Bug #15457

Upgrade Linux in Tails 3.6.2

Added by intrigeri 2018-03-27 10:17:05 . Updated 2018-03-30 16:59:40 .

Status:
Resolved
Priority:
Normal
Assignee:
Category:
Target version:
Start date:
2018-03-22
Due date:
% Done:

100%

Feature Branch:
bugfix/15457-Linux-4.15.0-2
Type of work:
Research
Blueprint:

Starter:
Affected tool:
Deliverable for:

Description


Subtasks


Related issues

Related to Tails - Bug #15435: Consider upgrading Linux in Tails 3.7 Resolved 2018-03-22
Blocks Tails - Feature #13245: Core work 2018Q1: Foundations Team Resolved 2017-06-29
Blocks Tails - Bug #15456: Upgrade Linux to 4.15.0-2 Resolved 2018-03-27

History

#1 Updated by intrigeri 2018-03-27 10:17:19

  • blocked by Bug #15456: Upgrade Linux to 4.15.0-2 added

#2 Updated by intrigeri 2018-03-27 10:17:31

  • related to Bug #15435: Consider upgrading Linux in Tails 3.7 added

#3 Updated by intrigeri 2018-03-27 10:17:52

#4 Updated by intrigeri 2018-03-27 11:49:53

  • Status changed from Confirmed to In Progress
  • % Done changed from 0 to 10
linux (4.15.11-1) unstable; urgency=medium

