group.of.nepali.translators team mailing list archive
-
group.of.nepali.translators team
-
Mailing list archive
-
Message #28549
[Bug 1752072] Re: [Packaging] Allow overlay of config annotations
This bug was fixed in the package linux - 4.19.0-13.14
---------------
linux (4.19.0-13.14) disco; urgency=medium
* linux: 4.19.0-13.14 -proposed tracker (LP: #1815103)
* linux-buildinfo: pull out ABI information into its own package
(LP: #1806380)
- [Packaging] autoreconstruct -- base tag is always primary mainline version
* [Packaging] Allow overlay of config annotations (LP: #1752072)
- [Packaging] config-check: Add an include directive
* Disco update: 4.19.20 upstream stable release (LP: #1815090)
- Fix "net: ipv4: do not handle duplicate fragments as overlapping"
- drm/msm/gpu: fix building without debugfs
- ipv6: Consider sk_bound_dev_if when binding a socket to an address
- ipv6: sr: clear IP6CB(skb) on SRH ip4ip6 encapsulation
- ipvlan, l3mdev: fix broken l3s mode wrt local routes
- l2tp: copy 4 more bytes to linear part if necessary
- l2tp: fix reading optional fields of L2TPv3
- net: ip_gre: always reports o_key to userspace
- net: ip_gre: use erspan key field for tunnel lookup
- net/mlx4_core: Add masking for a few queries on HCA caps
- netrom: switch to sock timer API
- net/rose: fix NULL ax25_cb kernel panic
- net: set default network namespace in init_dummy_netdev()
- ravb: expand rx descriptor data to accommodate hw checksum
- sctp: improve the events for sctp stream reset
- tun: move the call to tun_set_real_num_queues
- ucc_geth: Reset BQL queue when stopping device
- net: ip6_gre: always reports o_key to userspace
- sctp: improve the events for sctp stream adding
- net/mlx5e: Allow MAC invalidation while spoofchk is ON
- ip6mr: Fix notifiers call on mroute_clean_tables()
- Revert "net/mlx5e: E-Switch, Initialize eswitch only if eswitch manager"
- sctp: set chunk transport correctly when it's a new asoc
- sctp: set flow sport from saddr only when it's 0
- virtio_net: Don't enable NAPI when interface is down
- virtio_net: Don't call free_old_xmit_skbs for xdp_frames
- virtio_net: Fix not restoring real_num_rx_queues
- virtio_net: Fix out of bounds access of sq
- virtio_net: Don't process redirected XDP frames when XDP is disabled
- virtio_net: Use xdp_return_frame to free xdp_frames on destroying vqs
- virtio_net: Differentiate sk_buff and xdp_frame on freeing
- CIFS: Do not count -ENODATA as failure for query directory
- CIFS: Fix trace command logging for SMB2 reads and writes
- CIFS: Do not consider -ENODATA as stat failure for reads
- fs/dcache: Fix incorrect nr_dentry_unused accounting in shrink_dcache_sb()
- iommu/vt-d: Fix memory leak in intel_iommu_put_resv_regions()
- selftests/seccomp: Enhance per-arch ptrace syscall skip tests
- NFS: Fix up return value on fatal errors in nfs_page_async_flush()
- ARM: cns3xxx: Fix writing to wrong PCI config registers after alignment
- arm64: kaslr: ensure randomized quantities are clean also when kaslr is off
- arm64: Do not issue IPIs for user executable ptes
- arm64: hyp-stub: Forbid kprobing of the hyp-stub
- arm64: hibernate: Clean the __hyp_text to PoC after resume
- gpio: altera-a10sr: Set proper output level for direction_output
- gpiolib: fix line event timestamps for nested irqs
- gpio: pcf857x: Fix interrupts on multiple instances
- gpio: sprd: Fix the incorrect data register
- gpio: sprd: Fix incorrect irq type setting for the async EIC
- gfs2: Revert "Fix loop in gfs2_rbm_find"
- mmc: bcm2835: Fix DMA channel leak on probe error
- mmc: mediatek: fix incorrect register setting of hs400_cmd_int_delay
- ALSA: usb-audio: Add Opus #3 to quirks for native DSD support
- ALSA: hda/realtek - Fixed hp_pin no value
- IB/hfi1: Remove overly conservative VM_EXEC flag check
- platform/x86: asus-nb-wmi: Map 0x35 to KEY_SCREENLOCK
- platform/x86: asus-nb-wmi: Drop mapping of 0x33 and 0x34 scan codes
- mmc: sdhci-iproc: handle mmc_of_parse() errors during probe
- Btrfs: fix deadlock when allocating tree block during leaf/node split
- btrfs: On error always free subvol_name in btrfs_mount
- kernel/exit.c: release ptraced tasks before zap_pid_ns_processes
- mm/hugetlb.c: teach follow_hugetlb_page() to handle FOLL_NOWAIT
- oom, oom_reaper: do not enqueue same task twice
- mm,memory_hotplug: fix scan_movable_pages() for gigantic hugepages
- mm, oom: fix use-after-free in oom_kill_process
- mm: hwpoison: use do_send_sig_info() instead of force_sig()
