[ubuntu/xenial-security] linux-azure-edge 4.14.0-1003.3 (Accepted)

Steve Langasek steve.langasek at canonical.com
Tue Jan 9 23:29:31 UTC 2018


linux-azure-edge (4.14.0-1003.3) xenial; urgency=low

  * linux-azure-edge: 4.14.0-1003.3 -proposed tracker (LP: #1741962)

  * ubuntu/xr-usb-serial didn't get built in zesty and artful (LP: #1733281)
    - ubuntu: Only build ubuntu/xr-usb-serial when USB is enabled

  * CVE-2017-5754
    - [Config] azure-edge: CONFIG_PAGE_TABLE_ISOLATION=y

  [ Ubuntu: 4.14.0-16.19 ]

  * linux: 4.14.0-16.19 -proposed tracker (LP: #1741920)
  * Miscellaneous upstream changes
    - x86/mm: Set MODULES_END to 0xffffffffff000000
    - x86/mm: Map cpu_entry_area at the same place on 4/5 level
    - x86/kaslr: Fix the vaddr_end mess
    - x86/events/intel/ds: Use the proper cache flush method for mapping ds
      buffers
    - x86/tlb: Drop the _GPL from the cpu_tlbstate export
    - x86/alternatives: Add missing '\n' at end of ALTERNATIVE inline asm
    - x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN

  [ Ubuntu: 4.14.0-15.18 ]

  * linux: 4.14.0-15.18 -proposed tracker (LP: #1741501)
  * [0cf3:e010] QCA6174A XR failed to pair with bt 4.0 device  (LP: #1741166)
    - SAUCE: Bluetooth: btusb: Add support for 0cf3:e010
  * [Zesty/Artful] On ARM64 PCIE physical function passthrough guest fails to
    boot (LP: #1732804)
    - vfio/pci: Virtualize Maximum Read Request Size
  * elantech touchpad of Lenovo L480/580 failed to detect hw_version
    (LP: #1733605)
    - SAUCE: Input: elantech - add new icbody type 15
  * External HDMI monitor failed to show screen on Lenovo X1 series
    (LP: #1738523)
    - SAUCE: drm/i915: Disable writing of TMDS_OE on Lenovo ThinkPad X1 series
  * Bionic update to v4.14.12 stable release (LP: #1741496)
    - exec: Weaken dumpability for secureexec
    - capabilities: fix buffer overread on very short xattr
    - x86/cpu, x86/pti: Do not enable PTI on AMD processors
    - x86/pti: Make sure the user/kernel PTEs match
    - x86/dumpstack: Fix partial register dumps
    - x86/dumpstack: Print registers for first stack frame
    - x86/pti: Switch to kernel CR3 at early in entry_SYSCALL_compat()
    - x86/process: Define cpu_tss_rw in same section as declaration
    - Revert "xfrm: Fix stack-out-of-bounds read in xfrm_state_find."
    - rtc: m41t80: m41t80_sqw_set_rate should return 0 on success
    - rtc: m41t80: fix m41t80_sqw_round_rate return value
    - rtc: m41t80: avoid i2c read in m41t80_sqw_recalc_rate
    - rtc: m41t80: avoid i2c read in m41t80_sqw_is_prepared
    - rtc: m41t80: remove unneeded checks from m41t80_sqw_set_rate
    - Linux 4.14.12

  [ Ubuntu: 4.14.0-14.17 ]

