kernel-packages team mailing list archive
-
kernel-packages team
-
Mailing list archive
-
Message #186235
[Bug 1586447] Re: Wily update to v4.2.8-ckt11 stable release
This bug was fixed in the package linux - 4.2.0-41.48
---------------
linux (4.2.0-41.48) wily; urgency=low
[ Luis Henriques ]
* Release Tracking Bug
- LP: #1595914
[ Upstream Kernel Changes ]
* netfilter: x_tables: validate e->target_offset early
- LP: #1555338
- CVE-2016-3134
* netfilter: x_tables: make sure e->next_offset covers remaining blob
size
- LP: #1555338
- CVE-2016-3134
* netfilter: x_tables: fix unconditional helper
- LP: #1555338
- CVE-2016-3134
* netfilter: x_tables: don't move to non-existent next rule
- LP: #1595350
* netfilter: x_tables: validate targets of jumps
- LP: #1595350
* netfilter: x_tables: add and use xt_check_entry_offsets
- LP: #1595350
* netfilter: x_tables: kill check_entry helper
- LP: #1595350
* netfilter: x_tables: assert minimum target size
- LP: #1595350
* netfilter: x_tables: add compat version of xt_check_entry_offsets
- LP: #1595350
* netfilter: x_tables: check standard target size too
- LP: #1595350
* netfilter: x_tables: check for bogus target offset
- LP: #1595350
* netfilter: x_tables: validate all offsets and sizes in a rule
- LP: #1595350
* netfilter: x_tables: don't reject valid target size on some
architectures
- LP: #1595350
* netfilter: arp_tables: simplify translate_compat_table args
- LP: #1595350
* netfilter: ip_tables: simplify translate_compat_table args
- LP: #1595350
* netfilter: ip6_tables: simplify translate_compat_table args
- LP: #1595350
* netfilter: x_tables: xt_compat_match_from_user doesn't need a retval
- LP: #1595350
* netfilter: x_tables: do compat validation via translate_table
- LP: #1595350
* netfilter: x_tables: introduce and use xt_copy_counters_from_user
- LP: #1595350
linux (4.2.0-40.47) wily; urgency=low
[ Kamal Mostafa ]
* Release Tracking Bug
- LP: #1595725
[ Serge Hallyn ]
* SAUCE: add a sysctl to disable unprivileged user namespace unsharing
- LP: #1555338, #1595350
linux (4.2.0-39.46) wily; urgency=low
[ Kamal Mostafa ]
* Release Tracking Bug
- LP: #1591301
[ J. R. Okajima ]
* SAUCE: AUFS: mm/mmap: fix oopsing on remap_file_pages aufs mmap:
bugfix, mainly for linux-4.5-rc5, remap_file_pages(2) emulation
- LP: #1558120
[ Kamal Mostafa ]
* [debian] getabis: Only git add $abidir if running in local repo
- LP: #1584890
* [debian] getabis: Fix inconsistent compiler versions check
- LP: #1584890
[ Tim Gardner ]
* Revert "SAUCE: mm/mmap: fix oopsing on remap_file_pages"
- LP: #1558120
* [Config] Remove arc4 from nic-modules
- LP: #1582991
[ Upstream Kernel Changes ]
* Revert "usb: hub: do not clear BOS field during reset device"
- LP: #1582864
* hpsa: move lockup_detected attribute to host attr
- LP: #1581169
* ALSA: timer: Fix leak in SNDRV_TIMER_IOCTL_PARAMS
- LP: #1580379
- CVE-2016-4569
* ALSA: timer: Fix leak in events via snd_timer_user_ccallback
- LP: #1581866
- CVE-2016-4578
* ALSA: timer: Fix leak in events via snd_timer_user_tinterrupt
- LP: #1581866
- CVE-2016-4578
* net: fix a kernel infoleak in x25 module
- LP: #1585366
- CVE-2016-4580
* get_rock_ridge_filename(): handle malformed NM entries
- LP: #1583962
- CVE-2016-4913
* tipc: check nl sock before parsing nested attributes
- LP: #1585365
- CVE-2016-4951
* netfilter: Set /proc/net entries owner to root in namespace
- LP: #1584953
* USB: usbfs: fix potential infoleak in devio
- LP: #1578493
- CVE-2016-4482
* USB: leave LPM alone if possible when binding/unbinding interface
drivers
- LP: #1577024
* [4.2-stable only] fix backport "IB/security: restrict use of the
write() interface"
- LP: #1586447
* regulator: s2mps11: Fix invalid selector mask and voltages for buck9
- LP: #1586447
* regmap: spmi: Fix regmap_spmi_ext_read in multi-byte case
- LP: #1586447
* ALSA: usb-audio: Quirk for yet another Phoenix Audio devices (v2)
- LP: #1586447
* atomic_open(): fix the handling of create_error
- LP: #1586447
