Lunar update: upstream stable patchset 2023-10-02
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Lunar |
Fix Released
|
Medium
|
Kamal Mostafa |
Bug Description
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The following upstream
stable patches should be included in the Ubuntu kernel:
upstream stable patchset 2023-10-02
from git://git.
UBUNTU: Upstream stable to v6.1.44, v6.4.9
net/mlx5: Free irqs only on shutdown callback
iommu/arm-smmu-v3: Work around MMU-600 erratum 1076982
iommu/arm-smmu-v3: Document MMU-700 erratum 2812531
iommu/arm-smmu-v3: Add explicit feature for nesting
iommu/arm-smmu-v3: Document nesting-related errata
arm64: dts: imx8mm-
arm64: dts: imx8mm-
arm64: dts: phycore-imx8mm: Label typo-fix of VPU
arm64: dts: phycore-imx8mm: Correction in gpio-line-names
arm64: dts: imx8mn-var-som: add missing pull-up for onboard PHY reset pinmux
arm64: dts: freescale: Fix VPU G2 clock
firmware: smccc: Fix use of uninitialised results structure
lib/bitmap: workaround const_eval test build failure
firmware: arm_scmi: Fix chan_free cleanup on SMC
word-at-a-time: use the same return type for has_zero regardless of endianness
KVM: s390: fix sthyi error handling
erofs: fix wrong primary bvec selection on deduplicated extents
wifi: cfg80211: Fix return value in scan logic
net/mlx5e: fix double free in macsec_
net/mlx5: DR, fix memory leak in mlx5dr_
net/mlx5: fix potential memory leak in mlx5e_init_rep_rx
net/mlx5e: fix return value check in mlx5e_ipsec_
net/mlx5e: Fix crash moving to switchdev mode when ntuple offload is set
net/mlx5e: Move representor neigh cleanup to profile cleanup_tx
bpf: Add length check for SK_DIAG_
rtnetlink: let rtnl_bridge_setlink checks IFLA_BRIDGE_MODE length
net: dsa: fix value check in bcm_sf2_sw_probe()
perf test uprobe_
net: sched: cls_u32: Fix match key mis-addressing
mISDN: hfcpci: Fix potential deadlock on &hc->lock
qed: Fix scheduling in a tasklet while getting stats
net: annotate data-races around sk->sk_reserved_mem
net: annotate data-race around sk->sk_txrehash
net: annotate data-races around sk->sk_
net: add missing READ_ONCE(
net: add missing READ_ONCE(
net: add missing READ_ONCE(
net: annotate data-races around sk->sk_mark
net: add missing data-race annotations around sk->sk_peek_off
net: add missing data-race annotation for sk_ll_usec
net: annotate data-races around sk->sk_priority
net/sched: taprio: Limit TCA_TAPRIO_
ice: Fix RDMA VSI removal during queue rebuild
bpf, cpumap: Handle skb as well when clean up ptr_ring
bpf: sockmap: Remove preempt_disable in sock_map_sk_acquire
net: ll_temac: fix error checking of irq_of_
net: korina: handle clk prepare error in korina_probe()
net: netsec: Ignore 'phy-mode' on SynQuacer in DT mode
bnxt_en: Fix page pool logic for page size >= 64K
bnxt_en: Fix max_mtu setting for multi-buf XDP
net: dcb: choose correct policy to parse DCB_ATTR_BCN
s390/qeth: Don't call dev_close/dev_open (DOWN/UP)
ip6mr: Fix skb_under_panic in ip6mr_cache_
vxlan: Fix nexthop hash size
net/mlx5: fs_core: Make find_closest_ft more generic
net/mlx5: fs_core: Skip the FTs in the same FS_TYPE_PRIO_CHAINS fs_prio
prestera: fix fallback to previous version on same major version
tcp_metrics: fix addr_same() helper
