[ubuntu/xenial-security] linux-raspi2 4.4.0-1038.45 (Accepted)
Steve Langasek
steve.langasek at canonical.com
Tue Dec 20 18:54:06 UTC 2016
linux-raspi2 (4.4.0-1038.45) xenial; urgency=low
[ Luis Henriques ]
* Release Tracking Bug
- LP: #1648872
[ Ubuntu: 4.4.0-57.78 ]
* Release Tracking Bug
- LP: #1648867
* Miscellaneous Ubuntu changes
- SAUCE: Do not build the xr-usb-serial driver for s390
[ Ubuntu: 4.4.0-56.77 ]
* Release Tracking Bug
- LP: #1648867
* Release Tracking Bug
- LP: #1648579
* CONFIG_NR_CPUS=256 is too low (LP: #1579205)
- [Config] Increase the NR_CPUS to 512 for amd64 to support systems with a
large number of cores.
* NVMe drives in Amazon AWS instance fail to initialize (LP: #1648449)
- SAUCE: (no-up) NVMe: only setup MSIX once
linux-raspi2 (4.4.0-1037.44) xenial; urgency=low
* Release Tracking Bug
- LP: #1648582
* CONFIG_NR_CPUS=256 is too low (LP: #1579205)
- [Config] Increase the NR_CPUS to 512 for amd64 to support systems with a
large number of cores.
* NVMe drives in Amazon AWS instance fail to initialize (LP: #1648449)
- SAUCE: (no-up) NVMe: only setup MSIX once
linux-raspi2 (4.4.0-1036.43) xenial; urgency=low
[ Luis Henriques ]
* Release Tracking Bug
- LP: #1648511
[ Ubuntu: 4.4.0-55.76 ]
* Release Tracking Bug
- LP: #1648503
* NVMe driver accidentally reverted to use GSI instead of MSIX (LP: #1647887)
- (fix) NVMe: restore code to always use MSI/MSI-x interrupts
linux-raspi2 (4.4.0-1035.42) xenial; urgency=low
[ Luis Henriques ]
* Release Tracking Bug
- LP: #1640513
* Dropped commit 'brcmfmac: Plug memory leak in brcmf_fill_bss_param' as
upstream 23e9c128adb2 ("brcmfmac: fix memory leak in
brcmf_fill_bss_param"), which was merged into the main kernel
* UBUNTU: [Config] updateconfigs
* Dropped the following 2 commits due as they were breaking raspi2 build:
- Revert "net_sched: fix mirrored packets checksum"
- net: fix bridge multicast packet checksum validation
* BSP stable update (LP: #1647390)
- drm/vc4: Fix up the limited range RGB output commit.
- drm/vc4: Increase timeout for HDMI_SCHEDULER_CONTROL changes.
- drm/vc4: Disallow interlaced modes on DPI.
- drm/vc4: Fix handling of interlaced video modes.
- drm/vc4: Reject doublescan modes.
- drm/vc4: Enable precise vblank timestamping for interlaced modes.
- drm/vc4: Enable/Disable vblanks properly in crtc en/disable.
- drm/vc4: Fix support for interlaced modes on HDMI.
- clk: bcm2835: Clamp the PLL's requested rate to the hardware limits.
- drm/vc4: Set up the AVI and SPD infoframes.
- drm/vc4: Add support for double-clocked modes.
- BCM270X_DT: Update CM3 to use sdhost interface
- drm/vc4: Fix memory leak of the CRTC state.
- Support for Blokas Labs pisound board
- pisound: Fix a warning in DEBUG builds
- config: Add CONFIG_HTU21 module
- spi-bcm2835: Remove unused code
- bcm2708_fb: Add ioctl for reading gpu memory through dma
- rpi-ft5406: Create coherent buffer and push to firmware
- brcmvirt_gpio: Create coherent buffer and push to firmware
- brcmvirt_gpio: Pass device structure into dma_zalloc_coherent
- rpi-ft5406: Pass device structure into dma_zalloc_coherent
- drm/vc4: Fix a couple error codes in vc4_cl_lookup_bos()
- drm/vc4: Fix termination of the initial scan for branch targets.
- drm/vc4: Add support for rendering with ETC1 textures.
- drm/vc4: Use runtime autosuspend to avoid thrashing V3D power state.
- drm/vc4: Use drm_gem_object_unreference_unlocked
- drm/vc4: Use drm_malloc_ab to fix large rendering jobs.
- drm/vc4: Free hang state before destroying BO cache.
