Change logs for linux-raspi2 source package in Artful

  • linux-raspi2 (4.13.0-1023.24) artful; urgency=medium
    
      * linux-raspi2: 4.13.0-1023.24 -proposed tracker (LP: #1776334)
    
    
      [ Ubuntu: 4.13.0-46.51 ]
    
      * linux: 4.13.0-46.51 -proposed tracker (LP: #1776333)
      * register on binfmt_misc may overflow and crash the system (LP: #1775856)
        - fs/binfmt_misc.c: do not allow offset overflow
      * CVE-2018-11508
        - compat: fix 4-byte infoleak via uninitialized struct field
      * rfi-flush: Switch to new linear fallback flush (LP: #1744173)
        - SAUCE: rfi-flush: Factor out init_fallback_flush()
        - SAUCE: rfi-flush: Move rfi_flush_fallback_area to end of paca
        - powerpc/64s: Improve RFI L1-D cache flush fallback
        - powerpc/rfi-flush: Make it possible to call setup_rfi_flush() again
        - powerpc/rfi-flush: Differentiate enabled and patched flush types
        - powerpc/rfi-flush: Call setup_rfi_flush() after LPM migration
      * Fix enabling bridge MMIO windows (LP: #1771344)
        - powerpc/eeh: Fix enabling bridge MMIO windows
      * CVE-2018-1130
        - dccp: check sk for closed state in dccp_sendmsg()
      * CVE-2018-7757
        - scsi: libsas: fix memory leak in sas_smp_get_phy_events()
      * cpum_sf: ensure sample freq is non-zero (LP: #1772593)
        - s390/cpum_sf: ensure sample frequency of perf event attributes is non-zero
      * wlp3s0: failed to remove key (1, ff:ff:ff:ff:ff:ff) from hardware (-22)
        (LP: #1720930)
        - iwlwifi: mvm: fix "failed to remove key" message
      * CVE-2018-6927
        - futex: Prevent overflow by strengthen input validation
      * After update to 4.13-43 Intel Graphics are Laggy (LP: #1773520)
        - SAUCE: Revert "drm/i915/edp: Allow alternate fixed mode for eDP if
          available."
      * ELANPAD ELAN0612 does not work, patch available (LP: #1773509)
        - SAUCE: Input: elan_i2c - add ELAN0612 to the ACPI table
      * kernel backtrace when receiving large UDP packages (LP: #1772031)
        - iov_iter: fix page_copy_sane for compound pages
      * FS-Cache: Assertion failed: FS-Cache: 6 == 5 is false (LP: #1774336)
        - SAUCE: CacheFiles: fix a read_waiter/read_copier race
      * CVE-2018-5803
        - sctp: verify size of a new chunk in _sctp_make_chunk()
      * enable mic-mute hotkey and led on Lenovo M820z and M920z (LP: #1774306)
        - ALSA: hda/realtek - Enable mic-mute hotkey for several Lenovo AIOs
      * CVE-2018-7755
        - SAUCE: floppy: Do not copy a kernel pointer to user memory in FDGETPRM ioctl
      * CVE-2018-5750
        - ACPI: sbshc: remove raw pointer from printk() message
    
     -- Khalid Elmously <email address hidden>  Tue, 12 Jun 2018 01:07:06 -0400
  • linux-raspi2 (4.13.0-1022.23) artful; urgency=medium
    
      * linux-raspi2: 4.13.0-1022.23 -proposed tracker (LP: #1774125)
    
      [ Ubuntu: 4.13.0-45.50 ]
    
      * linux: 4.13.0-45.50 -proposed tracker (LP: #1774124)
      * CVE-2018-3639 (x86)
        - SAUCE: Set generic SSBD feature for Intel cpus
    
      [ Ubuntu: 4.13.0-44.49 ]
    
      * linux: 4.13.0-44.49 -proposed tracker (LP: #1772951)
      * CVE-2018-3639 (x86)
        - x86/cpu: Make alternative_msr_write work for 32-bit code
        - x86/cpu/AMD: Fix erratum 1076 (CPB bit)
        - x86/bugs: Fix the parameters alignment and missing void
        - KVM: SVM: Move spec control call after restore of GS
        - x86/speculation: Use synthetic bits for IBRS/IBPB/STIBP
        - x86/cpufeatures: Disentangle MSR_SPEC_CTRL enumeration from IBRS
        - x86/cpufeatures: Disentangle SSBD enumeration
        - x86/cpufeatures: Add FEATURE_ZEN
        - x86/speculation: Handle HT correctly on AMD
        - x86/bugs, KVM: Extend speculation control for VIRT_SPEC_CTRL
        - x86/speculation: Add virtualized speculative store bypass disable support
        - x86/speculation: Rework speculative_store_bypass_update()
        - x86/bugs: Unify x86_spec_ctrl_{set_guest,restore_host}
        - x86/bugs: Expose x86_spec_ctrl_base directly
        - x86/bugs: Remove x86_spec_ctrl_set()
        - x86/bugs: Rework spec_ctrl base and mask logic
        - x86/speculation, KVM: Implement support for VIRT_SPEC_CTRL/LS_CFG
        - KVM: SVM: Implement VIRT_SPEC_CTRL support for SSBD
        - x86/bugs: Rename SSBD_NO to SSB_NO
        - KVM: VMX: Expose SSBD properly to guests.
      * [Ubuntu 16.04] kernel: fix rwlock implementation (LP: #1761674)
        - SAUCE: (no-up) s390: fix rwlock implementation
      * CVE-2018-7492
        - rds: Fix NULL pointer dereference in __rds_rdma_map
      * CVE-2018-8781
        - drm: udl: Properly check framebuffer mmap offsets
      * fsnotify: Fix fsnotify_mark_connector race (LP: #1765564)
        - fsnotify: Fix fsnotify_mark_connector race
      * Kernel panic on boot (m1.small in cn-north-1) (LP: #1771679)
        - x86/xen: Reset VCPU0 info pointer after shared_info remap
      * Suspend to idle: Open lid didn't resume (LP: #1771542)
        - ACPI / PM: Do not reconfigure GPEs for suspend-to-idle
      * CVE-2018-1092
        - ext4: fail ext4_iget for root directory if unallocated
      * [SRU][Artful] using vfio-pci on a combination of cn8xxx and some PCI devices
        results in a kernel panic. (LP: #1770254)
        - PCI: Avoid bus reset if bridge itself is broken
        - PCI: Mark Cavium CN8xxx to avoid bus reset
        - PCI: Avoid slot reset if bridge itself is broken
      * Battery drains when laptop is off  (shutdown) (LP: #1745646)
        - PCI / PM: Check device_may_wakeup() in pci_enable_wake()
      * perf record crash: refcount_inc assertion  failed (LP: #1769027)
        - perf cgroup: Fix refcount usage
        - perf xyarray: Fix wrong processing when closing evsel fd
      * Dell Latitude 5490/5590 BIOS update 1.1.9 causes black screen at boot
        (LP: #1764194)
        - drm/i915/bios: filter out invalid DDC pins from VBT child devices
      * Fix an issue that some PCI devices get incorrectly suspended (LP: #1764684)
        - PCI / PM: Always check PME wakeup capability for runtime wakeup support
      * [SRU][Bionic/Artful] fix false positives in W+X checking (LP: #1769696)
        - init: fix false positives in W+X checking
      * CVE-2018-1068
        - netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
      * CVE-2018-8087
        - mac80211_hwsim: fix possible memory leak in hwsim_new_radio_nl()
      * Integrated Webcam Realtek Integrated_Webcam_HD (0bda:58f4) not working in
        DELL XPS 13 9370 with firmware 1.50 (LP: #1763748)
        - SAUCE: media: uvcvideo: Support realtek's UVC 1.5 device
      * unregister_netdevice: waiting for eth0 to become free. Usage count = 5
        (LP: #1746474)
        - ipv4: convert dst_metrics.refcnt from atomic_t to refcount_t
        - xfrm: reuse uncached_list to track xdsts
      * Acer Swift sf314-52 power button not managed  (LP: #1766054)
        - SAUCE: platform/x86: acer-wmi: add another KEY_POWER keycode
      * set PINCFG_HEADSET_MIC to parse_flags for Dell precision 3630 (LP: #1766398)
        - ALSA: hda/realtek - set PINCFG_HEADSET_MIC to parse_flags
      * Change the location for one of two front mics on a lenovo thinkcentre
        machine (LP: #1766477)
        - ALSA: hda/realtek - adjust the location of one mic
    