  * New upstream stable update:
    https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.5
    - IB/umad: Fix use of unprotected device pointer
    - IB/qib: Fix comparison error with qperf compare/swap test
    - IB/mlx4: Fix incorrectly releasing steerable UD QPs when have only ETH
      ports
    - IB/core: Fix two kernel warnings triggered by rxe registration
    - IB/core: Fix ib_wc structure size to remain in 64 bytes boundary
    - IB/core: Avoid a potential OOPs for an unused optional parameter
    - RDMA/rxe: Fix a race condition related to the QP error state
    - RDMA/rxe: Fix a race condition in rxe_requester()
    - RDMA/rxe: Fix rxe_qp_cleanup()
    - [powerpc*] cpufreq: powernv: Dont assume distinct pstate values for
      nominal and pmin
    - swiotlb: suppress warning when __GFP_NOWARN is set
    - PM / devfreq: Propagate error from devfreq_add_device()
    - mwifiex: resolve reset vs. remove()/shutdown() deadlocks
    - ocfs2: try a blocking lock before return AOP_TRUNCATED_PAGE
    - trace_uprobe: Display correct offset in uprobe_events
    - [powerpc*] radix: Remove trace_tlbie call from radix__flush_tlb_all
    - [powerpc*] kernel: Block interrupts when updating TIDR
    - [powerpc*] vas: Don't set uses_vas for kernel windows
    - [powerpc*] numa: Invalidate numa_cpu_lookup_table on cpu remove
    - [powerpc*] mm: Flush radix process translations when setting MMU type
    - [powerpc*] xive: Use hw CPU ids when configuring the CPU queues
    - dma-buf: fix reservation_object_wait_timeout_rcu once more v2
    - [s390x] fix handling of -1 in set{,fs}[gu]id16 syscalls
    - [arm64] dts: msm8916: Correct ipc references for smsm
    - [x86] gpu: add CFL to early quirks
    - [x86] kexec: Make kexec (mostly) work in 5-level paging mode
    - [x86] xen: init %gs very early to avoid page faults with stack protector
    - [x86] PM: Make APM idle driver initialize polling state
    - mm, memory_hotplug: fix memmap initialization
    - [amd64] entry: Clear extra registers beyond syscall arguments, to reduce
      speculation attack surface
    - [amd64] entry/compat: Clear registers for compat syscalls, to reduce
      speculation attack surface
    - [armhf] crypto: sun4i_ss_prng - fix return value of sun4i_ss_prng_generate
    - [armhf] crypto: sun4i_ss_prng - convert lock to _bh in
      sun4i_ss_prng_generate
    - [powerpc*] mm/radix: Split linear mapping on hot-unplug
    - [x86] speculation: Update Speculation Control microcode blacklist
    - [x86] speculation: Correct Speculation Control microcode blacklist again
    - [x86] Revert "x86/speculation: Simplify
      indirect_branch_prediction_barrier()"
    - [x86] KVM: Reduce retpoline performance impact in
      slot_handle_level_range(), by always inlining iterator helper methods
    - [X86] nVMX: Properly set spec_ctrl and pred_cmd before merging MSRs
    - [x86] KVM/nVMX: Set the CPU_BASED_USE_MSR_BITMAPS if we have a valid L02
      MSR bitmap
    - [x86] speculation: Clean up various Spectre related details
    - PM / runtime: Update links_count also if !CONFIG_SRCU
    - PM: cpuidle: Fix cpuidle_poll_state_init() prototype
    - [x86] platform: wmi: fix off-by-one write in wmi_dev_probe()
    - [amd64] entry: Clear registers for exceptions/interrupts, to reduce
      speculation attack surface
    - [amd64] entry: Merge SAVE_C_REGS and SAVE_EXTRA_REGS, remove unused
      extensions
    - [amd64] entry: Merge the POP_C_REGS and POP_EXTRA_REGS macros into a
      single POP_REGS macro
    - [amd64] entry: Interleave XOR register clearing with PUSH instructions
    - [amd64] entry: Introduce the PUSH_AND_CLEAN_REGS macro
    - [amd64] entry: Use PUSH_AND_CLEAN_REGS in more cases
    - [amd64] entry: Get rid of the ALLOC_PT_GPREGS_ON_STACK and
      SAVE_AND_CLEAR_REGS macros
    - [amd64] entry: Indent PUSH_AND_CLEAR_REGS and POP_REGS properly
    - [amd64] entry: Fix paranoid_entry() frame pointer warning
    - [amd64] entry: Remove the unused 'icebp' macro
    - gfs2: Fixes to "Implement iomap for block_map"
    - objtool: Fix segfault in ignore_unreachable_insn()
    - [x86] debug, objtool: Annotate WARN()-related UD2 as reachable
    - [x86] debug: Use UD2 for WARN()
    - [x86] speculation: Fix up array_index_nospec_mask() asm constraint
    - nospec: Move array_index_nospec() parameter checking into separate macro
    - [x86] speculation: Add <asm/msr-index.h> dependency
    - [x86] mm: Rename flush_tlb_single() and flush_tlb_one() to
      __flush_tlb_one_[user|kernel]()
    - [x86] cpu: Rename cpu_data.x86_mask to cpu_data.x86_stepping
    - [x86] spectre: Fix an error message
    - [x86] cpu: Change type of x86_cache_size variable to unsigned int
    - [amd64] entry: Fix CR3 restore in paranoid_exit()
    - drm/ttm: Don't add swapped BOs to swap-LRU list
    - drm/ttm: Fix 'buf' pointer update in ttm_bo_vm_access_kmap() (v2)
    - drm/qxl: unref cursor bo when finished with it
    - drm/qxl: reapply cursor after resetting primary
    - drm/amd/powerplay: Fix smu_table_entry.handle type
    - drm/ast: Load lut in crtc_commit
    - drm: Check for lessee in DROP_MASTER ioctl
    - [arm64] Add missing Falkor part number for branch predictor hardening
    - drm/radeon: Add dpm quirk for Jet PRO (v2)
    - drm/radeon: adjust tested variable
    - [x86] smpboot: Fix uncore_pci_remove() indexing bug when hot-removing a
      physical CPU
    - [powerpc*] rtc-opal: Fix handling of firmware error codes, prevent busy
      loops
    - mbcache: initialize entry->e_referenced in mb_cache_entry_create()
    - mmc: sdhci: Implement an SDHCI-specific bounce buffer
    - [armhf,arm64] mmc: bcm2835: Don't overwrite max frequency unconditionally
    - [arm64] Revert "mmc: meson-gx: include tx phase in the tuning process"
    - mlx5: fix mlx5_get_vector_affinity to start from completion vector 0
    - [x86] Revert "apple-gmux: lock iGP IO to protect from vgaarb changes"
    - ext4: fix a race in the ext4 shutdown path
    - ext4: save error to disk in __ext4_grp_locked_error()
    - ext4: correct documentation for grpid mount option
    - mm: Fix memory size alignment in devm_memremap_pages_release()