- fixup: fb: Use basic types for dma addresses as these are also included from
user code
- fb: Use correct bus address for dest of dma memcpy
- drm/vc4: Add fragment shader threading support
- fb: Use struct device for dma_alloc_coherent
- ARM: dts: Visit overlays subdir unconditionally
- Fix bit offsets for equal volume and add 8 kHz operation (#1727)
- config: Add ABX80X RTC driver and overlay
- config: Add AK4554 audio codec driver
- ARM: dts: Restore dtbs_install functionality
- BCM270X_DT: Update UART0 clock-frequency
- [Config] SND_PISOUND=m
- BCM2835-v4l2: Fix a conformance test failure
[ Ubuntu: 4.4.0-54.75 ]
* Release Tracking Bug
- LP: #1648017
* Update hio driver to 2.1.0.28 (LP: #1646643)
- SAUCE: hio: update to Huawei ES3000_V2 (2.1.0.28)
* linux: Enable live patching for all supported architectures (LP: #1633577)
- [Config] CONFIG_LIVEPATCH=y for s390x
* Botched backport breaks level triggered EOIs in QEMU guests with --machine
kernel_irqchip=split (LP: #1644394)
- kvm/irqchip: kvm_arch_irq_routing_update renaming split
* Xenial update to v4.4.35 stable release (LP: #1645453)
- x86/cpu/AMD: Fix cpu_llc_id for AMD Fam17h systems
- KVM: x86: fix missed SRCU usage in kvm_lapic_set_vapic_addr
- KVM: Disable irq while unregistering user notifier
- fuse: fix fuse_write_end() if zero bytes were copied
- mfd: intel-lpss: Do not put device in reset state on suspend
- can: bcm: fix warning in bcm_connect/proc_register
- i2c: mux: fix up dependencies
- kbuild: add -fno-PIE
- scripts/has-stack-protector: add -fno-PIE
- x86/kexec: add -fno-PIE
- kbuild: Steal gcc's pie from the very beginning
- ext4: sanity check the block and cluster size at mount time
- crypto: caam - do not register AES-XTS mode on LP units
- drm/amdgpu: Attach exclusive fence to prime exported bo's. (v5)
- clk: mmp: pxa910: fix return value check in pxa910_clk_init()
- clk: mmp: pxa168: fix return value check in pxa168_clk_init()
- clk: mmp: mmp2: fix return value check in mmp2_clk_init()
- rtc: omap: Fix selecting external osc
- iwlwifi: pcie: fix SPLC structure parsing
- mfd: core: Fix device reference leak in mfd_clone_cell
- uwb: fix device reference leaks
- PM / sleep: fix device reference leak in test_suspend
- PM / sleep: don't suspend parent when async child suspend_{noirq, late}
fails
- IB/mlx4: Check gid_index return value
- IB/mlx4: Fix create CQ error flow
- IB/mlx5: Use cache line size to select CQE stride
- IB/mlx5: Fix fatal error dispatching
- IB/core: Avoid unsigned int overflow in sg_alloc_table
- IB/uverbs: Fix leak of XRC target QPs
- IB/cm: Mark stale CM id's whenever the mad agent was unregistered
- netfilter: nft_dynset: fix element timeout for HZ != 1000
- Linux 4.4.35
* Upstream stable 4.4.34 and 4.8.10 regression (LP: #1645278)
- flow_dissect: call init_default_flow_dissectors() earlier
* AD5593R configurable multi-channel converter support (LP: #1644726)
- iio: dac: Add support for the AD5592R/AD5593R ADCs/DACs
- iio: dac: ad5592r: Off by one bug in ad5592r_alloc_channels()
- [Config] CONFIG_AD5592R/AD5593R=m
* ST Micro lps22hb pressure sensor support (LP: #1642258)
- iio:st_pressure:initial lps22hb sensor support
- iio:st_pressure: align storagebits on power of 2
- iio:st_pressure: document sampling gains
- iio:st_pressure:lps22hb: temperature support
* Fix Kernel Crashing under IBM Virtual Scsi Driver (LP: #1642299)
- SAUCE: ibmvscsis: Rearrange functions for future patches
- SAUCE: ibmvscsis: Synchronize cmds at tpg_enable_store time
- SAUCE: ibmvscsis: Synchronize cmds at remove time
- SAUCE: ibmvscsis: Clean up properly if target_submit_cmd/tmr fails
- SAUCE: ibmvscsis: Return correct partition name/# to client
- SAUCE: ibmvscsis: Issues from Dan Carpenter/Smatch
* System stalls when creating device node on booting (LP: #1643797)
- sched/fair: Fix new task's load avg removed from source CPU in
wake_up_new_task()
* nvme: improve performance for virtual Google NVMe devices (LP: #1637565)
- blk-mq: add blk_mq_alloc_request_hctx
- nvme.h: add NVMe over Fabrics definitions
- [Config] CONFIG_NVME_VENDOR_EXT_GOOGLE=y
- SAUCE: nvme: improve performance for virtual NVMe devices
* Move some kernel modules to the main kernel package (LP: #1642228)
- [Config] Move some powerpc kernel modules to the main kernel package
* sched: Match-all classifier is missing in xenial (LP: #1642514)
- [Config] CONFIG_NET_CLS_MATCHALL=m
- net/sched: introduce Match-all classifier
* Xenial update to 4.4.34 stable release (LP: #1643637)
- dctcp: avoid bogus doubling of cwnd after loss
- net: clear sk_err_soft in sk_clone_lock()
- net: mangle zero checksum in skb_checksum_help()
- bgmac: stop clearing DMA receive control register right after it is set
- ip6_tunnel: Clear IP6CB in ip6tunnel_xmit()
- tcp: fix potential memory corruption
- dccp: do not send reset to already closed sockets
- dccp: fix out of bound access in dccp_v4_err()
- ipv6: dccp: fix out of bound access in dccp_v6_err()
- ipv6: dccp: add missing bind_conflict to dccp_ipv6_mapped
- sctp: assign assoc_id earlier in __sctp_connect
- fib_trie: Correct /proc/net/route off by one error
- sock: fix sendmmsg for partial sendmsg
- net: __skb_flow_dissect() must cap its return value
- ipv4: use new_gw for redirect neigh lookup
- tcp: take care of truncations done by sk_filter()
- tty: Prevent ldisc drivers from re-using stale tty fields
- sparc: Don't leak context bits into thread->fault_address
- sparc: serial: sunhv: fix a double lock bug
- sparc64 mm: Fix base TSB sizing when hugetlb pages are used
- sparc: Handle negative offsets in arch_jump_label_transform
- sparc64: Handle extremely large kernel TSB range flushes sanely.
- sparc64: Fix illegal relative branches in hypervisor patched TLB code.
- sparc64: Fix instruction count in comment for
__hypervisor_flush_tlb_pending.
- sparc64: Fix illegal relative branches in hypervisor patched TLB cross-call
code.
- sparc64: Handle extremely large kernel TLB range flushes more gracefully.
- sparc64: Delete __ret_efault.
- sparc64: Prepare to move to more saner user copy exception handling.
- sparc64: Convert copy_in_user to accurate exception reporting.
- sparc64: Convert GENcopy_{from,to}_user to accurate exception reporting.
- sparc64: Convert U1copy_{from,to}_user to accurate exception reporting.
- sparc64: Convert NG4copy_{from,to}_user to accurate exception reporting.
- sparc64: Convert NGcopy_{from,to}_user to accurate exception reporting.
- sparc64: Convert NG2copy_{from,to}_user to accurate exception reporting.