  * linux: 4.14.0-14.17 -proposed tracker (LP: #1741139)
  * Miscellaneous Ubuntu changes
    - [Debian] autoreconstruct - add resoration of execute permissions
  * hisi_sas: driver robustness fixes (LP: #1739807)
    - scsi: hisi_sas: fix internal abort slot timeout bug
    - scsi: hisi_sas: us start_phy in PHY_FUNC_LINK_RESET
    - scsi: hisi_sas: fix NULL check in SMP abort task path
    - scsi: hisi_sas: complete all tasklets prior to host reset
  * Falkor erratum 1041 needs workaround (LP: #1738497)
    - arm64: Define cputype macros for Falkor CPU
    - arm64: Add software workaround for Falkor erratum 1041
  * [needs-packaging] ukui-settings-daemon (LP: #1738947)
    - [Config] CONFIG_QCOM_FALKOR_ERRATUM_E1041=y
  * the kernel is blackholing IPv6 packets to linkdown nexthops (LP: #1738219)
    - ipv6: Do not consider linkdown nexthops during multipath
  * Ubuntu 17.10: Include patch "crypto: vmx - Use skcipher for ctr fallback"
    (LP: #1732978)
    - crypto: vmx - Use skcipher for ctr fallback
  * ubuntu/xr-usb-serial didn't get built in zesty and artful (LP: #1733281)
    - SAUCE: make sure ubuntu/xr-usb-serial builds for x86
  * Bionic update to v4.14.11 stable release (LP: #1741061)
    - tracing: Remove extra zeroing out of the ring buffer page
    - tracing: Fix possible double free on failure of allocating trace buffer
    - tracing: Fix crash when it fails to alloc ring buffer
    - x86/cpufeatures: Add X86_BUG_CPU_INSECURE
    - x86/mm/pti: Disable global pages if PAGE_TABLE_ISOLATION=y
    - x86/mm/pti: Prepare the x86/entry assembly code for entry/exit CR3 switching
    - x86/mm/pti: Add infrastructure for page table isolation
    - x86/pti: Add the pti= cmdline option and documentation
    - x86/mm/pti: Add mapping helper functions
    - x86/mm/pti: Allow NX poison to be set in p4d/pgd
    - x86/mm/pti: Allocate a separate user PGD
    - x86/mm/pti: Populate user PGD
    - x86/mm/pti: Add functions to clone kernel PMDs
    - x86/mm/pti: Force entry through trampoline when PTI active
    - x86/mm/pti: Share cpu_entry_area with user space page tables
    - x86/entry: Align entry text section to PMD boundary
    - x86/mm/pti: Share entry text PMD
    - x86/mm/pti: Map ESPFIX into user space
    - x86/cpu_entry_area: Add debugstore entries to cpu_entry_area
    - x86/events/intel/ds: Map debug buffers in cpu_entry_area
    - x86/mm/64: Make a full PGD-entry size hole in the memory map
    - x86/pti: Put the LDT in its own PGD if PTI is on
    - x86/pti: Map the vsyscall page if needed
    - x86/mm: Allow flushing for future ASID switches
    - x86/mm: Abstract switching CR3
    - x86/mm: Use/Fix PCID to optimize user/kernel switches
    - x86/mm: Optimize RESTORE_CR3
    - x86/mm: Use INVPCID for __native_flush_tlb_single()
    - x86/mm: Clarify the whole ASID/kernel PCID/user PCID naming
    - x86/dumpstack: Indicate in Oops whether PTI is configured and enabled
    - x86/mm/pti: Add Kconfig
    - x86/mm/dump_pagetables: Add page table directory to the debugfs VFS
      hierarchy
    - x86/mm/dump_pagetables: Check user space page table for WX pages
    - x86/mm/dump_pagetables: Allow dumping current pagetables
    - x86/ldt: Make the LDT mapping RO
    - ring-buffer: Mask out the info bits when returning buffer page length
    - ring-buffer: Do no reuse reader page if still in use
    - iw_cxgb4: Only validate the MSN for successful completions
    - ASoC: codecs: msm8916-wcd: Fix supported formats
    - ASoC: wm_adsp: Fix validation of firmware and coeff lengths
    - ASoC: da7218: fix fix child-node lookup
    - ASoC: fsl_ssi: AC'97 ops need regmap, clock and cleaning up on failure
    - ASoC: twl4030: fix child-node lookup
    - ASoC: tlv320aic31xx: Fix GPIO1 register definition
    - gpio: fix "gpio-line-names" property retrieval
    - IB/hfi: Only read capability registers if the capability exists
    - IB/mlx5: Serialize access to the VMA list
    - IB/uverbs: Fix command checking as part of ib_uverbs_ex_modify_qp()
    - IB/core: Verify that QP is security enabled in create and destroy
    - ALSA: hda: Drop useless WARN_ON()
    - ALSA: hda - Add MIC_NO_PRESENCE fixup for 2 HP machines
    - ALSA: hda - change the location for one mic on a Lenovo machine
    - ALSA: hda - fix headset mic detection issue on a Dell machine
    - ALSA: hda - Fix missing COEF init for ALC225/295/299
    - cpufreq: schedutil: Use idle_calls counter of the remote CPU
    - block: fix blk_rq_append_bio
    - block: don't let passthrough IO go into .make_request_fn()
    - kbuild: add '-fno-stack-check' to kernel build options
    - ipv4: igmp: guard against silly MTU values
    - ipv6: mcast: better catch silly mtu values
    - net: fec: unmap the xmit buffer that are not transferred by DMA
    - net: igmp: Use correct source address on IGMPv3 reports
    - netlink: Add netns check on taps
    - net: qmi_wwan: add Sierra EM7565 1199:9091
    - net: reevalulate autoflowlabel setting after sysctl setting
    - ptr_ring: add barriers
    - RDS: Check cmsg_len before dereferencing CMSG_DATA
    - tcp_bbr: record "full bw reached" decision in new full_bw_reached bit
    - tcp md5sig: Use skb's saddr when replying to an incoming segment
    - tg3: Fix rx hang on MTU change with 5717/5719
    - tcp_bbr: reset full pipe detection on loss recovery undo
    - tcp_bbr: reset long-term bandwidth sampling on loss recovery undo
    - s390/qeth: apply takeover changes when mode is toggled
    - s390/qeth: don't apply takeover changes to RXIP
    - s390/qeth: lock IP table while applying takeover changes
    - s390/qeth: update takeover IPs after configuration change
    - net: ipv4: fix for a race condition in raw_sendmsg
    - net: mvmdio: disable/unprepare clocks in EPROBE_DEFER case
    - sctp: Replace use of sockets_allocated with specified macro.
    - adding missing rcu_read_unlock in ipxip6_rcv
    - ip6_gre: fix device features for ioctl setup
    - ipv4: Fix use-after-free when flushing FIB tables
    - net: bridge: fix early call to br_stp_change_bridge_id and plug newlink
      leaks
    - net: Fix double free and memory corruption in get_net_ns_by_id()
    - net: phy: micrel: ksz9031: reconfigure autoneg after phy autoneg workaround
    - sock: free skb in skb_complete_tx_timestamp on error
    - tcp: invalidate rate samples during SACK reneging
    - net/mlx5: Fix rate limit packet pacing naming and struct
    - net/mlx5e: Fix possible deadlock of VXLAN lock
    - net/mlx5e: Fix features check of IPv6 traffic
    - net/mlx5e: Add refcount to VXLAN structure
    - net/mlx5e: Prevent possible races in VXLAN control flow
    - net/mlx5: Fix error flow in CREATE_QP command
    - openvswitch: Fix pop_vlan action for double tagged frames
    - sfc: pass valid pointers from efx_enqueue_unwind
    - net: dsa: bcm_sf2: Clear IDDQ_GLOBAL_PWR bit for PHY
    - s390/qeth: fix error handling in checksum cmd callback
    - sctp: make sure stream nums can match optlen in
      sctp_setsockopt_reset_streams
    - tipc: fix hanging poll() for stream sockets
    - mlxsw: spectrum: Disable MAC learning for ovs port
    - tcp: fix potential underestimation on rcv_rtt
    - net: phy: marvell: Limit 88m1101 autoneg errata to 88E1145 as well.
    - ipv6: Honor specified parameters in fibmatch lookup
    - tcp: refresh tcp_mstamp from timers callbacks
    - net/mlx5: FPGA, return -EINVAL if size is zero
    - vxlan: restore dev->mtu setting based on lower device
    - net: sched: fix static key imbalance in case of ingress/clsact_init error
    - bnxt_en: Fix sources of spurious netpoll warnings
    - phylink: ensure the PHY interface mode is appropriately set
    - phylink: ensure AN is enabled
    - ipv4: fib: Fix metrics match when deleting a route
    - ipv6: set all.accept_dad to 0 by default
    - Revert "mlx5: move affinity hints assignments to generic code"
    - skbuff: orphan frags before zerocopy clone
    - skbuff: skb_copy_ubufs must release uarg even without user frags
    - skbuff: in skb_copy_ubufs unclone before releasing zerocopy
    - sparc64: repair calling incorrect hweight function from stubs
    - usbip: fix usbip bind writing random string after command in match_busid
    - usbip: prevent leaking socket pointer address in messages
    - usbip: stub: stop printing kernel pointer addresses in messages
    - usbip: vhci: stop printing kernel pointer addresses in messages
    - USB: chipidea: msm: fix ulpi-node lookup
    - USB: serial: ftdi_sio: add id for Airbus DS P8GR
    - USB: serial: qcserial: add Sierra Wireless EM7565
    - USB: serial: option: add support for Telit ME910 PID 0x1101
    - USB: serial: option: adding support for YUGA CLM920-NC5
    - usb: Add device quirk for Logitech HD Pro Webcam C925e
    - usb: add RESET_RESUME for ELSA MicroLink 56K
    - USB: Fix off by one in type-specific length check of BOS SSP capability
    - usb: xhci: Add XHCI_TRUST_TX_LENGTH for Renesas uPD720201
    - timers: Use deferrable base independent of base::nohz_active
    - timers: Invoke timer_start_debug() where it makes sense
    - timers: Reinitialize per cpu bases on hotplug
    - binder: fix proc->files use-after-free
    - phy: tegra: fix device-tree node lookups
    - drivers: base: cacheinfo: fix cache type for non-architected system cache
    - staging: android: ion: Fix dma direction for dma_sync_sg_for_cpu/device
    - nohz: Prevent a timer interrupt storm in tick_nohz_stop_sched_tick()
    - x86/smpboot: Remove stale TLB flush invocations
    - x86/mm: Remove preempt_disable/enable() from __native_flush_tlb()
    - x86-32: Fix kexec with stack canary (CONFIG_CC_STACKPROTECTOR)
    - x86/espfix/64: Fix espfix double-fault handling on 5-level systems
    - x86/ldt: Plug memory leak in error path
    - x86/ldt: Make LDT pgtable free conditional
    - n_tty: fix EXTPROC vs ICANON interaction with TIOCINQ (aka FIONREAD)
    - tty: fix tty_ldisc_receive_buf() documentation
    - Linux 4.14.11
  * Bionic update to v4.14.10 stable release (LP: #1740873)
    - Revert "ipv6: grab rt->rt6i_ref before allocating pcpu rt"
    - objtool: Move synced files to their original relative locations
    - objtool: Move kernel headers/code sync check to a script
    - objtool: Fix cross-build
    - tools/headers: Sync objtool UAPI header
    - objtool: Fix 64-bit build on 32-bit host
    - x86/decoder: Fix and update the opcodes map
    - x86/insn-eval: Add utility functions to get segment selector
    - x86/Kconfig: Limit NR_CPUS on 32-bit to a sane amount
    - x86/mm/dump_pagetables: Check PAGE_PRESENT for real
    - x86/mm/dump_pagetables: Make the address hints correct and readable
    - x86/vsyscall/64: Explicitly set _PAGE_USER in the pagetable hierarchy
    - x86/vsyscall/64: Warn and fail vsyscall emulation in NATIVE mode
    - arch, mm: Allow arch_dup_mmap() to fail
    - x86/ldt: Rework locking
    - x86/ldt: Prevent LDT inheritance on exec
    - x86/mm/64: Improve the memory map documentation
    - x86/doc: Remove obvious weirdnesses from the x86 MM layout documentation
    - x86/entry: Rename SYSENTER_stack to CPU_ENTRY_AREA_entry_stack
    - x86/uv: Use the right TLB-flush API
    - x86/microcode: Dont abuse the TLB-flush interface
    - x86/mm: Use __flush_tlb_one() for kernel memory
    - x86/mm: Remove superfluous barriers
    - x86/mm: Add comments to clarify which TLB-flush functions are supposed to
      flush what
    - x86/mm: Move the CR3 construction functions to tlbflush.h
    - x86/mm: Remove hard-coded ASID limit checks
    - x86/mm: Put MMU to hardware ASID translation in one place
    - x86/mm: Create asm/invpcid.h
    - x86/cpu_entry_area: Move it to a separate unit
    - x86/cpu_entry_area: Move it out of the fixmap
    - init: Invoke init_espfix_bsp() from mm_init()
    - x86/cpu_entry_area: Prevent wraparound in setup_cpu_entry_area_ptes() on
      32bit
    - ACPI: APEI / ERST: Fix missing error handling in erst_reader()
    - acpi, nfit: fix health event notification
    - crypto: skcipher - set walk.iv for zero-length inputs
    - crypto: mcryptd - protect the per-CPU queue with a lock
    - crypto: af_alg - wait for data at beginning of recvmsg
    - crypto: af_alg - fix race accessing cipher request
