UbuntuUpdates.org

Package "linux-hwe"

This package belongs to a PPA: Canonical Kernel Team

Name: linux-hwe

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Linux kernel version specific cloud tools for version 4.15.0-39
  • Linux kernel version specific cloud tools for version 4.15.0-39
  • Header files related to Linux kernel version 4.15.0
  • Linux kernel headers for version 4.15.0 on 32 bit x86 SMP

Latest version: 4.15.0-39.42~16.04.1
Release: xenial (16.04)
Level: base
Repository: main

Links

Save this URL for the latest version of "linux-hwe": https://www.ubuntuupdates.org/linux-hwe



Other versions of "linux-hwe" in Xenial

Repository Area Version
security main 4.15.0-39.42~16.04.1
updates main 4.15.0-39.42~16.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 4.15.0-39.42~16.04.1 2018-10-25 00:08:21 UTC

 linux-hwe (4.15.0-39.42~16.04.1) xenial; urgency=medium
 .
   * linux-hwe: 4.15.0-39.42~16.04.1 -proposed tracker (LP: #1799425)
 .
   [ Ubuntu: 4.15.0-39.42 ]
 .
   * linux: 4.15.0-39.42 -proposed tracker (LP: #1799411)
   * Linux: insufficient shootdown for paging-structure caches (LP: #1798897)
     - mm: move tlb_table_flush to tlb_flush_mmu_free
     - mm/tlb: Remove tlb_remove_table() non-concurrent condition
     - mm/tlb, x86/mm: Support invalidating TLB caches for RCU_TABLE_FREE
     - [Config] CONFIG_HAVE_RCU_TABLE_INVALIDATE=y
   * Ubuntu18.04: GPU total memory is reduced (LP: #1792102)
     - Revert "powerpc/powernv: Increase memory block size to 1GB on radix"
   * arm64: snapdragon: reduce boot noise (LP: #1797154)
     - [Config] arm64: snapdragon: DRM_MSM=m
     - [Config] arm64: snapdragon: SND*=m
     - [Config] arm64: snapdragon: disable ARM_SDE_INTERFACE
     - [Config] arm64: snapdragon: disable DRM_I2C_ADV7511_CEC
     - [Config] arm64: snapdragon: disable VIDEO_ADV7511, VIDEO_COBALT
   * [Bionic] CPPC bug fixes (LP: #1796949)
     - ACPI / CPPC: Update all pr_(debug/err) messages to log the susbspace id
     - cpufreq: CPPC: Don't set transition_latency
     - ACPI / CPPC: Fix invalid PCC channel status errors
   * regression in 'ip --family bridge neigh' since linux v4.12 (LP: #1796748)
     - rtnetlink: fix rtnl_fdb_dump() for ndmsg header
   * screen displays abnormally on the lenovo M715 with the AMD GPU (Radeon Vega
     8 Mobile, rev ca, 1002:15dd) (LP: #1796786)
     - drm/amd/display: Fix takover from VGA mode
     - drm/amd/display: early return if not in vga mode in disable_vga
     - drm/amd/display: Refine disable VGA
   * arm64: snapdragon: WARNING: CPU: 0 PID: 1 arch/arm64/kernel/setup.c:271
     reserve_memblock_reserved_regions (LP: #1797139)
     - SAUCE: arm64: Fix /proc/iomem for reserved but not memory regions
   * The front MIC can't work on the Lenovo M715 (LP: #1797292)
     - ALSA: hda/realtek - Fix the problem of the front MIC on the Lenovo M715
   * Keyboard backlight sysfs sometimes is missing on Dell laptops (LP: #1797304)
     - platform/x86: dell-smbios: Correct some style warnings
     - platform/x86: dell-smbios: Rename dell-smbios source to dell-smbios-base
     - platform/x86: dell-smbios: Link all dell-smbios-* modules together
     - [Config] CONFIG_DELL_SMBIOS_SMM=y, CONFIG_DELL_SMBIOS_WMI=y
   * rpi3b+: ethernet not working (LP: #1797406)
     - lan78xx: Don't reset the interface on open
   * 87cdf3148b11 was never backported to 4.15 (LP: #1795653)
     - xfrm: Verify MAC header exists before overwriting eth_hdr(skb)->h_proto
   * [Ubuntu18.04][Power9][DD2.2]package installation segfaults inside debian
     chroot env in P9 KVM guest with HTM enabled (kvm) (LP: #1792501)
     - KVM: PPC: Book3S HV: Fix guest r11 corruption with POWER9 TM workarounds
   * Provide mode where all vCPUs on a core must be the same VM (LP: #1792957)
     - KVM: PPC: Book3S HV: Provide mode where all vCPUs on a core must be the same
       VM
   * fscache: bad refcounting in fscache_op_complete leads to OOPS (LP: #1797314)
     - SAUCE: fscache: Fix race in decrementing refcount of op->npages
   * CVE-2018-9363
     - Bluetooth: hidp: buffer overflow in hidp_process_report
   * CVE-2017-13168
     - scsi: sg: mitigate read/write abuse
   * [Bionic] ACPI / PPTT: use ACPI ID whenever ACPI_PPTT_ACPI_PROCESSOR_ID_VALID
     is set (LP: #1797200)
     - ACPI / PPTT: use ACPI ID whenever ACPI_PPTT_ACPI_PROCESSOR_ID_VALID is set
   * [Bionic] arm64: topology: Avoid checking numa mask for scheduler MC
     selection (LP: #1797202)
     - arm64: topology: Avoid checking numa mask for scheduler MC selection
   * crypto/vmx - Backport of Fix sleep-in-atomic bugs patch for 18.04
     (LP: #1790832)
     - crypto: vmx - Fix sleep-in-atomic bugs
   * hns3: autoneg settings get lost on down/up (LP: #1797654)
     - net: hns3: Fix for information of phydev lost problem when down/up
   * not able to unwind the stack from within __kernel_clock_gettime in the Linux
     vDSO (LP: #1797963)
     - powerpc/vdso: Correct call frame information
   * Signal 7 error when running GPFS tracing in cluster (LP: #1792195)
     - powerpc/mm/books3s: Add new pte bit to mark pte temporarily invalid.
     - powerpc/mm/radix: Only need the Nest MMU workaround for R -> RW transition
   * Support Edge Gateway's WIFI LED (LP: #1798330)
     - SAUCE: mwifiex: Switch WiFi LED state according to the device status
   * Support Edge Gateway's Bluetooth LED (LP: #1798332)
     - SAUCE: Bluetooth: Support for LED on Edge Gateways
   * USB cardreader (0bda:0328) make the system can't enter s3 or hang
     (LP: #1798328)
     - usb: Don't disable Latency tolerance Messaging (LTM) before port reset
   * CVE-2018-15471
     - xen-netback: fix input validation in xenvif_set_hash_mapping()
   * CVE-2018-16658
     - cdrom: Fix info leak/OOB read in cdrom_ioctl_drive_status
   * [Bionic] Update ThunderX2 implementation defined pmu core events
     (LP: #1796904)
     - perf vendor events arm64: Update ThunderX2 implementation defined pmu core
       events
   * the machine of lenovo M715 with the AMD GPU (Radeon Vega 8 Mobile, rev ca,
     1002:15dd) often hangs randomly (LP: #1796789)
     - drm/amd: Add missing fields in atom_integrated_system_info_v1_11
   * [18.04] GLK hang after a while (LP: #1760545)
     - drm/i915/glk: Add MODULE_FIRMWARE for Geminilake
   * Fix usbcore.quirks when used at boot (LP: #1795784)
     - usb: core: safely deal with the dynamic quirk lists

