CVE 2017-5986

Related bugs

• #869017: Ubuntu server enables screenblanking, concealing crashdumps (DPMS is not used)
• #1166113: Need support of Broadcom bluetooth device [413c:8143]
• #1470250: [Hyper-V] Ubuntu 14.04.2 LTS Generation 2 SCSI Errors on VSS Based Backups
• #1605494: vmxnet3 LRO IPv6 performance issues (stalling TCP)
• #1619918: lsattr 32bit does not work on 64bit kernel (Inappropriate ioctl error)
• #1623750: Request to backport cxlflash patches to Xenial SRU stream
• #1637550: [Feature] R3 mwait support for Knights Mill
• #1638996: apparmor's raw_data file in securityfs is sometimes truncated
• #1645951: [Feature] GLK:New device IDs
• #1648143: tor in lxd: apparmor="DENIED" operation="change_onexec" namespace="root//CONTAINERNAME_<var-lib-lxd>" profile="unconfined" name="system_tor"
• #1648903: Permission denied and inconsistent behavior in complain mode with 'ip netns list' command
• #1654073: Ubuntu 17.04: machine crashes with Oops in dccp_v4_ctl_send_reset while running stress-ng.
• #1656121: unexpected errno=13 and disconnected path when trying to open /proc/1/ns/mnt from a unshared mount namespace
• #1656259: Linux ZFS port doesn't respect RLIMIT_FSIZE
• #1658633: stress_smoke_test passing and exiting rc=9 (linux 4.9.0-12.13 ADT test failure with linux 4.9.0-12.13)
• #1660832: unix domain socket cross permission check failing with nested namespaces
• #1660833: apparmor reference count bug in label_merge_insert()
• #1660834: apparmor label leak when new label is unused
• #1660836: apparmor auditing denied access of special apparmor .null fi\ le
• #1660840: apparmor oops in bind_mnt when dev_path lookup fails
• #1660849: apparmor refcount leak of profile namespace when removing profiles
• #1661030: regession tests failing after stackprofile test is run
• #1663991: Unable to Connect Third HDD via USB Hub
• #1664312: Update ENA driver to 1.1.2 from net-next
• #1664602: Using an NVMe drive causes huge power drain
• #1664912: linux-lts-xenial 4.4.0-63.84~14.04.2 ADT test failure with linux-lts-xenial 4.4.0-63.84~14.04.2
• #1666197: POWER9 : Enable Stop 0-2 with ESL=EC=0
• #1666401: Export symbol "dev_pm_qos_update_user_latency_tolerance"
• #1667081: Nvlink2: Additional patches
• #1667116: POWER9: Additional patches for 17.04 and 16.04.2
• #1667239: FlashGT Integration and Setup: fsbmc30: After 17th reboot of soft bootme, HTX & Linux errors seen with 256 virtual LUNs
• #1667416: PowerNV: No rate limit for kernel error "KVM can't copy data from"
• #1667527: [Hyper-V] pci-hyperv: Use device serial number as PCI domain
• #1667571: linux-tools-common should Depends: lsb-release
• #1667599: CAPI:Ubuntu: Kernel panic while rebooting
• #1668042: [Xenial - 16.04 ]Bonding driver - stack corruption when trying to copy 20 bytes to a sockaddr
• #1669023: Kernel: Fix Transactional memory config typo
• #1669153: Add Use-After-Free Patch for Ubuntu16.10 - EEH on BELL3 adapter fails to recover (serial/tty)
• #1669941: CIFS: Call echo service immediately after socket reconnect
• #1670247: Ubuntu 16.10: Network checksum fixes needed for IPoIB for Mellanox CX4/CX5 card
• #1670490: FC Adapter (LPe32000-based) prints "iotag out of range", goes offline, and delays boot a lot (Ubuntu17.04/Emulex/lpfc))
• #1670518: [Hyper-V] Missing PCI patches breaking SR-IOV hot remove
• #1670544: [Hyper-V] Rebase Hyper-V to the upstream 4.10 kernel
• #1670726: h-prod does not function across cores
• #1670800: Power9 kernel: add virtualization patches
• #1671169: POWER9: Improve CAS negotiation
• #1672470: ip_rcv_finish() NULL pointer kernel panic
• #1672785: [Hyper-V][Mellanox] net/mlx4_core: Avoid delays during VF driver device shutdown
• #1672953: ISST-LTE:pVM:roselp4:ubuntu16.04.2: number of numa_miss and numa_foreign wrong in numastat
• #1673350: dm-queue-length module is not included in installer/initramfs
• #1673498: move aufs.ko from -extra to linux-image package
• #1674087: [zesty] net sched actions - Adding support for user cookies
• #1674288: Zesty update to v4.10.4 stable release
• #1674325: POWER9: Additional patches for TTY and CPU_IDLE
• #1674334: Fix MODULE_FIRMWARE for intel 6030 wireless
• #1674466: tty: acpi/spcr: QDF2400 E44 checks for wrong OEM revision
• #1674635: Kernel linux-image-4.4.0-67-generic prevent the boot on Microsoft Hyper-v 2012r2 Gen2 VM
• #1675032: Zesty update to v4.10.5 stable release
• #1675771: In ZZ-BML (POWER9):ubuntu17.04 installation Fails
• #1675868: linux: 4.10.0-15.17 -proposed tracker
• #1678099: Regression: KVM modules should be on main kernel package
• #1679678: linux: 4.8.0-47.50 -proposed tracker
• #1679684: linux-raspi2: 4.8.0-1034.37 -proposed tracker
• #1680733: linux: 3.13.0-117.164 -proposed tracker
• #1680735: linux-lts-trusty: 3.13.0-117.164~precise1 -proposed tracker
• #1680739: linux-hwe-edge: 4.10.0-19.21~16.04.1 -proposed tracker
• #1681893: [Hyper-V] hv: vmbus: Raise retry/wait limits in vmbus_post_msg()
• #1682034: linux: 4.8.0-48.51 -proposed tracker
• #1682038: linux-raspi2: 4.8.0-1035.38 -proposed tracker
• #1682561: [Hyper-V] hv: util: move waiting for release to hv_utils_transport itself
• #1684427: linux: 4.8.0-49.52 -proposed tracker
• #1684430: linux-hwe: 4.8.0-49.52~16.04.1 -proposed tracker

• Link to bug
• Remove bug link

References

• MLIST: [oss-security] 2017021...
• CONFIRM: http://git.kernel.org/...
• CONFIRM: http://www.kernel.org/...
• CONFIRM: https://bugzilla.redha...
• CONFIRM: https://github.com/tor...
• BID: 96222
• DEBIAN: DSA-3804
• REDHAT: RHSA-2017:1308