[ubuntu/xenial-security] linux-hwe-edge 4.11.0-13.19~16.04.1 (Accepted)

Adam Conrad adconrad at 0c3.net
Fri Aug 4 11:16:51 UTC 2017


linux-hwe-edge (4.11.0-13.19~16.04.1) xenial; urgency=low

  * CVE-2017-7533
    - dentry name snapshots

linux (4.11.0-12.18) artful; urgency=low

  * linux: 4.11.0-12.18 -proposed tracker (LP: #1707635)
    - no change rebuild to pick up the new binutils.

  * Adt tests of src:linux time out often on armhf lxc containers (LP: #1705495)
    - [Packaging] tests -- reduce rebuild test to one flavour
    - [Packaging] tests -- reduce rebuild test to one flavour -- use filter

  * [ARM64] config EDAC_GHES=y depends on EDAC_MM_EDAC=y (LP: #1706141)
    - [Config] set EDAC_MM_EDAC=y for ARM64

  * [Hyper-V] hv_netvsc: Exclude non-TCP port numbers from vRSS hashing
    (LP: #1690174)
    - hv_netvsc: Exclude non-TCP port numbers from vRSS hashing

  * ath10k doesn't report full RSSI information (LP: #1706531)
    - ath10k: add per chain RSSI reporting

  * ideapad_laptop don't support v310-14isk (LP: #1705378)
    - platform/x86: ideapad-laptop: Add several models to no_hw_rfkill

  * Ubuntu 16.04.3: Qemu fails on P9 (LP: #1686019)
    - KVM: PPC: Pass kvm* to kvmppc_find_table()
    - KVM: PPC: Use preregistered memory API to access TCE list
    - KVM: PPC: VFIO: Add in-kernel acceleration for VFIO
    - powerpc/powernv/iommu: Add real mode version of iommu_table_ops::exchange()
    - powerpc/iommu/vfio_spapr_tce: Cleanup iommu_table disposal
    - powerpc/vfio_spapr_tce: Add reference counting to iommu_table
    - powerpc/mmu: Add real mode support for IOMMU preregistered memory
    - KVM: PPC: Reserve KVM_CAP_SPAPR_TCE_VFIO capability number
    - KVM: PPC: Book3S HV: Add radix checks in real-mode hypercall handlers

  * hns: ethtool selftest crashes system (LP: #1705712)
    - net/hns:bugfix of ethtool -t phy self_test

  * ThunderX: soft lockup on 4.8+ kernels when running qemu-efi with vhost=on
    (LP: #1673564)
    - KVM: arm/arm64: vgic-v3: Use PREbits to infer the number of ICH_APxRn_EL2
      registers
    - KVM: arm/arm64: vgic-v3: Fix nr_pre_bits bitfield extraction
    - arm64: Add a facility to turn an ESR syndrome into a sysreg encoding
    - KVM: arm/arm64: vgic-v3: Add accessors for the ICH_APxRn_EL2 registers
    - KVM: arm64: Make kvm_condition_valid32() accessible from EL2
    - KVM: arm64: vgic-v3: Add hook to handle guest GICv3 sysreg accesses at EL2
    - KVM: arm64: vgic-v3: Add ICV_BPR1_EL1 handler
    - KVM: arm64: vgic-v3: Add ICV_IGRPEN1_EL1 handler
    - KVM: arm64: vgic-v3: Add ICV_IAR1_EL1 handler
    - KVM: arm64: vgic-v3: Add ICV_EOIR1_EL1 handler
    - KVM: arm64: vgic-v3: Add ICV_AP1Rn_EL1 handler
    - KVM: arm64: vgic-v3: Add ICV_HPPIR1_EL1 handler
    - KVM: arm64: vgic-v3: Enable trapping of Group-1 system registers
    - KVM: arm64: Enable GICv3 Group-1 sysreg trapping via command-line
    - KVM: arm64: vgic-v3: Add ICV_BPR0_EL1 handler
    - KVM: arm64: vgic-v3: Add ICV_IGNREN0_EL1 handler
    - KVM: arm64: vgic-v3: Add misc Group-0 handlers
    - KVM: arm64: vgic-v3: Enable trapping of Group-0 system registers
    - KVM: arm64: Enable GICv3 Group-0 sysreg trapping via command-line
    - arm64: Add MIDR values for Cavium cn83XX SoCs
    - arm64: Add workaround for Cavium Thunder erratum 30115
    - KVM: arm64: vgic-v3: Add ICV_DIR_EL1 handler
    - KVM: arm64: vgic-v3: Add ICV_RPR_EL1 handler
    - KVM: arm64: vgic-v3: Add ICV_CTLR_EL1 handler
    - KVM: arm64: vgic-v3: Add ICV_PMR_EL1 handler
    - KVM: arm64: Enable GICv3 common sysreg trapping via command-line
    - KVM: arm64: vgic-v3: Log which GICv3 system registers are trapped
    - arm64: KVM: Make unexpected reads from WO registers inject an undef
    - KVM: arm64: Log an error if trapping a read-from-write-only GICv3 access
    - KVM: arm64: Log an error if trapping a write-to-read-only GICv3 access

  * ath9k freezes suspend resume Ubuntu 17.04 (LP: #1697027)
    - ath9k: fix an invalid pointer dereference in ath9k_rng_stop()

  * xhci_hcd: ERROR Transfer event TRB DMA ptr not part of current TD ep_index 2
    comp_code 13 (LP: #1667750)
    - xhci: Bad Ethernet performance plugged in ASM1042A host

  * Migrating KSM page causes the VM lock up as the KSM page merging list is too
    large (LP: #1680513)
    - ksm: introduce ksm_max_page_sharing per page deduplication limit
    - ksm: fix use after free with merge_across_nodes = 0
    - ksm: cleanup stable_node chain collapse case
    - ksm: swap the two output parameters of chain/chain_prune
    - ksm: optimize refile of stable_node_dup at the head of the chain

  * Artful update to v4.11.12 stable release (LP: #1706067)
    - net/phy: micrel: configure intterupts after autoneg workaround
    - ipv6: avoid unregistering inet6_dev for loopback
    - netvsc: don't access netdev->num_rx_queues directly
    - sfc: Fix MCDI command size for filter operations
    - net: account for current skb length when deciding about UFO
    - net: dp83640: Avoid NULL pointer dereference.
    - tcp: reset sk_rx_dst in tcp_disconnect()
    - net: prevent sign extension in dev_get_stats()
    - virtio-net: serialize tx routine during reset
    - net: sched: Fix one possible panic when no destroy callback
    - mlxsw: spectrum_router: Fix NULL pointer dereference
    - rocker: move dereference before free
    - bpf: prevent leaking pointer via xadd on unpriviledged
    - net: handle NAPI_GRO_FREE_STOLEN_HEAD case also in napi_frags_finish()
    - net/mlx5: Cancel delayed recovery work when unloading the driver
    - net/mlx5e: Fix TX carrier errors report in get stats ndo
    - ipv6: dad: don't remove dynamic addresses if link is down
    - vxlan: fix hlist corruption
    - geneve: fix hlist corruption
    - net: core: Fix slab-out-of-bounds in netdev_stats_to_stats64
    - liquidio: fix bug in soft reset failure detection
    - net: ipv6: Compare lwstate in detecting duplicate nexthops
    - vrf: fix bug_on triggered by rx when destroying a vrf
    - rds: tcp: use sock_create_lite() to create the accept socket
    - net/mlx5e: Initialize CEE's getpermhwaddr address buffer to 0xff
    - cxgb4: fix BUG() on interrupt deallocating path of ULD
    - tap: convert a mutex to a spinlock
    - bridge: mdb: fix leak on complete_info ptr on fail path
    - brcmfmac: fix possible buffer overflow in brcmf_cfg80211_mgmt_tx()
    - sfc: don't read beyond unicast address list
    - Adding asm-prototypes.h for genksyms to generate crc
    - sed regex in Makefile.build requires line break between exported symbols
    - Adding the type of exported symbols
    - sparc64: Fix gup_huge_pmd
    - block: Fix a blk_exit_rl() regression
    - brcmfmac: Fix a memory leak in error handling path in
      'brcmf_cfg80211_attach'
    - brcmfmac: Fix glom_skb leak in brcmf_sdiod_recv_chain
    - efi: Process the MEMATTR table only if EFI_MEMMAP is enabled
    - cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE
    - cfg80211: Validate frequencies nested in NL80211_ATTR_SCAN_FREQUENCIES
    - cfg80211: Check if PMKID attribute is of expected size
    - cfg80211: Check if NAN service ID is of expected size
    - drm/amdgpu/gfx6: properly cache mc_arb_ramcfg
    - irqchip/gic-v3: Fix out-of-bound access in gic_set_affinity
    - parisc: Report SIGSEGV instead of SIGBUS when running out of stack
    - parisc: use compat_sys_keyctl()
    - parisc: DMA API: return error instead of BUG_ON for dma ops on non dma devs
    - parisc/mm: Ensure IRQs are off in switch_mm()
    - tools/lib/lockdep: Reduce MAX_LOCK_DEPTH to avoid overflowing lock_chain/:
      Depth
    - thp, mm: fix crash due race in MADV_FREE handling
    - kernel/extable.c: mark core_kernel_text notrace
    - mm/list_lru.c: fix list_lru_count_node() to be race free
    - fs/dcache.c: fix spin lockup issue on nlru->lock
    - checkpatch: silence perl 5.26.0 unescaped left brace warnings
    - binfmt_elf: use ELF_ET_DYN_BASE only for PIE
    - arm: move ELF_ET_DYN_BASE to 4MB
    - arm64: move ELF_ET_DYN_BASE to 4GB / 4MB
    - powerpc: move ELF_ET_DYN_BASE to 4GB / 4MB
    - s390: reduce ELF_ET_DYN_BASE
    - exec: Limit arg stack to at most 75% of _STK_LIM
    - powerpc/kexec: Fix radix to hash kexec due to IAMR/AMOR
    - ARM64: dts: marvell: armada37xx: Fix timer interrupt specifiers
    - arm64: Preventing READ_IMPLIES_EXEC propagation
    - vt: fix unchecked __put_user() in tioclinux ioctls
    - rcu: Add memory barriers for NOCB leader wakeup
    - nvmem: core: fix leaks on registration errors
    - Drivers: hv: vmbus: Close timing hole that can corrupt per-cpu page
    - mnt: In umount propagation reparent in a separate pass
    - mnt: In propgate_umount handle visiting mounts in any order
    - mnt: Make propagate_umount less slow for overlapping mount propagation trees
    - selftests/capabilities: Fix the test_execve test
    - mm: fix overflow check in expand_upwards()
    - crypto: talitos - Extend max key length for SHA384/512-HMAC and AEAD
    - crypto: atmel - only treat EBUSY as transient if backlog
    - crypto: sha1-ssse3 - Disable avx2
    - crypto: caam - properly set IV after {en,de}crypt
    - crypto: caam - fix signals handling
    - sched/fair, cpumask: Export for_each_cpu_wrap()
    - sched/topology: Fix building of overlapping sched-groups
    - sched/topology: Optimize build_group_mask()
    - sched/topology: Fix overlapping sched_group_mask
    - PM / wakeirq: Convert to SRCU
    - ALSA: x86: Clear the pdata.notify_lpe_audio pointer before teardown
    - PM / QoS: return -EINVAL for bogus strings
    - kvm: vmx: Do not disable intercepts for BNDCFGS
    - kvm: x86: Guest BNDCFGS requires guest MPX support
    - kvm: vmx: Check value written to IA32_BNDCFGS
    - kvm: vmx: allow host to access guest MSR_IA32_BNDCFGS
    - Linux 4.11.12

  * Artful update to v4.11.11 stable release (LP: #1706066)
    - mqueue: fix a use-after-free in sys_mq_notify()
    - proc: Fix proc_sys_prune_dcache to hold a sb reference
    - locking/rwsem-spinlock: Fix EINTR branch in __down_write_common()
    - staging: vt6556: vnt_start Fix missing call to vnt_key_init_table.
    - staging: comedi: fix clean-up of comedi_class in comedi_init()
    - crypto: caam - fix gfp allocation flags (part I)
    - crypto: rsa-pkcs1pad - use constant time memory comparison for MACs
    - ext4: check return value of kstrtoull correctly in reserved_clusters_store
    - x86/mm/pat: Don't report PAT on CPUs that don't support it
    - Linux 4.11.11

  * Change CONFIG_IBMVETH to module (LP: #1704479)
    - [Config] CONFIG_IBMVETH=m

  * hns: use after free in hns_nic_net_xmit_hw (LP: #1704885)
    - net: hns: Fix a skb used after free bug

  * Opal and POWER9 DD2 (LP: #1702159)
    - powerpc/powernv: Fix boot on Power8 bare metal due to opal_configure_cores()

  * CVE-2017-1000364
    - mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack
    - mm/mmap.c: expand_downwards: don't require the gap if !vm_prev

  * [Xenial] nvme: Quirks for PM1725 controllers (LP: #1704435)
    - nvme: Quirks for PM1725 controllers

  * bonding: stack dump when unregistering a netdev (LP: #1704102)
    - bonding: avoid NETDEV_CHANGEMTU event when unregistering slave

  * Ubuntu 16.04 IOB Error when the Mustang board rebooted (LP: #1693673)
    - drivers: net: xgene: Fix redundant prefetch buffer cleanup

  * Ubuntu16.04: NVMe 4K+T10 DIF/DIX format returns I/O error on dd with split
    op (LP: #1689946)
    - blk-mq: NVMe 512B/4K+T10 DIF/DIX format returns I/O error on dd with split
      op

  * linux >= 4.2: bonding 802.3ad does not work with 5G, 25G and 50G link speeds
    (LP: #1697892)
    - bonding: add 802.3ad support for 25G speeds
    - bonding: fix 802.3ad support for 5G and 50G speeds