      [ Ubuntu: 4.13.0-43.48 ]
    
      * CVE-2018-3639 (powerpc)
        - SAUCE: rfi-flush: update H_CPU_* macro names to upstream
        - SAUCE: rfi-flush: update plpar_get_cpu_characteristics() signature to
          upstream
        - SAUCE: update pseries_setup_rfi_flush() capitalization to upstream
        - powerpc/pseries: Support firmware disable of RFI flush
        - powerpc/powernv: Support firmware disable of RFI flush
        - powerpc/64s: Allow control of RFI flush via debugfs
        - powerpc/rfi-flush: Move the logic to avoid a redo into the debugfs code
        - powerpc/rfi-flush: Always enable fallback flush on pseries
        - powerpc/rfi-flush: Differentiate enabled and patched flush types
        - powerpc/pseries: Add new H_GET_CPU_CHARACTERISTICS flags
        - powerpc: Add security feature flags for Spectre/Meltdown
        - powerpc/powernv: Set or clear security feature flags
        - powerpc/pseries: Set or clear security feature flags
        - powerpc/powernv: Use the security flags in pnv_setup_rfi_flush()
        - powerpc/pseries: Use the security flags in pseries_setup_rfi_flush()
        - powerpc/pseries: Fix clearing of security feature flags
        - powerpc: Move default security feature flags
        - powerpc/pseries: Restore default security feature flags on setup
        - powerpc/64s: Add support for a store forwarding barrier at kernel entry/exit
      * CVE-2018-3639 (x86)
        - SAUCE: Add X86_FEATURE_ARCH_CAPABILITIES
        - SAUCE: x86: Add alternative_msr_write
        - x86/nospec: Simplify alternative_msr_write()
        - x86/pti: Do not enable PTI on CPUs which are not vulnerable to Meltdown
        - x86/bugs: Concentrate bug detection into a separate function
        - x86/bugs: Concentrate bug reporting into a separate function
        - x86/msr: Add definitions for new speculation control MSRs
        - x86/bugs: Read SPEC_CTRL MSR during boot and re-use reserved bits
        - x86/bugs, KVM: Support the combination of guest and host IBRS
        - x86/bugs: Expose /sys/../spec_store_bypass
        - x86/cpufeatures: Add X86_FEATURE_RDS
        - x86/bugs: Provide boot parameters for the spec_store_bypass_disable
          mitigation
        - x86/bugs/intel: Set proper CPU features and setup RDS
        - x86/bugs: Whitelist allowed SPEC_CTRL MSR values
        - x86/bugs/AMD: Add support to disable RDS on Fam[15,16,17]h if requested
        - x86/KVM/VMX: Expose SPEC_CTRL Bit(2) to the guest
        - x86/speculation: Create spec-ctrl.h to avoid include hell
        - prctl: Add speculation control prctls
        - x86/process: Allow runtime control of Speculative Store Bypass
        - x86/speculation: Add prctl for Speculative Store Bypass mitigation
        - nospec: Allow getting/setting on non-current task
        - proc: Provide details on speculation flaw mitigations
        - seccomp: Enable speculation flaw mitigations
        - SAUCE: x86/bugs: Honour SPEC_CTRL default
        - x86/bugs: Make boot modes __ro_after_init
        - prctl: Add force disable speculation
        - seccomp: Use PR_SPEC_FORCE_DISABLE
        - seccomp: Add filter flag to opt-out of SSB mitigation
        - seccomp: Move speculation migitation control to arch code
        - x86/speculation: Make "seccomp" the default mode for Speculative Store
          Bypass
        - x86/bugs: Rename _RDS to _SSBD
        - proc: Use underscores for SSBD in 'status'
        - Documentation/spec_ctrl: Do some minor cleanups
        - x86/bugs: Fix __ssb_select_mitigation() return type
        - x86/bugs: Make cpu_show_common() static
      * LSM Stacking prctl values should be redefined as to not collide with
        upstream prctls (LP: #1769263) // CVE-2018-3639
        - SAUCE: LSM stacking: adjust prctl values
    
