[ubuntu/disco-proposed] linux-gcp_5.0.0-1025.26_amd64.tar.gz - (Accepted)
Stefan Bader
stefan.bader at canonical.com
Tue Nov 12 18:07:51 UTC 2019
linux-gcp (5.0.0-1025.26) disco; urgency=medium
* CVE-2019-11135
- [Config] gcp: Disable TSX by default when possible
[ Ubuntu: 5.0.0-35.38 ]
* [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout
setting (LP: #1849682)
- SAUCE: Fix revert "md/raid0: avoid RAID0 data corruption due to layout
confusion."
* refcount underflow and type confusion in shiftfs (LP: #1850867) // CVE-2019-15793
- SAUCE: shiftfs: Correct id translation for lower fs operations
- SAUCE: shiftfs: prevent type confusion
- SAUCE: shiftfs: Fix refcount underflow in btrfs ioctl handling
* CVE-2018-12207
- kvm: Convert kvm_lock to a mutex
- kvm: x86: Do not release the page inside mmu_set_spte()
- KVM: x86: make FNAME(fetch) and __direct_map more similar
- KVM: x86: remove now unneeded hugepage gfn adjustment
- KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON
- KVM: x86: add tracepoints around __direct_map and FNAME(fetch)
- kvm: x86, powerpc: do not allow clearing largepages debugfs entry
- SAUCE: KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is
active
- SAUCE: x86: Add ITLB_MULTIHIT bug infrastructure
- SAUCE: kvm: mmu: ITLB_MULTIHIT mitigation
- SAUCE: kvm: Add helper function for creating VM worker threads
- SAUCE: kvm: x86: mmu: Recovery of shattered NX large pages
- SAUCE: cpu/speculation: Uninline and export CPU mitigations helpers
- SAUCE: kvm: x86: mmu: Apply global mitigations knob to ITLB_MULTIHIT
* CVE-2019-11135
- KVM: x86: use Intel speculation bugs and features as derived in generic x86
code
- x86/msr: Add the IA32_TSX_CTRL MSR
- x86/cpu: Add a helper function x86_read_arch_cap_msr()
- x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default
- x86/speculation/taa: Add mitigation for TSX Async Abort
- x86/speculation/taa: Add sysfs reporting for TSX Async Abort
- kvm/x86: Export MDS_NO=0 to guests when TSX is enabled
- x86/tsx: Add "auto" option to the tsx= cmdline parameter
- x86/speculation/taa: Add documentation for TSX Async Abort
- x86/tsx: Add config options to set tsx=on|off|auto
- SAUCE: x86/speculation/taa: Call tsx_init()
- [Config] Disable TSX by default when possible
* CVE-2019-0154
- SAUCE: drm/i915: Lower RM timeout to avoid DSI hard hangs
- SAUCE: drm/i915/gen8+: Add RC6 CTX corruption WA
* CVE-2019-0155
- SAUCE: drm/i915: Rename gen7 cmdparser tables
- SAUCE: drm/i915: Disable Secure Batches for gen6+
- SAUCE: drm/i915: Remove Master tables from cmdparser
- SAUCE: drm/i915: Add support for mandatory cmdparsing
- SAUCE: drm/i915: Support ro ppgtt mapped cmdparser shadow buffers
- SAUCE: drm/i915: Allow parsing of unsized batches
- SAUCE: drm/i915: Add gen9 BCS cmdparsing
- SAUCE: drm/i915/cmdparser: Use explicit goto for error paths
- SAUCE: drm/i915/cmdparser: Add support for backward jumps
- SAUCE: drm/i915/cmdparser: Ignore Length operands during command matching
[ Ubuntu: 5.0.0-34.36 ]
* disco/linux: <version to be filled> -proposed tracker (LP: #1850574)
* [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout
setting (LP: #1849682)
- Revert "md/raid0: avoid RAID0 data corruption due to layout confusion."
Date: Mon, 11 Nov 2019 12:43:30 +0100
Changed-By: Stefan Bader <stefan.bader at canonical.com>
Maintainer: Launchpad Build Daemon <buildd at lgw01-amd64-036.buildd>
-------------- next part --------------
Format: 1.8
Date: Mon, 11 Nov 2019 12:43:30 +0100
Source: linux-gcp
Binary: linux-buildinfo-5.0.0-1025-gcp linux-gcp-headers-5.0.0-1025 linux-gcp-tools-5.0.0-1025 linux-headers-5.0.0-1025-gcp linux-image-unsigned-5.0.0-1025-gcp linux-modules-5.0.0-1025-gcp linux-modules-extra-5.0.0-1025-gcp linux-tools-5.0.0-1025-gcp
Architecture: amd64 amd64_translations
Version: 5.0.0-1025.26
Distribution: disco
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd at lgw01-amd64-036.buildd>
Changed-By: Stefan Bader <stefan.bader at canonical.com>
Description:
linux-buildinfo-5.0.0-1025-gcp - Linux kernel buildinfo for version 5.0.0 on 64 bit x86 SMP
linux-gcp-headers-5.0.0-1025 - Header files related to Linux kernel version 5.0.0
linux-gcp-tools-5.0.0-1025 - Linux kernel version specific tools for version 5.0.0-1025
linux-headers-5.0.0-1025-gcp - Linux kernel headers for version 5.0.0 on 64 bit x86 SMP
linux-image-unsigned-5.0.0-1025-gcp - Linux kernel image for version 5.0.0 on 64 bit x86 SMP
linux-modules-5.0.0-1025-gcp - Linux kernel extra modules for version 5.0.0 on 64 bit x86 SMP
linux-modules-extra-5.0.0-1025-gcp - Linux kernel extra modules for version 5.0.0 on 64 bit x86 SMP
linux-tools-5.0.0-1025-gcp - Linux kernel version specific tools for version 5.0.0-1025
Launchpad-Bugs-Fixed: 1849682 1850574 1850867
Changes:
linux-gcp (5.0.0-1025.26) disco; urgency=medium
.
