linux-hwe 4.13.0-43.48~16.04.1 source package in Ubuntu

Changelog

linux-hwe (4.13.0-43.48~16.04.1) xenial; urgency=medium

  * CVE-2018-3639 (powerpc)
    - SAUCE: rfi-flush: update H_CPU_* macro names to upstream
    - SAUCE: rfi-flush: update plpar_get_cpu_characteristics() signature to
      upstream
    - SAUCE: update pseries_setup_rfi_flush() capitalization to upstream
    - powerpc/pseries: Support firmware disable of RFI flush
    - powerpc/powernv: Support firmware disable of RFI flush
    - powerpc/64s: Allow control of RFI flush via debugfs
    - powerpc/rfi-flush: Move the logic to avoid a redo into the debugfs code
    - powerpc/rfi-flush: Always enable fallback flush on pseries
    - powerpc/rfi-flush: Differentiate enabled and patched flush types
    - powerpc/pseries: Add new H_GET_CPU_CHARACTERISTICS flags
    - powerpc: Add security feature flags for Spectre/Meltdown
    - powerpc/powernv: Set or clear security feature flags
    - powerpc/pseries: Set or clear security feature flags
    - powerpc/powernv: Use the security flags in pnv_setup_rfi_flush()
    - powerpc/pseries: Use the security flags in pseries_setup_rfi_flush()
    - powerpc/pseries: Fix clearing of security feature flags
    - powerpc: Move default security feature flags
    - powerpc/pseries: Restore default security feature flags on setup
    - powerpc/64s: Add support for a store forwarding barrier at kernel entry/exit

  * CVE-2018-3639 (x86)
    - SAUCE: Add X86_FEATURE_ARCH_CAPABILITIES
    - SAUCE: x86: Add alternative_msr_write
    - x86/nospec: Simplify alternative_msr_write()
    - x86/pti: Do not enable PTI on CPUs which are not vulnerable to Meltdown
    - x86/bugs: Concentrate bug detection into a separate function
    - x86/bugs: Concentrate bug reporting into a separate function
    - x86/msr: Add definitions for new speculation control MSRs
    - x86/bugs: Read SPEC_CTRL MSR during boot and re-use reserved bits
    - x86/bugs, KVM: Support the combination of guest and host IBRS
    - x86/bugs: Expose /sys/../spec_store_bypass
    - x86/cpufeatures: Add X86_FEATURE_RDS
    - x86/bugs: Provide boot parameters for the spec_store_bypass_disable
      mitigation
    - x86/bugs/intel: Set proper CPU features and setup RDS
    - x86/bugs: Whitelist allowed SPEC_CTRL MSR values
    - x86/bugs/AMD: Add support to disable RDS on Fam[15,16,17]h if requested
    - x86/KVM/VMX: Expose SPEC_CTRL Bit(2) to the guest
    - x86/speculation: Create spec-ctrl.h to avoid include hell
    - prctl: Add speculation control prctls
    - x86/process: Allow runtime control of Speculative Store Bypass
    - x86/speculation: Add prctl for Speculative Store Bypass mitigation
    - nospec: Allow getting/setting on non-current task
    - proc: Provide details on speculation flaw mitigations
    - seccomp: Enable speculation flaw mitigations
    - SAUCE: x86/bugs: Honour SPEC_CTRL default
    - x86/bugs: Make boot modes __ro_after_init
    - prctl: Add force disable speculation
    - seccomp: Use PR_SPEC_FORCE_DISABLE
    - seccomp: Add filter flag to opt-out of SSB mitigation
    - seccomp: Move speculation migitation control to arch code
    - x86/speculation: Make "seccomp" the default mode for Speculative Store
      Bypass
    - x86/bugs: Rename _RDS to _SSBD
    - proc: Use underscores for SSBD in 'status'
    - Documentation/spec_ctrl: Do some minor cleanups
    - x86/bugs: Fix __ssb_select_mitigation() return type
    - x86/bugs: Make cpu_show_common() static

