Bug #2041529 “mantic/linux-gcp: 6.5.0-1010.10 -proposed tracker” : Bugs : Kernel SRU Workflow

Stefan Bader (smb) on 2023-10-27

tags:	added: kernel-release-tracking-bug-live
description:	updated
tags:	added: kernel-sru-cycle-2023.10.30-1
description:	updated
tags:	added: kernel-sru-derivative-of-2041536
Changed in kernel-sru-workflow:
status:	New → Confirmed
importance:	Undecided → Medium

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-10-27

Changed in linux-gcp (Ubuntu Mantic):
importance:	Undecided → Medium
Changed in kernel-sru-workflow:
status:	Confirmed → Triaged

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-10-27

description:	updated
Changed in kernel-sru-workflow:
status:	Triaged → In Progress

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-10-27

tags:

added: kernel-jira-issue-ksru-10210

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-10-27

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-09

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-16

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-16

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-17

description:

updated

John Cabaj (john-cabaj) on 2023-11-17

summary:

- mantic/linux-gcp: <version to be filled> -proposed tracker
+ mantic/linux-gcp: 6.5.0-1010.10 -proposed tracker

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-17

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-17

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-17

description:	updated
description:	updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-17

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-17

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-17

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-17

description:	updated
description:	updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-17

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-17

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-17

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-18

description:	updated
description:	updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-18

description:	updated
description:	updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-18

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-18

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-18

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-18

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-18

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:	updated
description:	updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-21

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-23

description:

updated

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2023-11-23: ABI testing

#1

amd64/gcp canonical-certs.pem unchanged
amd64/gcp canonical-revoked-certs.pem unchanged
amd64/gcp fwinfo unchanged
amd64/gcp modules differs
  @@ -4777,7 +4777,6 @@
   sha512-ssse3
   sha512_generic
   shark2
  -shiftfs
   sht15
   sht21
   sht3x
amd64/gcp retpoline unchanged
arm64/gcp canonical-certs.pem unchanged
arm64/gcp canonical-revoked-certs.pem unchanged
arm64/gcp fwinfo unchanged
arm64/gcp modules differs
  @@ -4041,6 +4041,7 @@
   mtk-uart-apdma
   mtk-vpu
   mtk_dp
  +mtk_iommu
   mtk_nand
   mtk_rpmsg
   mtk_scp
  @@ -6067,7 +6068,6 @@
   sha512-ce
   sha512_generic
   shark2
  -shiftfs
   shmob-drm
   sht15
   sht21
arm64/gcp retpoline unchanged

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-23

description:

updated

Revision history for this message

Ubuntu Kernel Ancillary Bot (ubuntu-kernel-ancillary-bot) wrote on 2023-11-24:

#2

amd64/gcp canonical-certs.pem unchanged
amd64/gcp canonical-revoked-certs.pem unchanged
amd64/gcp fwinfo unchanged
amd64/gcp modules differs
  @@ -4777,7 +4777,6 @@
   sha512-ssse3
   sha512_generic
   shark2
  -shiftfs (accepted)
   sht15
   sht21
   sht3x
amd64/gcp retpoline unchanged
arm64/gcp canonical-certs.pem unchanged
arm64/gcp canonical-revoked-certs.pem unchanged
arm64/gcp fwinfo unchanged
arm64/gcp modules differs
  @@ -4041,6 +4041,7 @@
   mtk-uart-apdma
   mtk-vpu
   mtk_dp
  +mtk_iommu
   mtk_nand
   mtk_rpmsg
   mtk_scp
  @@ -6067,7 +6068,6 @@
   sha512-ce
   sha512_generic
   shark2
  -shiftfs (accepted)
   shmob-drm
   sht15
   sht21
arm64/gcp retpoline unchanged

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-24

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-27

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-28

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-29

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-11-29

description:

updated

John Cabaj (john-cabaj) on 2023-12-05

tags:

added: automated-testing-passed

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-12-05

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-12-05

description:

updated

Revision history for this message

Launchpad Janitor (janitor) wrote on 2023-12-05:

#3

Download full text (5.1 KiB)