Source diff to previous version
1798897 Linux: insufficient shootdown for paging-structure caches
1792102 Ubuntu18.04: GPU total memory is reduced
1797154 arm64: snapdragon: reduce boot noise
1796949 [Bionic] CPPC bug fixes
1796748 regression in 'ip --family bridge neigh' since linux v4.12
1796786 screen displays abnormally on the lenovo M715 with the AMD GPU (Radeon Vega 8 Mobile, rev ca, 1002:15dd)
1797139 arm64: snapdragon: WARNING: CPU: 0 PID: 1 arch/arm64/kernel/setup.c:271 reserve_memblock_reserved_regions
1797292 The front MIC can't work on the Lenovo M715
1797304 Keyboard backlight sysfs sometimes is missing on Dell laptops
1797406 rpi3b+: ethernet not working
1795653 87cdf3148b11 was never backported to 4.15
1792501 [Ubuntu18.04][Power9][DD2.2]package installation segfaults inside debian chroot env in P9 KVM guest with HTM enabled (kvm)
1792957 Provide mode where all vCPUs on a core must be the same VM
1797314 fscache: bad refcounting in fscache_op_complete leads to OOPS
1797200 [Bionic] ACPI / PPTT: use ACPI ID whenever ACPI_PPTT_ACPI_PROCESSOR_ID_VALID is set
1797202 [Bionic] arm64: topology: Avoid checking numa mask for scheduler MC selection
1790832 crypto/vmx - Backport of Fix sleep-in-atomic bugs patch for 18.04
1797654 hns3: autoneg settings get lost on down/up
1797963 not able to unwind the stack from within __kernel_clock_gettime in the Linux vDSO
1792195 Signal 7 error when running GPFS tracing in cluster
1798330 Support Edge Gateway's WIFI LED
1798332 Support Edge Gateway's Bluetooth LED
1798328 USB cardreader (0bda:0328) make the system can't enter s3 or hang
1796904 [Bionic] Update ThunderX2 implementation defined pmu core events
1796789 the machine of lenovo M715 with the AMD GPU (Radeon Vega 8 Mobile, rev ca, 1002:15dd) often hangs randomly
1760545 [18.04] GLK hang after a while
1795784 Fix usbcore.quirks when used at boot
CVE-2018-9363 HID: Bluetooth: hidp: buffer overflow in hidp_process_report
CVE-2017-13168 An elevation of privilege vulnerability in the kernel scsi driver. Product: Android. Versions: Android kernel. Android ID A-65023233.
CVE-2018-15471 An issue was discovered in xenvif_set_hash_mapping in drivers/net/xen-netback/hash.c in the Linux kernel through 4.18.1, as used in Xen through 4.11.
CVE-2018-16658 An issue was discovered in the Linux kernel before 4.18.6. An information leak in cdrom_ioctl_drive_status in drivers/cdrom/cdrom.c could be used by