  * LSM Stacking prctl values should be redefined as to not collide with
    upstream prctls (LP: #1769263) // CVE-2018-3639
    - SAUCE: LSM stacking: adjust prctl values

linux (4.13.0-42.47) artful; urgency=medium

  * linux: 4.13.0-42.47 -proposed tracker (LP: #1769993)

  * arm64: fix CONFIG_DEBUG_WX address reporting (LP: #1765850)
    - arm64: fix CONFIG_DEBUG_WX address reporting

  * HiSilicon HNS NIC names are truncated in /proc/interrupts (LP: #1765977)
    - net: hns: Avoid action name truncation

  * CVE-2017-18208
    - mm/madvise.c: fix madvise() infinite loop under special circumstances

  * CVE-2018-8822
    - staging: ncpfs: memory corruption in ncp_read_kernel()

  * CVE-2017-18203
    - dm: fix race between dm_get_from_kobject() and __dm_destroy()

  * CVE-2017-17449
    - netlink: Add netns check on taps

  * CVE-2017-17975
    - media: usbtv: prevent double free in error case

  * [8086:3e92] display becomes blank after S3 (LP: #1763271)
    - drm/i915/edp: Allow alternate fixed mode for eDP if available.
    - drm/i915/dp: rename intel_dp_is_edp to intel_dp_is_port_edp
    - drm/i915/dp: make is_edp non-static and rename to intel_dp_is_edp
    - drm/i915/edp: Do not do link training fallback or prune modes on EDP

  * sky2 gigabit ethernet driver sometimes stops working after lid-open resume
    from sleep (88E8055) (LP: #1758507)
    - sky2: Increase D3 delay to sky2 stops working after suspend

  * perf vendor events arm64: Enable JSON events for ThunderX2 B0 (LP: #1760712)
    - perf vendor events arm64: Enable JSON events for ThunderX2 B0

  * No network with e1000e driver on 4.13.0-38-generic (LP: #1762693)
    - e1000e: Fix e1000_check_for_copper_link_ich8lan return value.

  * /dev/ipmi enumeration flaky on Cavium Sabre nodes (LP: #1762812)
    - i2c: xlp9xx: return ENXIO on slave address NACK
    - i2c: xlp9xx: Handle transactions with I2C_M_RECV_LEN properly
    - i2c: xlp9xx: Check for Bus state before every transfer
    - i2c: xlp9xx: Handle NACK on DATA properly

  * "ip a" command on a guest VM shows UNKNOWN status (LP: #1761534)
    - virtio-net: Fix operstate for virtio when no VIRTIO_NET_F_STATUS

  * fix regression in mm/hotplug, allows NVIDIA driver to work (LP: #1761104)
    - SAUCE: Fix revert "mm, memory_hotplug: do not associate hotadded memory to
      zones until online"

  * ibrs/ibpb fixes result in excessive kernel logging  (LP: #1755627)
    - SAUCE: remove ibrs_dump sysctl interface

 -- Stefan Bader <email address hidden>  Tue, 15 May 2018 07:39:26 +0200

Upload details

Uploaded by:
Stefan Bader on 2018-05-17
Uploaded to:
Xenial
Original maintainer:
Ubuntu Kernel Team
Architectures:
all i386 amd64 armhf arm64 ppc64el s390x
Section:
devel
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
linux-hwe_4.13.0.orig.tar.gz 148.3 MiB 9511260e17e474183b9c3b2ea601d5af256dde783e14dba4031854eaa98d5089
linux-hwe_4.13.0-43.48~16.04.1.diff.gz 8.6 MiB a2ce70dc935fc624b47af99d88c9b6bd8b13f3bb2989b3937f69b1162eb5f52f
linux-hwe_4.13.0-43.48~16.04.1.dsc 5.7 KiB 13a91ed989ff68440fa8143f5420a01d3550c43e8f5447556f566a028ae31af1

