UbuntuUpdates.org

Package "linux-hwe"

This package belongs to a PPA: Canonical Kernel Team

Name: linux-hwe

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Linux kernel buildinfo for version 5.3.0 on 32 bit x86 SMP
  • Linux kernel buildinfo for version 5.3.0 on 32 bit x86 SMP
  • Linux kernel version specific cloud tools for version 5.3.0-67
  • Linux kernel version specific cloud tools for version 5.3.0-67

Latest version: 5.3.0-67.61
Release: bionic (18.04)
Level: base
Repository: main

Links



Other versions of "linux-hwe" in Bionic

Repository Area Version
security main 5.3.0-67.61
updates main 5.3.0-67.61

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.3.0-67.61 2020-09-05 03:08:43 UTC

 linux-hwe (5.3.0-67.61) bionic; urgency=medium
 .
   * bionic/linux-hwe: 5.3.0-67.61 -proposed tracker (LP: #1894284)
 .
   * CVE-2020-14386
     - SAUCE: net/packet: fix overflow in tpacket_rcv
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] update helper scripts

Source diff to previous version
1786013 Packaging resync
CVE-2020-14386 af_packet memory corruption

Version: 5.3.0-66.60 2020-08-11 13:08:49 UTC

 linux-hwe (5.3.0-66.60) bionic; urgency=medium
 .
   * bionic/linux-hwe: 5.3.0-66.60 -proposed tracker (LP: #1891053)
 .
   * ipsec: policy priority management is broken (LP: #1890796)
     - xfrm: policy: match with both mark and mask on user interfaces
 .
   * cgroup refcount is bogus when cgroup_sk_alloc is disabled (LP: #1886860)
     - cgroup: fix cgroup_sk_alloc() for sk_clone_lock()
     - cgroup: Fix sock_cgroup_data on big-endian.

