklisting
- [x86] genirq/matrix: Handle CPU offlining proper
- RDMA/uverbs: Protect from races between lookup and destroy of uobjects
- RDMA/uverbs: Protect from command mask overflow
- RDMA/uverbs: Fix bad unlock balance in ib_uverbs_close_xrcd
- RDMA/uverbs: Fix circular locking dependency
- RDMA/uverbs: Sanitize user entered port numbers prior to access it
- iio: buffer: check if a buffer has been set up when poll is called
- Kbuild: always define endianess in kconfig.h
- [x86] apic/vector: Handle vector release on CPU unplug correctly
- mm, swap, frontswap: fix THP swap if frontswap enabled
- mm: don't defer struct page initialization for Xen pv guests
- uapi/if_ether.h: move __UAPI_DEF_ETHHDR libc define
- [armhf,arm64] irqchip/gic-v3: Use wmb() instead of smb_wmb() in
gic_raise_softirq()
- [mips*] irqchip/mips-gic: Avoid spuriously handling masked interrupts
- PCI/cxgb4: Extend T3 PCI quirk to T4+ devices
- [x86] net: thunderbolt: Tear down connection properly on suspend
- [x86] net: thunderbolt: Run disconnect flow asynchronously when logout is
received
- ohci-hcd: Fix race condition caused by ohci_urb_enqueue() and
io_watchdog_func()
- usb: ohci: Proper handling of ed_rm_list to handle race condition between
usb_kill_urb() and finish_unlinks()
- [arm64] Remove unimplemented syscall log message
- [arm64] Disable unhandled signal log messages by default
- [arm64] cpufeature: Fix CTR_EL0 field definitions
- USB: Add delay-init quirk for Corsair K70 RGB keyboards
- drm/edid: Add 6 bpc quirk for CPT panel in Asus UX303LA
- usb: host: ehci: use correct device pointer for dma ops
- usb: dwc3: gadget: Set maxpacket size for ep0 IN
- usb: dwc3: ep0: Reset TRB counter for ep0 IN
- usb: ldusb: add PIDs for new CASSY devices supported by this driver
- Revert "usb: musb: host: don't start next rx urb if current one failed"
- usb: gadget: f_fs: Process all descriptors during bind
- usb: gadget: f_fs: Use config_ep_by_speed()
- drm/cirrus: Load lut in crtc_commit
- drm/atomic: Fix memleak on ERESTARTSYS during non-blocking commits
- drm: Handle unexpected holes in color-eviction
- drm/amdgpu: disable MMHUB power gating on raven
- drm/amdgpu: fix VA hole handling on Vega10 v3
- drm/amdgpu: Add dpm quirk for Jet PRO (v2)
- drm/amdgpu: only check mmBIF_IOV_FUNC_IDENTIFIER on tonga/fiji
- drm/amdgpu: add atpx quirk handling (v2)
- drm/amdgpu: Avoid leaking PM domain on driver unbind (v2)
- drm/amdgpu: add new device to use atpx quirk
- [arm64] __show_regs: Only resolve kernel symbols when running at EL1
- [x86] drm/i915/breadcrumbs: Ignore unsubmitted signalers
https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.8
- vsprintf: avoid misleading "(null)" for %px
- hrtimer: Ensure POSIX compliance (relative CLOCK_REALTIME hrtimers)
- ipmi_si: Fix error handling of platform device
- [x86] platform: dell-laptop: Allocate buffer on heap rather than globally
- [powerpc*] pseries: Enable RAS hotplug events later