     -- Kleber Sacilotto de Souza <email address hidden>  Wed, 30 May 2018 14:46:47 +0200
  • linux-raspi2 (4.13.0-1021.22) artful; urgency=medium
    
      * linux-raspi2: 4.13.0-1021.22 -proposed tracker (LP: #1772952)
    
      [ Ubuntu: 4.13.0-44.49 ]
    
      * linux: 4.13.0-44.49 -proposed tracker (LP: #1772951)
      * CVE-2018-3639 (x86)
        - x86/cpu: Make alternative_msr_write work for 32-bit code
        - x86/cpu/AMD: Fix erratum 1076 (CPB bit)
        - x86/bugs: Fix the parameters alignment and missing void
        - KVM: SVM: Move spec control call after restore of GS
        - x86/speculation: Use synthetic bits for IBRS/IBPB/STIBP
        - x86/cpufeatures: Disentangle MSR_SPEC_CTRL enumeration from IBRS
        - x86/cpufeatures: Disentangle SSBD enumeration
        - x86/cpufeatures: Add FEATURE_ZEN
        - x86/speculation: Handle HT correctly on AMD
        - x86/bugs, KVM: Extend speculation control for VIRT_SPEC_CTRL
        - x86/speculation: Add virtualized speculative store bypass disable support
        - x86/speculation: Rework speculative_store_bypass_update()
        - x86/bugs: Unify x86_spec_ctrl_{set_guest,restore_host}
        - x86/bugs: Expose x86_spec_ctrl_base directly
        - x86/bugs: Remove x86_spec_ctrl_set()
        - x86/bugs: Rework spec_ctrl base and mask logic
        - x86/speculation, KVM: Implement support for VIRT_SPEC_CTRL/LS_CFG
        - KVM: SVM: Implement VIRT_SPEC_CTRL support for SSBD
        - x86/bugs: Rename SSBD_NO to SSB_NO
        - bpf: Prevent memory disambiguation attack
        - KVM: VMX: Expose SSBD properly to guests.
      * [Ubuntu 16.04] kernel: fix rwlock implementation (LP: #1761674)
        - SAUCE: (no-up) s390: fix rwlock implementation
      * CVE-2018-7492
        - rds: Fix NULL pointer dereference in __rds_rdma_map
      * CVE-2018-8781
        - drm: udl: Properly check framebuffer mmap offsets
      * fsnotify: Fix fsnotify_mark_connector race (LP: #1765564)
        - fsnotify: Fix fsnotify_mark_connector race
      * Kernel panic on boot (m1.small in cn-north-1) (LP: #1771679)
        - x86/xen: Reset VCPU0 info pointer after shared_info remap
      * Suspend to idle: Open lid didn't resume (LP: #1771542)
        - ACPI / PM: Do not reconfigure GPEs for suspend-to-idle
      * CVE-2018-1092
        - ext4: fail ext4_iget for root directory if unallocated
      * [SRU][Artful] using vfio-pci on a combination of cn8xxx and some PCI devices
        results in a kernel panic. (LP: #1770254)
        - PCI: Avoid bus reset if bridge itself is broken
        - PCI: Mark Cavium CN8xxx to avoid bus reset
        - PCI: Avoid slot reset if bridge itself is broken
      * Battery drains when laptop is off  (shutdown) (LP: #1745646)
        - PCI / PM: Check device_may_wakeup() in pci_enable_wake()
      * perf record crash: refcount_inc assertion  failed (LP: #1769027)
        - perf cgroup: Fix refcount usage
        - perf xyarray: Fix wrong processing when closing evsel fd
      * Dell Latitude 5490/5590 BIOS update 1.1.9 causes black screen at boot
        (LP: #1764194)
        - drm/i915/bios: filter out invalid DDC pins from VBT child devices
      * Fix an issue that some PCI devices get incorrectly suspended (LP: #1764684)
        - PCI / PM: Always check PME wakeup capability for runtime wakeup support
      * [SRU][Bionic/Artful] fix false positives in W+X checking (LP: #1769696)
        - init: fix false positives in W+X checking
      * CVE-2018-1068
        - netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
      * CVE-2018-8087
        - mac80211_hwsim: fix possible memory leak in hwsim_new_radio_nl()
      * Integrated Webcam Realtek Integrated_Webcam_HD (0bda:58f4) not working in
        DELL XPS 13 9370 with firmware 1.50 (LP: #1763748)
        - SAUCE: media: uvcvideo: Support realtek's UVC 1.5 device
      * unregister_netdevice: waiting for eth0 to become free. Usage count = 5
        (LP: #1746474)
        - ipv4: convert dst_metrics.refcnt from atomic_t to refcount_t
        - xfrm: reuse uncached_list to track xdsts
      * Acer Swift sf314-52 power button not managed  (LP: #1766054)
        - SAUCE: platform/x86: acer-wmi: add another KEY_POWER keycode
      * set PINCFG_HEADSET_MIC to parse_flags for Dell precision 3630 (LP: #1766398)
        - ALSA: hda/realtek - set PINCFG_HEADSET_MIC to parse_flags
      * Change the location for one of two front mics on a lenovo thinkcentre
        machine (LP: #1766477)
        - ALSA: hda/realtek - adjust the location of one mic
    
      [ Ubuntu: 4.13.0-43.48 ]
    
