linux-kvm 5.0.0-1022.24 source package in Ubuntu
Changelog
linux-kvm (5.0.0-1022.24) disco; urgency=medium
* CVE-2019-11135
- [Config] Disable TSX by default when possible
[ Ubuntu: 5.0.0-35.38 ]
* [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout
setting (LP: #1849682)
- SAUCE: Fix revert "md/raid0: avoid RAID0 data corruption due to layout
confusion."
* refcount underflow and type confusion in shiftfs (LP: #1850867) // CVE-2019-15793
- SAUCE: shiftfs: Correct id translation for lower fs operations
- SAUCE: shiftfs: prevent type confusion
- SAUCE: shiftfs: Fix refcount underflow in btrfs ioctl handling
* CVE-2018-12207
- kvm: Convert kvm_lock to a mutex
- kvm: x86: Do not release the page inside mmu_set_spte()
- KVM: x86: make FNAME(fetch) and __direct_map more similar
- KVM: x86: remove now unneeded hugepage gfn adjustment
- KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON
- KVM: x86: add tracepoints around __direct_map and FNAME(fetch)
- kvm: x86, powerpc: do not allow clearing largepages debugfs entry
- SAUCE: KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is
active
- SAUCE: x86: Add ITLB_MULTIHIT bug infrastructure
- SAUCE: kvm: mmu: ITLB_MULTIHIT mitigation
- SAUCE: kvm: Add helper function for creating VM worker threads
- SAUCE: kvm: x86: mmu: Recovery of shattered NX large pages
- SAUCE: cpu/speculation: Uninline and export CPU mitigations helpers
- SAUCE: kvm: x86: mmu: Apply global mitigations knob to ITLB_MULTIHIT
* CVE-2019-11135
- KVM: x86: use Intel speculation bugs and features as derived in generic x86
code
- x86/msr: Add the IA32_TSX_CTRL MSR
- x86/cpu: Add a helper function x86_read_arch_cap_msr()
- x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default
- x86/speculation/taa: Add mitigation for TSX Async Abort
- x86/speculation/taa: Add sysfs reporting for TSX Async Abort
- kvm/x86: Export MDS_NO=0 to guests when TSX is enabled
- x86/tsx: Add "auto" option to the tsx= cmdline parameter
- x86/speculation/taa: Add documentation for TSX Async Abort
- x86/tsx: Add config options to set tsx=on|off|auto
- SAUCE: x86/speculation/taa: Call tsx_init()
- [Config] Disable TSX by default when possible
* CVE-2019-0154
- SAUCE: drm/i915: Lower RM timeout to avoid DSI hard hangs
- SAUCE: drm/i915/gen8+: Add RC6 CTX corruption WA
* CVE-2019-0155
- SAUCE: drm/i915: Rename gen7 cmdparser tables
- SAUCE: drm/i915: Disable Secure Batches for gen6+
- SAUCE: drm/i915: Remove Master tables from cmdparser
- SAUCE: drm/i915: Add support for mandatory cmdparsing
- SAUCE: drm/i915: Support ro ppgtt mapped cmdparser shadow buffers
- SAUCE: drm/i915: Allow parsing of unsized batches
- SAUCE: drm/i915: Add gen9 BCS cmdparsing
- SAUCE: drm/i915/cmdparser: Use explicit goto for error paths
- SAUCE: drm/i915/cmdparser: Add support for backward jumps
- SAUCE: drm/i915/cmdparser: Ignore Length operands during command matching
[ Ubuntu: 5.0.0-34.36 ]
* disco/linux: <version to be filled> -proposed tracker (LP: #1850574)
* [REGRESSION] md/raid0: cannot assemble multi-zone RAID0 with default_layout
setting (LP: #1849682)
- Revert "md/raid0: avoid RAID0 data corruption due to layout confusion."
-- Juerg Haefliger <email address hidden> Mon, 11 Nov 2019 13:14:09 +0100
Upload details
- Uploaded by:
- Juerg Haefliger
- Uploaded to:
- Disco
- Original maintainer:
- Ubuntu Kernel Team
- Architectures:
- all amd64
- Section:
- devel
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| linux-kvm_5.0.0.orig.tar.gz | 155.1 MiB | d9dcf8bafdd5778274c3f9d2634500d4cc186f3ba80fc71ea1a1a100aa65ad6f |
| linux-kvm_5.0.0-1022.24.diff.gz | 6.2 MiB | fc503f99759f8612a100ef96f70e5188a31dfc428446b60a7415e98fd061fd14 |
| linux-kvm_5.0.0-1022.24.dsc | 4.0 KiB | b8ba93bf4e9c66f1892d39d22729b67f498b789efeee5b1496824a06c954cce5 |
Available diffs
- diff from 5.0.0-1020.21 (in ~canonical-kernel-team/ubuntu/ppa) to 5.0.0-1022.24 (3.4 MiB)
- diff from 5.0.0-1021.22 (in ~canonical-kernel-team/ubuntu/ppa) to 5.0.0-1022.24 (3.2 MiB)
- diff from 5.0.0-1022.23 (in ~canonical-kernel-security-team/ubuntu/ppa) to 5.0.0-1022.24 (3.0 KiB)
- diff from 5.0.0-1004.4 (in ~canonical-kernel-team/ubuntu/bootstrap) to 5.0.0-1022.24 (5.3 MiB)
Binary packages built by this source
- linux-buildinfo-5.0.0-1022-kvm: No summary available for linux-buildinfo-5.0.0-1022-kvm in ubuntu disco.
No description available for linux-buildinfo
-5.0.0- 1022-kvm in ubuntu disco.
- linux-headers-5.0.0-1022-kvm: No summary available for linux-headers-5.0.0-1022-kvm in ubuntu disco.
No description available for linux-headers-
5.0.0-1022- kvm in ubuntu disco.
- linux-image-5.0.0-1022-kvm: No summary available for linux-image-5.0.0-1022-kvm in ubuntu disco.
No description available for linux-image-
5.0.0-1022- kvm in ubuntu disco.
- linux-image-5.0.0-1022-kvm-dbgsym: No summary available for linux-image-5.0.0-1022-kvm-dbgsym in ubuntu disco.
No description available for linux-image-
5.0.0-1022- kvm-dbgsym in ubuntu disco.
- linux-kvm-headers-5.0.0-1022: No summary available for linux-kvm-headers-5.0.0-1022 in ubuntu disco.
No description available for linux-kvm-
headers- 5.0.0-1022 in ubuntu disco.
- linux-kvm-tools-5.0.0-1022: No summary available for linux-kvm-tools-5.0.0-1022 in ubuntu disco.
No description available for linux-kvm-
tools-5. 0.0-1022 in ubuntu disco.
- linux-modules-5.0.0-1022-kvm: No summary available for linux-modules-5.0.0-1022-kvm in ubuntu disco.
No description available for linux-modules-
5.0.0-1022- kvm in ubuntu disco.
- linux-tools-5.0.0-1022-kvm: No summary available for linux-tools-5.0.0-1022-kvm in ubuntu disco.
No description available for linux-tools-
5.0.0-1022- kvm in ubuntu disco.