View changes file

Binary packages built by this source

block-modules-4.13.0-43-generic-di: Block storage devices

 This package contains the block storage devices, including DAC960 and
 paraide.

block-modules-4.13.0-43-generic-lpae-di: Block storage devices

 This package contains the block storage devices, including DAC960 and
 paraide.

crypto-modules-4.13.0-43-generic-di: crypto modules

 This package contains crypto modules.

crypto-modules-4.13.0-43-generic-lpae-di: crypto modules

 This package contains crypto modules.

dasd-extra-modules-4.13.0-43-generic-di: DASD storage support -- extras
dasd-modules-4.13.0-43-generic-di: DASD storage support
fat-modules-4.13.0-43-generic-di: FAT filesystem support

 This includes Windows FAT and VFAT support.

fat-modules-4.13.0-43-generic-lpae-di: FAT filesystem support

 This includes Windows FAT and VFAT support.

fb-modules-4.13.0-43-generic-di: Framebuffer modules
firewire-core-modules-4.13.0-43-generic-di: Firewire (IEEE-1394) Support
floppy-modules-4.13.0-43-generic-di: Floppy driver support
fs-core-modules-4.13.0-43-generic-di: Base filesystem modules

 This includes jfs, reiserfs and xfs.

fs-core-modules-4.13.0-43-generic-lpae-di: Base filesystem modules

 This includes jfs, reiserfs and xfs.

fs-secondary-modules-4.13.0-43-generic-di: Extra filesystem modules

 This includes support for Windows NTFS and MacOS HFS/HFSPlus

fs-secondary-modules-4.13.0-43-generic-lpae-di: Extra filesystem modules

 This includes support for Windows NTFS and MacOS HFS/HFSPlus

input-modules-4.13.0-43-generic-di: Support for various input methods
input-modules-4.13.0-43-generic-lpae-di: Support for various input methods
ipmi-modules-4.13.0-43-generic-di: ipmi modules
ipmi-modules-4.13.0-43-generic-lpae-di: ipmi modules
irda-modules-4.13.0-43-generic-di: Support for Infrared protocols
irda-modules-4.13.0-43-generic-lpae-di: Support for Infrared protocols
kernel-image-4.13.0-43-generic-di: kernel image and system map
kernel-image-4.13.0-43-generic-lpae-di: kernel image and system map
linux-cloud-tools-4.13.0-43-generic: Linux kernel version specific cloud tools for version 4.13.0-43

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud for version 4.13.0-43 on
 32 bit x86.

linux-cloud-tools-4.13.0-43-lowlatency: Linux kernel version specific cloud tools for version 4.13.0-43

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud for version 4.13.0-43 on
 32 bit x86.

linux-headers-4.13.0-43: Header files related to Linux kernel version 4.13.0

 This package provides kernel header files for version 4.13.0, for sites
 that want the latest kernel headers. Please read
 /usr/share/doc/linux-hwe-headers-4.13.0-43/debian.README.gz for details

linux-headers-4.13.0-43-generic: Linux kernel headers for version 4.13.0 on 32 bit x86 SMP

 This package provides kernel header files for version 4.13.0 on
 32 bit x86 SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-4.13.0-43/debian.README.gz for details.

linux-headers-4.13.0-43-generic-lpae: Linux kernel headers for version 4.13.0 on ARM (hard float) SMP

 This package provides kernel header files for version 4.13.0 on
 ARM (hard float) SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-4.13.0-43/debian.README.gz for details.

linux-headers-4.13.0-43-lowlatency: Linux kernel headers for version 4.13.0 on 32 bit x86 SMP

 This package provides kernel header files for version 4.13.0 on
 32 bit x86 SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-4.13.0-43/debian.README.gz for details.

