UbuntuUpdates.org

Package "linux-azure"

This package belongs to a PPA: Canonical Kernel Team

Name: linux-azure

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Header files related to Linux kernel version 4.18.0
  • Header files related to Linux kernel version 4.18.0
  • Header files related to Linux kernel version 4.18.0
  • Header files related to Linux kernel version 4.18.0

Latest version: 4.18.0-1019.19
Release: cosmic (18.10)
Level: base
Repository: main

Links

Save this URL for the latest version of "linux-azure": https://www.ubuntuupdates.org/linux-azure



Other versions of "linux-azure" in Cosmic

Repository Area Version
base main 4.18.0-1003.3
security main 4.18.0-1019.19
updates main 4.18.0-1019.19

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 4.18.0-1019.19 2019-05-16 14:09:22 UTC

 linux-azure (4.18.0-1019.19) cosmic; urgency=medium
 .
   * linux-azure: 4.18.0-1019.19 -proposed tracker (LP: #1829180)
 .
   [ Ubuntu: 4.18.0-21.22 ]
 .
   * linux: 4.18.0-21.22 -proposed tracker (LP: #1829186)
   * disable a.out support (LP: #1818552)
     - [Config] Turn off a.out support
   * ftrace in ubuntu_kernel_selftests hang with Cosmic kernel (LP: #1826385)
     - kprobes/x86: Fix instruction patching corruption when copying more than one
       RIP-relative instruction
   * touchpad not working on lenovo yoga 530 (LP: #1787775)
     - Revert "UBUNTU: SAUCE: i2c:amd Depends on ACPI"
     - Revert "UBUNTU: SAUCE: i2c:amd move out pointer in union i2c_event_base"
     - Revert "UBUNTU: SAUCE: i2c:amd I2C Driver based on PCI Interface for
       upcoming platform"
     - i2c: add extra check to safe DMA buffer helper
     - i2c: Add drivers for the AMD PCIe MP2 I2C controller
     - [Config] Update config for AMD MP2 I2C driver
     - [Config] Update I2C_AMD_MP2 annotations
   * Geneve tunnels don't work when ipv6 is disabled (LP: #1794232)
     - geneve: correctly handle ipv6.disable module parameter
   * There are 4 HDMI/Displayport audio output listed in sound setting without
     attach any HDMI/DP monitor (LP: #1827967)
     - ALSA: hda/hdmi - Read the pin sense from register when repolling
     - ALSA: hda/hdmi - Consider eld_valid when reporting jack event
   * Headphone jack switch sense is inverted: plugging in headphones disables
     headphone output (LP: #1824259)
     - ASoC: rt5645: Headphone Jack sense inverts on the LattePanda board
   * CTAUTO:DevOps:860.50:devops4fp1:Error occurred during LINUX Dmesg error
     Checking for all LINUX clients for devops4p10 (LP: #1766201)
     - SAUCE: integrity: downgrade error to warning
   * potential memory corruption on arm64 on dev release (LP: #1827437)
     - driver core: Postpone DMA tear-down until after devres release
   * powerpc/pmu/ebb test in ubuntu_kernel_selftest failed with "error while
     loading shared libraries" on Bionic/Cosmic PowerPC (LP: #1812805)
     - selftests/powerpc/pmu: Link ebb tests with -no-pie
   * unnecessary request_queue freeze (LP: #1815733)
     - block: avoid setting nr_requests to current value
     - block: avoid setting none scheduler if it's already none
   * Kprobe event string type argument failed in ftrace from
     ubuntu_kernel_selftests on B/C i386 (LP: #1825780)
     - selftests/ftrace: Fix kprobe string testcase to not probe notrace function
   * False positive test result in run_netsocktests from net in
     ubuntu_kernel_selftest (LP: #1825777)
     - selftests/net: correct the return value for run_netsocktests