- sparc64: Convert U3copy_{from,to}_user to accurate exception reporting.
- sparc64: Delete now unused user copy assembler helpers.
- sparc64: Delete now unused user copy fixup functions.
- Linux 4.4.34
* Xenial update to v4.4.33 stable release (LP: #1642968)
- ALSA: info: Return error for invalid read/write
- ALSA: info: Limit the proc text input size
- ASoC: cs4270: fix DAPM stream name mismatch
- dib0700: fix nec repeat handling
- swapfile: fix memory corruption via malformed swapfile
- coredump: fix unfreezable coredumping task
- s390/hypfs: Use get_free_page() instead of kmalloc to ensure page alignment
- ARC: timer: rtc: implement read loop in "C" vs. inline asm
- pinctrl: cherryview: Serialize register access in suspend/resume
- pinctrl: cherryview: Prevent possible interrupt storm on resume
- staging: iio: ad5933: avoid uninitialized variable in error case
- drivers: staging: nvec: remove bogus reset command for PS/2 interface
- Revert "staging: nvec: ps2: change serio type to passthrough"
- staging: nvec: remove managed resource from PS2 driver
- USB: cdc-acm: fix TIOCMIWAIT
- usb: gadget: u_ether: remove interrupt throttling
- drbd: Fix kernel_sendmsg() usage - potential NULL deref
- toshiba-wmi: Fix loading the driver on non Toshiba laptops
- clk: qoriq: Don't allow CPU clocks higher than starting value
- iio: hid-sensors: Increase the precision of scale to fix wrong reading
interpretation.
- iio: orientation: hid-sensor-rotation: Add PM function (fix non working
driver)
- scsi: qla2xxx: Fix scsi scan hang triggered if adapter fails during init
- scsi: mpt3sas: Fix for block device of raid exists even after deleting raid
disk
- KVM: MIPS: Precalculate MMIO load resume PC
- drm/i915: Respect alternate_ddc_pin for all DDI ports
- dmaengine: at_xdmac: fix spurious flag status for mem2mem transfers
- tty/serial: at91: fix hardware handshake on Atmel platforms
- iommu/amd: Free domain id when free a domain of struct dma_ops_domain
- iommu/vt-d: Fix dead-locks in disable_dmar_iommu() path
- mei: bus: fix received data size check in NFC fixup
- lib/genalloc.c: start search from start of chunk
- hwrng: core - Don't use a stack buffer in add_early_randomness()
- i40e: fix call of ndo_dflt_bridge_getlink()
- ACPI / APEI: Fix incorrect return value of ghes_proc()
- ASoC: sun4i-codec: return error code instead of NULL when create_card fails
- mmc: mxs: Initialize the spinlock prior to using it
- btrfs: qgroup: Prevent qgroup->reserved from going subzero
- netfilter: fix namespace handling in nf_log_proc_dostring
- Linux 4.4.33
* Xenial update to 4.4.32 stable release (LP: #1642573)
- tcp: fix overflow in __tcp_retransmit_skb()
- net: avoid sk_forward_alloc overflows
- tcp: fix wrong checksum calculation on MTU probing
- tcp: fix a compile error in DBGUNDO()
- ip6_gre: fix flowi6_proto value in ip6gre_xmit_other()
- ipmr, ip6mr: fix scheduling while atomic and a deadlock with ipmr_get_route
- tg3: Avoid NULL pointer dereference in tg3_io_error_detected()
- net: fec: set mac address unconditionally
- net: pktgen: fix pkt_size
- net/sched: act_vlan: Push skb->data to mac_header prior calling skb_vlan_*()
functions
- net: Add netdev all_adj_list refcnt propagation to fix panic
- packet: call fanout_release, while UNREGISTERING a netdev
- netlink: do not enter direct reclaim from netlink_dump()
- ipv6: tcp: restore IP6CB for pktoptions skbs
- ip6_tunnel: fix ip6_tnl_lookup
- net: pktgen: remove rcu locking in pktgen_change_name()
- bridge: multicast: restore perm router ports on multicast enable
- rtnetlink: Add rtnexthop offload flag to compare mask
- net: add recursion limit to GRO
- ipv4: disable BH in set_ping_group_range()
- ipv4: use the right lock for ping_group_range
- net: sctp, forbid negative length
- udp: fix IP_CHECKSUM handling
- net sched filters: fix notification of filter delete with proper handle
- sctp: validate chunk len before actually using it
- packet: on direct_xmit, limit tso and csum to supported devices
- of: silence warnings due to max() usage
- Revert KVM: MIPS: Drop other CPU ASIDs on guest MMU changes
- KVM: MIPS: Drop other CPU ASIDs on guest MMU changes
- drm/amdgpu/dp: add back special handling for NUTMEG
- drm/amdgpu: fix DP mode validation
- drm/radeon: fix DP mode validation
- scsi: megaraid_sas: fix macro MEGASAS_IS_LOGICAL to avoid regression
- Linux 4.4.32
* Xenial update to 4.4.31 stable release (LP: #1642572)
- i2c: xgene: Avoid dma_buffer overrun
- i2c: core: fix NULL pointer dereference under race condition
- drm/dp/mst: Clear port->pdt when tearing down the i2c adapter
- h8300: fix syscall restarting
- libxfs: clean up _calc_dquots_per_chunk
- mm/list_lru.c: avoid error-path NULL pointer deref
- mm: memcontrol: do not recurse in direct reclaim
- ALSA: usb-audio: Add quirk for Syntek STK1160
- ALSA: hda - Merge RIRB_PRE_DELAY into CTX_WORKAROUND caps
- ALSA: hda - Raise AZX_DCAPS_RIRB_DELAY handling into top drivers
- ALSA: hda - allow 40 bit DMA mask for NVidia devices
- ALSA: hda - Adding a new group of pin cfg into ALC295 pin quirk table
- ALSA: hda - Fix headset mic detection problem for two Dell laptops
- ANDROID: binder: Add strong ref checks
- ANDROID: binder: Clear binder and cookie when setting handle in flat binder
struct
- btrfs: fix races on root_log_ctx lists
- ubifs: Abort readdir upon error
- ubifs: Fix regression in ubifs_readdir()
- mei: txe: don't clean an unprocessed interrupt cause.