* CVE-2019-11135
- [Config] gcp: Disable TSX by default when possible
.
[ Ubuntu: 5.0.0-35.38 ]
.
* [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout
setting (LP: #1849682)
- SAUCE: Fix revert "md/raid0: avoid RAID0 data corruption due to layout
confusion."
* refcount underflow and type confusion in shiftfs (LP: #1850867) // CVE-2019-15793
- SAUCE: shiftfs: Correct id translation for lower fs operations
- SAUCE: shiftfs: prevent type confusion
- SAUCE: shiftfs: Fix refcount underflow in btrfs ioctl handling
* CVE-2018-12207
- kvm: Convert kvm_lock to a mutex
- kvm: x86: Do not release the page inside mmu_set_spte()
- KVM: x86: make FNAME(fetch) and __direct_map more similar
- KVM: x86: remove now unneeded hugepage gfn adjustment
- KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON
- KVM: x86: add tracepoints around __direct_map and FNAME(fetch)
- kvm: x86, powerpc: do not allow clearing largepages debugfs entry
- SAUCE: KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is
active
- SAUCE: x86: Add ITLB_MULTIHIT bug infrastructure
- SAUCE: kvm: mmu: ITLB_MULTIHIT mitigation
- SAUCE: kvm: Add helper function for creating VM worker threads
- SAUCE: kvm: x86: mmu: Recovery of shattered NX large pages
- SAUCE: cpu/speculation: Uninline and export CPU mitigations helpers
- SAUCE: kvm: x86: mmu: Apply global mitigations knob to ITLB_MULTIHIT
* CVE-2019-11135
- KVM: x86: use Intel speculation bugs and features as derived in generic x86
code
- x86/msr: Add the IA32_TSX_CTRL MSR
- x86/cpu: Add a helper function x86_read_arch_cap_msr()
- x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default
- x86/speculation/taa: Add mitigation for TSX Async Abort
- x86/speculation/taa: Add sysfs reporting for TSX Async Abort
- kvm/x86: Export MDS_NO=0 to guests when TSX is enabled
- x86/tsx: Add "auto" option to the tsx= cmdline parameter
- x86/speculation/taa: Add documentation for TSX Async Abort
- x86/tsx: Add config options to set tsx=on|off|auto
- SAUCE: x86/speculation/taa: Call tsx_init()
- [Config] Disable TSX by default when possible
* CVE-2019-0154
- SAUCE: drm/i915: Lower RM timeout to avoid DSI hard hangs
- SAUCE: drm/i915/gen8+: Add RC6 CTX corruption WA
* CVE-2019-0155
- SAUCE: drm/i915: Rename gen7 cmdparser tables
- SAUCE: drm/i915: Disable Secure Batches for gen6+
- SAUCE: drm/i915: Remove Master tables from cmdparser
- SAUCE: drm/i915: Add support for mandatory cmdparsing
- SAUCE: drm/i915: Support ro ppgtt mapped cmdparser shadow buffers
- SAUCE: drm/i915: Allow parsing of unsized batches
- SAUCE: drm/i915: Add gen9 BCS cmdparsing
- SAUCE: drm/i915/cmdparser: Use explicit goto for error paths
- SAUCE: drm/i915/cmdparser: Add support for backward jumps
- SAUCE: drm/i915/cmdparser: Ignore Length operands during command matching
.
[ Ubuntu: 5.0.0-34.36 ]
.
* disco/linux: <version to be filled> -proposed tracker (LP: #1850574)
* [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout
setting (LP: #1849682)
- Revert "md/raid0: avoid RAID0 data corruption due to layout confusion."