Source diff to previous version
1818552 disable a.out support
1826385 ftrace in ubuntu_kernel_selftests hang with Cosmic kernel
1787775 touchpad not working on lenovo yoga 530
1794232 Geneve tunnels don't work when ipv6 is disabled
1827967 There are 4 HDMI/Displayport audio output listed in sound setting without attach any HDMI/DP monitor
1824259 Headphone jack switch sense is inverted: plugging in headphones disables headphone output
1766201 CTAUTO:DevOps:860.50:devops4fp1:Error occurred during LINUX Dmesg error Checking for all LINUX clients for devops4p10
1827437 potential memory corruption on arm64 on dev release
1812805 powerpc/pmu/ebb test in ubuntu_kernel_selftest failed with \
1815733 unnecessary request_queue freeze
1825780 Kprobe event string type argument failed in ftrace from ubuntu_kernel_selftests on B/C i386
1825777 False positive test result in run_netsocktests from net in ubuntu_kernel_selftest

Version: 4.18.0-1017.17 2019-04-25 10:07:43 UTC

 linux-azure (4.18.0-1017.17) cosmic; urgency=medium
 .
   * linux-azure: 4.18.0-1017.17 -proposed tracker (LP: #1826166)
 .
   * [linux-azure] Include mainline commits fc96df16a1ce and ba50bf1ce9a5 in
     Azure kernel (LP: #1821378)
     - Drivers: hv: vmbus: Return -EINVAL for the sys files for unopened channels
     - Drivers: hv: vmbus: Check for ring when getting debug info
 .
   * [linux-azure] Commit To Improve NVMe Performance (LP: #1819689)
     - blk-mq: remove the request_list usage
 .
   [ Ubuntu: 4.18.0-19.20 ]
 .
   * linux: 4.18.0-19.20 -proposed tracker (LP: #1826171)
   * Packaging resync (LP: #1786013)
     - [Packaging] resync git-ubuntu-log
   * autopkgtests run too often, too much and don't skip enough (LP: #1823056)
     - [Debian] Set +x on rebuild testcase.
     - [Debian] Skip rebuild test, for regression-suite deps.
     - [Debian] Make ubuntu-regression-suite skippable on unbootable kernels.
     - [Debian] make rebuild use skippable error codes when skipping.
     - [Debian] Only run regression-suite, if requested to.
   * CVE-2017-5753
     - s390/keyboard: sanitize array index in do_kdsk_ioctl
     - drm/bufs: Fix Spectre v1 vulnerability
     - drivers/misc/sgi-gru: fix Spectre v1 vulnerability
     - ipv4: Fix potential Spectre v1 vulnerability
     - aio: fix spectre gadget in lookup_ioctx
     - ALSA: emux: Fix potential Spectre v1 vulnerabilities
     - ALSA: pcm: Fix potential Spectre v1 vulnerability
     - ip6mr: Fix potential Spectre v1 vulnerability
     - ALSA: rme9652: Fix potential Spectre v1 vulnerability
     - ALSA: emu10k1: Fix potential Spectre v1 vulnerabilities
     - KVM: arm/arm64: vgic: Fix off-by-one bug in vgic_get_irq()
     - drm/ioctl: Fix Spectre v1 vulnerabilities
     - net: core: Fix Spectre v1 vulnerability
     - phonet: af_phonet: Fix Spectre v1 vulnerability
     - nfc: af_nfc: Fix Spectre v1 vulnerability
     - can: af_can: Fix Spectre v1 vulnerability
     - net: Revert recent Spectre-v1 patches.
     - char/mwave: fix potential Spectre v1 vulnerability
     - applicom: Fix potential Spectre v1 vulnerabilities
     - ipmi: msghandler: Fix potential Spectre v1 vulnerabilities
     - powerpc/ptrace: Mitigate potential Spectre v1