- mm: migrate: don't rely on __PageMovable() of newpage after unlocking it
- of: Convert to using %pOFn instead of device_node.name
- of: overlay: add tests to validate kfrees from overlay removal
- of: overlay: add missing of_node_get() in __of_attach_node_sysfs
- of: overlay: use prop add changeset entry for property in new nodes
- of: overlay: do not duplicate properties from overlay for new nodes
- md/raid5: fix 'out of memory' during raid cache recovery
- cifs: Always resolve hostname before reconnecting
- Linux 4.19.20
* CONFIG_TEST_BPF is disabled (LP: #1813955)
- [Config]: Reenable TEST_BPF
* CVE-2018-16880
- vhost: fix OOB in get_rx_bufs()
* Disco update: v4.19.19 upstream stable release (LP: #1814170)
- amd-xgbe: Fix mdio access for non-zero ports and clause 45 PHYs
- net: bridge: Fix ethernet header pointer before check skb forwardable
- net: Fix usage of pskb_trim_rcsum
- net: phy: marvell: Errata for mv88e6390 internal PHYs
- net: phy: mdio_bus: add missing device_del() in mdiobus_register() error
handling
- net/sched: act_tunnel_key: fix memory leak in case of action replace
- net_sched: refetch skb protocol for each filter
- openvswitch: Avoid OOB read when parsing flow nlattrs
- vhost: log dirty page correctly
- mlxsw: pci: Increase PCI SW reset timeout
- net: ipv4: Fix memory leak in network namespace dismantle
- mlxsw: spectrum_fid: Update dummy FID index
- mlxsw: pci: Ring CQ's doorbell before RDQ's
- net/sched: cls_flower: allocate mask dynamically in fl_change()
- udp: with udp_segment release on error path
- erspan: build the header with the right proto according to erspan_ver
- net: phy: marvell: Fix deadlock from wrong locking
- ip6_gre: update version related info when changing link
- tcp: allow MSG_ZEROCOPY transmission also in CLOSE_WAIT state
- mei: me: mark LBG devices as having dma support
- mei: me: add denverton innovation engine device IDs
- USB: leds: fix regression in usbport led trigger
- USB: serial: simple: add Motorola Tetra TPG2200 device id
- USB: serial: pl2303: add new PID to support PL2303TB
- ceph: clear inode pointer when snap realm gets dropped by its inode
- ASoC: atom: fix a missing check of snd_pcm_lib_malloc_pages
- ASoC: rt5514-spi: Fix potential NULL pointer dereference
- ASoC: tlv320aic32x4: Kernel OOPS while entering DAPM standby mode
- clk: socfpga: stratix10: fix rate calculation for pll clocks
- clk: socfpga: stratix10: fix naming convention for the fixed-clocks
- inotify: Fix fd refcount leak in inotify_add_watch().
- ALSA: hda/realtek - Fix typo for ALC225 model
- ARCv2: lib: memeset: fix doing prefetchw outside of buffer
- ARC: adjust memblock_reserve of kernel memory
- ARC: perf: map generic branches to correct hardware condition
- s390/mm: always force a load of the primary ASCE on context switch
- s390/early: improve machine detection
- s390/smp: fix CPU hotplug deadlock with CPU rescan
- misc: ibmvsm: Fix potential NULL pointer dereference
- char/mwave: fix potential Spectre v1 vulnerability
- mmc: dw_mmc-bluefield: : Fix the license information
- mmc: meson-gx: Free irq in release() callback
- staging: rtl8188eu: Add device code for D-Link DWA-121 rev B1
- tty: Handle problem if line discipline does not have receive_buf
- uart: Fix crash in uart_write and uart_put_char
- tty/n_hdlc: fix __might_sleep warning
- hv_balloon: avoid touching uninitialized struct page during tail onlining
- Drivers: hv: vmbus: Check for ring when getting debug info
- vgacon: unconfuse vc_origin when using soft scrollback
- CIFS: Fix possible hang during async MTU reads and writes
- CIFS: Fix credits calculations for reads with errors
- CIFS: Fix credit calculation for encrypted reads with errors
- CIFS: Do not reconnect TCP session in add_credits()
- smb3: add credits we receive from oplock/break PDUs
- Input: xpad - add support for SteelSeries Stratus Duo
- Input: input_event - provide override for sparc64
- Input: uinput - fix undefined behavior in uinput_validate_absinfo()
- acpi/nfit: Block function zero DSMs
- acpi/nfit: Fix command-supported detection
- scsi: ufs: Use explicit access size in ufshcd_dump_regs
- dm thin: fix passdown_double_checking_shared_status()
- dm crypt: fix parsing of extended IV arguments
- drm/amdgpu: Add APTX quirk for Lenovo laptop
- KVM: x86: Fix single-step debugging
- KVM: x86: Fix PV IPIs for 32-bit KVM host
- KVM: x86: WARN_ONCE if sending a PV IPI returns a fatal error