  * hns: under heavy load, NIC may fail and require reboot (LP: #1704146)
    - net: hns: Bugfix for Tx timeout handling in hns driver

  * New ACPI identifiers for ThunderX SMMU (LP: #1703437)
    - iommu/arm-smmu: Plumb in new ACPI identifiers

  * Transparent hugepages should default to enabled=madvise (LP: #1703742)
    - [Config] use CONFIG_TRANSPARENT_HUGEPAGE_MADVISE=y as default

  * Miscellaneous Ubuntu changes
    - [Config] CONFIG_CAVIUM_ERRATUM_30115=y

  * Miscellaneous upstream changes
    - platform/x86: thinkpad_acpi: guard generic hotkey case
    - platform/x86: thinkpad_acpi: add mapping for new hotkeys
    - selftest/memfd/Makefile: Fix build error

linux (4.11.0-11.16) artful; urgency=low

  * linux: 4.11.0-11.16 -proposed tracker (LP: #1703901)

  * Artful update to v4.11.10 stable release (LP: #1703854)
    - fs: add a VALID_OPEN_FLAGS
    - fs: completely ignore unknown open flags
    - driver core: platform: fix race condition with driver_override
    - RDMA/uverbs: Check port number supplied by user verbs cmds
    - ceph: choose readdir frag based on previous readdir reply
    - tracing/kprobes: Allow to create probe with a module name starting with a
      digit
    - usb: dwc3: replace %p with %pK
    - USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick
    - Add USB quirk for HVR-950q to avoid intermittent device resets
    - usb: usbip: set buffer pointers to NULL after free
    - usb: Fix typo in the definition of Endpoint[out]Request
    - USB: core: fix device node leak
    - arm: remove wrong CONFIG_PROC_SYSCTL ifdef
    - pinctrl: sh-pfc: r8a7794: Swap ATA signals
    - pinctrl: sh-pfc: r8a7791: Fix SCIF2 pinmux data
    - pinctrl: sh-pfc: r8a7791: Add missing DVC_MUTE signal
    - pinctrl: sh-pfc: r8a7795: Fix hscif2_clk_b and hscif4_ctrl
    - pinctrl: meson: meson8b: fix the NAND DQS pins
    - pinctrl: stm32: Fix bad function call
    - pinctrl: sunxi: Fix SPDIF function name for A83T
    - pinctrl: core: Fix warning by removing bogus code
    - pinctrl: mxs: atomically switch mux and drive strength config
    - pinctrl: sh-pfc: r8a7791: Add missing HSCIF1 pinmux data
    - pinctrl: sh-pfc: Update info pointer after SoC-specific init
    - USB: serial: option: add two Longcheer device ids
    - USB: serial: qcserial: new Sierra Wireless EM7305 device ID
    - xhci: Limit USB2 port wake support for AMD Promontory hosts
    - gfs2: Fix glock rhashtable rcu bug
    - Add "shutdown" to "struct class".
    - tpm: Issue a TPM2_Shutdown for TPM2 devices.
    - tpm: fix a kernel memory leak in tpm-sysfs.c
    - x86/uaccess: Optimize copy_user_enhanced_fast_string() for short strings
    - xen: avoid deadlock in xenbus driver
    - crypto: drbg - Fixes panic in wait_for_completion call
    - rt286: add Thinkpad Helix 2 to force_combo_jack_table
    - Linux 4.11.10

  * CVE-2017-10810
    - drm/virtio: don't leak bo on drm_gem_object_init failure

  * cxlflash update request in the Xenial SRU stream (LP: #1702521)
    - scsi: cxlflash: Separate RRQ processing from the RRQ interrupt handler
    - scsi: cxlflash: Serialize RRQ access and support offlevel processing
    - scsi: cxlflash: Implement IRQ polling for RRQ processing
    - scsi: cxlflash: Update sysfs helper routines to pass config structure
    - scsi: cxlflash: Support dynamic number of FC ports
    - scsi: cxlflash: Remove port configuration assumptions
    - scsi: cxlflash: Hide FC internals behind common access routine
    - scsi: cxlflash: SISlite updates to support 4 ports
    - scsi: cxlflash: Support up to 4 ports
    - scsi: cxlflash: Fence EEH during probe
    - scsi: cxlflash: Remove unnecessary DMA mapping
    - scsi: cxlflash: Fix power-of-two validations
    - scsi: cxlflash: Fix warnings/errors
    - scsi: cxlflash: Improve asynchronous interrupt processing
    - scsi: cxlflash: Support multiple hardware queues
    - scsi: cxlflash: Add hardware queues attribute
    - scsi: cxlflash: Introduce hardware queue steering
    - cxl: Enable PCI device IDs for future IBM CXL adapters
    - scsi: cxlflash: Select IRQ_POLL
    - scsi: cxlflash: Combine the send queue locks
    - scsi: cxlflash: Update cxlflash_afu_sync() to return errno
    - scsi: cxlflash: Reset hardware queue context via specified register
    - scsi: cxlflash: Schedule asynchronous reset of the host
    - scsi: cxlflash: Handle AFU sync failures
    - scsi: cxlflash: Track pending scsi commands in each hardware queue
    - scsi: cxlflash: Flush pending commands in cleanup path
    - scsi: cxlflash: Add scsi command abort handler
    - scsi: cxlflash: Create character device to provide host management interface
    - scsi: cxlflash: Separate AFU internal command handling from AFU sync
      specifics
    - scsi: cxlflash: Introduce host ioctl support
    - scsi: cxlflash: Refactor AFU capability checking
    - scsi: cxlflash: Support LUN provisioning
    - scsi: cxlflash: Support AFU debug
    - scsi: cxlflash: Support WS16 unmap
    - scsi: cxlflash: Remove zeroing of private command data
    - scsi: cxlflash: Update TMF command processing
    - scsi: cxlflash: Avoid double free of character device
    - scsi: cxlflash: Update send_tmf() parameters
    - scsi: cxlflash: Update debug prints in reset handlers

  * make snap-pkg support (LP: #1700747)
    - make snap-pkg support

  * Quirk for non-compliant PCI bridge on HiSilicon D05 board (LP: #1698706)
    - SAUCE: PCI: Support hibmc VGA cards behind a misbehaving HiSilicon bridge

  * arm64: fix crash reading /proc/kcore (LP: #1702749)
    - fs/proc: kcore: use kcore_list type to check for vmalloc/module address
    - arm64: mm: select CONFIG_ARCH_PROC_KCORE_TEXT

  * Opal and POWER9 DD2 (LP: #1702159)
    - SAUCE: powerpc/powernv: Tell OPAL about our MMU mode on POWER9

  * Data corruption with hio driver  (LP: #1701316)
    - SAUCE: hio: Fix incorrect use of enum req_opf values

  * Artful update to v4.11.9 stable release (LP: #1702515)
    - net: don't call strlen on non-terminated string in dev_set_alias()
    - net: Fix inconsistent teardown and release of private netdev state.
    - net: s390: fix up for "Fix inconsistent teardown and release of private
      netdev state"
    - mac80211: free netdev on dev_alloc_name() error
    - decnet: dn_rtmsg: Improve input length sanitization in
      dnrmg_receive_user_skb
    - net: Zero ifla_vf_info in rtnl_fill_vfinfo()
    - net: ipv6: Release route when device is unregistering
    - net: vrf: Make add_fib_rules per network namespace flag
    - af_unix: Add sockaddr length checks before accessing sa_family in bind and
      connect handlers
    - Fix an intermittent pr_emerg warning about lo becoming free.
    - sctp: disable BH in sctp_for_each_endpoint
    - net: caif: Fix a sleep-in-atomic bug in cfpkt_create_pfx
    - net: tipc: Fix a sleep-in-atomic bug in tipc_msg_reverse
    - net/mlx5: Remove several module events out of ethtool stats
    - net/mlx5e: Added BW check for DIM decision mechanism
    - net/mlx5e: Fix wrong indications in DIM due to counter wraparound
    - net/mlx5: Enable 4K UAR only when page size is bigger than 4K
    - proc: snmp6: Use correct type in memset
    - igmp: acquire pmc lock for ip_mc_clear_src()
    - igmp: add a missing spin_lock_init()
    - qmi_wwan: new Telewell and Sierra device IDs
    - net: don't global ICMP rate limit packets originating from loopback
    - ipv6: fix calling in6_ifa_hold incorrectly for dad work
    - sctp: return next obj by passing pos + 1 into sctp_transport_get_idx
    - net/mlx5e: Fix min inline value for VF rep SQs
    - net/mlx5e: Avoid doing a cleanup call if the profile doesn't have it
    - net/mlx5: Wait for FW readiness before initializing command interface
    - net/mlx5e: Fix timestamping capabilities reporting
    - decnet: always not take dst->__refcnt when inserting dst into hash table
    - net: 8021q: Fix one possible panic caused by BUG_ON in free_netdev
    - ipv6: Do not leak throw route references
    - rtnetlink: add IFLA_GROUP to ifla_policy
    - netfilter: synproxy: fix conntrackd interaction
    - NFSv4.x/callback: Create the callback service through svc_create_pooled
    - xen/blkback: don't use xen_blkif_get() in xen-blkback kthread
    - MIPS: head: Reorder instructions missing a delay slot
    - MIPS: Avoid accidental raw backtrace
    - MIPS: pm-cps: Drop manual cache-line alignment of ready_count
    - MIPS: Fix IRQ tracing & lockdep when rescheduling
    - ALSA: hda - Fix endless loop of codec configure
    - ALSA: hda - set input_path bitmap to zero after moving it to new place
    - NFSv4.2: Don't send mode again in post-EXCLUSIVE4_1 SETATTR with umask
    - NFSv4.1: Fix a race in nfs4_proc_layoutget
    - Revert "NFS: nfs_rename() handle -ERESTARTSYS dentry left behind"
    - ovl: copy-up: don't unlock between lookup and link
    - gpiolib: fix filtering out unwanted events
    - x86/intel_rdt: Fix memory leak on mount failure
    - perf/x86/intel/uncore: Fix wrong box pointer check
    - drm/vmwgfx: Free hash table allocated by cmdbuf managed res mgr
    - dm thin: do not queue freed thin mapping for next stage processing
    - x86/mm: Fix boot crash caused by incorrect loop count calculation in
      sync_global_pgds()
    - mm/vmalloc.c: huge-vmap: fail gracefully on unexpected huge vmap mappings
    - xen/blkback: don't free be structure too early
    - xfrm6: Fix IPv6 payload_len in xfrm6_transport_finish
    - xfrm: move xfrm_garbage_collect out of xfrm_policy_flush
    - xfrm: fix stack access out of bounds with CONFIG_XFRM_SUB_POLICY
    - xfrm: NULL dereference on allocation failure
    - xfrm: Oops on error in pfkey_msg2xfrm_state()
    - watchdog: bcm281xx: Fix use of uninitialized spinlock.
    - ARM64: PCI: Fix struct acpi_pci_root_ops allocation failure path
    - ARM64/ACPI: Fix BAD_MADT_GICC_ENTRY() macro implementation
    - ARM: 8685/1: ensure memblock-limit is pmd-aligned
    - ARM: davinci: PM: Free resources in error handling path in 'davinci_pm_init'
    - ARM: davinci: PM: Do not free useful resources in normal path in
      'davinci_pm_init'
    - tools arch: Sync arch/x86/lib/memcpy_64.S with the kernel
    - Revert "x86/entry: Fix the end of the stack for newly forked tasks"
    - x86/mshyperv: Remove excess #includes from mshyperv.h
    - x86/boot/KASLR: Fix kexec crash due to 'virt_addr' calculation bug
    - perf/x86: Fix spurious NMI with PEBS Load Latency event
    - x86/mpx: Correctly report do_mpx_bt_fault() failures to user-space
    - x86/mm: Fix flush_tlb_page() on Xen
    - ocfs2: o2hb: revert hb threshold to keep compatible
    - ocfs2: fix deadlock caused by recursive locking in xattr
    - iommu/dma: Don't reserve PCI I/O windows
    - iommu/amd: Fix incorrect error handling in amd_iommu_bind_pasid()
    - iommu/amd: Fix interrupt remapping when disable guest_mode
    - infiniband: hns: avoid gcc-7.0.1 warning for uninitialized data
    - mtd: nand: brcmnand: Check flash #WP pin status before nand erase/program
    - mtd: nand: fsmc: fix NAND width handling
    - KVM: x86: fix emulation of RSM and IRET instructions
    - KVM: x86/vPMU: fix undefined shift in intel_pmu_refresh()
    - KVM: x86: zero base3 of unusable segments
    - KVM: nVMX: Fix exception injection
    - esp4: Fix udpencap for local TCP packets.
    - hsi: Fix build regression due to netdev destructor fix.
    - Linux 4.11.9

  * update ENA driver to 1.2.0k from net-next (LP: #1701575)
    - net/ena: switch to pci_alloc_irq_vectors
    - net: ena: fix rare uncompleted admin command false alarm
    - net: ena: fix bug that might cause hang after consecutive open/close
      interface.
    - net: ena: add missing return when ena_com_get_io_handlers() fails
    - net: ena: fix race condition between submit and completion admin command
    - net: ena: add missing unmap bars on device removal
    - net: ena: fix theoretical Rx hang on low memory systems
    - net: ena: disable admin msix while working in polling mode
    - net: ena: bug fix in lost tx packets detection mechanism
    - net: ena: update ena driver to version 1.1.7
    - net: ena: change return value for unsupported features unsupported return
      value
    - net: ena: add hardware hints capability to the driver
    - net: ena: change sizeof() argument to be the type pointer
    - net: ena: add reset reason for each device FLR
    - net: ena: add support for out of order rx buffers refill
    - net: ena: allow the driver to work with small number of msix vectors
    - net: ena: use napi_schedule_irqoff when possible
    - net: ena: separate skb allocation to dedicated function
    - net: ena: use lower_32_bits()/upper_32_bits() to split dma address
    - net: ena: update driver's rx drop statistics
    - net: ena: update ena driver to version 1.2.0