      * CVE-2018-3639 (powerpc)
        - SAUCE: rfi-flush: update H_CPU_* macro names to upstream
        - SAUCE: rfi-flush: update plpar_get_cpu_characteristics() signature to
          upstream
        - SAUCE: update pseries_setup_rfi_flush() capitalization to upstream
        - powerpc/pseries: Support firmware disable of RFI flush
        - powerpc/powernv: Support firmware disable of RFI flush
        - powerpc/64s: Allow control of RFI flush via debugfs
        - powerpc/rfi-flush: Move the logic to avoid a redo into the debugfs code
        - powerpc/rfi-flush: Always enable fallback flush on pseries
        - powerpc/rfi-flush: Differentiate enabled and patched flush types
        - powerpc/pseries: Add new H_GET_CPU_CHARACTERISTICS flags
        - powerpc: Add security feature flags for Spectre/Meltdown
        - powerpc/powernv: Set or clear security feature flags
        - powerpc/pseries: Set or clear security feature flags
        - powerpc/powernv: Use the security flags in pnv_setup_rfi_flush()
        - powerpc/pseries: Use the security flags in pseries_setup_rfi_flush()
        - powerpc/pseries: Fix clearing of security feature flags
        - powerpc: Move default security feature flags
        - powerpc/pseries: Restore default security feature flags on setup
        - powerpc/64s: Add support for a store forwarding barrier at kernel entry/exit
      * CVE-2018-3639 (x86)
        - SAUCE: Add X86_FEATURE_ARCH_CAPABILITIES
        - SAUCE: x86: Add alternative_msr_write
        - x86/nospec: Simplify alternative_msr_write()
        - x86/pti: Do not enable PTI on CPUs which are not vulnerable to Meltdown
        - x86/bugs: Concentrate bug detection into a separate function
        - x86/bugs: Concentrate bug reporting into a separate function
        - x86/msr: Add definitions for new speculation control MSRs
        - x86/bugs: Read SPEC_CTRL MSR during boot and re-use reserved bits
        - x86/bugs, KVM: Support the combination of guest and host IBRS
        - x86/bugs: Expose /sys/../spec_store_bypass
        - x86/cpufeatures: Add X86_FEATURE_RDS
        - x86/bugs: Provide boot parameters for the spec_store_bypass_disable
          mitigation
        - x86/bugs/intel: Set proper CPU features and setup RDS
        - x86/bugs: Whitelist allowed SPEC_CTRL MSR values
        - x86/bugs/AMD: Add support to disable RDS on Fam[15,16,17]h if requested
        - x86/KVM/VMX: Expose SPEC_CTRL Bit(2) to the guest
        - x86/speculation: Create spec-ctrl.h to avoid include hell
        - prctl: Add speculation control prctls
        - x86/process: Allow runtime control of Speculative Store Bypass
        - x86/speculation: Add prctl for Speculative Store Bypass mitigation
        - nospec: Allow getting/setting on non-current task
        - proc: Provide details on speculation flaw mitigations
        - seccomp: Enable speculation flaw mitigations
        - SAUCE: x86/bugs: Honour SPEC_CTRL default
        - x86/bugs: Make boot modes __ro_after_init
        - prctl: Add force disable speculation
        - seccomp: Use PR_SPEC_FORCE_DISABLE
        - seccomp: Add filter flag to opt-out of SSB mitigation
        - seccomp: Move speculation migitation control to arch code
        - x86/speculation: Make "seccomp" the default mode for Speculative Store
          Bypass
        - x86/bugs: Rename _RDS to _SSBD
        - proc: Use underscores for SSBD in 'status'
        - Documentation/spec_ctrl: Do some minor cleanups
        - x86/bugs: Fix __ssb_select_mitigation() return type
        - x86/bugs: Make cpu_show_common() static
      * LSM Stacking prctl values should be redefined as to not collide with
        upstream prctls (LP: #1769263) // CVE-2018-3639
        - SAUCE: LSM stacking: adjust prctl values
    
     -- Khalid Elmously <email address hidden>  Thu, 24 May 2018 20:11:17 +0000
  • linux-raspi2 (4.13.0-1020.21) artful; urgency=medium
    
      * linux-raspi2: 4.13.0-1020.21 -proposed tracker (LP: #1769995)
    
      [ Ubuntu: 4.13.0-42.47 ]
    
      * linux: 4.13.0-42.47 -proposed tracker (LP: #1769993)
      * arm64: fix CONFIG_DEBUG_WX address reporting (LP: #1765850)
        - arm64: fix CONFIG_DEBUG_WX address reporting
      * HiSilicon HNS NIC names are truncated in /proc/interrupts (LP: #1765977)
        - net: hns: Avoid action name truncation
      * CVE-2017-18208
        - mm/madvise.c: fix madvise() infinite loop under special circumstances
      * CVE-2018-8822
        - staging: ncpfs: memory corruption in ncp_read_kernel()
      * CVE-2017-18203
        - dm: fix race between dm_get_from_kobject() and __dm_destroy()
      * CVE-2017-17449
        - netlink: Add netns check on taps
      * CVE-2017-17975
        - media: usbtv: prevent double free in error case
      * [8086:3e92] display becomes blank after S3 (LP: #1763271)
        - drm/i915/edp: Allow alternate fixed mode for eDP if available.
        - drm/i915/dp: rename intel_dp_is_edp to intel_dp_is_port_edp
        - drm/i915/dp: make is_edp non-static and rename to intel_dp_is_edp
        - drm/i915/edp: Do not do link training fallback or prune modes on EDP
      * sky2 gigabit ethernet driver sometimes stops working after lid-open resume
        from sleep (88E8055) (LP: #1758507)
        - sky2: Increase D3 delay to sky2 stops working after suspend
      * perf vendor events arm64: Enable JSON events for ThunderX2 B0 (LP: #1760712)
        - perf vendor events arm64: Enable JSON events for ThunderX2 B0
      * No network with e1000e driver on 4.13.0-38-generic (LP: #1762693)
        - e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
      * /dev/ipmi enumeration flaky on Cavium Sabre nodes (LP: #1762812)
        - i2c: xlp9xx: return ENXIO on slave address NACK
        - i2c: xlp9xx: Handle transactions with I2C_M_RECV_LEN properly
        - i2c: xlp9xx: Check for Bus state before every transfer
        - i2c: xlp9xx: Handle NACK on DATA properly
      * "ip a" command on a guest VM shows UNKNOWN status (LP: #1761534)
        - virtio-net: Fix operstate for virtio when no VIRTIO_NET_F_STATUS
      * fix regression in mm/hotplug, allows NVIDIA driver to work (LP: #1761104)
        - SAUCE: Fix revert "mm, memory_hotplug: do not associate hotadded memory to
          zones until online"
      * ibrs/ibpb fixes result in excessive kernel logging  (LP: #1755627)
        - SAUCE: remove ibrs_dump sysctl interface
    
     -- Kleber Sacilotto de Souza <email address hidden>  Wed, 09 May 2018 15:32:26 +0200
  • linux-raspi2 (4.13.0-1019.20) artful; urgency=medium
    
      [ Ubuntu: 4.13.0-41.46 ]
    
      * CVE-2018-8897
        - x86/entry/64: Don't use IST entry for #BP stack
      * CVE-2018-1087
        - kvm/x86: fix icebp instruction handling
      * CVE-2018-1000199
        - perf/hwbp: Simplify the perf-hwbp code, fix documentation
    