- usb: gadget: function: u_ether: don't starve tx request queue
- USB: serial: fix potential NULL-dereference at probe
- USB: serial: ftdi_sio: add support for Infineon TriBoard TC2X7
- xhci: use default USB_RESUME_TIMEOUT when resuming ports.
- usb: increase ohci watchdog delay to 275 msec
- Fix potential infoleak in older kernels
- vt: clear selection before resizing
- xhci: add restart quirk for Intel Wildcatpoint PCH
- tty: limit terminal size to 4M chars
- USB: serial: cp210x: fix tiocmget error handling
- dm: free io_barrier after blk_cleanup_queue call
- KVM: x86: fix wbinvd_dirty_mask use-after-free
- KVM: MIPS: Make ERET handle ERL before EXL
- ovl: fsync after copy-up
- parisc: Ensure consistent state when switching to kernel stack at syscall
entry
- virtio_ring: Make interrupt suppression spec compliant
- virtio: console: Unlock vqs while freeing buffers
- dm mirror: fix read error on recovery after default leg failure
- Input: i8042 - add XMG C504 to keyboard reset table
- firewire: net: guard against rx buffer overflows
- firewire: net: fix fragmented datagram_size off-by-one
- mac80211: discard multicast and 4-addr A-MSDUs
- scsi: megaraid_sas: Fix data integrity failure for JBOD (passthrough)
devices
- scsi: scsi_debug: Fix memory leak if LBP enabled and module is unloaded
- scsi: arcmsr: Send SYNCHRONIZE_CACHE command to firmware
- mmc: dw_mmc-pltfm: fix the potential NULL pointer dereference
- Revert "drm/radeon: fix DP link training issue with second 4K monitor"
- drm/radeon/si_dpm: Limit clocks on HD86xx part
- drm/radeon/si_dpm: workaround for SI kickers
- drm/radeon: drop register readback in cayman_cp_int_cntl_setup
- drm/dp/mst: Check peer device type before attempting EDID read
- perf build: Fix traceevent plugins build race
- x86/xen: fix upper bound of pmd loop in xen_cleanhighmap()
- powerpc/ptrace: Fix out of bounds array access warning
- ARM: 8584/1: floppy: avoid gcc-6 warning
- mm/cma: silence warnings due to max() usage
- drm/exynos: fix error handling in exynos_drm_subdrv_open
- cgroup: avoid false positive gcc-6 warning
- smc91x: avoid self-comparison warning
- Disable "frame-address" warning
- UBI: fastmap: scrub PEB when bitflips are detected in a free PEB EC header
- pwm: Unexport children before chip removal
- usb: dwc3: Fix size used in dma_free_coherent()
- tty: vt, fix bogus division in csi_J
- kvm: x86: Check memopp before dereference (CVE-2016-8630)
- ubi: fastmap: Fix add_vol() return value test in ubi_attach_fastmap()
- HID: usbhid: add ATEN CS962 to list of quirky devices
- Linux 4.4.31
* CVE-2016-6213
- mnt: Add a per mount namespace limit on the number of mounts
* ThinkPad T460 hotkeys stop working in Ubuntu 16.04 (LP: #1642114)
- thinkpad_acpi: Add support for HKEY version 0x200
* CVE-2016-4568
- videobuf2-v4l2: Verify planes array in buffer dequeueing
* [SRU] Add 0cf3:e009 to btusb (LP: #1641562)
- Bluetooth: btusb: Add support for 0cf3:e009
* Fix resource leak in btusb (LP: #1641569)
- SAUCE: Bluetooth: decrease refcount after use
* WiFi LED doesn't work on some Edge Gateway units (LP: #1640418)
- SAUCE: mwifiex: Use PCI ID instead of DMI ID to identify Edge Gateways
* [Hyper-V] do not lose pending heartbeat vmbus packets (LP: #1632786)
- hv: do not lose pending heartbeat vmbus packets
* ipv6: connected routes are missing after a down/up cycle on the loopback
(LP: #1634545)
- ipv6: correctly add local routes when lo goes up
* audit: prevent a new auditd to stop an old auditd still alive (LP: #1633404)
- audit: stop an old auditd being starved out by a new auditd
* hv_set_ifconfig script parsing fails for certain configuration
(LP: #1640109)
- hv_set_ifconfig -- handle DHCP interfaces correctly
- hv_set_ifconfig -- ensure we include the last stanza
* CVE-2016-7039 and CVE-2016-8666 (LP: #1631287)
- Revert "UBUNTU: SAUCE: net: add recursion limit to GRO"
[ Ubuntu: 4.4.0-53.74 ]
* CVE-2016-8655 (LP: #1646318)
- packet: fix race condition in packet_set_ring
[ Ubuntu: 4.4.0-51.72 ]
* Release Tracking Bug
- LP: #1644611
* 4.4.0-1037-snapdragon #41: kernel panic on boot (LP: #1644596)
- Revert "dma-mapping: introduce the DMA_ATTR_NO_WARN attribute"
- Revert "powerpc: implement the DMA_ATTR_NO_WARN attribute"
- Revert "nvme: use the DMA_ATTR_NO_WARN attribute"
[ Ubuntu: 4.4.0-50.71 ]
* Release Tracking Bug
- LP: #1644169
* xenial 4.4.0-49.70 kernel breaks LXD userspace (LP: #1644165)
- Revert "UBUNTU: SAUCE: (namespace) fuse: Allow user namespace mounts by
default"
- Revert "UBUNTU: SAUCE: (namespace) fs: Don't remove suid for CAP_FSETID for
userns root"
- Revert "(namespace) Revert "UBUNTU: SAUCE: fs: Don't remove suid for
CAP_FSETID in s_user_ns""
- Revert "UBUNTU: SAUCE: (namespace) fs: Allow superblock owner to change
ownership of inodes"
- Revert "(namespace) Revert "UBUNTU: SAUCE: fs: Allow superblock owner to
change ownership of inodes with unmappable ids""
- Revert "UBUNTU: SAUCE: (namespace) security/integrity: Harden against
malformed xattrs"
- Revert "(namespace) Revert "UBUNTU: SAUCE: ima/evm: Allow root in s_user_ns
to set xattrs""
- Revert "(namespace) dquot: For now explicitly don't support filesystems
outside of init_user_ns"
- Revert "(namespace) quota: Handle quota data stored in s_user_ns in
quota_setxquota"
- Revert "(namespace) quota: Ensure qids map to the filesystem"
- Revert "(namespace) Revert "UBUNTU: SAUCE: quota: Convert ids relative to
s_user_ns""
- Revert "(namespace) Revert "UBUNTU: SAUCE: quota: Require that qids passed
to dqget() be valid and map into s_user_ns""
- Revert "(namespace) vfs: Don't create inodes with a uid or gid unknown to
the vfs"
- Revert "(namespace) vfs: Don't modify inodes with a uid or gid unknown to
the vfs"
- Revert "UBUNTU: SAUCE: (namespace) fuse: Translate ids in posix acl xattrs"
- Revert "UBUNTU: SAUCE: (namespace) posix_acl: Export
posix_acl_fix_xattr_userns() to modules"
- Revert "(namespace) vfs: Verify acls are valid within superblock's
s_user_ns."