Version: 4.15.0-38.41~16.04.1 2018-10-11 01:07:49 UTC

 linux-hwe (4.15.0-38.41~16.04.1) xenial; urgency=medium
 .
   * linux-hwe: 4.15.0-38.41~16.04.1 -proposed tracker (LP: #1797076)
 .
   [ Ubuntu: 4.15.0-38.41 ]
 .
   * linux: 4.15.0-38.41 -proposed tracker (LP: #1797061)
   * Silent data corruption in Linux kernel 4.15 (LP: #1796542)
     - block: add a lower-level bio_add_page interface
     - block: bio_iov_iter_get_pages: fix size of last iovec
     - blkdev: __blkdev_direct_IO_simple: fix leak in error case
     - block: bio_iov_iter_get_pages: pin more pages for multi-segment IOs
 .

Source diff to previous version
1796542 Silent data corruption in Linux kernel 4.15

Version: 4.15.0-37.40~16.04.1 2018-10-04 10:09:04 UTC

 linux-hwe (4.15.0-37.40~16.04.1) xenial; urgency=medium
 .
   * linux-hwe: 4.15.0-37.40~16.04.1 -proposed tracker (LP: #1795579)
 .
   * Improvements to the kernel source package preparation (LP: #1793461)
     - Packaging: update-from-master: allow rebase to be skipped
 .
   [ Ubuntu: 4.15.0-37.40 ]
 .
   * linux: 4.15.0-37.40 -proposed tracker (LP: #1795564)
   * hns3: enable ethtool rx-vlan-filter on supported hw (LP: #1793394)
     - net: hns3: Add vlan filter setting by ethtool command -K
   * hns3: Modifying channel parameters will reset ring parameters back to
     defaults (LP: #1793404)
     - net: hns3: Fix desc num set to default when setting channel
   * hisi_sas: Add SATA FIX check for v3 hw (LP: #1794151)
     - scsi: hisi_sas: Add SATA FIS check for v3 hw
   * Fix potential corruption using SAS controller on HiSilicon arm64 boards
     (LP: #1794156)
     - scsi: hisi_sas: add memory barrier in task delivery function
   * hisi_sas: Reduce unnecessary spin lock contention (LP: #1794165)
     - scsi: hisi_sas: Tidy hisi_sas_task_prep()
   * Add functional level reset support for the SAS controller on HiSilicon D06
     systems (LP: #1794166)
     - scsi: hisi_sas: tidy host controller reset function a bit
     - scsi: hisi_sas: relocate some common code for v3 hw
     - scsi: hisi_sas: Implement handlers of PCIe FLR for v3 hw
   * HiSilicon SAS controller doesn't recover from PHY STP link timeout
     (LP: #1794172)
     - scsi: hisi_sas: tidy channel interrupt handler for v3 hw
     - scsi: hisi_sas: Fix the failure of recovering PHY from STP link timeout
   * getxattr: always handle namespaced attributes (LP: #1789746)
     - getxattr: use correct xattr length
   * Fix unusable NVIDIA GPU after S3 (LP: #1793338)
     - PCI: Reprogram bridge prefetch registers on resume
   * Fails to boot under Xen PV: BUG: unable to handle kernel paging request at
     edc21fd9 (LP: #1789118)
     - x86/EISA: Don't probe EISA bus for Xen PV guests
   * qeth: use vzalloc for QUERY OAT buffer (LP: #1793086)
     - s390/qeth: use vzalloc for QUERY OAT buffer
   * SRU: Enable middle button of touchpad on ThinkPad P72 (LP: #1793463)
     - Input: elantech - enable middle button of touchpad on ThinkPad P72
   * Dell new AIO requires a new uart backlight driver (LP: #1727235)
     - SAUCE: platform/x86: dell-uart-backlight: new backlight driver for DELL AIO
     - updateconfigs for Dell UART backlight driver
   * [Ubuntu] s390/crypto: Fix return code checking in cbc_paes_crypt.
     (LP: #1794294)
     - s390/crypto: Fix return code checking in cbc_paes_crypt()
   * hns3: Retrieve RoCE MSI-X config from firmware (LP: #1793221)
     - net: hns3: Fix MSIX allocation issue for VF
     - net: hns3: Refine the MSIX allocation for PF
   * net: hns: Avoid hang when link is changed while handling packets
     (LP: #1792209)
     - net: hns: add the code for cleaning pkt in chip
     - net: hns: add netif_carrier_off before change speed and duplex
   * Page leaking in cachefiles_read_backing_file while vmscan is active
     (LP: #1793430)
     - SAUCE: cachefiles: Page leaking in cachefiles_read_backing_file while vmscan
       is active
   * some nvidia p1000 graphic cards hang during the boot (LP: #1791569)
     - drm/nouveau/gr/gf100-: virtualise tpc_mask + apply fixes from traces
   * Error reported when creating ZFS pool with "-t" option, despite successful
     pool creation (LP: #1769937)
     - SAUCE: (noup) Update zfs to 0.7.5-1ubuntu16.4
   * Fix I2C touchpanels' interrupt storms after system suspend (LP: #1792309)
     - HID: i2c-hid: Fix flooded incomplete report after S3 on Rayd touchscreen
     - HID: i2c-hid: Don't reset device upon system resume
   * ipmmu is always registered (LP: #1783746)
     - iommu/ipmmu-vmsa: Don't register as BUS IOMMU if machine doesn't have IPMMU-
       VMSA
   * Bionic update: upstream stable patchset 2018-09-27 (LP: #1794889)
     - clocksource/drivers/imx-tpm: Correct some registers operation flow
     - Input: synaptics-rmi4 - fix an unchecked out of memory error path
     - KVM: X86: fix incorrect reference of trace_kvm_pi_irte_update
     - x86: Add check for APIC access address for vmentry of L2 guests
     - MIPS: io: Prevent compiler reordering writeX()
     - nfp: ignore signals when communicating with management FW
     - perf report: Fix switching to another perf.data file
     - fsnotify: fix ignore mask logic in send_to_group()
     - MIPS: io: Add barrier after register read in readX()
     - s390/smsgiucv: disable SMSG on module unload
     - isofs: fix potential memory leak in mount option parsing
     - MIPS: dts: Boston: Fix PCI bus dtc warnings:
     - spi: sh-msiof: Fix bit field overflow writes to TSCR/RSCR
     - doc: Add vendor prefix for Kieback & Peter GmbH
     - dt-bindings: pinctrl: sunxi: Fix reference to driver
     - dt-bindings: serial: sh-sci: Add support for r8a77965 (H)SCIF
     - dt-bindings: dmaengine: rcar-dmac: document R8A77965 support
     - clk: honor CLK_MUX_ROUND_CLOSEST in generic clk mux
     - ASoC: rt5514: Add the missing register in the readable table
     - eCryptfs: don't pass up plaintext names when using filename encryption
     - soc: bcm: raspberrypi-power: Fix use of __packed
     - soc: bcm2835: Make !RASPBERRYPI_FIRMWARE dummies return failure
     - PCI: kirin: Fix reset gpio name
     - ASoC: topology: Fix bugs of freeing soc topology
     - xen: xenbus_dev_frontend: Really return response string
     - ASoC: topology: Check widget kcontrols before deref.
     - spi: cadence: Add usleep_range() for cdns_spi_fill_tx_fifo()
     - blkcg: don't hold blkcg lock when deactivating policy
     - tipc: fix infinite loop when dumping link monitor summary
     - scsi: iscsi: respond to netlink with unicast when appropriate
     - scsi: megaraid_sas: Do not log an error if FW successfully initializes.
     - scsi: target: fix crash with iscsi target and dvd
     - netfilter: nf_tables: NAT chain and extensio

