← Back to team overview

kernel-packages team mailing list archive

[Bug 1498162] Re: unable to make backup link of `./usr/sbin/uuidd' before installing new version: Operation not permitted

 

This bug was fixed in the package linux - 3.13.0-70.113

---------------
linux (3.13.0-70.113) trusty; urgency=low

  [ Luis Henriques ]

  * Release Tracking Bug
    - LP: #1516733

  [ Upstream Kernel Changes ]

  * arm64: errata: use KBUILD_CFLAGS_MODULE for erratum #843419
    - LP: #1516682

linux (3.13.0-69.112) trusty; urgency=low

  [ Luis Henriques ]

  * Release Tracking Bug
    - LP: #1514858

  [ Joseph Salisbury ]

  * SAUCE: storvsc: use small sg_tablesize on x86
    - LP: #1495983

  [ Luis Henriques ]

  * [Config] updateconfigs after 3.13.11-ckt28 and 3.13.11-ckt29 stable
    updates

  [ Upstream Kernel Changes ]

  * ext4: fix indirect punch hole corruption
    - LP: #1292234
  * x86/hyperv: Mark the Hyper-V TSC as unstable
    - LP: #1498206
  * namei: permit linking with CAP_FOWNER in userns
    - LP: #1498162
  * iwlwifi: pci: add a few more PCI subvendor IDs for the 7265 series
    - LP: #1510616
  * Drivers: hv: vmbus: Increase the limit on the number of pfns we can
    handle
    - LP: #1495983
  * sctp: fix race on protocol/netns initialization
    - LP: #1514832
  * [media] v4l: omap3isp: Fix sub-device power management code
    - LP: #1514832
  * [media] rc-core: fix remove uevent generation
    - LP: #1514832
  * xtensa: fix threadptr reload on return to userspace
    - LP: #1514832
  * ARM: OMAP2+: DRA7: clockdomain: change l4per2_7xx_clkdm to SW_WKUP
    - LP: #1514832
  * mac80211: enable assoc check for mesh interfaces
    - LP: #1514832
  * PCI: Add dev_flags bit to access VPD through function 0
    - LP: #1514832
  * PCI: Add VPD function 0 quirk for Intel Ethernet devices
    - LP: #1514832
  * usb: dwc3: ep0: Fix mem corruption on OUT transfers of more than 512
    bytes
    - LP: #1514832
  * serial: 8250_pci: Add support for Pericom PI7C9X795[1248]
    - LP: #1514832
  * KVM: MMU: fix validation of mmio page fault
    - LP: #1514832
  * auxdisplay: ks0108: fix refcount
    - LP: #1514832
  * devres: fix devres_get()
    - LP: #1514832
  * iio: adis16400: Fix adis16448 gyroscope scale
    - LP: #1514832
  * iio: Add inverse unit conversion macros
    - LP: #1514832
  * iio: adis16480: Fix scale factors
    - LP: #1514832
  * iio: industrialio-buffer: Fix iio_buffer_poll return value
    - LP: #1514832
  * iio: event: Remove negative error code from iio_event_poll
    - LP: #1514832
  * NFSv4: don't set SETATTR for O_RDONLY|O_EXCL
    - LP: #1514832
  * unshare: Unsharing a thread does not require unsharing a vm
    - LP: #1514832
  * ASoC: adav80x: Remove .read_flag_mask setting from
    adav80x_regmap_config
    - LP: #1514832
  * drivers: usb :fsl: Implement Workaround for USB Erratum A007792
    - LP: #1514832
  * drivers: usb: fsl: Workaround for USB erratum-A005275
    - LP: #1514832
  * serial: 8250: don't bind to SMSC IrCC IR port
    - LP: #1514832
  * staging: comedi: adl_pci7x3x: fix digital output on PCI-7230
    - LP: #1514832
  * blk-mq: fix buffer overflow when reading sysfs file of 'pending'
    - LP: #1514832
  * xtensa: fix kernel register spilling
    - LP: #1514832
  * NFS: nfs_set_pgio_error sometimes misses errors
    - LP: #1514832
  * NFS: Fix a NULL pointer dereference of migration recovery ops for v4.2
    client
    - LP: #1514832
  * usb: host: ehci-sys: delete useless bus_to_hcd conversion
    - LP: #1514832
  * USB: symbolserial: Use usb_get_serial_port_data
    - LP: #1514832
  * USB: ftdi_sio: Added custom PID for CustomWare products
    - LP: #1514832
  * HID: usbhid: Fix the check for HID_RESET_PENDING in hid_io_error
    - LP: #1514832
  * eCryptfs: Invalidate dcache entries when lower i_nlink is zero
    - LP: #1514832
  * libxfs: readahead of dir3 data blocks should use the read verifier