     - cfg80211: prevent speculation on cfg80211_classify8021d() return
     - ALSA: rawmidi: Fix potential Spectre v1 vulnerability
     - ALSA: seq: oss: Fix Spectre v1 vulnerability
   * NULL pointer dereference when using z3fold and zswap (LP: #1814874)
     - z3fold: fix possible reclaim races
   * The Realtek card reader does not enter PCIe 1.1/1.2 (LP: #1825487)
     - misc: rtsx: Enable OCP for rts522a rts524a rts525a rts5260
     - SAUCE: misc: rtsx: Fixed rts5260 power saving parameter and sd glitch
   * headset-mic doesn't work on two Dell laptops. (LP: #1825272)
     - ALSA: hda/realtek - add two more pin configuration sets to quirk table
   * CVE-2018-16884
     - sunrpc: use SVC_NET() in svcauth_gss_* functions
     - sunrpc: use-after-free in svc_process_common()
   * AMD Rome : Minimal support patches (LP: #1816669)
     - x86: irq_remapping: Move irq remapping mode enum
     - iommu/amd: Add support for higher 64-bit IOMMU Control Register
     - iommu/amd: Add support for IOMMU XT mode
   * sky2 ethernet card don't work after returning from suspension (LP: #1798921)
     - sky2: Increase D3 delay again
   * CVE-2019-9500
     - brcmfmac: assure SSID length from firmware is limited
   * CVE-2019-9503
     - brcmfmac: add subtype check for event handling in data path
   * CVE-2019-3882
     - vfio/type1: Limit DMA mappings per container
   * CVE-2019-3887
     - KVM: x86: nVMX: close leak of L0's x2APIC MSRs (CVE-2019-3887)
     - KVM: x86: nVMX: fix x2APIC VTPR read intercept
   * CVE-2019-3874
     - sctp: use sk_wmem_queued to check for writable space
     - sctp: implement memory accounting on tx path
     - sctp: implement memory accounting on rx path
   * Intel I210 Ethernet card not working after hotplug [8086:1533]
     (LP: #1818490)
     - igb: Fix WARN_ONCE on runtime suspend
   * autofs kernel module missing (LP: #1824333)
     - [Config] Update autofs4 path in inclusion list
   * tasks doing write()/fsync() hit deadlock in write_cache_pages()
     (LP: #1824827)
     - mm/page-writeback.c: fix range_cyclic writeback vs writepages deadlock
   * Pop noise when headset is plugged in or removed from GHS/Line-out jack
     (LP: #1821290)
     - ALSA: hda/realtek - Add unplug function into unplug state of Headset Mode
       for ALC225
     - ALSA: hda/realtek - Disable headset Mic VREF for headset mode of ALC225
     - ALSA: hda/realtek - Add support headset mode for DELL WYSE AIO
     - ALSA: hda/realtek - Add support headset mode for New DELL WYSE NB
   * mac80211_hwsim unable to handle kernel NULL pointer dereference
     at0000000000000000 (LP: #1825058)
     - mac80211_hwsim: Timer should be initialized before device registered
   * [regression][snd_hda_codec_realtek] repeating crackling noise after 19.04
     upgrade (LP: #1821663)
     - ALSA: hda - add Lenovo IdeaCentre B550 to the power_save_blacklist
     - ALSA: hda - Add two more machines to the power_save_blacklist
   * systemd cause kernel trace "BUG: unable to handle kernel paging request at
     6db23a14" on Cosmic i386 (LP: #1813244) // systemd cause kernel trace "BUG:
     unable to handle kernel paging request at 6db23a14" on Cosmic i386
     (LP: #1813244)
     - openvswitch: fix flow actions reallocation