Checksums-Sha1:
ee244248bbc38c2a55f47d735011f03de0d35f96 313444 linux-buildinfo-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
0c0455b9e3b1cb33247e2cb8b1eb913a8776f800 10756008 linux-gcp-headers-5.0.0-1025_5.0.0-1025.26_amd64.deb
e6a809b5e33e182a961097f89957f30481045641 5172448 linux-gcp-tools-5.0.0-1025_5.0.0-1025.26_amd64.deb
5cc8c6dee6f4d6b5492794ff0aa48710372d7fe1 15280 linux-gcp_5.0.0-1025.26_amd64.buildinfo
02b71e76924ef1440ca69153d7f91b506b7bfdd9 8532420 linux-gcp_5.0.0-1025.26_amd64.tar.gz
573903ec4d36372824b6daa81563b51151531317 24518 linux-gcp_5.0.0-1025.26_amd64_translations.tar.gz
838de9cc04c80102e14648c336acc264372441da 1240036 linux-headers-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
8db7f50054178cad307f9ee1d0e6f13de63fa764 875449756 linux-image-unsigned-5.0.0-1025-gcp-dbgsym_5.0.0-1025.26_amd64.ddeb
8c234e0e678e7261b58ccaeff07568bdad3bbc7d 8618384 linux-image-unsigned-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
12b9926539029ea6c18a9ee6ff0bafd9c653dd5d 13606228 linux-modules-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
168b533da8429fed3b484b2a3f7ea3546e5a965c 33504072 linux-modules-extra-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
54f86a3f316881d01931c8d75f781514c04450eb 1948 linux-tools-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
Checksums-Sha256:
e4038a918bf3158034c99b4aa75747b7d786c4e16c91e5f666497307bcdd45a6 313444 linux-buildinfo-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
a3624c86d7cc69405310ae0bf84823f4dff20c57064029626bce0b5ee1d1a2c9 10756008 linux-gcp-headers-5.0.0-1025_5.0.0-1025.26_amd64.deb
fc43da03efdd715d434508741de033de36363c0acc77ea06f0fa01fef1ba572b 5172448 linux-gcp-tools-5.0.0-1025_5.0.0-1025.26_amd64.deb
6cef8de510577ca13c5b8fe59489c7485dd20fc7066e3e3e31fa3a61ed28c750 15280 linux-gcp_5.0.0-1025.26_amd64.buildinfo
edc7e630ebb5f48994f91d7cb11fa8adc878b79345e0e2398b75348ebb2c1dba 8532420 linux-gcp_5.0.0-1025.26_amd64.tar.gz
f3a9fc440db022ffea69525108836256fb6f9bc2406c11b4ff12533a46134dea 24518 linux-gcp_5.0.0-1025.26_amd64_translations.tar.gz
842a75d50eb8eefee1343e7dee3b0eb2a6c0307911e85e8f21cd288481433a79 1240036 linux-headers-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
870bae8bb794c77c7d2738e9572d23233eb20eb66bc05bde0654a1000c574598 875449756 linux-image-unsigned-5.0.0-1025-gcp-dbgsym_5.0.0-1025.26_amd64.ddeb
08a4aa2acbeda9bb377e40c39eb1d32c5e94c32f6668004f47e395b8a412fda7 8618384 linux-image-unsigned-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
c882f8fad6554d6b5585bb1fcf1e2dbaeeb974cbcea2259870267a1b92331a88 13606228 linux-modules-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
cd36eb3396ffe135bba5e62b34f0458ec1946ac869689ea4f736217773ffd8b8 33504072 linux-modules-extra-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
fada5dd440482cc15cf34dacce9653cdf6b44a7dc6a93f8487b3ab1a37d4b9dd 1948 linux-tools-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
Files:
d3f33f42dae166099c703c2fcb702e1d 313444 kernel optional linux-buildinfo-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
caad1e0a792579a7b9dba11599657fec 10756008 devel optional linux-gcp-headers-5.0.0-1025_5.0.0-1025.26_amd64.deb
356f8a239900a89e0b0e9ff780830862 5172448 devel optional linux-gcp-tools-5.0.0-1025_5.0.0-1025.26_amd64.deb
b2668c6ae16df936e6d79d57de23a7d1 15280 devel optional linux-gcp_5.0.0-1025.26_amd64.buildinfo
79db7d6272ece2d7ec8e87fb001cf02a 8532420 raw-signing - linux-gcp_5.0.0-1025.26_amd64.tar.gz
2182a81eb1c9714383fc708dec882fe4 24518 raw-translations - linux-gcp_5.0.0-1025.26_amd64_translations.tar.gz
7059ddc244e7116b096ca780d86ebf37 1240036 devel optional linux-headers-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
8560066ae453e04608e5e202ef48592c 875449756 devel optional linux-image-unsigned-5.0.0-1025-gcp-dbgsym_5.0.0-1025.26_amd64.ddeb
5b5acf34e123555eb45cbf657c0eb26d 8618384 kernel optional linux-image-unsigned-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
75bc9e14f0c12454add3d2f02cf1e903 13606228 kernel optional linux-modules-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
87fedc9f211afaa3f249a934814d57c6 33504072 kernel optional linux-modules-extra-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
ff5a204f828d7d2f73ea8bb22744b0b7 1948 devel optional linux-tools-5.0.0-1025-gcp_5.0.0-1025.26_amd64.deb
More information about the Disco-changes
mailing list