    - LP: #1514832
  * xfs: Fix xfs_attr_leafblock definition
    - LP: #1514832
  * arm64: kconfig: Move LIST_POISON to a safe value
    - LP: #1514832
  * Btrfs: check if previous transaction aborted to avoid fs corruption
    - LP: #1514832
  * DRM - radeon: Don't link train DisplayPort on HPD until we get the dpcd
    - LP: #1514832
  * rtlwifi: rtl8192cu: Add new device ID
    - LP: #1514832
  * rtlwifi: rtl8192cu: Add new device ID
    - LP: #1514832
  * of/address: Don't loop forever in of_find_matching_node_by_address().
    - LP: #1514832
  * drivercore: Fix unregistration path of platform devices
    - LP: #1514832
  * xfs: return errors from partial I/O failures to files
    - LP: #1514832
  * IB/qib: Change lkey table allocation to support more MRs
    - LP: #1514832
  * tg3: Fix temperature reporting
    - LP: #1514832
  * drm/i915: Always mark the object as dirty when used by the GPU
    - LP: #1514832
  * Add radeon suspend/resume quirk for HP Compaq dc5750.
    - LP: #1514832
  * IB/uverbs: reject invalid or unknown opcodes
    - LP: #1514832
  * hpfs: update ctime and mtime on directory modification
    - LP: #1514832
  * Input: evdev - do not report errors form flush()
    - LP: #1514832
  * crypto: ghash-clmulni: specify context size for ghash async algorithm
    - LP: #1514832
  * fs: create and use seq_show_option for escaping
    - LP: #1514832
  * ALSA: hda - Enable headphone jack detect on old Fujitsu laptops
    - LP: #1514832
  * ALSA: hda - Use ALC880_FIXUP_FUJITSU for FSC Amilo M1437
    - LP: #1514832
  * scsi: fix scsi_error_handler vs. scsi_host_dev_release race
    - LP: #1514832
  * parisc: Use double word condition in 64bit CAS operation
    - LP: #1514832
  * vmscan: fix increasing nr_isolated incurred by putback unevictable
    pages
    - LP: #1514832
  * hfs,hfsplus: cache pages correctly between bnode_create and bnode_free
    - LP: #1514832
  * hfs: fix B-tree corruption after insertion at position 0
    - LP: #1514832
  * drm/qxl: validate monitors config modes
    - LP: #1514832
  * PCI: Fix TI816X class code quirk
    - LP: #1514832
  * x86/mm: Initialize pmd_idx in page_table_range_init_count()
    - LP: #1514832
  * powerpc/rtas: Introduce rtas_get_sensor_fast() for IRQ handlers
    - LP: #1514832
  * jbd2: avoid infinite loop when destroying aborted journal
    - LP: #1514832
  * clk: versatile: off by one in clk_sp810_timerclken_of_get()
    - LP: #1514832
  * usb: gadget: m66592-udc: forever loop in set_feature()
    - LP: #1514832
  * windfarm: decrement client count when unregistering
    - LP: #1514832
  * perf hists: Update the column width for the "srcline" sort key
    - LP: #1514832
  * batman-adv: Make DAT capability changes atomic
    - LP: #1514832
  * batman-adv: Make NC capability changes atomic
    - LP: #1514832
  * powerpc/mm: Fix pte_pagesize_index() crash on 4K w/64K hash
    - LP: #1514832
  * perf stat: Get correct cpu id for print_aggr
    - LP: #1514832
  * IB/mlx4: Fix potential deadlock when sending mad to wire
    - LP: #1514832
  * IB/mlx4: Forbid using sysfs to change RoCE pkeys
    - LP: #1514832
  * IB/mlx4: Use correct SL on AH query under RoCE
    - LP: #1514832
  * IB/uverbs: Fix race between ib_uverbs_open and remove_one
    - LP: #1514832
  * mmc: core: fix race condition in mmc_wait_data_done
    - LP: #1514832
  * ipv6: fix exthdrs offload registration in out_rt path
    - LP: #1514832
  * task_work: remove fifo ordering guarantee
    - LP: #1514832
  * scsi_dh: fix randconfig build error
    - LP: #1514832
  * fs: if a coredump already exists, unlink and recreate with O_EXCL
    - LP: #1514832
  * Linux 3.13.11-ckt28
    - LP: #1514832
  * sctp: donot reset the overall_error_count in SHUTDOWN_RECEIVE state
    - LP: #1514853
  * KEYS: Fix race between key destruction and finding a keyring by name