Source diff to previous version
1793461 Improvements to the kernel source package preparation
1793394 hns3: enable ethtool rx-vlan-filter on supported hw
1793404 hns3: Modifying channel parameters will reset ring parameters back to defaults
1794151 hisi_sas: Add SATA FIX check for v3 hw
1794156 Fix potential corruption using SAS controller on HiSilicon arm64 boards
1794165 hisi_sas: Reduce unnecessary spin lock contention
1794166 Add functional level reset support for the SAS controller on HiSilicon D06 systems
1794172 HiSilicon SAS controller doesn't recover from PHY STP link timeout
1789746 getxattr: always handle namespaced attributes
1793338 Fix unusable NVIDIA GPU after S3
1789118 Fails to boot under Xen PV: BUG: unable to handle kernel paging request at edc21fd9
1793086 qeth: use vzalloc for QUERY OAT buffer
1793463 SRU: Enable middle button of touchpad on ThinkPad P72
1727235 Dell new AIO requires a new uart backlight driver
1794294 [Ubuntu] s390/crypto: Fix return code checking in cbc_paes_crypt.
1793221 hns3: Retrieve RoCE MSI-X config from firmware
1792209 net: hns: Avoid hang when link is changed while handling packets
1793430 Page leaking in cachefiles_read_backing_file while vmscan is active
1791569 some nvidia p1000 graphic cards hang during the boot
1769937 Error reported when creating ZFS pool with \
1792309 Fix I2C touchpanels' interrupt storms after system suspend
1783746 ipmmu is always registered
1794889 Bionic update: upstream stable patchset 2018-09-27
1792393 Kernel 4.15.0-35.38 fails to build with CONFIG_XFS_ONLINE_SCRUB enabled
1792044 update ENA driver to latest mainline version

