UbuntuUpdates.org

Package "linux-hwe"

This package belongs to a PPA: Canonical Kernel Team

Name: linux-hwe

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Linux kernel buildinfo for version 5.0.0 on 32 bit x86 SMP
  • Linux kernel buildinfo for version 5.0.0 on 32 bit x86 SMP
  • Linux kernel buildinfo for version 5.0.0 on 32 bit x86 SMP
  • Linux kernel buildinfo for version 5.0.0 on 32 bit x86 SMP

Latest version: 5.0.0-37.40~18.04.1
Release: bionic (18.04)
Level: base
Repository: main

Links

Save this URL for the latest version of "linux-hwe": https://www.ubuntuupdates.org/linux-hwe



Other versions of "linux-hwe" in Bionic

Repository Area Version
security main 5.0.0-36.39~18.04.1
updates main 5.0.0-36.39~18.04.1
proposed main 5.0.0-37.40~18.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.0.0-37.40~18.04.1 2019-11-14 16:10:44 UTC

 linux-hwe (5.0.0-37.40~18.04.1) bionic; urgency=medium
 .
   * bionic/linux-hwe: 5.0.0-37.40~18.04.1 -proposed tracker (LP: #1852250)
 .
   [ Ubuntu: 5.0.0-37.40 ]
 .
   * disco/linux: 5.0.0-37.40 -proposed tracker (LP: #1852253)
   * System hangs at early boot (LP: #1851216)
     - x86/timer: Skip PIT initialization on modern chipsets
   * drm/i915: Add support for another CMP-H PCH (LP: #1848491)
     - drm/i915/cml: Add second PCH ID for CMP
   * Some EFI systems fail to boot in efi_init() when booted via maas
     (LP: #1851810)
     - efi: efi_get_memory_map -- increase map headroom
   * seccomp: fix SECCOMP_USER_NOTIF_FLAG_CONTINUE test (LP: #1849281)
     - SAUCE: seccomp: avoid overflow in implicit constant conversion
     - SAUCE: seccomp: rework define for SECCOMP_USER_NOTIF_FLAG_CONTINUE
     - SAUCE: seccomp: fix SECCOMP_USER_NOTIF_FLAG_CONTINUE test
   * dkms artifacts may expire from the pool (LP: #1850958)
     - [Packaging] dkms -- try launchpad librarian for pool downloads
     - [Packaging] dkms -- dkms-build quieten wget verbiage
   * update ENA driver to version 2.1.0 (LP: #1850175)
     - net: ena: fix swapped parameters when calling
       ena_com_indirect_table_fill_entry
     - net: ena: fix: Free napi resources when ena_up() fails
     - net: ena: fix incorrect test of supported hash function
     - net: ena: fix return value of ena_com_config_llq_info()
     - net: ena: improve latency by disabling adaptive interrupt moderation by
       default
     - net: ena: fix ena_com_fill_hash_function() implementation
     - net: ena: add handling of llq max tx burst size
     - net: ena: ethtool: add extra properties retrieval via get_priv_flags
     - net: ena: replace free_tx/rx_ids union with single free_ids field in
       ena_ring
     - net: ena: arrange ena_probe() function variables in reverse christmas tree
     - net: ena: add newline at the end of pr_err prints
     - net: ena: documentation: update ena.txt
     - net: ena: allow automatic fallback to polling mode
     - net: ena: add support for changing max_header_size in LLQ mode
     - net: ena: optimise calculations for CQ doorbell
     - net: ena: add good checksum counter
     - net: ena: use dev_info_once instead of static variable
     - net: ena: add MAX_QUEUES_EXT get feature admin command
     - net: ena: enable negotiating larger Rx ring size
     - net: ena: make ethtool show correct current and max queue sizes
     - net: ena: allow queue allocation backoff when low on memory
     - net: ena: add ethtool function for changing io queue sizes