  * APST gets enabled against explicit kernel option (LP: #1699004)
    - nvme: Display raw APST configuration via DYNAMIC_DEBUG
    - nvme: Add nvme_core.force_apst to ignore the NO_APST quirk
    - nvme: explicitly disable APST on quirked devices

  * New NVLINK2 patches (LP: #1701272)
    - powerpc/powernv/npu-dma: Add explicit flush when sending an ATSD
    - powerpc/npu-dma: Remove spurious WARN_ON when a PCI device has no of_node

  * ERAT invalidate on context switch removal (LP: #1700819)
    - powerpc: Only do ERAT invalidate on radix context switch on P9 DD1

  * Miscellaneous Ubuntu changes
    - SAUCE: (noup) Update spl to 0.6.5.10-1, zfs to 0.6.5.10-1ubuntu2
    - snapcraft.yaml: Sync with xenial

  * Miscellaneous upstream changes
    - Revert "UBUNTU: SAUCE: (efi-lockdown) efi: Add sysctls for secureboot and
      MokSBState"

linux (4.11.0-10.15) artful; urgency=low

  * linux: 4.11.0-10.15 -proposed tracker (LP: #1701271)

  * Artful update to v4.11.8 stable release (LP: #1701269)
    - clk: sunxi-ng: a31: Correct lcd1-ch1 clock register offset
    - clk: sunxi-ng: v3s: Fix usb otg device reset bit
    - clk: sunxi-ng: sun5i: Fix ahb_bist_clk definition
    - xen/blkback: fix disconnect while I/Os in flight
    - xen-blkback: don't leak stack data via response ring
    - ALSA: firewire-lib: Fix stall of process context at packet error
    - ALSA: pcm: Don't treat NULL chmap as a fatal error
    - ALSA: hda - Add Coffelake PCI ID
    - ALSA: hda - Apply quirks to Broxton-T, too
    - fs/exec.c: account for argv/envp pointers
    - powerpc/perf: Fix oops when kthread execs user process
    - autofs: sanity check status reported with AUTOFS_DEV_IOCTL_FAIL
    - fs/dax.c: fix inefficiency in dax_writeback_mapping_range()
    - lib/cmdline.c: fix get_options() overflow while parsing ranges
    - perf/x86/intel: Add 1G DTLB load/store miss support for SKL
    - perf probe: Fix probe definition for inlined functions
    - KVM: x86: fix singlestepping over syscall
    - KVM: MIPS: Fix maybe-uninitialized build failure
    - KVM: s390: gaccess: fix real-space designation asce handling for gmap
      shadows
    - KVM: PPC: Book3S HV: Cope with host using large decrementer mode
    - KVM: PPC: Book3S HV: Preserve userspace HTM state properly
    - KVM: PPC: Book3S HV: Ignore timebase offset on POWER9 DD1
    - KVM: PPC: Book3S HV: Context-switch EBB registers properly
    - KVM: PPC: Book3S HV: Restore critical SPRs to host values on guest exit
    - KVM: PPC: Book3S HV: Save/restore host values of debug registers
    - CIFS: Improve readdir verbosity
    - CIFS: Fix some return values in case of error in 'crypt_message'
    - cxgb4: notify uP to route ctrlq compl to rdma rspq
    - HID: Add quirk for Dell PIXART OEM mouse
    - random: silence compiler warnings and fix race
    - signal: Only reschedule timers on signals timers have sent
    - powerpc/kprobes: Pause function_graph tracing during jprobes handling
    - powerpc/64s: Handle data breakpoints in Radix mode
    - Input: i8042 - add Fujitsu Lifebook AH544 to notimeout list
    - brcmfmac: add parameter to pass error code in firmware callback
    - brcmfmac: use firmware callback upon failure to load
    - brcmfmac: unbind all devices upon failure in firmware callback
    - time: Fix clock->read(clock) race around clocksource changes
    - time: Fix CLOCK_MONOTONIC_RAW sub-nanosecond accounting
    - arm64/vdso: Fix nsec handling for CLOCK_MONOTONIC_RAW
    - target: Fix kref->refcount underflow in transport_cmd_finish_abort
    - iscsi-target: Fix delayed logout processing greater than
      SECONDS_FOR_LOGOUT_COMP
    - iscsi-target: Reject immediate data underflow larger than SCSI transfer
      length
    - drm/radeon: add a PX quirk for another K53TK variant
    - drm/radeon: add a quirk for Toshiba Satellite L20-183
    - drm/amdgpu/atom: fix ps allocation size for EnableDispPowerGating
    - drm/amdgpu: adjust default display clock
    - drm/amdgpu: add Polaris12 DID
    - ACPI / scan: Apply default enumeration to devices with ACPI drivers
    - ACPI / scan: Fix enumeration for special SPI and I2C devices
    - rxrpc: Fix several cases where a padded len isn't checked in ticket decode
    - drm: Fix GETCONNECTOR regression
    - usb: gadget: f_fs: avoid out of bounds access on comp_desc
    - spi: double time out tolerance
    - net: phy: fix marvell phy status reading
    - brcmfmac: fix uninitialized warning in brcmf_usb_probe_phase2()
    - Linux 4.11.8

  * powerpc: Invalidate ERAT on powersave wakeup for POWER9 (LP: #1700521)
    - SAUCE: powerpc: Invalidate ERAT on powersave wakeup for POWER9

  * Miscellaneous Ubuntu changes
    - d-i: Move qcom-emac from arm64 to shared nic-modules

linux (4.11.0-9.14) artful; urgency=low

  * linux: 4.11.0-9.14 -proposed tracker (LP: #1700537)

  * Artful update to v4.11.7 stable release (LP: #1700372)
    - Revert "Allow stack to grow up to address space limit"
    - Revert "UBUNTU: SAUCE: mm: fix new crash in unmapped_area_topdown()"
    - Revert "mm: larger stack guard gap, between vmas"
    - fs: pass on flags in compat_writev
    - configfs: Fix race between create_link and configfs_rmdir
    - can: gs_usb: fix memory leak in gs_cmd_reset()
    - ila_xlat: add missing hash secret initialization
    - cpufreq: conservative: Allow down_threshold to take values from 1 to 10
    - vb2: Fix an off by one error in 'vb2_plane_vaddr'
    - cec: race fix: don't return -ENONET in cec_receive()
    - selinux: fix double free in selinux_parse_opts_str()
    - mac80211: don't look at the PM bit of BAR frames
    - mac80211/wpa: use constant time memory comparison for MACs
    - drm: mxsfb_crtc: Reset the eLCDIF controller
    - drm/amdgpu: Fix overflow of watermark calcs at > 4k resolutions.
    - drm/i915: Fix GVT-g PVINFO version compatibility check
    - drm/i915: Fix scaling check for 90/270 degree plane rotation
    - drm/i915: Do not sync RCU during shrinking
    - mac80211: fix IBSS presp allocation size
    - mac80211: strictly check mesh address extension mode
    - mac80211: fix dropped counter in multiqueue RX
    - mac80211: don't send SMPS action frame in AP mode when not needed
    - drm/mediatek: fix mtk_hdmi_setup_vendor_specific_infoframe mistake
    - drm/vc4: Fix OOPSes from trying to cache a partially constructed BO.
    - serial: efm32: Fix parity management in 'efm32_uart_console_get_options()'
    - serial: 8250_lpss: Unconditionally set PCI master for Quark
    - serial: sh-sci: Fix (AUTO)RTS in sci_init_pins()
    - serial: sh-sci: Fix late enablement of AUTORTS
    - x86/mm/32: Set the '__vmalloc_start_set' flag in initmem_init()
    - mfd: omap-usb-tll: Fix inverted bit use for USB TLL mode
    - mfd: axp20x: Add support for dts property "xpowers,master-mode"
    - dt-bindings: mfd: axp20x: Add "xpowers,master-mode" property for AXP806
      PMICs
    - mfd: cpcap: Fix interrupt to use level interrupt
    - mfd: cpcap: Use ack_invert interrupts
    - mfd: cpcap: Fix bad use of IRQ sense register
    - phy: rcar-gen3-usb2: fix implementation for runtime PM
    - mtd: physmap_of: really fix the physmap add-ons
    - powerpc/mm: Add physical address to Linux page table dump
    - staging: rtl8188eu: prevent an underflow in rtw_check_beacon_data()
    - staging: bcm2835-camera: fix error handling in init
    - staging: iio: tsl2x7x_core: Fix standard deviation calculation
    - iio: imu: st_lsm6dsx: do not apply ODR configuration in write_raw handler
    - iio: proximity: as3935: recalibrate RCO after resume
    - iio: adc: ti_am335x_adc: allocating too much in probe
    - ALSA: hda: Add Geminilake id to SKL_PLUS
    - ALSA: usb-audio: fix Amanero Combo384 quirk on big-endian hosts
    - usb: gadget: udc: renesas_usb3: fix pm_runtime functions calling
    - usb: gadget: udc: renesas_usb3: fix deadlock by spinlock
    - usb: gadget: udc: renesas_usb3: lock for PN_ registers access
    - USB: hub: fix SS max number of ports
    - usb: core: fix potential memory leak in error path during hcd creation
    - USB: usbip: fix nonconforming hub descriptor
    - usb: dwc3: gadget: Fix ISO transfer performance
    - pvrusb2: reduce stack usage pvr2_eeprom_analyze()
    - USB: gadget: dummy_hcd: fix hub-descriptor removable fields
    - usb: r8a66597-hcd: select a different endpoint on timeout
    - usb: r8a66597-hcd: decrease timeout
    - coda: restore original firmware locations
    - drivers/misc/c2port/c2port-duramar2150.c: checking for NULL instead of
      IS_ERR()
    - usb: xhci: Fix USB 3.1 supported protocol parsing
    - usb: xhci: ASMedia ASM1042A chipset need shorts TX quirk
    - USB: gadget: fix GPF in gadgetfs
    - USB: gadgetfs, dummy-hcd, net2280: fix locking for callbacks
    - mm/memory-failure.c: use compound_head() flags for huge pages
    - swap: cond_resched in swap_cgroup_prepare()
    - mm: numa: avoid waiting on freed migrated pages
    - userfaultfd: shmem: handle coredumping in handle_userfault()
    - iio: imu: inv_mpu6050: add accel lpf setting for chip >= MPU6500
    - staging: iio: ad7152: Fix deadlock in ad7152_write_raw_samp_freq()
    - iio: adc: meson-saradc: fix potential crash in meson_sar_adc_clear_fifo
    - sched/core: Idle_task_exit() shouldn't use switch_mm_irqs_off()
    - genirq: Release resources in __setup_irq() error path
    - alarmtimer: Prevent overflow of relative timers
    - alarmtimer: Rate limit periodic intervals
    - virtio_balloon: disable VIOMMU support
    - MIPS: Fix bnezc/jialc return address calculation
    - MIPS: .its targets depend on vmlinux
    - crypto: Work around deallocated stack frame reference gcc bug on sparc.
    - ARM: dts: am335x-sl50: Fix card detect pin for mmc1
    - ARM: dts: am335x-sl50: Fix cannot claim requested pins for spi0
    - mm: larger stack guard gap, between vmas
    - Allow stack to grow up to address space limit
    - mm: fix new crash in unmapped_area_topdown()
    - Linux 4.11.7

  * aacraid driver may return uninitialized stack data to userspace
    (LP: #1700077)
    - SAUCE: scsi: aacraid: Don't copy uninitialized stack memory to userspace

  * KILLER1435-S[0489:e0a2] BT cannot search BT 4.0 device (LP: #1699651)
    - Bluetooth: btusb: Add support for 0489:e0a2 QCA_ROME device

  * arm64 kernel crashdump support (LP: #1694859)
    - memblock: add memblock_clear_nomap()
    - memblock: add memblock_cap_memory_range()
    - arm64: limit memory regions based on DT property, usable-memory-range
    - arm64: kdump: reserve memory for crash dump kernel
    - arm64: mm: add set_memory_valid()
    - arm64: kdump: protect crash dump kernel memory
    - arm64: hibernate: preserve kdump image around hibernation
    - arm64: kdump: implement machine_crash_shutdown()
    - arm64: kdump: add VMCOREINFO's for user-space tools
    - [Config] CONFIG_CRASH_DUMP=y on arm64
    - arm64: kdump: provide /proc/vmcore file
    - Documentation: kdump: describe arm64 port
    - Documentation: dt: chosen properties for arm64 kdump
    - efi/libstub/arm*: Set default address and size cells values for an empty dtb

  * AACRAID for power9 platform (LP: #1689980)
    - scsi: aacraid: pci_alloc_consistent() failures on ARM64
    - scsi: aacraid: Remove __GFP_DMA for raw srb memory
    - scsi: aacraid: Fix DMAR issues with iommu=pt
    - scsi: aacraid: Added 32 and 64 queue depth for arc natives
    - scsi: aacraid: Set correct Queue Depth for HBA1000 RAW disks
    - scsi: aacraid: Remove reset support from check_health
    - scsi: aacraid: Change wait time for fib completion
    - scsi: aacraid: Log count info of scsi cmds before reset
    - scsi: aacraid: Print ctrl status before eh reset
    - scsi: aacraid: Using single reset mask for IOP reset
    - scsi: aacraid: Rework IOP reset
    - scsi: aacraid: Add periodic checks to see IOP reset status
    - scsi: aacraid: Rework SOFT reset code
    - scsi: aacraid: Rework aac_src_restart
    - scsi: aacraid: Use correct function to get ctrl health
    - scsi: aacraid: Make sure ioctl returns on controller reset
    - scsi: aacraid: Enable ctrl reset for both hba and arc
    - scsi: aacraid: Add reset debugging statements
    - scsi: aacraid: Remove reference to Series-9
    - scsi: aacraid: Update driver version to 50834