- Bluetooth: btusb: Use DMI matching for QCA reset_resume quirking
- ixgbe: fix crash in build_skb Rx code path
- [x86] tpm: st33zp24: fix potential buffer overruns caused by bit glitches
on the bus
- tpm: fix potential buffer overruns caused by bit glitches on the bus
- [x86] tpm_i2c_infineon: fix potential buffer overruns caused by bit
glitches on the bus
- [x86] tpm_i2c_nuvoton: fix potential buffer overruns caused by bit
glitches on the bus
- [x86] tpm_tis: fix potential buffer overruns caused by bit glitches on
the bus
- ALSA: usb-audio: Add a quirck for B&W PX headphones
- ALSA: control: Fix memory corruption risk in snd_ctl_elem_read
- [x86] ALSA: x86: Fix missing spinlock and mutex initializations
- ALSA: hda: Add a power_save blacklist
- ALSA: hda - Fix pincfg at resume on Lenovo T470 dock
- mmc: sdhci-pci: Fix S0i3 for Intel BYT-based controllers
- [armhf,arm64] mmc: dw_mmc-k3: Fix out-of-bounds access through DT alias
- [armhf,arm64] mmc: dw_mmc: Avoid accessing registers in runtime suspended
state
- [armhf,arm64] mmc: dw_mmc: Factor out dw_mci_init_slot_caps
- [armhf,arm64] mmc: dw_mmc: Fix out-of-bounds access for slot's caps
- timers: Forward timer base before migrating timers
- [hppa] Use cr16 interval timers unconditionally on qemu
- [hppa] Reduce irq overhead when run in qemu
- [hppa] Fix ordering of cache and TLB flushes
- [hppa] Hide virtual kernel memory layout
- btrfs: use proper endianness accessors for super_copy
- block: fix the count of PGPGOUT for WRITE_SAME
- block: kyber: fix domain token leak during requeue
- block: pass inclusive 'lend' parameter to truncate_inode_pages_range
- vfio: disable filesystem-dax page pinning
- dax: fix vma_is_fsdax() helper
- direct-io: Fix sleep in atomic due to sync AIO
- [x86] xen: Zero MSR_IA32_SPEC_CTRL before suspend
- [x86] cpu_entry_area: Sync cpu_entry_area to initial_page_table
- bridge: check brport attr show in brport_show
- fib_semantics: Don't match route with mismatching tclassid
- hdlc_ppp: carrier detect ok, don't turn off negotiation
- [arm64] net: amd-xgbe: fix comparison to bitshift when dealing with a mask
- [armhf] net: ethernet: ti: cpsw: fix net watchdog timeout
- net: fix race on decreasing number of TX queues
- net: ipv4: don't allow setting net.ipv4.route.min_pmtu below 68
- netlink: ensure to loop over all netns in genlmsg_multicast_allns()
- net: sched: report if filter is too large to dump
- ppp: prevent unregistered channels from connecting to PPP units
- sctp: verify size of a new chunk in _sctp_make_chunk() (CVE-2018-5803)
- udplite: fix partial checksum initialization
- net/mlx5e: Fix TCP checksum in LRO buffers
- sctp: fix dst refcnt leak in sctp_v4_get_dst
- net/mlx5e: Specify numa node when allocating drop rq
- net: phy: fix phy_start to consider PHY_IGNORE_INTERRUPT
- tcp: Honor the eor bit in tcp_mtu_probe
- rxrpc: Fix send in rxrpc_send_data_packet()
- tcp_bbr: better deal with suboptimal GSO
- doc: Change the min default value of tcp_wmem/tcp_rmem.
