UbuntuUpdates.org

Package "linux-aws-edge"

Name: linux-aws-edge

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Header files related to Linux kernel version 4.18.0
  • Header files related to Linux kernel version 4.18.0
  • Header files related to Linux kernel version 4.18.0
  • Header files related to Linux kernel version 4.18.0

Latest version: 5.0.0-1019.21~18.04.1
Release: bionic (18.04)
Level: security
Repository: universe

Links



Other versions of "linux-aws-edge" in Bionic

Repository Area Version
updates universe 5.0.0-1019.21~18.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.0.0-1019.21~18.04.1 2019-10-22 14:06:37 UTC

  linux-aws-edge (5.0.0-1019.21~18.04.1) bionic; urgency=medium

  * bionic/linux-aws-edge: 5.0.0-1019.21~18.04.1 -proposed tracker
    (LP: #1846074)

  [ Ubuntu: 5.0.0-1019.21 ]

  * disco/linux-aws: 5.0.0-1019.21 -proposed tracker (LP: #1846075)
  * Support Hi1620 zip hw accelerator (LP: #1845355)
    - [config] Update configs after dependency change
  * disco/linux: 5.0.0-32.34 -proposed tracker (LP: #1846097)
  * CVE-2019-14814 // CVE-2019-14815 // CVE-2019-14816
    - mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings
  * CVE-2019-15505
    - media: technisat-usb2: break out of loop at end of buffer
  * CVE-2019-2181
    - binder: check for overflow when alloc for security context
  * Support Hi1620 zip hw accelerator (LP: #1845355)
    - [Config] Enable HiSilicon QM/ZIP as modules
    - crypto: hisilicon - add queue management driver for HiSilicon QM module
    - crypto: hisilicon - add hardware SGL support
    - crypto: hisilicon - add HiSilicon ZIP accelerator support
    - crypto: hisilicon - add SRIOV support for ZIP
    - Documentation: Add debugfs doc for hisi_zip
    - crypto: hisilicon - add debugfs for ZIP and QM
    - MAINTAINERS: add maintainer for HiSilicon QM and ZIP controller driver
    - crypto: hisilicon - fix kbuild warnings
    - crypto: hisilicon - add dependency for CRYPTO_DEV_HISI_ZIP
    - crypto: hisilicon - init curr_sgl_dma to fix compile warning
    - crypto: hisilicon - add missing single_release
    - crypto: hisilicon - fix error handle in hisi_zip_create_req_q
    - crypto: hisilicon - Fix warning on printing %p with dma_addr_t
    - crypto: hisilicon - Fix return value check in hisi_zip_acompress()
    - crypto: hisilicon - avoid unused function warning
  * xfrm interface: several kernel panic (LP: #1836261)
    - xfrm interface: fix memory leak on creation
    - xfrm interface: avoid corruption on changelink
    - xfrm interface: ifname may be wrong in logs
    - xfrm interface: fix list corruption for x-netns
    - xfrm interface: fix management of phydev
  * shiftfs: drop entries from cache on unlink (LP: #1841977)
    - SAUCE: shiftfs: fix buggy unlink logic
  * shiftfs: mark kmem_cache as reclaimable (LP: #1842059)
    - SAUCE: shiftfs: mark slab objects SLAB_RECLAIM_ACCOUNT
  * Suspend to RAM(S3) does not wake up for latest megaraid and mpt3sas
    adapters(SAS3.5 onwards) (LP: #1838751)
    - PCI: Restore Resizable BAR size bits correctly for 1MB BARs
  * No sound inputs from the external microphone and headset on a Dell machine
    (LP: #1842265)
    - ALSA: hda - Expand pin_match function to match upcoming new tbls
    - ALSA: hda - Define a fallback_pin_fixup_tbl for alc269 family
  * Add -fcf-protection=none when using retpoline flags (LP: #1843291)
    - SAUCE: kbuild: add -fcf-protection=none when using retpoline flags
  * Disco update: upstream stable patchset 2019-09-25 (LP: #1845390)
    - bridge/mdb: remove wrong use of NLM_F_MULTI
    - cdc_ether: fix rndis support for Mediatek based smartphones
    - ipv6: Fix the link time qualifier of 'ping_v6_proc_exit_net()'
    - isdn/capi: check message length in capi_write()
    - ixgbe: Fix secpath usage for IPsec TX offload.
    - net: Fix null de-reference of device refcount
    - net: gso: Fix skb_segment splat when splitting gso_size mangled skb having
      linear-headed frag_list
    - net: phylink: Fix flow control resolution
    - net: sched: fix reordering issues
    - sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
    - sctp: Fix the link time qualifier of 'sctp_ctrlsock_exit()'
    - sctp: use transport pf_retrans in sctp_do_8_2_transport_strike
    - tcp: fix tcp_ecn_withdraw_cwr() to clear TCP_ECN_QUEUE_CWR
    - tipc: add NULL pointer check before calling kfree_rcu
    - tun: fix use-after-free when register netdev failed
    - gpiolib: acpi: Add gpiolib_acpi_run_edge_events_on_boot option and blacklist
    - gpio: fix line flag validation in linehandle_create
    - Btrfs: fix assertion failure during fsync and use of stale transaction
    - ixgbe: Prevent u8 wrapping of ITR value to something less than 10us
    - genirq: Prevent NULL pointer dereference in resend_irqs()
    - KVM: s390: kvm_s390_vm_start_migration: check dirty_bitmap before using it
      as target for memset()
    - KVM: s390: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl
    - KVM: x86: work around leak of uninitialized stack contents
    - KVM: nVMX: handle page fault in vmread
    - x86/purgatory: Change compiler flags from -mcmodel=kernel to -mcmodel=large
      to fix kexec relocation errors
    - powerpc: Add barrier_nospec to raw_copy_in_user()
    - drm/meson: Add support for XBGR8888 & ABGR8888 formats
    - clk: rockchip: Don't yell about bad mmc phases when getting
    - mtd: rawnand: mtk: Fix wrongly assigned OOB buffer pointer issue
    - PCI: Always allow probing with driver_override
    - gpio: fix line flag validation in lineevent_create
    - ubifs: Correctly use tnc_next() in search_dh_cookie()
    - driver core: Fix use-after-free and double free on glue directory
    - crypto: talitos - check AES key size
    - crypto: talitos - fix CTR alg blocksize
    - crypto: talitos - check data blocksize in ablkcipher.
    - crypto: talitos - fix ECB algs ivsize
    - crypto: talitos - Do not modify req->cryptlen on decryption.
    - crypto: talitos - HMAC SNOOP NO AFEU mode requires SW icv checking.
    - firmware: ti_sci: Always request response from firmware
    - drm: panel-orientation-quirks: Add extra quirk table entry for GPD MicroPC
    - drm/mediatek: mtk_drm_drv.c: Add of_node_put() before goto
    - Revert "Bluetooth: btusb: driver to enable the usb-wakeup feature"
    - iio: adc: stm32-dfsdm: fix data type
    - modules: fix BUG when load module with rodata=n
    - modules: fix compile error if don't have strict module rwx
    - platform/x86: pmc_atom: Add CB4063 Beckhoff Automation board to
      critclk_systems DMI table
  