    - mfd: cros ec: spi: Don't send first message too soon
    - mfd: twl4030-audio: Fix sibling-node lookup
    - mfd: twl6040: Fix child-node lookup
    - ALSA: rawmidi: Avoid racy info ioctl via ctl device
    - ALSA: hda/realtek - Fix Dell AIO LineOut issue
    - ALSA: hda - Add vendor id for Cannonlake HDMI codec
    - ALSA: usb-audio: Add native DSD support for Esoteric D-05X
    - ALSA: usb-audio: Fix the missing ctl name suffix at parsing SU
    - PCI / PM: Force devices to D0 in pci_pm_thaw_noirq()
    - block: unalign call_single_data in struct request
    - block-throttle: avoid double charge
    - parisc: Align os_hpmc_size on word boundary
    - parisc: Fix indenting in puts()
    - parisc: Hide Diva-built-in serial aux and graphics card
    - Revert "parisc: Re-enable interrupts early"
    - spi: xilinx: Detect stall with Unknown commands
    - spi: a3700: Fix clk prescaling for coefficient over 15
    - pinctrl: cherryview: Mask all interrupts on Intel_Strago based systems
    - arm64: kvm: Prevent restoring stale PMSCR_EL1 for vcpu
    - KVM: arm/arm64: Fix HYP unmapping going off limits
    - KVM: PPC: Book3S: fix XIVE migration of pending interrupts
    - KVM: PPC: Book3S HV: Fix pending_pri value in kvmppc_xive_get_icp()
    - KVM: MMU: Fix infinite loop when there is no available mmu page
    - KVM: X86: Fix load RFLAGS w/o the fixed bit
    - kvm: x86: fix RSM when PCID is non-zero
    - clk: sunxi: sun9i-mmc: Implement reset callback for reset controls
    - powerpc/perf: Dereference BHRB entries safely
    - drm/i915: Flush pending GTT writes before unbinding
    - drm/sun4i: Fix error path handling
    - libnvdimm, dax: fix 1GB-aligned namespaces vs physical misalignment
    - libnvdimm, btt: Fix an incompatibility in the log layout
    - libnvdimm, pfn: fix start_pad handling for aligned namespaces
    - net: mvneta: clear interface link status on port disable
    - net: mvneta: use proper rxq_number in loop on rx queues
    - net: mvneta: eliminate wrong call to handle rx descriptor error
    - Revert "ipmi_si: fix memory leak on new_smi"
    - Linux 4.14.10
  * Bionic update to v4.14.9 stable release (LP: #1740872)
    - x86/asm: Remove unnecessary \n\t in front of CC_SET() from asm templates
    - objtool: Don't report end of section error after an empty unwind hint
    - x86/head: Remove confusing comment
    - x86/head: Remove unused 'bad_address' code
    - x86/head: Fix head ELF function annotations
    - x86/boot: Annotate verify_cpu() as a callable function
    - x86/xen: Fix xen head ELF annotations
    - x86/xen: Add unwind hint annotations
    - x86/head: Add unwind hint annotations
    - ACPI / APEI: adjust a local variable type in ghes_ioremap_pfn_irq()
    - x86/unwinder: Make CONFIG_UNWINDER_ORC=y the default in the 64-bit defconfig
    - x86/fpu/debug: Remove unused 'x86_fpu_state' and 'x86_fpu_deactivate_state'
      tracepoints
    - x86/unwind: Rename unwinder config options to 'CONFIG_UNWINDER_*'
    - x86/unwind: Make CONFIG_UNWINDER_ORC=y the default in kconfig for 64-bit
    - bitops: Add clear/set_bit32() to linux/bitops.h
    - x86/cpuid: Add generic table for CPUID dependencies
    - x86/fpu: Parse clearcpuid= as early XSAVE argument
    - x86/fpu: Make XSAVE check the base CPUID features before enabling
    - x86/fpu: Remove the explicit clearing of XSAVE dependent features
    - x86/platform/UV: Convert timers to use timer_setup()
    - objtool: Print top level commands on incorrect usage
    - x86/cpuid: Prevent out of bound access in do_clear_cpu_cap()
    - mm/sparsemem: Allocate mem_section at runtime for CONFIG_SPARSEMEM_EXTREME=y
    - x86/kasan: Use the same shadow offset for 4- and 5-level paging
    - x86/xen: Provide pre-built page tables only for CONFIG_XEN_PV=y and
      CONFIG_XEN_PVH=y
    - x86/xen: Drop 5-level paging support code from the XEN_PV code
    - ACPI / APEI: remove the unused dead-code for SEA/NMI notification type
    - x86/asm: Don't use the confusing '.ifeq' directive
    - x86/build: Beautify build log of syscall headers
    - x86/mm/64: Rename the register_page_bootmem_memmap() 'size' parameter to
      'nr_pages'
    - x86/cpufeatures: Enable new SSE/AVX/AVX512 CPU features
    - x86/mm: Relocate page fault error codes to traps.h
    - x86/boot: Relocate definition of the initial state of CR0
    - ptrace,x86: Make user_64bit_mode() available to 32-bit builds
    - x86/entry/64: Remove the restore_c_regs_and_iret label
    - x86/entry/64: Split the IRET-to-user and IRET-to-kernel paths
    - x86/entry/64: Move SWAPGS into the common IRET-to-usermode path
    - x86/entry/64: Simplify reg restore code in the standard IRET paths
    - x86/entry/64: Shrink paranoid_exit_restore and make labels local
    - x86/entry/64: Use pop instead of movq in syscall_return_via_sysret
    - x86/entry/64: Merge the fast and slow SYSRET paths
    - x86/entry/64: Use POP instead of MOV to restore regs on NMI return
    - x86/entry/64: Remove the RESTORE_..._REGS infrastructure
    - xen, x86/entry/64: Add xen NMI trap entry
    - x86/entry/64: De-Xen-ify our NMI code
    - x86/entry/32: Pull the MSR_IA32_SYSENTER_CS update code out of
      native_load_sp0()
    - x86/entry/64: Pass SP0 directly to load_sp0()
    - x86/entry: Add task_top_of_stack() to find the top of a task's stack
    - x86/xen/64, x86/entry/64: Clean up SP code in cpu_initialize_context()
    - x86/entry/64: Stop initializing TSS.sp0 at boot
    - x86/entry/64: Remove all remaining direct thread_struct::sp0 reads
    - x86/entry/32: Fix cpu_current_top_of_stack initialization at boot
    - x86/entry/64: Remove thread_struct::sp0
    - x86/traps: Use a new on_thread_stack() helper to clean up an assertion
    - x86/entry/64: Shorten TEST instructions
    - x86/cpuid: Replace set/clear_bit32()
    - bitops: Revert cbe96375025e ("bitops: Add clear/set_bit32() to
      linux/bitops.h")
    - x86/mm: Define _PAGE_TABLE using _KERNPG_TABLE
    - x86/cpufeatures: Re-tabulate the X86_FEATURE definitions
    - x86/cpufeatures: Fix various details in the feature definitions
    - selftests/x86/ldt_gdt: Add infrastructure to test set_thread_area()
    - selftests/x86/ldt_gdt: Run most existing LDT test cases against the GDT as
      well
    - ACPI / APEI: Replace ioremap_page_range() with fixmap
    - x86/virt, x86/platform: Merge 'struct x86_hyper' into 'struct x86_platform'
      and 'struct x86_init'
    - x86/virt: Add enum for hypervisors to replace x86_hyper
    - drivers/misc/intel/pti: Rename the header file to free up the namespace
    - x86/cpufeature: Add User-Mode Instruction Prevention definitions
    - x86: Make X86_BUG_FXSAVE_LEAK detectable in CPUID on AMD
    - perf/x86: Enable free running PEBS for REGS_USER/INTR
    - bpf: fix build issues on um due to mising bpf_perf_event.h
    - locking/barriers: Add implicit smp_read_barrier_depends() to READ_ONCE()
    - locking/barriers: Convert users of lockless_dereference() to READ_ONCE()
    - x86/mm/kasan: Don't use vmemmap_populate() to initialize shadow
    - x86/entry/64/paravirt: Use paravirt-safe macro to access eflags
    - x86/unwinder/orc: Dont bail on stack overflow
    - x86/unwinder: Handle stack overflows more gracefully
    - x86/irq: Remove an old outdated comment about context tracking races
    - x86/irq/64: Print the offending IP in the stack overflow warning
    - x86/entry/64: Allocate and enable the SYSENTER stack
    - x86/dumpstack: Add get_stack_info() support for the SYSENTER stack
    - x86/entry/gdt: Put per-CPU GDT remaps in ascending order
    - x86/mm/fixmap: Generalize the GDT fixmap mechanism, introduce struct
      cpu_entry_area
    - x86/kasan/64: Teach KASAN about the cpu_entry_area
    - x86/entry: Fix assumptions that the HW TSS is at the beginning of cpu_tss
    - x86/dumpstack: Handle stack overflow on all stacks
    - x86/entry: Move SYSENTER_stack to the beginning of struct tss_struct
    - x86/entry: Remap the TSS into the CPU entry area
    - x86/entry/64: Separate cpu_current_top_of_stack from TSS.sp0
    - x86/espfix/64: Stop assuming that pt_regs is on the entry stack
    - x86/entry/64: Use a per-CPU trampoline stack for IDT entries
    - x86/entry/64: Return to userspace from the trampoline stack
    - x86/entry/64: Create a per-CPU SYSCALL entry trampoline
    - x86/entry/64: Move the IST stacks into struct cpu_entry_area
    - x86/entry/64: Remove the SYSENTER stack canary
    - x86/entry: Clean up the SYSENTER_stack code
    - x86/entry/64: Make cpu_entry_area.tss read-only
    - x86/paravirt: Dont patch flush_tlb_single
    - x86/paravirt: Provide a way to check for hypervisors
    - x86/cpufeatures: Make CPU bugs sticky
    - optee: fix invalid of_node_put() in optee_driver_init()
    - backlight: pwm_bl: Fix overflow condition
    - drm: Add retries for lspcon mode detection
    - clk: sunxi-ng: nm: Check if requested rate is supported by fractional clock
    - clk: sunxi-ng: sun5i: Fix bit offset of audio PLL post-divider
    - crypto: crypto4xx - increase context and scatter ring buffer elements
    - crypto: lrw - Fix an error handling path in 'create()'
    - rtc: pl031: make interrupt optional
    - kvm, mm: account kvm related kmem slabs to kmemcg
    - net: phy: at803x: Change error to EINVAL for invalid MAC
    - PCI: Avoid bus reset if bridge itself is broken
    - scsi: cxgb4i: fix Tx skb leak
    - scsi: mpt3sas: Fix IO error occurs on pulling out a drive from RAID1 volume
      created on two SATA drive
    - PCI: Create SR-IOV virtfn/physfn links before attaching driver
    - PM / OPP: Move error message to debug level
    - igb: check memory allocation failure
    - i40e: use the safe hash table iterator when deleting mac filters
    - iio: st_sensors: add register mask for status register
    - ixgbe: fix use of uninitialized padding
    - IB/rxe: check for allocation failure on elem
    - block,bfq: Disable writeback throttling
    - md: always set THREAD_WAKEUP and wake up wqueue if thread existed
    - ip_gre: check packet length and mtu correctly in erspan tx
    - ipv6: grab rt->rt6i_ref before allocating pcpu rt
    - leds: pca955x: Don't invert requested value in pca955x_gpio_set_value()
    - Bluetooth: hci_uart_set_flow_control: Fix NULL deref when using serdev
    - Bluetooth: hci_bcm: Fix setting of irq trigger type
    - i40e/i40evf: spread CPU affinity hints across online CPUs only
    - PCI/AER: Report non-fatal errors only to the affected endpoint
    - tracing: Exclude 'generic fields' from histograms
    - ASoC: codecs: msm8916-wcd-analog: fix micbias level
    - ASoC: img-parallel-out: Add pm_runtime_get/put to set_fmt callback
    - powerpc/xmon: Avoid tripping SMP hardlockup watchdog
    - powerpc/watchdog: Do not trigger SMP crash from touch_nmi_watchdog
    - sctp: silence warns on sctp_stream_init allocations
    - ASoC: codecs: msm8916-wcd-analog: fix module autoload
    - fm10k: fix mis-ordered parameters in declaration for .ndo_set_vf_bw
    - scsi: lpfc: Fix secure firmware updates
    - scsi: lpfc: PLOGI failures during NPIV testing
    - scsi: lpfc: Fix warning messages when NVME_TARGET_FC not defined
    - i40e: fix client notify of VF reset
    - vfio/pci: Virtualize Maximum Payload Size
    - ARM: exynos_defconfig: Enable UAS support for Odroid HC1 board
    - fm10k: ensure we process SM mbx when processing VF mbx
    - ibmvnic: Set state UP
    - net: ipv6: send NS for DAD when link operationally up
    - RDMA/hns: Avoid NULL pointer exception
    - staging: greybus: light: Release memory obtained by kasprintf
    - clk: sunxi-ng: sun6i: Rename HDMI DDC clock to avoid name collision
    - tcp: fix under-evaluated ssthresh in TCP Vegas
    - rtc: set the alarm to the next expiring timer
    - cpuidle: fix broadcast control when broadcast can not be entered
    - drm/vc4: Avoid using vrefresh==0 mode in DSI htotal math.
    - IB/opa_vnic: Properly clear Mac Table Digest
    - IB/opa_vnic: Properly return the total MACs in UC MAC list
    - thermal/drivers/hisi: Fix missing interrupt enablement
    - thermal/drivers/hisi: Fix kernel panic on alarm interrupt
    - thermal/drivers/hisi: Simplify the temperature/step computation