Source diff to previous version

Version: 5.3.0-65.59 2020-07-30 15:08:34 UTC

 linux-hwe (5.3.0-65.59) bionic; urgency=medium
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] update variants
     - [Packaging] update variants
     - [Packaging] update update.conf
     - update dkms package versions
     - [Packaging] update helper scripts
 .
   * Eoan update: upstream stable patchset 2020-07-21 (LP: #1888429)
     - KVM: s390: reduce number of IO pins to 1
     - spi: spi-fsl-dspi: Adding shutdown hook
     - spi: spi-fsl-dspi: Fix lockup if device is removed during SPI transfer
     - regmap: fix alignment issue
     - ARM: dts: omap4-droid4: Fix spi configuration and increase rate
     - drm/tegra: hub: Do not enable orphaned window group
     - gpu: host1x: Detach driver on unregister
     - spi: spidev: fix a race between spidev_release and spidev_remove
     - spi: spidev: fix a potential use-after-free in spidev_release()
     - ixgbe: protect ring accesses with READ- and WRITE_ONCE
     - i40e: protect ring accesses with READ- and WRITE_ONCE
     - drm: panel-orientation-quirks: Add quirk for Asus T101HA panel
     - drm: panel-orientation-quirks: Use generic orientation-data for Acer S1003
     - s390/kasan: fix early pgm check handler execution
     - cifs: update ctime and mtime during truncate
     - ARM: imx6: add missing put_device() call in imx6q_suspend_init()
     - scsi: mptscsih: Fix read sense data size
     - usb: dwc3: pci: Fix reference count leak in dwc3_pci_resume_work
     - block: release bip in a right way in error path
     - nvme-rdma: assign completion vector correctly
     - x86/entry: Increase entry_stack size to a full page
     - net: qrtr: Fix an out of bounds read qrtr_endpoint_post()
     - drm/mediatek: Check plane visibility in atomic_update
     - net: cxgb4: fix return error value in t4_prep_fw
     - smsc95xx: check return value of smsc95xx_reset
     - smsc95xx: avoid memory leak in smsc95xx_bind
     - net: hns3: fix use-after-free when doing self test
     - ALSA: compress: fix partial_drain completion state
     - arm64: kgdb: Fix single-step exception handling oops
     - nbd: Fix memory leak in nbd_add_socket
     - cxgb4: fix all-mask IP address comparison
     - bnxt_en: fix NULL dereference in case SR-IOV configuration fails
     - net: macb: mark device wake capable when "magic-packet" property present
     - mlxsw: spectrum_router: Remove inappropriate usage of WARN_ON()
     - ALSA: opl3: fix infoleak in opl3
     - ALSA: hda - let hs_mic be picked ahead of hp_mic
     - ALSA: usb-audio: add quirk for MacroSilicon MS2109
     - KVM: arm64: Fix definition of PAGE_HYP_DEVICE
     - KVM: arm64: Stop clobbering x0 for HVC_SOFT_RESTART
     - KVM: x86: bit 8 of non-leaf PDPEs is not reserved
     - KVM: x86: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode
     - KVM: x86: Mark CR4.TSD as being possibly owned by the guest
     - kallsyms: Refactor kallsyms_show_value() to take cred
     - module: Refactor section attr into bin attribute
     - module: Do not expose section addresses to non-CAP_SYSLOG
     - kprobes: Do not expose probe addresses to non-CAP_SYSLOG
     - bpf: Check correct cred for CAP_SYSLOG in bpf_dump_raw_ok()
     - Revert "ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb"
     - btrfs: fix fatal extent_buffer readahead vs releasepage race
     - drm/radeon: fix double free
     - dm: use noio when sending kobject event
     - ARC: entry: fix potential EFA clobber when TIF_SYSCALL_TRACE
     - ARC: elf: use right ELF_ARCH
     - s390/mm: fix huge pte soft dirty copying
     - perf/x86/rapl: Move RAPL support to common x86 code
     - perf/x86/rapl: Fix RAPL config variable bug
     - [Packaging] module intel-rapl-perf rename
     - drm: mcde: Fix display initialization problem
     - ASoC: SOF: Intel: add PCI ID for CometLake-S
     - ALSA: hda: Intel: add missing PCI IDs for ICL-H, TGL-H and EKL
     - net: ethernet: mvneta: Fix Serdes configuration for SoCs without comphy
     - net: ethernet: mvneta: Add 2500BaseX support for SoCs without comphy
     - ibmvnic: continue to init in CRQ reset returns H_CLOSED
     - powerpc/kvm/book3s64: Fix kernel crash with nested kvm & DEBUG_VIRTUAL
     - iommu/vt-d: Don't apply gfx quirks to untrusted devices
     - sched/core: Check cpus_mask, not cpus_ptr in __set_cpus_allowed_ptr(), to
       fix mask corruption
     - gpio: pca953x: Override IRQ for one of the expanders on Galileo Gen 2
     - gpio: pca953x: Fix GPIO resource leak on Intel Galileo Gen 2
     - bpf, sockmap: RCU splat with redirect and strparser error or TLS
     - bpf, sockmap: RCU dereferenced psock may be used outside RCU block
     - netfilter: ipset: call ip_set_free() instead of kfree()
     - net: mvneta: fix use of state->speed
     - net: dsa: microchip: set the correct number of ports
     - netfilter: conntrack: refetch conntrack after nf_conntrack_update()
     - perf report TUI: Fix segmentation fault in perf_evsel__hists_browse()
     - perf intel-pt: Fix PEBS sample for XMM registers
     - net: hns3: add a missing uninit debugfs when unload driver
     - RDMA/siw: Fix reporting vendor_part_id
     - IB/mlx5: Fix 50G per lane indication
     - net/mlx5: Fix eeprom support for SFP module
     - net/mlx5e: Fix 50G per lane indication
     - net: macb: fix wakeup test in runtime suspend/resume routines
     - net: macb: fix call to pm_runtime in the suspend/resume functions
     - mlxsw: pci: Fix use-after-free in case of failed devlink reload
     - IB/hfi1: Do not destroy hfi1_wq when the device is shut down
     - IB/hfi1: Do not destroy link_wq when the device is shut down
     - ALSA: usb-audio: Add implicit feedback quirk for RTX6001
     - ALSA: hda/realtek - Fix Lenovo Thinkpad X1 Carbon 7th quirk subdevice id
     - ALSA: hda/realtek - Enable audio jacks of Acer vCopperbox with ALC269VC
     - ALSA: hda/realtek: Enable headset mic of Acer C20-820 with ALC269VC
     - ALSA: hda/realtek: Enable headset mic of Acer Veriton N4660G

Source diff to previous version
1786013 Packaging resync
1888429 Eoan update: upstream stable patchset 2020-07-21
1886744 Enable Quectel EG95 LTE modem [2c7c:0195]
1867916 Regression in kernel 4.15.0-91 causes kernel panic with Bcache
1887838 Eoan update: upstream stable patchset 2020-07-16
1887573 Eoan update: upstream stable patchset 2020-07-14
1887188 Eoan update: upstream stable patchset 2020-07-10
1886568 Eoan update: upstream stable patchset 2020-07-06
1867983 Computer is frozen after suspend