    - [mips*] Fix typo BIG_ENDIAN to CPU_BIG_ENDIAN
    - [mips*] CPS: Fix MIPS_ISA_LEVEL_RAW fallout
    - [mips*] Fix incorrect mem=X@Y handling
    - [arm64] PCI: Disable MSI for HiSilicon Hip06/Hip07 only in Root Port mode
    - [armhf,arm64] PCI: iproc: Fix NULL pointer dereference for BCMA
    - [x86] PCI: pciehp: Assume NoCompl+ for Thunderbolt ports
    - console/dummy: leave .con_font_get set to NULL
    - rbd: whitelist RBD_FEATURE_OPERATIONS feature bit
    - xen: Fix {set,clear}_foreign_p2m_mapping on autotranslating guests
    - xenbus: track caller request id
    - seq_file: fix incomplete reset on read from zero offset
    - tracing: Fix parsing of globs with a wildcard at the beginning
    - mpls, nospec: Sanitize array index in mpls_label_ok() (CVE-2017-5753)
    - rtlwifi: rtl8821ae: Fix connection lost problem correctly
    - [arm64] proc: Set PTE_NG for table entries to avoid traversing them twice
    - xprtrdma: Fix calculation of ri_max_send_sges
    - xprtrdma: Fix BUG after a device removal
    - blk-wbt: account flush requests correctly
    - target/iscsi: avoid NULL dereference in CHAP auth error path
    - iscsi-target: make sure to wake up sleeping login worker
    - dm: correctly handle chained bios in dec_pending()
    - Btrfs: fix deadlock in run_delalloc_nocow
    - Btrfs: fix crash due to not cleaning up tree log block's dirty bits
    - Btrfs: fix extent state leak from tree log
    - Btrfs: fix btrfs_evict_inode to handle abnormal inodes correctly
    - Btrfs: fix use-after-free on root->orphan_block_rsv
    - Btrfs: fix unexpected -EEXIST when creating new inode
    - 9p/trans_virtio: discard zero-length reply
    - mtd: nand: vf610: set correct ooblayout
    - ALSA: hda - Fix headset mic detection problem for two Dell machines
    - ALSA: usb-audio: Fix UAC2 get_ctl request with a RANGE attribute
    - ALSA: hda/realtek - Add headset mode support for Dell laptop
    - ALSA: hda/realtek - Enable Thinkpad Dock device for ALC298 platform
    - ALSA: hda/realtek: PCI quirk for Fujitsu U7x7
    - ALSA: usb-audio: add implicit fb quirk for Behringer UFX1204
    - ALSA: usb: add more device quirks for USB DSD devices
    - ALSA: seq: Fix racy pool initializations (CVE-2018-7566)
    - [armhf,arm64] mvpp2: fix multicast address filter
    - usb: Move USB_UHCI_BIG_ENDIAN_* out of USB_SUPPORT
    - [x86] mm, mm/hwpoison: Don't unconditionally unmap kernel 1:1 pages
    - [armhf] dts: exynos: fix RTC interrupt for exynos5410
    - [arm64] dts: msm8916: Add missing #phy-cells
     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.6
    - tun: fix tun_napi_alloc_frags() frag allocator
    - ptr_ring: fail early if queue occupies more than KMALLOC_MAX_SIZE
    - ptr_ring: try vmalloc() when kmalloc() fails
    - selinux: ensure the context is NUL terminated in
      security_context_to_sid_core()
    - selinux: skip bounded transition processing if the policy isn't loaded
    - media: pvrusb2: properly check endpoint types
    - [x86] crypto: twofish-3way - Fix %rbp usage
    - blk_rq_map_user_iov: fix error override
    - [x86] KVM: fix escape of guest dr6 to the host
    - kcov: detect double association with a single task
    - netfilter: x_tables: fix int overflow in xt_alloc_table_info()
    - netfilter: x_tables: avoid out-of-bounds reads in
      xt_request_find_{match|target}
    - netfilter: ipt_CLUSTERIP: fix out-of-bounds accesses in
      clusterip_tg_check()
    - netfilter: on sockopt() acquire sock lock only in the required scope
    - netfilter: xt_cgroup: initialize info->priv in cgroup_mt_check_v1()
    - netfilter: xt_RATEEST: acquire xt_rateest_mutex for hash insert
    - rds: tcp: correctly sequence cleanup on netns deletion.
    - rds: tcp: atomically purge entries from rds_tcp_conn_list during netns
      delete
    - net: avoid skb_warn_bad_offload on IS_ERR
    - net_sched: gen_estimator: fix lockdep splat
    - [arm64] dts: add #cooling-cells to CPU nodes
    - dn_getsockoptdecnet: move nf_{get/set}sockopt outside sock lock
    - xhci: Fix NULL pointer in xhci debugfs
    - xhci: Fix xhci debugfs devices node disappearance after hibernation
    - xhci: xhci debugfs device nodes weren't removed after device plugged out
    - xhci: fix xhci debugfs errors in xhci_stop
    - usbip: keep usbip_device sockfd state in sync with tcp_socket
    - [x86] mei: me: add cannon point device ids
    - [x86] mei: me: add cannon point device ids for 4th device
    - vmalloc: fix __GFP_HIGHMEM usage for vmalloc_32 on 32b systems
    https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.7
    - netfilter: drop outermost socket lock in getsockopt()
    - [arm64] mm: don't write garbage into TTBR1_EL1 register
    - kconfig.h: Include compiler types to avoid missed struct attributes
    - scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info
    - [mips*] Drop spurious __unused in struct compat_flock
    - cfg80211: fix cfg80211_beacon_dup
    - i2c: designware: must wait for enable
    - [armhf,arm64] i2c: bcm2835: Set up the rising/falling edge delays
    - X.509: fix BUG_ON() when hash algorithm is unsupported
    - X.509: fix NULL dereference when restricting key with unsupported_sig
    - PKCS#7: fix certificate chain verification
    - PKCS#7: fix certificate blacklisting
    - [x86] genirq/matrix: Handle CPU offlining proper
    - RDMA/uverbs: Protect from races between lookup and destroy of uobjects
    - RDMA/uverbs: Protect from command mask overflow
    - RDMA/uverbs: Fix bad unlock balance in ib_uverbs_close_xrcd
    - RDMA/uverbs: Fix circular locking dependency
    - RDMA/uverbs: Sanitize user entered port numbers prior to access it
    - iio: buffer: check if a buffer has been set up when poll is called
    - Kbuild: always define endianess in kconfig.h
    - [x86] apic/vector: Handle vector release on CPU unplug correctly
    - mm, swap, frontswap: fix THP swap if frontswap enabled
    - mm: don't defer struct page initialization for Xen pv guests
    - uapi/if_ether.h: move __UAPI_DEF_ETHHDR libc define
    - [armhf,arm64] irqchip/gic-v3: Use wmb() instead of smb_wmb() in
      gic_raise_softirq()
    - [mips*] irqchip/mips-gic: Avoid spuriously handling masked interrupts