Version: 4.15.0-36.39~16.04.1 2018-09-26 14:09:34 UTC

 linux-hwe (4.15.0-36.39~16.04.1) xenial; urgency=medium
 .
   * CVE-2018-14633
     - iscsi target: Use hex2bin instead of a re-implementation
 .
   * CVE-2018-17182
     - mm: get rid of vmacache_flush_all() entirely
 .
 linux (4.15.0-35.38) bionic; urgency=medium
 .
   * linux: 4.15.0-35.38 -proposed tracker (LP: #1791719)
 .
   * device hotplug of vfio devices can lead to deadlock in vfio_pci_release
     (LP: #1792099)
     - SAUCE: vfio -- release device lock before userspace requests
 .
   * L1TF mitigation not effective in some CPU and RAM combinations
     (LP: #1788563)
     - x86/speculation/l1tf: Fix overflow in l1tf_pfn_limit() on 32bit
     - x86/speculation/l1tf: Fix off-by-one error when warning that system has too
       much RAM
     - x86/speculation/l1tf: Increase l1tf memory limit for Nehalem+
 .
   * CVE-2018-15594
     - x86/paravirt: Fix spectre-v2 mitigations for paravirt guests
 .
   * CVE-2017-5715 (Spectre v2 s390x)
     - KVM: s390: implement CPU model only facilities
     - s390: detect etoken facility
     - KVM: s390: add etoken support for guests
     - s390/lib: use expoline for all bcr instructions
     - s390: fix br_r1_trampoline for machines without exrl
     - SAUCE: s390: use expoline thunks for all branches generated by the BPF JIT
 .
   * Ubuntu18.04.1: cpuidle: powernv: Fix promotion from snooze if next state
     disabled (performance) (LP: #1790602)
     - cpuidle: powernv: Fix promotion from snooze if next state disabled
 .
   * Watchdog CPU:19 Hard LOCKUP when kernel crash was triggered (LP: #1790636)
     - powerpc: hard disable irqs in smp_send_stop loop
     - powerpc: Fix deadlock with multiple calls to smp_send_stop
     - powerpc: smp_send_stop do not offline stopped CPUs
     - powerpc/powernv: Fix opal_event_shutdown() called with interrupts disabled
 .
   * Security fix: check if IOMMU page is contained in the pinned physical page
     (LP: #1785675)
     - vfio/spapr: Use IOMMU pageshift rather than pagesize
     - KVM: PPC: Check if IOMMU page is contained in the pinned physical page
 .
   * Missing Intel GPU pci-id's (LP: #1789924)
     - drm/i915/kbl: Add KBL GT2 sku
     - drm/i915/whl: Introducing Whiskey Lake platform
     - drm/i915/aml: Introducing Amber Lake platform
     - drm/i915/cfl: Add a new CFL PCI ID.
 .
   * CVE-2018-15572
     - x86/speculation: Protect against userspace-userspace spectreRSB
 .
   * Support Power Management for Thunderbolt Controller (LP: #1789358)
     - thunderbolt: Handle NULL boot ACL entries properly
     - thunderbolt: Notify userspace when boot_acl is changed
     - thunderbolt: Use 64-bit DMA mask if supported by the platform
     - thunderbolt: Do not unnecessarily call ICM get route
     - thunderbolt: No need to take tb->lock in domain suspend/complete
     - thunderbolt: Use correct ICM commands in system suspend
     - thunderbolt: Add support for runtime PM
 .
   * random oopses on s390 systems using NVMe devices (LP: #1790480)
     - s390/pci: fix out of bounds access during irq setup
 .
   * [Bionic] Spectre v4 mitigation (Speculative Store Bypass Disable) support
     for arm64 using SMC firmware call to set a hardware chicken bit
     (LP: #1787993) // CVE-2018-3639 (arm64)
     - arm64: alternatives: Add dynamic patching feature
     - KVM: arm/arm64: Do not use kern_hyp_va() with kvm_vgic_global_state
     - KVM: arm64: Avoid storing the vcpu pointer on the stack
     - arm/arm64: smccc: Add SMCCC-specific return codes
     - arm64: Call ARCH_WORKAROUND_2 on transitions between EL0 and EL1
     - arm64: Add per-cpu infrastructure to call ARCH_WORKAROUND_2
     - arm64: Add ARCH_WORKAROUND_2 probing
     - arm64: Add 'ssbd' command-line option
     - arm64: ssbd: Add global mitigation state accessor
     - arm64: ssbd: Skip apply_ssbd if not using dynamic mitigation
     - arm64: ssbd: Restore mitigation status on CPU resume
     - arm64: ssbd: Introduce thread flag to control userspace mitigation
     - arm64: ssbd: Add prctl interface for per-thread mitigation
     - arm64: KVM: Add HYP per-cpu accessors
     - arm64: KVM: Add ARCH_WORKAROUND_2 support for guests