Version: 5.3.0-64.58~18.04.1 2020-07-14 08:08:02 UTC

 linux-hwe (5.3.0-64.58~18.04.1) bionic; urgency=medium
 .
   * bionic/linux-hwe: 5.3.0-64.58~18.04.1 -proposed tracker (LP: #1887087)
 .
   [ Ubuntu: 5.3.0-64.58 ]
 .
   * eoan/linux: 5.3.0-64.58 -proposed tracker (LP: #1887088)
   * linux 4.15.0-109-generic network DoS regression vs -108 (LP: #1886668)
     - SAUCE: Revert "netprio_cgroup: Fix unlimited memory leak of v2 cgroups"
 .

Source diff to previous version
1886668 linux 4.15.0-109-generic network DoS regression vs -108

Version: 5.3.0-63.57~18.04.1 2020-07-03 14:09:00 UTC

 linux-hwe (5.3.0-63.57~18.04.1) bionic; urgency=medium
 .
   * bionic/linux-hwe: 5.3.0-63.57~18.04.1 -proposed tracker (LP: #1885494)
 .
   [ Ubuntu: 5.3.0-63.57 ]
 .
   * eoan/linux: 5.3.0-63.57 -proposed tracker (LP: #1885495)
   * seccomp_bpf fails on powerpc (LP: #1885757)
     - SAUCE: selftests/seccomp: fix ptrace tests on powerpc
   * The thread level parallelism would be a bottleneck when searching for the
     shared pmd by using hugetlbfs (LP: #1882039)
     - hugetlbfs: take read_lock on i_mmap for PMD sharing
   * Eoan update: upstream stable patchset 2020-06-30 (LP: #1885775)
     - ipv6: fix IPV6_ADDRFORM operation logic
     - net_failover: fixed rollback in net_failover_open()
     - bridge: Avoid infinite loop when suppressing NS messages with invalid
       options
     - vxlan: Avoid infinite loop when suppressing NS messages with invalid options
     - tun: correct header offsets in napi frags mode
     - Input: mms114 - fix handling of mms345l
     - ARM: 8977/1: ptrace: Fix mask for thumb breakpoint hook
     - sched/fair: Don't NUMA balance for kthreads
     - Input: synaptics - add a second working PNP_ID for Lenovo T470s
     - drivers/net/ibmvnic: Update VNIC protocol version reporting
     - powerpc/xive: Clear the page tables for the ESB IO mapping
     - ath9k_htc: Silence undersized packet warnings
     - RDMA/uverbs: Make the event_queue fds return POLLERR when disassociated
     - x86/cpu/amd: Make erratum #1054 a legacy erratum
     - perf probe: Accept the instance number of kretprobe event
     - mm: add kvfree_sensitive() for freeing sensitive data objects
     - aio: fix async fsync creds
     - x86_64: Fix jiffies ODR violation
     - x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs
     - x86/speculation: Prevent rogue cross-process SSBD shutdown
     - x86/reboot/quirks: Add MacBook6,1 reboot quirk
     - efi/efivars: Add missing kobject_put() in sysfs entry creation error path
     - ALSA: es1688: Add the missed snd_card_free()
     - ALSA: hda/realtek - add a pintbl quirk for several Lenovo machines
     - ALSA: usb-audio: Fix inconsistent card PM state after resume
     - ALSA: usb-audio: Add vendor, product and profile name for HP Thunderbolt
       Dock
     - ACPI: sysfs: Fix reference count leak in acpi_sysfs_add_hotplug_profile()
     - ACPI: CPPC: Fix reference count leak in acpi_cppc_processor_probe()
     - ACPI: GED: add support for _Exx / _Lxx handler methods
     - ACPI: PM: Avoid using power resources if there are none for D0
     - nilfs2: fix null pointer dereference at nilfs_segctor_do_construct()
     - spi: dw: Fix controller unregister order
     - spi: bcm2835aux: Fix controller unregister order
     - spi: bcm-qspi: when tx/rx buffer is NULL set to 0
     - PM: runtime: clk: Fix clk_pm_runtime_get() error path
     - crypto: cavium/nitrox - Fix 'nitrox_get_first_device()' when ndevlist is
       fully iterated
     - ALSA: pcm: disallow linking stream to itself
     - x86/{mce,mm}: Unmap the entire page if the whole page is affected and
       poisoned
     - KVM: x86: Fix APIC page invalidation race
     - KVM: x86/mmu: Consolidate "is MMIO SPTE" code
     - KVM: x86: only do L1TF workaround on affected processors
     - x86/speculation: Avoid force-disabling IBPB based on STIBP and enhanced
       IBRS.
     - x86/speculation: PR_SPEC_FORCE_DISABLE enforcement for indirect branches.
     - spi: Fix controller unregister order
     - spi: pxa2xx: Fix controller unregister order
     - spi: bcm2835: Fix controller unregister order
     - spi: pxa2xx: Fix runtime PM ref imbalance on probe error
     - crypto: virtio: Fix use-after-free in virtio_crypto_skcipher_finalize_req()
     - crypto: virtio: Fix src/dst scatterlist calculation in
       __virtio_crypto_skcipher_do_req()
     - crypto: virtio: Fix dest length calculation in
       __virtio_crypto_skcipher_do_req()
     - selftests/net: in rxtimestamp getopt_long needs terminating null entry
     - ovl: initialize error in ovl_copy_xattr
     - proc: Use new_inode not new_inode_pseudo
     - video: fbdev: w100fb: Fix a potential double free.
     - KVM: nSVM: fix condition for filtering async PF
     - KVM: nSVM: leave ASID aside in copy_vmcb_control_area
     - KVM: nVMX: Consult only the "basic" exit reason when routing nested exit
     - KVM: MIPS: Define KVM_ENTRYHI_ASID to cpu_asid_mask(&boot_cpu_data)
     - KVM: MIPS: Fix VPN2_MASK definition for variable cpu_vmbits
     - KVM: arm64: Make vcpu_cp1x() work on Big Endian hosts
     - scsi: megaraid_sas: TM command refire leads to controller firmware crash
     - ath9k: Fix use-after-free Read in ath9k_wmi_ctrl_rx
     - ath9k: Fix use-after-free Write in ath9k_htc_rx_msg
     - ath9x: Fix stack-out-of-bounds Write in ath9k_hif_usb_rx_cb
     - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb
     - Smack: slab-out-of-bounds in vsscanf
     - drm/vkms: Hold gem object while still in-use
     - mm/slub: fix a memory leak in sysfs_slab_add()
     - fat: don't allow to mount if the FAT length == 0
     - perf: Add cond_resched() to task_function_call()
     - agp/intel: Reinforce the barrier after GTT updates
     - mmc: sdhci-msm: Clear tuning done flag while hs400 tuning
     - ARM: dts: at91: sama5d2_ptc_ek: fix sdmmc0 node description
     - mmc: sdio: Fix potential NULL pointer error in mmc_sdio_init_card()
     - xen/pvcalls-back: test for errors when calling backend_connect()
     - KVM: arm64: Synchronize sysreg state on injecting an AArch32 exception
     - ACPI: GED: use correct trigger type field in _Exx / _Lxx handling
     - drm: bridge: adv7511: Extend list of audio sample rates
     - crypto: ccp -- don't "select" CONFIG_DMADEVICES
     - media: si2157: Better check for running tuner in init
     - objtool: Ignore empty alternatives
     - spi: pxa2xx: Apply CS clk quirk to BXT
     - net: atlantic: make hw_get_regs optional
     - net: ena: fix error returning in ena_com_get_has