    - PCI/cxgb4: Extend T3 PCI quirk to T4+ devices
    - [x86] net: thunderbolt: Tear down connection properly on suspend
    - [x86] net: thunderbolt: Run disconnect flow asynchronously when logout is
      received
    - ohci-hcd: Fix race condition caused by ohci_urb_enqueue() and
      io_watchdog_func()
    - usb: ohci: Proper handling of ed_rm_list to handle race condition between
      usb_kill_urb() and finish_unlinks()
    - [arm64] Remove unimplemented syscall log message
    - [arm64] Disable unhandled signal log messages by default
    - [arm64] cpufeature: Fix CTR_EL0 field definitions
    - USB: Add delay-init quirk for Corsair K70 RGB keyboards
    - drm/edid: Add 6 bpc quirk for CPT panel in Asus UX303LA
    - usb: host: ehci: use correct device pointer for dma ops
    - usb: dwc3: gadget: Set maxpacket size for ep0 IN
    - usb: dwc3: ep0: Reset TRB counter for ep0 IN
    - usb: ldusb: add PIDs for new CASSY devices supported by this driver
    - Revert "usb: musb: host: don't start next rx urb if current one failed"
    - usb: gadget: f_fs: Process all descriptors during bind
    - usb: gadget: f_fs: Use config_ep_by_speed()
    - drm/cirrus: Load lut in crtc_commit
    - drm/atomic: Fix memleak on ERESTARTSYS during non-blocking commits
    - drm: Handle unexpected holes in color-eviction
    - drm/amdgpu: disable MMHUB power gating on raven
    - drm/amdgpu: fix VA hole handling on Vega10 v3
    - drm/amdgpu: Add dpm quirk for Jet PRO (v2)
    - drm/amdgpu: only check mmBIF_IOV_FUNC_IDENTIFIER on tonga/fiji
    - drm/amdgpu: add atpx quirk handling (v2)
    - drm/amdgpu: Avoid leaking PM domain on driver unbind (v2)
    - drm/amdgpu: add new device to use atpx quirk
    - [arm64] __show_regs: Only resolve kernel symbols when running at EL1
    - [x86] drm/i915/breadcrumbs: Ignore unsubmitted signalers
    https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.8
    - vsprintf: avoid misleading "(null)" for %px
    - hrtimer: Ensure POSIX compliance (relative CLOCK_REALTIME hrtimers)
    - ipmi_si: Fix error handling of platform device
    - [x86] platform: dell-laptop: Allocate buffer on heap rather than globally
    - [powerpc*] pseries: Enable RAS hotplug events later
    - Bluetooth: btusb: Use DMI matching for QCA reset_resume quirking
    - ixgbe: fix crash in build_skb Rx code path
    - [x86] tpm: st33zp24: fix potential buffer overruns caused by bit glitches
      on the bus
    - tpm: fix potential buffer overruns caused by bit glitches on the bus
    - [x86] tpm_i2c_infineon: fix potential buffer overruns caused by bit
      glitches on the bus
    - [x86] tpm_i2c_nuvoton: fix potential buffer overruns caused by bit
      glitches on the bus
    - [x86] tpm_tis: fix potential buffer overruns caused by bit glitches on
      the bus
    - ALSA: usb-audio: Add a quirck for B&W PX headphones
    - ALSA: control: Fix memory corruption risk in snd_ctl_elem_read
    - [x86] ALSA: x86: Fix missing spinlock and mutex initializations
    - ALSA: hda: Add a power_save blacklist
    - ALSA: hda - Fix pincfg at resume on Lenovo T470 dock
    - mmc: sdhci-pci: Fix S0i3 for Intel BYT-based controllers
    - [armhf,arm64] mmc: dw_mmc-k3: Fix out-of-bounds access through DT alias
    - [armhf,arm64] mmc: dw_mmc: Avoid accessing registers in runtime suspended
      state
    - [armhf,arm64] mmc: dw_mmc: Factor out dw_mci_init_slot_caps
    - [armhf,arm64] mmc: dw_mmc: Fix out-of-bounds access for slot's caps
    - timers: Forward timer base before migrating timers
    - [hppa] Use cr16 interval timers unconditionally on qemu
    - [hppa] Reduce irq overhead when run in qemu
    - [hppa] Fix ordering of cache and TLB flushes
    - [hppa] Hide virtual kernel memory layout
    - btrfs: use proper endianness accessors for super_copy
    - block: fix the count of PGPGOUT for WRITE_SAME
    - block: kyber: fix domain token leak during requeue
    - block: pass inclusive 'lend' parameter to truncate_inode_pages_range
    - vfio: disable filesystem-dax page pinning
    - dax: fix vma_is_fsdax() helper
    - direct-io: Fix sleep in atomic due to sync AIO
    - [x86] xen: Zero MSR_IA32_SPEC_CTRL before suspend
    - [x86] cpu_entry_area: Sync cpu_entry_area to initial_page_table
    - bridge: check brport attr show in brport_show
    - fib_semantics: Don't match route with mismatching tclassid
    - hdlc_ppp: carrier detect ok, don't turn off negotiation
    - [arm64] net: amd-xgbe: fix comparison to bitshift when dealing with a mask
    - [armhf] net: ethernet: ti: cpsw: fix net watchdog timeout
    - net: fix race on decreasing number of TX queues
    - net: ipv4: don't allow setting net.ipv4.route.min_pmtu below 68
    - netlink: ensure to loop over all netns in genlmsg_multicast_allns()
    - net: sched: report if filter is too large to dump
    - ppp: prevent unregistered channels from connecting to PPP units
    - sctp: verify size of a new chunk in _sctp_make_chunk() (CVE-2018-5803)
    - udplite: fix partial checksum initialization
    - net/mlx5e: Fix TCP checksum in LRO buffers
    - sctp: fix dst refcnt leak in sctp_v4_get_dst
    - net/mlx5e: Specify numa node when allocating drop rq
    - net: phy: fix phy_start to consider PHY_IGNORE_INTERRUPT
    - tcp: Honor the eor bit in tcp_mtu_probe
    - rxrpc: Fix send in rxrpc_send_data_packet()
    - tcp_bbr: better deal with suboptimal GSO
    - doc: Change the min default value of tcp_wmem/tcp_rmem.
    - net/mlx5e: Fix loopback self test when GRO is off
    - net_sched: gen_estimator: fix broken estimators based on percpu stats
    - net/sched: cls_u32: fix cls_u32 on filter replace
    - sctp: do not pr_err for the duplicated node in transport rhlist
    - net: ipv4: Set addr_type in hash_keys for forwarded case
    - sctp: fix dst refcnt leak in sctp_v6_get_dst()
    - bridge: Fix VLAN reference count problem
    - net/mlx5e: Verify inline header size do not exceed SKB linear size
    - tls: Use correct sk->sk_prot for IPV6
    - [arm64] amd-xgbe: Restore PCI interrupt enablement setting on resume
    - cls_u32: fix use after free in u32_destroy_key()
    - netlink: put module reference if dump start fails
