UbuntuUpdates.org

Package "linux-kvm"

This package belongs to a PPA: Canonical Kernel Team

Name: linux-kvm

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Header files related to Linux kernel version 4.4.0
  • Header files related to Linux kernel version 4.4.0
  • Header files related to Linux kernel version 4.4.0
  • Header files related to Linux kernel version 4.4.0

Latest version: 4.4.0-1041.47
Release: xenial (16.04)
Level: base
Repository: main

Links

Save this URL for the latest version of "linux-kvm": https://www.ubuntuupdates.org/linux-kvm



Other versions of "linux-kvm" in Xenial

Repository Area Version
security main 4.4.0-1040.46
updates universe 4.4.0-1007.12
updates main 4.4.0-1040.46
proposed main 4.4.0-1041.47

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 4.4.0-1041.47 2019-02-12 10:08:06 UTC

 linux-kvm (4.4.0-1041.47) xenial; urgency=medium
 .
   * linux-kvm: 4.4.0-1041.47 -proposed tracker (LP: #1814654)
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] update update.conf
 .
   * linux-buildinfo: pull out ABI information into its own package
     (LP: #1806380)
     - [Config] resync flavour-control.stub
 .
   * Xenial update: 4.4.169 upstream stable release (LP: #1811252)
     - [Config] Remove CONFIG_CIFS_POSIX=y
 .
   [ Ubuntu: 4.4.0-143.169 ]
 .
   * linux: 4.4.0-143.169 -proposed tracker (LP: #1814647)
   * x86/kvm: Backport fixup and missing commits (LP: #1811646)
     - KVM: x86: avoid vmalloc(0) in the KVM_SET_CPUID
     - kvm: nVMX: VMCLEAR an active shadow VMCS after last use
     - X86/nVMX: Properly set spec_ctrl and pred_cmd before merging MSRs
     - KVM/VMX: Optimize vmx_vcpu_run() and svm_vcpu_run() by marking the RDMSR
       path as unlikely()
     - kvm: x86: IA32_ARCH_CAPABILITIES is always supported
     - KVM: SVM: Add MSR-based feature support for serializing LFENCE
     - KVM: X86: Allow userspace to define the microcode version
     - KVM: x86: SVM: Call x86_spec_ctrl_set_guest/host() with interrupts disabled
     - KVM: VMX: fixes for vmentry_l1d_flush module parameter
     - kvm: svm: Ensure an IBPB on all affected CPUs when freeing a vmcb
     - kvm: vmx: Scrub hardware GPRs at VM-exit
     - SAUCE: [Fix] x86/KVM/VMX: Add L1D flush logic
     - SAUCE: KVM: Move code fragments, cleanup and re-indent
   * linux-buildinfo: pull out ABI information into its own package
     (LP: #1806380)
     - [Packaging] limit preparation to linux-libc-dev in headers
     - [Packaging] commonise debhelper invocation
     - [Packaging] ABI -- accumulate abi information at the end of the build
     - [Packaging] buildinfo -- add basic build information
     - [Packaging] buildinfo -- add firmware information to the flavour ABI
     - [Packaging] buildinfo -- add compiler information to the flavour ABI
     - [Packaging] buildinfo -- add buildinfo support to getabis
     - [Config] buildinfo -- add retpoline version markers
     - [Packaging] getabis -- handle all known package combinations
     - [Packaging] getabis -- support parsing a simple version
   * signing: only install a signed kernel (LP: #1764794)
     - [Packaging] update to Debian like control scripts
     - [Packaging] switch to triggers for postinst.d postrm.d handling
     - [Packaging] signing -- switch to raw-signing tarballs
     - [Packaging] signing -- switch to linux-image as signed when available
     - [Packaging] printenv -- add signing options
     - [Packaging] fix invocation of header postinst hooks
     - [Packaging] signing -- add support for signing Opal kernel binaries
     - [Debian] Use src_pkg_name when constructing udeb control files
     - [Debian] Dynamically determine linux udebs package name
     - [Packaging] handle both linux-lts* and linux-hwe* as backports
     - [Config] linux-source-* is in the primary linux namespace
     - [Packaging] lookup the upstream tag
     - [Packaging] zfs/spl -- enhance provides information
     - [Packaging] switch up to debhelper 9
     - [Packaging] autopkgtest -- disable d-i when dropping flavours
     - [debian] support for ship_extras_package=false
     - [Debian] do_common_tools should always be on
     - [debian] do not force do_tools_common
     - [Packaging] Add linux-tools-host package for VM host tools
     - [Packaging] signing should be conditional
     - [Packaging] skip cloud tools packaging when not building package
     - [Packaging] add acpidbg
     - [debian] prep linux-libc-dev only if do_libc_dev_package=true
     - [Packaging] Only install cloud init files when do_tools_common=true
   * Redpine: Driver crash with network-manager 1.10 and above (LP: #1813869)
     - SAUCE: Redpine: enhancement for MAC spoofing to avoid kernel crash
   * Guests using IBRS incur a large performance penalty (LP: #1764956)
     - SAUCE: Restore the IBRS host state on VMEXIT
   * Xenial update: 4.4.170 upstream stable release (LP: #1811647)
     - USB: hso: Fix OOB memory access in hso_probe/hso_get_config_data
     - xhci: Don't prevent USB2 bus suspend in state check intended for USB3 only
     - USB: serial: option: add GosunCn ZTE WeLink ME3630
     - USB: serial: option: add HP lt4132
     - USB: serial: option: add Simcom SIM7500/SIM7600 (MBIM mode)
     - USB: serial: option: add Fibocom NL668 series
     - USB: serial: option: add Telit LN940 series
     - mmc: core: Reset HPI enabled state during re-init and in case of errors
     - mmc: omap_hsmmc: fix DMA API warning
     - gpio: max7301: fix driver for use with CONFIG_VMAP_STACK
     - Drivers: hv: vmbus: Return -EINVAL for the sys files for unopened channels
     - x86/mtrr: Don't copy uninitialized gentry fields back to userspace
     - drm/ioctl: Fix Spectre v1 vulnerabilities
     - ip6mr: Fix potential Spectre v1 vulnerability
     - ipv4: Fix potential Spectre v1 vulnerability
     - ax25: fix a use-after-free in ax25_fillin_cb()
     - ibmveth: fix DMA unmap error in ibmveth_xmit_start error path
     - ieee802154: lowpan_header_create check must check daddr
     - ipv6: explicitly initialize udp6_addr in udp_sock_create6()
     - isdn: fix kernel-infoleak in capi_unlocked_ioctl
     - netrom: fix locking in nr_find_socket()
     - packet: validate address length
     - packet: validate address length if non-zero
     - sctp: initialize sin6_flowinfo for ipv6 addrs in sctp_inet6addr_event
     - vhost: make sure used idx is seen before log in vhost_add_used_n()
     - VSOCK: Send reset control packet when socket is partially bound
     - xen/netfront: tolerate frags with no data
     - gro_cell: add napi_disable in gro_cells_destroy
     - sock: Make sock->sk_stamp thread-safe
     - ALSA: rme9652: Fix potential Spectre v1 vulnerability
     - ALSA: emu10k1: Fix potential Spectre v1 vulnerabilities
     - ALSA: pcm: Fix potential Spectre v1 vulnerability
     - A