Source diff to previous version
1821378 [linux-azure] Include mainline commits fc96df16a1ce and ba50bf1ce9a5 in Azure kernel
1819689 [linux-azure] Commit To Improve NVMe Performance
1786013 Packaging resync
1823056 autopkgtests run too often, too much and don't skip enough
1814874 NULL pointer dereference when using z3fold and zswap
1825487 The Realtek card reader does not enter PCIe 1.1/1.2
1825272 headset-mic doesn't work on two Dell laptops.
1816669 AMD Rome : Minimal support patches
1798921 sky2 ethernet card don't work after returning from suspension
1818490 Intel I210 Ethernet card not working after hotplug [8086:1533]
1824333 autofs kernel module missing
1824827 tasks doing write()/fsync() hit deadlock in write_cache_pages()
1821290 Pop noise when headset is plugged in or removed from GHS/Line-out jack
1825058 mac80211_hwsim unable to handle kernel NULL pointer dereference at0000000000000000
1821663 [regression][snd_hda_codec_realtek] repeating crackling noise after 19.04 upgrade
1813244 systemd cause kernel trace \
CVE-2017-5753 Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker wi
CVE-2018-16884 A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bc_svc_proce
CVE-2019-9500 brcmfmac: assure SSID length from firmware is limited
CVE-2019-9503 brcmfmac: add subtype check for event handling in data path
CVE-2019-3882 DoS through vfio/type1 DMA mappings
CVE-2019-3887 A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1
CVE-2019-3874 The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of

Version: 4.18.0-1016.16 2019-04-16 02:09:22 UTC

 linux-azure (4.18.0-1016.16) cosmic; urgency=medium
 .
   * linux-azure: 4.18.0-1016.16 -proposed tracker (LP: #1824841)
 .
   * The 4.18.0-1015.15 Azure Kernel Panics Due to Missing Commit (LP: #1823805)
     - scsi: storvsc: Fix a race in sub-channel creation that can cause panic
 .
   * linux-azure: Add the Catapult FPGA Driver (LP: #1824879)
     - SAUCE: linux-azure: Include Catapult FPGA PCI driver
     - [Config] linux-azure: CONFIG_CATAPULT_PCI=m
 .

Source diff to previous version
1823805 The 4.18.0-1015.15 Azure Kernel Panics Due to Missing Commit
1824879 linux-azure: Add the Catapult FPGA Driver

