linux-oem 4.13.0-1028.31 source package in Ubuntu

Changelog

linux-oem (4.13.0-1028.31) xenial; urgency=medium

  [ Ubuntu: 4.13.0-43.48 ]

  * CVE-2018-3639 (powerpc)
    - SAUCE: rfi-flush: update H_CPU_* macro names to upstream
    - SAUCE: rfi-flush: update plpar_get_cpu_characteristics() signature to
      upstream
    - SAUCE: update pseries_setup_rfi_flush() capitalization to upstream
    - powerpc/pseries: Support firmware disable of RFI flush
    - powerpc/powernv: Support firmware disable of RFI flush
    - powerpc/64s: Allow control of RFI flush via debugfs
    - powerpc/rfi-flush: Move the logic to avoid a redo into the debugfs code
    - powerpc/rfi-flush: Always enable fallback flush on pseries
    - powerpc/rfi-flush: Differentiate enabled and patched flush types
    - powerpc/pseries: Add new H_GET_CPU_CHARACTERISTICS flags
    - powerpc: Add security feature flags for Spectre/Meltdown
    - powerpc/powernv: Set or clear security feature flags
    - powerpc/pseries: Set or clear security feature flags
    - powerpc/powernv: Use the security flags in pnv_setup_rfi_flush()
    - powerpc/pseries: Use the security flags in pseries_setup_rfi_flush()
    - powerpc/pseries: Fix clearing of security feature flags
    - powerpc: Move default security feature flags
    - powerpc/pseries: Restore default security feature flags on setup
    - powerpc/64s: Add support for a store forwarding barrier at kernel entry/exit
  * CVE-2018-3639 (x86)
    - SAUCE: Add X86_FEATURE_ARCH_CAPABILITIES
    - SAUCE: x86: Add alternative_msr_write
    - x86/nospec: Simplify alternative_msr_write()
    - x86/pti: Do not enable PTI on CPUs which are not vulnerable to Meltdown
    - x86/bugs: Concentrate bug detection into a separate function
    - x86/bugs: Concentrate bug reporting into a separate function
    - x86/msr: Add definitions for new speculation control MSRs
    - x86/bugs: Read SPEC_CTRL MSR during boot and re-use reserved bits
    - x86/bugs, KVM: Support the combination of guest and host IBRS
    - x86/bugs: Expose /sys/../spec_store_bypass
    - x86/cpufeatures: Add X86_FEATURE_RDS
    - x86/bugs: Provide boot parameters for the spec_store_bypass_disable
      mitigation
    - x86/bugs/intel: Set proper CPU features and setup RDS
    - x86/bugs: Whitelist allowed SPEC_CTRL MSR values
    - x86/bugs/AMD: Add support to disable RDS on Fam[15,16,17]h if requested
    - x86/KVM/VMX: Expose SPEC_CTRL Bit(2) to the guest
    - x86/speculation: Create spec-ctrl.h to avoid include hell
    - prctl: Add speculation control prctls
    - x86/process: Allow runtime control of Speculative Store Bypass
    - x86/speculation: Add prctl for Speculative Store Bypass mitigation
    - nospec: Allow getting/setting on non-current task
    - proc: Provide details on speculation flaw mitigations
    - seccomp: Enable speculation flaw mitigations
    - SAUCE: x86/bugs: Honour SPEC_CTRL default
    - x86/bugs: Make boot modes __ro_after_init
    - prctl: Add force disable speculation
    - seccomp: Use PR_SPEC_FORCE_DISABLE
    - seccomp: Add filter flag to opt-out of SSB mitigation
    - seccomp: Move speculation migitation control to arch code
    - x86/speculation: Make "seccomp" the default mode for Speculative Store
      Bypass
    - x86/bugs: Rename _RDS to _SSBD
    - proc: Use underscores for SSBD in 'status'
    - Documentation/spec_ctrl: Do some minor cleanups
    - x86/bugs: Fix __ssb_select_mitigation() return type
    - x86/bugs: Make cpu_show_common() static
  * LSM Stacking prctl values should be redefined as to not collide with
    upstream prctls (LP: #1769263) // CVE-2018-3639
    - SAUCE: LSM stacking: adjust prctl values

linux-oem (4.13.0-1027.30) xenial; urgency=medium

  * linux-oem: 4.13.0-1027.30 -proposed tracker (LP: #1769996)

  * set PINCFG_HEADSET_MIC to parse_flags for Dell precision 3630 (LP: #1766398)
    - ALSA: hda/realtek - set PINCFG_HEADSET_MIC to parse_flags