Source diff to previous version
1786013 Packaging resync
1806380 linux-buildinfo: pull out ABI information into its own package
1811252 Xenial update: 4.4.169 upstream stable release
1811646 x86/kvm: Backport fixup and missing commits
1764794 signing: only install a signed kernel
1813869 Redpine: Driver crash with network-manager 1.10 and above
1764956 Guests using IBRS incur a large performance penalty
1811647 Xenial update: 4.4.170 upstream stable release
1811080 Xenial update: 4.4.168 upstream stable release
1793901 kernel oops in bcache module
1813873 Userspace break as a result of missing patch backport
1811803 Crash on \
CVE-2019-6133 In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism can be bypassed because fork() is not atomic, and therefore authorization deci

Version: 4.4.0-1040.46 2019-01-19 13:07:55 UTC

 linux-kvm (4.4.0-1040.46) xenial; urgency=medium
 .
   * linux-kvm: 4.4.0-1040.46 -proposed tracker (LP: #1811853)
 .
   * Xenial update: 4.4.164 upstream stable release (LP: #1810947)
     - [Config] Remove CONFIG{,_ARCH_USE}_QUEUED_SPINLOCKS
 .
   [ Ubuntu: 4.4.0-142.168 ]
 .
   * linux: 4.4.0-142.168 -proposed tracker (LP: #1811846)
   * Packaging resync (LP: #1786013)
     - [Packaging] update helper scripts
   * iptables connlimit allows more connections than the limit when using
     multiple CPUs (LP: #1811094)
     - netfilter: xt_connlimit: don't store address in the conn nodes
     - SAUCE: netfilter: xt_connlimit: remove the 'addr' parameter in add_hlist()
     - netfilter: nf_conncount: expose connection list interface
     - netfilter: nf_conncount: Fix garbage collection with zones
     - netfilter: nf_conncount: fix garbage collection confirm race
     - netfilter: nf_conncount: don't skip eviction when age is negative
   * CVE-2017-5715
     - SAUCE: x86/speculation: Cleanup IBPB runtime control handling
     - SAUCE: x86/speculation: Cleanup IBRS runtime control handling
     - SAUCE: x86/speculation: Use x86_spec_ctrl_base in entry/exit code
     - SAUCE: x86/speculation: Move RSB_CTXSW hunk
   * Xenial update: 4.4.167 upstream stable release (LP: #1811077)
     - media: em28xx: Fix use-after-free when disconnecting
     - Revert "wlcore: Add missing PM call for
       wlcore_cmd_wait_for_event_or_timeout()"
     - rapidio/rionet: do not free skb before reading its length
     - s390/qeth: fix length check in SNMP processing
     - usbnet: ipheth: fix potential recvmsg bug and recvmsg bug 2
     - kvm: mmu: Fix race in emulated page table writes
     - xtensa: enable coprocessors that are being flushed
     - xtensa: fix coprocessor context offset definitions
     - Btrfs: ensure path name is null terminated at btrfs_control_ioctl
     - ALSA: wss: Fix invalid snd_free_pages() at error path
     - ALSA: ac97: Fix incorrect bit shift at AC97-SPSA control write
     - ALSA: control: Fix race between adding and removing a user element
     - ALSA: sparc: Fix invalid snd_free_pages() at error path
     - ext2: fix potential use after free
     - dmaengine: at_hdmac: fix memory leak in at_dma_xlate()
     - dmaengine: at_hdmac: fix module unloading
     - btrfs: release metadata before running delayed refs
     - USB: usb-storage: Add new IDs to ums-realtek
     - usb: core: quirks: add RESET_RESUME quirk for Cherry G230 Stream series
     - misc: mic/scif: fix copy-paste error in scif_create_remote_lookup