  * Miscellaneous upstream changes
    - Allow stack to grow up to address space limit

linux (4.11.0-8.13) artful; urgency=low

  [ Seth Forshee ]

  * Release Tracking Bug
    - LP: #1699184

  * hibmc driver does not include "pci:" prefix in bus ID (LP: #1698700)
    - SAUCE: drm: hibmc: Use set_busid function from drm core

  * HiSilicon D05: installer doesn't appear on VGA (LP: #1698954)
    - d-i: Add hibmc-drm to kernel-image udeb

  * Fix /proc/cpuinfo revision for POWER9 DD2 (LP: #1698844)
    - SAUCE: powerpc: Fix /proc/cpuinfo revision for POWER9 DD2

  * Miscellaneous Ubuntu changes
    - SAUCE: mm: fix new crash in unmapped_area_topdown()

linux (4.11.0-7.12) artful; urgency=low

  [ Seth Forshee ]

  * Release Tracking Bug
    - LP: #1698881

  * CVE-2017-1000364
    - mm: larger stack guard gap, between vmas

  * Artful update to v4.11.6 stable release (LP: #1698800)
    - drm/i915: Do not drop pagetables when empty
    - PCI/PM: Add needs_resume flag to avoid suspend complete optimization
    - drm/i915: Prevent the system suspend complete optimization
    - partitions/msdos: FreeBSD UFS2 file systems are not recognized
    - efi: Fix boot panic because of invalid BGRT image address
    - xtensa: don't use linux IRQ #0
    - s390/kvm: do not rely on the ILC on kvm host protection fauls
    - Revert "drm/i915: Restore lost "Initialized i915" welcome message"
    - drm/i915: Fix 90/270 rotated coordinates for FBC
    - drm/i915: Workaround VLV/CHV DSI scanline counter hardware fail
    - drm/i915: Guard against i915_ggtt_disable_guc() being invoked
      unconditionally
    - drm/i915: Always recompute watermarks when distrust_bios_wm is set, v2.
    - drm/i915: Disable decoupled MMIO
    - Linux 4.11.6

  * Bugfixes for  hns network driver (LP: #1696031)
    - net: hns: Fix the implementation of irq affinity function
    - net: hns: Modify GMAC init TX threshold value
    - net: hns: Optimize the code for GMAC pad and crc Config
    - net: hns: Remove redundant memset during buffer release
    - net: hns: bug fix of ethtool show the speed
    - net: hns: Optimize hns_nic_common_poll for better performance
    - net: hns: Fix to adjust buf_size of ring according to mtu
    - net: hns: Replace netif_tx_lock to ring spin lock
    - net: hns: Correct HNS RSS key set function
    - net: hns: Remove the redundant adding and deleting mac function
    - net: hns: Remove redundant mac_get_id()
    - net: hns: Remove redundant mac table operations
    - net: hns: Clean redundant code from hns_mdio.c file
    - net: hns: Optimise the code in hns_mdio_wait_ready()
    - net: hns: Simplify the exception sequence in hns_ppe_init()
    - net: hns: Adjust the SBM module buffer threshold
    - net: hns: Avoid Hip06 chip TX packet line bug
    - net: hns: Some checkpatch.pl script & warning fixes
    - net: hns: support deferred probe when can not obtain irq
    - net: hns: support deferred probe when no mdio
    - net: hns: fix ethtool_get_strings overflow in hns driver

  * OpenPower: Some multipaths temporarily have only a single path
    (LP: #1696445)
    - scsi: ses: don't get power status of SES device slot on probe

  * Artful update to v4.11.5 stable release (LP: #1697955)
    - bnx2x: Fix Multi-Cos
    - net: bridge: start hello timer only if device is up
    - vxlan: eliminate cached dst leak
    - net: systemport: Fix missing Wake-on-LAN interrupt for SYSTEMPORT Lite
    - ipv6: xfrm: Handle errors reported by xfrm6_find_1stfragopt()
    - cxgb4: avoid enabling napi twice to the same queue
    - tcp: disallow cwnd undo when switching congestion control
    - vxlan: fix use-after-free on deletion
    - ip6_tunnel: fix traffic class routing for tunnels
    - sock: reset sk_err when the error queue is empty
    - geneve: fix needed_headroom and max_mtu for collect_metadata
    - ipv6: Fix leak in ipv6_gso_segment().
    - net: dsa: Fix stale cpu_switch reference after unbind then bind
    - net: ping: do not abuse udp_poll()
    - net/ipv6: Fix CALIPSO causing GPF with datagram support
    - ravb: Fix use-after-free on `ifconfig eth0 down`
    - net: bridge: fix a null pointer dereference in br_afspec
    - net: ethoc: enable NAPI before poll may be scheduled
    - net: stmmac: fix completely hung TX when using TSO
    - sparc64: Add __multi3 for gcc 7.x and later.
    - sparc64: mm: fix copy_tsb to correctly copy huge page TSBs
    - sparc: Machine description indices can vary
    - sparc/mm/hugepages: Fix setup_hugepagesz for invalid values.
    - sparc64: reset mm cpumask after wrap
    - sparc64: combine activate_mm and switch_mm
    - sparc64: redefine first version
    - sparc64: add per-cpu mm of secondary contexts
    - sparc64: new context wrap
    - sparc64: delete old wrap code
    - arch/sparc: support NR_CPUS = 4096
    - ftrace: Fix memory leak in ftrace_graph_release()
    - serial: exar: Fix stuck MSIs
    - serial: ifx6x60: fix use-after-free on module unload
    - serial: core: fix crash in uart_suspend_port
    - ptrace: Properly initialize ptracer_cred on fork
    - ARM: dts: keystone-k2l: fix broken Ethernet due to disabled OSR
    - crypto: asymmetric_keys - handle EBUSY due to backlog correctly
    - KEYS: fix dereferencing NULL payload with nonzero length
    - KEYS: fix freeing uninitialized memory in key_update()
    - KEYS: encrypted: avoid encrypting/decrypting stack buffers
    - crypto: drbg - wait for crypto op not signal safe
    - crypto: gcm - wait for crypto op not signal safe
    - ovl: fix creds leak in copy up error path
    - kthread: Fix use-after-free if kthread fork fails
    - drm/amdgpu/ci: disable mclk switching for high refresh rates (v2)
    - nfsd4: fix null dereference on replay
    - gfs2: Make flush bios explicitely sync
    - efi: Don't issue error message when booted under Xen
    - efi/bgrt: Skip efi_bgrt_init() in case of non-EFI boot
    - kvm: async_pf: fix rcu_irq_enter() with irqs enabled
    - KVM: cpuid: Fix read/write out-of-bounds vulnerability in cpuid emulation
    - arm64: KVM: Preserve RES1 bits in SCTLR_EL2
    - arm64: KVM: Allow unaligned accesses at EL2
    - arm: KVM: Allow unaligned accesses at HYP
    - KVM: async_pf: avoid async pf injection when in guest mode
    - dmaengine: usb-dmac: Fix DMAOR AE bit definition
    - dmaengine: ep93xx: Always start from BASE0
    - dmaengine: ep93xx: Don't drain the transfers in terminate_all()
    - dmaengine: mv_xor_v2: handle mv_xor_v2_prep_sw_desc() error properly
    - dmaengine: mv_xor_v2: properly handle wrapping in the array of HW
      descriptors
    - dmaengine: mv_xor_v2: do not use descriptors not acked by async_tx
    - dmaengine: mv_xor_v2: enable XOR engine after its configuration
    - dmaengine: mv_xor_v2: fix tx_submit() implementation
    - dmaengine: mv_xor_v2: remove interrupt coalescing
    - dmaengine: mv_xor_v2: set DMA mask to 40 bits
    - cfq-iosched: fix the delay of cfq_group's vdisktime under iops mode
    - reiserfs: Make flush bios explicitely sync
    - mtd: nand: tango: Export OF device ID table as module aliases
    - mtd: nand: tango: Update ecc_stats.corrected
    - xen/privcmd: Support correctly 64KB page granularity when mapping memory
    - ext4: fix SEEK_HOLE
    - ext4: keep existing extra fields when inode expands
    - ext4: fix data corruption with EXT4_GET_BLOCKS_ZERO
    - ext4: fix fdatasync(2) after extent manipulation operations
    - drm: Fix oops + Xserver hang when unplugging USB drm devices
    - usb: gadget: f_mass_storage: Serialize wake and sleep execution
    - usb: musb: dsps: keep VBUS on for host-only mode
    - usb: chipidea: imx: Do not access CLKONOFF on i.MX51
    - usb: chipidea: udc: fix NULL pointer dereference if udc_start failed
    - usb: chipidea: debug: check before accessing ci_role
    - staging/lustre/lov: remove set_fs() call from lov_getstripe()
    - iio: adc: bcm_iproc_adc: swap primary and secondary isr handler's
    - iio: light: ltr501 Fix interchanged als/ps register field
    - iio: trigger: fix NULL pointer dereference in iio_trigger_write_current()
    - iio: proximity: as3935: fix AS3935_INT mask
    - iio: proximity: as3935: fix iio_trigger_poll issue
    - block: Avoid that blk_exit_rl() triggers a use-after-free
    - mei: make sysfs modalias format similar as uevent modalias
    - random: invalidate batched entropy after crng init
    - cpufreq: cpufreq_register_driver() should return -ENODEV if init fails
    - target: Re-add check to reject control WRITEs with overflow data
    - drm/msm: Expose our reservation object when exporting a dmabuf.
    - drm/msm/mdp5: use __drm_atomic_helper_plane_duplicate_state()
    - ahci: Acer SA5-271 SSD Not Detected Fix
    - rc-core: race condition during ir_raw_event_register()
    - cgroup: Prevent kill_css() from being called more than once
    - Input: elantech - add Fujitsu Lifebook E546/E557 to force crc_enabled
    - cpuset: consider dying css as offline
    - ufs: restore proper tail allocation
    - fix ufs_isblockset()
    - ufs: restore maintaining ->i_blocks
    - ufs: set correct ->s_maxsize
    - ufs_extend_tail(): fix the braino in calling conventions of
      ufs_new_fragments()
    - ufs_getfrag_block(): we only grab ->truncate_mutex on block creation path
    - excessive checks in ufs_write_failed() and ufs_evict_inode()
    - cxl: Fix error path on bad ioctl
    - cxl: Avoid double free_irq() for psl,slice interrupts
    - btrfs: use correct types for page indices in btrfs_page_exists_in_range
    - btrfs: fix memory leak in update_space_info failure path
    - btrfs: fix race with relocation recovery and fs_root setup
    - Btrfs: fix delalloc accounting leak caused by u32 overflow
    - KVM: arm/arm64: Handle possible NULL stage2 pud when ageing pages
    - scsi: qla2xxx: don't disable a not previously enabled PCI device
    - scsi: qla2xxx: Fix recursive loop during target mode configuration for
      ISP25XX leaving system unresponsive
    - scsi: qla2xxx: Fix crash due to mismatch mumber of Q-pair creation for Multi
      queue
    - scsi: qla2xxx: Fix NULL pointer access due to redundant fc_host_port_name
      call
    - scsi: qla2xxx: Modify T262 FW dump template to specify same start/end to
      debug customer issues
    - scsi: qla2xxx: Set bit 15 for DIAG_ECHO_TEST MBC
    - scsi: qla2xxx: Fix mailbox pointer error in fwdump capture
    - powerpc/sysdev/simple_gpio: Fix oops in gpio save_regs function
    - powerpc/numa: Fix percpu allocations to be NUMA aware
    - powerpc/hotplug-mem: Fix missing endian conversion of aa_index
    - powerpc/kernel: Fix FP and vector register restoration
    - powerpc/kernel: Initialize load_tm on task creation
    - Revert "ata: sata_mv: Convert to devm_ioremap_resource()"
    - perf/core: Drop kernel samples even though :u is specified
    - srcu: Allow use of Classic SRCU from both process and interrupt context
    - net: qcom/emac: do not use hardware mdio automatic polling
    - drm/vmwgfx: Handle vmalloc() failure in vmw_local_fifo_reserve()
    - drm/vmwgfx: limit the number of mip levels in vmw_gb_surface_define_ioctl()
    - drm/vmwgfx: Make sure backup_handle is always valid
    - x86/microcode/intel: Clear patch pointer before jettisoning the initrd
    - drm/nouveau/tmr: fully separate alarm execution/pending lists
    - ALSA: timer: Fix race between read and ioctl
    - ALSA: timer: Fix missing queue indices reset at SNDRV_TIMER_IOCTL_SELECT
    - ASoC: Fix use-after-free at card unregistration
    - cpu/hotplug: Drop the device lock on error
    - drivers: char: mem: Fix wraparound check to allow mappings up to the end
    - drm/i915: Fix runtime PM for LPE audio
    - drm/i915/skl: Add missing SKL ID
    - serial: sh-sci: Fix panic when serial console and DMA are enabled
    - pinctrl: cherryview: Add terminate entry for dmi_system_id tables
    - cgroup: mark cgroup_get() with __maybe_unused
    - iomap_dio_rw: Prevent reading file data beyond iomap_dio->i_size
    - hwmon: (coretemp) Handle frozen hotplug state correctly
    - audit: fix the RCU locking for the auditd_connection structure
    - drm/i915/vbt: don't propagate errors from intel_bios_init()
    - drm/i915/vbt: split out defaults that are set when there is no VBT
    - netfilter: nft_set_rbtree: handle element re-addition after deletion
    - kthread: fix boot hang (regression) on MIPS/OpenRISC
    - Linux 4.11.5

linux (4.11.0-6.11) artful; urgency=low

  [ Seth Forshee ]

  * Release Tracking Bug
    - LP: #1697022

  * CVE-2014-9900
    - SAUCE: (no-up) net: Zeroing the structure ethtool_wolinfo in
      ethtool_get_wol()