- Revert "(namespace) Revert "UBUNTU: SAUCE: fs: Update posix_acl support to
handle user namespace mounts""
- Revert "(namespace) fs: Refuse uid/gid changes which don't map into
s_user_ns"
- Revert "(namespace) Revert "UBUNTU: SAUCE: fs: Refuse uid/gid changes which
don't map into s_user_ns""
- Revert "(namespace) mnt: Move the FS_USERNS_MOUNT check into sget_userns"
[ Ubuntu: 4.4.0-49.70 ]
* Release Tracking Bug
- LP: #1640921
* Infiniband driver (kernel module) needed for Azure (LP: #1641139)
- SAUCE: RDMA Infiniband for Windows Azure
- [Config] CONFIG_HYPERV_INFINIBAND_ND=m
- SAUCE: Makefile RDMA infiniband driver for Windows Azure
- [Config] Add hv_network_direct.ko to generic inclusion list
- SAUCE: RDMA Infiniband for Windows Azure is dependent on amd64
[ Ubuntu: 4.4.0-48.69 ]
* Release Tracking Bug
- LP: #1640758
* lxc-attach to malicious container allows access to host (LP: #1639345)
- Revert "UBUNTU: SAUCE: (noup) ptrace: being capable wrt a process requires
mapped uids/gids"
- (upstream) mm: Add a user_ns owner to mm_struct and fix ptrace permission
checks
* take 'P' command from upstream xmon (LP: #1637978)
- powerpc/xmon: Add xmon command to dump process/task similar to ps(1)
* zfs: importing zpool with vdev on zvol hangs kernel (LP: #1636517)
- SAUCE: (noup) Update zfs to 0.6.5.6-0ubuntu15
* I2C touchpad does not work on AMD platform (LP: #1612006)
- pinctrl/amd: Configure GPIO register using BIOS settings
- pinctrl/amd: switch to using a bool for level
* [LTCTest] vfio_pci not loaded on Ubuntu 16.10 by default (LP: #1636733)
- [Config] CONFIG_VFIO_PCI=y for ppc64el
* QEMU throws failure msg while booting guest with SRIOV VF (LP: #1630554)
- KVM: PPC: Always select KVM_VFIO, plus Makefile cleanup
* Allow fuse user namespace mounts by default in xenial (LP: #1634964)
- (namespace) mnt: Move the FS_USERNS_MOUNT check into sget_userns
- (namespace) Revert "UBUNTU: SAUCE: fs: Refuse uid/gid changes which don't
map into s_user_ns"
- (namespace) fs: Refuse uid/gid changes which don't map into s_user_ns
- (namespace) Revert "UBUNTU: SAUCE: fs: Update posix_acl support to handle
user namespace mounts"
- (namespace) vfs: Verify acls are valid within superblock's s_user_ns.
- SAUCE: (namespace) posix_acl: Export posix_acl_fix_xattr_userns() to modules
- SAUCE: (namespace) fuse: Translate ids in posix acl xattrs
- (namespace) vfs: Don't modify inodes with a uid or gid unknown to the vfs
- (namespace) vfs: Don't create inodes with a uid or gid unknown to the vfs
- (namespace) Revert "UBUNTU: SAUCE: quota: Require that qids passed to
dqget() be valid and map into s_user_ns"
- (namespace) Revert "UBUNTU: SAUCE: quota: Convert ids relative to s_user_ns"
- (namespace) quota: Ensure qids map to the filesystem
- (namespace) quota: Handle quota data stored in s_user_ns in quota_setxquota
- (namespace) dquot: For now explicitly don't support filesystems outside of
init_user_ns
- (namespace) Revert "UBUNTU: SAUCE: ima/evm: Allow root in s_user_ns to set
xattrs"
- SAUCE: (namespace) security/integrity: Harden against malformed xattrs
- (namespace) Revert "UBUNTU: SAUCE: fs: Allow superblock owner to change
ownership of inodes with unmappable ids"
- SAUCE: (namespace) fs: Allow superblock owner to change ownership of inodes
- (namespace) Revert "UBUNTU: SAUCE: fs: Don't remove suid for CAP_FSETID in
s_user_ns"
- SAUCE: (namespace) fs: Don't remove suid for CAP_FSETID for userns root
- SAUCE: (namespace) fuse: Allow user namespace mounts by default
* [Feature] KBL - New device ID for Kabypoint(KbP) (LP: #1591618)
- SAUCE: mfd: lpss: Fix Intel Kaby Lake PCH-H properties
* hio: SSD data corruption under stress test (LP: #1638700)
- SAUCE: hio: set bi_error field to signal an I/O error on a BIO
- SAUCE: hio: splitting bio in the entry of .make_request_fn
* Module sha1-mb fails to load (LP: #1637165)
- crypto: sha-mb - Fix load failure
- crypto: mcryptd - Fix load failure
* please include mlx5_core modules in linux-image-generic package
(LP: #1635223)
- [Config] Include mlx5 in main package
* xgene i2c slimpro driver fails to load (LP: #1625232)
- mailbox: Add support for APM X-Gene platform mailbox driver
- mailbox/xgene-slimpro: Checking for IS_ERR instead of NULL
- mailbox: xgene-slimpro: Fix wrong test for devm_kzalloc
- [Config] Enabled XGENE_SLIMPRO_MBOX as a module
* [Dell][XPS]Touchscreen fails to function after resume from s3 by Lid
close/open (LP: #1632527)
- gpio/pinctrl: sunxi: stop poking around in private vars
- pinctrl: intel: Only restore pins that are used by the driver
* Xenial update to v4.4.30 stable release (LP: #1638272)
- Revert "x86/mm: Expand the exception table logic to allow new handling
options"
- Revert "fix minor infoleak in get_user_ex()"
- Linux 4.4.30
* Xenial update to v4.4.29 stable release (LP: #1638267)
- drm/prime: Pass the right module owner through to dma_buf_export()
- drm/amdgpu: fix IB alignment for UVD
- drm/amdgpu/dce10: disable hpd on local panels
- drm/amdgpu/dce8: disable hpd on local panels
- drm/amdgpu/dce11: disable hpd on local panels
- drm/amdgpu/dce11: add missing drm_mode_config_cleanup call
- drm/amdgpu: change vblank_time's calculation method to reduce computational
error.