- net/mlx5e: Fix loopback self test when GRO is off
- net_sched: gen_estimator: fix broken estimators based on percpu stats
- net/sched: cls_u32: fix cls_u32 on filter replace
- sctp: do not pr_err for the duplicated node in transport rhlist
- net: ipv4: Set addr_type in hash_keys for forwarded case
- sctp: fix dst refcnt leak in sctp_v6_get_dst()
- bridge: Fix VLAN reference count problem
- net/mlx5e: Verify inline header size do not exceed SKB linear size
- tls: Use correct sk->sk_prot for IPV6
- [arm64] amd-xgbe: Restore PCI interrupt enablement setting on resume
- cls_u32: fix use after free in u32_destroy_key()
- netlink: put module reference if dump start fails
- tcp: purge write queue upon RST
- tuntap: correctly add the missing XDP flush
- tuntap: disable preemption during XDP processing
- virtio-net: disable NAPI only when enabled during XDP set
- cxgb4: fix trailing zero in CIM LA dump
- net/mlx5: Fix error handling when adding flow rules
- net: phy: Restore phy_resume() locking assumption
- tcp: tracepoint: only call trace_tcp_send_reset with full socket
- l2tp: don't use inet_shutdown on tunnel destroy
- l2tp: don't use inet_shutdown on ppp session destroy
- l2tp: fix races with tunnel socket close
- l2tp: fix race in pppol2tp_release with session object destroy
- l2tp: fix tunnel lookup use-after-free race
- [s390x] qeth: fix underestimated count of buffer elements
- [s390x] qeth: fix SETIP command handling
- [s390x] qeth: fix overestimated count of buffer elements
- [s390x] qeth: fix IP removal on offline cards
- [s390x] qeth: fix double-free on IP add/remove race
- [s390x] Revert "s390/qeth: fix using of ref counter for rxip addresses"
- [s390x] qeth: fix IP address lookup for L3 devices
- [s390x] qeth: fix IPA command submission race
- tcp: revert F-RTO middle-box workaround
- tcp: revert F-RTO extension to detect more spurious timeouts
- blk-mq: don't call io sched's .requeue_request when requeueing rq to
->dispatch
- media: m88ds3103: don't call a non-initalized function
- [x86] EDAC, sb_edac: Fix out of bound writes during DIMM configuration on
KNL
- [s390x] KVM: take care of clock-comparator sign control
- [s390x] KVM: provide only a single function for setting the tod (fix SCK)
- [s390x] KVM: consider epoch index on hotplugged CPUs
- [s390x] KVM: consider epoch index on TOD clock syncs
- nospec: Allow index argument to have const-qualified type
- [x86] mm: Fix {pmd,pud}_{set,clear}_flags()
- [armhf] orion: fix orion_ge00_switch_board_info initialization
- [armhf] dts: rockchip: Remove 1.8 GHz operation point from phycore som
- [armhf] mvebu: Fix broken PL310_ERRATA_753970 selects
- [x86] KVM: Fix SMRAM accessing even if VM is shutdown
- KVM: mmu: Fix overlap between public and private memslots
- [x86] KVM: Remove indirect MSR op calls from SPEC_CTRL
- [x86] KVM: move LAPIC initialization after VMCS creation
- [x86] KVM/VMX: Optimize vmx_vcpu_run() and svm_vcpu_run() by marking the
RDMSR path as unlikely()
- [x86] KVM: fix vcpu initialization with userspace lapic
- [x86] KVM: remove WARN_ON() for when vm_munmap() fails
- [x86] ACPI / bus: Parse tables as term_list for Dell XPS 9570 and
Precision M5530
- [armhf] dts: LogicPD SOM-LV: Fix I2C1 pinmux
- [armhf] dts: LogicPD Torpedo: Fix I2C1 pinmux
- [powerpc*] 64s/radix: Boot-time NULL pointer protection using a guard-PID
- md: only allow remove_and_add_spares when no sync_thread running.