  * hisi_sas driver updates (LP: #1695999)
    - scsi: hisi_sas: add to_hisi_sas_port()
    - scsi: hisi_sas: add controller reset
    - scsi: hisi_sas: move PHY init to hisi_sas_scan_start()
    - scsi: hisi_sas: add softreset function for SATA disk
    - scsi: hisi_sas: remove hisi_sas_port_deformed()
    - scsi: hisi_sas: error hisi_sas_task_prep() when port down
    - scsi: hisi_sas: only reset link for PHY_FUNC_LINK_RESET
    - scsi: hisi_sas: modify error handling for v2 hw
    - scsi: hisi_sas: modify hisi_sas_abort_task() for SSP
    - scsi: hisi_sas: hardreset for SATA disk in LU reset
    - scsi: hisi_sas: check for SAS_TASK_STATE_ABORTED in slot complete
    - scsi: hisi_sas: free slots after hardreset
    - scsi: hisi_sas: fix some sas_task.task_state_lock locking
    - scsi: hisi_sas: remove task free'ing for timeouts
    - scsi: hisi_sas: process error codes according to their priority
    - scsi: hisi_sas: some modifications to v2 hw reg init values
    - scsi: hisi_sas: handle PHY UP+DOWN simultaneous irq
    - scsi: hisi_sas: rename hisi_sas_link_timeout_{enable, disable}_link
    - scsi: hisi_sas: add hisi_sas_clear_nexus_ha()
    - scsi: hisi_sas: release SMP slot in lldd_abort_task
    - scsi: hisi_sas: check hisi_sas_lu_reset() error message
    - scsi: hisi_sas: use dev_is_sata to identify SATA or SAS disk
    - scsi: hisi_sas: add is_sata_phy_v2_hw()
    - scsi: hisi_sas: add missing break in switch statement
    - scsi: hisi_sas: fix SATA dependency
    - scsi: hisi_sas: workaround STP link SoC bug
    - scsi: hisi_sas: workaround a SoC SATA IO processing bug
    - scsi: hisi_sas: workaround SoC about abort timeout bug
    - scsi: hisi_sas: add v2 hw internal abort timeout workaround
    - scsi: hisi_sas: fix NULL deference when TMF timeouts
    - scsi: hisi_sas: controller reset for multi-bits ECC and AXI fatal errors

  * [SRU][Zesty] Support SMMU passthrough using the default domain
    (LP: #1688158)
    - iommu/arm-smmu: Restrict domain attributes to UNMANAGED domains
    - iommu/arm-smmu: Install bypass S2CRs for IOMMU_DOMAIN_IDENTITY domains
    - iommu/arm-smmu-v3: Make arm_smmu_install_ste_for_dev return void
    - iommu/arm-smmu-v3: Install bypass STEs for IOMMU_DOMAIN_IDENTITY domains
    - iommu: Allow default domain type to be set on the kernel command line

  * [Zesty] QDF2400 ARM64 server - NMI watchdog: BUG: soft lockup - CPU#8 stuck
    for 22s!  (LP: #1680549)
    - iommu/dma: Convert to address-based allocation
    - iommu/dma: Clean up MSI IOVA allocation
    - iommu/dma: Plumb in the per-CPU IOVA caches
    - iommu/iova: Fix underflow bug in __alloc_and_insert_iova_range

  * Artful update to v4.11.4 stable release (LP: #1696723)
    - dccp/tcp: do not inherit mc_list from parent
    - driver: vrf: Fix one possible use-after-free issue
    - ipv6/dccp: do not inherit ipv6_mc_list from parent
    - s390/qeth: handle sysfs error during initialization
    - s390/qeth: unbreak OSM and OSN support
    - s390/qeth: avoid null pointer dereference on OSN
    - s390/qeth: add missing hash table initializations
    - bpf, arm64: fix faulty emission of map access in tail calls
    - netem: fix skb_orphan_partial()
    - net: fix compile error in skb_orphan_partial()
    - tcp: avoid fragmenting peculiar skbs in SACK
    - tipc: make macro tipc_wait_for_cond() smp safe
    - sctp: fix src address selection if using secondary addresses for ipv6
    - sctp: do not inherit ipv6_{mc|ac|fl}_list from parent
    - net/packet: fix missing net_device reference release
    - net/mlx5e: Use the correct pause values for ethtool advertising
    - net/mlx5e: Fix ethtool pause support and advertise reporting
    - tcp: eliminate negative reordering in tcp_clean_rtx_queue
    - smc: switch to usage of IB_PD_UNSAFE_GLOBAL_RKEY
    - net/smc: Add warning about remote memory exposure
    - net: Improve handling of failures on link and route dumps
    - ipv6: Prevent overrun when parsing v6 header options
    - ipv6: Check ip6_find_1stfragopt() return value properly.
    - bridge: netlink: check vlan_default_pvid range
    - qmi_wwan: add another Lenovo EM74xx device ID
    - bridge: start hello_timer when enabling KERNEL_STP in br_stp_start
    - ipv6: fix out of bound writes in __ip6_append_data()
    - bonding: fix accounting of active ports in 3ad
    - net/mlx5: Avoid using pending command interface slots
    - net: phy: marvell: Limit errata to 88m1101
    - vlan: Fix tcp checksum offloads in Q-in-Q vlans
    - be2net: Fix offload features for Q-in-Q packets
    - virtio-net: enable TSO/checksum offloads for Q-in-Q vlans
    - geneve: fix fill_info when using collect_metadata
    - tcp: avoid fastopen API to be used on AF_UNSPEC
    - sctp: fix ICMP processing if skb is non-linear
    - ip6_tunnel, ip6_gre: fix setting of DSCP on encapsulated packets
    - ipv4: add reference counting to metrics
    - bpf: add bpf_clone_redirect to bpf_helper_changes_pkt_data
    - bpf: fix wrong exposure of map_flags into fdinfo for lpm
    - bpf: adjust verifier heuristics
    - sparc64: Fix mapping of 64k pages with MAP_FIXED
    - sparc: Fix -Wstringop-overflow warning
    - sparc/ftrace: Fix ftrace graph time measurement
    - fs/ufs: Set UFS default maximum bytes per file
    - powerpc: Fix booting P9 hash with CONFIG_PPC_RADIX_MMU=N
    - powerpc/spufs: Fix hash faults for kernel regions
    - Revert "tty_port: register tty ports with serdev bus"
    - serdev: fix tty-port client deregistration
    - i2c: i2c-tiny-usb: fix buffer not being DMA capable
    - crypto: skcipher - Add missing API setkey checks
    - Revert "ACPI / button: Remove lid_init_state=method mode"
    - x86/MCE: Export memory_error()
    - acpi, nfit: Fix the memory error check in nfit_handle_mce()
    - ACPI / sysfs: fix acpi_get_table() leak / acpi-sysfs denial of service
    - ACPICA: Tables: Fix regression introduced by a too early mechanism enabling
    - Revert "ACPI / button: Change default behavior to lid_init_state=open"
    - mmc: sdhci-iproc: suppress spurious interrupt with Multiblock read
    - scsi: zero per-cmd private driver data for each MQ I/O
    - iscsi-target: Always wait for kthread_should_stop() before kthread exit
    - iscsi-target: Fix initial login PDU asynchronous socket close OOPs
    - scsi: scsi_dh_rdac: Use ctlr directly in rdac_failover_get()
    - ibmvscsis: Clear left-over abort_cmd pointers
    - ibmvscsis: Fix the incorrect req_lim_delta
    - HID: wacom: Have wacom_tpc_irq guard against possible NULL dereference
    - nvme-rdma: support devices with queue size < 32
    - nvme: use blk_mq_start_hw_queues() in nvme_kill_queues()
    - nvme: avoid to use blk_mq_abort_requeue_list()
    - drm/amd/powerplay/smu7: add vblank check for mclk switching (v2)
    - drm/amd/powerplay/smu7: disable mclk switching for high refresh rates
    - drm/radeon/ci: disable mclk switching for high refresh rates (v2)
    - drm/radeon: Unbreak HPD handling for r600+
    - pcmcia: remove left-over %Z format
    - ALSA: hda - No loopback on ALC299 codec
    - ALSA: hda - apply STAC_9200_DELL_M22 quirk for Dell Latitude D430
    - Revert "ALSA: usb-audio: purge needless variable length array"
    - ALSA: usb: Fix a typo in Tascam US-16x08 mixer element
    - mm/page_alloc.c: make sure OOM victim can try allocations with no watermarks
      once
    - mm: avoid spurious 'bad pmd' warning messages
    - dax: fix race between colliding PMD & PTE entries
    - mm/migrate: fix refcount handling when !hugepage_migration_supported()
    - mlock: fix mlock count can not decrease in race condition
    - mm/hugetlb: report -EHWPOISON not -EFAULT when FOLL_HWPOISON is specified
    - mm: consider memblock reservations for deferred memory initialization sizing
    - RDMA/srp: Fix NULL deref at srp_destroy_qp()
    - RDMA/qib,hfi1: Fix MR reference count leak on write with immediate
    - x86/boot: Use CROSS_COMPILE prefix for readelf
    - ksm: prevent crash after write_protect_page fails
    - slub/memcg: cure the brainless abuse of sysfs attributes
    - drm/gma500/psb: Actually use VBT mode when it is found
    - xfs: Fix missed holes in SEEK_HOLE implementation
    - xfs: use ->b_state to fix buffer I/O accounting release race
    - xfs: fix off-by-one on max nr_pages in xfs_find_get_desired_pgoff()
    - xfs: use dedicated log worker wq to avoid deadlock with cil wq
    - xfs: fix over-copying of getbmap parameters from userspace
    - xfs: actually report xattr extents via iomap
    - xfs: drop iolock from reclaim context to appease lockdep
    - xfs: fix integer truncation in xfs_bmap_remap_alloc
    - xfs: handle array index overrun in xfs_dir2_leaf_readbuf()
    - xfs: prevent multi-fsb dir readahead from reading random blocks
    - xfs: fix up quotacheck buffer list error handling
    - xfs: support ability to wait on new inodes
    - xfs: update ag iterator to support wait on new inodes
    - xfs: wait on new inodes during quotaoff dquot release
    - xfs: reserve enough blocks to handle btree splits when remapping
    - xfs: fix use-after-free in xfs_finish_page_writeback
    - xfs: fix indlen accounting error on partial delalloc conversion
    - xfs: BMAPX shouldn't barf on inline-format directories
    - xfs: bad assertion for delalloc an extent that start at i_size
    - xfs: xfs_trans_alloc_empty
    - xfs: avoid mount-time deadlock in CoW extent recovery
    - xfs: fix unaligned access in xfs_btree_visit_blocks
    - xfs: Fix off-by-in in loop termination in xfs_find_get_desired_pgoff()
    - Linux 4.11.4

  * orangefs kernel module not compiled for amd64, i386 (LP: #1696541)
    - [Config] CONFIG_ORANGEFS_FS=m

  * Dell Inspiron on kernel 4.10 : battery detected only after AC power adapter
    event (LP: #1678590)
    - ACPI / blacklist: add _REV quirk for Dell Inspiron 7537

  * APST quirk needed for Intel NVMe (LP: #1686592)
    - nvme: Quirk APST on Intel 600P/P3100 devices

  * iptables/ip6tables regressions in deleting rules (LP: #1691752)
    - netfilter: xtables: zero padding in data_to_user
    - netfilter: xtables: fix build failure from COMPAT_XT_ALIGN outside
      CONFIG_COMPAT

  * System doesn't boot properly on Gigabyte AM4 motherboards (AMD Ryzen)
    (LP: #1671360)
    - pinctrl: amd: make use of raw_spinlock variants
    - pinctrl/amd: Use regular interrupt instead of chained

  * Marvell MacchiatoBin crashes in fintek_8250_probe() (LP: #1692548)
    - drivers/tty: 8250: only call fintek_8250_probe when doing port I/O

  * extend-diff-ignore should use exact matches (LP: #1693504)
    - [Packaging] exact extend-diff-ignore matches

  * ATS fix: Fix opal_npu_destroy_context call (LP: #1692580)
    - powerpc/powernv/npu-dma.c: Fix opal_npu_destroy_context() call

  * Keyboard backlight control does not work on some dell laptops.
    (LP: #1693126)
    - platform/x86: dell-laptop: Add keyboard backlight timeout AC settings

  * Miscellaneous Ubuntu changes
    - SAUCE: efi: Don't print secure boot state from the efi stub
    - ubuntu: vbox -- Update to 5.1.22-dfsg-1
    - SAUCE: (noup) Update spl to 0.6.5.9-1ubuntu2, zfs to 0.6.5.9-5ubuntu7

linux (4.11.0-5.10) artful; urgency=low

  [ Seth Forshee ]