This bug was fixed in the package linux-gcp - 6.5.0-1010.10

---------------
linux-gcp (6.5.0-1010.10) mantic; urgency=medium

* mantic/linux-gcp: 6.5.0-1010.10 -proposed tracker (LP: #2041529)

  * Packaging resync (LP: #1786013)
    - [Packaging] resync git-ubuntu-log
    - [Packaging] resync update-dkms-versions helper
    - debian/dkms-versions -- update from kernel-versions (main/2023.10.30)

* disable shiftfs (LP: #2038522)
- [Config] gcp: disable shiftfs

* drop all references to is_rust_module.sh in kernels >= 6.5 (LP: #2038611)
- [Packaging] gcp: drop references to is_rust_module.sh

  * [SRU][J/L/M] UBUNTU: [Packaging] Make WWAN driver a loadable module
    (LP: #2033406)
    - [Packaging] gcp: Make WWAN driver loadable modules

[ Ubuntu: 6.5.0-14.14 ]

  * mantic/linux: 6.5.0-14.14 -proposed tracker (LP: #2042660)
  * Boot log print hang on screen, no login prompt on Aspeed 2600 rev 52 BMC
    (LP: #2042850)
    - drm/ast: Add BMC virtual connector
  * arm64 atomic issues cause disk corruption (LP: #2042573)
    - locking/atomic: scripts: fix fallback ifdeffery
  * Packaging resync (LP: #1786013)
    - [Packaging] update annotations scripts

[ Ubuntu: 6.5.0-12.12 ]

  * mantic/linux: 6.5.0-12.12 -proposed tracker (LP: #2041536)
  * Packaging resync (LP: #1786013)
    - [Packaging] update annotations scripts
    - [Packaging] update helper scripts
    - debian/dkms-versions -- update from kernel-versions (main/2023.10.30)
  * CVE-2023-5633
    - drm/vmwgfx: Keep a gem reference to user bos in surfaces
  * CVE-2023-5345
    - fs/smb/client: Reset password pointer to NULL
  * CVE-2023-39189
    - netfilter: nfnetlink_osf: avoid OOB read
  * CVE-2023-4244
    - netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
  * apparmor restricts read access of user namespace mediation sysctls to root
    (LP: #2040194)
    - SAUCE: apparmor: open userns related sysctl so lxc can check if restriction
      are in place
  * AppArmor spams kernel log with assert when auditing (LP: #2040192)
    - SAUCE: apparmor: fix request field from a prompt reply that denies all
      access
  * apparmor notification files verification (LP: #2040250)
    - SAUCE: apparmor: fix notification header size
  * apparmor oops when racing to retrieve a notification (LP: #2040245)
    - SAUCE: apparmor: fix oops when racing to retrieve notification
  * SMC stats: Wrong bucket calculation for payload of exactly 4096 bytes
    (LP: #2039575)
    - net/smc: Fix pos miscalculation in statistics
  * Support mipi camera on Intel Meteor Lake platform (LP: #2031412)
    - SAUCE: iommu: intel-ipu: use IOMMU passthrough mode for Intel IPUs on Meteor
      Lake
    - SAUCE: platform/x86: int3472: Add handshake GPIO function
  * CVE-2023-45898
    - ext4: fix slab-use-after-free in ext4_es_insert_extent()
  * CVE-2023-31085
    - ubi: Refuse attaching if mtd's erasesize is 0
  * CVE-2023-5717
    - perf: Disallow mis-matched inherited group reads
  * CVE-2023-5178
    - nvmet-tcp: Fix a possible UAF in queue intialization setup
  * CVE-2023-5158
    - vringh: don't use vringh_kiov_advance() in vringh_iov_xfer()
  * CVE-2023-5090
    - x86: ...