     - net: ena: remove inline keyword from functions in *.c
     - net: ena: update driver version from 2.0.3 to 2.1.0
     - net: ena: Fix bug where ring allocation backoff stopped too late
     - Revert "net: ena: ethtool: add extra properties retrieval via
       get_priv_flags"
     - net: ena: don't wake up tx queue when down
     - net: ena: clean up indentation issue
   * Add Intel Comet Lake ethernet support (LP: #1848555)
     - SAUCE: e1000e: Add support for Comet Lake
   * Intel Wireless AC 3168 on Eoan complaints FW error in SYNC CMD
     GEO_TX_POWER_LIMIT (LP: #1846016)
     - iwlwifi: exclude GEO SAR support for 3168
   * tsc marked unstable after entered PC10 on Intel CoffeeLake (LP: #1840239)
     - SAUCE: x86/intel: Disable HPET on Intel Coffe Lake platforms
     - SAUCE: x86/intel: Disable HPET on Intel Ice Lake platforms
   * cloudimg: no iavf/i40evf module so no network available with SR-IOV enabled
     cloud (LP: #1848481)
     - [Packaging] include iavf/i40evf in generic
   * High power consumption using 5.0.0-25-generic (LP: #1840835)
     - PCI: Add a helper to check Power Resource Requirements _PR3 existence
     - ALSA: hda: Allow HDA to be runtime suspended when dGPU is not bound to a
       driver
     - PCI: Fix missing inline for pci_pr3_present()
   * CML CPUIDs (LP: #1843794)
     - x86/cpu: Add Comet Lake to the Intel CPU models header
   * shiftfs: prevent exceeding project quotas (LP: #1849483)
     - SAUCE: shiftfs: drop CAP_SYS_RESOURCE from effective capabilities
   * shiftfs: fix fallocate() (LP: #1849482)
     - SAUCE: shiftfs: setup correct s_maxbytes limit
   * Bluetooth: hidp: Fix assumptions on the return value of hidp_send_message
     (LP: #1850443)
     - Bluetooth: hidp: Fix assumptions on the return value of hidp_send_message
   * [SRU][B/OEM-B/OEM-OSP1/D/E] UBUNTU: SAUCE: add rtl623 codec support and fix
     mic issues (LP: #1850599)
     - SAUCE: ALSA: hda/realtek - Add support for ALC623
     - SAUCE: ALSA: hda/realtek - Fix 2 front mics of codec 0x623
   * NFSv4.1: Interrupted connections cause high bandwidth RPC ping-pong between
     client and server (LP: #1828978)
     - NFSv4.1: Avoid false retries when RPC calls are interrupted
   * SUNRPC: Use after free when GSSD credentials are invalid causes oops
     (LP: #1842037)
     - SUNRPC: Clean up
     - SUNRPC: Fix a use after free when a server rejects the RPCSEC_GSS credential
   * Suppress "hid_field_extract() called with n (192) > 32!" message floods
     (LP: #1850600)
     - HID: core: reformat and reduce hid_printk macros
     - HID: core: Add printk_once variants to hid_warn() etc
     - HID: core: fix dmesg flooding if report field larger than 32bit
   * ubuntu-aufs-modified mmap_region() breaks refcounting in overlayfs/shiftfs
     error path (LP: #1850994) // CVE-2019-15794
     - SAUCE: shiftfs: Restore vm_file value when lower fs mmap fails
     - SAUCE: ovl: Restore vm_file value when lower fs mmap fails
   * s_iflags overlap prevents unprivileged overlayfs mounts (LP: #1851677)
     - SAUCE: fs: Move SB_I_NOSUID to the top of s_iflags
   * root can lift kernel lockdown (LP: #1851380)
     - SAUCE: (efi-lockdown) Really don't allow lifting lockdown from userspace
   * Disco update: upstream stable patchset 2019-11-01 (LP: #1850974)
     - panic: ensure preemption is disabled during panic()
     - f2fs: use EINVAL for superblock wit