* drm/i915/bdw: Add missing delay during L3 SQC credit programming
- LP: #1586447
* crypto: hash - Fix page length clamping in hash walk
- LP: #1586447
* drm/radeon: fix DP link training issue with second 4K monitor
- LP: #1586447
* drm/radeon: fix PLL sharing on DCE6.1 (v2)
- LP: #1586447
* ALSA: hda - Fix white noise on Asus UX501VW headset
- LP: #1586447
* Input: max8997-haptic - fix NULL pointer dereference
- LP: #1586447
* drm/i915: Bail out of pipe config compute loop on LPT
- LP: #1586447
* ALSA: hda - Fix broken reconfig
- LP: #1586447
* ALSA: hda - Fix subwoofer pin on ASUS N751 and N551
- LP: #1586447
* vfs: add vfs_select_inode() helper
- LP: #1586447
* vfs: rename: check backing inode being equal
- LP: #1586447
* ALSA: usb-audio: Yet another Phoneix Audio device quirk
- LP: #1586447
* perf/x86: Fix undefined shift on 32-bit kernels
- LP: #1586447
* perf/x86/intel/pt: Generate PMI in the STOP region as well
- LP: #1586447
* perf/core: Disable the event on a truncated AUX record
- LP: #1586447
* tools lib traceevent: Do not reassign parg after collapse_tree()
- LP: #1586447
* workqueue: fix rebind bound workers warning
- LP: #1586447
* ocfs2: fix posix_acl_create deadlock
- LP: #1586447
* nf_conntrack: avoid kernel pointer value leak in slab name
- LP: #1586447
* macvtap: segmented packet is consumed
- LP: #1586447
* regulator: axp20x: Fix axp22x ldo_io voltage ranges
- LP: #1586447
* arm64: bpf: jit JMP_JSET_{X,K}
- LP: #1586447
* bridge: fix igmp / mld query parsing
- LP: #1586447
* net/mlx4_en: Fix endianness bug in IPV6 csum calculation
- LP: #1586447
* net: fec: only clear a queue's work bit if the queue was emptied
- LP: #1586447
* tcp: refresh skb timestamp at retransmit time
- LP: #1586447
* net/route: enforce hoplimit max value
- LP: #1586447
* decnet: Do not build routes to devices without decnet private data.
- LP: #1586447
* route: do not cache fib route info on local routes with oif
- LP: #1586447
* net: use skb_postpush_rcsum instead of own implementations
- LP: #1586447
* vlan: pull on __vlan_insert_tag error path and fix csum correction
- LP: #1586447
* ipv4/fib: don't warn when primary address is missing if in_dev is dead
- LP: #1586447
* bpf: fix double-fdput in replace_map_fd_with_map_ptr()
- LP: #1586447
* net_sched: introduce qdisc_replace() helper
- LP: #1586447
* net_sched: update hierarchical backlog too
- LP: #1586447
* sch_htb: update backlog as well
- LP: #1586447
* sch_dsmark: update backlog as well
- LP: #1586447
* netem: Segment GSO packets on enqueue
- LP: #1586447
* VSOCK: do not disconnect socket when peer has shutdown SEND only
- LP: #1586447
* net: bridge: fix old ioctl unlocked net device walk
- LP: #1586447
* cdc_mbim: apply "NDP to end" quirk to all Huawei devices
- LP: #1586447
* soreuseport: fix ordering for mixed v4/v6 sockets
- LP: #1586447
* uapi glibc compat: fix compile errors when glibc net/if.h included
before linux/if.h
- LP: #1586447
* Linux 4.2.8-ckt11
- LP: #1586447
* usb: core: hub: hub_port_init lock controller instead of bus
- LP: #1437492
-- Luis Henriques <luis.henriques@xxxxxxxxxxxxx> Fri, 24 Jun 2016
11:46:57 +0100
** Changed in: linux (Ubuntu Wily)
Status: Fix Committed => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-3134
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-4482
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-4569
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-4578
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-4580
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-4913
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-4951
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1586447
Title:
Wily update to v4.2.8-ckt11 stable release
Status in linux package in Ubuntu:
New
Status in linux source package in Wily:
Fix Released
Bug description:
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The v4.2.8-ckt11 upstream stable
patch set is now available. It should be included in the Ubuntu
kernel as well.