- [x86] platform: dell-laptop: fix kbd_get_state's request value
https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.9
- bpf: fix mlock precharge on arraymaps
- bpf: fix memory leak in lpm_trie map_free callback function
- bpf: fix rcu lockdep warning for lpm_trie map_free callback
- [amd64] bpf: implement retpoline for tail call (CVE-2017-5715)
- [arm64] bpf: fix out of bounds access in tail call
- bpf: add schedule points in percpu arrays management
- bpf: allow xadd only on aligned memory
- [powerpc*] bpf, ppc64: fix out of bounds access in tail call
- scsi: mpt3sas: fix oops in error handlers after shutdown/unload
- scsi: mpt3sas: wait for and flush running commands on shutdown/unload
- [x86] KVM: fix backward migration with async_PF
https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.10
- RDMA/ucma: Limit possible option size
- RDMA/ucma: Check that user doesn't overflow QP state
- RDMA/mlx5: Fix integer overflow while resizing CQ
- bpf: cpumap: use GFP_KERNEL instead of GFP_ATOMIC in
__cpu_map_entry_alloc()
- IB/uverbs: Improve lockdep_check
- mac80211_hwsim: don't use WQ_MEM_RECLAIM
- [x86] drm/i915: Check for fused or unused pipes
- [x86] drm/i915/audio: fix check for av_enc_map overflow
- [x86] drm/i915: Fix rsvd2 mask when out-fence is returned
- [x86] drm/i915: Clear the in-use marker on execbuf failure
- [x86] drm/i915: Disable DC states around GMBUS on GLK
- [x86] drm/i915: Update watermark state correctly in sanitize_watermarks
- [x86] drm/i915: Try EDID bitbanging on HDMI after failed read
- [x86] drm/i915/perf: fix perf stream opening lock
- scsi: core: Avoid that ATA error handling can trigger a kernel hang or
oops (Closes: #891467)
- scsi: qla2xxx: Fix NULL pointer crash due to active timer for ABTS
- [x86] drm/i915: Always call to intel_display_set_init_power() in
resume_early.
- workqueue: Allow retrieval of current task's work struct
- drm: Allow determining if current task is output poll worker
- drm/nouveau: Fix deadlock on runtime suspend
- drm/radeon: Fix deadlock on runtime suspend
- drm/amdgpu: Fix deadlock on runtime suspend
- drm/nouveau: prefer XBGR2101010 for addfb ioctl
- drm/amd/powerplay/smu7: allow mclk switching with no displays
- drm/amd/powerplay/vega10: allow mclk switching with no displays
- Revert "drm/radeon/pm: autoswitch power state when in balanced mode"
- drm/amd/display: check for ipp before calling cursor operations
- drm/radeon: insist on 32-bit DMA for Cedar on PPC64/PPC64LE
- drm/amd/powerplay: fix power over limit on Fiji
- drm/amd/display: Default HDMI6G support to true. Log VBIOS table error.
- drm/amdgpu: used cached pcie gen info for SI (v2)
- drm/amdgpu: Notify sbios device ready before send request
- drm/radeon: fix KV harvesting
- drm/amdgpu: fix KV harvesting
- drm/amdgpu:Correct max uvd handles
- drm/amdgpu:Always save uvd vcpu_bo in VM Mode
- ovl: redirect_dir=nofollow should not follow redirect for opaque lower
- [mips*/octeon] irq: Check for null return on kzalloc allocation
- PCI: dwc: Fix enumeration end when reaching root subordinate
- Revert "Input: synaptics - Lenovo Thinkpad T460p devices should use RMI"
- bug: use %pB in BUG and stack protector failure
- lib/bug.c: exclude non-BUG/WARN exceptions from report_bug()
- mm/memblock.c: hardcode the end_pfn being -1
- Documentation/sphinx: Fix Directive import error
- loop: Fix lost writes caused by missing flag
- virtio_ring: fix num_free handling in error case
- [x390x] KVM: fix memory overwrites when not using SCA entries
- [arm64] mm: fix thinko in non-global page table attribute check
- IB/core: Fix missing RDMA cgroups release in case of failure to register
device
- Revert "nvme: create 'slaves' and 'holders' entries for hidden
controllers"
- kbuild: Handle builtin dtb file names containing hyphens
- dm bufio: avoid false-positive Wmaybe-uninitialized warning
- IB/mlx5: Fix incorrect size of klms in the memory region
- bcache: fix crashes in duplicate cache device register
- bcache: don't attach backing with duplicate UUID
- [x86] MCE: Save microcode revision in machine check records
- [x86] MCE: Serialize sysfs changes (CVE-2018-7995)
- perf tools: Fix trigger class trigger_on()
- [x86] spectre_v2: Don't check microcode versions when running under