    - thermal/drivers/hisi: Fix multiple alarm interrupts firing
    - platform/x86: asus-wireless: send an EV_SYN/SYN_REPORT between state changes
    - mm/sparsemem: Fix ARM64 boot crash when CONFIG_SPARSEMEM_EXTREME=y
    - bpf: fix branch pruning logic
    - bpf: fix corruption on concurrent perf_event_output calls
    - bpf, s390x: do not reload skb pointers in non-skb context
    - bpf, ppc64: do not reload skb pointers in non-skb context
    - bpf, sparc: fix usage of wrong reg for load_skb_regs after call
    - bpf/verifier: fix bounds calculation on BPF_RSH
    - bpf: fix incorrect sign extension in check_alu_op()
    - bpf: fix incorrect tracking of register size truncation
    - bpf: fix 32-bit ALU op verification
    - bpf: fix missing error return in check_stack_boundary()
    - bpf: force strict alignment checks for stack pointers
    - bpf: don't prune branches when a scalar is replaced with a pointer
    - bpf: fix integer overflows
    - selftests/bpf: add tests for recent bugfixes
    - linux/compiler.h: Split into compiler.h and compiler_types.h
    - Linux 4.14.9
  * Bionic update to v4.14.8 stable release (LP: #1740871)
    - mfd: fsl-imx25: Clean up irq settings during removal
    - crypto: algif_aead - fix reference counting of null skcipher
    - crypto: rsa - fix buffer overread when stripping leading zeroes
    - crypto: hmac - require that the underlying hash algorithm is unkeyed
    - crypto: salsa20 - fix blkcipher_walk API usage
    - crypto: af_alg - fix NULL pointer dereference in
    - cifs: fix NULL deref in SMB2_read
    - string.h: workaround for increased stack usage
    - autofs: fix careless error in recent commit
    - kernel: make groups_sort calling a responsibility group_info allocators
    - mm, oom_reaper: fix memory corruption
    - tracing: Allocate mask_str buffer dynamically
    - USB: uas and storage: Add US_FL_BROKEN_FUA for another JMicron JMS567 ID
    - USB: core: prevent malicious bNumInterfaces overflow
    - ovl: Pass ovl_get_nlink() parameters in right order
    - ovl: update ctx->pos on impure dir iteration
    - usbip: fix stub_rx: get_pipe() to validate endpoint number
    - usbip: fix stub_rx: harden CMD_SUBMIT path to handle malicious input
    - usbip: prevent vhci_hcd driver from leaking a socket pointer address
    - usbip: fix stub_send_ret_submit() vulnerability to null transfer_buffer
    - mmc: core: apply NO_CMD23 quirk to some specific cards
    - ceph: drop negative child dentries before try pruning inode's alias
    - usb: xhci: fix TDS for MTK xHCI1.1
    - xhci: Don't add a virt_dev to the devs array before it's fully allocated
    - IB/core: Bound check alternate path port number
    - IB/core: Don't enforce PKey security on SMI MADs
    - nfs: don't wait on commit in nfs_commit_inode() if there were no commit
      requests
    - arm64: mm: Fix pte_mkclean, pte_mkdirty semantics
    - arm64: Initialise high_memory global variable earlier
    - arm64: fix CONFIG_DEBUG_WX address reporting
    - scsi: core: Fix a scsi_show_rq() NULL pointer dereference
    - scsi: libsas: fix length error in sas_smp_handler()
    - sched/rt: Do not pull from current CPU if only one CPU to pull
    - dm: fix various targets to dm_register_target after module __init resources
      created
    - SUNRPC: Fix a race in the receive code path
    - iw_cxgb4: only insert drain cqes if wq is flushed
    - x86/boot/compressed/64: Detect and handle 5-level paging at boot-time
    - x86/boot/compressed/64: Print error if 5-level paging is not supported
    - eeprom: at24: change nvmem stride to 1
    - posix-timer: Properly check sigevent->sigev_notify
    - dmaengine: dmatest: move callback wait queue to thread context
    - ext4: support fast symlinks from ext3 file systems
    - ext4: fix fdatasync(2) after fallocate(2) operation
    - ext4: add missing error check in __ext4_new_inode()
    - ext4: fix crash when a directory's i_size is too small
    - IB/mlx4: Fix RSS's QPC attributes assignments
    - HID: cp2112: fix broken gpio_direction_input callback
    - sfc: don't warn on successful change of MAC
    - fbdev: controlfb: Add missing modes to fix out of bounds access
    - video: udlfb: Fix read EDID timeout
    - video: fbdev: au1200fb: Release some resources if a memory allocation fails
    - video: fbdev: au1200fb: Return an error code if a memory allocation fails
    - rtc: pcf8563: fix output clock rate
    - scsi: aacraid: use timespec64 instead of timeval
    - drm/amdgpu: bypass lru touch for KIQ ring submission
    - PM / s2idle: Clear the events_check_enabled flag
    - ASoC: Intel: Skylake: Fix uuid_module memory leak in failure case
    - dmaengine: ti-dma-crossbar: Correct am335x/am43xx mux value type
    - mlxsw: spectrum: Fix error return code in mlxsw_sp_port_create()
    - PCI/PME: Handle invalid data when reading Root Status
    - powerpc/powernv/cpufreq: Fix the frequency read by /proc/cpuinfo
    - PCI: Do not allocate more buses than available in parent
    - iommu/mediatek: Fix driver name
    - thunderbolt: tb: fix use after free in tb_activate_pcie_devices
    - netfilter: ipvs: Fix inappropriate output of procfs
    - powerpc/opal: Fix EBUSY bug in acquiring tokens
    - powerpc/ipic: Fix status get and status clear
    - powerpc/pseries/vio: Dispose of virq mapping on vdevice unregister
    - platform/x86: intel_punit_ipc: Fix resource ioremap warning
    - target/iscsi: Detect conn_cmd_list corruption early
    - target/iscsi: Fix a race condition in iscsit_add_reject_from_cmd()
    - iscsi-target: fix memory leak in lio_target_tiqn_addtpg()
    - target:fix condition return in core_pr_dump_initiator_port()
    - target/file: Do not return error for UNMAP if length is zero
    - badblocks: fix wrong return value in badblocks_set if badblocks are disabled
    - iommu/amd: Limit the IOVA page range to the specified addresses
    - xfs: truncate pagecache before writeback in xfs_setattr_size()
    - arm-ccn: perf: Prevent module unload while PMU is in use
    - crypto: tcrypt - fix buffer lengths in test_aead_speed()
    - mm: Handle 0 flags in _calc_vm_trans() macro
    - net: hns3: fix for getting advertised_caps in hns3_get_link_ksettings
    - net: hns3: Fix a misuse to devm_free_irq
    - staging: rtl8188eu: Revert part of "staging: rtl8188eu: fix comments with
      lines over 80 characters"
    - clk: mediatek: add the option for determining PLL source clock
    - clk: imx: imx7d: Fix parent clock for OCRAM_CLK
    - clk: imx6: refine hdmi_isfr's parent to make HDMI work on i.MX6 SoCs w/o VPU
    - media: camss-vfe: always initialize reg at vfe_set_xbar_cfg()
    - clk: hi6220: mark clock cs_atb_syspll as critical
    - blk-mq-sched: dispatch from scheduler IFF progress is made in ->dispatch
    - clk: tegra: Use readl_relaxed_poll_timeout_atomic() in tegra210_clock_init()
    - clk: tegra: Fix cclk_lp divisor register
    - ppp: Destroy the mutex when cleanup
    - ASoC: rsnd: rsnd_ssi_run_mods() needs to care ssi_parent_mod
    - thermal/drivers/step_wise: Fix temperature regulation misbehavior
    - misc: pci_endpoint_test: Fix failure path return values in probe
    - misc: pci_endpoint_test: Avoid triggering a BUG()
    - scsi: scsi_debug: write_same: fix error report
    - GFS2: Take inode off order_write list when setting jdata flag
    - media: usbtv: fix brightness and contrast controls
    - rpmsg: glink: Initialize the "intent_req_comp" completion variable
    - bcache: explicitly destroy mutex while exiting
    - bcache: fix wrong cache_misses statistics
    - Ib/hfi1: Return actual operational VLs in port info query
    - Bluetooth: hci_ldisc: Fix another race when closing the tty.
    - arm64: prevent regressions in compressed kernel image size when upgrading to
      binutils 2.27
    - btrfs: fix false EIO for missing device
    - btrfs: Explicitly handle btrfs_update_root failure
    - btrfs: undo writable superblocke when sprouting fails
    - btrfs: avoid null pointer dereference on fs_info when calling btrfs_crit
    - btrfs: tests: Fix a memory leak in error handling path in 'run_test()'
    - qtnfmac: modify full Tx queue error reporting
    - mtd: spi-nor: stm32-quadspi: Fix uninitialized error return code
    - ARM64: dts: meson-gxbb-odroidc2: fix usb1 power supply
    - Bluetooth: btusb: Add new NFA344A entry.
    - samples/bpf: adjust rlimit RLIMIT_MEMLOCK for xdp1
    - liquidio: fix kernel panic in VF driver
    - platform/x86: hp_accel: Add quirk for HP ProBook 440 G4
    - nvme: use kref_get_unless_zero in nvme_find_get_ns
    - l2tp: cleanup l2tp_tunnel_delete calls
    - xfs: fix log block underflow during recovery cycle verification
    - xfs: return a distinct error code value for IGET_INCORE cache misses
    - xfs: fix incorrect extent state in xfs_bmap_add_extent_unwritten_real
    - net: dsa: lan9303: Do not disable switch fabric port 0 at .probe
    - net: hns3: fix a bug in hclge_uninit_client_instance
    - net: hns3: add nic_client check when initialize roce base information
    - net: hns3: fix the bug of hns3_set_txbd_baseinfo
    - RDMA/cxgb4: Declare stag as __be32
    - PCI: Detach driver before procfs & sysfs teardown on device remove
    - scsi: hisi_sas: fix the risk of freeing slot twice
    - scsi: hpsa: cleanup sas_phy structures in sysfs when unloading
    - scsi: hpsa: destroy sas transport properties before scsi_host
    - mfd: mxs-lradc: Fix error handling in mxs_lradc_probe()
    - net: hns3: fix the TX/RX ring.queue_index in hns3_ring_get_cfg
    - net: hns3: fix the bug when map buffer fail
    - net: hns3: fix a bug when alloc new buffer
    - serdev: ttyport: enforce tty-driver open() requirement
    - powerpc/perf/hv-24x7: Fix incorrect comparison in memord
    - powerpc/xmon: Check before calling xive functions
    - soc: mediatek: pwrap: fix compiler errors
    - ipv4: ipv4_default_advmss() should use route mtu
    - KVM: nVMX: Fix EPT switching advertising
    - tty fix oops when rmmod 8250
    - dev/dax: fix uninitialized variable build warning
    - pinctrl: adi2: Fix Kconfig build problem
    - raid5: Set R5_Expanded on parity devices as well as data.
    - scsi: scsi_devinfo: Add REPORTLUN2 to EMC SYMMETRIX blacklist entry
    - IB/core: Fix use workqueue without WQ_MEM_RECLAIM
    - IB/core: Fix calculation of maximum RoCE MTU
    - vt6655: Fix a possible sleep-in-atomic bug in vt6655_suspend
    - IB/hfi1: Mask out A bit from psn trace
    - rtl8188eu: Fix a possible sleep-in-atomic bug in rtw_createbss_cmd
    - rtl8188eu: Fix a possible sleep-in-atomic bug in rtw_disassoc_cmd
    - ipmi_si: fix memory leak on new_smi
    - nullb: fix error return code in null_init()
    - scsi: sd: change manage_start_stop to bool in sysfs interface
    - scsi: sd: change allow_restart to bool in sysfs interface
    - scsi: bfa: integer overflow in debugfs
    - raid5-ppl: check recovery_offset when performing ppl recovery
    - md-cluster: fix wrong condition check in raid1_write_request
    - xprtrdma: Don't defer fencing an async RPC's chunks
    - udf: Avoid overflow when session starts at large offset
    - macvlan: Only deliver one copy of the frame to the macvlan interface
    - IB/core: Fix endianness annotation in rdma_is_multicast_addr()
    - RDMA/cma: Avoid triggering undefined behavior
    - IB/ipoib: Grab rtnl lock on heavy flush when calling ndo_open/stop
    - icmp: don't fail on fragment reassembly time exceeded
    - lightnvm: pblk: prevent gc kicks when gc is not operational
    - lightnvm: pblk: fix changing GC group list for a line
    - lightnvm: pblk: use right flag for GC allocation
    - lightnvm: pblk: initialize debug stat counter
    - lightnvm: pblk: fix min size for page mempool
    - lightnvm: pblk: protect line bitmap while submitting meta io
    - ath9k: fix tx99 potential info leak
    - ath10k: fix core PCI suspend when WoWLAN is supported but disabled
    - ath10k: fix build errors with !CONFIG_PM
    - usb: musb: da8xx: fix babble condition handling
    - Linux 4.14.8
  * Miscellaneous Ubuntu changes
    - [Config] updateconfigs after applying 4.14.{8,9,10} stable updates
    - [Config] CONFIG_PAGE_TABLE_ISOLATION=y