Version: 4.18.0-1015.15 2019-04-03 16:08:03 UTC

 linux-azure (4.18.0-1015.15) cosmic; urgency=medium
 .
   * linux-azure: 4.18.0-1015.15 -proposed tracker (LP: #1822791)
 .
   * Upstream Commits Needed for DPDK on Azure (LP: #1812123)
     - vmbus: keep pointer to ring buffer page
     - uio: introduce UIO_MEM_IOVA
     - hv_uio_generic: map ringbuffer phys addr
     - uio_hv_generic: defer opening vmbus until first use
     - uio_hv_generic: set callbacks on open
     - vmbus: pass channel to hv_process_channel_removal
     - vmbus: split ring buffer allocation from open
     - vmbus: fix subchannel removal
 .
   * [Hyper-V] Enable CONFIG_HOTPLUG_CPU in linux-azure (LP: #1821934)
     - Revert "UBUNTU: [Config] azure: CONFIG_HOTPLUG_CPU=n"
 .
   [ Ubuntu: 4.18.0-18.19 ]
 .
   * linux: 4.18.0-18.19 -proposed tracker (LP: #1822796)
   * Packaging resync (LP: #1786013)
     - [Packaging] update helper scripts
     - [Packaging] resync retpoline extraction
   * 3b080b2564287be91605bfd1d5ee985696e61d3c in ubuntu_btrfs_kernel_fixes
     triggers system hang on i386 (LP: #1812845)
     - btrfs: raid56: properly unmap parity page in finish_parity_scrub()
   * [SRU][B/C/OEM]IOMMU: add kernel dma protection (LP: #1820153)
     - ACPI / property: Allow multiple property compatible _DSD entries
     - PCI / ACPI: Identify untrusted PCI devices
     - iommu/vt-d: Force IOMMU on for platform opt in hint
     - iommu/vt-d: Do not enable ATS for untrusted devices
     - thunderbolt: Export IOMMU based DMA protection support to userspace
     - iommu/vt-d: Disable ATS support on untrusted devices
   * Huawei Hi1822 NIC has poor performance (LP: #1820187)
     - net-next: hinic: fix a problem in free_tx_poll()
     - hinic: remove ndo_poll_controller
     - net-next/hinic: add checksum offload and TSO support
     - hinic: Fix l4_type parameter in hinic_task_set_tunnel_l4
     - net-next/hinic:replace multiply and division operators
     - net-next/hinic:add rx checksum offload for HiNIC
     - net-next/hinic:fix a bug in set mac address
     - net-next/hinic: fix a bug in rx data flow
     - net: hinic: fix null pointer dereference on pointer hwdev
     - hinic: optmize rx refill buffer mechanism
     - net-next/hinic:add shutdown callback
     - net-next/hinic: replace disable_irq_nosync/enable_irq
   * [CONFIG] please enable highdpi font FONT_TER16x32 (LP: #1819881)
     - Fonts: New Terminus large console font
     - [Config]: enable highdpi Terminus 16x32 font support
   * [19.04 FEAT] qeth: Enhanced link speed - kernel part (LP: #1814892)
     - s390/qeth: report 25Gbit link speed
   * Avoid potential memory corruption on HiSilicon SoCs (LP: #1819546)
     - iommu/arm-smmu-v3: Avoid memory corruption from Hisilicon MSI payloads
   * CVE-2017-5715
     - x86/speculation: Apply IBPB more strictly to avoid cross-process data leak
     - x86/speculation: Propagate information about RSB filling mitigation to sysfs
     - x86/speculation: Add RETPOLINE_AMD support to the inline asm CALL_NOSPEC
       variant
     - x86/retpoline: Make CONFIG_RETPOLINE depend on compiler support
     - x86/retpoline: Remove minimal retpoline support
     - x86/speculation: Update the TIF_SSBD comment
     - x86/speculation: Clean up spectre_v2_parse_cmdline()
     - x86/speculation: Remove unnecessary ret variable in cpu_show_common()
     - x86/speculation: Move STIPB/IBPB string conditionals out of
       cpu_show_common()
     - x86/speculation: Disable STIBP when enhanced IBRS is in use
     - x86/speculation: Rename SSBD update functions
     - x86/speculation: Reorganize speculation control MSRs update
     - sched/smt: Make sched_smt_present track topology
     - x86/Kconfig: Select SCHED_SMT if SMP enabled
     - sched/smt: Expose sched_smt_present static key
     - x86/speculation: Rework SMT state change
     - x86/l1tf: Show actual SMT state
     - x86/speculation: Reorder the spec_v2 code
     - x86/speculation: Mark string arrays const correctly
     - x86/speculataion: Mark command line parser data __initdata
     - x86/speculation: Unify conditional spectre v2 print functions
     - x86/speculation: Add command line control for indirect branch speculation
     - x86/speculation: Prepare for per task indirect branch speculation control
     - x86/process: Consolidate and simplify switch_to_xtra() code
     - x86/speculation: Avoid __switch_to_xtra() calls
     - x86/speculation: Prepare for conditional IBPB in switch_mm()
     - ptrace: Remove unused ptrace_may_access_sched() and MODE_IBRS
     - x86/speculation: Split out TIF update
     - x86/speculation: Prevent stale SPEC_CTRL msr content
     - x86/speculation: Prepare arch_smt_update() for PRCTL mode
     - x86/speculation: Add prctl() control for indirect branch speculation
     - x86/speculation: Enable prctl mode for spectre_v2_user
     - x86/speculation: Add seccomp Spectre v2 user space protection mode
     - x86/speculation: Provide IBPB always command line options
     - kvm: svm: Ensure an IBPB on all affected CPUs when freeing a vmcb
     - x86/speculation: Change misspelled STIPB to STIBP
     - x86/speculation: Add support for STIBP always-on preferred mode
     - x86, modpost: Replace last remnants of RETPOLINE with CONFIG_RETPOLINE
   * [Ubuntu] vfio-ap: add subsystem to matrix device to avoid libudev failures
     (LP: #1818854)
     - s390: vfio_ap: link the vfio_ap devices to the vfio_ap bus subsystem
   * Kernel regularly logs: Bluetooth: hci0: last event is not cmd complete
     (0x0f) (LP: #1748565)
     - Bluetooth: Fix unnecessary error message for HCI request completion
   * HiSilicon HNS ethernet broken in 4.15.0-45 (LP: #1818294)
     - net: hns: Fix WARNING when hns modules installed
   * Lenovo ideapad 330-15ICH Wifi rfkill hard blocked (LP: #1811815)
     - platform/x86: ideapad: Add ideapad 330-15ICH to no_hw_rfkill
   * Qualcomm Atheros QCA9377 wireless does not work (LP: #1818204)
     - platform/x86: ideapad-laptop: Add Ideapad 530S-14ARR to no_hw_rfkill list
   * fsc