     -- Kleber Sacilotto de Souza <email address hidden>  Thu, 03 May 2018 14:44:55 +0200
  • linux-raspi2 (4.13.0-1018.19) artful; urgency=medium
    
      * linux-raspi2: 4.13.0-1018.19 -proposed tracker (LP: #1766593)
    
    
      [ Ubuntu: 4.13.0-40.45 ]
    
      * linux: 4.13.0-40.45 -proposed tracker (LP: #1766592)
      * arm64: fix CONFIG_DEBUG_WX address reporting (LP: #1765850)
        - arm64: fix CONFIG_DEBUG_WX address reporting
      * HiSilicon HNS NIC names are truncated in /proc/interrupts (LP: #1765977)
        - net: hns: Avoid action name truncation
      * CVE-2017-18208
        - mm/madvise.c: fix madvise() infinite loop under special circumstances
      * CVE-2018-8822
        - staging: ncpfs: memory corruption in ncp_read_kernel()
      * CVE-2017-18203
        - dm: fix race between dm_get_from_kobject() and __dm_destroy()
      * CVE-2017-17449
        - netlink: Add netns check on taps
      * CVE-2017-17975
        - media: usbtv: prevent double free in error case
      * [8086:3e92] display becomes blank after S3 (LP: #1763271)
        - drm/i915/edp: Allow alternate fixed mode for eDP if available.
        - drm/i915/dp: rename intel_dp_is_edp to intel_dp_is_port_edp
        - drm/i915/dp: make is_edp non-static and rename to intel_dp_is_edp
        - drm/i915/edp: Do not do link training fallback or prune modes on EDP
      * sky2 gigabit ethernet driver sometimes stops working after lid-open resume
        from sleep (88E8055) (LP: #1758507)
        - sky2: Increase D3 delay to sky2 stops working after suspend
      * perf vendor events arm64: Enable JSON events for ThunderX2 B0 (LP: #1760712)
        - perf vendor events arm64: Enable JSON events for ThunderX2 B0
      * No network with e1000e driver on 4.13.0-38-generic (LP: #1762693)
        - e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
      * /dev/ipmi enumeration flaky on Cavium Sabre nodes (LP: #1762812)
        - i2c: xlp9xx: return ENXIO on slave address NACK
        - i2c: xlp9xx: Handle transactions with I2C_M_RECV_LEN properly
        - i2c: xlp9xx: Check for Bus state before every transfer
        - i2c: xlp9xx: Handle NACK on DATA properly
      * "ip a" command on a guest VM shows UNKNOWN status (LP: #1761534)
        - virtio-net: Fix operstate for virtio when no VIRTIO_NET_F_STATUS
      * fix regression in mm/hotplug, allows NVIDIA driver to work (LP: #1761104)
        - SAUCE: Fix revert "mm, memory_hotplug: do not associate hotadded memory to
          zones until online"
      * ibrs/ibpb fixes result in excessive kernel logging  (LP: #1755627)
        - SAUCE: remove ibrs_dump sysctl interface
    
     -- Khalid Elmously <email address hidden>  Wed, 25 Apr 2018 03:19:16 +0000
  • linux-raspi2 (4.13.0-1017.18) artful; urgency=medium
    
      * linux-raspi2: 4.13.0-1017.18 -proposed tracker (LP: #1761458)
    
      [ Ubuntu: 4.13.0-39.44 ]
    