    - LP: #1514853
  * KEYS: Fix crash when attempt to garbage collect an uninstantiated
    keyring
    - LP: #1514853
  * KEYS: Don't permit request_key() to construct a new keyring
    - LP: #1514853
  * net: Fix skb csum races when peeking
    - LP: #1500810
  * [stable-only] net: add length argument to
    skb_copy_and_csum_datagram_iovec
    - LP: #1514853
  * spi: spi-pxa2xx: Check status register to determine if SSSR_TINT is
    disabled
    - LP: #1514853
  * spi: Fix documentation of spi_alloc_master()
    - LP: #1514853
  * ARM: 8429/1: disable GCC SRA optimization
    - LP: #1514853
  * powerpc/MSI: Fix race condition in tearing down MSI interrupts
    - LP: #1514853
  * CIFS: fix type confusion in copy offload ioctl
    - LP: #1514853
  * hwmon: (nct6775) Swap STEP_UP_TIME and STEP_DOWN_TIME registers for
    most chips
    - LP: #1514853
  * USB: option: add ZTE PIDs
    - LP: #1514853
  * x86/apic: Serialize LVTT and TSC_DEADLINE writes
    - LP: #1514853
  * Btrfs: fix read corruption of compressed and shared extents
    - LP: #1514853
  * btrfs: skip waiting on ordered range for special files
    - LP: #1514853
  * arm64: head.S: initialise mdcr_el2 in el2_setup
    - LP: #1514853
  * kvm: fix zero length mmio searching
    - LP: #1514853
  * iser-target: remove command with state ISTATE_REMOVE
    - LP: #1514853
  * ARM: fix Thumb2 signal handling when ARMv6 is enabled
    - LP: #1514853
  * powerpc/mm: Recompute hash value after a failed update
    - LP: #1514853
  * x86/platform: Fix Geode LX timekeeping in the generic x86 build
    - LP: #1514853
  * arm64: compat: fix vfp save/restore across signal handlers in
    big-endian
    - LP: #1514853
  * arm64: errata: add module build workaround for erratum #843419
    - LP: #1514853
  * arm64: KVM: Disable virtual timer even if the guest is not using it
    - LP: #1514853
  * arm: KVM: Disable virtual timer even if the guest is not using it
    - LP: #1514853
  * KVM: x86: trap AMD MSRs for the TSeg base and mask
    - LP: #1514853
  * usb: Use the USB_SS_MULT() macro to get the burst multiplier.
    - LP: #1514853
  * xhci: give command abortion one more chance before killing xhci
    - LP: #1514853
  * usb: xhci: Clear XHCI_STATE_DYING on start
    - LP: #1514853
  * xhci: change xhci 1.0 only restrictions to support xhci 1.1
    - LP: #1514853
  * disabling oplocks/leases via module parm enable_oplocks broken for SMB3
    - LP: #1514853
  * cifs: use server timestamp for ntlmv2 authentication
    - LP: #1514853
  * x86/paravirt: Replace the paravirt nop with a bona fide empty function
    - LP: #1514853
  * x86/nmi/64: Fix a paravirt stack-clobbering bug in the NMI code
    - LP: #1514853
  * ASoC: pxa: pxa2xx-ac97: fix dma requestor lines
    - LP: #1514853
  * drm/qxl: only report first monitor as connected if we have no state
    - LP: #1514853
  * PCI: Fix devfn for VPD access through function 0
    - LP: #1514853
  * PCI: Use function 0 VPD for identical functions, regular VPD for others
    - LP: #1514853
  * perf header: Fixup reading of HEADER_NRCPUS feature
    - LP: #1514853
  * netfilter: nft_compat: skip family comparison in case of NFPROTO_UNSPEC
    - LP: #1514853
  * ASoC: fix broken pxa SoC support
    - LP: #1514853
  * ARM: dts: omap5-uevm.dts: fix i2c5 pinctrl offsets
    - LP: #1514853
  * vxlan: set needed headroom correctly
    - LP: #1514853
  * usbnet: Get EVENT_NO_RUNTIME_PM bit before it is cleared
    - LP: #1514853
  * net/ipv6: Correct PIM6 mrt_lock handling
    - LP: #1514853
  * netlink, mmap: transform mmap skb into full skb on taps
    - LP: #1514853
  * openvswitch: Zero flows on allocation.
    - LP: #1514853
  * fib_rules: fix fib rule dumps across multiple skbs
    - LP: #1514853
  * Btrfs: update fix for read corruption of compressed and shared extents
    - LP: #1514853
  * Linux 3.13.11-ckt29
    - LP: #1514853