This bug was fixed in the package linux-gcp - 6.5.0-1010.10

---------------
linux-gcp (6.5.0-1010.10) mantic; urgency=medium

* mantic/linux-gcp: 6.5.0-1010.10 -proposed tracker (LP: #2041529)

* Packaging resync (LP: #1786013)
    - [Packaging] resync git-ubuntu-log
    - [Packaging] resync update-dkms-versions helper
    - debian/dkms-versions -- update from kernel-versions (main/2023.10.30)

* disable shiftfs (LP: #2038522)
    - [Config] gcp: disable shiftfs

* drop all references to is_rust_module.sh in kernels >= 6.5 (LP: #2038611)
    - [Packaging] gcp: drop references to is_rust_module.sh

* [SRU][J/L/M] UBUNTU: [Packaging] Make WWAN driver a loadable module
    (LP: #2033406)
    - [Packaging] gcp: Make WWAN driver loadable modules

[ Ubuntu: 6.5.0-14.14 ]

* mantic/linux: 6.5.0-14.14 -proposed tracker (LP: #2042660)
  * Boot log print hang on screen, no login prompt on Aspeed 2600 rev 52 BMC
    (LP: #2042850)
    - drm/ast: Add BMC virtual connector
  * arm64 atomic issues cause disk corruption (LP: #2042573)
    - locking/atomic: scripts: fix fallback ifdeffery
  * Packaging resync (LP: #1786013)
    - [Packaging] update annotations scripts

[ Ubuntu: 6.5.0-12.12 ]

* mantic/linux: 6.5.0-12.12 -proposed tracker (LP: #2041536)
  * Packaging resync (LP: #1786013)
    - [Packaging] update annotations scripts
    - [Packaging] update helper scripts
    - debian/dkms-versions -- update from kernel-versions (main/2023.10.30)
  * CVE-2023-5633
    - drm/vmwgfx: Keep a gem reference to user bos in surfaces
  * CVE-2023-5345
    - fs/smb/client: Reset password pointer to NULL
  * CVE-2023-39189
    - netfilter: nfnetlink_osf: avoid OOB read
  * CVE-2023-4244
    - netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
  * apparmor restricts read access of user namespace mediation sysctls to root
    (LP: #2040194)
    - SAUCE: apparmor: open userns related sysctl so lxc can check if restriction
      are in place
  * AppArmor spams kernel log with assert when auditing (LP: #2040192)
    - SAUCE: apparmor: fix request field from a prompt reply that denies all
      access
  * apparmor notification files verification (LP: #2040250)
    - SAUCE: apparmor: fix notification header size
  * apparmor oops when racing to retrieve a notification (LP: #2040245)
    - SAUCE: apparmor: fix oops when racing to retrieve notification
  * SMC stats: Wrong bucket calculation for payload of exactly 4096 bytes
    (LP: #2039575)
    - net/smc: Fix pos miscalculation in statistics
  * Support mipi camera on Intel Meteor Lake platform (LP: #2031412)
    - SAUCE: iommu: intel-ipu: use IOMMU passthrough mode for Intel IPUs on Meteor
      Lake
    - SAUCE: platform/x86: int3472: Add handshake GPIO function
  * CVE-2023-45898
    - ext4: fix slab-use-after-free in ext4_es_insert_extent()
  * CVE-2023-31085
    - ubi: Refuse attaching if mtd's erasesize is 0
  * CVE-2023-5717
    - perf: Disallow mis-matched inherited group reads
  * CVE-2023-5178
    - nvmet-tcp: Fix a possible UAF in queue intialization setup
  * CVE-2023-5158
    - vringh: don't use vringh_kiov_advance() in vringh_iov_xfer()
  * CVE-2023-5090
    - x86: KVM: SVM: always update the x2avic msr interception
  * [SRU][J/L/M] UBUNTU: [Packaging] Make WWAN driver a loadable module
    (LP: #2033406)
    - [Packaging] Make WWAN driver loadable modules
  * Unable to power off the system with MTL CPU (LP: #2039405)
    - Revert "x86/smp: Put CPUs into INIT on shutdown if possible"
  * usbip: error: failed to open /usr/share/hwdata//usb.ids (LP: #2039439)
    - [Packaging] Make linux-tools-common depend on hwdata
  * drop all references to is_rust_module.sh in kernels >= 6.5 (LP: #2038611)
    - [Packaging] drop references to is_rust_module.sh
  * disable shiftfs (LP: #2038522)
    - SAUCE: ceph: enable unsafe idmapped mounts by default
    - [Config] disable shiftfs
  * Infinite systemd loop when power off the machine with multiple MD RAIDs
    (LP: #2036184)
    - md: Put the right device in md_seq_next
  * [Mediatek] mt8195-demo: enable CONFIG_MTK_IOMMU as module for multimedia and
    PCIE peripherals (LP: #2036587)
    - [Config] Enable CONFIG_MTK_IOMMU on arm64
  * Realtek 8852CE WiFi 6E country code udpates (LP: #2037273)
    - wifi: rtw89: regd: update regulatory map to R64-R43
  * Unable to use nvme drive to install Ubuntu 23.10 (LP: #2040157)
    - misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to
      probe
  * CVE-2023-42754
    - ipv4: fix null-deref in ipv4_link_failure
  * linux-*: please enable dm-verity kconfigs to allow MoK/db verified root
    images (LP: #2019040)
    - [Config] CONFIG_DM_VERITY_VERIFY_ROOTHASH_SIG_SECONDARY_KEYRING=y
  * Fix RCU warning on AMD laptops (LP: #2036377)
    - power: supply: core: Use blocking_notifier_call_chain to avoid RCU complaint
  * allow io_uring to be disabled in runtime (LP: #2035116)
    - io_uring: add a sysctl to disable io_uring system-wide
  * Fix unstable audio at low levels on Thinkpad P1G4 (LP: #2037077)
    - ALSA: hda/realtek - ALC287 I2S speaker platform support