Source diff to previous version
1851216 System hangs at early boot
1851810 Some EFI systems fail to boot in efi_init() when booted via maas
1849281 seccomp: fix SECCOMP_USER_NOTIF_FLAG_CONTINUE test
1850958 dkms artifacts may expire from the pool
1850175 update ENA driver to version 2.1.0
1848481 cloudimg: no iavf/i40evf module so no network available with SR-IOV enabled cloud
1840835 High power consumption using 5.0.0-25-generic
1843794 CML CPUIDs
1849483 shiftfs: prevent exceeding project quotas
1849482 shiftfs: fix fallocate()
1850443 Bluetooth: hidp: Fix assumptions on the return value of hidp_send_message
1850599 [SRU][B/OEM-B/OEM-OSP1/D/E] UBUNTU: SAUCE: add rtl623 codec support and fix mic issues
1828978 NFSv4.1: Interrupted connections cause high bandwidth RPC ping-pong between client and server
1842037 SUNRPC: Use after free when GSSD credentials are invalid causes oops
1850994 ubuntu-aufs-modified mmap_region() breaks refcounting in overlayfs/shiftfs error path
1851677 s_iflags overlap prevents unprivileged overlayfs mounts
1851380 root can lift kernel lockdown
1850974 Disco update: upstream stable patchset 2019-11-01
1844021 Suspend stopped working from 4.4.0-157 onwards
1850870 Disco update: upstream stable patchset 2019-10-31
CVE-2019-15794 RESERVED

Version: 5.0.0-34.36~18.04.1 2019-10-30 13:08:40 UTC

 linux-hwe (5.0.0-34.36~18.04.1) bionic; urgency=medium
 .
   * bionic/linux-hwe: 5.0.0-34.36~18.04.1 -proposed tracker (LP: #1850587)
 .
   [ Ubuntu: 5.0.0-34.36 ]
 .
   * disco/linux: -proposed tracker (LP: #1850574)
   * [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout
     setting (LP: #1849682)
     - Revert "md/raid0: avoid RAID0 data corruption due to layout confusion."
 .

Source diff to previous version
1849682 [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout setting