      * linux: 4.13.0-39.44 -proposed tracker (LP: #1761456)
      * intel-microcode 3.20180312.0 causes lockup at login screen(w/ linux-
        image-4.13.0-37-generic) (LP: #1759920) // CVE-2017-5715 (Spectre v2
        Intel) // CVE-2017-5754
        - x86/mm: Reinitialize TLB state on hotplug and resume
      * intel-microcode 3.20180312.0 causes lockup at login screen(w/ linux-
        image-4.13.0-37-generic) (LP: #1759920) // CVE-2017-5715 (Spectre v2 Intel)
        - Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current
          thread"
        - x86/speculation: Use Indirect Branch Prediction Barrier in context switch
      * DKMS driver builds fail with: Cannot use CONFIG_STACK_VALIDATION=y, please
        install libelf-dev, libelf-devel or elfutils-libelf-devel (LP: #1760876)
        - [Packaging] include the retpoline extractor in the headers
      * retpoline hints: primary infrastructure and initial hints (LP: #1758856)
        - [Packaging] retpoline-extract: flag *0xNNN(%reg) branches
        - x86/speculation, objtool: Annotate indirect calls/jumps for objtool
        - x86/speculation, objtool: Annotate indirect calls/jumps for objtool on 32bit
        - x86/paravirt, objtool: Annotate indirect calls
        - [Packaging] retpoline -- add safe usage hint support
        - [Packaging] retpoline-check -- only report additions
        - [Packaging] retpoline -- widen indirect call/jmp detection
        - [Packaging] retpoline -- elide %rip relative indirections
        - [Packaging] retpoline -- clear hint information from packages
        - KVM: x86: Make indirect calls in emulator speculation safe
        - KVM: VMX: Make indirect call speculation safe
        - x86/boot, objtool: Annotate indirect jump in secondary_startup_64()
        - SAUCE: early/late -- annotate indirect calls in early/late initialisation
          code
        - SAUCE: vga_set_mode -- avoid jump tables
        - [Config] retpoline -- switch to new format
        - [Packaging] retpoline hints -- handle missing files when RETPOLINE not
          enabled
        - [Packaging] final-checks -- remove check for empty retpoline files
      * retpoline: ignore %cs:0xNNN constant indirections (LP: #1752655)
        - [Packaging] retpoline -- elide %cs:0xNNNN constants on i386
      * zfs system process hung on container stop/delete (LP: #1754584)
        - SAUCE: Fix non-prefaulted page deadlock (LP: #1754584)
      * zfs-linux 0.6.5.11-1ubuntu5 ADT test failure with linux 4.15.0-1.2
        (LP: #1737761)
        - SAUCE: (noup) Update zfs to 0.6.5.11-1ubuntu3.2
      * AT_BASE_PLATFORM in AUXV is absent on kernels available on Ubuntu 17.10
        (LP: #1759312)
        - powerpc/64s: Fix NULL AT_BASE_PLATFORM when using DT CPU features
      * btrfs and tar sparse truncate archives (LP: #1757565)
        - Btrfs: move definition of the function btrfs_find_new_delalloc_bytes
        - Btrfs: fix reported number of inode blocks after buffered append writes
      * efifb broken on ThunderX-based Gigabyte nodes (LP: #1758375)
        - drivers/fbdev/efifb: Allow BAR to be moved instead of claiming it
      * Intel i40e PF reset due to incorrect MDD detection (continues...)
        (LP: #1723127)
        - i40e/i40evf: Account for frags split over multiple descriptors in check
          linearize
      * Fix an issue that when system in S3, USB keyboard can't wake up the system.
        (LP: #1759511)
        - ACPI / PM: Allow deeper wakeup power states with no _SxD nor _SxW
      * [8086:3e92] display becomes blank after S3 (LP: #1759188)
        - drm/i915: Apply Display WA #1183 on skl, kbl, and cfl
      * add audio kernel patches for Raven (LP: #1758364)
        - ALSA: hda: Add Raven PCI ID
        - ALSA: hda/realtek - Fix ALC700 family no sound issue
      * Cpu utilization showing system time for kvm guests (performance) (sysstat)
        (LP: #1755979)
        - KVM: PPC: Book3S HV: Fix guest time accounting with VIRT_CPU_ACCOUNTING_GEN
      * Kernel panic on a nfsroot system (LP: #1734327)
        - Revert "UBUNTU: SAUCE: LSM stacking: add stacking support to apparmor
          network hooks"
        - Revert "UBUNTU: SAUCE: LSM stacking: LSM: Infrastructure management of the
          remaining blobs"
      * can't record sound via front headset port on the Dell Precision 3630
        (LP: #1759088)
        - ALSA: hda/realtek - Fix Dell headset Mic can't record
      * speaker can't output sound anymore after system resumes from S3 on a lenovo
        machine with alc257 (LP: #1758829)
        - ALSA: hda/realtek - Fix speaker no sound after system resume
      * hda driver initialization takes too much time on the machine with coffeelake
        audio controller [8086:a348] (LP: #1758800)
        - ALSA: hda - Force polling mode on CFL for fixing codec communication
      * Let headset-mode initialization be called on Dell Precision 3930
        (LP: #1757584)
        - ALSA: hda/realtek - Add headset mode support for Dell laptop
      * ubuntu_zram_smoke test will cause soft lockup on Artful ThunderX ARM64
        (LP: #1755073)
        - SAUCE: crypto: thunderx_zip: Fix fallout from CONFIG_VMAP_STACK
      * [Hyper-V] include kvp fix for Avoid reading past allocated blocks from KVP
        file (LP: #1750349)
        - hv: kvp: Avoid reading past allocated blocks from KVP file
      * IMA policy parsing is broken in 4.13 (LP: #1755804)
        - ima/policy: fix parsing of fsuuid
      * external mic not work on Dell OptiPlex 7460 AIO (LP: #1755954)
        - ALSA: hda/realtek - Add headset mode support for Dell laptop
      * sbsa watchdog crashes thunderx2 system (LP: #1755595)
        - watchdog: sbsa: use 32-bit read for WCV
      * CVE-2018-8043
        - net: phy: mdio-bcm-unimac: fix potential NULL dereference in
          unimac_mdio_probe()
    
     -- Stefan Bader <email address hidden>  Thu, 05 Apr 2018 16:15:07 +0200
  • linux-raspi2 (4.13.0-1016.17) artful; urgency=medium
    
      * linux-raspi2: 4.13.0-1016.17 -proposed tracker (LP: #1755765)
    
      [ Ubuntu: 4.13.0-38.43 ]
    