Source diff to previous version
1845355 Support Hi1620 zip hw accelerator
1836261 xfrm interface: several kernel panic
1841977 shiftfs: drop entries from cache on unlink
1842059 shiftfs: mark kmem_cache as reclaimable
1838751 Suspend to RAM(S3) does not wake up for latest megaraid and mpt3sas adapters(SAS3.5 onwards)
1842265 No sound inputs from the external microphone and headset on a Dell machine
1843291 Add -fcf-protection=none when using retpoline flags
1845390 Disco update: upstream stable patchset 2019-09-25
1844722 Disco update: upstream stable patchset 2019-09-19
1843622 Disco update: upstream stable patchset 2019-09-11
1838886 New ID in ums-realtek module breaks cardreader
1836912 ipv4: enable route flushing in network namespaces
1842774 Enhanced Hardware Support - Finalize Naming
CVE-2019-14814 There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows
CVE-2019-14816 There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local
CVE-2019-15505 drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be r
CVE-2019-2181 In binder_transaction of binder.c in the Android kernel, there is a possible out of bounds write due to an integer overflow. This could lead to local
CVE-2019-16714 In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory bec
CVE-2019-14821 An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coales

Version: 5.0.0-1018.20~18.04.1 2019-10-06 11:06:46 UTC

  linux-aws-edge (5.0.0-1018.20~18.04.1) bionic; urgency=medium

  * bionic/linux-aws-edge: 5.0.0-1018.20~18.04.1 -proposed tracker
    (LP: #1846002)

  [ Ubuntu: 5.0.0-1018.20 ]

  * disco/linux-aws: 5.0.0-1018.20 -proposed tracker (LP: #1846003)
  * disco/linux: 5.0.0-31.33 -proposed tracker (LP: #1846026)
  * Packaging resync (LP: #1786013)
    - [Packaging] update helper scripts
  * /proc/self/maps paths missing on live session (was vlc won't start; eoan
    19.10 & bionic 18.04 ubuntu/lubuntu/kubuntu/xubuntu/ubuntu-mate dailies)
    (LP: #1842382)
    - SAUCE: Revert "UBUNTU: SAUCE: shiftfs: enable overlayfs on shiftfs"

Source diff to previous version
1786013 Packaging resync
1842382 /proc/self/maps paths missing on live session (was vlc won't start; eoan 19.10 \u0026 bionic 18.04 ubuntu/lubuntu/kubuntu/xubuntu/ubuntu-mate dailies

