Lunar update: upstream stable patchset 2023-10-10
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Lunar |
Fix Released
|
Medium
|
Kamal Mostafa |
Bug Description
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The following upstream
stable patches should be included in the Ubuntu kernel:
upstream stable patchset 2023-10-10
from git://git.
tpm: Disable RNG for all AMD fTPMs
tpm: Add a helper for checking hwrng enabled
ksmbd: validate command request size
ksmbd: fix wrong next length validation of ea buffer in smb2_set_ea()
wifi: nl80211: fix integer overflow in nl80211_
wifi: rtw89: fix 8852AE disconnection caused by RX full flags
selftests: forwarding: Set default IPv6 traceroute utility
wireguard: allowedips: expand maximum node depth
mmc: moxart: read scr register without changing byte order
ipv6: adjust ndisc_is_useropt() to also return true for PIO
selftests: mptcp: join: fix 'delete and re-add' test
selftests: mptcp: join: fix 'implicit EP' test
mptcp: avoid bogus reset on fallback close
mptcp: fix disconnect vs accept race
dmaengine: pl330: Return DMA_PAUSED when transaction is paused
net: mana: Fix MANA VF unload when hardware is unresponsive
riscv/kexec: load initrd high in available memory
riscv,mmio: Fix readX()-to-delay() ordering
riscv/kexec: handle R_RISCV_CALL_PLT relocation type
nvme-pci: add NVME_QUIRK_
drm/nouveau/gr: enable memory loads on helper invocation on all channels
drm/nouveau/
drm/shmem-helper: Reset vma->vm_ops before calling dma_buf_mmap()
drm/amdgpu: fix possible UAF in amdgpu_cs_pass1()
drm/amd/display: check attr flag before set cursor degamma on DCN3+
drm/amd/display: limit DPIA link rate to HBR3
cpuidle: dt_idle_genpd: Add helper function to remove genpd topology
hwmon: (pmbus/bel-pfe) Enable PMBUS_SKIP_
radix tree test suite: fix incorrect allocation size for pthreads
nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput
drm/amd/pm: fulfill swsmu peak profiling mode shader/memory clock settings
drm/amd/pm: expose swctf threshold setting for legacy powerplay
drm/amd/pm: fulfill powerplay peak profiling mode shader/memory clock settings
drm/amd/pm: avoid unintentional shutdown due to temperature momentary fluctuation
io_uring: correct check for O_TMPFILE
iio: cros_ec: Fix the allocation size for cros_ec_command
iio: frequency: admv1013: propagate errors from regulator_
iio: adc: ad7192: Fix ac excitation feature
iio: adc: ina2xx: avoid NULL pointer dereference on OF device match
binder: fix memory leak in binder_init()
misc: rtsx: judge ASPM Mode to set PETXCFG Reg
usb-storage: alauda: Fix uninit-value in alauda_
usb: dwc3: Properly handle processing of pending events
USB: Gadget: core: Help prevent panic during UVC unconfigure
usb: common: usb-conn-gpio: Prevent bailing out if initial role is none
usb: typec: tcpm: Fix response to vsafe0V event
usb: typec: altmodes/
x86/cpu/amd: Enable Zenbleed fix for AMD Custom APU 0405
x86/mm: Fix VDSO and VVAR placement on 5-level paging machines
x86/sev: Do not try to parse for the CC blob on non-AMD hardware
x86/speculation: Add cpu_show_gds() prototype
drm/nouveau/disp: Revert a NULL check inside nouveau_
iio: core: Prevent invalid memory access when there is no parent
interconnect: qcom: Add support for mask-based BCMs
interconnect: qcom: sm8450: add enable_mask for bcm nodes
selftests/rseq: Fix build with undefined __weak
selftests: forwarding: Add a helper to skip test when using veth pairs
selftests: forwarding: ethtool: Skip when using veth pairs
selftests: forwarding: ethtool_
selftests: forwarding: hw_stats_l3_gre: Skip when using veth pairs
selftests: forwarding: Skip test when no interfaces are specified
selftests: forwarding: Switch off timeout
selftests: forwarding: tc_flower: Relax success criterion
net: core: remove unnecessary frame_sz check in bpf_xdp_