      * linux: 4.13.0-38.43 -proposed tracker (LP: #1755762)
      * Servers going OOM after updating kernel from 4.10 to 4.13 (LP: #1748408)
        - i40e: Fix memory leak related filter programming status
        - i40e: Add programming descriptors to cleaned_count
      * [SRU] Lenovo E41 Mic mute hotkey is not responding (LP: #1753347)
        - platform/x86: ideapad-laptop: Increase timeout to wait for EC answer
      * fails to dump with latest kpti fixes (LP: #1750021)
        - kdump: write correct address of mem_section into vmcoreinfo
      * headset mic can't be detected on two Dell machines (LP: #1748807)
        - ALSA: hda/realtek - Support headset mode for ALC215/ALC285/ALC289
        - ALSA: hda - Fix headset mic detection problem for two Dell machines
        - ALSA: hda - Fix a wrong FIXUP for alc289 on Dell machines
      * CIFS SMB2/SMB3 does not work for domain based DFS (LP: #1747572)
        - CIFS: make IPC a regular tcon
        - CIFS: use tcon_ipc instead of use_ipc parameter of SMB2_ioctl
        - CIFS: dump IPC tcon in debug proc file
      * i2c-thunderx: erroneous error message "unhandled state: 0" (LP: #1754076)
        - i2c: octeon: Prevent error message on bus error
      * hisi_sas: Add disk LED support (LP: #1752695)
        - scsi: hisi_sas: directly attached disk LED feature for v2 hw
      * EDAC, sb_edac: Backport 1 patch to Ubuntu 17.10 (Fix missing DIMM sysfs
        entries with KNL SNC2/SNC4 mode) (LP: #1743856)
        - EDAC, sb_edac: Fix missing DIMM sysfs entries with KNL SNC2/SNC4 mode
      * [regression] Colour banding and artefacts appear system-wide on an Asus
        Zenbook UX303LA with Intel HD 4400 graphics (LP: #1749420)
        - drm/edid: Add 6 bpc quirk for CPT panel in Asus UX303LA
      * DVB Card with SAA7146 chipset not working (LP: #1742316)
        - vmalloc: fix __GFP_HIGHMEM usage for vmalloc_32 on 32b systems
      * [Asus UX360UA] battery status in unity-panel is not changing when battery is
        being charged (LP: #1661876) // AC adapter status not detected on Asus
        ZenBook UX410UAK (LP: #1745032)
        - ACPI / battery: Add quirk for Asus UX360UA and UX410UAK
      * ASUS UX305LA - Battery state not detected correctly (LP: #1482390)
        - ACPI / battery: Add quirk for Asus GL502VSK and UX305LA
      * support thunderx2 vendor pmu events (LP: #1747523)
        - perf pmu: Extract function to get JSON alias map
        - perf pmu: Pass pmu as a parameter to get_cpuid_str()
        - perf tools arm64: Add support for get_cpuid_str function.
        - perf pmu: Add helper function is_pmu_core to detect PMU CORE devices
        - perf vendor events arm64: Add ThunderX2 implementation defined pmu core
          events
        - perf pmu: Add check for valid cpuid in perf_pmu__find_map()
      * lpfc.ko module doesn't work (LP: #1746970)
        - scsi: lpfc: Fix loop mode target discovery
      * Ubuntu 17.10 crashes on vmalloc.c (LP: #1739498)
        - powerpc/mm/book3s64: Make KERN_IO_START a variable
        - powerpc/mm/slb: Move comment next to the code it's referring to
        - powerpc/mm/hash64: Make vmalloc 56T on hash
      * ethtool -p fails to light NIC LED on HiSilicon D05 systems (LP: #1748567)
        - net: hns: add ACPI mode support for ethtool -p
      * CVE-2017-17807
        - KEYS: add missing permission check for request_key() destination
      * [Artful SRU] Fix capsule update regression (LP: #1746019)
        - efi/capsule-loader: Reinstate virtual capsule mapping
      * [Artful/Bionic] [Config] enable EDAC_GHES for ARM64 (LP: #1747746)
        - Ubuntu: [Config] enable EDAC_GHES for ARM64
      * linux-tools: perf incorrectly linking libbfd (LP: #1748922)
        - SAUCE: tools -- add ability to disable libbfd
        - [Packaging] correct disablement of libbfd
      * Cherry pick c96f5471ce7d for delayacct fix (LP: #1747769)
        - delayacct: Account blkio completion on the correct task
      * Error in CPU frequency reporting when nominal and min pstates are same
        (cpufreq) (LP: #1746174)
        - cpufreq: powernv: Dont assume distinct pstate values for nominal and pmin
      * retpoline abi files are empty on i386 (LP: #1751021)
        - [Packaging] retpoline-extract -- instantiate retpoline files for i386
        - [Packaging] final-checks -- sanity checking ABI contents
        - [Packaging] final-checks -- check for empty retpoline files
      * [P9,Power NV][WSP][Ubuntu 1804] : "Kernel access of bad area " when grouping
        different pmu events using perf fuzzer . (perf:) (LP: #1746225)
        - powerpc/perf: Fix oops when grouping different pmu events
      * bnx2x_attn_int_deasserted3:4323 MC assert! (LP: #1715519) //
        CVE-2018-1000026
        - net: create skb_gso_validate_mac_len()
        - bnx2x: disable GSO where gso_size is too big for hardware
      * Ubuntu16.04.03: ISAv3 initialize MMU registers before setting partition
        table (LP: #1736145)
        - powerpc/64s: Initialize ISAv3 MMU registers before setting partition table
      * powerpc/powernv: Flush console before platform error reboot (LP: #1735159)
        - powerpc/powernv: Flush console before platform error reboot
      * Touchpad stops working after a few seconds in Lenovo ideapad 320
        (LP: #1732056)
        - pinctrl/amd: fix masking of GPIO interrupts
      * [Artful][Wyse 3040] System hang when trying to enable an offlined CPU core
        (LP: #1736393)
        - SAUCE: drm/i915:Don't set chip specific data
        - SAUCE: drm/i915: make previous commit affects Wyse 3040 only
      * ppc64el: Do not call ibm,os-term on panic (LP: #1736954)
        - powerpc: Do not call ppc_md.panic in fadump panic notifier
      * Artful update to 4.13.16 stable release (LP: #1744213)
        - tcp_nv: fix division by zero in tcpnv_acked()
        - net: vrf: correct FRA_L3MDEV encode type
        - tcp: do not mangle skb->cb[] in tcp_make_synack()
        - net: systemport: Correct IPG length settings
        - netfilter/ipvs: clear ipvs_property flag when SKB net namespace changed
        - l2tp: don't use l2tp_tunnel_find() in l2tp_ip and l2tp_ip6
        - bonding: discard lowest hash bit for 802.3ad layer3+4
        - net: cdc_ether: fix divide by 0 on bad descriptors
        - net: qmi_wwan: fix divide by 0 on bad descriptors
        - qmi_wwan: Add missing skb_reset_mac_header-call
        - net: usb: asix: fill null-ptr-deref in asix_suspend
        - tcp: gso: avoid refcount_t warning from tcp_gso_segment()
        - tcp: fix tcp_fastretrans_alert warning
        - vlan: fix a use-after-free in vlan_device_event()
        - net/mlx5: Cancel health poll before sending panic teardown command
        - net/mlx5e: Set page to null in case dma mapping fails
        - af_netlink: ensure that NLMSG_DONE never fails in dumps
        - vxlan: fix the issue that neigh proxy blocks all icmpv6 packets
        - net: cdc_ncm: GetNtbFormat endian fix