     - arm64: KVM: Handle guest's ARCH_WORKAROUND_2 requests
     - arm64: KVM: Add ARCH_WORKAROUND_2 discovery through ARCH_FEATURES_FUNC_ID
     - [Config] ARM64_SSBD=y
 .
   * Reconcile hns3 SAUCE patches with upstream (LP: #1787477)
     - Revert "UBUNTU: SAUCE: net: hns3: Optimize PF CMDQ interrupt switching
       process"
     - Revert "UBUNTU: SAUCE: net: hns3: Fix for VF mailbox receiving unknown
       message"
     - Revert "UBUNTU: SAUCE: net: hns3: Fix for VF mailbox cannot receiving PF
       response"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: fix comments for
       hclge_get_ring_chain_from_mbx"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: fix for using wrong mask and
       shift in hclge_get_ring_chain_from_mbx"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: fix for reset_level default
       assignment probelm"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: remove unnecessary ring
       configuration operation while resetting"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: fix return value error in
       hns3_reset_notify_down_enet"
     - Revert "UBUNTU: SAUCE: net: hns3: Fix for phy link issue when using marvell
       phy driver"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: separate roce from nic when
       resetting"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: correct reset event status
       register"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: prevent to request reset
       frequently"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: reset net device with rtnl_lock"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: modify the order of initializeing
       command queue register"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: prevent sending command during
       global or core reset"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: remove t

Source diff to previous version
1792099 device hotplug of vfio devices can lead to deadlock in vfio_pci_release
1788563 L1TF mitigation not effective in some CPU and RAM combinations
1790602 Ubuntu18.04.1: cpuidle: powernv: Fix promotion from snooze if next state disabled (performance)
1790636 Watchdog CPU:19 Hard LOCKUP when kernel crash was triggered
1785675 Security fix: check if IOMMU page is contained in the pinned physical page
1789924 Missing Intel GPU pci-id's
1789358 Support Power Management for Thunderbolt Controller
1790480 random oopses on s390 systems using NVMe devices
1787993 [Bionic] Spectre v4 mitigation (Speculative Store Bypass Disable) support for arm64 using SMC firmware call to set a hardware chicken bit
1787477 Reconcile hns3 SAUCE patches with upstream
1790188 Bionic update: upstream stable patchset 2018-08-31
1789666 Bionic update: upstream stable patchset 2018-08-29
1788897 Bionic update: upstream stable patchset 2018-08-24
1787281 errors when scanning partition table of corrupted AIX disk
1789772 tlbie master timeout checkstop (using NVidia/GPU)
1788097 performance drop with ATS enabled
1786878 [Regression] kernel crashdump fails on arm64
1785780 TB 16 issue on Dell Lattitude 7490 with large amount of data
1762385 dell_wmi: Unknown key codes
1773940 Enable AMD PCIe MP2 for AMDI0011
1779817 r8169 no internet after suspending
1789790 Fix Intel Cannon Lake LPSS I2C input clock
1789145 Microphone cannot be detected with front panel audio combo jack on HP Z8-G4 machine
1787945 Tango platform uses __initcall without further checks
1787898 [18.10 FEAT] Add kernel config option \
CVE-2018-14633 A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request f
CVE-2018-17182 An issue was discovered in the Linux kernel through 4.18.8. The vmacache_flush_all function in mm/vmacache.c mishandles sequence number overflows. An
CVE-2018-15594 arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectr
CVE-2017-5715 Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an at
CVE-2018-15572 The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context swi
CVE-2018-3639 Speculative Store Bypass
CVE-2018-6555 The irda_setsockopt function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows local users
CVE-2018-6554 Memory leak in the irda_bind function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows lo