     - Kbuild: suppress packed-not-aligned warning for default setting only
     - exec: avoid gcc-8 warning for get_task_comm
     - disable stringop truncation warnings for now
     - kobject: Replace strncpy with memcpy
     - unifdef: use memcpy instead of strncpy
     - kernfs: Replace strncpy with memcpy
     - ip_tunnel: Fix name string concatenate in __ip_tunnel_create()
     - drm: gma500: fix logic error
     - scsi: bfa: convert to strlcpy/strlcat
     - staging: rts5208: fix gcc-8 logic error warning
     - kdb: use memmove instead of overlapping memcpy
     - iser: set sector for ambiguous mr status errors
     - uprobes: Fix handle_swbp() vs. unregister() + register() race once more
     - MIPS: ralink: Fix mt7620 nd_sd pinmux
     - mips: fix mips_get_syscall_arg o32 check
     - drm/ast: Fix incorrect free on ioregs
     - scsi: scsi_devinfo: cleanly zero-pad devinfo strings
     - ALSA: trident: Suppress gcc string warning
     - scsi: csiostor: Avoid content leaks and casts
     - kgdboc: Fix restrict error
     - kgdboc: Fix warning with module build
     - leds: call led_pwm_set() in leds-pwm to enforce default LED_OFF
     - leds: turn off the LED and wait for completion on unregistering LED class
       device
     - leds: leds-gpio: Fix return value check in create_gpio_led()
     - Input: xpad - quirk all PDP Xbox One gamepads
     - Input: matrix_keypad - check for errors from of_get_named_gpio()
     - Input: elan_i2c - add ELAN0620 to the ACPI table
     - Input: elan_i2c - add ACPI ID for Lenovo IdeaPad 330-15ARR
     - Input: elan_i2c - add support for ELAN0621 touchpad
     - btrfs: Always try all copies when reading extent buffers
     - Btrfs: fix use-after-free when dumping free space
     - ARC: change defconfig defaults to ARCv2
     - arc: [devboards] Add support of NFSv3 ACL
     - mm: cleancache: fix corruption on missed inode invalidation
     - usb: gadget: dummy: fix nonsensical comparisons
     - iommu/vt-d: Fix NULL pointer dereference in prq_event_thread()
     - iommu/ipmmu-vmsa: Fix crash on early domain free
     - can: rcar_can: Fix erroneous registration
     - batman-adv: Expand merged fragment buffer for full packet
     - bnx2x: Assign unique DMAE channel number for FW DMAE transactions.
     - qed: Fix PTT leak in qed_drain()
     - qed: Fix reading wrong value in loop condition
     - net/mlx4_core: Zero out lkey field in SW2HW_MPT fw command
     - net/mlx4_core: Fix uninitialized variable compilation warning
     - net/mlx4: Fix UBSAN warning of signed integer overflow
     - net: faraday: ftmac100: remove netif_running(netdev) check before disabling
       interrupts
     - iommu/vt-d: Use memunmap to free memremap
     - net: amd: add missing of_node_put()
     - usb: quirk: add no-LPM quirk on SanDisk Ultra Flair device
     - usb: appledisplay: Add 27" Apple Cinema Display
     - USB: check usb_get_extra_descriptor for proper size
     - ALSA: usb-audio: Fix UAF decrement if card has no live interfaces in card.c
     - ALSA: hda: Add support for AMD Stoney Ridge
     - ALSA: pcm: Fix starvation on down_write_nonblock()
     - ALSA: pcm: Call snd_pcm_unlink() conditionally at closing
     - ALSA: pcm: Fix interval evaluation with openmin/max
     - virtio/s390: avoid race on vcdev->config
     - virtio/s390: fix race in ccw_io_helper()
     - SUNRPC: Fix leak of krb5p encode pages
     - xhci: Prevent U1/U2 lin