linux-hwe-cloud-tools-4.13.0-43: Linux kernel version specific cloud tools for version 4.13.0-43

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud tools for version 4.13.0-43 on
 32 bit x86.
 You probably want to install linux-cloud-tools-4.13.0-43-<flavour>.

linux-hwe-cloud-tools-4.13.0-43-dbgsym: debug symbols for package linux-hwe-cloud-tools-4.13.0-43

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud tools for version 4.13.0-43 on
 32 bit x86.
 You probably want to install linux-cloud-tools-4.13.0-43-<flavour>.

linux-hwe-tools-4.13.0-43: Linux kernel version specific tools for version 4.13.0-43

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 4.13.0-43 on
 32 bit x86.
 You probably want to install linux-tools-4.13.0-43-<flavour>.

linux-hwe-tools-4.13.0-43-dbgsym: debug symbols for package linux-hwe-tools-4.13.0-43

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 4.13.0-43 on
 32 bit x86.
 You probably want to install linux-tools-4.13.0-43-<flavour>.

linux-hwe-udebs-generic: Metapackage depending on kernel udebs

 This package depends on the all udebs that the kernel build generated,
 for easier version and migration tracking.

linux-hwe-udebs-generic-lpae: Metapackage depending on kernel udebs

 This package depends on the all udebs that the kernel build generated,
 for easier version and migration tracking.

linux-image-4.13.0-43-generic: Linux kernel image for version 4.13.0 on 32 bit x86 SMP

 This package contains the Linux kernel image for version 4.13.0 on
 32 bit x86 SMP.
 .
 Also includes the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Generic processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-4.13.0-43-generic-dbgsym: Linux kernel debug image for version 4.13.0 on 32 bit x86 SMP

 This package provides a kernel debug image for version 4.13.0 on
 32 bit x86 SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-image-4.13.0-43-generic-lpae: Linux kernel image for version 4.13.0 on ARM (hard float) SMP

 This package contains the Linux kernel image for version 4.13.0 on
 ARM (hard float) SMP.
 .
 Also includes the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Generic LPAE processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic-lpae meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-4.13.0-43-generic-lpae-dbgsym: Linux kernel debug image for version 4.13.0 on ARM (hard float) SMP

 This package provides a kernel debug image for version 4.13.0 on
 ARM (hard float) SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-image-4.13.0-43-lowlatency: Linux kernel image for version 4.13.0 on 32 bit x86 SMP

 This package contains the Linux kernel image for version 4.13.0 on
 32 bit x86 SMP.
 .
 Also includes the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Lowlatency processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-lowlatency meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-4.13.0-43-lowlatency-dbgsym: Linux kernel debug image for version 4.13.0 on 32 bit x86 SMP

 This package provides a kernel debug image for version 4.13.0 on
 32 bit x86 SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-image-extra-4.13.0-43-generic: Linux kernel extra modules for version 4.13.0 on 32 bit x86 SMP

 This package contains the Linux kernel extra modules for version 4.13.0 on
 32 bit x86 SMP.
 .
 Also includes the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Generic processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-source-4.13.0: Linux kernel source for version 4.13.0 with Ubuntu patches

 This package provides the source code for the Linux kernel version
 4.13.0.
 .
 This package is mainly meant for other packages to use, in order to build
 custom flavours.
 .
 If you wish to use this package to create a custom Linux kernel, then it
 is suggested that you investigate the package kernel-package, which has
 been designed to ease the task of creating kernel image packages.
 .
 If you are simply trying to build third-party modules for your kernel,
 you do not want this package. Install the appropriate linux-headers
 package instead.

linux-tools-4.13.0-43-generic: Linux kernel version specific tools for version 4.13.0-43

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 4.13.0-43 on
 32 bit x86.

linux-tools-4.13.0-43-generic-lpae: Linux kernel version specific tools for version 4.13.0-43

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 4.13.0-43 on
 ARM (hard float).