Version: 5.0.0-1016.18~18.04.1 2019-09-18 09:06:33 UTC

  linux-aws-edge (5.0.0-1016.18~18.04.1) bionic; urgency=medium

  [ Ubuntu: 5.0.0-1016.18 ]

  * powerpc/tm: Fix restoring FP/VMX facility incorrectly on interrupts
    (CVE-2019-15031) / powerpc/tm: Fix FP/VMX unavailable exceptions inside a
    transaction (CVE-2019-15030) (LP: #1843533) // CVE-2019-15031
    - powerpc/tm: Fix FP/VMX unavailable exceptions inside a transaction
    - powerpc/tm: Fix restoring FP/VMX facility incorrectly on interrupts
  * CVE-2019-14835
    - vhost: fix dirty log buffer overflow
  * Packaging resync (LP: #1786013)
    - [Packaging] resync getabis

 -- Stefan Bader <email address hidden> Fri, 13 Sep 2019 11:55:58 +0200

Source diff to previous version
1843533 powerpc/tm: Fix restoring FP/VMX facility incorrectly on interrupts (CVE-2019-15031) / powerpc/tm: Fix FP/VMX unavailable exceptions inside a transac
1786013 Packaging resync
CVE-2019-15031 In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via an interrupt. To exp
CVE-2019-15030 In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailab
CVE-2019-14835 A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in ...

Version: 5.0.0-1014.16~18.04.1 2019-09-03 15:06:19 UTC

  linux-aws-edge (5.0.0-1014.16~18.04.1) bionic; urgency=medium

  * bionic/linux-aws-edge: 5.0.0-1014.16~18.04.1 -proposed tracker
    (LP: #1840820)

  * [18.04/18.10] File libperf-jvmti.so is missing in linux-tools-common deb on
    Ubuntu (LP: #1761379)
    - [Packaging] aws: Enable building libperf-jvmti.so

  [ Ubuntu: 5.0.0-1014.16 ]

  * disco/linux-aws: 5.0.0-1014.16 -proposed tracker (LP: #1840800)
  * Packaging resync (LP: #1786013)
    - [Packaging] resync getabis
  * [18.04/18.10] File libperf-jvmti.so is missing in linux-tools-common deb on
    Ubuntu (LP: #1761379)
    - [Packaging] aws: Enable building libperf-jvmti.so
  * disco/linux: 5.0.0-27.28 -proposed tracker (LP: #1840816)
  * [Potential Regression] System crashes when running ftrace test in
    ubuntu_kernel_selftests (LP: #1840750)
    - x86/kprobes: Set instruction page as executable

Source diff to previous version
1761379 [18.04/18.10] File libperf-jvmti.so is missing in linux-tools-common deb on Ubuntu
1786013 Packaging resync
1840750 [Potential Regression] System crashes when running ftrace test in ubuntu_kernel_selftests

Version: 5.0.0-1012.13~18.04.1 2019-08-14 07:13:23 UTC

  linux-aws-edge (5.0.0-1012.13~18.04.1) bionic; urgency=medium

  * Packaging resync (LP: #1786013)
    - [Packaging] resync git-ubuntu-log

  * linux-aws builds modules which are not shipped (LP: #1836706)
    - [Packaging] Start shipping modules-extra

  [ Ubuntu: 5.0.0-1012.13 ]

  * add support for Amazon Graviton PCIe controller (LP: #1834962)
    - PCI: al: Add Amazon Annapurna Labs PCIe host controller driver
    - genirq/msi: Add a new field in msi_desc to store an IOMMU cookie
    - iommu/dma-iommu: Split iommu_dma_map_msi_msg() in two parts
    - irqchip/gicv2m: Don't map the MSI page in gicv2m_compose_msi_msg()
    - SAUCE: irqchip/gic: Add support for Amazon Graviton variant of GICv3+GICv2m
    - SAUCE: [aws] arm64: acpi/pci: invoke _DSM whether to preserve firmware PCI
      setup
    - [Config] aws: set CONFIG_IRQ_MSI_IOMMU=y
  * CVE-2019-1125
    - x86/cpufeatures: Carve out CQM features retrieval
    - x86/cpufeatures: Combine word 11 and 12 into a new scattered features word
    - x86/speculation: Prepare entry code for Spectre v1 swapgs mitigations
    - x86/speculation: Enable Spectre v1 swapgs mitigations
    - x86/entry/64: Use JMP instead of JMPQ
    - x86/speculation/swapgs: Exclude ATOMs from speculation through SWAPGS
  * linux-aws builds modules which are not shipped (LP: #1836706)
    - [Packaging] Start shipping modules-extra

 -- Kleber Sacilotto de Souza <email address hidden> Fri, 02 Aug 2019 17:25:53 +0200

1786013 Packaging resync
1836706 linux-aws builds modules which are not shipped
1834962 add support for Amazon Graviton PCIe controller
CVE-2019-1125 RESERVED



About   -   Send Feedback to @ubuntu_updates