  * Change the location for one of two front mics on a lenovo thinkcentre
    machine (LP: #1766477)
    - ALSA: hda/realtek - adjust the location of one mic

  * Update btusb reset-resume quirk to decrease power usage (LP: #1766197)
    - SAUCE: Revert "usb: quirks: Add reset-resume quirk for Dell DW1820 QCA Rome
      Bluetooth"
    - Bluetooth: btusb: Use DMI matching for QCA reset_resume quirking
    - Bluetooth: btusb: Remove Yoga 920 from the btusb_needs_reset_resume_table
    - Bluetooth: btusb: Add Dell OptiPlex 3060 to btusb_needs_reset_resume_table

  * Update Aquantia driver to fix various issues (LP: #1759303)
    - SAUCE: Revert "net: aquantia: Reset nic statistics on interface up/down"
    - SAUCE: Revert "net: aquantia: Add queue restarts stats counter"
    - SAUCE: Revert "net: aquantia: Fixed transient link up/down/up notification"
    - SAUCE: Revert "net: aquantia: Limit number of MSIX irqs to the number of
      cpus"
    - SAUCE: Revert "net: aquantia: mmio unmap was not performed on driver
      removal"
    - SAUCE: Revert "net: aquantia: Enable coalescing management via ethtool
      interface"
    - SAUCE: Revert "net: aquantia: Reset nic statistics on interface up/down"
    - SAUCE: Revert "aquantia: Fix Tx queue hangups"
    - SAUCE: Revert "net: aquantia: Bad udp rate on default interrupt coalescing"
    - aquantia: Switch to use napi_gro_receive
    - aquantia: Setup max_mtu in ndev to enable jumbo frames
    - aquantia: Fix Tx queue hangups
    - aquantia: Fix transient invalid link down/up indications
    - atlantic: fix iommu errors
    - net: aquantia: Reset nic statistics on interface up/down
    - net: aquantia: Add queue restarts stats counter
    - net: aquantia: Fixed transient link up/down/up notification
    - net: aquantia: Limit number of MSIX irqs to the number of cpus
    - net: aquantia: mmio unmap was not performed on driver removal
    - net: aquantia: Enable coalescing management via ethtool interface
    - net: aquantia: Bad udp rate on default interrupt coalescing
    - net: aquantia: Fix actual speed capabilities reporting
    - net: aquantia: Fix hardware DMA stream overload on large MRRS
    - net: aquantia: Extend stat counters to 64bit values
    - net: aquantia: Fill ndev stat couters from hardware
    - net: aquantia: Fill in multicast counter in ndev stats from hardware
    - net: aquantia: Improve link state and statistics check interval callback
    - net: aquantia: Update hw counters on hw init
    - net: aquantia: Fix typo in ethtool statistics names
    - net: aquantia: Increment driver version
    - net: aquantia: Eliminate AQ_DIMOF, replace with ARRAY_SIZE
    - net: aquantia: Cleanup status flags accesses
    - net: aquantia: Cleanup hardware access modules
    - net: aquantia: Remove duplicate hardware descriptors declarations
    - net: aquantia: Add const qualifiers for hardware ops tables
    - net: aquantia: Simplify dependencies between pci modules
    - net: aquantia: Eliminate aq_nic structure abstraction
    - net: aquantia: Fix register definitions to linux style
    - net: aquantia: Prepend hw access functions declarations with prefix
    - net: aquantia: Fix internal stats calculation on rx
    - net: aquantia: Introduce new device ids and constants
    - net: aquantia: Introduce new AQC devices and capabilities
    - net: aquantia: Convert hw and caps structures to const static pointers
    - net: aquantia: Cleanup pci functions module
    - net: aquantia: Remove create/destroy from hw ops
    - net: aquantia: Change confusing no_ff_addr to more meaningful name
    - net: aquantia: Introduce firmware ops callbacks
    - net: aquantia: Introduce support for new firmware on AQC cards
    - net: aquantia: Introduce global AQC hardware reset sequence
    - net: aquantia: Report correct mediatype via ethtool
    - net: aquantia: bump driver version to match aquantia internal numbering
    - net: aquantia: Fix hardware reset when SPI may rarely hangup
    - net: aquantia: Fix a regression with reset on old firmware
    - net: aquantia: Change inefficient wait loop on fw data reads
    - net: aquantia: Add tx clean budget and valid budget handling logic
    - net: aquantia: Allow live mac address changes
    - net: aquantia: Implement pci shutdown callback
    - net: aquantia: driver version bump

  * Fix an issue that some PCI devices get incorrectly suspended (LP: #1764684)
    - SAUCE: PCI / PM: Always check PME wakeup capability for runtime wakeup
      support

