[ubuntu/bionic-proposed] linux-gcp_5.0.0-1025.26~18.04.1_amd64.tar.gz - (Accepted)
Stefan Bader
stefan.bader at canonical.com
Tue Nov 12 18:17:53 UTC 2019
linux-gcp (5.0.0-1025.26~18.04.1) bionic; urgency=medium
[ Ubuntu: 5.0.0-1025.26 ]
* CVE-2019-11135
- [Config] gcp: Disable TSX by default when possible
* [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout
setting (LP: #1849682)
- SAUCE: Fix revert "md/raid0: avoid RAID0 data corruption due to layout
confusion."
* refcount underflow and type confusion in shiftfs (LP: #1850867) // CVE-2019-15793
- SAUCE: shiftfs: Correct id translation for lower fs operations
- SAUCE: shiftfs: prevent type confusion
- SAUCE: shiftfs: Fix refcount underflow in btrfs ioctl handling
* CVE-2018-12207
- kvm: Convert kvm_lock to a mutex
- kvm: x86: Do not release the page inside mmu_set_spte()
- KVM: x86: make FNAME(fetch) and __direct_map more similar
- KVM: x86: remove now unneeded hugepage gfn adjustment
- KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON
- KVM: x86: add tracepoints around __direct_map and FNAME(fetch)
- kvm: x86, powerpc: do not allow clearing largepages debugfs entry
- SAUCE: KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is
active
- SAUCE: x86: Add ITLB_MULTIHIT bug infrastructure
- SAUCE: kvm: mmu: ITLB_MULTIHIT mitigation
- SAUCE: kvm: Add helper function for creating VM worker threads
- SAUCE: kvm: x86: mmu: Recovery of shattered NX large pages
- SAUCE: cpu/speculation: Uninline and export CPU mitigations helpers
- SAUCE: kvm: x86: mmu: Apply global mitigations knob to ITLB_MULTIHIT
* CVE-2019-11135
- KVM: x86: use Intel speculation bugs and features as derived in generic x86
code
- x86/msr: Add the IA32_TSX_CTRL MSR
- x86/cpu: Add a helper function x86_read_arch_cap_msr()
- x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default
- x86/speculation/taa: Add mitigation for TSX Async Abort
- x86/speculation/taa: Add sysfs reporting for TSX Async Abort
- kvm/x86: Export MDS_NO=0 to guests when TSX is enabled
- x86/tsx: Add "auto" option to the tsx= cmdline parameter
- x86/speculation/taa: Add documentation for TSX Async Abort
- x86/tsx: Add config options to set tsx=on|off|auto
- SAUCE: x86/speculation/taa: Call tsx_init()
- [Config] Disable TSX by default when possible
* CVE-2019-0154
- SAUCE: drm/i915: Lower RM timeout to avoid DSI hard hangs
- SAUCE: drm/i915/gen8+: Add RC6 CTX corruption WA
* CVE-2019-0155
- SAUCE: drm/i915: Rename gen7 cmdparser tables
- SAUCE: drm/i915: Disable Secure Batches for gen6+
- SAUCE: drm/i915: Remove Master tables from cmdparser
- SAUCE: drm/i915: Add support for mandatory cmdparsing
- SAUCE: drm/i915: Support ro ppgtt mapped cmdparser shadow buffers
- SAUCE: drm/i915: Allow parsing of unsized batches
- SAUCE: drm/i915: Add gen9 BCS cmdparsing
- SAUCE: drm/i915/cmdparser: Use explicit goto for error paths
- SAUCE: drm/i915/cmdparser: Add support for backward jumps
- SAUCE: drm/i915/cmdparser: Ignore Length operands during command matching
* disco/linux: <version to be filled> -proposed tracker (LP: #1850574)
* [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout
setting (LP: #1849682)
- Revert "md/raid0: avoid RAID0 data corruption due to layout confusion."