Source diff to previous version
1810947 Xenial update: 4.4.164 upstream stable release
1786013 Packaging resync
1811094 iptables connlimit allows more connections than the limit when using multiple CPUs
1811077 Xenial update: 4.4.167 upstream stable release
1809699 cpu-hotplug test in ubuntu_kernel_selftest always return 0 on Xenial
1810328 iommu - need to effectively disable iommu if \
1791758 ldisc crash on reopened tty
1810967 Xenial update: 4.4.166 upstream stable release
1810958 Xenial update: 4.4.165 upstream stable release
1810807 Xenial update: 4.4.163 upstream stable release
1807393 nvme - Polling on timeout
1802421 Xenial: data corruption when using i40e with iommu
1806818 Fix Intel I210 doesn't work when ethernet cable gets plugged
CVE-2017-5715 Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an at
CVE-2018-19407 The vcpu_scan_ioapic function in arch/x86/kvm/x86.c in the Linux kernel through 4.19.2 allows local users to cause a denial of service (NULL pointer
CVE-2000-1134 Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka
CVE-2007-3852 The init script (sysstat.in) in sysstat 5.1.2 up to 7.1.6 creates /tmp/sysstat.run insecurely, which allows local users to execute arbitrary code.
CVE-2008-0525 PatchLink Update client for Unix, as used by Novell ZENworks Patch Management Update Agent for Linux/Unix/Mac (LUM) 6.2094 through 6.4102 and other p
CVE-2009-0416 The SSL certificate setup program (genSslCert.sh) in Standards Based Linux Instrumentation for Manageability (SBLIM) sblim-sfcb 1.3.2 allows local us
CVE-2011-4834 The GetInstalledPackages function in the configuration tool in HP Application Lifestyle Management (ALM) 11 on AIX, HP-UX, and Solaris allows local u
CVE-2015-1838 modules/serverdensity_device.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.
CVE-2015-7442 consoleinst.sh in IBM Installation Manager before 1.7.4.4 and 1.8.x before 1.8.4 and Packaging Utility before 1.7.4.4 and 1.8.x before 1.8.4 allows l
CVE-2016-7489 Teradata Virtual Machine Community Edition v15.10's perl script /opt/teradata/gsctools/bin/t2a.pl creates files in /tmp in an insecure manner, this m