tcp_metrics: annotate data-races around tm->tcpm_stamp
tcp_metrics: annotate data-races around tm->tcpm_lock
tcp_metrics: annotate data-races around tm->tcpm_vals[]
tcp_metrics: annotate data-races around tm->tcpm_net
tcp_metrics: fix data-race in tcpm_suck_dst() vs fastopen
rust: allocator: Prevent mis-aligned allocation
scsi: zfcp: Defer fc_rport blocking until after ADISC response
scsi: storvsc: Limit max_sectors for virtual Fibre Channel devices
libceph: fix potential hang in ceph_osdc_notify()
USB: zaurus: Add ID for A-300/B-500/C-700
ceph: defer stopping mdsc delayed_work
firmware: arm_scmi: Drop OF node reference in the transport channel setup
exfat: use kvmalloc_
exfat: release s_lock before calling dir_emit()
mtd: spinand: toshiba: Fix ecc_get_status
mtd: rawnand: meson: fix OOB available bytes for ECC
bpf: Disable preemption in bpf_perf_
arm64: dts: stratix10: fix incorrect I2C property for SCL signal
wifi: mt76: mt7615: do not advertise 5 GHz on first phy of MT7615D (DBDC)
x86/hyperv: Disable IBT when hypercall page lacks ENDBR instruction
rbd: prevent busy loop when requesting exclusive lock
bpf: Disable preemption in bpf_event_output
powerpc/ftrace: Create a dummy stackframe to fix stack unwind
arm64/fpsimd: Sync and zero pad FPSIMD state for streaming SVE
arm64/fpsimd: Clear SME state in the target task when setting the VL
arm64/fpsimd: Sync FPSIMD state with SVE for SME only systems
open: make RESOLVE_CACHED correctly test for O_TMPFILE
drm/ttm: check null pointer before accessing when swapping
drm/i915: Fix premature release of request's reusable memory
drm/i915/gt: Cleanup aux invalidation registers
clk: imx93: Propagate correct error in imx93_clocks_
bpf, cpumap: Make sure kthread is running before map update returns
file: reinstate f_pos locking optimization for regular files
mm: kmem: fix a NULL pointer dereference in obj_stock_
fs/ntfs3: Use __GFP_NOWARN allocation at ntfs_load_
fs/sysv: Null check to prevent null-ptr-deref bug
debugobjects: Recheck debug_objects_
net: usbnet: Fix WARNING in usbnet_
fs: Protect reconfiguration of sb read-write from racing writes
ext2: Drop fragment support
btrfs: remove BUG_ON()'s in add_new_
io_uring: annotate offset timeout races
mtd: rawnand: omap_elm: Fix incorrect type in assignment
mtd: rawnand: rockchip: fix oobfree offset and description
mtd: rawnand: rockchip: Align hwecc vs. raw page helper layouts
mtd: rawnand: fsl_upm: Fix an off-by one test in fun_exec_op()
powerpc/mm/altmap: Fix altmap boundary check
drm/imx/ipuv3: Fix front porch adjustment upon hactive aligning
drm/amd/display: Ensure that planes are in the same order
drm/amd/display: skip CLEAR_PAYLOAD_
selftests/rseq: Play nice with binaries statically linked against glibc 2.35+
arm64/ptrace: Don't enable SVE when setting streaming SVE
drm/amdgpu: Use apt name for FW reserved region
Revert "drm/i915: Disable DC states for all commits"
net/mlx5: Honor user input for migratable port fn attr
net/mlx5e: xsk: Fix crash on regular rq reactivation
net: stmmac: tegra: Properly allocate clock bulk data
net: gro: fix misuse of CB in udp socket lookup
net: usb: lan78xx: reorder cleanup operations to avoid UAF bugs
bnxt: don't handle XDP in netpoll
selftest: net: Assert on a proper value in so_incoming_cpu.c.