Date: Mon, 11 Nov 2019 13:52:26 +0100
Changed-By: Stefan Bader <stefan.bader at canonical.com>
Maintainer: Launchpad Build Daemon <buildd at lcy01-amd64-001.buildd>
-------------- next part --------------
Format: 1.8
Date: Mon, 11 Nov 2019 13:52:26 +0100
Source: linux-gcp
Binary: linux-gcp-headers-5.0.0-1025 linux-gcp-tools-5.0.0-1025 linux-image-unsigned-5.0.0-1025-gcp linux-modules-5.0.0-1025-gcp linux-modules-extra-5.0.0-1025-gcp linux-headers-5.0.0-1025-gcp linux-image-unsigned-5.0.0-1025-gcp-dbgsym linux-tools-5.0.0-1025-gcp linux-buildinfo-5.0.0-1025-gcp
Architecture: amd64 amd64_translations
Version: 5.0.0-1025.26~18.04.1
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd at lcy01-amd64-001.buildd>
Changed-By: Stefan Bader <stefan.bader at canonical.com>
Description:
linux-buildinfo-5.0.0-1025-gcp - Linux kernel buildinfo for version 5.0.0 on 64 bit x86 SMP
linux-gcp-headers-5.0.0-1025 - Header files related to Linux kernel version 5.0.0
linux-gcp-tools-5.0.0-1025 - Linux kernel version specific tools for version 5.0.0-1025
linux-headers-5.0.0-1025-gcp - Linux kernel headers for version 5.0.0 on 64 bit x86 SMP
linux-image-unsigned-5.0.0-1025-gcp - Linux kernel image for version 5.0.0 on 64 bit x86 SMP
linux-image-unsigned-5.0.0-1025-gcp-dbgsym - Linux kernel debug image for version 5.0.0 on 64 bit x86 SMP
linux-modules-5.0.0-1025-gcp - Linux kernel extra modules for version 5.0.0 on 64 bit x86 SMP
linux-modules-extra-5.0.0-1025-gcp - Linux kernel extra modules for version 5.0.0 on 64 bit x86 SMP
linux-tools-5.0.0-1025-gcp - Linux kernel version specific tools for version 5.0.0-1025
Launchpad-Bugs-Fixed: 1849682 1850574 1850867
Changes:
linux-gcp (5.0.0-1025.26~18.04.1) bionic; urgency=medium
.
[ Ubuntu: 5.0.0-1025.26 ]
.
* CVE-2019-11135
- [Config] gcp: Disable TSX by default when possible
* [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout
setting (LP: #1849682)
- SAUCE: Fix revert "md/raid0: avoid RAID0 data corruption due to layout
confusion."
* refcount underflow and type confusion in shiftfs (LP: #1850867) // CVE-2019-15793
- SAUCE: shiftfs: Correct id translation for lower fs operations
- SAUCE: shiftfs: prevent type confusion
- SAUCE: shiftfs: Fix refcount underflow in btrfs ioctl handling
* CVE-2018-12207
- kvm: Convert kvm_lock to a mutex
- kvm: x86: Do not release the page inside mmu_set_spte()
- KVM: x86: make FNAME(fetch) and __direct_map more similar
- KVM: x86: remove now unneeded hugepage gfn adjustment
- KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON
- KVM: x86: add tracepoints around __direct_map and FNAME(fetch)
- kvm: x86, powerpc: do not allow clearing largepages debugfs entry
- SAUCE: KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is
active
- SAUCE: x86: Add ITLB_MULTIHIT bug infrastructure
- SAUCE: kvm: mmu: ITLB_MULTIHIT mitigation
- SAUCE: kvm: Add helper function for creating VM worker threads
- SAUCE: kvm: x86: mmu: Recovery of shattered NX large pages
- SAUCE: cpu/speculation: Uninline and export CPU mitigations helpers
- SAUCE: kvm: x86: mmu: Apply global mitigations knob to ITLB_MULTIHIT