    - tcp: purge write queue upon RST
    - tuntap: correctly add the missing XDP flush
    - tuntap: disable preemption during XDP processing
    - virtio-net: disable NAPI only when enabled during XDP set
    - cxgb4: fix trailing zero in CIM LA dump
    - net/mlx5: Fix error handling when adding flow rules
    - net: phy: Restore phy_resume() locking assumption
    - tcp: tracepoint: only call trace_tcp_send_reset with full socket
    - l2tp: don't use inet_shutdown on tunnel destroy
    - l2tp: don't use inet_shutdown on ppp session destroy
    - l2tp: fix races with tunnel socket close
    - l2tp: fix race in pppol2tp_release with session object destroy
    - l2tp: fix tunnel lookup use-after-free race
    - [s390x] qeth: fix underestimated count of buffer elements
    - [s390x] qeth: fix SETIP command handling
    - [s390x] qeth: fix overestimated count of buffer elements
    - [s390x] qeth: fix IP removal on offline cards
    - [s390x] qeth: fix double-free on IP add/remove race
    - [s390x] Revert "s390/qeth: fix using of ref counter for rxip addresses"
    - [s390x] qeth: fix IP address lookup for L3 devices
    - [s390x] qeth: fix IPA command submission race
    - tcp: revert F-RTO middle-box workaround
    - tcp: revert F-RTO extension to detect more spurious timeouts
    - blk-mq: don't call io sched's .requeue_request when requeueing rq to
      ->dispatch
    - media: m88ds3103: don't call a non-initalized function
    - [x86] EDAC, sb_edac: Fix out of bound writes during DIMM configuration on
      KNL
    - [s390x] KVM: take care of clock-comparator sign control
    - [s390x] KVM: provide only a single function for setting the tod (fix SCK)
    - [s390x] KVM: consider epoch index on hotplugged CPUs
    - [s390x] KVM: consider epoch index on TOD clock syncs
    - nospec: Allow index argument to have const-qualified type
    - [x86] mm: Fix {pmd,pud}_{set,clear}_flags()
    - [armhf] orion: fix orion_ge00_switch_board_info initialization
    - [armhf] dts: rockchip: Remove 1.8 GHz operation point from phycore som
    - [armhf] mvebu: Fix broken PL310_ERRATA_753970 selects
    - [x86] KVM: Fix SMRAM accessing even if VM is shutdown
    - KVM: mmu: Fix overlap between public and private memslots
    - [x86] KVM: Remove indirect MSR op calls from SPEC_CTRL
    - [x86] KVM: move LAPIC initialization after VMCS creation
    - [x86] KVM/VMX: Optimize vmx_vcpu_run() and svm_vcpu_run() by marking the
      RDMSR path as unlikely()
    - [x86] KVM: fix vcpu initialization with userspace lapic
    - [x86] KVM: remove WARN_ON() for when vm_munmap() fails
    - [x86] ACPI / bus: Parse tables as term_list for Dell XPS 9570 and
      Precision M5530
    - [armhf] dts: LogicPD SOM-LV: Fix I2C1 pinmux
    - [armhf] dts: LogicPD Torpedo: Fix I2C1 pinmux
    - [powerpc*] 64s/radix: Boot-time NULL pointer protection using a guard-PID
    - md: only allow remove_and_add_spares when no sync_thread running.
    - [x86] platform: dell-laptop: fix kbd_get_state's request value
    https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.9
    - bpf: fix mlock precharge on arraymaps
    - bpf: fix memory leak in lpm_trie map_free callback function
    - bpf: fix rcu lockdep warning for lpm_trie map_free callback
    - [amd64] bpf: implement retpoline for tail call (CVE-2017-5715)
    - [arm64] bpf: fix out of bounds access in tail call
    - bpf: add schedule points in percpu arrays management
    - bpf: allow xadd only on aligned memory
    - [powerpc*] bpf, ppc64: fix out of bounds access in tail call
    - scsi: mpt3sas: fix oops in error handlers after shutdown/unload
    - scsi: mpt3sas: wait for and flush running commands on shutdown/unload
    - [x86] KVM: fix backward migration with async_PF
    https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.10
    - RDMA/ucma: Limit possible option size
    - RDMA/ucma: Check that user doesn't overflow QP state
    - RDMA/mlx5: Fix integer overflow while resizing CQ
    - bpf: cpumap: use GFP_KERNEL instead of GFP_ATOMIC in
      __cpu_map_entry_alloc()
    - IB/uverbs: Improve lockdep_check
    - mac80211_hwsim: don't use WQ_MEM_RECLAIM
    - [x86] drm/i915: Check for fused or unused pipes
    - [x86] drm/i915/audio: fix check for av_enc_map overflow
    - [x86] drm/i915: Fix rsvd2 mask when out-fence is returned
    - [x86] drm/i915: Clear the in-use marker on execbuf failure
    - [x86] drm/i915: Disable DC states around GMBUS on GLK
    - [x86] drm/i915: Update watermark state correctly in sanitize_watermarks
    - [x86] drm/i915: Try EDID bitbanging on HDMI after failed read
    - [x86] drm/i915/perf: fix perf stream opening lock
    - scsi: core: Avoid that ATA error handling can trigger a kernel hang or
      oops (Closes: #891467)
    - scsi: qla2xxx: Fix NULL pointer crash due to active timer for ABTS
    - [x86] drm/i915: Always call to intel_display_set_init_power() in
      resume_early.
    - workqueue: Allow retrieval of current task's work struct
    - drm: Allow determining if current task is output poll worker
    - drm/nouveau: Fix deadlock on runtime suspend
    - drm/radeon: Fix deadlock on runtime suspend
    - drm/amdgpu: Fix deadlock on runtime suspend
    - drm/nouveau: prefer XBGR2101010 for addfb ioctl
    - drm/amd/powerplay/smu7: allow mclk switching with no displays
    - drm/amd/powerplay/vega10: allow mclk switching with no displays
    - Revert "drm/radeon/pm: autoswitch power state when in balanced mode"
    - drm/amd/display: check for ipp before calling cursor operations
    - drm/radeon: insist on 32-bit DMA for Cedar on PPC64/PPC64LE
    - drm/amd/powerplay: fix power over limit on Fiji
    - drm/amd/display: Default HDMI6G support to true. Log VBIOS table error.
    - drm/amdgpu: used cached pcie gen info for SI (v2)
    - drm/amdgpu: Notify sbios device ready before send request
    - drm/radeon: fix KV harvesting
    - drm/amdgpu: fix KV harvesting
    - drm/amdgpu:Correct max uvd handles
    - drm/amdgpu:Always save uvd vcpu_bo in VM Mode
    - ovl: redirect_dir=nofollow should not follow redirect for opaque lower
    - [mips*/octeon] irq: Check for null return on kzalloc allocation