  [ Ubuntu: 4.14.0-13.15 ]

  * linux: 4.14.0-13.15 -proposed tracker (LP: #1738848)
  * linux 4.14.0-12.14 ADT test failure with linux 4.14.0-12.14 (LP: #1738632)
    - Revert "exec: avoid RLIMIT_STACK races with prlimit()"
  * Bionic update to v4.14.7 stable release (LP: #1738843)
    - net: qmi_wwan: add Quectel BG96 2c7c:0296
    - net: realtek: r8169: implement set_link_ksettings()
    - s390/qeth: fix early exit from error path
    - tipc: fix memory leak in tipc_accept_from_sock()
    - vhost: fix skb leak in handle_rx()
    - rds: Fix NULL pointer dereference in __rds_rdma_map
    - sit: update frag_off info
    - tcp: add tcp_v4_fill_cb()/tcp_v4_restore_cb()
    - packet: fix crash in fanout_demux_rollover()
    - net/packet: fix a race in packet_bind() and packet_notifier()
    - tcp: remove buggy call to tcp_v6_restore_cb()
    - usbnet: fix alignment for frames with no ethernet header
    - net: remove hlist_nulls_add_tail_rcu()
    - stmmac: reset last TSO segment size after device open
    - tcp/dccp: block bh before arming time_wait timer
    - s390/qeth: build max size GSO skbs on L2 devices
    - s390/qeth: fix thinko in IPv4 multicast address tracking
    - s390/qeth: fix GSO throughput regression
    - tcp: use IPCB instead of TCP_SKB_CB in inet_exact_dif_match()
    - tipc: call tipc_rcv() only if bearer is up in tipc_udp_recv()
    - tcp: use current time in tcp_rcv_space_adjust()
    - net: sched: cbq: create block for q->link.block
    - tap: free skb if flags error
    - tcp: when scheduling TLP, time of RTO should account for current ACK
    - tun: free skb in early errors
    - net: ipv6: Fixup device for anycast routes during copy
    - tun: fix rcu_read_lock imbalance in tun_build_skb
    - net: accept UFO datagrams from tuntap and packet
    - net: openvswitch: datapath: fix data type in queue_gso_packets
    - cls_bpf: don't decrement net's refcount when offload fails
    - sctp: use right member as the param of list_for_each_entry
    - ipmi: Stop timers before cleaning up the module
    - usb: gadget: ffs: Forbid usb_ep_alloc_request from sleeping
    - fcntl: don't cap l_start and l_end values for F_GETLK64 in compat syscall
    - fix kcm_clone()
    - KVM: arm/arm64: vgic-its: Preserve the revious read from the pending table
    - kbuild: do not call cc-option before KBUILD_CFLAGS initialization
    - powerpc/powernv/idle: Round up latency and residency values
    - ipvlan: fix ipv6 outbound device
    - ide: ide-atapi: fix compile error with defining macro DEBUG
    - blk-mq: Avoid that request queue removal can trigger list corruption
    - nvmet-rdma: update queue list during ib_device removal
    - audit: Allow auditd to set pid to 0 to end auditing
    - audit: ensure that 'audit=1' actually enables audit for PID 1
    - dm raid: fix panic when attempting to force a raid to sync
    - md: free unused memory after bitmap resize
    - RDMA/cxgb4: Annotate r2 and stag as __be32
    - x86/intel_rdt: Fix potential deadlock during resctrl unmount
    - media: dvb-core: always call invoke_release() in fe_free()
    - dvb_frontend: don't use-after-free the frontend struct
    - Linux 4.14.7

  [ Ubuntu: 4.14.0-12.14 ]