git://git.launchpad.net/~canonical-kernel/linux/+git/linux-
stable-ckt
TEST CASE: TBD
The following patches from the v4.2.8-ckt11 stable release
shall be applied:
Linux 4.2.8-ckt11
uapi glibc compat: fix compile errors when glibc net/if.h included before linux/if.h
soreuseport: fix ordering for mixed v4/v6 sockets
cdc_mbim: apply "NDP to end" quirk to all Huawei devices
net: bridge: fix old ioctl unlocked net device walk
VSOCK: do not disconnect socket when peer has shutdown SEND only
netem: Segment GSO packets on enqueue
sch_dsmark: update backlog as well
sch_htb: update backlog as well
net_sched: update hierarchical backlog too
net_sched: introduce qdisc_replace() helper
bpf: fix double-fdput in replace_map_fd_with_map_ptr()
ipv4/fib: don't warn when primary address is missing if in_dev is dead
vlan: pull on __vlan_insert_tag error path and fix csum correction
net: use skb_postpush_rcsum instead of own implementations
route: do not cache fib route info on local routes with oif
decnet: Do not build routes to devices without decnet private data.
net/route: enforce hoplimit max value
tcp: refresh skb timestamp at retransmit time
net: fec: only clear a queue's work bit if the queue was emptied
net/mlx4_en: Fix endianness bug in IPV6 csum calculation
bridge: fix igmp / mld query parsing
arm64: bpf: jit JMP_JSET_{X,K}
regulator: axp20x: Fix axp22x ldo_io voltage ranges
macvtap: segmented packet is consumed
nf_conntrack: avoid kernel pointer value leak in slab name
ocfs2: fix posix_acl_create deadlock
workqueue: fix rebind bound workers warning
tools lib traceevent: Do not reassign parg after collapse_tree()
perf/core: Disable the event on a truncated AUX record
perf/x86/intel/pt: Generate PMI in the STOP region as well
perf/x86: Fix undefined shift on 32-bit kernels
ALSA: usb-audio: Yet another Phoneix Audio device quirk
vfs: rename: check backing inode being equal
vfs: add vfs_select_inode() helper
ALSA: hda - Fix subwoofer pin on ASUS N751 and N551
ALSA: hda - Fix broken reconfig
drm/i915: Bail out of pipe config compute loop on LPT
Input: max8997-haptic - fix NULL pointer dereference
ALSA: hda - Fix white noise on Asus UX501VW headset
drm/radeon: fix PLL sharing on DCE6.1 (v2)
drm/radeon: fix DP link training issue with second 4K monitor
crypto: hash - Fix page length clamping in hash walk
drm/i915/bdw: Add missing delay during L3 SQC credit programming
atomic_open(): fix the handling of create_error
ALSA: usb-audio: Quirk for yet another Phoenix Audio devices (v2)
regmap: spmi: Fix regmap_spmi_ext_read in multi-byte case
regulator: s2mps11: Fix invalid selector mask and voltages for buck9
[4.2-stable only] fix backport "IB/security: restrict use of the write() interface"
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1586447/+subscriptions
References