    - PCI: dwc: Fix enumeration end when reaching root subordinate
    - Revert "Input: synaptics - Lenovo Thinkpad T460p devices should use RMI"
    - bug: use %pB in BUG and stack protector failure
    - lib/bug.c: exclude non-BUG/WARN exceptions from report_bug()
    - mm/memblock.c: hardcode the end_pfn being -1
    - Documentation/sphinx: Fix Directive import error
    - loop: Fix lost writes caused by missing flag
    - virtio_ring: fix num_free handling in error case
    - [x390x] KVM: fix memory overwrites when not using SCA entries
    - [arm64] mm: fix thinko in non-global page table attribute check
    - IB/core: Fix missing RDMA cgroups release in case of failure to register
      device
    - Revert "nvme: create 'slaves' and 'holders' entries for hidden
      controllers"
    - kbuild: Handle builtin dtb file names containing hyphens
    - dm bufio: avoid false-positive Wmaybe-uninitialized warning
    - IB/mlx5: Fix incorrect size of klms in the memory region
    - bcache: fix crashes in duplicate cache device register
    - bcache: don't attach backing with duplicate UUID
    - [x86] MCE: Save microcode revision in machine check records
    - [x86] MCE: Serialize sysfs changes (CVE-2018-7995)
    - perf tools: Fix trigger class trigger_on()
    - [x86] spectre_v2: Don't check microcode versions when running under
      hypervisors
    - ALSA: hda/realtek - Add support headset mode for DELL WYSE
    - ALSA: hda/realtek - Add headset mode support for Dell laptop
    - ALSA: hda/realtek: Limit mic boost on T480
    - ALSA: hda/realtek - Fix dock line-out volume on Dell Precision 7520
    - ALSA: hda/realtek - Make dock sound work on ThinkPad L570
    - ALSA: seq: Don't allow resizing pool in use
    - ALSA: seq: More protection for concurrent write and ioctl races
    - ALSA: hda - Fix a wrong FIXUP for alc289 on Dell machines
    - ALSA: hda: add dock and led support for HP EliteBook 820 G3
    - ALSA: hda: add dock and led support for HP ProBook 640 G2
    - scsi: qla2xxx: Fix NULL pointer crash due to probe failure
    - scsi: qla2xxx: Fix recursion while sending terminate exchange
    - dt-bindings: Document mti,mips-cpc binding
    - nospec: Kill array_index_nospec_mask_check()
    - nospec: Include <asm/barrier.h> dependency
    - [x86] entry: Reduce the code footprint of the 'idtentry' macro
    - [x86] entry/64: Use 'xorl' for faster register clearing
    - [x86] mm: Remove stale comment about KMEMCHECK
    - [x86] asm: Improve how GEN_*_SUFFIXED_RMWcc() specify clobbers
    - [x86] IO-APIC: Avoid warning in 32-bit builds
    - [x86] LDT: Avoid warning in 32-bit builds with older gcc
    - x86-64/realmode: Add instruction suffix
    - Revert "x86/retpoline: Simplify vmexit_fill_RSB()"
    - [x86] speculation: Use IBRS if available before calling into firmware
    - [x86] retpoline: Support retpoline builds with Clang
    - [x86] speculation, objtool: Annotate indirect calls/jumps for objtool
    - [x86] speculation: Move firmware_restrict_branch_speculation_*() from C
      to CPP
    - [x86] paravirt, objtool: Annotate indirect calls
    - [x86] boot, objtool: Annotate indirect jump in secondary_startup_64()
    - [x86] mm/sme, objtool: Annotate indirect call in sme_encrypt_execute()
    - objtool: Use existing global variables for options
    - objtool: Add retpoline validation
    - objtool: Add module specific retpoline rules
    - objtool, retpolines: Integrate objtool with retpoline support more
      closely
    - objtool: Fix another switch table detection issue
    - objtool: Fix 32-bit build
    - [x86] kprobes: Fix kernel crash when probing .entry_trampoline code
    - watchdog: hpwdt: SMBIOS check
    - watchdog: hpwdt: Check source of NMI
    - watchdog: hpwdt: fix unused variable warning
    - watchdog: hpwdt: Remove legacy NMI sourcing.
    - netfilter: add back stackpointer size checks (CVE-2018-1065)
    - netfilter: ipt_CLUSTERIP: fix a race condition of proc file creation
    - netfilter: xt_hashlimit: fix lock imbalance
    - netfilter: x_tables: fix missing timer initialization in xt_LED
    - netfilter: nat: cope with negative port range
    - netfilter: IDLETIMER: be syzkaller friendly
    - netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
      (CVE-2018-1068)
    - netfilter: bridge: ebt_among: add missing match size checks
    - netfilter: ipv6: fix use-after-free Write in nf_nat_ipv6_manip_pkt
    - netfilter: use skb_to_full_sk in ip6_route_me_harder
    - tpm_tis: Move ilb_base_addr to tpm_tis_data
    - tpm: Keep CLKRUN enabled throughout the duration of transmit_cmd()
    - tpm: delete the TPM_TIS_CLK_ENABLE flag
    - tpm: remove unused variables
    - tpm: only attempt to disable the LPC CLKRUN if is already enabled
    - [x86] xen: Calculate __max_logical_packages on PV domains
    - scsi: qla2xxx: Fix system crash for Notify ack timeout handling
    - scsi: qla2xxx: Fix gpnid error processing
    - scsi: qla2xxx: Move session delete to driver work queue
    - scsi: qla2xxx: Skip IRQ affinity for Target QPairs
    - scsi: qla2xxx: Fix re-login for Nport Handle in use
    - scsi: qla2xxx: Retry switch command on time out
    - scsi: qla2xxx: Serialize GPNID for multiple RSCN
    - scsi: qla2xxx: Fix login state machine stuck at GPDB
    - scsi: qla2xxx: Fix NPIV host cleanup in target mode
    - scsi: qla2xxx: Relogin to target port on a cable swap
    - scsi: qla2xxx: Fix Relogin being triggered too fast
    - scsi: qla2xxx: Fix PRLI state check
    - scsi: qla2xxx: Fix abort command deadlock due to spinlock
    - scsi: qla2xxx: Replace fcport alloc with qla2x00_alloc_fcport
    - scsi: qla2xxx: Fix scan state field for fcport
    - scsi: qla2xxx: Clear loop id after delete
    - scsi: qla2xxx: Defer processing of GS IOCB calls
    - scsi: qla2xxx: Remove aborting ELS IOCB call issued as part of timeout.
    - scsi: qla2xxx: Fix system crash in qlt_plogi_ack_unref
    - scsi: qla2xxx: Fix memory leak in dual/target mode
    - NFS: Fix an incorrect type in struct nfs_direct_req
    - pNFS: Prevent the layout header refcount going to zero in pnfs_roc()
    - NFS: Fix unstable write completion