Version: 4.4.0-1039.45 2018-12-06 12:08:11 UTC

 linux-kvm (4.4.0-1039.45) xenial; urgency=medium
 .
   * linux-kvm: 4.4.0-1039.45 -proposed tracker (LP: #1806578)
 .
   [ Ubuntu: 4.4.0-141.167 ]
 .
   * linux: 4.4.0-141.167 -proposed tracker (LP: #1806569)
   * Redpine: firmware assert upon assoc timeout (LP: #1804360)
     - SAUCE: Redpine: fix for firmware assert upon assoc timeout
   * CVE-2018-12896
     - posix-timers: Sanitize overrun handling
   * CVE-2017-5753
     - ALSA: opl3: Hardening for potential Spectre v1
     - ALSA: asihpi: Hardening for potential Spectre v1
     - ALSA: hdspm: Hardening for potential Spectre v1
     - ALSA: rme9652: Hardening for potential Spectre v1
     - ALSA: control: Hardening for potential Spectre v1
     - usbip: vhci_sysfs: fix potential Spectre v1
     - libahci: Fix possible Spectre-v1 pmp indexing in ahci_led_store()
   * CVE-2018-18710
     - cdrom: fix improper type cast, which can leat to information leak.
   * CVE-2018-18690
     - xfs: don't fail when converting shortform attr to long form during
       ATTR_REPLACE
   * CVE-2017-18174
     - pinctrl: Add devm_ apis for pinctrl_{register, unregister}
     - pinctrl: amd: Use devm_pinctrl_register() for pinctrl registration

Source diff to previous version
1804360 Redpine: firmware assert upon assoc timeout
CVE-2018-12896 An issue was discovered in the Linux kernel through 4.17.3. An Integer Overflow in kernel/time/posix-timers.c in the POSIX timer code is caused by th
CVE-2017-5753 Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker wi
CVE-2018-18710 An issue was discovered in the Linux kernel through 4.19. An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by lo
CVE-2018-18690 In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the ne
CVE-2017-18174 In the Linux kernel before 4.7, the amd_gpio_remove function in drivers/pinctrl/pinctrl-amd.c calls the pinctrl_unregister function, leading to a dou