Source diff to previous version
1812123 Upstream Commits Needed for DPDK on Azure
1821934 [Hyper-V] Enable CONFIG_HOTPLUG_CPU in linux-azure
1786013 Packaging resync
1812845 3b080b2564287be91605bfd1d5ee985696e61d3c in ubuntu_btrfs_kernel_fixes triggers system hang on i386
1820153 [SRU][B/C/OEM]IOMMU: add kernel dma protection
1820187 Huawei Hi1822 NIC has poor performance
1819881 [CONFIG] please enable highdpi font FONT_TER16x32
1814892 [19.04 FEAT] qeth: Enhanced link speed - kernel part
1819546 Avoid potential memory corruption on HiSilicon SoCs
1818854 [Ubuntu] vfio-ap: add subsystem to matrix device to avoid libudev failures
1748565 Kernel regularly logs: Bluetooth: hci0: last event is not cmd complete (0x0f)
1818294 HiSilicon HNS ethernet broken in 4.15.0-45
1811815 Lenovo ideapad 330-15ICH Wifi rfkill hard blocked
1818204 Qualcomm Atheros QCA9377 wireless does not work
1821395 fscache: jobs might hang when fscache disk is full
1821064 hns3: fix oops in hns3_clean_rx_ring()
1817786 tcm_loop.ko: move from modules-extra into main modules package
1819504 tcmu user space crash results in kernel module hang.
1779756 Intel XL710 - i40e driver does not work with kernel 4.15 (Ubuntu 18.04)
1820930 some codecs stop working after S3
1788432 4.15 s390x kernel BUG at /build/linux-Gycr4Z/linux-4.15.0/drivers/block/virtio_blk.c:565!
1820990 [SRU][B/B-OEM/C/D] Fix AMD IOMMU NULL dereference
1821271 New Intel Wireless-AC 9260 [8086:2526] card not correctly probed in Ubuntu system
1821276 Add support for MAC address pass through on RTL8153-BD
CVE-2017-5715 Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an at