Version: 5.0.0-33.35~18.04.1 2019-10-23 09:08:31 UTC

 linux-hwe (5.0.0-33.35~18.04.1) bionic; urgency=medium
 .
   * bionic/linux-hwe: 5.0.0-33.35~18.04.1 -proposed tracker (LP: #1849000)
 .
   * Disco update: upstream stable patchset 2019-10-18 (LP: #1848817)
     - hwe: [Packaging] remove SOUNDWIRE modules
 .
   [ Ubuntu: 5.0.0-33.35 ]
 .
   * disco/linux: 5.0.0-33.35 -proposed tracker (LP: #1849003)
   * Disco update: upstream stable patchset 2019-10-18 (LP: #1848817)
     - tpm: use tpm_try_get_ops() in tpm-sysfs.c.
     - drm/bridge: tc358767: Increase AUX transfer length limit
     - drm/panel: simple: fix AUO g185han01 horizontal blanking
     - video: ssd1307fb: Start page range at page_offset
     - drm/stm: attach gem fence to atomic state
     - drm/panel: check failure cases in the probe func
     - drm/rockchip: Check for fast link training before enabling psr
     - drm/radeon: Fix EEH during kexec
     - gpu: drm: radeon: Fix a possible null-pointer dereference in
       radeon_connector_set_property()
     - PCI: rpaphp: Avoid a sometimes-uninitialized warning
     - ipmi_si: Only schedule continuously in the thread in maintenance mode
     - clk: qoriq: Fix -Wunused-const-variable
     - clk: sunxi-ng: v3s: add missing clock slices for MMC2 module clocks
     - drm/amd/display: fix issue where 252-255 values are clipped
     - drm/amd/display: reprogram VM config when system resume
     - powerpc/powernv/ioda2: Allocate TCE table levels on demand for default DMA
       window
     - clk: actions: Don't reference clk_init_data after registration
     - clk: sirf: Don't reference clk_init_data after registration
     - clk: sprd: Don't reference clk_init_data after registration
     - clk: zx296718: Don't reference clk_init_data after registration
     - powerpc/xmon: Check for HV mode when dumping XIVE info from OPAL
     - powerpc/rtas: use device model APIs and serialization during LPM
     - powerpc/futex: Fix warning: 'oldval' may be used uninitialized in this
       function
     - powerpc/pseries/mobility: use cond_resched when updating device tree
     - pinctrl: tegra: Fix write barrier placement in pmx_writel
     - powerpc/eeh: Clear stale EEH_DEV_NO_HANDLER flag
     - vfio_pci: Restore original state on release
     - drm/nouveau/volt: Fix for some cards having 0 maximum voltage
     - pinctrl: amd: disable spurious-firing GPIO IRQs
     - clk: renesas: mstp: Set GENPD_FLAG_ALWAYS_ON for clock domain
     - clk: renesas: cpg-mssr: Set GENPD_FLAG_ALWAYS_ON for clock domain
     - drm/amd/display: support spdif
     - drm/amdgpu/si: fix ASIC tests
     - powerpc/64s/exception: machine check use correct cfar for late handler
     - pstore: fs superblock limits
     - clk: qcom: gcc-sdm845: Use floor ops for sdcc clks
     - powerpc/pseries: correctly track irq state in default idle
     - pinctrl: meson-gxbb: Fix wrong pinning definition for uart_c
     - arm64: fix unreachable code issue with cmpxchg
     - clk: at91: select parent if main oscillator or bypass is enabled
     - powerpc: dump kernel log before carrying out fadump or kdump
     - mbox: qcom: add APCS child device for QCS404
     - clk: sprd: add missing kfree
     - scsi: core: Reduce memory required for SCSI logging
     - dma-buf/sw_sync: Synchronize signal vs syncpt free
     - ext4: fix potential use after free after remounting with noblock_validity
     - MIPS: Ingenic: Disable broken BTB lookup optimization.
     - MIPS: tlbex: Explicitly cast _PAGE_NO_EXEC to a boolean
     - i2c-cht-wc: Fix lockdep warning
     - PCI: tegra: Fix OF node reference leak
     - HID: wacom: Fix several minor compiler warnings
     - livepatch: Nullify obj->mod in klp_module_coming()'s error path
     - ARM: 8898/1: mm: Don't treat faults reported from cache maintenance as
       writes
     - soundwire: intel: fix channel number reported by hardware
     - ARM: 8875/1: Kconfig: default to AEABI w/ Clang
     - rtc: snvs: fix possible race condition
     - rtc: pcf85363/pcf85263: fix regmap error in set_time
     - HID: apple: Fix stuck function keys when using FN
     - PCI: rockchip: Propagate errors for optional regulators
     - PCI: histb: Propagate errors for optional regulators
     - PCI: imx6: Propagate errors for optional regulators
     - PCI: exynos: Propagate errors for optional PHYs
     - security: smack: Fix possible null-pointer dereferences in
       smack_socket_sock_rcv_skb()
     - ARM: 8903/1: ensure that usable memory in bank 0 starts from a PMD-aligned
       address
     - fat: work around race with userspace's read via blockdev while mounting
     - pktcdvd: remove warning on attempting to register non-passthrough dev
     - hypfs: Fix error number left in struct pointer member
     - crypto: hisilicon - Fix double free in sec_free_hw_sgl()
     - kbuild: clean compressed initramfs image
     - ocfs2: wait for recovering done after direct unlock request
     - kmemleak: increase DEBUG_KMEMLEAK_EARLY_LOG_SIZE default to 16K
     - arm64: consider stack randomization for mmap base only when necessary
     - mips: properly account for stack randomization and stack guard gap
     - arm: properly account for stack randomization and stack guard gap
     - arm: use STACK_TOP when computing mmap base address
     - bpf: fix use after free in prog symbol exposure
     - cxgb4:Fix out-of-bounds MSI-X info array access
     - erspan: remove the incorrect mtu limit for erspan
     - hso: fix NULL-deref on tty open
     - ipv6: drop incoming packets having a v4mapped source address
     - ipv6: Handle missing host route in __ipv6_ifa_notify
     - net: ipv4: avoid mixed n_redirects and rate_tokens usage
     - net: qlogic: Fix memory leak in ql_alloc_large_buffers
     - net: Unpublish sk from sk_reuseport_cb before call_rcu
     - nfc: fix memory leak in llcp_sock_bind()
     - qmi_wwan: add support for Cinterion CLS8 devices
     - rxrpc: Fix rxrpc_recvmsg tracepoint
     - sch_dsmark: fix potential NULL deref in dsmark_init()
     - udp: fix gs