  * Miscellaneous Ubuntu changes
    - Rebase to 4.13.0-42.47

  [ Ubuntu: 4.13.0-42.47 ]

  * linux: 4.13.0-42.47 -proposed tracker (LP: #1769993)
  * arm64: fix CONFIG_DEBUG_WX address reporting (LP: #1765850)
    - arm64: fix CONFIG_DEBUG_WX address reporting
  * HiSilicon HNS NIC names are truncated in /proc/interrupts (LP: #1765977)
    - net: hns: Avoid action name truncation
  * CVE-2017-18208
    - mm/madvise.c: fix madvise() infinite loop under special circumstances
  * CVE-2018-8822
    - staging: ncpfs: memory corruption in ncp_read_kernel()
  * CVE-2017-18203
    - dm: fix race between dm_get_from_kobject() and __dm_destroy()
  * CVE-2017-17449
    - netlink: Add netns check on taps
  * CVE-2017-17975
    - media: usbtv: prevent double free in error case
  * [8086:3e92] display becomes blank after S3 (LP: #1763271)
    - drm/i915/edp: Allow alternate fixed mode for eDP if available.
    - drm/i915/dp: rename intel_dp_is_edp to intel_dp_is_port_edp
    - drm/i915/dp: make is_edp non-static and rename to intel_dp_is_edp
    - drm/i915/edp: Do not do link training fallback or prune modes on EDP
  * sky2 gigabit ethernet driver sometimes stops working after lid-open resume
    from sleep (88E8055) (LP: #1758507)
    - sky2: Increase D3 delay to sky2 stops working after suspend
  * perf vendor events arm64: Enable JSON events for ThunderX2 B0 (LP: #1760712)
    - perf vendor events arm64: Enable JSON events for ThunderX2 B0
  * No network with e1000e driver on 4.13.0-38-generic (LP: #1762693)
    - e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
  * /dev/ipmi enumeration flaky on Cavium Sabre nodes (LP: #1762812)
    - i2c: xlp9xx: return ENXIO on slave address NACK
    - i2c: xlp9xx: Handle transactions with I2C_M_RECV_LEN properly
    - i2c: xlp9xx: Check for Bus state before every transfer
    - i2c: xlp9xx: Handle NACK on DATA properly
  * "ip a" command on a guest VM shows UNKNOWN status (LP: #1761534)
    - virtio-net: Fix operstate for virtio when no VIRTIO_NET_F_STATUS
  * fix regression in mm/hotplug, allows NVIDIA driver to work (LP: #1761104)
    - SAUCE: Fix revert "mm, memory_hotplug: do not associate hotadded memory to
      zones until online"
  * ibrs/ibpb fixes result in excessive kernel logging  (LP: #1755627)
    - SAUCE: remove ibrs_dump sysctl interface

  [ Ubuntu: 4.13.0-41.46 ]

  * CVE-2018-8897
    - x86/entry/64: Don't use IST entry for #BP stack
  * CVE-2018-1087
    - kvm/x86: fix icebp instruction handling
  * CVE-2018-1000199
    - perf/hwbp: Simplify the perf-hwbp code, fix documentation

 -- Stefan Bader <email address hidden>  Thu, 17 May 2018 16:28:05 +0200

Upload details

Uploaded by:
Stefan Bader on 2018-05-17
Uploaded to:
Xenial
Original maintainer:
Ubuntu Kernel Team
Architectures:
all amd64
Section:
devel
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Xenial: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
linux-oem_4.13.0.orig.tar.gz 148.3 MiB 9511260e17e474183b9c3b2ea601d5af256dde783e14dba4031854eaa98d5089
linux-oem_4.13.0-1028.31.diff.gz 13.8 MiB b588f585d4e880418dc99da76463fee75bdf5c2e144eb5eba3038d522a829a41
linux-oem_4.13.0-1028.31.dsc 3.3 KiB a61d4157d11f10d1d9b9205f2505364c6c2ff7705db98092f5016feaca582431

View changes file

Binary packages built by this source

block-modules-4.13.0-1028-oem-di: Block storage devices

 This package contains the block storage devices, including DAC960 and
 paraide.

crypto-modules-4.13.0-1028-oem-di: crypto modules

 This package contains crypto modules.

fat-modules-4.13.0-1028-oem-di: FAT filesystem support

 This includes Windows FAT and VFAT support.

fb-modules-4.13.0-1028-oem-di: Framebuffer modules
firewire-core-modules-4.13.0-1028-oem-di: Firewire (IEEE-1394) Support
floppy-modules-4.13.0-1028-oem-di: Floppy driver support
fs-core-modules-4.13.0-1028-oem-di: Base filesystem modules