Version: 4.4.0-1038.44 2018-11-15 20:08:34 UTC

 linux-kvm (4.4.0-1038.44) xenial; urgency=medium
 .
   * linux-kvm: 4.4.0-1038.44 -proposed tracker (LP: #1802786)
 .
   [ Ubuntu: 4.4.0-140.166 ]
 .
   * linux: 4.4.0-140.166 -proposed tracker (LP: #1802776)
   * Bypass of mount visibility through userns + mount propagation (LP: #1789161)
     - mount: Retest MNT_LOCKED in do_umount
     - mount: Don't allow copying MNT_UNBINDABLE|MNT_LOCKED mounts
   * kdump fail due to an IRQ storm (LP: #1797990)
     - SAUCE: x86/PCI: Export find_cap() to be used in early PCI code
     - SAUCE: x86/quirks: Add parameter to clear MSIs early on boot
     - SAUCE: x86/quirks: Scan all busses for early PCI quirks
   * crash in ENA driver on removing an interface (LP: #1802341)
     - SAUCE: net: ena: fix crash during ena_remove()
   * xenial guest on arm64 drops to busybox under openstack bionic-rocky
     (LP: #1797092)
     - [Config] CONFIG_PCI_ECAM=y
     - PCI: Provide common functions for ECAM mapping
     - PCI: generic, thunder: Use generic ECAM API
     - PCI, of: Move PCI I/O space management to PCI core code
     - PCI: Move ecam.h to linux/include/pci-ecam.h
     - PCI: Add parent device field to ECAM struct pci_config_window
     - PCI: Add pci_unmap_iospace() to unmap I/O resources
     - PCI/ACPI: Support I/O resources when parsing host bridge resources
     - [Config] CONFIG_ACPI_MCFG=y
     - PCI/ACPI: Add generic MCFG table handling
     - PCI: Refactor pci_bus_assign_domain_nr() for CONFIG_PCI_DOMAINS_GENERIC
     - PCI: Factor DT-specific pci_bus_find_domain_nr() code out
     - ARM64: PCI: Add acpi_pci_bus_find_domain_nr()
     - ARM64: PCI: ACPI support for legacy IRQs parsing and consolidation with DT
       code
     - ARM64: PCI: Support ACPI-based PCI host controller
   * [GLK/CLX] Enhanced IBRS (LP: #1786139)
     - x86/speculation: Remove SPECTRE_V2_IBRS in enum spectre_v2_mitigation
     - x86/speculation: Support Enhanced IBRS on future CPUs
   * Update ENA driver to version 2.0.1K (LP: #1798182)
     - net: ena: remove ndo_poll_controller
     - net: ena: fix warning in rmmod caused by double iounmap
     - net: ena: fix rare bug when failed restart/resume is followed by driver
       removal
     - net: ena: fix NULL dereference due to untimely napi initialization
     - net: ena: fix auto casting to boolean
     - net: ena: minor performance improvement
     - net: ena: complete host info to match latest ENA spec
     - net: ena: introduce Low Latency Queues data structures according to ENA spec
     - net: ena: add functions for handling Low Latency Queues in ena_com
     - net: ena: add functions for handling Low Latency Queues in ena_netdev
     - net: ena: use CSUM_CHECKED device indication to report skb's checksum status
     - net: ena: explicit casting and initialization, and clearer error handling
     - net: ena: limit refill Rx threshold to 256 to avoid latency issues
     - net: ena: change rx copybreak default to reduce kernel memory pressure
     - net: ena: remove redundant parameter in ena_com_admin_init()
     - net: ena: update driver version to 2.0.1
     - net: ena: fix indentations in ena_defs for better readability
     - net: ena: Fix Kconfig dependency on X86
     - net: ena: enable Low Latency Queues
     - net: ena: fix compilation error in xtensa architecture
   * Xenial update: 4.4.162 upstream stable release (LP: #1801900)
     - ASoC: wm8804: Add ACPI support
     - ASoC: sigmadsp: safeload should not have lower byte limit
     - selftests/efivarfs: add required kernel configs
     - mfd: omap-usb-host: Fix dts probe of children
     - sound: enable interrupt after dma buffer initialization
     - stmmac: fix valid numbers of unicast filter entries
     - net: macb: disable scatter-gather for macb on sama5d3
     - ARM: dts: at91: add new compatibility string for macb on sama5d3
     - drm/amdgpu: Fix SDMA HQD destroy error on gfx_v7
     - ext4: add corruption check in ext4_xattr_set_entry()
     - mm/vmstat.c: fix outdated vmstat_text
     - mach64: detect the dot clock divider correctly on sparc
     - perf script python: Fix export-to-postgresql.py occasional failure
     - i2c: i2c-scmi: fix for i2c_smbus_write_block_data
     - xhci: Don't print a warning when setting link state for disabled ports
     - jffs2: return -ERANGE when xattr buffer is too small
     - bnxt_en: Fix TX timeout during netpoll.
     - bonding: avoid possible dead-lock
     - ip6_tunnel: be careful when accessing the inner header
     - ip_tunnel: be careful when accessing the inner header
     - ipv4: fix use-after-free in ip_cmsg_recv_dstaddr()
     - net: ipv4: update fnhe_pmtu when first hop's MTU changes
     - net/ipv6: Display all addresses in output of /proc/net/if_inet6
     - netlabel: check for IPV4MASK in addrinfo_get
     - net/usb: cancel pending work when unbinding smsc75xx
     - qlcnic: fix Tx descriptor corruption on 82xx devices
     - team: Forbid enslaving team device to itself
     - net: mvpp2: Extract the correct ethtype from the skb for tx csum offload
     - net: systemport: Fix wake-up interrupt race during resume
     - rtnl: limit IFLA_NUM_TX_QUEUES and IFLA_NUM_RX_QUEUES to 4096
     - KVM: x86: remove eager_fpu field of struct kvm_vcpu_arch
     - x86/fpu: Remove use_eager_fpu()
     - x86/fpu: Remove struct fpu::counter
     - x86/fpu: Finish excising 'eagerfpu'
     - media: af9035: prevent buffer overflow on write
     - clocksource/drivers/ti-32k: Add CLOCK_SOURCE_SUSPEND_NONSTOP flag for non-
       am43 SoCs
     - Input: atakbd - fix Atari keymap
     - Input: atakbd - fix Atari CapsLock behaviour
     - net/mlx4: Use cpumask_available for eq->affinity_mask
     - powerpc/tm: Fix userspace r13 corruption
     - powerpc/tm: Avoid possible userspace r1 corruption on reclaim
     - ARC: build: Get rid of toolchain check
     - usb: gadget: serial: fix oops when data rx'd after close
     - HV: properly delay KVP packets when negotiation is in progress
     - Linux 4.4.162
   