hypervisors
- ALSA: hda/realtek - Add support headset mode for DELL WYSE
- ALSA: hda/realtek - Add headset mode support for Dell laptop
- ALSA: hda/realtek: Limit mic boost on T480
- ALSA: hda/realtek - Fix dock line-out volume on Dell Precision 7520
- ALSA: hda/realtek - Make dock sound work on ThinkPad L570
- ALSA: seq: Don't allow resizing pool in use
- ALSA: seq: More protection for concurrent write and ioctl races
- ALSA: hda - Fix a wrong FIXUP for alc289 on Dell machines
- ALSA: hda: add dock and led support for HP EliteBook 820 G3
- ALSA: hda: add dock and led support for HP ProBook 640 G2
- scsi: qla2xxx: Fix NULL pointer crash due to probe failure
- scsi: qla2xxx: Fix recursion while sending terminate exchange
- dt-bindings: Document mti,mips-cpc binding
- nospec: Kill array_index_nospec_mask_check()
- nospec: Include <asm/barrier.h> dependency
- [x86] entry: Reduce the code footprint of the 'idtentry' macro
- [x86] entry/64: Use 'xorl' for faster register clearing
- [x86] mm: Remove stale comment about KMEMCHECK
- [x86] asm: Improve how GEN_*_SUFFIXED_RMWcc() specify clobbers
- [x86] IO-APIC: Avoid warning in 32-bit builds
- [x86] LDT: Avoid warning in 32-bit builds with older gcc
- x86-64/realmode: Add instruction suffix
- Revert "x86/retpoline: Simplify vmexit_fill_RSB()"
- [x86] speculation: Use IBRS if available before calling into firmware
- [x86] retpoline: Support retpoline builds with Clang
- [x86] speculation, objtool: Annotate indirect calls/jumps for objtool
- [x86] speculation: Move firmware_restrict_branch_speculation_*() from C
to CPP
- [x86] paravirt, objtool: Annotate indirect calls
- [x86] boot, objtool: Annotate indirect jump in secondary_startup_64()
- [x86] mm/sme, objtool: Annotate indirect call in sme_encrypt_execute()
- objtool: Use existing global variables for options
- objtool: Add retpoline validation
- objtool: Add module specific retpoline rules
- objtool, retpolines: Integrate objtool with retpoline support more
closely
- objtool: Fix another switch table detection issue
- objtool: Fix 32-bit build
- [x86] kprobes: Fix kernel crash when probing .entry_trampoline code
- watchdog: hpwdt: SMBIOS check
- watchdog: hpwdt: Check source of NMI
- watchdog: hpwdt: fix unused variable warning
- watchdog: hpwdt: Remove legacy NMI sourcing.
- netfilter: add back stackpointer size checks (CVE-2018-1065)
- netfilter: ipt_CLUSTERIP: fix a race condition of proc file creation
- netfilter: xt_hashlimit: fix lock imbalance
- netfilter: x_tables: fix missing timer initialization in xt_LED
- netfilter: nat: cope with negative port range
- netfilter: IDLETIMER: be syzkaller friendly
- netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
(CVE-2018-1068)
- netfilter: bridge: ebt_among: add missing match size checks
- netfilter: ipv6: fix use-after-free Write in nf_nat_ipv6_manip_pkt
- netfilter: use skb_to_full_sk in ip6_route_me_harder
- tpm_tis: Move ilb_base_addr to tpm_tis_data
- tpm: Keep CLKRUN enabled throughout the duration of transmit_cmd()
- tpm: delete the TPM_TIS_CLK_ENABLE flag
- tpm: remove unused variables
- tpm: only attempt to disable the LPC CLKRUN if is already enabled
- [x86] xen: Calculate __max_logical_packages on PV domains
- scsi: qla2xxx: Fix system crash for Notify ack timeout handling
- scsi: qla2xxx: Fix gpnid error processing
- scsi: qla2xxx: Move session delete to driver work queue
- scsi: qla2xxx: Skip IRQ affinity for Target QPairs
- scsi: qla2xxx: Fix re-login for Nport Handle in use
- scsi: qla2xxx: Retry switch command on time out
- scsi: qla2xxx: Serialize GPNID for multiple RSCN
- scsi: qla2xxx: Fix login state machine stuck at GPDB
- scsi: qla2xxx: Fix NPIV host cleanup in target mode
- scsi: qla2xxx: Relogin to target port on a cable swap
- scsi: qla2xxx: Fix Relogin being triggered too fast
- scsi: qla2xxx: Fix PRLI state check
- scsi: qla2xxx: Fix abort command deadlock due to spinlock
- scsi: qla2xxx: Replace fcport alloc with qla2x00_alloc_fcport
- scsi: qla2xxx: Fix scan state field for fcport
- scsi: qla2xxx: Clear loop id after delete
- scsi: qla2xxx: Defer processing of GS IOCB calls
- scsi: qla2xxx: Remove aborting ELS IOCB call issued as part of timeout.