- drm/radeon: narrow asic_init for virtualization
- drm/radeon/si/dpm: fix phase shedding setup
- drm/radeon: change vblank_time's calculation method to reduce computational
error.
- drm/vmwgfx: Limit the user-space command buffer size
- drm/i915/gen9: fix the WaWmMemoryReadLatency implementation
- Revert "drm/i915: Check live status before reading edid"
- drm/i915: Account for TSEG size when determining 865G stolen base
- drm/i915: Unalias obj->phys_handle and obj->userptr
- mm/hugetlb: fix memory offline with hugepage size > memory block size
- posix_acl: Clear SGID bit when setting file permissions
- ipip: Properly mark ipip GRO packets as encapsulated.
- powerpc/eeh: Null check uses of eeh_pe_bus_get
- perf stat: Fix interval output values
- genirq/generic_chip: Add irq_unmap callback
- uio: fix dmem_region_start computation
- ARM: clk-imx35: fix name for ckil clk
- spi: spi-fsl-dspi: Drop extra spi_master_put in device remove function
- mwifiex: correct aid value during tdls setup
- crypto: gcm - Fix IV buffer size in crypto_gcm_setkey
- crypto: arm/ghash-ce - add missing async import/export
- hwrng: omap - Only fail if pm_runtime_get_sync returns < 0
- ASoC: topology: Fix error return code in soc_tplg_dapm_widget_create()
- ASoC: dapm: Fix possible uninitialized variable in snd_soc_dapm_get_volsw()
- ASoC: dapm: Fix value setting for _ENUM_DOUBLE MUX's second channel
- ASoC: dapm: Fix kcontrol creation for output driver widget
- staging: r8188eu: Fix scheduling while atomic splat
- power: bq24257: Fix use of uninitialized pointer bq->charger
- dmaengine: ipu: remove bogus NO_IRQ reference
- x86/mm: Expand the exception table logic to allow new handling options
- s390/cio: fix accidental interrupt enabling during resume
- s390/con3270: fix use of uninitialised data
- s390/con3270: fix insufficient space padding
- clk: qoriq: fix a register offset error
- clk: divider: Fix clk_divider_round_rate() to use clk_readl()
- perf hists browser: Fix event group display
- perf symbols: Check symbol_conf.allow_aliases for kallsyms loading too
- perf symbols: Fixup symbol sizes before picking best ones
- mpt3sas: Don't spam logs if logging level is 0
- powerpc/nvram: Fix an incorrect partition merge
- ARM: pxa: pxa_cplds: fix interrupt handling
- Linux 4.4.29
* KVM: PPC: Book3S HV: Migrate pinned pages out of CMA (LP: #1632045)
- KVM: PPC: Book3S HV: Migrate pinned pages out of CMA
* Xenial update to v4.4.28 stable release (LP: #1637510)
- gpio: mpc8xxx: Correct irq handler function
- mei: me: add kaby point device ids
- regulator: tps65910: Work around silicon erratum SWCZ010
- clk: imx6: initialize GPU clocks
- PM / devfreq: event: remove duplicate devfreq_event_get_drvdata()
- rtlwifi: Fix missing country code for Great Britain
- mmc: block: don't use CMD23 with very old MMC cards
- mmc: sdhci: cast unsigned int to unsigned long long to avoid unexpeted error
- PCI: Mark Atheros AR9580 to avoid bus reset
- platform: don't return 0 from platform_get_irq[_byname]() on error
- cpufreq: intel_pstate: Fix unsafe HWP MSR access
- parisc: Increase KERNEL_INITIAL_SIZE for 32-bit SMP kernels
- parisc: Fix kernel memory layout regarding position of __gp
- parisc: Increase initial kernel mapping size
- pstore/ramoops: fixup driver removal
- pstore/core: drop cmpxchg based updates
- pstore/ram: Use memcpy_toio instead of memcpy
- pstore/ram: Use memcpy_fromio() to save old buffer
- perf intel-pt: Fix snapshot overlap detection decoder errors
- perf intel-pt: Fix estimated timestamps for cycle-accurate mode
- perf intel-pt: Fix MTC timestamp calculation for large MTC periods
- dm: mark request_queue dead before destroying the DM device
- dm: return correct error code in dm_resume()'s retry loop
- dm mpath: check if path's request_queue is dying in activate_path()
- dm crypt: fix crash on exit
- powerpc/vdso64: Use double word compare on pointers
- powerpc/powernv: Pass CPU-endian PE number to opal_pci_eeh_freeze_clear()
- powerpc/powernv: Use CPU-endian hub diag-data type in
pnv_eeh_get_and_dump_hub_diag()
- powerpc/powernv: Use CPU-endian PEST in pnv_pci_dump_p7ioc_diag_data()
- ubi: Deal with interrupted erasures in WL
- zfcp: fix fc_host port_type with NPIV
- zfcp: fix ELS/GS request&response length for hardware data router
- zfcp: close window with unblocked rport during rport gone
- zfcp: retain trace level for SCSI and HBA FSF response records
- zfcp: restore: Dont use 0 to indicate invalid LUN in rec trace
- zfcp: trace on request for open and close of WKA port
- zfcp: restore tracing of handle for port and LUN with HBA records
- zfcp: fix D_ID field with actual value on tracing SAN responses
- zfcp: fix payload trace length for SAN request&response