-- John Cabaj <john.cabaj@canonical.com>  Fri, 17 Nov 2023 14:16:38 -0600

Changed in linux-gcp (Ubuntu Mantic):
status:	New → Fix Released

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-12-05

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-12-05

description:

updated

Revision history for this message

John Cabaj (john-cabaj) wrote on 2023-12-05:

#4

No linux-gcp specific LP bugs to verify.

tags:

added: verification-testing-p

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-12-05

description:

updated

John Cabaj (john-cabaj) on 2023-12-05

tags:

added: verification-testing-passed
removed: verification-testing-p

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2023-12-06

description:

updated

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2023-12-06: Workflow done!

#5

All tasks have been completed and the bug is being closed

Changed in kernel-sru-workflow:
status:	In Progress → Fix Committed

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2024-02-06

Changed in kernel-sru-workflow:
status:	Fix Committed → Fix Released
description:	updated

Kernel SRU Workflow

mantic/linux-gcp: 6.5.0-1010.10 -proposed tracker

Bug Description

CVE References

Other bug subscribers

Remote bug watches

	Status	Importance	Assigned to
Kernel SRU Workflow	Fix Released	Medium	Unassigned
Abi-testing	Fix Released	Undecided	Unassigned
Automated-testing	Fix Released	Medium	Canonical Kernel Team
Boot-testing	Fix Released	Medium	Unassigned
Certification-testing	Invalid	Medium	Unassigned
New-review	Fix Released	Medium	Steve Langasek
Prepare-package	Fix Released	Medium	John Cabaj
Prepare-package-generate	Fix Released	Medium	John Cabaj
Prepare-package-lrg	Fix Released	Medium	John Cabaj
Prepare-package-lrm	Fix Released	Medium	John Cabaj
Prepare-package-lrs	Fix Released	Medium	John Cabaj
Prepare-package-meta	Fix Released	Medium	John Cabaj
Prepare-package-signed	Fix Released	Medium	John Cabaj
Promote-signing-to-proposed	Invalid	Medium	Unassigned
Promote-to-proposed	Fix Released	Medium	Ubuntu Stable Release Updates Team
Promote-to-security	Fix Released	Medium	Ubuntu Stable Release Updates Team
Promote-to-updates	Fix Released	Medium	Andy Whitcroft
Regression-testing	Fix Released	Medium	Canonical Kernel Team
Security-signoff	Fix Released	Medium	Rodrigo Figueiredo Zaiden
Sru-review	Fix Released	Medium	Andy Whitcroft
Verification-testing	Fix Released	Medium	John Cabaj
canonical-signing-jobs
Task00	Fix Released	Medium	Steve Langasek
linux-gcp (Ubuntu)
Mantic	Fix Released	Medium	Unassigned