Version: 4.15.0-35.38~16.04.1 2018-09-12 21:08:40 UTC

 linux-hwe (4.15.0-35.38~16.04.1) xenial; urgency=medium
 .
   * linux-hwe: 4.15.0-35.38~16.04.1 -proposed tracker (LP: #1791740)
 .
   * linux: 4.15.0-35.38 -proposed tracker (LP: #1791719)
 .
   * device hotplug of vfio devices can lead to deadlock in vfio_pci_release
     (LP: #1792099)
     - SAUCE: vfio -- release device lock before userspace requests
 .
   * L1TF mitigation not effective in some CPU and RAM combinations
     (LP: #1788563)
     - x86/speculation/l1tf: Fix overflow in l1tf_pfn_limit() on 32bit
     - x86/speculation/l1tf: Fix off-by-one error when warning that system has too
       much RAM
     - x86/speculation/l1tf: Increase l1tf memory limit for Nehalem+
 .
   * CVE-2018-15594
     - x86/paravirt: Fix spectre-v2 mitigations for paravirt guests
 .
   * CVE-2017-5715 (Spectre v2 s390x)
     - KVM: s390: implement CPU model only facilities
     - s390: detect etoken facility
     - KVM: s390: add etoken support for guests
     - s390/lib: use expoline for all bcr instructions
     - s390: fix br_r1_trampoline for machines without exrl
     - SAUCE: s390: use expoline thunks for all branches generated by the BPF JIT
 .
   * Ubuntu18.04.1: cpuidle: powernv: Fix promotion from snooze if next state
     disabled (performance) (LP: #1790602)
     - cpuidle: powernv: Fix promotion from snooze if next state disabled
 .
   * Watchdog CPU:19 Hard LOCKUP when kernel crash was triggered (LP: #1790636)
     - powerpc: hard disable irqs in smp_send_stop loop
     - powerpc: Fix deadlock with multiple calls to smp_send_stop
     - powerpc: smp_send_stop do not offline stopped CPUs
     - powerpc/powernv: Fix opal_event_shutdown() called with interrupts disabled
 .
   * Security fix: check if IOMMU page is contained in the pinned physical page
     (LP: #1785675)
     - vfio/spapr: Use IOMMU pageshift rather than pagesize
     - KVM: PPC: Check if IOMMU page is contained in the pinned physical page
 .
   * Missing Intel GPU pci-id's (LP: #1789924)
     - drm/i915/kbl: Add KBL GT2 sku
     - drm/i915/whl: Introducing Whiskey Lake platform
     - drm/i915/aml: Introducing Amber Lake platform
     - drm/i915/cfl: Add a new CFL PCI ID.
 .
   * CVE-2018-15572
     - x86/speculation: Protect against userspace-userspace spectreRSB
 .
   * Support Power Management for Thunderbolt Controller (LP: #1789358)
     - thunderbolt: Handle NULL boot ACL entries properly
     - thunderbolt: Notify userspace when boot_acl is changed
     - thunderbolt: Use 64-bit DMA mask if supported by the platform
     - thunderbolt: Do not unnecessarily call ICM get route
     - thunderbolt: No need to take tb->lock in domain suspend/complete
     - thunderbolt: Use correct ICM commands in system suspend
     - thunderbolt: Add support for runtime PM
 .
   * random oopses on s390 systems using NVMe devices (LP: #1790480)
     - s390/pci: fix out of bounds access during irq setup
 .
   * [Bionic] Spectre v4 mitigation (Speculative Store Bypass Disable) support
     for arm64 using SMC firmware call to set a hardware chicken bit
     (LP: #1787993) // CVE-2018-3639 (arm64)
     - arm64: alternatives: Add dynamic patching feature
     - KVM: arm/arm64: Do not use kern_hyp_va() with kvm_vgic_global_state
     - KVM: arm64: Avoid storing the vcpu pointer on the stack
     - arm/arm64: smccc: Add SMCCC-specific return codes
     - arm64: Call ARCH_WORKAROUND_2 on transitions between EL0 and EL1
     - arm64: Add per-cpu infrastructure to call ARCH_WORKAROUND_2
     - arm64: Add ARCH_WORKAROUND_2 probing
     - arm64: Add 'ssbd' command-line option
     - arm64: ssbd: Add global mitigation state accessor
     - arm64: ssbd: Skip apply_ssbd if not using dynamic mitigation
     - arm64: ssbd: Restore mitigation status on CPU resume
     - arm64: ssbd: Introduce thread flag to control userspace mitigation
     - arm64: ssbd: Add prctl interface for per-thread mitigation
     - arm64: KVM: Add HYP per-cpu accessors
     - arm64: KVM: Add ARCH_WORKAROUND_2 support for guests
     - arm64: KVM: Handle guest's ARCH_WORKAROUND_2 requests
     - arm64: KVM: Add ARCH_WORKAROUND_2 discovery through ARCH_FEATURES_FUNC_ID
     - [Config] ARM64_SSBD=y
 .
   * Reconcile hns3 SAUCE patches with upstream (LP: #1787477)
     - Revert "UBUNTU: SAUCE: net: hns3: Optimize PF CMDQ interrupt switching
       process"
     - Revert "UBUNTU: SAUCE: net: hns3: Fix for VF mailbox receiving unknown
       message"
     - Revert "UBUNTU: SAUCE: net: hns3: Fix for VF mailbox cannot receiving PF
       response"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: fix comments for
       hclge_get_ring_chain_from_mbx"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: fix for using wrong mask and
       shift in hclge_get_ring_chain_from_mbx"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: fix for reset_level default
       assignment probelm"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: remove unnecessary ring
       configuration operation while resetting"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: fix return value error in
       hns3_reset_notify_down_enet"
     - Revert "UBUNTU: SAUCE: net: hns3: Fix for phy link issue when using marvell
       phy driver"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: separate roce from nic when
       resetting"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: correct reset event status
       register"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: prevent to request reset
       frequently"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: reset net device with rtnl_lock"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: modify the order of initializeing
       command queue register"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: prevent sending command during
       global or core reset"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: remove the warning when clear
       reset cause"
     - Revert "UBUNTU: SAUCE: {topost} net: hns3: fix get_vector ops in
       hclgevf_main mod