mtd: spinand: winbond: Fix ecc_get_status
smb: client: fix dfs link mount against w2k8
ARM: dts: nxp/imx6sll: fix wrong property name in usbphy node
UBUNTU: Upstream stable to v6.1.45, v6.4.10
Changed in linux (Ubuntu): | |
status: | New → Confirmed |
tags: | added: kernel-stable-tracking-bug |
Changed in linux (Ubuntu): | |
status: | Confirmed → Invalid |
Changed in linux (Ubuntu Lunar): | |
status: | New → In Progress |
importance: | Undecided → Medium |
assignee: | nobody → Kamal Mostafa (kamalmostafa) |
description: | updated |
Changed in linux (Ubuntu Lunar): | |
status: | In Progress → Fix Committed |
This bug was fixed in the package linux - 6.2.0-39.40
---------------
linux (6.2.0-39.40) lunar; urgency=medium
* lunar/linux: 6.2.0-39.40 -proposed tracker (LP: #2043451)
* USB bus error after upgrading to proposed kernel on lunar and jammy
(LP: #2043197)
- USB: core: Fix oversight in SuperSpeed initialization
* Include cifs.ko in linux-modules package (LP: #2042546)
- [Packaging] Replace fs/cifs with fs/smb/client in inclusion list
linux (6.2.0-38.39) lunar; urgency=medium
* lunar/linux: 6.2.0-38.39 -proposed tracker (LP: #2041557)
* CVE-2023-25775
- RDMA/irdma: Prevent zero-length STAG registration
* CVE-2023-5345
- fs/smb/client: Reset password pointer to NULL
* CVE-2023-39189
- netfilter: nfnetlink_osf: avoid OOB read
* SMC stats: Wrong bucket calculation for payload of exactly 4096 bytes
(LP: #2039575)
- net/smc: Fix pos miscalculation in statistics
* [SRU][J/L/M] UBUNTU: [Packaging] Make WWAN driver a loadable module
(LP: #2033406)
- [Packaging] Make WWAN driver loadable modules
* CVE-2023-45871
- igb: set max size RX buffer when store bad packet is enabled
* CVE-2023-39193
- netfilter: xt_sctp: validate the flag_info count
* CVE-2023-39192
- netfilter: xt_u32: validate user space input
* CVE-2023-31085
- ubi: Refuse attaching if mtd's erasesize is 0
* CVE-2023-5717
- perf: Disallow mis-matched inherited group reads
* CVE-2023-5178
- nvmet-tcp: Fix a possible UAF in queue intialization setup
* CVE-2023-5158 kiov_advance( ) in vringh_iov_xfer()
- vringh: don't use vringh_
* CVE-2023-5090
- x86: KVM: SVM: always update the x2avic msr interception
* usbip: error: failed to open /usr/share/ hwdata/ /usb.ids (LP: #2039439)
- [Packaging] Make linux-tools-common depend on hwdata
* Unable to use nvme drive to install Ubuntu 23.10 (LP: #2040157)
- misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to
probe
* Lunar update: upstream stable patchset 2023-10-19 (LP: #2039884) init_layout_ section( ) der.h init_layout_ section( ) to spot init sections init_layout_ section( ) to spot init sections personality( ) is called from asm code ntlmssp_ auth_blob( )
- ACPI: thermal: Drop nocrt parameter
- module: Expose module_
- arm64: module-plts: inline linux/moduleloa
- arm64: module: Use module_
- ARM: module: Use module_
- lockdep: fix static memory detection even more
- parisc: Cleanup mmap implementation regarding color alignment
- parisc: sys_parisc: parisc_
- io_uring/parisc: Adjust pgoff in io_uring mmap() for parisc
- kallsyms: Fix kallsyms_selftest failure
- module/decompress: use vmalloc() for zstd decompression workspace
- Upstream stable to v6.1.51, v6.4.14
- erofs: ensure that the post-EOF tails are all zeroed
- ksmbd: fix wrong DataOffset validation of create context
- ksmbd: fix slub overflow in ksmbd_decode_
- ksmbd: replace one-element array with flex-array member in struct
smb2_ea_info
- ksmbd: reduce descriptor size if remaining bytes is less than request size
- ARM: pxa: remove use of symbol_get()
- mmc: au1x...