  * Release Tracking Bug
    - LP: #1693962

  * Artful update to v4.11.3 stable release (LP: #1693932)
    - usb: misc: legousbtower: Fix buffers on stack
    - usb: misc: legousbtower: Fix memory leak
    - USB: ene_usb6250: fix DMA to the stack
    - watchdog: pcwd_usb: fix NULL-deref at probe
    - char: lp: fix possible integer overflow in lp_setup()
    - USB: core: replace %p with %pK
    - tpm_tis_core: Choose appropriate timeout for reading burstcount
    - ALSA: hda: Fix cpu lockup when stopping the cmd dmas
    - fanotify: don't expose EOPENSTALE to userspace
    - tpm_tis_spi: Use single function to transfer data
    - tpm_tis_spi: Abort transfer when too many wait states are signaled
    - tpm_tis_spi: Check correct byte for wait state indicator
    - tpm_tis_spi: Remove limitation of transfers to MAX_SPI_FRAMESIZE bytes
    - tpm_tis_spi: Add small delay after last transfer
    - tpm: msleep() delays - replace with usleep_range() in i2c nuvoton driver
    - tpm_crb: check for bad response size
    - vTPM: Fix missing NULL check
    - tpm: fix handling of the TPM 2.0 event logs
    - ASoC: cs4271: configure reset GPIO as output
    - mlx5: Fix mlx5_ib_map_mr_sg mr length
    - infiniband: call ipv6 route lookup via the stub interface
    - dm btree: fix for dm_btree_find_lowest_key()
    - dm raid: select the Kconfig option CONFIG_MD_RAID0
    - dm bufio: avoid a possible ABBA deadlock
    - dm bufio: check new buffer allocation watermark every 30 seconds
    - dm mpath: requeue after a small delay if blk_get_request() fails
    - dm mpath: split and rename activate_path() to prepare for its expanded use
    - dm mpath: avoid that path removal can trigger an infinite loop
    - dm mpath: delay requeuing while path initialization is in progress
    - dm cache metadata: fail operations if fail_io mode has been established
    - dm bufio: make the parameter "retain_bytes" unsigned long
    - dm thin metadata: call precommit before saving the roots
    - dm space map disk: fix some book keeping in the disk space map
    - md: update slab_cache before releasing new stripes when stripes resizing
    - md: MD_CLOSING needs to be cleared after called md_set_readonly or
      do_md_stop
    - rtlwifi: rtl8821ae: setup 8812ae RFE according to device type
    - mwifiex: MAC randomization should not be persistent
    - mwifiex: pcie: fix cmd_buf use-after-free in remove/reset
    - ima: accept previously set IMA_NEW_FILE
    - KVM: x86: Fix load damaged SSEx MXCSR register
    - KVM: x86: Fix potential preemption when get the current kvmclock timestamp
    - KVM: X86: Fix read out-of-bounds vulnerability in kvm pio emulation
    - x86: fix 32-bit case of __get_user_asm_u64()
    - regulator: rk808: Fix RK818 LDO2
    - regulator: tps65023: Fix inverted core enable logic.
    - s390/kdump: Add final note
    - s390/cputime: fix incorrect system time
    - ath9k_htc: Add support of AirTies 1eda:2315 AR9271 device
    - ath9k_htc: fix NULL-deref at probe
    - drm/amdgpu: Make display watermark calculations more accurate
    - drm/amdgpu: Avoid overflows/divide-by-zero in latency_watermark
      calculations.
    - drm/amdgpu: Add missing lb_vblank_lead_lines setup to DCE-6 path.
    - drm/nouveau/therm: remove ineffective workarounds for alarm bugs
    - drm/nouveau/kms/nv50: fix source-rect-only plane updates
    - drm/nouveau/kms/nv50: skip core channel cursor update on position-only
      changes
    - drm/nouveau/tmr: ack interrupt before processing alarms
    - drm/nouveau/tmr: fix corruption of the pending list when rescheduling an
      alarm
    - drm/nouveau/tmr: avoid processing completed alarms when adding a new one
    - drm/nouveau/tmr: handle races with hw when updating the next alarm time
    - gpio: omap: return error if requested debounce time is not possible
    - cdc-acm: fix possible invalid access when processing notification
    - ohci-pci: add qemu quirk
    - cxl: Force context lock during EEH flow
    - cxl: Route eeh events to all drivers in cxl_pci_error_detected()
    - proc: Fix unbalanced hard link numbers
    - of: fix sparse warning in of_pci_range_parser_one
    - of: fix "/cpus" reference leak in of_numa_parse_cpu_nodes()
    - of: fdt: add missing allocation-failure check
    - ibmvscsis: Do not send aborted task response
    - scsi: lpfc: Fix panic on BFS configuration
    - iio: dac: ad7303: fix channel description
    - IIO: bmp280-core.c: fix error in humidity calculation
    - iio: stm32 trigger: fix sampling_frequency read
    - IB/hfi1: Return an error on memory allocation failure
    - IB/hfi1: Fix a subcontext memory leak
    - pid_ns: Sleep in TASK_INTERRUPTIBLE in zap_pid_ns_processes
    - pid_ns: Fix race between setns'ed fork() and zap_pid_ns_processes()
    - USB: serial: ftdi_sio: fix setting latency for unprivileged users
    - USB: serial: ftdi_sio: add Olimex ARM-USB-TINY(H) PIDs
    - USB: chaoskey: fix Alea quirk on big-endian hosts
    - Make stat/lstat/fstatat pass AT_NO_AUTOMOUNT to vfs_statx()
    - libnvdimm: fix clear length of nvdimm_forget_poison()
    - dax: fix data corruption when fault races with write
    - EDAC, amd64: Fix reporting of Chip Select sizes on Fam17h
    - xhci: Fix command ring stop regression in 4.11
    - xhci: remove GFP_DMA flag from allocation
    - usb: host: xhci-plat: propagate return value of platform_get_irq()
    - USB: xhci: fix lock-inversion problem
    - xhci: apply PME_STUCK_QUIRK and MISSING_CAS quirk for Denverton
    - usb: host: xhci-mem: allocate zeroed Scratchpad Buffer
    - net: irda: irda-usb: fix firmware name on big-endian hosts
    - usbvision: fix NULL-deref at probe
    - mceusb: fix NULL-deref at probe
    - ttusb2: limit messages to buffer size
    - dvb-usb-dibusb-mc-common: Add MODULE_LICENSE
    - usb: dwc3: gadget: Prevent losing events in event cache
    - usb: musb: tusb6010_omap: Do not reset the other direction's packet size
    - usb: musb: Fix trying to suspend while active for OTG configurations
    - USB: iowarrior: fix info ioctl on big-endian hosts
    - usb: serial: option: add Telit ME910 support
    - USB: serial: qcserial: add more Lenovo EM74xx device IDs
    - USB: serial: mct_u232: fix big-endian baud-rate handling
    - USB: serial: io_ti: fix div-by-zero in set_termios
    - USB: hub: fix SS hub-descriptor handling
    - USB: hub: fix non-SS hub-descriptor handling
    - ipx: call ipxitf_put() in ioctl error path
    - iio: proximity: as3935: fix as3935_write
    - iio: hid-sensor: Store restore poll and hysteresis on S3
    - cec: Fix runtime BUG when (CONFIG_RC_CORE && !CEC_CAP_RC)
    - s5p-mfc: Fix race between interrupt routine and device functions
    - gspca: konica: add missing endpoint sanity check
    - s5p-mfc: Fix unbalanced call to clock management
    - dib0700: fix NULL-deref at probe
    - zr364xx: enforce minimum size when reading header
    - dvb-frontends/cxd2841er: define symbol_rate_min/max in T/C fe-ops
    - digitv: limit messages to buffer size
    - dw2102: limit messages to buffer size
    - cx231xx-audio: fix init error path
    - cx231xx-audio: fix NULL-deref at probe
    - cx231xx-cards: fix NULL-deref at probe
    - powerpc/mm: Ensure IRQs are off in switch_mm()
    - powerpc/eeh: Avoid use after free in eeh_handle_special_event()
    - powerpc/book3s/mce: Move add_taint() later in virtual mode
    - powerpc/pseries: Fix of_node_put() underflow during DLPAR remove
    - powerpc/sysfs: Fix reference leak of cpu device_nodes present at boot
    - powerpc/iommu: Do not call PageTransHuge() on tail pages
    - powerpc/64e: Fix hang when debugging programs with relocated kernel
    - powerpc/mm: Fix crash in page table dump with huge pages
    - arm64: KVM: Do not use stack-protector to compile EL2 code
    - arm: KVM: Do not use stack-protector to compile HYP code
    - KVM: arm/arm64: vgic-v2: Do not use Active+Pending state for a HW interrupt
    - KVM: arm/arm64: vgic-v3: Do not use Active+Pending state for a HW interrupt
    - KVM: arm: plug potential guest hardware debug leakage
    - ARM: 8662/1: module: split core and init PLT sections
    - ARM: 8667/3: Fix memory attribute inconsistencies when using fixmap
    - ARM: 8670/1: V7M: Do not corrupt vector table around v7m_invalidate_l1 call
    - ARM: dts: at91: sama5d3_xplained: fix ADC vref
    - ARM: dts: at91: sama5d3_xplained: not all ADC channels are available
    - ARM: dts: imx6sx-sdb: Remove OPP override
    - arm64: dts: hi6220: Reset the mmc hosts
    - arm64: xchg: hazard against entire exchange variable
    - arm64: ensure extension of smp_store_release value
    - arm64: armv8_deprecated: ensure extension of addr
    - arm64: uaccess: ensure extension of access_ok() addr
    - arm64: traps: fix userspace cache maintenance emulation on a tagged pointer
    - arm64: hw_breakpoint: fix watchpoint matching for tagged pointers
    - arm64: entry: improve data abort handling of tagged pointers
    - arm64: documentation: document tagged pointer stack constraints
    - staging: vc04_services: Fix bulk cache maintenance
    - staging: rtl8192e: rtl92e_fill_tx_desc fix write to mapped out memory.
    - staging: rtl8192e: fix 2 byte alignment of register BSSIDR.
    - staging: rtl8192e: rtl92e_get_eeprom_size Fix read size of EPROM_CMD.
    - staging: rtl8192e: GetTs Fix invalid TID 7 warning.
    - iommu/vt-d: Flush the IOTLB to get rid of the initial kdump mappings
    - cpuidle: check dev before usage in cpuidle_use_deepest_state()
    - metag/uaccess: Fix access_ok()
    - metag/uaccess: Check access_ok in strncpy_from_user
    - stackprotector: Increase the per-task stack canary's random range from 32
      bits to 64 bits on 64-bit platforms
    - uwb: fix device quirk on big-endian hosts
    - genirq: Fix chained interrupt data ordering
    - nvme: unmap CMB and remove sysfs file in reset path
    - MIPS: Loongson-3: Select MIPS_L1_CACHE_SHIFT_6
    - kvm: arm/arm64: Fix race in resetting stage2 PGD
    - kvm: arm/arm64: Fix use after free of stage2 page table
    - kvm: arm/arm64: Force reading uncached stage2 PGD
    - osf_wait4(): fix infoleak
    - drbd: fix request leak introduced by locking/atomic, kref: Kill kref_sub()
    - um: Fix to call read_initrd after init_bootmem
    - firmware: ti_sci: fix strncat length check
    - tracing/kprobes: Enforce kprobes teardown after testing
    - thermal: mt8173: minor mtk_thermal.c cleanups
    - PCI/ACPI: Tidy up MCFG quirk whitespace
    - PCI/ACPI: Add ThunderX pass2.x 2nd node MCFG quirk
    - PCI: hv: Allocate interrupt descriptors with GFP_ATOMIC
    - PCI: hv: Specify CPU_AFFINITY_ALL for MSI affinity when >= 32 CPUs
    - PCI: Fix pci_mmap_fits() for HAVE_PCI_RESOURCE_TO_USER platforms
    - PCI: Fix another sanity check bug in /proc/pci mmap
    - PCI: Only allow WC mmap on prefetchable resources
    - PCI: Freeze PME scan before suspending devices
    - mtd: nand: orion: fix clk handling
    - mtd: nand: omap2: Fix partition creation via cmdline mtdparts
    - mtd: nand: add ooblayout for old hamming layout
    - drm/edid: Add 10 bpc quirk for LGD 764 panel in HP zBook 17 G2
    - NFSv4: Fix a hang in OPEN related to server reboot
    - NFS: Fix use after free in write error path
    - NFS: Use GFP_NOIO for two allocations in writeback
    - pNFS/flexfiles: Check the result of nfs4_pnfs_ds_connect
    - NFSv4: Fix an rcu lock leak
    - nfsd: fix undefined behavior in nfsd4_layout_verify
    - nfsd: encoders mustn't use unitialized values in error cases
    - nfsd: Fix up the "supattr_exclcreat" attributes
    - drivers: char: mem: Check for address space wraparound with mmap()
    - drm/i915/gvt: Disable access to stolen memory as a guest
    - IB/hfi1: Protect the global dev_cntr_names and port_cntr_names
    - Linux 4.11.3

  * iptables/ip6tables regressions in deleting rules (LP: #1691752)
    - SAUCE: iptables/ip6tables: Ensure entries are fully copied to userspace

  * Enable Matrox driver for Ubuntu 16.04.3 (LP: #1693337)
    - [Config] Enable CONFIG_DRM_MGAG200 as module

  * Miscellaneous Ubuntu changes
    - Update configs for PPC xive options
    - [Debian] Run 'silentoldconfig' when not editing a configuration

linux (4.11.0-4.9) artful; urgency=low

  [ Seth Forshee ]

  * Release Tracking Bug
    - LP: #1693229

  * arm64: mbigen updates (LP: #1692783)
    - Revert "UBUNTU: SAUCE: irqchip: mbigen: Add ACPI support"
    - irqchip/mbigen: Add ACPI support
    - irqchip/mbigen: Fix return value check in mbigen_device_probe()
    - irqchip/mbigen: Fix memory mapping code
    - irqchip/mbigen: Fix potential NULL dereferencing
    - irqchip/mbigen: Fix the clear register offset calculation

  * Ubuntu16.04.03: POWER9 XIVE: msgsnd/doorbell IPI support (backport)
    (LP: #1691973)
    - powerpc/64s: Add msgp facility unavailable log string
    - powerpc/64s: Add SCV FSCR bit for ISA v3.0
    - powerpc/xive: Native exploitation of the XIVE interrupt controller
    - powerpc: Change the doorbell IPI calling convention
    - powerpc: Introduce msgsnd/doorbell barrier primitives
    - powerpc/64s: Avoid a branch for ppc_msgsnd
    - powerpc/powernv: POWER9 support for msgsnd/doorbell IPI
    - powerpc/powernv: Add XIVE related definitions to opal-api.h
    - powerpc: Add more PPC bit conversion macros
    - powerpc: Add optional smp_ops->prepare_cpu SMP callback
    - powerpc/smp: Remove migrate_irq() custom implementation
    - powerpc/powernv: Fix oops on P9 DD1 in cause_ipi()