linux-tools-4.13.0-43-lowlatency: Linux kernel version specific tools for version 4.13.0-43

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 4.13.0-43 on
 32 bit x86.

md-modules-4.13.0-43-generic-di: Multi-device support (raid, device-mapper, lvm)
md-modules-4.13.0-43-generic-lpae-di: Multi-device support (raid, device-mapper, lvm)
message-modules-4.13.0-43-generic-di: Fusion and i2o storage modules

 This package containes the fusion and i2o storage modules.

mouse-modules-4.13.0-43-generic-di: Mouse support

 This package contains mouse drivers for the Linux kernel.

mouse-modules-4.13.0-43-generic-lpae-di: Mouse support

 This package contains mouse drivers for the Linux kernel.

multipath-modules-4.13.0-43-generic-di: DM-Multipath support

  This package contains modules for device-mapper multipath support.

multipath-modules-4.13.0-43-generic-lpae-di: DM-Multipath support

  This package contains modules for device-mapper multipath support.

nfs-modules-4.13.0-43-generic-di: NFS filesystem drivers

 Includes the NFS client driver, and supporting modules.

nfs-modules-4.13.0-43-generic-lpae-di: NFS filesystem drivers

 Includes the NFS client driver, and supporting modules.

nic-modules-4.13.0-43-generic-di: Network interface support
nic-modules-4.13.0-43-generic-lpae-di: Network interface support
nic-pcmcia-modules-4.13.0-43-generic-di: PCMCIA network interface support
nic-shared-modules-4.13.0-43-generic-di: nic shared modules

  This package contains modules which support nic modules

nic-shared-modules-4.13.0-43-generic-lpae-di: nic shared modules

  This package contains modules which support nic modules

nic-usb-modules-4.13.0-43-generic-di: USB network interface support
nic-usb-modules-4.13.0-43-generic-lpae-di: USB network interface support
parport-modules-4.13.0-43-generic-di: Parallel port support
parport-modules-4.13.0-43-generic-lpae-di: Parallel port support
pata-modules-4.13.0-43-generic-di: PATA support modules
pcmcia-modules-4.13.0-43-generic-di: PCMCIA Modules
pcmcia-storage-modules-4.13.0-43-generic-di: PCMCIA storage support
plip-modules-4.13.0-43-generic-di: PLIP (parallel port) networking support
plip-modules-4.13.0-43-generic-lpae-di: PLIP (parallel port) networking support
ppp-modules-4.13.0-43-generic-di: PPP (serial port) networking support
ppp-modules-4.13.0-43-generic-lpae-di: PPP (serial port) networking support
sata-modules-4.13.0-43-generic-di: SATA storage support
sata-modules-4.13.0-43-generic-lpae-di: SATA storage support
scsi-modules-4.13.0-43-generic-di: SCSI storage support
scsi-modules-4.13.0-43-generic-lpae-di: SCSI storage support
serial-modules-4.13.0-43-generic-di: Serial port support
storage-core-modules-4.13.0-43-generic-di: Core storage support

 Includes core SCSI, LibATA, USB-Storage. Also includes related block
 devices for CD, Disk and Tape medium (and IDE Floppy).

storage-core-modules-4.13.0-43-generic-lpae-di: Core storage support

 Includes core SCSI, LibATA, USB-Storage. Also includes related block
 devices for CD, Disk and Tape medium (and IDE Floppy).

usb-modules-4.13.0-43-generic-di: Core USB support
usb-modules-4.13.0-43-generic-lpae-di: Core USB support
virtio-modules-4.13.0-43-generic-di: VirtIO Modules

 Includes modules for VirtIO (virtual machine, generally kvm guests)

vlan-modules-4.13.0-43-generic-di: vlan modules

 This package contains vlan (8021.Q) modules.

vlan-modules-4.13.0-43-generic-lpae-di: vlan modules

 This package contains vlan (8021.Q) modules.