Source diff to previous version
1848817 Disco update: upstream stable patchset 2019-10-18
1843775 [CML-U] Comet lake platform need ISH driver support
1847773 md raid0/linear doesn't show error state if an array member is removed and allows successful writes
1847744 seccomp: add SECCOMP_USER_NOTIF_FLAG_CONTINUE\t
1848492 Change Config Option CONFIG_MEMORY_HOTPLUG_DEFAULT_ONLINE for s390x from yes to no
1847641 fdatasync performance regression on 5.0 kernels
1840043 bcache: Performance degradation when querying priority_stats
1848236 Add installer support for iwlmvm adapters
1847590 Check for CPU Measurement sampling
1848367 Disco update: upstream stable patchset 2019-10-16
1795292 ELAN469D touch pad not working
1837688 Ubuntu won't boot on Dell Inspiron 7375
1846272 overlayfs: allow with shiftfs as underlay
1844186 [regression] NoNewPrivileges incompatible with Apparmor
1847118 PM / hibernate: fix potential memory corruption
1846470 xHCI on AMD Stoney Ridge cannot detect USB 2.0 or 1.1 devices.
1847663 Disco update: upstream stable patchset 2019-10-10
1846277 Disco update: upstream stable patchset 2019-10-01
CVE-2019-17666 rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer
CVE-2019-17056 llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that
CVE-2019-17055 base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which m
CVE-2019-17054 atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means th
CVE-2019-17053 ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, whic
CVE-2019-17052 ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unpr
CVE-2019-15098 drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descr