  * Hardware transaction memory corruption (LP: #1691477)
    - powerpc/tm: Fix FP and VMX register corruption

  * Offlined CPUs of a core fail to come up online on POWER9 DD1 (Ubuntu 17.04)
    (LP: #1685792)
    - powerpc/powernv: Move CPU-Offline idle state invocation from smp.c to idle.c
    - powerpc/powernv/smp: Add busy-wait loop as fall back for CPU-Hotplug
    - powerpc/powernv/idle: Don't override default/deepest directly in kernel

  * Merlin SGMII fail on Ubuntu Xenial HWE kernel (LP: #1686305)
    - drivers: net: phy: xgene: Fix mdio write

  * powerpc/powernv: Introduce address translation services for Nvlink2
    (LP: #1690412)
    - powerpc/powernv: Require MMU_NOTIFIER to fix NPU build
    - drivers/of/base.c: Add of_property_read_u64_index
    - powerpc/powernv: Add sanity checks to pnv_pci_get_{gpu|npu}_dev
    - powerpc/powernv: Introduce address translation services for Nvlink2

  * arm64/ACPI support for SBSA watchdog (LP: #1688114)
    - clocksource: arm_arch_timer: clean up printk usage
    - clocksource: arm_arch_timer: rename type macros
    - clocksource: arm_arch_timer: rename the PPI enum
    - clocksource: arm_arch_timer: move enums and defines to header file
    - clocksource: arm_arch_timer: add a new enum for spi type
    - clocksource: arm_arch_timer: rework PPI selection
    - clocksource: arm_arch_timer: split dt-only rate handling
    - clocksource: arm_arch_timer: refactor arch_timer_needs_probing
    - clocksource: arm_arch_timer: move arch_timer_needs_of_probing into DT init
      call
    - clocksource: arm_arch_timer: add structs to describe MMIO timer
    - clocksource: arm_arch_timer: split MMIO timer probing.
    - [Config] CONFIG_ACPI_GTDT=y
    - acpi/arm64: Add GTDT table parse driver
    - clocksource: arm_arch_timer: simplify ACPI support code.
    - acpi/arm64: Add memory-mapped timer support in GTDT driver
    - clocksource: arm_arch_timer: add GTDT support for memory-mapped timer
    - acpi/arm64: Add SBSA Generic Watchdog support in GTDT driver

  * arm64: Add CNTFRQ_EL0 handler (LP: #1688164)
    - arm64: Add CNTFRQ_EL0 trap handler

  * Support IPMI system interface on Cavium ThunderX (LP: #1688132)
    - i2c: thunderx: Enable HWMON class probing

  * Support low-pin-count devices on Hisilicon SoCs (LP: #1677319)
    - [Config] CONFIG_LIBIO=y on arm64 only
    - SAUCE: LIBIO: Introduce a generic PIO mapping method
    - SAUCE: OF: Add missing I/O range exception for indirect-IO devices
    - [Config] CONFIG_HISILICON_LPC=y
    - SAUCE: LPC: Support the device-tree LPC host on Hip06/Hip07
    - SAUCE: LIBIO: Support the dynamically logical PIO registration of ACPI host
      I/O
    - SAUCE: LPC: Add the ACPI LPC support
    - SAUCE: PCI: Apply the new generic I/O management on PCI IO hosts
    - SAUCE: PCI: Restore codepath for !CONFIG_LIBIO

  * POWER9: CAPI2 enablement (LP: #1686519)
    - cxl: Read vsec perst load image
    - cxl: Remove unused values in bare-metal environment.
    - cxl: Keep track of mm struct associated with a context
    - cxl: Update implementation service layer
    - cxl: Rename some psl8 specific functions
    - cxl: Isolate few psl8 specific calls
    - cxl: Add psl9 specific code

  * POWER9: Additional patches for TTY and CPU_IDLE (LP: #1674325)
    - SAUCE: tty: Fix ldisc crash on reopened tty

  * Artful update to 4.11.2 stable release (LP: #1692332)
    - xen: adjust early dom0 p2m handling to xen hypervisor behavior
    - target: Fix compare_and_write_callback handling for non GOOD status
    - target/fileio: Fix zero-length READ and WRITE handling
    - iscsi-target: Set session_fall_back_to_erl0 when forcing reinstatement
    - usb: xhci: bInterval quirk for TI TUSB73x0
    - usb: host: xhci: print correct command ring address
    - USB: serial: ftdi_sio: add device ID for Microsemi/Arrow SF2PLUS Dev Kit
    - USB: Proper handling of Race Condition when two USB class drivers try to
      call init_usb_class simultaneously
    - USB: Revert "cdc-wdm: fix "out-of-sync" due to missing notifications"
    - staging: vt6656: use off stack for in buffer USB transfers.
    - staging: vt6656: use off stack for out buffer USB transfers.
    - staging: gdm724x: gdm_mux: fix use-after-free on module unload
    - staging: wilc1000: Fix problem with wrong vif index
    - staging: sir: fill in missing fields and fix probe
    - staging: comedi: jr3_pci: fix possible null pointer dereference
    - staging: comedi: jr3_pci: cope with jiffies wraparound
    - usb: misc: add missing continue in switch
    - usb: gadget: legacy gadgets are optional
    - usb: Make sure usb/phy/of gets built-in
    - usb: hub: Fix error loop seen after hub communication errors
    - usb: hub: Do not attempt to autosuspend disconnected devices
    - x86/boot: Fix BSS corruption/overwrite bug in early x86 kernel startup
    - selftests/x86/ldt_gdt_32: Work around a glibc sigaction() bug
    - x86, pmem: Fix cache flushing for iovec write < 8 bytes
    - um: Fix PTRACE_POKEUSER on x86_64
    - perf/x86: Fix Broadwell-EP DRAM RAPL events
    - KVM: x86: fix user triggerable warning in kvm_apic_accept_events()
    - Revert "KVM: Support vCPU-based gfn->hva cache"
    - KVM: arm/arm64: fix races in kvm_psci_vcpu_on
    - arm64: KVM: Fix decoding of Rt/Rt2 when trapping AArch32 CP accesses
    - block: fix blk_integrity_register to use template's interval_exp if not 0
    - crypto: s5p-sss - Close possible race for completed requests
    - crypto: algif_aead - Require setkey before accept(2)
    - crypto: ccp - Use only the relevant interrupt bits
    - crypto: ccp - Disable interrupts early on unload
    - crypto: ccp - Change ISR handler method for a v3 CCP
    - crypto: ccp - Change ISR handler method for a v5 CCP
    - dm crypt: rewrite (wipe) key in crypto layer using random data
    - dm era: save spacemap metadata root after the pre-commit
    - dm rq: check blk_mq_register_dev() return value in
      dm_mq_init_request_queue()
    - dm thin: fix a memory leak when passing discard bio down
    - vfio/type1: Remove locked page accounting workqueue
    - iov_iter: don't revert iov buffer if csum error
    - IB/core: Fix sysfs registration error flow
    - IB/core: Fix kernel crash during fail to initialize device
    - IB/core: For multicast functions, verify that LIDs are multicast LIDs
    - IB/IPoIB: ibX: failed to create mcg debug file
    - IB/mlx4: Fix ib device initialization error flow
    - IB/mlx4: Reduce SRIOV multicast cleanup warning message to debug level
    - IB/hfi1: Prevent kernel QP post send hard lockups
    - perf auxtrace: Fix no_size logic in addr_filter__resolve_kernel_syms()
    - perf annotate s390: Fix perf annotate error -95 (4.10 regression)
    - perf annotate s390: Implement jump types for perf annotate
    - jbd2: fix dbench4 performance regression for 'nobarrier' mounts
    - ext4: evict inline data when writing to memory map
    - orangefs: fix bounds check for listxattr
    - orangefs: clean up oversize xattr validation
    - orangefs: do not set getattr_time on orangefs_lookup
    - orangefs: do not check possibly stale size on truncate
    - fs/xattr.c: zero out memory copied to userspace in getxattr
    - ceph: fix memory leak in __ceph_setxattr()
    - fs: fix data invalidation in the cleancache during direct IO
    - fs/block_dev: always invalidate cleancache in invalidate_bdev()
    - mm: vmscan: fix IO/refault regression in cache workingset transition
    - mm: prevent potential recursive reclaim due to clearing PF_MEMALLOC
    - Fix match_prepath()
    - Do not return number of bytes written for ioctl CIFS_IOC_COPYCHUNK_FILE
    - Set unicode flag on cifs echo request to avoid Mac error
    - SMB3: Work around mount failure when using SMB3 dialect to Macs
    - CIFS: fix mapping of SFM_SPACE and SFM_PERIOD
    - cifs: fix leak in FSCTL_ENUM_SNAPS response handling
    - cifs: fix CIFS_ENUMERATE_SNAPSHOTS oops
    - CIFS: fix oplock break deadlocks
    - cifs: fix CIFS_IOC_GET_MNT_INFO oops
    - CIFS: add misssing SFM mapping for doublequote
    - ovl: do not set overlay.opaque on non-dir create
    - padata: free correct variable
    - md/raid1: avoid reusing a resync bio after error handling.
    - device-dax: fix cdev leak
    - device-dax: fix sysfs attribute deadlock
    - dax: prevent invalidation of mapped DAX entries
    - mm: fix data corruption due to stale mmap reads
    - ext4: return to starting transaction in ext4_dax_huge_fault()
    - dax: fix PMD data corruption when fault races with write
    - f2fs: fix wrong max cost initialization
    - Revert "f2fs: put allocate_segment after refresh_sit_entry"
    - f2fs: fix fs corruption due to zero inode page
    - f2fs: fix multiple f2fs_add_link() having same name for inline dentry
    - f2fs: check entire encrypted bigname when finding a dentry
    - f2fs: Make flush bios explicitely sync
    - initramfs: Always do fput() and load modules after rootfs populate
    - initramfs: avoid "label at end of compound statement" error
    - fscrypt: fix context consistency check when key(s) unavailable
    - fscrypt: avoid collisions when presenting long encrypted filenames
    - serial: samsung: Use right device for DMA-mapping calls
    - serial: samsung: Add missing checks for dma_map_single failure
    - serial: omap: fix runtime-pm handling on unbind
    - serial: omap: suspend device on probe errors
    - tty: pty: Fix ldisc flush after userspace become aware of the data already
    - tty: pl011: use "qdf2400_e44" as the earlycon name for QDF2400 E44
    - Bluetooth: Fix user channel for 32bit userspace on 64bit kernel
    - Bluetooth: hci_bcm: add missing tty-device sanity check
    - Bluetooth: hci_intel: add missing tty-device sanity check
    - cgroup: fix spurious warnings on cgroup_is_dead() from cgroup_sk_alloc()
    - libata: reject passthrough WRITE SAME requests
    - ipmi: Fix kernel panic at ipmi_ssif_thread()
    - libnvdimm, region: fix flush hint detection crash
    - libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify
    - libnvdimm: fix nvdimm_bus_lock() vs device_lock() ordering
    - libnvdimm, pfn: fix 'npfns' vs section alignment
    - pstore: Fix flags to enable dumps on powerpc
    - pstore: Use dynamic spinlock initializer
    - pstore: Shut down worker when unregistering
    - Linux 4.11.2

  * please enable CONFIG_ARM64_LSE_ATOMICS (LP: #1691614)
    - [Config] CONFIG_ARM64_LSE_ATOMICS=y

  * iptables regression causing snapd ADT failure (LP: #1691752)
    - SAUCE: Revert "iptables: use match, target and data copy_to_user helpers"

  * [Regression] NUMA_BALANCING disabled on arm64 (LP: #1690914)
    - [Config] CONFIG_NUMA_BALANCING{,_DEFAULT_ENABLED}=y on arm64

  * exec'ing a setuid binary from a threaded program sometimes fails to setuid
    (LP: #1672819)
    - SAUCE: exec: ensure file system accounting in check_unsafe_exec is correct

  * CVE-2013-1060 (LP: #1206200)
    - [Debian] (no-squash) supply perf with appropriate prefix to ensure use of
      local config

  * Miscellaneous Ubuntu changes
    - [Debian] Work out upstream tag for use with gen-auto-reconstruct
    - [Debian] Add build-dep on libnuma-dev to enable 'perf bench numa'

  * Miscellaneous upstream changes
    - Revert "UBUNTU: [Debian] supply perf with appropriate prefix to ensure use
      of local config"

linux (4.11.0-3.8) artful; urgency=low

  [ Seth Forshee ]

  * Release Tracking Bug
    - LP: #1690999

  * apparmor_parser hangs indefinitely when called by multiple threads
    (LP: #1645037)
    - SAUCE: apparmor: fix lock ordering for mkdir

  * apparmor leaking securityfs pin count (LP: #1660846)
    - SAUCE: apparmor: fix leak on securityfs pin count

  * apparmor reference count leak when securityfs_setup_d_inode\ () fails
    (LP: #1660845)
    - SAUCE: apparmor: fix reference count leak when securityfs_setup_d_inode()
      fails

  * apparmor not checking error if security_pin_fs() fails (LP: #1660842)
    - SAUCE: apparmor: fix not handling error case when securityfs_pin_fs() fails

  * libvirt profile is blocking global setrlimit despite having no rlimit rule
    (LP: #1679704)
    - SAUCE: apparmor: fix complain mode failure for rlimit mediation
    - apparmor: update auditing of rlimit check to provide capability information

  * apparmor: does not provide a way to detect policy updataes (LP: #1678032)
    - SAUCE: apparmor: add policy revision file interface

  * apparmor does not make support of query data visible (LP: #1678023)
    - SAUCE: apparmor: add label data availability to the feature set

  * apparmor query interface does not make supported query info available
    (LP: #1678030)
    - SAUCE: apparmor: add information about the query inteface to the feature set