- scsi: qla2xxx: Fix system crash in qlt_plogi_ack_unref
- scsi: qla2xxx: Fix memory leak in dual/target mode
- NFS: Fix an incorrect type in struct nfs_direct_req
- pNFS: Prevent the layout header refcount going to zero in pnfs_roc()
- NFS: Fix unstable write completion
https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.11
- [x86] Treat R_X86_64_PLT32 as R_X86_64_PC32
- usb: host: xhci-rcar: add support for r8a77965
- xhci: Fix front USB ports on ASUS PRIME B350M-A
- xhci: fix endpoint context tracer output
- [sh4] serial: sh-sci: prevent lockup on full TTY buffers
- tty/serial: atmel: add new version check for usart
- uas: fix comparison for error code
- [x86] staging: comedi: fix comedi_nsamples_left.
- USB: storage: Add JMicron bridge 152d:2567 to unusual_devs.h
- usbip: vudc: fix null pointer dereference on udc->lock
- usb: quirks: add control message delay for 1b1c:1b20
- usb: usbmon: Read text within supplied buffer size
- usb: gadget: f_fs: Fix use-after-free in ffs_fs_kill_sb()
- [arm64,armhf] usb: dwc3: Fix lock-up on ID change during system
suspend/resume
- serial: 8250_pci: Add Brainboxes UC-260 4 port serial device
- serial: core: mark port as initialized in autoconfig
- earlycon: add reg-offset to physical address before mapping
- dm mpath: fix passing integrity data
- Revert "btrfs: use proper endianness accessors for super_copy"
- gfs2: Clean up {lookup,fillup}_metapath
- gfs2: Fixes to "Implement iomap for block_map" (2)
- [armhf] spi: imx: Fix failure path leak on GPIO request error correctly
- HID: multitouch: Only look at non touch fields in first packet of a
frame
- [powerpc*] KVM: Book3S HV: Avoid shifts by negative amounts
- drm/edid: set ELD connector type in drm_edid_to_eld()
- dma-buf/fence: Fix lock inversion within dma-fence-array
- video/hdmi: Allow "empty" HDMI infoframes
- [powerpc*] KVM: Book3S HV: Fix typo in kvmppc_hv_get_dirty_log_radix()
- HID: elo: clear BTN_LEFT mapping
- iwlwifi: mvm: rs: don't override the rate history in the search cycle
- [armhf] dts: exynos: Correct Trats2 panel reset line
- drm/amdgpu: fix get_max_engine_clock_in_mhz
- USB: ledtrig-usbport: fix of-node leak
- dt-bindings: serial: Add common rs485 binding for RTS polarity
- sched: Stop switched_to_rt() from sending IPIs to offline CPUs
- sched: Stop resched_cpu() from sending IPIs to offline CPUs
- crypto: chelsio - Fix an error code in chcr_hash_dma_map()
- crypto: keywrap - Add missing ULL suffixes for 64-bit constants
- crypto: cavium - fix memory leak on info
- test_firmware: fix setting old custom fw path back on exit
- drm/vblank: Fix vblank timestamp debugs
- net: ieee802154: adf7242: Fix bug if defined DEBUG
- perf report: Fix -D output for user metadata events
- net: xfrm: allow clearing socket xfrm policies.