Version: 5.0.0-32.34~18.04.2 2019-10-10 14:09:02 UTC

 linux-hwe (5.0.0-32.34~18.04.2) bionic; urgency=medium
 .
   * bionic/linux-hwe: 5.0.0-32.34~18.04.2 -proposed tracker (LP: #1846092)
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] update helper scripts
 .
   [ Ubuntu: 5.0.0-32.34 ]
 .
   * disco/linux: 5.0.0-32.34 -proposed tracker (LP: #1846097)
   * CVE-2019-14814 // CVE-2019-14815 // CVE-2019-14816
     - mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings
   * CVE-2019-15505
     - media: technisat-usb2: break out of loop at end of buffer
   * CVE-2019-2181
     - binder: check for overflow when alloc for security context
   * Support Hi1620 zip hw accelerator (LP: #1845355)
     - [Config] Enable HiSilicon QM/ZIP as modules
     - crypto: hisilicon - add queue management driver for HiSilicon QM module
     - crypto: hisilicon - add hardware SGL support
     - crypto: hisilicon - add HiSilicon ZIP accelerator support
     - crypto: hisilicon - add SRIOV support for ZIP
     - Documentation: Add debugfs doc for hisi_zip
     - crypto: hisilicon - add debugfs for ZIP and QM
     - MAINTAINERS: add maintainer for HiSilicon QM and ZIP controller driver
     - crypto: hisilicon - fix kbuild warnings
     - crypto: hisilicon - add dependency for CRYPTO_DEV_HISI_ZIP
     - crypto: hisilicon - init curr_sgl_dma to fix compile warning
     - crypto: hisilicon - add missing single_release
     - crypto: hisilicon - fix error handle in hisi_zip_create_req_q
     - crypto: hisilicon - Fix warning on printing %p with dma_addr_t
     - crypto: hisilicon - Fix return value check in hisi_zip_acompress()
     - crypto: hisilicon - avoid unused function warning
   * xfrm interface: several kernel panic (LP: #1836261)
     - xfrm interface: fix memory leak on creation
     - xfrm interface: avoid corruption on changelink
     - xfrm interface: ifname may be wrong in logs
     - xfrm interface: fix list corruption for x-netns
     - xfrm interface: fix management of phydev
   * shiftfs: drop entries from cache on unlink (LP: #1841977)
     - SAUCE: shiftfs: fix buggy unlink logic
   * shiftfs: mark kmem_cache as reclaimable (LP: #1842059)
     - SAUCE: shiftfs: mark slab objects SLAB_RECLAIM_ACCOUNT
   * Suspend to RAM(S3) does not wake up for latest megaraid and mpt3sas
     adapters(SAS3.5 onwards) (LP: #1838751)
     - PCI: Restore Resizable BAR size bits correctly for 1MB BARs
   * No sound inputs from the external microphone and headset on a Dell machine
     (LP: #1842265)
     - ALSA: hda - Expand pin_match function to match upcoming new tbls
     - ALSA: hda - Define a fallback_pin_fixup_tbl for alc269 family
   * Add -fcf-protection=none when using retpoline flags (LP: #1843291)
     - SAUCE: kbuild: add -fcf-protection=none when using retpoline flags
   * Disco update: upstream stable patchset 2019-09-25 (LP: #1845390)
     - bridge/mdb: remove wrong use of NLM_F_MULTI
     - cdc_ether: fix rndis support for Mediatek based smartphones
     - ipv6: Fix the link time qualifier of 'ping_v6_proc_exit_net()'
     - isdn/capi: check message length in capi_write()
     - ixgbe: Fix secpath usage for IPsec TX offload.
     - net: Fix null de-reference of device refcount
     - net: gso: Fix skb_segment splat when splitting gso_size mangled skb having
       linear-headed frag_list
     - net: phylink: Fix flow control resolution
     - net: sched: fix reordering issues
     - sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
     - sctp: Fix the link time qualifier of 'sctp_ctrlsock_exit()'
     - sctp: use transport pf_retrans in sctp_do_8_2_transport_strike
     - tcp: fix tcp_ecn_withdraw_cwr() to clear TCP_ECN_QUEUE_CWR
     - tipc: add NULL pointer check before calling kfree_rcu
     - tun: fix use-after-free when register netdev failed
     - gpiolib: acpi: Add gpiolib_acpi_run_edge_events_on_boot option and blacklist
     - gpio: fix line flag validation in linehandle_create
     - Btrfs: fix assertion failure during fsync and use of stale transaction
     - ixgbe: Prevent u8 wrapping of ITR value to something less than 10us
     - genirq: Prevent NULL pointer dereference in resend_irqs()
     - KVM: s390: kvm_s390_vm_start_migration: check dirty_bitmap before using it
       as target for memset()
     - KVM: s390: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl
     - KVM: x86: work around leak of uninitialized stack contents
     - KVM: nVMX: handle page fault in vmread
     - x86/purgatory: Change compiler flags from -mcmodel=kernel to -mcmodel=large
       to fix kexec relocation errors
     - powerpc: Add barrier_nospec to raw_copy_in_user()
     - drm/meson: Add support for XBGR8888 & ABGR8888 formats
     - clk: rockchip: Don't yell about bad mmc phases when getting
     - mtd: rawnand: mtk: Fix wrongly assigned OOB buffer pointer issue
     - PCI: Always allow probing with driver_override
     - gpio: fix line flag validation in lineevent_create
     - ubifs: Correctly use tnc_next() in search_dh_cookie()
     - driver core: Fix use-after-free and double free on glue directory
     - crypto: talitos - check AES key size
     - crypto: talitos - fix CTR alg blocksize
     - crypto: talitos - check data blocksize in ablkcipher.
     - crypto: talitos - fix ECB algs ivsize
     - crypto: talitos - Do not modify req->cryptlen on decryption.
     - crypto: talitos - HMAC SNOOP NO AFEU mode requires SW icv checking.
     - firmware: ti_sci: Always request response from firmware
     - drm: panel-orientation-quirks: Add extra quirk table entry for GPD MicroPC
     - drm/mediatek: mtk_drm_drv.c: Add of_node_put() before goto
     - Revert "Bluetooth: btusb: driver to enable the usb-wakeup feature"
     - iio: adc: stm32-dfsdm: fix data type
     - modules: fix BUG when load module with rodata=n
     - modules: fix compile error if don't have strict module rwx
     - platform/x86: pmc_atom: Add CB4063 Beckhoff Automation board to
       critclk_systems DMI table
     - rsi: fi

Source diff to previous version
1786013 Packaging resync
1845355 Support Hi1620 zip hw accelerator
1836261 xfrm interface: several kernel panic
1841977 shiftfs: drop entries from cache on unlink
1842059 shiftfs: mark kmem_cache as reclaimable
1838751 Suspend to RAM(S3) does not wake up for latest megaraid and mpt3sas adapters(SAS3.5 onwards)
1842265 No sound inputs from the external microphone and headset on a Dell machine
1843291 Add -fcf-protection=none when using retpoline flags
1845390 Disco update: upstream stable patchset 2019-09-25
1844722 Disco update: upstream stable patchset 2019-09-19
1843622 Disco update: upstream stable patchset 2019-09-11
1838886 New ID in ums-realtek module breaks cardreader
1836912 ipv4: enable route flushing in network namespaces
1842774 Enhanced Hardware Support - Finalize Naming
CVE-2019-14814 There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows
CVE-2019-14816 There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local
CVE-2019-15505 drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be r
CVE-2019-2181 In binder_transaction of binder.c in the Android kernel, there is a possible out of bounds write due to an integer overflow. This could lead to local
CVE-2019-16714 In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory bec
CVE-2019-14821 An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coales