  * linux: 4.14.0-12.14 -proposed tracker (LP: #1738554)
  * Ubuntu 17.10 corrupting BIOS - many LENOVO laptops models (LP: #1734147)
    - [Config] CONFIG_SPI_INTEL_SPI_*=n
  * Bionic update to v4.14.6 stable release (LP: #1738480)
    - usb: gadget: udc: renesas_usb3: fix number of the pipes
    - usb: gadget: core: Fix ->udc_set_speed() speed handling
    - serdev: ttyport: add missing receive_buf sanity checks
    - serdev: ttyport: fix NULL-deref on hangup
    - serdev: ttyport: fix tty locking in close
    - usb: f_fs: Force Reserved1=1 in OS_DESC_EXT_COMPAT
    - can: mcba_usb: fix device disconnect bug
    - can: peak/pci: fix potential bug when probe() fails
    - can: flexcan: fix VF610 state transition issue
    - can: ti_hecc: Fix napi poll return value for repoll
    - can: kvaser_usb: free buf in error paths
    - can: kvaser_usb: Fix comparison bug in kvaser_usb_read_bulk_callback()
    - can: kvaser_usb: ratelimit errors if incomplete messages are received
    - can: kvaser_usb: cancel urb on -EPIPE and -EPROTO
    - can: mcba_usb: cancel urb on -EPROTO
    - can: ems_usb: cancel urb on -EPIPE and -EPROTO
    - can: esd_usb2: cancel urb on -EPIPE and -EPROTO
    - can: usb_8dev: cancel urb on -EPIPE and -EPROTO
    - can: peak/pcie_fd: fix potential bug in restarting tx queue
    - virtio: release virtio index when fail to device_register
    - iio: stm32: fix adc/trigger link error
    - iio: health: max30102: Temperature should be in milli Celsius
    - iio: adc: cpcap: fix incorrect validation
    - iio: adc: meson-saradc: fix the bit_idx of the adc_en clock
    - iio: adc: meson-saradc: initialize the bandgap correctly on older SoCs
    - iio: adc: meson-saradc: Meson8 and Meson8b do not have REG11 and REG13
    - pinctrl: armada-37xx: Fix direction_output() callback behavior
    - Drivers: hv: vmbus: Fix a rescind issue
    - hv: kvp: Avoid reading past allocated blocks from KVP file
    - firmware: cleanup FIRMWARE_IN_KERNEL message
    - firmware: vpd: Destroy vpd sections in remove function
    - firmware: vpd: Tie firmware kobject to device lifetime
    - firmware: vpd: Fix platform driver and device registration/unregistration
    - isa: Prevent NULL dereference in isa_bus driver callbacks
    - scsi: dma-mapping: always provide dma_get_cache_alignment
    - scsi: use dma_get_cache_alignment() as minimum DMA alignment
    - scsi: libsas: align sata_device's rps_resp on a cacheline
    - efi: Move some sysfs files to be read-only by root
    - efi/esrt: Use memunmap() instead of kfree() to free the remapping
    - ASN.1: fix out-of-bounds read when parsing indefinite length item
    - ASN.1: check for error from ASN1_OP_END__ACT actions
    - KEYS: add missing permission check for request_key() destination
    - KEYS: reject NULL restriction string when type is specified
    - X.509: reject invalid BIT STRING for subjectPublicKey
    - X.509: fix comparisons of ->pkey_algo
    - x86/idt: Load idt early in start_secondary
    - x86/PCI: Make broadcom_postcore_init() check acpi_disabled
    - KVM: x86: fix APIC page invalidation
    - btrfs: fix missing error return in btrfs_drop_snapshot
    - btrfs: handle errors while updating refcounts in update_ref_for_cow
    - ALSA: hda/realtek - New codec support for ALC257
    - ALSA: pcm: prevent UAF in snd_pcm_info
    - ALSA: seq: Remove spurious WARN_ON() at timer check
    - ALSA: usb-audio: Fix out-of-bound error
    - ALSA: usb-audio: Add check return value for usb_string()
    - iommu/vt-d: Fix scatterlist offset handling
    - smp/hotplug: Move step CPUHP_AP_SMPCFD_DYING to the correct place
    - s390: always save and restore all registers on context switch
    - s390/mm: fix off-by-one bug in 5-level page table handling
    - s390: fix compat system call table
    - KVM: s390: Fix skey emulation permission check
    - Revert "powerpc: Do not call ppc_md.panic in fadump panic notifier"
    - powerpc/64s: Initialize ISAv3 MMU registers before setting partition table
    - iwlwifi: mvm: mark MIC stripped MPDUs
    - iwlwifi: mvm: don't use transmit queue hang detection when it is not
      possible
    - iwlwifi: mvm: flush queue before deleting ROC
    - iwlwifi: add new cards for 9260 and 22000 series
    - iwlwifi: mvm: fix packet injection
    - iwlwifi: mvm: enable RX offloading with TKIP and WEP
    - brcmfmac: change driver unbind order of the sdio function devices
    - kdb: Fix handling of kallsyms_symbol_next() return value
    - md/r5cache: move mddev_lock() out of r5c_journal_mode_set()
    - drm/bridge: analogix dp: Fix runtime PM state in get_modes() callback
    - drm/exynos: gem: Drop NONCONTIG flag for buffers allocated without IOMMU
    - drm/i915: Fix vblank timestamp/frame counter jumps on gen2
    - media: dvb: i2c transfers over usb cannot be done from stack
    - media: rc: sir_ir: detect presence of port
    - media: rc: partial revert of "media: rc: per-protocol repeat period"
    - arm64: KVM: fix VTTBR_BADDR_MASK BUG_ON off-by-one
    - arm: KVM: Fix VTTBR_BADDR_MASK BUG_ON off-by-one
    - KVM: VMX: remove I/O port 0x80 bypass on Intel hosts
    - KVM: arm/arm64: Fix broken GICH_ELRSR big endian conversion
    - KVM: arm/arm64: vgic-irqfd: Fix MSI entry allocation
    - KVM: arm/arm64: vgic: Preserve the revious read from the pending table
    - KVM: arm/arm64: vgic-its: Check result of allocation before use
    - arm64: fpsimd: Prevent registers leaking from dead tasks
    - arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm
    - arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb
    - Revert "ARM: dts: imx53: add srtc node"
    - bus: arm-cci: Fix use of smp_processor_id() in preemptible context
    - bus: arm-ccn: Check memory allocation failure
    - bus: arm-ccn: Fix use of smp_processor_id() in preemptible context
    - bus: arm-ccn: fix module unloading Error: Removing state 147 which has
      instances left.
    - IB/core: Avoid unnecessary return value check
    - IB/core: Only enforce security for InfiniBand
    - crypto: talitos - fix AEAD test failures
    - crypto: talitos - fix memory corruption on SEC2
    - crypto: talitos - fix setkey to check key weakness
    - crypto: talitos - fix AEAD for sha224 on non sha224 capable chips
    - crypto: talitos - fix use of sg_link_tbl_len
    - crypto: talitos - fix ctr-aes-talitos
    - ARM: BUG if jumping to usermode address in kernel mode
    - ARM: avoid faulting on qemu
    - irqchip/qcom: Fix u32 comparison with value less than zero
    - net/smc: use sk_rcvbuf as start for rmb creation
    - kbuild: pkg: use --transform option to prefix paths in tar
    - coccinelle: fix parallel build with CHECK=scripts/coccicheck
    - powerpc/perf: Fix pmu_count to count only nest imc pmus
    - apparmor: fix leak of null profile name if profile allocation fails
    - x86/mpx/selftests: Fix up weird arrays
    - mac80211_hwsim: Fix memory leak in hwsim_new_radio_nl()
    - gre6: use log_ecn_error module parameter in ip6_tnl_rcv()
    - route: also update fnhe_genid when updating a route cache
    - route: update fnhe_expires for redirect when the fnhe exists
    - rsi: fix memory leak on buf and usb_reg_buf
    - drivers/rapidio/devices/rio_mport_cdev.c: fix resource leak in error
      handling path in 'rio_dma_transfer()'
    - pipe: match pipe_max_size data type with procfs
    - lib/genalloc.c: make the avail variable an atomic_long_t
    - dynamic-debug-howto: fix optional/omitted ending line number to be LARGE
      instead of 0
    - NFS: Fix a typo in nfs_rename()
    - sunrpc: Fix rpc_task_begin trace point
    - nfp: inherit the max_mtu from the PF netdev
    - nfp: fix flower offload metadata flag usage
    - xfs: fix forgotten rcu read unlock when skipping inode reclaim
    - dt-bindings: usb: fix reg-property port-number range
    - block: wake up all tasks blocked in get_request()
    - sparc64/mm: set fields in deferred pages
    - zsmalloc: calling zs_map_object() from irq is a bug
    - slub: fix sysfs duplicate filename creation when slub_debug=O
    - sctp: do not free asoc when it is already dead in sctp_sendmsg
    - sctp: use the right sk after waking up from wait_buf sleep
    - fcntl: don't leak fd reference when fixup_compat_flock fails
    - geneve: fix fill_info when link down
    - bpf: fix lockdep splat
    - clk: stm32h7: fix test of clock config
    - clk: sunxi-ng: a83t: Fix i2c buses bits
    - clk: qcom: common: fix legacy board-clock registration
    - clk: uniphier: fix DAPLL2 clock rate of Pro5
    - clk: hi3660: fix incorrect uart3 clock freqency
    - mailbox: mailbox-test: don't rely on rx_buffer content to signal data ready
    - kbuild: rpm-pkg: fix jobserver unavailable warning
    - atm: horizon: Fix irq release error
    - jump_label: Invoke jump_label_test() via early_initcall()
    - tls: Use kzalloc for aead_request allocation
    - xfrm: Copy policy family in clone_policy
    - f2fs: fix to clear FI_NO_PREALLOC
    - bnxt_re: changing the ip address shouldn't affect new connections
    - IB/mlx4: Increase maximal message size under UD QP
    - IB/mlx5: Assign send CQ and recv CQ of UMR QP
    - afs: Fix total-length calculation for multiple-page send
    - afs: Connect up the CB.ProbeUuid
    - Linux 4.14.6
  * power: commonise configs IBMVETH/IBMVSCSI and ensure both are in linux-image
    and udebs (LP: #1521712)
    - [Config] Include ibmvnic in nic-modules
  * thunderx2: i2c driver PEC and ACPI clock fixes (LP: #1738073)
    - ACPI / APD: Add clock frequency for ThunderX2 I2C controller
    - i2c: xlp9xx: Get clock frequency with clk API
    - i2c: xlp9xx: Handle I2C_M_RECV_LEN in msg->flags
  * ThunderX: IPv6 TX failure unless checksum offload disabled (LP: #1736593)
    - net: thunderx: Fix TCP/UDP checksum offload for IPv6 pkts
    - net: thunderx: Fix TCP/UDP checksum offload for IPv4 pkts
  * Bionic update to v4.14.5 stable release (LP: #1737992)
    - drm/fsl-dcu: avoid disabling pixel clock twice on suspend
    - drm/fsl-dcu: enable IRQ before drm_atomic_helper_resume()
    - drm/amdgpu: Use unsigned ring indices in amdgpu_queue_mgr_map
    - s390/runtime instrumentation: simplify task exit handling
    - usbip: fix usbip attach to find a port that matches the requested speed
    - usbip: Fix USB device hang due to wrong enabling of scatter-gather
    - uas: Always apply US_FL_NO_ATA_1X quirk to Seagate devices
    - usb: quirks: Add no-lpm quirk for KY-688 USB 3.1 Type-C Hub
    - serial: 8250_pci: Add Amazon PCI serial device ID
    - ANDROID: binder: fix transaction leak.
    - USB: serial: option: add Quectel BG96 id
    - USB: serial: usb_debug: add new USB device id
    - serial: 8250_early: Only set divisor if valid clk & baud
    - MIPS: Add custom serial.h with BASE_BAUD override for generic kernel
    - ima: fix hash algorithm initialization
    - s390: vfio-ccw: Do not attempt to free no-op, test and tic cda.
    - PM / Domains: Fix genpd to deal with drivers returning 1 from ->prepare()
    - s390/pci: do not require AIS facility
    - selftests/x86/ldt_get: Add a few additional tests for limits
    - selftests/x86/ldt_gdt: Robustify against set_thread_area() and LAR oddities
    - staging: greybus: loopback: Fix iteration count on async path
    - m68k: fix ColdFire node shift size calculation
    - serial: 8250_fintek: Fix rs485 disablement on invalid ioctl()
    - staging: rtl8822be: fix wrong dma unmap len
    - staging: rtl8188eu: avoid a null dereference on pmlmepriv
    - spi: sh-msiof: Fix DMA transfer size check
    - spi: spi-axi: fix potential use-after-free after deregistration
    - mmc: tmio: check mmc_regulator_get_supply return value
    - mmc: sdhci-msm: fix issue with power irq
    - hwmon: (pmbus/core) Prevent unintentional setting of page to 0xFF
    - perf/core: Fix __perf_read_group_add() locking
    - usb: phy: tahvo: fix error handling in tahvo_usb_probe()
    - PCI: dra7xx: Create functional dependency between PCIe and PHY
    - x86/intel_rdt: Initialize bitmask of shareable resource if CDP enabled
    - x86/intel_rdt: Fix potential deadlock during resctrl mount
    - serial: 8250: Preserve DLD[7:4] for PORT_XR17V35X
    - kprobes: Use synchronize_rcu_tasks() for optprobe with CONFIG_PREEMPT=y
    - x86/entry: Use SYSCALL_DEFINE() macros for sys_modify_ldt()
    - clocksource/drivers/arm_arch_timer: Validate CNTFRQ after enabling frame
    - dt-bindings: timer: renesas, cmt: Fix SoC-specific compatible values
    - EDAC, sb_edac: Fix missing break in switch
    - usb: mtu3: fix error return code in ssusb_gadget_init()
    - staging: fsl-dpaa2/eth: Account for Rx FD buffers on error path
    - staging: rtl8822be: Keep array subscript no lower than zero
    - ARM: cpuidle: Correct driver unregistration if init fails
    - usb: xhci: Return error when host is dead in xhci_disable_slot()
    - sysrq : fix Show Regs call trace on ARM
    - serial: sh-sci: suppress warning for ports without dma channels
    - usbip: tools: Install all headers needed for libusbip development
    - serial: imx: Update cached mctrl value when changing RTS
    - staging: fsl-mc/dpio: Fix incorrect comparison
    - perf test attr: Fix ignored test case result
    - perf test attr: Fix python error on empty result
    - kprobes/x86: Disable preemption in ftrace-based jprobes
    - locking/refcounts, x86/asm: Use unique .text section for refcount exceptions
    - s390/ptrace: fix guarded storage regset handling
    - tools include: Do not use poison with C++
    - perf tools: Fix leaking rec_argv in error cases
    - mm, x86/mm: Fix performance regression in get_user_pages_fast()
    - iio: adc: ti-ads1015: add 10% to conversion wait time
    - iio: multiplexer: add NULL check on devm_kzalloc() and devm_kmemdup() return
      values
    - locking/refcounts, x86/asm: Enable CONFIG_ARCH_HAS_REFCOUNT
    - powerpc/jprobes: Disable preemption when triggered through ftrace
    - powerpc/kprobes: Disable preemption before invoking probe handler for
      optprobes
    - dma-buf/sw_sync: force signal all unsignaled fences on dying timeline
    - staging: ccree: fix leak of import() after init()
    - usb: hub: Cycle HUB power when initialization fails
    - USB: ulpi: fix bus-node lookup
    - xhci: Don't show incorrect WARN message about events for empty rings
    - usb: xhci: fix panic in xhci_free_virt_devices_depth_first
    - USB: core: Add type-specific length check of BOS descriptors
    - USB: usbfs: Filter flags passed in from user space
    - usb: host: fix incorrect updating of offset
    - locking/refcounts: Do not force refcount_t usage as GPL-only export
    - Linux 4.14.5
  * Enable arm64 emulation of removed ARMv7 instructions (LP: #1545542)
    - [Config] Enable support for emulation of deprecated ARMv8 instructions
  * Kernel panic on a nfsroot system (LP: #1734327)
    - Revert "UBUNTU: SAUCE: LSM stacking: LSM: Infrastructure management of the
      remaining blobs"
    - Revert "UBUNTU: SAUCE: LSM stacking: add stacking support to apparmor
      network hooks"
  * CVE-2017-8824
    - dccp: CVE-2017-8824: use-after-free in DCCP code
  * Disabling zfs does not always disable module checks for the zfs modules
    (LP: #1737176)
    - [Packaging] disable zfs module checks when zfs is disabled
  * Request to backport cxlflash patches to 16.04 HWE Kernel (LP: #1730515)
    - scsi: cxlflash: Use derived maximum write same length
    - scsi: cxlflash: Allow cards without WWPN VPD to configure
    - scsi: cxlflash: Derive pid through accessors
  * Bionic update to v4.14.4 stable release (LP: #1737247)
    - platform/x86: hp-wmi: Fix tablet mode detection for convertibles
    - mm, memory_hotplug: do not back off draining pcp free pages from kworker
      context
    - mm, oom_reaper: gather each vma to prevent leaking TLB entry
    - mm/cma: fix alloc_contig_range ret code/potential leak
    - mm: fix device-dax pud write-faults triggered by get_user_pages()
    - mm, hugetlbfs: introduce ->split() to vm_operations_struct
    - device-dax: implement ->split() to catch invalid munmap attempts
    - mm: introduce get_user_pages_longterm
    - mm: fail get_vaddr_frames() for filesystem-dax mappings
    - v4l2: disable filesystem-dax mapping support
    - IB/core: disable memory registration of filesystem-dax vmas
    - exec: avoid RLIMIT_STACK races with prlimit()
    - mm/madvise.c: fix madvise() infinite loop under special circumstances
    - mm: migrate: fix an incorrect call of prep_transhuge_page()
    - mm, memcg: fix mem_cgroup_swapout() for THPs
    - fs/fat/inode.c: fix sb_rdonly() change
    - autofs: revert "autofs: take more care to not update last_used on path walk"
    - autofs: revert "autofs: fix AT_NO_AUTOMOUNT not being honored"
    - mm/hugetlb: fix NULL-pointer dereference on 5-level paging machine
    - btrfs: clear space cache inode generation always
    - nfsd: Fix stateid races between OPEN and CLOSE
    - nfsd: Fix another OPEN stateid race
    - nfsd: fix panic in posix_unblock_lock called from nfs4_laundromat
    - crypto: algif_aead - skip SGL entries with NULL page
    - crypto: af_alg - remove locking in async callback
    - crypto: skcipher - Fix skcipher_walk_aead_common
    - lockd: lost rollback of set_grace_period() in lockd_down_net()
    - s390: revert ELF_ET_DYN_BASE base changes
    - drm: omapdrm: Fix DPI on platforms using the DSI VDDS
    - omapdrm: hdmi4: Correct the SoC revision matching
    - arm64: module-plts: factor out PLT generation code for ftrace
    - arm64: ftrace: emit ftrace-mod.o contents through code
    - powerpc/powernv: Fix kexec crashes caused by tlbie tracing
    - powerpc/kexec: Fix kexec/kdump in P9 guest kernels
    - KVM: x86: pvclock: Handle first-time write to pvclock-page contains random
      junk
    - KVM: x86: Exit to user-mode on #UD intercept when emulator requires
    - KVM: x86: inject exceptions produced by x86_decode_insn
    - KVM: lapic: Split out x2apic ldr calculation
    - KVM: lapic: Fixup LDR on load in x2apic
    - mmc: sdhci: Avoid swiotlb buffer being full
    - mmc: block: Fix missing blk_put_request()
    - mmc: block: Check return value of blk_get_request()
    - mmc: core: Do not leave the block driver in a suspended state
    - mmc: block: Ensure that debugfs files are removed
    - mmc: core: prepend 0x to pre_eol_info entry in sysfs
    - mmc: core: prepend 0x to OCR entry in sysfs
    - ACPI / EC: Fix regression related to PM ops support in ECDT device
    - eeprom: at24: fix reading from 24MAC402/24MAC602
    - eeprom: at24: correctly set the size for at24mac402
    - eeprom: at24: check at24_read/write arguments
    - i2c: i801: Fix Failed to allocate irq -2147483648 error
    - cxl: Check if vphb exists before iterating over AFU devices
    - bcache: Fix building error on MIPS
    - bcache: only permit to recovery read error when cache device is clean
    - bcache: recover data from backing when data is clean
    - hwmon: (jc42) optionally try to disable the SMBUS timeout
    - nvme-pci: add quirk for delay before CHK RDY for WDC SN200
    - Revert "drm/radeon: dont switch vt on suspend"
    - drm/amdgpu: potential uninitialized variable in amdgpu_vce_ring_parse_cs()
    - drm/amdgpu: Potential uninitialized variable in
      amdgpu_vm_update_directories()
    - drm/amdgpu: correct reference clock value on vega10
    - drm/amdgpu: fix error handling in amdgpu_bo_do_create
    - drm/amdgpu: Properly allocate VM invalidate eng v2
    - drm/amdgpu: Remove check which is not valid for certain VBIOS
    - drm/ttm: fix ttm_bo_cleanup_refs_or_queue once more
    - dma-buf: make reservation_object_copy_fences rcu save
    - drm/amdgpu: reserve root PD while releasing it
    - drm/ttm: Always and only destroy bo->ttm_resv in ttm_bo_release_list
    - drm/vblank: Fix flip event vblank count
    - drm/vblank: Tune drm_crtc_accurate_vblank_count() WARN down to a debug
    - drm/tilcdc: Precalculate total frametime in tilcdc_crtc_set_mode()
    - drm/radeon: fix atombios on big endian
    - drm/panel: simple: Add missing panel_simple_unprepare() calls
    - drm/hisilicon: Ensure LDI regs are properly configured.
    - drm/ttm: once more fix ttm_buffer_object_transfer
    - drm/amd/pp: fix typecast error in powerplay.
    - drm/fb_helper: Disable all crtc's when initial setup fails.
    - drm/fsl-dcu: Don't set connector DPMS property
    - drm/edid: Don't send non-zero YQ in AVI infoframe for HDMI 1.x sinks
    - drm/amdgpu: move UVD/VCE and VCN structure out from union
    - drm/amdgpu: Set adev->vcn.irq.num_types for VCN
    - include/linux/compiler-clang.h: handle randomizable anonymous structs
    - IB/core: Do not warn on lid conversions for OPA
    - IB/hfi1: Do not warn on lid conversions for OPA
    - e1000e: fix the use of magic numbers for buffer overrun issue
    - md: forbid a RAID5 from having both a bitmap and a journal.
    - drm/i915: Fix false-positive assert_rpm_wakelock_held in
      i915_pmic_bus_access_notifier v2
    - drm/i915: Re-register PMIC bus access notifier on runtime resume
    - drm/i915/fbdev: Serialise early hotplug events with async fbdev config
    - drm/i915/gvt: Correct ADDR_4K/2M/1G_MASK definition
    - drm/i915: Don't try indexed reads to alternate slave addresses
    - drm/i915: Prevent zero length "index" write
    - Revert "x86/entry/64: Add missing irqflags tracing to
      native_load_gs_index()"
    - Linux 4.14.4
  * Some VMs fail to reboot with "watchdog: BUG: soft lockup - CPU#0 stuck for
    22s! [systemd:1]" (LP: #1730717)
    - Revert "UBUNTU: SAUCE: exec: ensure file system accounting in
      check_unsafe_exec is correct"
  * Miscellaneous Ubuntu changes
    - ubuntu: vbox -- update to 5.2.2-dfsg-2
    - SAUCE: Import aufs driver
    - [Config] updateconfigs after v4.14.5 stable update
    - [Debian] add icp to zfs-modules.ignore
  * Miscellaneous upstream changes
    - Revert "UBUNTU: SAUCE: Import aufs driver"
    - Revert "UBUNTU: [Packaging] Include arch/arm64/kernel/ftrace-mod.o in
      headers package"