Version: 4.18.0-1014.14 2019-03-15 16:07:54 UTC

 linux-azure (4.18.0-1014.14) cosmic; urgency=medium
 .
   * linux-azure: 4.18.0-1014.14 -proposed tracker (LP: #1819618)
 .
   * PAGE_POISONING / PAGE_POISONING_NO_SANITY / PAGE_POISONING_ZERO option was
     expected to be set in C-KVM (LP: #1812624)
     - [Config]: enable PAGE_POISONING, PAGE_POISONING_NO_SANITY,
       PAGE_POISONING_ZERO
 .
   * Add CONFIG_NO_HZ_FULL=y to linux-azure kernels (LP: #1818138)
     - [Config] linux-azure: CONFIG_NO_HZ_FULL=y
 .
   [ Ubuntu: 4.18.0-17.18 ]
 .
   * linux: 4.18.0-17.18 -proposed tracker (LP: #1819624)
   * Packaging resync (LP: #1786013)
     - [Packaging] resync getabis
     - [Packaging] update helper scripts
   * C++ demangling support missing from perf (LP: #1396654)
     - [Packaging] fix a mistype
   * arm-smmu-v3 arm-smmu-v3.3.auto: CMD_SYNC timeout (LP: #1818162)
     - iommu/arm-smmu-v3: Fix unexpected CMD_SYNC timeout
   * Crash in nvme_irq_check() when using threaded interrupts (LP: #1818747)
     - nvme-pci: fix out of bounds access in nvme_cqe_pending
   * CVE-2019-9003
     - ipmi: fix use-after-free of user->release_barrier.rda
   * CVE-2019-9162
     - netfilter: nf_nat_snmp_basic: add missing length checks in ASN.1 cbs
   * CVE-2019-9213
     - mm: enforce min addr even if capable() in expand_downwards()
   * CVE-2019-3460
     - Bluetooth: Check L2CAP option sizes returned from l2cap_get_conf_opt
   * tun/tap: unable to manage carrier state from userland (LP: #1806392)
     - tun: implement carrier change
   * CVE-2019-8980
     - exec: Fix mem leak in kernel_read_file
   * [Packaging] Allow overlay of config annotations (LP: #1752072)
     - [Packaging] config-check: Add an include directive
   * amdgpu with mst WARNING on blanking (LP: #1814308)
     - drm/amd/display: Fix MST dp_blank REG_WAIT timeout
   * CVE-2019-7308
     - bpf: move {prev_,}insn_idx into verifier env
     - bpf: move tmp variable into ax register in interpreter
     - bpf: enable access to ax register also from verifier rewrite
     - bpf: restrict map value pointer arithmetic for unprivileged
     - bpf: restrict stack pointer arithmetic for unprivileged
     - bpf: restrict unknown scalars of mixed signed bounds for unprivileged
     - bpf: fix check_map_access smin_value test when pointer contains offset
     - bpf: prevent out of bounds speculation on pointer arithmetic
     - bpf: fix sanitation of alu op with pointer / scalar type from different
       paths
     - bpf: add various test cases to test_verifier
     - bpf: add various test cases to selftests
   * CVE-2017-5753
     - bpf: fix inner map masking to prevent oob under speculation
   * Use memblock quirk instead of delayed allocation for GICv3 LPI tables
     (LP: #1816425)
     - efi/arm: Revert "Defer persistent reservations until after paging_init()"
     - arm64, mm, efi: Account for GICv3 LPI tables in static memblock reserve
       table
   * efi/arm/arm64: Allow SetVirtualAddressMap() to be omitted (LP: #1814982)
     - efi/arm/arm64: Allow SetVirtualAddressMap() to be omitted
   * Update ENA driver to version 2.0.3K (LP: #1816806)
     - net: ena: update driver version from 2.0.2 to 2.0.3
     - net: ena: fix race between link up and device initalization
     - net: ena: fix crash during failed resume from hibernation
   * Silent "Unknown key" message when pressing keyboard backlight hotkey
     (LP: #1817063)
     - platform/x86: dell-wmi: Ignore new keyboard backlight change event
   * CVE-2018-19824
     - ALSA: usb-audio: Fix UAF decrement if card has no live interfaces in card.c
   * CVE-2019-3459
     - Bluetooth: Verify that l2cap_get_conf_opt provides large enough buffer
   * CONFIG_TEST_BPF is disabled (LP: #1813955)
     - [Config]: Reenable TEST_BPF
   * installer does not support iSCSI iBFT (LP: #1817321)
     - d-i: add iscsi_ibft to scsi-modules
   * CVE-2019-7222
     - KVM: x86: work around leak of uninitialized stack contents (CVE-2019-7222)
   * CVE-2019-7221
     - KVM: nVMX: unconditionally cancel preemption timer in free_nested
       (CVE-2019-7221)
   * CVE-2019-6974
     - kvm: fix kvm_ioctl_create_device() reference counting (CVE-2019-6974)
   * hns3 nic speed may not match optical port speed (LP: #1817969)
     - net: hns3: Config NIC port speed same as that of optical module
   * [Hyper-V] srcu: Lock srcu_data structure in srcu_gp_start() (LP: #1802021)
     - srcu: Lock srcu_data structure in srcu_gp_start()
   * libsas disks can have non-unique by-path names (LP: #1817784)
     - scsi: libsas: Fix rphy phy_identifier for PHYs with end devices attached
   * Bluetooth not working (Intel CyclonePeak) (LP: #1817518)
     - Bluetooth: btusb: Add support for Intel bluetooth device 8087:0029
   * CVE-2019-8912
     - net: crypto set sk to NULL when af_alg_release.
     - net: socket: set sock->sk to NULL after calling proto_ops::release()
   * 4.18.0 thinkpad_acpi : thresholds for BAT1 not writable (LP: #1812099)
     - platform/x86: thinkpad_acpi: Fix multi-battery bug
   * [ALSA] [PATCH] System76 darp5 and oryp5 fixups (LP: #1815831)
     - ALSA: hda/realtek - Headset microphone support for System76 darp5
     - ALSA: hda/realtek - Headset microphone and internal speaker support for
       System76 oryp5
   * CVE-2019-8956
     - sctp: walk the list of asoc safely
   * Constant noise in the headphone on Lenovo X1 machines (LP: #1817263)
     - ALSA: hda/realtek: Disable PC beep in passthrough on alc285