    https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.11
    - [x86] Treat R_X86_64_PLT32 as R_X86_64_PC32
    - usb: host: xhci-rcar: add support for r8a77965
    - xhci: Fix front USB ports on ASUS PRIME B350M-A
    - xhci: fix endpoint context tracer output
    - [sh4] serial: sh-sci: prevent lockup on full TTY buffers
    - tty/serial: atmel: add new version check for usart
    - uas: fix comparison for error code
    - [x86] staging: comedi: fix comedi_nsamples_left.
    - USB: storage: Add JMicron bridge 152d:2567 to unusual_devs.h
    - usbip: vudc: fix null pointer dereference on udc->lock
    - usb: quirks: add control message delay for 1b1c:1b20
    - usb: usbmon: Read text within supplied buffer size
    - usb: gadget: f_fs: Fix use-after-free in ffs_fs_kill_sb()
    - [arm64,armhf] usb: dwc3: Fix lock-up on ID change during system
      suspend/resume
    - serial: 8250_pci: Add Brainboxes UC-260 4 port serial device
    - serial: core: mark port as initialized in autoconfig
    - earlycon: add reg-offset to physical address before mapping
    - dm mpath: fix passing integrity data
    - Revert "btrfs: use proper endianness accessors for super_copy"
    - gfs2: Clean up {lookup,fillup}_metapath
    - gfs2: Fixes to "Implement iomap for block_map" (2)
    - [armhf] spi: imx: Fix failure path leak on GPIO request error correctly
    - HID: multitouch: Only look at non touch fields in first packet of a
      frame
    - [powerpc*] KVM: Book3S HV: Avoid shifts by negative amounts
    - drm/edid: set ELD connector type in drm_edid_to_eld()
    - dma-buf/fence: Fix lock inversion within dma-fence-array
    - video/hdmi: Allow "empty" HDMI infoframes
    - [powerpc*] KVM: Book3S HV: Fix typo in kvmppc_hv_get_dirty_log_radix()
    - HID: elo: clear BTN_LEFT mapping
    - iwlwifi: mvm: rs: don't override the rate history in the search cycle
    - [armhf] dts: exynos: Correct Trats2 panel reset line
    - drm/amdgpu: fix get_max_engine_clock_in_mhz
    - USB: ledtrig-usbport: fix of-node leak
    - dt-bindings: serial: Add common rs485 binding for RTS polarity
    - sched: Stop switched_to_rt() from sending IPIs to offline CPUs
    - sched: Stop resched_cpu() from sending IPIs to offline CPUs
    - crypto: chelsio - Fix an error code in chcr_hash_dma_map()
    - crypto: keywrap - Add missing ULL suffixes for 64-bit constants
    - crypto: cavium - fix memory leak on info
    - test_firmware: fix setting old custom fw path back on exit
    - drm/vblank: Fix vblank timestamp debugs
    - net: ieee802154: adf7242: Fix bug if defined DEBUG
    - perf report: Fix -D output for user metadata events
    - net: xfrm: allow clearing socket xfrm policies.
    - gpiolib: don't allow OPEN_DRAIN & OPEN_SOURCE flags simultaneously
    - mtd: nand: fix interpretation of NAND_CMD_NONE in nand_command[_lp]()
    - [arm64] net: thunderx: Set max queue count taking XDP_TX into account
    - [armhf] dts: am335x-pepper: Fix the audio CODEC's reset pin
    - [armhf] dts: omap3-n900: Fix the audio CODEC's reset pin
    - mtd: nand: ifc: update bufnum mask for ver >= 2.0.0
    - userns: Don't fail follow_automount based on s_user_ns
    - xfrm: Fix xfrm_replay_overflow_offload_esn
    - leds: pm8058: Silence pointer to integer size warning
    - bpf: fix stack state printing in verifier log
    - [armhf] drm/etnaviv: make THERMAL selectable
    - ath10k: update tdls teardown state to target
    - cpufreq: Fix governor module removal race
    - [x86] KVM: Restart the guest when insn_len is zero and SEV is enabled
    - drm/amdgpu:fix random missing of FLR NOTIFY
    - scsi: lpfc: Fix crash during driver unload with running nvme traffic
    - scsi: ses: don't ask for diagnostic pages repeatedly during probe
    - [armhf] drm/sun4i: Fix format mask in DE2 driver
    - [s390x] perf annotate: Fix unnecessary memory allocation for s390x
    - perf annotate: Fix objdump comment parsing for Intel mov dissassembly
    - iwlwifi: mvm: avoid dumping assert log when device is stopped
    - drm/amdgpu:fix virtual dce bug
    - drm/amdgpu: fix amdgpu_sync_resv v2
    - bnxt_en: Uninitialized variable in bnxt_tc_parse_actions()
    - [arm64] clk: qcom: msm8916: fix mnd_width for codec_digcodec
    - mwifiex: cfg80211: do not change virtual interface during scan
      processing
    - ath10k: fix invalid STS_CAP_OFFSET_MASK
    - tools/usbip: fixes build with musl libc toolchain
    - [armhf] spi: sun6i: disable/unprepare clocks on remove
    - bnxt_en: Don't print "Link speed -1 no longer supported" messages.
    - scsi: core: scsi_get_device_flags_keyed(): Always return device flags
    - scsi: devinfo: apply to HP XP the same flags as Hitachi VSP
    - scsi: dh: add new rdac devices
    - media: vsp1: Prevent suspending and resuming DRM pipelines
    - dm raid: fix raid set size revalidation
    - media: cpia2: Fix a couple off by one bugs
    - [arm*] media: davinci: vpif_capture: add NULL check on devm_kzalloc
      return value
    - virtio_net: Disable interrupts if napi_complete_done rescheduled napi
    - net: sched: drop qdisc_reset from dev_graft_qdisc
    - veth: set peer GSO values
    - [x86] drm/amdkfd: Fix memory leaks in kfd topology
    - [powerpc*] modules: Don't try to restore r2 after a sibling call
    - [powerpc/powerpc64,ppc64*] Don't trace irqs-off at interrupt return to
      soft-disabled context
    - [arm64] dts: renesas: salvator-common: Add EthernetAVB PHY reset
    - agp/intel: Flush all chipset writes after updating the GGTT
    - mac80211_hwsim: enforce PS_MANUAL_POLL to be set after PS_ENABLED
    - mac80211: remove BUG() when interface type is invalid
    - crypto: caam/qi - use correct print specifier for size_t
    - mmc: mmc_test: Ensure command queue is disabled for testing
    - Fix misannotated out-of-line _copy_to_user()
    - ipvlan: add L2 check for packets arriving via virtual devices
    - locking/locktorture: Fix num reader/writer corner cases
    - ima: relax requiring a file signature for new files with zero length
    - IB/mlx5: revisit -Wmaybe-uninitialized warning
    - [arm64] dmaengine: qcom_hidma: check pending interrupts
    - [x86] drm/i915/glk: Disable Guc and HuC on GLK