- zfcp: trace full payload of all SAN records (req,resp,iels)
- scsi: zfcp: spin_lock_irqsave() is not nestable
- fbdev/efifb: Fix 16 color palette entry calculation
- ovl: Fix info leak in ovl_lookup_temp()
- ovl: copy_up_xattr(): use strnlen
- mb86a20s: fix the locking logic
- mb86a20s: fix demod settings
- cx231xx: don't return error on success
- cx231xx: fix GPIOs for Pixelview SBTVD hybrid
- ALSA: hda - Fix a failure of micmute led when having multi adcs
- MIPS: Fix -mabi=64 build of vdso.lds
- MIPS: ptrace: Fix regs_return_value for kernel context
- lib: move strtobool() to kstrtobool()
- lib: update single-char callers of strtobool()
- lib: add "on"/"off" support to kstrtobool
- Input: i8042 - skip selftest on ASUS laptops
- Input: elantech - force needed quirks on Fujitsu H760
- Input: elantech - add Fujitsu Lifebook E556 to force crc_enabled
- sunrpc: fix write space race causing stalls
- NFSv4: Don't report revoked delegations as valid in nfs_have_delegation()
- NFSv4: nfs4_copy_delegation_stateid() must fail if the delegation is invalid
- NFSv4: Open state recovery must account for file permission changes
- NFSv4.2: Fix a reference leak in nfs42_proc_layoutstats_generic
- scsi: Fix use-after-free
- metag: Only define atomic_dec_if_positive conditionally
- mm: filemap: don't plant shadow entries without radix tree node
- ipc/sem.c: fix complex_count vs. simple op race
- arc: don't leak bits of kernel stack into coredump
- fs/super.c: fix race between freeze_super() and thaw_super()
- cifs: Limit the overall credit acquired
- fs/cifs: keep guid when assigning fid to fileinfo
- Clarify locking of cifs file and tcon structures and make more granular
- Display number of credits available
- Set previous session id correctly on SMB3 reconnect
- SMB3: GUIDs should be constructed as random but valid uuids
- Do not send SMB3 SET_INFO request if nothing is changing
- Cleanup missing frees on some ioctls
- blkcg: Unlock blkcg_pol_mutex only once when cpd == NULL
- x86/e820: Don't merge consecutive E820_PRAM ranges
- kvm: x86: memset whole irq_eoi
- irqchip/gicv3: Handle loop timeout proper
- sd: Fix rw_max for devices that report an optimal xfer size
- hpsa: correct skipping masked peripherals
- PKCS#7: Don't require SpcSpOpusInfo in Authenticode pkcs7 signatures
- bnx2x: Prevent false warning for lack of FC NPIV
- net/mlx4_core: Allow resetting VF admin mac to zero
- acpi, nfit: check for the correct event code in notifications
- mm: workingset: fix crash in shadow node shrinker caused by
replace_page_cache_page()
- mm: filemap: fix mapping->nrpages double accounting in fuse
- Using BUG_ON() as an assert() is _never_ acceptable
- s390/mm: fix gmap tlb flush issues
- irqchip/gic-v3-its: Fix entry size mask for GITS_BASER
- isofs: Do not return EACCES for unknown filesystems
- memstick: rtsx_usb_ms: Runtime resume the device when polling for cards
- memstick: rtsx_usb_ms: Manage runtime PM when accessing the device
- arm64: percpu: rewrite ll/sc loops in assembly
- arm64: kernel: Init MDCR_EL2 even in the absence of a PMU
- ceph: fix error handling in ceph_read_iter
- powerpc/mm: Prevent unlikely crash in copro_calculate_slb()
- mmc: core: Annotate cmd_hdr as __le32
- mmc: rtsx_usb_sdmmc: Avoid keeping the device runtime resumed when unused
- mmc: rtsx_usb_sdmmc: Handle runtime PM while changing the led
- ext4: do not advertise encryption support when disabled
- jbd2: fix incorrect unlock on j_list_lock
- ubifs: Fix xattr_names length in exit paths
- target: Re-add missing SCF_ACK_KREF assignment in v4.1.y
- target: Make EXTENDED_COPY 0xe4 failure return COPY TARGET DEVICE NOT
REACHABLE
- target: Don't override EXTENDED_COPY xcopy_pt_cmd SCSI status code
- Linux 4.4.28
* Xenial update to v4.4.27 stable release (LP: #1637501)
- serial: 8250_dw: Check the data->pclk when get apb_pclk
- btrfs: assign error values to the correct bio structs
- drivers: base: dma-mapping: page align the size when unmap_kernel_range
- fuse: listxattr: verify xattr list
- fuse: invalidate dir dentry after chmod
- fuse: fix killing s[ug]id in setattr
- i40e: avoid NULL pointer dereference and recursive errors on early PCI error
- brcmfmac: fix memory leak in brcmf_fill_bss_param
- ASoC: Intel: Atom: add a missing star in a memcpy call
- reiserfs: Unlock superblock before calling reiserfs_quota_on_mount()
- reiserfs: switch to generic_{get,set,remove}xattr()
- async_pq_val: fix DMA memory leak
- scsi: arcmsr: Simplify user_len checking
- ext4: enforce online defrag restriction for encrypted files
- ext4: reinforce check of i_dtime when clearing high fields of uid and gid
- ext4: fix memory leak in ext4_insert_range()
- ext4: allow DAX writeback for hole punch
- ext4: release bh in make_indexed_dir