- kvm: x86/vmx: Use kzalloc for cached_vmcs12
- KVM/nVMX: Do not validate that posted_intr_desc_addr is page aligned
- x86/pkeys: Properly copy pkey state at fork()
- x86/selftests/pkeys: Fork() to check for state being preserved
- x86/kaslr: Fix incorrect i8254 outb() parameters
- x86/entry/64/compat: Fix stack switching for XEN PV
- net: sun: cassini: Cleanup license conflict
- irqchip/gic-v3-its: Align PCI Multi-MSI allocation on their size
- can: dev: __can_get_echo_skb(): fix bogous check for non-existing skb by
removing it
- can: bcm: check timer values before ktime conversion
- can: flexcan: fix NULL pointer exception during bringup
- vt: make vt_console_print() compatible with the unicode screen buffer
- vt: always call notifier with the console lock held
- vt: invoke notifier on screen size change
- drm/meson: Fix atomic mode switching regression
- bpf: improve verifier branch analysis
- bpf: add per-insn complexity limit
- bpf: move {prev_,}insn_idx into verifier env
- bpf: move tmp variable into ax register in interpreter
- bpf: enable access to ax register also from verifier rewrite
- bpf: restrict map value pointer arithmetic for unprivileged
- bpf: restrict stack pointer arithmetic for unprivileged
- bpf: restrict unknown scalars of mixed signed bounds for unprivileged
- bpf: fix check_map_access smin_value test when pointer contains offset
- bpf: prevent out of bounds speculation on pointer arithmetic
- bpf: fix sanitation of alu op with pointer / scalar type from different
paths
- bpf: fix inner map masking to prevent oob under speculation
- s390/smp: Fix calling smp_call_ipl_cpu() from ipl CPU
- nvmet-rdma: Add unlikely for response allocated check
- nvmet-rdma: fix null dereference under heavy load
- Revert "mm, memory_hotplug: initialize struct pages for the full memory
section"
- usb: dwc3: gadget: Clear req->needs_extra_trb flag on cleanup
- ide: fix a typo in the settings proc file name
- Input: input_event - fix the CONFIG_SPARC64 mixup
- Linux 4.19.19
* HP ProBook 470 G5, LED's in Hotkeys f5, f8 and f11 without function
(LP: #1811254) // Disco update: v4.19.19 upstream stable release
(LP: #1814170)
- ALSA: hda - Add mute LED support for HP ProBook 470 G5
* Vsock connect fails with ENODEV for large CID (LP: #1813934)
- vhost/vsock: fix vhost vsock cid hashing inconsistent
* Ignore "incomplete report" from Elan touchpanels (LP: #1813733)
- HID: i2c-hid: Ignore input report if there's no data present on Elan
touchpanels
* SecureBoot support for arm64 (LP: #1804481)
- Build signed kernels for arm64
* ip6_gre: fix tunnel list corruption for x-netns (LP: #1812875)
- ip6_gre: fix tunnel list corruption for x-netns
* Miscellaneous Ubuntu changes
- SAUCE: selftests: net: fix "from" match test in fib_rule_tests.sh
- [Packaging] remove handoff check for uefi signing
- [Packaging] decompress gzipped efi images in signing tarball
* Miscellaneous upstream changes
- selftests/bpf: Test narrow loads with off > 0 in test_verifier
- bpf: add various test cases to selftests
- bpf: improve verifier branch analysis
-- Seth Forshee <seth.forshee@xxxxxxxxxxxxx> Thu, 07 Feb 2019 12:12:10
-0600
** Changed in: linux (Ubuntu)
Status: Fix Committed => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-16880
--
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1752072
Title:
[Packaging] Allow overlay of config annotations
Status in linux package in Ubuntu:
Fix Released
Status in linux-gcp package in Ubuntu:
Fix Released
Status in linux source package in Xenial:
New
Status in linux source package in Artful:
New
Status in linux source package in Bionic:
Incomplete
Status in linux-gcp source package in Bionic:
Fix Released
Bug description:
Currently for custom kernels, it's necessary to keep a separate
annotations file that often gets out of sync with the corresponding
file in debian.master/.
The "debian/scripts/config-check" script can be changed to allow
additional annotations files to act as overlays over the original
annotations file, allowing custom kernels to override the policies
just for the relevant configs.
As an initial proposal, any file matching the pattern
"$DEBIAN/config/*.annotations" could be considered as an overlay file
and policies could be overridden on a config basis. That means that
any mention to a config in the overlay file would discard all the
policies for that config in the original file.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1752072/+subscriptions
References