linux-azure-edge (4.14.0-1002.2) xenial; urgency=low

  * linux-azure-edge: 4.14.0-1002.2 -proposed tracker (LP: #1738206)


  [ Ubuntu: 4.14.0-11.13 ]

  * linux: 4.14.0-11.13 -proposed tracker (LP: #1736168)
  * CVE-2017-1000405
    - mm, thp: Do not make page table dirty unconditionally in touch_p[mu]d()
  * linux 4.14.0-7.9 ADT test failure with linux 4.14.0-7.9 (LP: #1732463)
    - SAUCE: mm: disable vma based swap readahead by default
    - SAUCE: mm: fix memory hotplug in ZONE_HIGHMEM
  * Bionic update to v4.14.3 stable release (LP: #1735843)
    - s390: fix transactional execution control register handling
    - s390/noexec: execute kexec datamover without DAT
    - s390/runtime instrumention: fix possible memory corruption
    - s390/guarded storage: fix possible memory corruption
    - s390/disassembler: add missing end marker for e7 table
    - s390/disassembler: increase show_code buffer size
    - ACPI / PM: Fix acpi_pm_notifier_lock vs flush_workqueue() deadlock
    - ACPI / EC: Fix regression related to triggering source of EC event handling
    - cpufreq: schedutil: Reset cached_raw_freq when not in sync with next_freq
    - serdev: fix registration of second slave
    - sched: Make resched_cpu() unconditional
    - lib/mpi: call cond_resched() from mpi_powm() loop
    - x86/boot: Fix boot failure when SMP MP-table is based at 0
    - x86/decoder: Add new TEST instruction pattern
    - x86/entry/64: Fix entry_SYSCALL_64_after_hwframe() IRQ tracing
    - x86/entry/64: Add missing irqflags tracing to native_load_gs_index()
    - perf/x86/intel: Hide TSX events when RTM is not supported
    - arm64: Implement arch-specific pte_access_permitted()
    - ARM: 8722/1: mm: make STRICT_KERNEL_RWX effective for LPAE
    - ARM: 8721/1: mm: dump: check hardware RO bit for LPAE
    - uapi: fix linux/tls.h userspace compilation error
    - uapi: fix linux/rxrpc.h userspace compilation errors
    - MIPS: cmpxchg64() and HAVE_VIRT_CPU_ACCOUNTING_GEN don't work for 32-bit SMP
    - MIPS: ralink: Fix MT7628 pinmux
    - MIPS: ralink: Fix typo in mt7628 pinmux function
    - net: mvneta: fix handling of the Tx descriptor counter
    - nbd: wait uninterruptible for the dead timeout
    - nbd: don't start req until after the dead connection logic
    - PM / OPP: Add missing of_node_put(np)
    - PCI/ASPM: Account for downstream device's Port Common_Mode_Restore_Time
    - PCI/ASPM: Use correct capability pointer to program LTR_L1.2_THRESHOLD
    - PCI: hv: Use effective affinity mask
    - PCI: Set Cavium ACS capability quirk flags to assert RR/CR/SV/UF
    - PCI: Apply Cavium ThunderX ACS quirk to more Root Ports
    - ALSA: hda: Add Raven PCI ID
    - dm integrity: allow unaligned bv_offset
    - dm cache: fix race condition in the writeback mode overwrite_bio
      optimisation
    - dm crypt: allow unaligned bv_offset
    - dm zoned: ignore last smaller runt zone
    - dm mpath: remove annoying message of 'blk_get_request() returned -11'
    - dm bufio: fix integer overflow when limiting maximum cache size
    - ovl: Put upperdentry if ovl_check_origin() fails
    - dm: allocate struct mapped_device with kvzalloc
    - sched/rt: Simplify the IPI based RT balancing logic
    - MIPS: pci: Remove KERN_WARN instance inside the mt7620 driver
    - dm: fix race between dm_get_from_kobject() and __dm_destroy()
    - dm: discard support requires all targets in a table support discards
    - MIPS: Fix odd fp register warnings with MIPS64r2
    - MIPS: Fix MIPS64 FP save/restore on 32-bit kernels
    - MIPS: dts: remove bogus bcm96358nb4ser.dtb from dtb-y entry
    - MIPS: Fix an n32 core file generation regset support regression
    - MIPS: BCM47XX: Fix LED inversion for WRT54GSv1
    - MIPS: math-emu: Fix final emulation phase for certain instructions
    - rt2x00usb: mark device removed when get ENOENT usb error
    - mm/z3fold.c: use kref to prevent page free/compact race
    - autofs: don't fail mount for transient error
    - nilfs2: fix race condition that causes file system corruption
    - fscrypt: lock mutex before checking for bounce page pool
    - eCryptfs: use after free in ecryptfs_release_messaging()
    - libceph: don't WARN() if user tries to add invalid key
    - bcache: check ca->alloc_thread initialized before wake up it
    - fs: guard_bio_eod() needs to consider partitions
    - fanotify: fix fsnotify_prepare_user_wait() failure
    - isofs: fix timestamps beyond 2027
    - btrfs: change how we decide to commit transactions during flushing
    - f2fs: expose some sectors to user in inline data or dentry case
    - NFS: Fix typo in nomigration mount option
    - NFS: Revert "NFS: Move the flock open mode check into nfs_flock()"
    - nfs: Fix ugly referral attributes
    - NFS: Avoid RCU usage in tracepoints
    - NFS: revalidate "." etc correctly on "open".
    - nfsd: deal with revoked delegations appropriately
    - rtlwifi: rtl8192ee: Fix memory leak when loading firmware
    - rtlwifi: fix uninitialized rtlhal->last_suspend_sec time
    - iwlwifi: fix firmware names for 9000 and A000 series hw
    - md: fix deadlock error in recent patch.
    - md: don't check MD_SB_CHANGE_CLEAN in md_allow_write
    - Bluetooth: btqcomsmd: Add support for BD address setup
    - md/bitmap: revert a patch
    - fsnotify: clean up fsnotify_prepare/finish_user_wait()
    - fsnotify: pin both inode and vfsmount mark
    - fsnotify: fix pinning group in fsnotify_prepare_user_wait()
    - ata: fixes kernel crash while tracing ata_eh_link_autopsy event
    - ext4: fix interaction between i_size, fallocate, and delalloc after a crash
    - ext4: prevent data corruption with inline data + DAX
    - ext4: prevent data corruption with journaling + DAX
    - ALSA: pcm: update tstamp only if audio_tstamp changed
    - ALSA: usb-audio: Add sanity checks to FE parser
    - ALSA: usb-audio: Fix potential out-of-bound access at parsing SU
    - ALSA: usb-audio: Add sanity checks in v2 clock parsers
    - ALSA: timer: Remove kernel warning at compat ioctl error paths
    - ALSA: hda/realtek - Fix ALC275 no sound issue
    - ALSA: hda: Fix too short HDMI/DP chmap reporting
    - ALSA: hda - Fix yet remaining issue with vmaster 0dB initialization
    - ALSA: hda/realtek - Fix ALC700 family no sound issue
    - ASoC: sun8i-codec: Invert Master / Slave condition
    - ASoC: sun8i-codec: Fix left and right channels inversion
    - ASoC: sun8i-codec: Set the BCLK divider
    - mfd: lpc_ich: Avoton/Rangeley uses SPI_BYT method
    - fix a page leak in vhost_scsi_iov_to_sgl() error recovery
    - 9p: Fix missing commas in mount options
    - fs/9p: Compare qid.path in v9fs_test_inode
    - net/9p: Switch to wait_event_killable()
    - scsi: qla2xxx: Suppress a kernel complaint in qla_init_base_qpair()
    - scsi: sd_zbc: Fix sd_zbc_read_zoned_characteristics()
    - scsi: lpfc: fix pci hot plug crash in timer management routines
    - scsi: lpfc: fix pci hot plug crash in list_add call
    - scsi: lpfc: Fix crash receiving ELS while detaching driver
    - scsi: lpfc: Fix FCP hba_wqidx assignment
    - scsi: lpfc: Fix oops if nvmet_fc_register_targetport fails
    - iscsi-target: Make TASK_REASSIGN use proper se_cmd->cmd_kref
    - iscsi-target: Fix non-immediate TMR reference leak
    - target: fix null pointer regression in core_tmr_drain_tmr_list
    - target: fix buffer offset in core_scsi3_pri_read_full_status
    - target: Fix QUEUE_FULL + SCSI task attribute handling
    - target: Fix caw_sem leak in transport_generic_request_failure
    - target: Fix quiese during transport_write_pending_qf endless loop
    - target: Avoid early CMD_T_PRE_EXECUTE failures during ABORT_TASK
    - mtd: Avoid probe failures when mtd->dbg.dfs_dir is invalid
    - mtd: nand: Export nand_reset() symbol
    - mtd: nand: atmel: Actually use the PM ops
    - mtd: nand: omap2: Fix subpage write
    - mtd: nand: Fix writing mtdoops to nand flash.
    - mtd: nand: mtk: fix infinite ECC decode IRQ issue
    - mailbox: bcm-flexrm-mailbox: Fix FlexRM ring flush sequence
    - p54: don't unregister leds when they are not initialized
    - block: Fix a race between blk_cleanup_queue() and timeout handling
    - raid1: prevent freeze_array/wait_all_barriers deadlock
    - genirq: Track whether the trigger type has been set
    - irqchip/gic-v3: Fix ppi-partitions lookup
    - lockd: double unregister of inetaddr notifiers
    - KVM: PPC: Book3S HV: Don't call real-mode XICS hypercall handlers if not
      enabled
    - KVM: nVMX: set IDTR and GDTR limits when loading L1 host state
    - KVM: SVM: obey guest PAT
    - kvm: vmx: Reinstate support for CPUs without virtual NMI
    - dax: fix PMD faults on zero-length files
    - dax: fix general protection fault in dax_alloc_inode
    - SUNRPC: Fix tracepoint storage issues with svc_recv and svc_rqst_status
    - clk: ti: dra7-atl-clock: fix child-node lookups
    - libnvdimm, dimm: clear 'locked' status on successful DIMM enable
    - libnvdimm, pfn: make 'resource' attribute only readable by root
    - libnvdimm, namespace: fix label initialization to use valid seq numbers
    - libnvdimm, region : make 'resource' attribute only readable by root
    - libnvdimm, namespace: make 'resource' attribute only readable by root
    - svcrdma: Preserve CB send buffer across retransmits
    - IB/srpt: Do not accept invalid initiator port names
    - IB/cm: Fix memory corruption in handling CM request
    - IB/hfi1: Fix incorrect available receive user context count
    - IB/srp: Avoid that a cable pull can trigger a kernel crash
    - IB/core: Avoid crash on pkey enforcement failed in received MADs
    - IB/core: Only maintain real QPs in the security lists
    - NFC: fix device-allocation error return
    - spi-nor: intel-spi: Fix broken software sequencing codes
    - i40e: Use smp_rmb rather than read_barrier_depends
    - igb: Use smp_rmb rather than read_barrier_depends
    - igbvf: Use smp_rmb rather than read_barrier_depends
    - ixgbevf: Use smp_rmb rather than read_barrier_depends
    - i40evf: Use smp_rmb rather than read_barrier_depends
    - fm10k: Use smp_rmb rather than read_barrier_depends
    - ixgbe: Fix skb list corruption on Power systems
    - parisc: Fix validity check of pointer size argument in new CAS
      implementation
    - powerpc: Fix boot on BOOK3S_32 with CONFIG_STRICT_KERNEL_RWX
    - powerpc/mm/radix: Fix crashes on Power9 DD1 with radix MMU and STRICT_RWX
    - powerpc/perf/imc: Use cpu_to_node() not topology_physical_package_id()
    - powerpc/signal: Properly handle return value from uprobe_deny_signal()
    - powerpc/64s: Fix masking of SRR1 bits on instruction fault
    - powerpc/64s/radix: Fix 128TB-512TB virtual address boundary case allocation
    - powerpc/64s/hash: Fix 512T hint detection to use >= 128T
    - powerpc/64s/hash: Fix 128TB-512TB virtual address boundary case allocation
    - powerpc/64s/hash: Fix fork() with 512TB process address space
    - powerpc/64s/hash: Allow MAP_FIXED allocations to cross 128TB boundary
    - media: Don't do DMA on stack for firmware upload in the AS102 driver
    - media: rc: check for integer overflow
    - media: rc: nec decoder should not send both repeat and keycode
    - cx231xx-cards: fix NULL-deref on missing association descriptor
    - media: v4l2-ctrl: Fix flags field on Control events
    - media: venus: fix wrong size on dma_free
    - media: venus: venc: fix bytesused v4l2_plane field
    - media: venus: reimplement decoder stop command
    - ARM64: dts: meson-gxl: Add alternate ARM Trusted Firmware reserved memory
      zone
    - iwlwifi: fix wrong struct for a000 device
    - iwlwifi: add a new a000 device
    - iwlwifi: pcie: sort IDs for the 9000 series for easier comparisons
    - iwlwifi: add new cards for a000 series
    - iwlwifi: add new cards for 8265 series
    - iwlwifi: add new cards for 8260 series
    - iwlwifi: fix PCI IDs and configuration mapping for 9000 series
    - iwlwifi: mvm: support version 7 of the SCAN_REQ_UMAC FW command
    - e1000e: Fix error path in link detection
    - e1000e: Fix return value test
    - e1000e: Separate signaling for link check/link up
    - e1000e: Avoid receiver overrun interrupt bursts
    - e1000e: fix buffer overrun while the I219 is processing DMA transactions
    - Linux 4.14.3
  * Miscellaneous Ubuntu changes
    - SAUCE: s390/topology: don't inline cpu_to_node
    - SAUCE: (noup) Update spl to 0.7.3-1ubuntu1, zfs to 0.7.3-1ubuntu1

linux-azure-edge (4.14.0-1001.1) xenial; urgency=low

  * linux-azure-edge: 4.14.0-1001.1 -proposed tracker (LP: #1737597)