- gpiolib: don't allow OPEN_DRAIN & OPEN_SOURCE flags simultaneously
- mtd: nand: fix interpretation of NAND_CMD_NONE in nand_command[_lp]()
- [arm64] net: thunderx: Set max queue count taking XDP_TX into account
- [armhf] dts: am335x-pepper: Fix the audio CODEC's reset pin
- [armhf] dts: omap3-n900: Fix the audio CODEC's reset pin
- mtd: nand: ifc: update bufnum mask for ver >= 2.0.0
- userns: Don't fail follow_automount based on s_user_ns
- xfrm: Fix xfrm_replay_overflow_offload_esn
- leds: pm8058: Silence pointer to integer size warning
- bpf: fix stack state printing in verifier log
- [armhf] drm/etnaviv: make THERMAL selectable
- ath10k: update tdls teardown state to target
- cpufreq: Fix governor module removal race
- [x86] KVM: Restart the guest when insn_len is zero and SEV is enabled
- drm/amdgpu:fix random missing of FLR NOTIFY
- scsi: lpfc: Fix crash during driver unload with running nvme traffic
- scsi: ses: don't ask for diagnostic pages repeatedly during probe
- [armhf] drm/sun4i: Fix format mask in DE2 driver
- [s390x] perf annotate: Fix unnecessary memory allocation for s390x
- perf annotate: Fix objdump comment parsing for Intel mov dissassembly
- iwlwifi: mvm: avoid dumping assert log when device is stopped
- drm/amdgpu:fix virtual dce bug
- drm/amdgpu: fix amdgpu_sync_resv v2
- bnxt_en: Uninitialized variable in bnxt_tc_parse_actions()
- [arm64] clk: qcom: msm8916: fix mnd_width for codec_digcodec
- mwifiex: cfg80211: do not change virtual interface during scan
processing
- ath10k: fix invalid STS_CAP_OFFSET_MASK
- tools/usbip: fixes build with musl libc toolchain
- [armhf] spi: sun6i: disable/unprepare clocks on remove
- bnxt_en: Don't print "Link speed -1 no longer supported" messages.
- scsi: core: scsi_get_device_flags_keyed(): Always return device flags
- scsi: devinfo: apply to HP XP the same flags as Hitachi VSP
- scsi: dh: add new rdac devices
- media: vsp1: Prevent suspending and resuming DRM pipelines
- dm raid: fix raid set size revalidation
- media: cpia2: Fix a couple off by one bugs
- [arm*] media: davinci: vpif_capture: add NULL check on devm_kzalloc
return value
- virtio_net: Disable interrupts if napi_complete_done rescheduled napi
- net: sched: drop qdisc_reset from dev_graft_qdisc
- veth: set peer GSO values
- [x86] drm/amdkfd: Fix memory leaks in kfd topology
- [powerpc*] modules: Don't try to restore r2 after a sibling call
- [powerpc/powerpc64,ppc64*] Don't trace irqs-off at interrupt return to
soft-disabled context
- [arm64] dts: renesas: salvator-common: Add EthernetAVB PHY reset
- agp/intel: Flush all chipset writes after updating the GGTT
- mac80211_hwsim: enforce PS_MANUAL_POLL to be set after PS_ENABLED
- mac80211: remove BUG() when interface type is invalid
- crypto: caam/qi - use correct print specifier for size_t
- mmc: mmc_test: Ensure command queue is disabled for testing
- Fix misannotated out-of-line _copy_to_user()
- ipvlan: add L2 check for packets arriving via virtual devices
- locking/locktorture: Fix num reader/writer corner cases
- ima: relax requiring a file signature for new files with zero length
- IB/mlx5: revisit -Wmaybe-uninitialized warning