  [ Ben Hutchings ]
  * aufs: gen-patch: Fix Subject generation to skip SPDX-License-Identifier
  * aufs: Update support patchset to aufs4.15-20180219 (no functional change)
  * debian/control: Point Vcs URLs to Salsa
  * [x86] sound/soc/intel: Enable SND_SOC_INTEL_SST_TOPLEVEL,
    SND_SOC_INTEL_HASWELL, SND_SOC_INTEL_BAYTRAIL, SND_SST_ATOM_HIFI2_PLATFORM,
    SND_SOC_INTEL_SKYLAKE as modules; re-enable dependent board drivers
    (Closes: #892629)
  * firmware_class: Refer to Debian wiki page when logging missing firmware
    (Closes: #888405)
  * amdgpu: Abort probing if firmware is not installed, as we do in radeon
  * Bump ABI to 2
  * [amd64] udeb: Add vmd to scsi-modules, required for NVMe on some systems
    (Closes: #891482)
  * udeb: Update patterns for PHY modules included in usb-modules
    (Closes: #893154)

  [ Uwe Kleine-König ]
  * netfilter: enable NFT_FIB_NETDEV as module

  [ Thadeu Lima de Souza Cascardo ]
  * [powerpc,ppc64el,ppc64] Enable CRASH_DUMP (Closes: #883432)

  [ Bastian Blank ]
  * Drop note about Xen from long descriptions.

  [ Vagrant Cascadian ]
  * [arm64] Enable ROCKCHIP_IODOMAIN as a module, to enable PCIe reset.
  * [arm64] Enable REGULATOR_FAN53555 as a module, enabling cpufreq to
    work on rk3399 A72 cores.
  * [arm64] Apply patch from linux-next to fix eMMC corruption on
    Odroid-C2 (Closes: #879072).

  [ Salvatore Bonaccorso ]
  * mac80211_hwsim: fix possible memory leak in hwsim_new_radio_nl()
    (CVE-2018-8087)

 -- Salvatore Bonaccorso <carnil@debian.org>  Tue, 20 Mar 2018 09:31:07 +0100

… lists a bunch of CVEs and more generally a huge pile of bugfixes. So if it doesn’t break stuff for us I think we should upgrade in 3.6.2.

#5 Updated by intrigeri 2018-03-27 11:51:54

  • Feature Branch set to bugfix/15457-Linux-4.15.0-2

#6 Updated by intrigeri 2018-03-27 17:50:45

  • Subject changed from Consider upgrading Linux in Tails 3.6.2 to Upgrade Linux in Tails 3.6.2
  • Assignee changed from intrigeri to anonym
  • % Done changed from 10 to 50
  • QA Check set to Ready for QA

post-merge steps

Once you’ve merged this into stable please:

  1. bump the expiration date of the newly used APT snapshot
  2. merge stable into devel and revert commit:9d5fb811ba3b3e681f7bc42be9b6fbaaccd8a50d there
  3. close Bug #15456

#7 Updated by intrigeri 2018-03-27 17:50:54

  • blocks deleted (Bug #15456: Upgrade Linux to 4.15.0-2)

#8 Updated by intrigeri 2018-03-27 17:51:02

  • blocks Bug #15456: Upgrade Linux to 4.15.0-2 added

#9 Updated by anonym 2018-03-29 10:05:05

  • Status changed from In Progress to Fix committed
  • Assignee deleted (anonym)
  • % Done changed from 50 to 100
  • QA Check changed from Ready for QA to Pass

#10 Updated by anonym 2018-03-30 16:59:40

  • Status changed from Fix committed to Resolved