Source diff to previous version
1789161 Bypass of mount visibility through userns + mount propagation
1797990 kdump fail due to an IRQ storm
1797092 xenial guest on arm64 drops to busybox under openstack bionic-rocky
1786139 [GLK/CLX] Enhanced IBRS
1798182 Update ENA driver to version 2.0.1K
1801900 Xenial update: 4.4.162 upstream stable release
1801893 Xenial update: 4.4.161 upstream stable release
1793451 mlock203 test in ubuntu_ltp_syscalls failed with Xenial kernel
1786729 execveat03 in ubuntu_ltp_syscalls failed on X/B
1800639 [Ubuntu] net/af_iucv: fix skb leaks for HiperTransport
1801878 NULL pointer dereference at 0000000000000020 when access dst_orig-\u003eops-\u003efamily in function xfrm_lookup_with_ifid()
1800641 [Ubuntu] qeth: Fix potential array overrun in cmd/rc lookup
1786013 Packaging resync

Version: 4.4.0-1037.43 2018-10-26 12:08:04 UTC

 linux-kvm (4.4.0-1037.43) xenial; urgency=medium
 .
   * linux-kvm: 4.4.0-1037.43 -proposed tracker (LP: #1799408)
 .
   [ Ubuntu: 4.4.0-139.165 ]
 .
   * linux: 4.4.0-139.165 -proposed tracker (LP: #1799401)
   * Kernel panic after the ubuntu_nbd_smoke_test on Xenial kernel (LP: #1793464)
     - nbd: Remove signal usage
     - nbd: Timeouts are not user requested disconnects
     - nbd: Cleanup reset of nbd and bdev after a disconnect
     - nbd: don't shutdown sock with irq's disabled
     - nbd: fix race in ioctl
   * fscache: bad refcounting in fscache_op_complete leads to OOPS (LP: #1797314)
     - SAUCE: fscache: Fix race in decrementing refcount of op->npages
   * xenial: virtio-scsi: CPU soft lockup due to loop in
     virtscsi_target_destroy() (LP: #1798110)
     - SAUCE: (no-up) virtio-scsi: Decrement reqs counter before SCSI command
       requeue
   * Error reported when creating ZFS pool with "-t" option, despite successful
     pool creation (LP: #1769937)
     - SAUCE: (noup) Update zfs to 0.6.5.6-0ubuntu26
   * Xenial update: 4.4.160 upstream stable release (LP: #1798770)
     - crypto: skcipher - Fix -Wstringop-truncation warnings
     - tsl2550: fix lux1_input error in low light
     - vmci: type promotion bug in qp_host_get_user_memory()
     - x86/numa_emulation: Fix emulated-to-physical node mapping
     - staging: rts5208: fix missing error check on call to rtsx_write_register
     - uwb: hwa-rc: fix memory leak at probe
     - power: vexpress: fix corruption in notifier registration
     - Bluetooth: Add a new Realtek 8723DE ID 0bda:b009
     - USB: serial: kobil_sct: fix modem-status error handling
     - 6lowpan: iphc: reset mac_header after decompress to fix panic
     - md-cluster: clear another node's suspend_area after the copy is finished
     - media: exynos4-is: Prevent NULL pointer dereference in __isp_video_try_fmt()
     - powerpc/kdump: Handle crashkernel memory reservation failure
     - media: fsl-viu: fix error handling in viu_of_probe()
     - x86/tsc: Add missing header to tsc_msr.c
     - x86/entry/64: Add two more instruction suffixes
     - scsi: target/iscsi: Make iscsit_ta_authentication() respect the output
       buffer size
     - scsi: klist: Make it safe to use klists in atomic context
     - scsi: ibmvscsi: Improve strings handling
     - usb: wusbcore: security: cast sizeof to int for comparison
     - powerpc/powernv/ioda2: Reduce upper limit for DMA window size
     - alarmtimer: Prevent overflow for relative nanosleep
     - s390/extmem: fix gcc 8 stringop-overflow warning
     - ALSA: snd-aoa: add of_node_put() in error path
     - media: s3c-camif: ignore -ENOIOCTLCMD from v4l2_subdev_call for s_power
     - media: soc_camera: ov772x: correct setting of banding filter
     - media: omap3isp: zero-initialize the isp cam_xclk{a,b} initial data
     - staging: android: ashmem: Fix mmap size validation
     - drivers/tty: add error handling for pcmcia_loop_config