- dlm: free workqueues after the connections
- vfs: move permission checking into notify_change() for utimes(NULL)
- cfq: fix starvation of asynchronous writes
- Linux 4.4.27
* Xenial update to v4.4.26 stable release (LP: #1637500)
- x86/build: Build compressed x86 kernels as PIE
- Linux 4.4.26
* ISST-LTE:pVM nvme 0000:a0:00.0: iommu_alloc failed on NVMe card
(LP: #1633128)
- dma-mapping: introduce the DMA_ATTR_NO_WARN attribute
- powerpc: implement the DMA_ATTR_NO_WARN attribute
- nvme: use the DMA_ATTR_NO_WARN attribute
* CVE-2016-8658
- brcmfmac: avoid potential stack overflow in brcmf_cfg80211_start_ap()
* Hotkey doesn't work on HP x360 (LP: #1620979)
- gpiolib: Make it possible to exclude GPIOs from IRQ domain
- pinctrl: cherryview: Do not mask all interrupts in probe
- pinctrl: cherryview: Do not add all southwest and north GPIOs to IRQ domain
* Bad page state in process genwqe_gunzip pfn:3c275 in the genwqe device
driver (LP: #1559194)
- SAUCE: (noup) Bad page state in process genwqe_gunzip pfn:3c275 in the
genwqe device driver
* CVE-2016-7425
- scsi: arcmsr: Buffer overflow in arcmsr_iop_message_xfer()
* Add ipvlan module to 16.04 kernel (LP: #1634705)
- [Config] Add ipvlan to the generic inclusion list
* kernel generates ACPI Exception: AE_NOT_FOUND, Evaluating _DOD incorrectly
(LP: #1634607)
- ACPI / video: skip evaluating _DOD when it does not exist
* BT still shows off after resume by wireless hotkey (LP: #1634380)
- Bluetooth: btusb: Fix atheros firmware download error
* ghash-clmulni-intel module fails to load (LP: #1633058)
- crypto: ghash-clmulni - Fix load failure
- crypto: cryptd - Assign statesize properly
* Xenial update to v4.4.25 stable release (LP: #1634153)
- timekeeping: Fix __ktime_get_fast_ns() regression
- ALSA: ali5451: Fix out-of-bound position reporting
- ALSA: usb-audio: Extend DragonFly dB scale quirk to cover other variants
- ALSA: usb-line6: use the same declaration as definition in header for MIDI
manufacturer ID
- mfd: rtsx_usb: Avoid setting ucr->current_sg.status
- mfd: atmel-hlcdc: Do not sleep in atomic context
- mfd: 88pm80x: Double shifting bug in suspend/resume
- mfd: wm8350-i2c: Make sure the i2c regmap functions are compiled
- KVM: PPC: Book3s PR: Allow access to unprivileged MMCR2 register
- KVM: MIPS: Drop other CPU ASIDs on guest MMU changes
- KVM: PPC: BookE: Fix a sanity check
- x86/boot: Fix kdump, cleanup aborted E820_PRAM max_pfn manipulation
- x86/irq: Prevent force migration of irqs which are not in the vector domain
- x86/dumpstack: Fix x86_32 kernel_stack_pointer() previous stack access
- ARM: dts: mvebu: armada-390: add missing compatibility string and bracket
- ARM: dts: MSM8064 remove flags from SPMI/MPP IRQs
- ARM: cpuidle: Fix error return code
- ima: use file_dentry()
- tpm: fix a race condition in tpm2_unseal_trusted()
- tpm_crb: fix crb_req_canceled behavior
- Linux 4.4.25
* backport fwts UEFI test driver to Xenial (LP: #1633506)
- efi: Add efi_test driver for exporting UEFI runtime service interfaces
- [Config] CONFIG_EFI_TEST=m
* Fix alps driver for multitouch function. (LP: #1633321)
- HID: alps: fix multitouch cursor issue
* xgene merlin crashes when running as iperf server (LP: #1632739)
- drivers: net: xgene: optimizing the code
- xgene: get_phy_device() doesn't return NULL anymore
- drivers: net: xgene: Get channel number from device binding
- drivers: net: xgene: constify xgene_cle_ops structure
- drivers: net: xgene: Fix error handling
- drivers: net: xgene: fix IPv4 forward crash
- drivers: net: xgene: fix sharing of irqs
- drivers: net: xgene: fix ununiform latency across queues
- drivers: net: xgene: fix statistics counters race condition
- drivers: net: xgene: fix register offset
- drivers: net: xgene: Separate set_speed from mac_init
- drivers: net: xgene: Fix module unload crash - hw resource cleanup
- drivers: net: xgene: Fix module unload crash - change sw sequence
- drivers: net: xgene: Fix module unload crash - clkrst sequence
- drivers: net: phy: xgene: Add MDIO driver
- drivers: net: xgene: Add backward compatibility
- drivers: net: xgene: Enable MDIO driver
- drivers: net: xgene: Use exported functions
- drivers: net: xgene: ethtool: Use phy_ethtool_gset and sset
- dtb: xgene: Add MDIO node
- MAINTAINERS: xgene: Add driver and documentation path
- [Config] Enable MDIO_XGENE as a modules
* Add support for KabeLake i219-LOM chips (LP: #1632578)
- e1000e: Initial support for KabeLake
Date: 2016-12-10 10:51:16.250790+00:00
Changed-By: Luis Henriques <luis.henriques at canonical.com>
Signed-By: Steve Langasek <steve.langasek at canonical.com>
https://launchpad.net/ubuntu/+source/linux-raspi2/4.4.0-1038.45
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list