* CVE-2019-11135
- KVM: x86: use Intel speculation bugs and features as derived in generic x86
code
- x86/msr: Add the IA32_TSX_CTRL MSR
- x86/cpu: Add a helper function x86_read_arch_cap_msr()
- x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default
- x86/speculation/taa: Add mitigation for TSX Async Abort
- x86/speculation/taa: Add sysfs reporting for TSX Async Abort
- kvm/x86: Export MDS_NO=0 to guests when TSX is enabled
- x86/tsx: Add "auto" option to the tsx= cmdline parameter
- x86/speculation/taa: Add documentation for TSX Async Abort
- x86/tsx: Add config options to set tsx=on|off|auto
- SAUCE: x86/speculation/taa: Call tsx_init()
- [Config] Disable TSX by default when possible
* CVE-2019-0154
- SAUCE: drm/i915: Lower RM timeout to avoid DSI hard hangs
- SAUCE: drm/i915/gen8+: Add RC6 CTX corruption WA
* CVE-2019-0155
- SAUCE: drm/i915: Rename gen7 cmdparser tables
- SAUCE: drm/i915: Disable Secure Batches for gen6+
- SAUCE: drm/i915: Remove Master tables from cmdparser
- SAUCE: drm/i915: Add support for mandatory cmdparsing
- SAUCE: drm/i915: Support ro ppgtt mapped cmdparser shadow buffers
- SAUCE: drm/i915: Allow parsing of unsized batches
- SAUCE: drm/i915: Add gen9 BCS cmdparsing
- SAUCE: drm/i915/cmdparser: Use explicit goto for error paths
- SAUCE: drm/i915/cmdparser: Add support for backward jumps
- SAUCE: drm/i915/cmdparser: Ignore Length operands during command matching
* disco/linux: <version to be filled> -proposed tracker (LP: #1850574)
* [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout
setting (LP: #1849682)
- Revert "md/raid0: avoid RAID0 data corruption due to layout confusion."
Checksums-Sha1:
601e84afcf79d7b93c0f1a7ccee40ad4b2867b42 412288 linux-buildinfo-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
d9d4ae205210ded2ef35a8e33cd6dca191fdb1d5 10852936 linux-gcp-headers-5.0.0-1025_5.0.0-1025.26~18.04.1_amd64.deb
ef9fe2a0082df3b433bac7a9de89e314eb5c060f 4895196 linux-gcp-tools-5.0.0-1025_5.0.0-1025.26~18.04.1_amd64.deb
863613514d16e96e8c8e3902d5f3b9097c84e21a 15846 linux-gcp_5.0.0-1025.26~18.04.1_amd64.buildinfo
e2ca6441afd99de3d0de048a5368d5e9944a985a 8511186 linux-gcp_5.0.0-1025.26~18.04.1_amd64.tar.gz
ad692b7f4f0830310d62c177d6bb5e2a63382af9 24516 linux-gcp_5.0.0-1025.26~18.04.1_amd64_translations.tar.gz
7f72032300a3482d620627aac78b2c6af2bd01d7 1272096 linux-headers-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
2ca60054e27942fba6a32e2d80b5030696a160de 834703200 linux-image-unsigned-5.0.0-1025-gcp-dbgsym_5.0.0-1025.26~18.04.1_amd64.ddeb
4f92523e5ed62fab743ca159be43778a598ad1d5 8694152 linux-image-unsigned-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
cd2855e033afbbb73ce623b9e4336b281af0dc2c 13580352 linux-modules-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
39b35760cd3e8f975ded743e6fa45628887622f9 33356332 linux-modules-extra-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
e74dce837a51c7a2d00a3b06802790e7de8c797a 1956 linux-tools-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
Checksums-Sha256:
73a4bab202f4c4eedfee50ed7099163ca67d23977671426a7dfda40f767b1b53 412288 linux-buildinfo-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
6438ef305647a0f68b4f2d990a1be7d16795be117f71c487680d0028d1b27dc6 10852936 linux-gcp-headers-5.0.0-1025_5.0.0-1025.26~18.04.1_amd64.deb
63f76ace22053cc8c382168ed13fa2425831e951e5c8750185f202e7df0b5628 4895196 linux-gcp-tools-5.0.0-1025_5.0.0-1025.26~18.04.1_amd64.deb
ba5dff0f1cb3d8cec9b26405169619ad5a2ea711e27dde05792ff8c6df77a71f 15846 linux-gcp_5.0.0-1025.26~18.04.1_amd64.buildinfo
fb39d29e043170d30a87758cf032638de6b3add03eaa0e250b398c7745033d4a 8511186 linux-gcp_5.0.0-1025.26~18.04.1_amd64.tar.gz
d720212f67e6f1c02c35e7b5f91a857bfdbbbe3ca4be9a3059226740d8dcbc5a 24516 linux-gcp_5.0.0-1025.26~18.04.1_amd64_translations.tar.gz
d7f1c47f09c1134f809d1861b00e69855c8d6890c57fc378059b6b4d494e8fbc 1272096 linux-headers-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
db9b1dbca68c935141729c80255db46af2f002dbdc0ed2434d97d59881b179f5 834703200 linux-image-unsigned-5.0.0-1025-gcp-dbgsym_5.0.0-1025.26~18.04.1_amd64.ddeb
59ee214bdf3a929e73d3bbf133b5962c7be8b7ba292b3582e92c06deb5df276f 8694152 linux-image-unsigned-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
5c66a83d6ee552cfa1775061fc25da559ac8a86b705ae175d812dc9bd98fcf8f 13580352 linux-modules-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
59654e9fcb6fa91140a3908288ca4f35b728decec3ed9a3a5292ccf3448e82cf 33356332 linux-modules-extra-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
5629c61395a2142ac9ec4b2ec3e643afb2c2e1cc4fd51dcfa2b2b05d74b5a7a7 1956 linux-tools-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
Files:
4941d9067f658f2bb4085f086b2c1e92 412288 kernel optional linux-buildinfo-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
901a986da83883e0ab4bea6dc6442df0 10852936 devel optional linux-gcp-headers-5.0.0-1025_5.0.0-1025.26~18.04.1_amd64.deb
95e19ec737d4384620cb1d4e4b2bd985 4895196 devel optional linux-gcp-tools-5.0.0-1025_5.0.0-1025.26~18.04.1_amd64.deb
6f1831a7b7f38eb6283f1bf2af24452c 15846 devel optional linux-gcp_5.0.0-1025.26~18.04.1_amd64.buildinfo
7673fdf3e99fcff49adf2c78eec2a88d 8511186 raw-signing - linux-gcp_5.0.0-1025.26~18.04.1_amd64.tar.gz
daef619efdccac172ab8a46d3a98768e 24516 raw-translations - linux-gcp_5.0.0-1025.26~18.04.1_amd64_translations.tar.gz
b3df0692bbd940a5b5ef2f50e4cf3c3b 1272096 devel optional linux-headers-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
1ff520659b6c1a7f505b30c41e2f3a10 834703200 devel optional linux-image-unsigned-5.0.0-1025-gcp-dbgsym_5.0.0-1025.26~18.04.1_amd64.ddeb
db741a89830a0debf9813c6b6259937a 8694152 kernel optional linux-image-unsigned-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
92bf8cdc977047f65dd36f6c4486c375 13580352 kernel optional linux-modules-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
06e761f3e18a230c37d9a96fcbe82746 33356332 kernel optional linux-modules-extra-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
5219c47e67fb71cd67b8097695bdd126 1956 devel optional linux-tools-5.0.0-1025-gcp_5.0.0-1025.26~18.04.1_amd64.deb
More information about the Bionic-changes
mailing list