     - media: tm6000: add error handling for dvb_register_adapter
     - ALSA: hda: Add AZX_DCAPS_PM_RUNTIME for AMD Raven Ridge
     - ath10k: protect ath10k_htt_rx_ring_free with rx_ring.lock
     - rndis_wlan: potential buffer overflow in rndis_wlan_auth_indication()
     - wlcore: Add missing PM call for wlcore_cmd_wait_for_event_or_timeout()
     - ARM: mvebu: declare asm symbols as character arrays in pmsu.c
     - HID: hid-ntrig: add error handling for sysfs_create_group
     - scsi: bnx2i: add error handling for ioremap_nocache
     - EDAC, i7core: Fix memleaks and use-after-free on probe and remove
     - ASoC: dapm: Fix potential DAI widget pointer deref when linking DAIs
     - module: exclude SHN_UNDEF symbols from kallsyms api
     - nfsd: fix corrupted reply to badly ordered compound
     - ARM: dts: dra7: fix DCAN node addresses
     - serial: cpm_uart: return immediately from console poll
     - spi: tegra20-slink: explicitly enable/disable clock
     - spi: sh-msiof: Fix invalid SPI use during system suspend
     - spi: sh-msiof: Fix handling of write value for SISTR register
     - spi: rspi: Fix invalid SPI use during system suspend
     - spi: rspi: Fix interrupted DMA transfers
     - USB: fix error handling in usb_driver_claim_interface()
     - USB: handle NULL config in usb_find_alt_setting()
     - slub: make ->cpu_partial unsigned int
     - Revert "UBUNTU: SAUCE: media: uvcvideo: Support realtek's UVC 1.5 device"
     - media: uvcvideo: Support realtek's UVC 1.5 device
     - USB: usbdevfs: sanitize flags more
     - USB: usbdevfs: restore warning for nonsensical flags
     - Revert "usb: cdc-wdm: Fix a sleep-in-atomic-context bug in
       service_outstanding_interrupt()"
     - USB: remove LPM management from usb_driver_claim_interface()
     - Input: elantech - enable middle button of touchpad on ThinkPad P72
     - IB/srp: Avoid that sg_reset -d ${srp_device} triggers an infinite loop
     - scsi: target: iscsi: Use bin2hex instead of a re-implementation
     - serial: imx: restore handshaking irq for imx1
     - arm64: KVM: Tighten guest core register access from userspace
     - ext4: never move the system.data xattr out of the inode body
     - thermal: of-thermal: disable passive polling when thermal zone is disabled
     - net: hns: fix length and page_offset overflow when CONFIG_ARM64_64K_PAGES
     - e1000: check on netif_running() before calling e1000_up()
     - e1000: ensure to free old tx/rx rings in set_ringparam()
     - hwmon: (ina2xx) fix sysfs shunt resistor read access
     - hwmon: (adt7475) Make adt7475_read_word() return errors
     - i2c: i801: Allow ACPI AML access I/O ports not reserved for SMBus
     - arm64: cpufeature: Track 32bit EL0 support
     - arm64: KVM: Sanitize PSTATE.M when being set from userspace
     - media: v4l: event: Prevent freeing event subscriptions while accessed
     - KVM: PPC: Book3S HV: Don't truncate HPTE index in xlate function
     - mac80211: correct use of IEEE80211_VHT_CAP_RXSTBC_X

1793464 Kernel panic after the ubuntu_nbd_smoke_test on Xenial kernel
1797314 fscache: bad refcounting in fscache_op_complete leads to OOPS
1798110 xenial: virtio-scsi: CPU soft lockup due to loop in virtscsi_target_destroy()
1769937 Error reported when creating ZFS pool with \
1798770 Xenial update: 4.4.160 upstream stable release
1775068 Volume control not working Dell XPS 27 (7760)
1798617 Xenial update: 4.4.159 upstream stable release
1798587 Xenial update: 4.4.158 upstream stable release
1798539 Xenial update: 4.4.157 upstream stable release
1797563 Xenial update: 4.4.156 upstream stable release
CVE-2018-7755 An issue was discovered in the fd_locked_ioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy driver will copy a k



About   -   Send Feedback to @ubuntu_updates