1818138 Add CONFIG_NO_HZ_FULL=y to linux-azure kernels
1786013 Packaging resync
1818162 arm-smmu-v3 arm-smmu-v3.3.auto: CMD_SYNC timeout
1818747 Crash in nvme_irq_check() when using threaded interrupts
1806392 tun/tap: unable to manage carrier state from userland
1752072 [Packaging] Allow overlay of config annotations
1814308 amdgpu with mst WARNING on blanking
1816425 Use memblock quirk instead of delayed allocation for GICv3 LPI tables
1814982 efi/arm/arm64: Allow SetVirtualAddressMap() to be omitted
1816806 Update ENA driver to version 2.0.3K
1817063 Silent \
1813955 CONFIG_TEST_BPF is disabled
1817321 installer does not support iSCSI iBFT
1817969 hns3 nic speed may not match optical port speed
1802021 [Hyper-V] srcu: Lock srcu_data structure in srcu_gp_start()
1817784 libsas disks can have non-unique by-path names
1817518 Bluetooth not working (Intel CyclonePeak)
1812099 4.18.0 thinkpad_acpi : thresholds for BAT1 not writable
1815831 [ALSA] [PATCH] System76 darp5 and oryp5 fixups
1817263 Constant noise in the headphone on Lenovo X1 machines
CVE-2019-9003 In the Linux kernel before 4.20.5, attackers can trigger a drivers/char/ipmi/ipmi_msghandler.c use-after-free and OOPS by arranging for certain simul
CVE-2019-9162 In the Linux kernel before 4.20.12, net/ipv4/netfilter/nf_nat_snmp_basic_main.c in the SNMP NAT module has insufficient ASN.1 length checks (aka an a
CVE-2019-9213 In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to
CVE-2019-3460 Heap data infoleak in multiple locations including functionl2cap_parse_conf_rsp
CVE-2019-8980 A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows attackers to cause a denial of service (memory
CVE-2019-7308 kernel/bpf/verifier.c in the Linux kernel before 4.20.6 performs undesirable out-of-bounds speculation on pointer arithmetic in various cases, includ
CVE-2017-5753 Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker wi
CVE-2018-19824 In the Linux kernel through 4.19.6, a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with ze
CVE-2019-3459 Heap address infoleak in use of l2cap_get_conf_opt
CVE-2019-7222 KVM: x86: work around leak of uninitialized stack contents
CVE-2019-7221 KVM: nVMX: use-after-free of the hrtimer for emulation of the preemption timer
CVE-2019-6974 In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race condition, leading
CVE-2019-8912 In the Linux kernel through 4.20.11, af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to



About   -   Send Feedback to @ubuntu_updates