1792099 device hotplug of vfio devices can lead to deadlock in vfio_pci_release
1788563 L1TF mitigation not effective in some CPU and RAM combinations
1790602 Ubuntu18.04.1: cpuidle: powernv: Fix promotion from snooze if next state disabled (performance)
1790636 Watchdog CPU:19 Hard LOCKUP when kernel crash was triggered
1785675 Security fix: check if IOMMU page is contained in the pinned physical page
1789924 Missing Intel GPU pci-id's
1789358 Support Power Management for Thunderbolt Controller
1790480 random oopses on s390 systems using NVMe devices
1787993 [Bionic] Spectre v4 mitigation (Speculative Store Bypass Disable) support for arm64 using SMC firmware call to set a hardware chicken bit
1787477 Reconcile hns3 SAUCE patches with upstream
1790188 Bionic update: upstream stable patchset 2018-08-31
1789666 Bionic update: upstream stable patchset 2018-08-29
1788897 Bionic update: upstream stable patchset 2018-08-24
1787281 errors when scanning partition table of corrupted AIX disk
1789772 tlbie master timeout checkstop (using NVidia/GPU)
1788097 performance drop with ATS enabled
1786878 [Regression] kernel crashdump fails on arm64
1785780 TB 16 issue on Dell Lattitude 7490 with large amount of data
1762385 dell_wmi: Unknown key codes
1773940 Enable AMD PCIe MP2 for AMDI0011
1779817 r8169 no internet after suspending
1789790 Fix Intel Cannon Lake LPSS I2C input clock
1789145 Microphone cannot be detected with front panel audio combo jack on HP Z8-G4 machine
1787945 Tango platform uses __initcall without further checks
1787898 [18.10 FEAT] Add kernel config option \
CVE-2018-15594 arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectr
CVE-2017-5715 Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an at
CVE-2018-15572 The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context swi
CVE-2018-3639 Speculative Store Bypass
CVE-2018-6555 The irda_setsockopt function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows local users
CVE-2018-6554 Memory leak in the irda_bind function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows lo



About   -   Send Feedback to @ubuntu_updates