1885757 seccomp_bpf fails on powerpc
1882039 The thread level parallelism would be a bottleneck when searching for the shared pmd by using hugetlbfs
1885775 Eoan update: upstream stable patchset 2020-06-30
1885011 Eoan update: upstream stable patchset 2020-06-24
1884296 Eoan update: upstream stable patchset 2020-06-19
1882831 Eoan update: upstream stable patchset 2020-06-09
1872757 shiftfs: O_TMPFILE reports ESTALE
1884767 shiftfs: fix btrfs regression
1884159 Update lockdown patches
1826848 ip_defrag.sh in net from ubuntu_kernel_selftests failed with 5.0 / 5.3 / 5.4 kernel
1883962 apparmor reference leak causes refcount_t overflow with af_alg_accept()
CVE-2020-10757 A flaw was found in the Linux Kernel in versions after 4.5-rc1 in the way mremap handled DAX Huge Pages. This flaw allows a local attacker with acces
CVE-2019-16089 An issue was discovered in the Linux kernel through 5.2.13. nbd_genl_status in drivers/block/nbd.c does not check the nla_nest_start_noflag return va
CVE-2019-19642 On SuperMicro X8STi-F motherboards with IPMI firmware 2.06 and BIOS 02.68, the Virtual Media feature allows OS Command Injection by authenticated att



About   -   Send Feedback to @ubuntu_updates