 This includes jfs, reiserfs and xfs.

fs-secondary-modules-4.13.0-1028-oem-di: Extra filesystem modules

 This includes support for Windows NTFS and MacOS HFS/HFSPlus

input-modules-4.13.0-1028-oem-di: Support for various input methods
ipmi-modules-4.13.0-1028-oem-di: ipmi modules
irda-modules-4.13.0-1028-oem-di: Support for Infrared protocols
kernel-image-4.13.0-1028-oem-di: kernel image and system map
linux-headers-4.13.0-1028-oem: Linux kernel headers for version 4.13.0 on 64 bit x86 SMP

 This package provides kernel header files for version 4.13.0 on
 64 bit x86 SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-4.13.0-1028/debian.README.gz for details.

linux-image-4.13.0-1028-oem: Linux kernel image for version 4.13.0 on 64 bit x86 SMP

 This package contains the Linux kernel image for version 4.13.0 on
 64 bit x86 SMP.
 .
 Also includes the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports OEM processors.
 .
 Geared toward desktop systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-oem meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-4.13.0-1028-oem-dbgsym: Linux kernel debug image for version 4.13.0 on 64 bit x86 SMP

 This package provides a kernel debug image for version 4.13.0 on
 64 bit x86 SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-oem-headers-4.13.0-1028: Header files related to Linux kernel version 4.13.0

 This package provides kernel header files for version 4.13.0, for sites
 that want the latest kernel headers. Please read
 /usr/share/doc/linux-oem-headers-4.13.0-1028/debian.README.gz for details

linux-oem-tools-4.13.0-1028: Linux kernel version specific tools for version 4.13.0-1028

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 4.13.0-1028 on
 64 bit x86.
 You probably want to install linux-tools-4.13.0-1028-<flavour>.

linux-oem-tools-4.13.0-1028-dbgsym: debug symbols for package linux-oem-tools-4.13.0-1028

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 4.13.0-1028 on
 64 bit x86.
 You probably want to install linux-tools-4.13.0-1028-<flavour>.

linux-tools-4.13.0-1028-oem: Linux kernel version specific tools for version 4.13.0-1028

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 4.13.0-1028 on
 64 bit x86.

linux-udebs-oem: Metapackage depending on kernel udebs

 This package depends on the all udebs that the kernel build generated,
 for easier version and migration tracking.

md-modules-4.13.0-1028-oem-di: Multi-device support (raid, device-mapper, lvm)
message-modules-4.13.0-1028-oem-di: Fusion and i2o storage modules

 This package containes the fusion and i2o storage modules.

mouse-modules-4.13.0-1028-oem-di: Mouse support

 This package contains mouse drivers for the Linux kernel.

multipath-modules-4.13.0-1028-oem-di: DM-Multipath support

  This package contains modules for device-mapper multipath support.

nfs-modules-4.13.0-1028-oem-di: NFS filesystem drivers

 Includes the NFS client driver, and supporting modules.

nic-modules-4.13.0-1028-oem-di: Network interface support
nic-pcmcia-modules-4.13.0-1028-oem-di: PCMCIA network interface support
nic-shared-modules-4.13.0-1028-oem-di: nic shared modules

  This package contains modules which support nic modules

nic-usb-modules-4.13.0-1028-oem-di: USB network interface support
parport-modules-4.13.0-1028-oem-di: Parallel port support
pata-modules-4.13.0-1028-oem-di: PATA support modules
pcmcia-modules-4.13.0-1028-oem-di: PCMCIA Modules
pcmcia-storage-modules-4.13.0-1028-oem-di: PCMCIA storage support
plip-modules-4.13.0-1028-oem-di: PLIP (parallel port) networking support
ppp-modules-4.13.0-1028-oem-di: PPP (serial port) networking support
sata-modules-4.13.0-1028-oem-di: SATA storage support
scsi-modules-4.13.0-1028-oem-di: SCSI storage support
serial-modules-4.13.0-1028-oem-di: Serial port support
storage-core-modules-4.13.0-1028-oem-di: Core storage support

 Includes core SCSI, LibATA, USB-Storage. Also includes related block
 devices for CD, Disk and Tape medium (and IDE Floppy).

usb-modules-4.13.0-1028-oem-di: Core USB support
virtio-modules-4.13.0-1028-oem-di: VirtIO Modules

 Includes modules for VirtIO (virtual machine, generally kvm guests)

vlan-modules-4.13.0-1028-oem-di: vlan modules

 This package contains vlan (8021.Q) modules.