- [arm64] dmaengine: qcom_hidma: check pending interrupts
- [x86] drm/i915/glk: Disable Guc and HuC on GLK
[ Ben Hutchings ]
* aufs: gen-patch: Fix Subject generation to skip SPDX-License-Identifier
* aufs: Update support patchset to aufs4.15-20180219 (no functional change)
* debian/control: Point Vcs URLs to Salsa
* [x86] sound/soc/intel: Enable SND_SOC_INTEL_SST_TOPLEVEL,
SND_SOC_INTEL_HASWELL, SND_SOC_INTEL_BAYTRAIL, SND_SST_ATOM_HIFI2_PLATFORM,
SND_SOC_INTEL_SKYLAKE as modules; re-enable dependent board drivers
(Closes: #892629)
* firmware_class: Refer to Debian wiki page when logging missing firmware
(Closes: #888405)
* amdgpu: Abort probing if firmware is not installed, as we do in radeon
* Bump ABI to 2
* [amd64] udeb: Add vmd to scsi-modules, required for NVMe on some systems
(Closes: #891482)
* udeb: Update patterns for PHY modules included in usb-modules
(Closes: #893154)
[ Uwe Kleine-König ]
* netfilter: enable NFT_FIB_NETDEV as module
[ Thadeu Lima de Souza Cascardo ]
* [powerpc,ppc64el,ppc64] Enable CRASH_DUMP (Closes: #883432)
[ Bastian Blank ]
* Drop note about Xen from long descriptions.
[ Vagrant Cascadian ]
* [arm64] Enable ROCKCHIP_IODOMAIN as a module, to enable PCIe reset.
* [arm64] Enable REGULATOR_FAN53555 as a module, enabling cpufreq to
work on rk3399 A72 cores.
* [arm64] Apply patch from linux-next to fix eMMC corruption on
Odroid-C2 (Closes: #879072).
[ Salvatore Bonaccorso ]
* mac80211_hwsim: fix possible memory leak in hwsim_new_radio_nl()
(CVE-2018-8087)
-- Salvatore Bonaccorso <carnil@debian.org> Tue, 20 Mar 2018 09:31:07 +0100
… lists a bunch of CVEs and more generally a huge pile of bugfixes. So if it doesn’t break stuff for us I think we should upgrade in 3.6.2.
#5 Updated by intrigeri 2018-03-27 11:51:54
- Feature Branch set to bugfix/15457-Linux-4.15.0-2
#6 Updated by intrigeri 2018-03-27 17:50:45
- Subject changed from Consider upgrading Linux in Tails 3.6.2 to Upgrade Linux in Tails 3.6.2
- Assignee changed from intrigeri to anonym
- % Done changed from 10 to 50
- QA Check set to Ready for QA
- partial test suite passed on Jenkins: https://jenkins.tails.boum.org/view/Tails_ISO/job/test_Tails_ISO_bugfix-15457-linux-4.15.0-2/1/
- full test suite run locally passed except 3 scenarios that are known to be fragile (a recently added one that I’ve never seen passed locally, a well-known race condition in an OpenPGP Applet test, and
Bug #11711)
post-merge steps
Once you’ve merged this into stable please:
- bump the expiration date of the newly used APT snapshot
- merge stable into devel and revert commit:9d5fb811ba3b3e681f7bc42be9b6fbaaccd8a50d there
- close
Bug #15456
#7 Updated by intrigeri 2018-03-27 17:50:54
- blocks deleted (
)Bug #15456: Upgrade Linux to 4.15.0-2
#8 Updated by intrigeri 2018-03-27 17:51:02
- blocks
Bug #15456: Upgrade Linux to 4.15.0-2 added
#9 Updated by anonym 2018-03-29 10:05:05
- Status changed from In Progress to Fix committed
- Assignee deleted (
anonym) - % Done changed from 50 to 100
- QA Check changed from Ready for QA to Pass
#10 Updated by anonym 2018-03-30 16:59:40
- Status changed from Fix committed to Resolved