  * change_profile incorrect when using namespaces with a compound stack
    (LP: #1677959)
    - SAUCE: apparmor: fix label parse for stacked labels

  * Regression in 4.4.0-65-generic causes very frequent system crashes
    (LP: #1669611)
    - apparmor: sync of apparmor 3.6+ (17.04)

  * Artful update to 4.11.1 stable release (LP: #1690814)
    - dm ioctl: prevent stack leak in dm ioctl call
    - drm/sti: fix GDP size to support up to UHD resolution
    - power: supply: lp8788: prevent out of bounds array access
    - brcmfmac: Ensure pointer correctly set if skb data location changes
    - brcmfmac: Make skb header writable before use
    - sparc64: fix fault handling in NGbzero.S and GENbzero.S
    - refcount: change EXPORT_SYMBOL markings
    - net: macb: fix phy interrupt parsing
    - tcp: fix access to sk->sk_state in tcp_poll()
    - geneve: fix incorrect setting of UDP checksum flag
    - bpf: enhance verifier to understand stack pointer arithmetic
    - bpf, arm64: fix jit branch offset related to ldimm64
    - tcp: fix wraparound issue in tcp_lp
    - net: ipv6: Do not duplicate DAD on link up
    - net: usb: qmi_wwan: add Telit ME910 support
    - tcp: do not inherit fastopen_req from parent
    - ipv4, ipv6: ensure raw socket message is big enough to hold an IP header
    - rtnetlink: NUL-terminate IFLA_PHYS_PORT_NAME string
    - ipv6: initialize route null entry in addrconf_init()
    - ipv6: reorder ip6_route_dev_notifier after ipv6_dev_notf
    - tcp: randomize timestamps on syncookies
    - bnxt_en: allocate enough space for ->ntp_fltr_bmap
    - bpf: don't let ldimm64 leak map addresses on unprivileged
    - net: mdio-mux: bcm-iproc: call mdiobus_free() in error path
    - f2fs: sanity check segment count
    - xen/arm,arm64: fix xen_dma_ops after 815dd18 "Consolidate get_dma_ops..."
    - xen: Revert commits da72ff5bfcb0 and 72a9b186292d
    - block: get rid of blk_integrity_revalidate()
    - Linux 4.11.1

  * Module signing exclusion for staging drivers does not work properly
    (LP: #1690908)
    - SAUCE: Fix module signing exclusion in package builds

  * perf: qcom: Add L3 cache PMU driver (LP: #1689856)
    - [Config] CONFIG_QCOM_L3_PMU=y
    - perf: qcom: Add L3 cache PMU driver

  * No PMU support for ACPI-based arm64 systems (LP: #1689661)
    - drivers/perf: arm_pmu: rework per-cpu allocation
    - drivers/perf: arm_pmu: manage interrupts per-cpu
    - drivers/perf: arm_pmu: split irq request from enable
    - drivers/perf: arm_pmu: remove pointless PMU disabling
    - drivers/perf: arm_pmu: define armpmu_init_fn
    - drivers/perf: arm_pmu: fold init into alloc
    - drivers/perf: arm_pmu: factor out pmu registration
    - drivers/perf: arm_pmu: simplify cpu_pmu_request_irqs()
    - drivers/perf: arm_pmu: handle no platform_device
    - drivers/perf: arm_pmu: rename irq request/free functions
    - drivers/perf: arm_pmu: split cpu-local irq request/free
    - drivers/perf: arm_pmu: move irq request/free into probe
    - drivers/perf: arm_pmu: split out platform device probe logic
    - arm64: add function to get a cpu's MADT GICC table
    - [Config] CONFIG_ARM_PMU_ACPI=y
    - drivers/perf: arm_pmu: add ACPI framework
    - arm64: pmuv3: handle !PMUv3 when probing
    - arm64: pmuv3: use arm_pmu ACPI framework

  * Fix NVLINK2 TCE route (LP: #1690155)
    - powerpc/powernv: Fix TCE kill on NVLink2

  * CVE-2017-0605
    - tracing: Use strlcpy() instead of strcpy() in __trace_find_cmdline()

  * Miscellaneous Ubuntu changes
    - [Config] Restore powerpc arch to annotations file
    - [Config] Disable runtime testing modules
    - [Config] Disable drivers not needed on s390x
    - [Config] Update annotations for 4.11
    - [Config] updateconfigs after apparmor updates

  * Miscellaneous upstream changes
    - apparmor: use SHASH_DESC_ON_STACK
    - apparmor: fix invalid reference to index variable of iterator line 836
    - apparmor: fix parameters so that the permission test is bypassed at boot
    - apparmor: Make path_max parameter readonly
    - apparmorfs: Combine two function calls into one in aa_fs_seq_raw_abi_show()
    - apparmorfs: Use seq_putc() in two functions
    - apparmor: provide information about path buffer size at boot
    - apparmor: add/use fns to print hash string hex value

linux (4.11.0-2.7) artful; urgency=low

  * kernel-wedge fails in artful due to leftover squashfs-modules d-i files
    (LP: #1688259)
    - Remove squashfs-modules files from d-i
    - [Config] as squashfs-modules is builtin kernel-image must Provides: it

  * [Zesty] d-i: replace msm_emac with qcom_emac (LP: #1677297)
    - Revert "UBUNTU: d-i: initrd needs msm_emac on amberwing platform."
    - d-i: initrd needs qcom_emac on amberwing platform.

  * update for V3 kernel bits and improved multiple fan slice support
    (LP: #1470091)
    - SAUCE: fan: tunnel multiple mapping mode (v3)

  * Miscellaneous Ubuntu changes
    - SAUCE: (noup) Update spl to 0.6.5.9-1ubuntu1, zfs to 0.6.5.9-5ubuntu5
    - Enable zfs
    - SAUCE: fan: add VXLAN implementation
    - SAUCE: (efi-lockdown) efi: Add EFI_SECURE_BOOT bit
    - SAUCE: (efi-lockdown) Add the ability to lock down access to the running
      kernel image
    - SAUCE: (efi-lockdown) efi: Lock down the kernel if booted in secure boot
      mode
    - SAUCE: (efi-lockdown) Enforce module signatures if the kernel is locked down
    - SAUCE: (efi-lockdown) Restrict /dev/mem and /dev/kmem when the kernel is
      locked down
    - SAUCE: (efi-lockdown) Add a sysrq option to exit secure boot mode
    - SAUCE: (efi-lockdown) kexec: Disable at runtime if the kernel is locked down
    - SAUCE: (efi-lockdown) Copy secure_boot flag in boot params across kexec
      reboot
    - SAUCE: (efi-lockdown) kexec_file: Disable at runtime if securelevel has been
      set
    - SAUCE: (efi-lockdown) hibernate: Disable when the kernel is locked down
    - SAUCE: (efi-lockdown) uswsusp: Disable when the kernel is locked down
    - SAUCE: (efi-lockdown) PCI: Lock down BAR access when the kernel is locked
      down
    - SAUCE: (efi-lockdown) x86: Lock down IO port access when the kernel is
      locked down
    - SAUCE: (efi-lockdown) x86: Restrict MSR access when the kernel is locked
      down
    - SAUCE: (efi-lockdown) asus-wmi: Restrict debugfs interface when the kernel
      is locked down
    - SAUCE: (efi-lockdown) ACPI: Limit access to custom_method when the kernel is
      locked down
    - SAUCE: (efi-lockdown) acpi: Ignore acpi_rsdp kernel param when the kernel
      has been locked down
    - SAUCE: (efi-lockdown) acpi: Disable ACPI table override if the kernel is
      locked down
    - SAUCE: (efi-lockdown) acpi: Disable APEI error injection if the kernel is
      locked down
    - SAUCE: (efi-lockdown) Enable cold boot attack mitigation
    - SAUCE: (efi-lockdown) bpf: Restrict kernel image access functions when the
      kernel is locked down
    - SAUCE: (efi-lockdown) scsi: Lock down the eata driver
    - SAUCE: (efi-lockdown) Prohibit PCMCIA CIS storage when the kernel is locked
      down
    - SAUCE: (efi-lockdown) Lock down TIOCSSERIAL
    - SAUCE: (efi-lockdown) Add EFI signature data types
    - SAUCE: (efi-lockdown) Add an EFI signature blob parser and key loader.
    - SAUCE: (efi-lockdown) KEYS: Add a system blacklist keyring
    - SAUCE: (efi-lockdown) MODSIGN: Import certificates from UEFI Secure Boot
    - SAUCE: (efi-lockdown) MODSIGN: Support not importing certs from db
    - SAUCE: (efi-lockdown) MODSIGN: Don't try secure boot if EFI runtime is
      disabled
    - SAUCE: (efi-lockdown) efi: Sanitize boot_params in efi stub
    - SAUCE: (efi-lockdown) efi: Add secure_boot state and status bit for
      MokSBState
    - SAUCE: (efi-lockdown) efi: Add sysctls for secureboot and MokSBState
    - [Config] Set values for UEFI secure boot lockdown options
    - Update dropped.txt

  [ Upstream Kernel Changes ]

  * rebase to v4.11

linux (4.11.0-1.6) artful; urgency=low

  * Miscellaneous Ubuntu changes
    - [Debian] Use default compression for all packages
    - SAUCE: (namespace) block_dev: Support checking inode permissions in
      lookup_bdev()
    - SAUCE: (namespace) block_dev: Check permissions towards block device inode
      when mounting
    - SAUCE: (namespace) mtd: Check permissions towards mtd block device inode
      when mounting
    - SAUCE: (namespace) fs: Allow superblock owner to change ownership of inodes
    - SAUCE: (namespace) fs: Don't remove suid for CAP_FSETID for userns root
    - SAUCE: (namespace) fs: Allow superblock owner to access do_remount_sb()
    - SAUCE: (namespace) capabilities: Allow privileged user in s_user_ns to set
      security.* xattrs
    - SAUCE: (namespace) fs: Allow CAP_SYS_ADMIN in s_user_ns to freeze and thaw
      filesystems
    - SAUCE: (namespace) fuse: Add support for pid namespaces
    - SAUCE: (namespace) fuse: Support fuse filesystems outside of init_user_ns
    - SAUCE: (namespace) fuse: Restrict allow_other to the superblock's namespace
      or a descendant
    - SAUCE: (namespace) fuse: Allow user namespace mounts
    - SAUCE: (namespace) ext4: Add support for unprivileged mounts from user
      namespaces
    - SAUCE: (namespace) evm: Don't update hmacs in user ns mounts
    - SAUCE: (namespace) ext4: Add module parameter to enable user namespace
      mounts
    - SAUCE: (namespace) block_dev: Forbid unprivileged mounting when device is
      opened for writing

linux (4.11.0-0.5) artful; urgency=low

  * [Hyper-V][SAUCE] pci-hyperv: Use only 16 bit integer for PCI domain
    (LP: #1684971)
    - SAUCE: pci-hyperv: Use only 16 bit integer for PCI domain

  * [Hyper-V] Ubuntu 14.04.2 LTS Generation 2 SCSI Errors on VSS Based Backups
    (LP: #1470250)
    - SAUCE: Tools: hv: vss: Thaw the filesystem and continue after freeze fails

  * Enable virtual scsi server driver for Power (LP: #1615665)
    - SAUCE: Return TCMU-generated sense data to fabric module

  * include/linux/security.h header syntax error with !CONFIG_SECURITYFS
    (LP: #1630990)
    - SAUCE: (no-up) include/linux/security.h -- fix syntax error with
      CONFIG_SECURITYFS=n

  * Miscellaneous Ubuntu changes
    - SAUCE: Import aufs driver
    - [Config] Enable aufs
    - [Debian] Add script to update virtualbox
    - ubuntu: vbox -- Update to 5.1.20-dfsg-2
    - Enable vbox
    - SAUCE: aufs -- Include linux/mm.h in fs/aufs/file.h

  [ Upstream Kernel Changes ]

  * rebase to v4.11-rc8

linux (4.11.0-0.4) zesty; urgency=low

  * POWER9: Improve performance on memory management (LP: #1681429)
    - SAUCE: powerpc/mm/radix: Don't do page walk cache flush when doing full mm
      flush
    - SAUCE: powerpc/mm/radix: Remove unnecessary ptesync

  * Miscellaneous Ubuntu changes
    - find-missing-sauce.sh

  [ Upstream Kernel Changes ]

  * rebase to v4.11-rc7

linux (4.11.0-0.3) zesty; urgency=low

  * Disable CONFIG_HVC_UDBG on ppc64el (LP: #1680888)
    - [Config] Disable CONFIG_HVC_UDBG on ppc64el

  * smartpqi driver needed in initram disk and installer (LP: #1680156)
    - [Config] Add smartpqi to d-i

  * Disable CONFIG_SECURITY_SELINUX_DISABLE (LP: #1680315)
    - [Config] CONFIG_SECURITY_SELINUX_DISABLE=n

  * Miscellaneous Ubuntu changes
    - [Config] flash-kernel should be a Breaks
    - [Config] drop the info directory
    - [Config] drop NOTES as obsolete
    - [Config] drop changelog.historical as obsolete
    - rebase to v4.11-rc6

  [ Upstream Kernel Changes ]

  * rebase to v4.11-rc6

linux (4.11.0-0.2) zesty; urgency=low

  [ Upstream Kernel Changes ]

  * rebase to v4.11-rc5

linux (4.11.0-0.1) zesty; urgency=low

  [ Upstream Kernel Changes ]

  * rebase to v4.11-rc4
    - LP: #1591053

linux (4.11.0-0.0) zesty; urgency=low

  * dummy entry

Date: 2017-08-02 20:02:24.295690+00:00
Changed-By: Thadeu Lima de Souza Cascardo <thadeu.cascardo at canonical.com>
Signed-By: Adam Conrad <adconrad at 0c3.net>
https://launchpad.net/ubuntu/+source/linux-hwe-edge/4.11.0-13.19~16.04.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Xenial-changes mailing list