  * linux-azure-edge: rebase to 4.14 (LP: #1737595)
    - [Config] updateconfigs after rebase to Ubuntu-4.14.0-10.12

  [ Ubuntu: 4.14.0-10.12 ]

  * linux: 4.14.0-10.12 -proposed tracker (LP: #1734901)
  * Miscellaneous Ubuntu changes
    - SAUCE: Enable the ACPI kernel debugger and acpidbg tool
    - [Packaging] Include arch/arm64/kernel/ftrace-mod.o in headers package

  [ Ubuntu: 4.14.0-9.11 ]

  * linux: 4.14.0-9.11 -proposed tracker (LP: #1734728)
  * Miscellaneous Ubuntu changes
    - Revert "UBUNTU: SAUCE: (noup) Update spl to 0.7.3-1ubuntu1, zfs to
      0.7.3-1ubuntu1"

  [ Ubuntu: 4.14.0-8.10 ]

  * linux: 4.14.0-8.10 -proposed tracker (LP: #1734695)
  * Bionic update to v4.14.2 stable release (LP: #1734694)
    - bio: ensure __bio_clone_fast copies bi_partno
    - af_netlink: ensure that NLMSG_DONE never fails in dumps
    - vxlan: fix the issue that neigh proxy blocks all icmpv6 packets
    - net: cdc_ncm: GetNtbFormat endian fix
    - fealnx: Fix building error on MIPS
    - net/sctp: Always set scope_id in sctp_inet6_skb_msgname
    - ima: do not update security.ima if appraisal status is not INTEGRITY_PASS
    - serial: omap: Fix EFR write on RTS deassertion
    - serial: 8250_fintek: Fix finding base_port with activated SuperIO
    - tpm-dev-common: Reject too short writes
    - rcu: Fix up pending cbs check in rcu_prepare_for_idle
    - mm/pagewalk.c: report holes in hugetlb ranges
    - ocfs2: fix cluster hang after a node dies
    - ocfs2: should wait dio before inode lock in ocfs2_setattr()
    - ipmi: fix unsigned long underflow
    - mm/page_alloc.c: broken deferred calculation
    - mm/page_ext.c: check if page_ext is not prepared
    - coda: fix 'kernel memory exposure attempt' in fsync
    - ipmi: Prefer ACPI system interfaces over SMBIOS ones
    - Linux 4.14.2
  * Bionic update to v4.14.1 stable release (LP: #1734693)
    - EDAC, sb_edac: Don't create a second memory controller if HA1 is not present
    - dmaengine: dmatest: warn user when dma test times out
    - media: imon: Fix null-ptr-deref in imon_probe
    - media: dib0700: fix invalid dvb_detach argument
    - crypto: dh - Fix double free of ctx->p
    - crypto: dh - Don't permit 'p' to be 0
    - crypto: dh - Don't permit 'key' or 'g' size longer than 'p'
    - crypto: brcm - Explicity ACK mailbox message
    - USB: early: Use new USB product ID and strings for DbC device
    - USB: usbfs: compute urb->actual_length for isochronous
    - USB: Add delay-init quirk for Corsair K70 LUX keyboards
    - usb: gadget: f_fs: Fix use-after-free in ffs_free_inst
    - USB: serial: metro-usb: stop I/O after failed open
    - USB: serial: Change DbC debug device binding ID
    - USB: serial: qcserial: add pid/vid for Sierra Wireless EM7355 fw update
    - USB: serial: garmin_gps: fix I/O after failed probe and remove
    - USB: serial: garmin_gps: fix memory leak on probe errors
    - selftests/x86/protection_keys: Fix syscall NR redefinition warnings
    - x86/MCE/AMD: Always give panic severity for UC errors in kernel context
    - platform/x86: peaq-wmi: Add DMI check before binding to the WMI interface
    - platform/x86: peaq_wmi: Fix missing terminating entry for peaq_dmi_table
    - HID: cp2112: add HIDRAW dependency
    - HID: wacom: generic: Recognize WACOM_HID_WD_PEN as a type of pen collection
    - rpmsg: glink: Add missing MODULE_LICENSE
    - staging: wilc1000: Fix bssid buffer offset in Txq
    - staging: sm750fb: Fix parameter mistake in poke32
    - staging: ccree: fix 64 bit scatter/gather DMA ops
    - staging: greybus: spilib: fix use-after-free after deregistration
    - staging: rtl8188eu: Revert 4 commits breaking ARP
    - spi: fix use-after-free at controller deregistration
    - sparc32: Add cmpxchg64().
    - sparc64: mmu_context: Add missing include files
    - sparc64: Fix page table walk for PUD hugepages
    - Linux 4.14.1
  * Set PANIC_TIMEOUT=10 on Power Systems (LP: #1730660)
    - [Config]: Set PANIC_TIMEOUT=10 on ppc64el
  * enable CONFIG_SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH easily confuse users
    (LP: #1732627)
    - [Config] CONFIG_SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH=n
  * Miscellaneous Ubuntu changes
    - SAUCE: (noup) Update spl to 0.7.3-1ubuntu1, zfs to 0.7.3-1ubuntu1

  [ Ubuntu: 4.14.0-7.9 ]

  * Miscellaneous Ubuntu changes
    - SAUCE: apparmor: add base infastructure for socket mediation
    - SAUCE: apparmor: af_unix mediation
    - SAUCE: LSM stacking: procfs: add smack subdir to attrs
    - SAUCE: LSM stacking: LSM: manage credential security blobs
    - SAUCE: LSM stacking: LSM: Manage file security blobs
    - SAUCE: LSM stacking: LSM: manage task security blobs
    - SAUCE: LSM stacking: LSM: Infrastructure management of the remaining blobs
    - SAUCE: LSM stacking: LSM: general but not extreme module stacking
    - SAUCE: LSM stacking: LSM: Complete task_alloc hook
    - SAUCE: LSM stacking: fixup procsfs: add smack subdir to attrs
    - SAUCE: LSM stacking: fixup initialize task->security
    - SAUCE: LSM stacking: fixup: alloc_task_ctx is dead code
    - SAUCE: LSM stacking: add support for stacking getpeersec_stream
    - SAUCE: LSM stacking: add stacking support to apparmor network hooks
    - SAUCE: LSM stacking: fixup apparmor stacking enablement
    - SAUCE: LSM stacking: fixup stacking kconfig
    - SAUCE: LSM stacking: allow selecting multiple LSMs using kernel boot params
    - SAUCE: LSM stacking: provide prctl interface for setting context
    - SAUCE: LSM stacking: inherit current display LSM
    - SAUCE: LSM stacking: keep an index for each registered LSM
    - SAUCE: LSM stacking: verify display LSM
    - SAUCE: LSM stacking: provide a way to specify the default display lsm
    - SAUCE: LSM stacking: make sure LSM blob align on 64 bit boundaries
    - SAUCE: LSM stacking: add /proc/<pid>/attr/display_lsm
    - SAUCE: LSM stacking: add Kconfig to set default display LSM
    - SAUCE: LSM stacking: add configs for LSM stacking
    - SAUCE: LSM stacking: check for invalid zero sized writes
    - [Config] Run updateconfigs after merging LSM stacking
    - [Config] CONFIG_AMD_MEM_ENCRYPT=y
  * Rebase to v4.14

  [ Ubuntu: 4.14.0-6.8 ]

  * Miscellaneous Ubuntu changes
    - SAUCE: add workarounds to enable ZFS for 4.14
  * Rebase to v4.14-rc8

  [ Ubuntu: 4.14.0-5.7 ]

  * Miscellaneous Ubuntu changes
    - [Debian] Fix invocation of dh_prep for dbgsym packages

  [ Ubuntu: 4.14.0-4.5 ]

  * Miscellaneous Ubuntu changes
    - [Packaging] virtualbox -- reduce in kernel module versions
    - vbox-update: Fix up KERN_DIR definitions
    - ubuntu: vbox -- update to 5.2.0-dfsg-2
    - [Config] CONFIG_AMD_MEM_ENCRYPT=n
  * Rebase to v4.14-rc7

  [ Ubuntu: 4.14.0-3.4 ]

  * Touchpad and TrackPoint Dose Not Work on Lenovo X1C6 and X280 (LP: #1723986)
    - SAUCE: Input: synaptics-rmi4 - RMI4 can also use SMBUS version 3
    - SAUCE: Input: synaptics - Lenovo X1 Carbon 5 should use SMBUS/RMI
    - SAUCE: Input: synaptics - add Intertouch support on X1 Carbon 6th and X280
  * powerpc/64s: Add workaround for P9 vector CI load issuenext (LP: #1721070)
    - powerpc/64s: Add workaround for P9 vector CI load issue
  * Miscellaneous Ubuntu changes
    - SAUCE: staging: vboxvideo: Fix reporting invalid suggested-offset-properties
    - [Config] CONFIG_DRM_VBOXVIDEO=m
    - SAUCE: Import aufs driver
    - [Config] Enable aufs
    - [Config] Reorder annotations file after enabling aufs
    - vbox-update: Disable imported vboxvideo module
    - ubuntu: vbox -- update to 5.1.30-dfsg-1
    - Enable vbox
    - hio: Use correct sizes when initializing ssd_index_bits* arrays
    - hio: Update io stat accounting for 4.14
    - Enable hio
  * Rebase to v4.14-rc5
  * Rebase to v4.14-rc6

  [ Ubuntu: 4.14.0-2.3 ]

  * [Bug] USB controller failed to respond on Denverton after loading
    intel_th_pci module (LP: #1715833)
    - SAUCE: PCI: Disable broken RTIT_BAR of Intel TH
  * CONFIG_DEBUG_FS is not enabled by "make zfcpdump_defconfig" with Ubuntu
    17.10 (kernel 4.13) (LP: #1719290)
    - SAUCE: s390: update zfcpdump_defconfig
  * Add installer support for Broadcom BCM573xx network drivers. (LP: #1720466)
    - d-i: Add bnxt_en to nic-modules.
  * Miscellaneous Ubuntu changes
    - [Config] Update annotations for 4.14-rc2
  * Rebase to v4.14-rc3
  * Rebase to v4.14-rc4

  [ Ubuntu: 4.14.0-1.2 ]

  * [Bug] USB 3.1 Gen2 works as 5Gbps (LP: #1720045)
    - xhci: set missing SuperSpeedPlus Link Protocol bit in roothub descriptor
  * Please make linux-libc-dev Provide: aufs-dev (LP: #1716091)
    - [Packaging] Add aufs-dev to the Provides: for linux-libc-dev
  * Upgrade to 4.13.0-11.12 in artful amd64 VM breaks display on wayland
    (LP: #1718679)
    - [Config] CONFIG_DRM_VBOXVIDEO=n
  * ipmmu-vmsa driver breaks arm64 boots (LP: #1718734)
    - [Config] Disable CONFIG_IPMMU_VMSA on arm64
  * autopkgtest profile fails to build on armhf (LP: #1717920)
    - [Packaging] autopkgtest -- disable d-i when dropping flavours
  * Miscellaneous Ubuntu changes
    - [Config] CONFIG_I2C_XLP9XX=m
    - [Packaging] Use SRCPKGNAME rather than hard-coding the source package name
  * Rebase to v4.14-rc2

  [ Ubuntu: 4.14.0-0.1 ]

  * Miscellaneous Ubuntu changes
    - Disable vbox build
    - Disable hio build
    - Disable zfs build
  * Rebase to v4.14-rc1

linux-azure-edge (4.14.0-1000.0) xenial; urgency=low

  * Empty entry.

Date: 2018-01-09 17:11:13.438548+00:00
Changed-By: Marcelo Cerri <marcelo.cerri at canonical.com>
Signed-By: Steve Langasek <steve.langasek at canonical.com>
https://launchpad.net/ubuntu/+source/linux-azure-edge/4.14.0-1003.3
-------------- next part --------------
Sorry, changesfile not available.


More information about the Xenial-changes mailing list