bpf, sockmap: Fix map type error in sock_map_del_link
bpf, sockmap: Fix bug that strp_done cannot be called
mISDN: Update parameter type of dsp_cmx_send()
macsec: use DEV_STATS_INC()
mptcp: fix the incorrect judgment for msk->cb_flags
net/packet: annotate data-races around tp->status
tcp: add missing family to tcp_set_ca_state() tracepoint
tunnels: fix kasan splat when generating ipv4 pmtu error
xsk: fix refcount underflow in error path
bonding: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves
dccp: fix data-race around dp->dccps_mss_cache
drivers: net: prevent tun_build_skb() to exceed the packet size limit
drivers: vxlan: vnifilter: free percpu vni stats on error path
iavf: fix potential races for FDIR filters
IB/hfi1: Fix possible panic during hotplug remove
drm/rockchip: Don't spam logs in atomic check
wifi: cfg80211: fix sband iftype data lookup for AP_VLAN
RDMA/umem: Set iova in ODP flow
net: tls: avoid discarding data on record close
net: marvell: prestera: fix handling IPv4 routes with nhid
net: phy: at803x: remove set/get wol callbacks for AR8032
net: dsa: ocelot: call dsa_tag_
net: hns3: refactor hclge_mac_
net: hns3: add wait until mac link down
net: hns3: fix deadlock issue when externel_lb and reset are executed together
nexthop: Fix infinite nexthop dump when using maximum nexthop ID
nexthop: Make nexthop bucket dump more efficient
nexthop: Fix infinite nexthop bucket dump when using maximum nexthop ID
net: hns3: fix strscpy causing content truncation issue
dmaengine: mcf-edma: Fix a potential un-allocated memory access
dmaengine: owl-dma: Modify mismatched function name
net/mlx5: Allow 0 for total host VFs
net/mlx5: LAG, Check correct bucket when modifying LAG
net/mlx5: Skip clock update work when device is in error state
net/mlx5: Reload auxiliary devices in pci error handlers
ibmvnic: Enforce stronger sanity checks on login response
ibmvnic: Unmap DMA login rsp buffer on send login fail
ibmvnic: Handle DMA unmapping of login buffs in release functions
ibmvnic: Do partial reset on login failure
ibmvnic: Ensure login failure recovery is safe from other resets
gpio: ws16c48: Fix off-by-one error in WS16C48 resource region extent
gpio: sim: mark the GPIO chip as a one that can sleep
btrfs: wait for actual caching progress during allocation
btrfs: don't stop integrity writeback too early
btrfs: properly clear end of the unreserved range in cow_file_range
btrfs: exit gracefully if reloc roots don't match
btrfs: reject invalid reloc tree root keys with stack dump
btrfs: set cache_block_
nvme-tcp: fix potential unbalanced freeze & unfreeze
nvme-rdma: fix potential unbalanced freeze & unfreeze
netfilter: nf_tables: report use refcount overflow
scsi: core: Fix legacy /proc parsing buffer overflow
scsi: storvsc: Fix handling of virtual Fibre Channel timeouts
scsi: ufs: renesas: Fix private allocation
scsi: 53c700: Check that command slot is not NULL
scsi: snic: Fix possible memory leak if device_add() fails
scsi: core: Fix possible memory leak if device_add() fails
scsi: fnic: Replace return codes in fnic_clean_
scsi: qedi: Fix firmware halt over suspend and resume
scsi: qedf: Fix firmware halt over suspend and resume
platform/x86: serial-
ACPI: scan: Create platform device for CS35L56
alpha: remove __init annotation from exported page_is_ram()
drm/amd/pm/smu7: move variables to where they are used
mmc: sdhci-f-sdh30: Replace with sdhci_pltfm
cpuidle: psci: Move enabling OSI mode after power domains creation
zsmalloc: fix races between modifications of fullness and isolated
hugetlb: do not clear hugetlb dtor until allocating vmemmap
mm: memory-failure: fix potential unexpected return value from unpoison_memory()
mm: memory-failure: avoid false hwpoison page mapped error info