Version: 5.0.0-32.34~18.04.1 2019-10-03 01:08:27 UTC

 linux-hwe (5.0.0-32.34~18.04.1) bionic; urgency=medium
 .
   * bionic/linux-hwe: 5.0.0-32.34~18.04.1 -proposed tracker (LP: #1846092)
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] update helper scripts
 .
   [ Ubuntu: 5.0.0-32.34 ]
 .
   * disco/linux: 5.0.0-32.34 -proposed tracker (LP: #1846097)
   * CVE-2019-14814 // CVE-2019-14815 // CVE-2019-14816
     - mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings
   * CVE-2019-15505
     - media: technisat-usb2: break out of loop at end of buffer
   * CVE-2019-2181
     - binder: check for overflow when alloc for security context
   * Support Hi1620 zip hw accelerator (LP: #1845355)
     - [Config] Enable HiSilicon QM/ZIP as modules
     - crypto: hisilicon - add queue management driver for HiSilicon QM module
     - crypto: hisilicon - add hardware SGL support
     - crypto: hisilicon - add HiSilicon ZIP accelerator support
     - crypto: hisilicon - add SRIOV support for ZIP
     - Documentation: Add debugfs doc for hisi_zip
     - crypto: hisilicon - add debugfs for ZIP and QM
     - MAINTAINERS: add maintainer for HiSilicon QM and ZIP controller driver
     - crypto: hisilicon - fix kbuild warnings
     - crypto: hisilicon - add dependency for CRYPTO_DEV_HISI_ZIP
     - crypto: hisilicon - init curr_sgl_dma to fix compile warning
     - crypto: hisilicon - add missing single_release
     - crypto: hisilicon - fix error handle in hisi_zip_create_req_q
     - crypto: hisilicon - Fix warning on printing %p with dma_addr_t
     - crypto: hisilicon - Fix return value check in hisi_zip_acompress()
     - crypto: hisilicon - avoid unused function warning
   * xfrm interface: several kernel panic (LP: #1836261)
     - xfrm interface: fix memory leak on creation
     - xfrm interface: avoid corruption on changelink
     - xfrm interface: ifname may be wrong in logs
     - xfrm interface: fix list corruption for x-netns
     - xfrm interface: fix management of phydev
   * shiftfs: drop entries from cache on unlink (LP: #1841977)
     - SAUCE: shiftfs: fix buggy unlink logic
   * shiftfs: mark kmem_cache as reclaimable (LP: #1842059)
     - SAUCE: shiftfs: mark slab objects SLAB_RECLAIM_ACCOUNT
   * Suspend to RAM(S3) does not wake up for latest megaraid and mpt3sas
     adapters(SAS3.5 onwards) (LP: #1838751)
     - PCI: Restore Resizable BAR size bits correctly for 1MB BARs
   * No sound inputs from the external microphone and headset on a Dell machine
     (LP: #1842265)
     - ALSA: hda - Expand pin_match function to match upcoming new tbls
     - ALSA: hda - Define a fallback_pin_fixup_tbl for alc269 family
   * Add -fcf-protection=none when using retpoline flags (LP: #1843291)
     - SAUCE: kbuild: add -fcf-protection=none when using retpoline flags
   * Disco update: upstream stable patchset 2019-09-25 (LP: #1845390)
     - bridge/mdb: remove wrong use of NLM_F_MULTI
     - cdc_ether: fix rndis support for Mediatek based smartphones
     - ipv6: Fix the link time qualifier of 'ping_v6_proc_exit_net()'
     - isdn/capi: check message length in capi_write()
     - ixgbe: Fix secpath usage for IPsec TX offload.
     - net: Fix null de-reference of device refcount
     - net: gso: Fix skb_segment splat when splitting gso_size mangled skb having
       linear-headed frag_list
     - net: phylink: Fix flow control resolution
     - net: sched: fix reordering issues
     - sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
     - sctp: Fix the link time qualifier of 'sctp_ctrlsock_exit()'
     - sctp: use transport pf_retrans in sctp_do_8_2_transport_strike
     - tcp: fix tcp_ecn_withdraw_cwr() to clear TCP_ECN_QUEUE_CWR