 -- Luis Henriques <luis.henriques@xxxxxxxxxxxxx>  Mon, 16 Nov 2015
17:47:36 +0000

-- 
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1498162

Title:
  unable to make backup link of `./usr/sbin/uuidd' before installing new
  version: Operation not permitted

Status in linux package in Ubuntu:
  Fix Released
Status in linux source package in Trusty:
  Fix Released
Status in linux source package in Vivid:
  Fix Released
Status in linux source package in Wily:
  Fix Released
Status in linux source package in Xenial:
  Fix Released

Bug description:
  == SRU Justification ==

  Impact: Root in a user namespace cannot create new hardlinks to suid
  files owned by another user even when the inode owner is mapped into
  that user namespace. This is causing some package upgrades to fail in
  unprivileged containers.

  Fix: Patch from linux-next to allow a user with CAP_FOWNER in a user
  namespace to link to a suid inode if the inode owner is mapped into
  the user namespace.

  Regression Potential: The main risks here would be security related
  since the fix is a loosening of the protected_hardlinks sysctl which
  serves as a mitigation against some classes of security
  vulnerabilities. However a user which would now be allowed to link
  directly would generally be able to create links to the same file via
  other mechanisms already, so it's unlikely that this creates any
  additional attack surface in practice.

  ---

  Upon trying to do an apt-get upgrade I run into this error:

  sudo apt-get dist-upgrade
  Reading package lists... Done
  Building dependency tree
  Reading state information... Done
  Calculating upgrade... Done
  The following packages will be upgraded:
    uuid-runtime
  1 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
  2 not fully installed or removed.
  Need to get 0 B/12.3 kB of archives.
  After this operation, 0 B of additional disk space will be used.
  Do you want to continue? [Y/n]
  (Reading database ... 27622 files and directories currently installed.)
  Preparing to unpack .../uuid-runtime_2.20.1-5.1ubuntu20.7_amd64.deb ...
  Unpacking uuid-runtime (2.20.1-5.1ubuntu20.7) over (2.20.1-5.1ubuntu20.6) ...
  dpkg: error processing archive /var/cache/apt/archives/uuid-runtime_2.20.1-5.1ubuntu20.7_amd64.deb (--unpack):
   unable to make backup link of `./usr/sbin/uuidd' before installing new version: Operation not permitted
  Processing triggers for man-db (2.6.7.1-1ubuntu1) ...
  Errors were encountered while processing:
   /var/cache/apt/archives/uuid-runtime_2.20.1-5.1ubuntu20.7_amd64.deb
  E: Sub-process /usr/bin/dpkg returned an error code (1)

  ProblemType: Bug
  DistroRelease: Ubuntu 14.04
  Package: util-linux 2.20.1-5.1ubuntu20.7
  ProcVersionSignature: Ubuntu 3.19.0-26.28~14.04.1-generic 3.19.8-ckt4
  Uname: Linux 3.19.0-26-generic x86_64
  ApportVersion: 2.14.1-0ubuntu3.13
  Architecture: amd64
  Date: Mon Sep 21 19:43:02 2015
  ProcEnviron:
   TERM=screen-256color
   PATH=(custom, no user)
   LANG=en_US.UTF-8
   SHELL=/bin/bash
  SourcePackage: util-linux
  UpgradeStatus: No upgrade log present (probably fresh install)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1498162/+subscriptions