x86/linkage: Fix typo of BUILD_VDSO in asm/linkage.h
selftests: forwarding: bridge_mdb: Check iproute2 version
selftests: forwarding: tc_actions: Use ncat instead of nc
selftests: forwarding: bridge_mdb: Make test more robust
drm/bridge: it6505: Check power state with it6505->powered in IRQ handler
drm/nouveau: remove unused tu102_gr_load() function
UBUNTU: Upstream stable to v6.1.46, v6.4.11
Changed in linux (Ubuntu): | |
status: | New → Confirmed |
tags: | added: kernel-stable-tracking-bug |
description: | updated |
Changed in linux (Ubuntu): | |
status: | Confirmed → Invalid |
Changed in linux (Ubuntu Lunar): | |
status: | New → In Progress |
importance: | Undecided → Medium |
assignee: | nobody → Kamal Mostafa (kamalmostafa) |
description: | updated |
Changed in linux (Ubuntu Lunar): | |
status: | In Progress → Fix Committed |
This bug was fixed in the package linux - 6.2.0-39.40
---------------
linux (6.2.0-39.40) lunar; urgency=medium
* lunar/linux: 6.2.0-39.40 -proposed tracker (LP: #2043451)
* USB bus error after upgrading to proposed kernel on lunar and jammy
(LP: #2043197)
- USB: core: Fix oversight in SuperSpeed initialization
* Include cifs.ko in linux-modules package (LP: #2042546)
- [Packaging] Replace fs/cifs with fs/smb/client in inclusion list
linux (6.2.0-38.39) lunar; urgency=medium
* lunar/linux: 6.2.0-38.39 -proposed tracker (LP: #2041557)
* CVE-2023-25775
- RDMA/irdma: Prevent zero-length STAG registration
* CVE-2023-5345
- fs/smb/client: Reset password pointer to NULL
* CVE-2023-39189
- netfilter: nfnetlink_osf: avoid OOB read
* SMC stats: Wrong bucket calculation for payload of exactly 4096 bytes
(LP: #2039575)
- net/smc: Fix pos miscalculation in statistics
* [SRU][J/L/M] UBUNTU: [Packaging] Make WWAN driver a loadable module
(LP: #2033406)
- [Packaging] Make WWAN driver loadable modules
* CVE-2023-45871
- igb: set max size RX buffer when store bad packet is enabled
* CVE-2023-39193
- netfilter: xt_sctp: validate the flag_info count
* CVE-2023-39192
- netfilter: xt_u32: validate user space input
* CVE-2023-31085
- ubi: Refuse attaching if mtd's erasesize is 0
* CVE-2023-5717
- perf: Disallow mis-matched inherited group reads
* CVE-2023-5178
- nvmet-tcp: Fix a possible UAF in queue intialization setup
* CVE-2023-5158 kiov_advance( ) in vringh_iov_xfer()
- vringh: don't use vringh_
* CVE-2023-5090
- x86: KVM: SVM: always update the x2avic msr interception
* usbip: error: failed to open /usr/share/ hwdata/ /usb.ids (LP: #2039439)
- [Packaging] Make linux-tools-common depend on hwdata
* Unable to use nvme drive to install Ubuntu 23.10 (LP: #2040157)
- misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to
probe
* Lunar update: upstream stable patchset 2023-10-19 (LP: #2039884) init_layout_ section( ) der.h init_layout_ section( ) to spot init sections init_layout_ section( ) to spot init sections personality( ) is called from asm code ntlmssp_ auth_blob( )
- ACPI: thermal: Drop nocrt parameter
- module: Expose module_
- arm64: module-plts: inline linux/moduleloa
- arm64: module: Use module_
- ARM: module: Use module_
- lockdep: fix static memory detection even more
- parisc: Cleanup mmap implementation regarding color alignment
- parisc: sys_parisc: parisc_
- io_uring/parisc: Adjust pgoff in io_uring mmap() for parisc
- kallsyms: Fix kallsyms_selftest failure
- module/decompress: use vmalloc() for zstd decompression workspace
- Upstream stable to v6.1.51, v6.4.14
- erofs: ensure that the post-EOF tails are all zeroed
- ksmbd: fix wrong DataOffset validation of create context
- ksmbd: fix slub overflow in ksmbd_decode_
- ksmbd: replace one-element array with flex-array member in struct
smb2_ea_info
- ksmbd: reduce descriptor size if remaining bytes is less than request size
- ARM: pxa: remove use of symbol_get()
- mmc: au1x...