     - tipc: add NULL pointer check before calling kfree_rcu
     - tun: fix use-after-free when register netdev failed
     - gpiolib: acpi: Add gpiolib_acpi_run_edge_events_on_boot option and blacklist
     - gpio: fix line flag validation in linehandle_create
     - Btrfs: fix assertion failure during fsync and use of stale transaction
     - ixgbe: Prevent u8 wrapping of ITR value to something less than 10us
     - genirq: Prevent NULL pointer dereference in resend_irqs()
     - KVM: s390: kvm_s390_vm_start_migration: check dirty_bitmap before using it
       as target for memset()
     - KVM: s390: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl
     - KVM: x86: work around leak of uninitialized stack contents
     - KVM: nVMX: handle page fault in vmread
     - x86/purgatory: Change compiler flags from -mcmodel=kernel to -mcmodel=large
       to fix kexec relocation errors
     - powerpc: Add barrier_nospec to raw_copy_in_user()
     - drm/meson: Add support for XBGR8888 & ABGR8888 formats
     - clk: rockchip: Don't yell about bad mmc phases when getting
     - mtd: rawnand: mtk: Fix wrongly assigned OOB buffer pointer issue
     - PCI: Always allow probing with driver_override
     - gpio: fix line flag validation in lineevent_create
     - ubifs: Correctly use tnc_next() in search_dh_cookie()
     - driver core: Fix use-after-free and double free on glue directory
     - crypto: talitos - check AES key size
     - crypto: talitos - fix CTR alg blocksize
     - crypto: talitos - check data blocksize in ablkcipher.
     - crypto: talitos - fix ECB algs ivsize
     - crypto: talitos - Do not modify req->cryptlen on decryption.
     - crypto: talitos - HMAC SNOOP NO AFEU mode requires SW icv checking.
     - firmware: ti_sci: Always request response from firmware
     - drm: panel-orientation-quirks: Add extra quirk table entry for GPD MicroPC
     - drm/mediatek: mtk_drm_drv.c: Add of_node_put() before goto
     - Revert "Bluetooth: btusb: driver to enable the usb-wakeup feature"
     - iio: adc: stm32-dfsdm: fix data type
     - modules: fix BUG when load module with rodata=n
     - modules: fix compile error if don't have strict module rwx
     - platform/x86: pmc_atom: Add CB4063 Beckhoff Automation board to
       critclk_systems DMI table
     - rsi: fi

1786013 Packaging resync
1845355 Support Hi1620 zip hw accelerator
1836261 xfrm interface: several kernel panic
1841977 shiftfs: drop entries from cache on unlink
1842059 shiftfs: mark kmem_cache as reclaimable
1838751 Suspend to RAM(S3) does not wake up for latest megaraid and mpt3sas adapters(SAS3.5 onwards)
1842265 No sound inputs from the external microphone and headset on a Dell machine
1843291 Add -fcf-protection=none when using retpoline flags
1845390 Disco update: upstream stable patchset 2019-09-25
1844722 Disco update: upstream stable patchset 2019-09-19
1843622 Disco update: upstream stable patchset 2019-09-11
1838886 New ID in ums-realtek module breaks cardreader
1836912 ipv4: enable route flushing in network namespaces
1842774 Enhanced Hardware Support - Finalize Naming
CVE-2019-14814 There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows
CVE-2019-14816 There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local
CVE-2019-15505 drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be r
CVE-2019-2181 In binder_transaction of binder.c in the Android kernel, there is a possible out of bounds write due to an integer overflow. This could lead to local
CVE-2019-16714 In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory bec
CVE-2019-14821 An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coales



About   -   Send Feedback to @ubuntu_updates