        - fealnx: Fix building error on MIPS
        - net/sctp: Always set scope_id in sctp_inet6_skb_msgname
        - ima: do not update security.ima if appraisal status is not INTEGRITY_PASS
        - serial: omap: Fix EFR write on RTS deassertion
        - serial: 8250_fintek: Fix finding base_port with activated SuperIO
        - tpm-dev-common: Reject too short writes
        - rcu: Fix up pending cbs check in rcu_prepare_for_idle
        - ocfs2: fix cluster hang after a node dies
        - ocfs2: should wait dio before inode lock in ocfs2_setattr()
        - ipmi: fix unsigned long underflow
        - mm/page_alloc.c: broken deferred calculation
        - mm/page_ext.c: check if page_ext is not prepared
        - x86/cpu/amd: Derive L3 shared_cpu_map from cpu_llc_shared_mask
        - coda: fix 'kernel memory exposure attempt' in fsync
        - Linux 4.13.16
      * Artful update to 4.13.15 stable release (LP: #1744212)
        - media: imon: Fix null-ptr-deref in imon_probe
        - media: dib0700: fix invalid dvb_detach argument
        - crypto: dh - Fix double free of ctx->p
        - crypto: dh - Don't permit 'p' to be 0
        - crypto: dh - Don't permit 'key' or 'g' size longer than 'p'
        - USB: early: Use new USB product ID and strings for DbC device
        - USB: usbfs: compute urb->actual_length for isochronous
        - USB: Add delay-init quirk for Corsair K70 LUX keyboards
        - usb: gadget: f_fs: Fix use-after-free in ffs_free_inst
        - USB: serial: metro-usb: stop I/O after failed open
        - USB: serial: Change DbC debug device binding ID
        - USB: serial: qcserial: add pid/vid for Sierra Wireless EM7355 fw update
        - USB: serial: garmin_gps: fix I/O after failed probe and remove
        - USB: serial: garmin_gps: fix memory leak on probe errors
        - x86/MCE/AMD: Always give panic severity for UC errors in kernel context
        - platform/x86: peaq-wmi: Add DMI check before binding to the WMI interface
        - platform/x86: peaq_wmi: Fix missing terminating entry for peaq_dmi_table
        - HID: cp2112: add HIDRAW dependency
        - HID: wacom: generic: Recognize WACOM_HID_WD_PEN as a type of pen collection
        - staging: wilc1000: Fix bssid buffer offset in Txq
        - staging: ccree: fix 64 bit scatter/gather DMA ops
        - staging: greybus: spilib: fix use-after-free after deregistration
        - staging: vboxvideo: Fix reporting invalid suggested-offset-properties
        - staging: rtl8188eu: Revert 4 commits breaking ARP
        - Linux 4.13.15
      * time drifting on linux-hwe kernels (LP: #1744988)
        - x86/tsc: Future-proof native_calibrate_tsc()
        - x86/tsc: Fix erroneous TSC rate on Skylake Xeon
        - x86/tsc: Print tsc_khz, when it differs from cpu_khz
      * Please backport vmd suspend/resume patches to 16.04 hwe (LP: #1745508)
        - PCI: vmd: Free up IRQs on suspend path
      * CVE-2017-17448
        - netfilter: nfnetlink_cthelper: Add missing permission checks
      * Dell XPS 13 9360 bluetooth (Atheros) won't connect after resume
        (LP: #1744712)
        - Bluetooth: btusb: Restore QCA Rome suspend/resume fix with a "rewritten"
          version
      * [SRU] TrackPoint: middle button doesn't work on TrackPoint-compatible
        device. (LP: #1746002)
        - Input: trackpoint - force 3 buttons if 0 button is reported
      * TB16 dock ethernet corrupts data with hw checksum silently failing
        (LP: #1729674)
        - r8152: disable RX aggregation on Dell TB16 dock
      * [Artful] Realtek ALC225: 2 secs noise when a headset plugged in
        (LP: #1744058)
        - Revert "UBUNTU: SAUCE: ALSA: hda/realtek - Add support headset mode for DELL
          WYSE"
        - SAUCE: ALSA: hda/realtek - Add support headset mode for DELL WYSE
        - ALSA: hda/realtek - update ALC225 depop optimize
      * [A] skb leak in vhost_net / tun / tap (LP: #1738975)
        - vhost: fix skb leak in handle_rx()
        - tap: free skb if flags error
        - tun: free skb in early errors
      * Commit d9018976cdb6 missing in Kernels <4.14.x preventing lasting fix of
        Intel SPI bug on certain serial flash (LP: #1742696)
        - mfd: lpc_ich: Do not touch SPI-NOR write protection bit on Haswell/Broadwell
        - spi-nor: intel-spi: Fix broken software sequencing codes
      * CVE-2018-5332
        - RDS: Heap OOB write in rds_message_alloc_sgs()
      * [A] KVM Windows BSOD on 4.13.x (LP: #1738972)
        - KVM: x86: fix APIC page invalidation
      * elantech touchpad of Lenovo L480/580 failed to detect hw_version
        (LP: #1733605)
        - Input: elantech - add new icbody type 15
      * [SRU] External HDMI monitor failed to show screen on Lenovo X1 series
        (LP: #1738523)
        - SAUCE: drm/i915: Disable writing of TMDS_OE on Lenovo ThinkPad X1 series
      * ubuntu/xr-usb-serial didn't get built in zesty and artful (LP: #1733281)
        - SAUCE: make sure ubuntu/xr-usb-serial builds for x86
      * Disabling zfs does not always disable module checks for the zfs modules
        (LP: #1737176)
        - [Packaging] disable zfs module checks when zfs is disabled
      * CVE-2017-17806
        - crypto: hmac - require that the underlying hash algorithm is unkeyed
      * CVE-2017-17805
        - crypto: salsa20 - fix blkcipher_walk API usage
      * CVE-2017-16994
        - mm/pagewalk.c: report holes in hugetlb ranges
      * CVE-2017-17450
        - netfilter: xt_osf: Add missing permission checks
      * apparmor profile load in stacked policy container fails (LP: #1746463)
        - SAUCE: apparmor: fix display of .ns_name for containers
      * CVE-2017-15129
        - net: Fix double free and memory corruption in get_net_ns_by_id()
      * CVE-2018-5344
        - loop: fix concurrent lo_open/lo_release
      * CVE-2017-1000407
        - KVM: VMX: remove I/O port 0x80 bypass on Intel hosts
      * CVE-2017-0861
        - ALSA: pcm: prevent UAF in snd_pcm_info
      * perf stat segfaults on uncore events w/o -a (LP: #1745246)
        - perf xyarray: Save max_x, max_y
        - perf evsel: Fix buffer overflow while freeing events
      * Support cppc-cpufreq driver on ThunderX2 systems (LP: #1745007)
        - mailbox: PCC: Move the MAX_PCC_SUBSPACES definition to header file
        - ACPI / CPPC: Make CPPC ACPI driver aware of PCC subspace IDs
        - ACPI / CPPC: Fix KASAN global out of bounds warning
        - ACPI: CPPC: remove initial assignment of pcc_ss_data
      * P-state not working in kernel 4.13 (LP: #1743269)
        - x86 / CPU: Avoid unnecessary IPIs in arch_freq_get_on_cpu()
        - x86 / CPU: Always show current CPU frequency in /proc/cpuinfo
      * Regression: KVM no longer supports Intel CPUs without Virtual NMI
        (LP: #1741655)
        - kvm: vmx: Reinstate support for CPUs without virtual NMI
      * System hang with Linux kernel due to mainline commit 24247aeeabe
        (LP: #1733662)
        - x86/intel_rdt/cqm: Prevent use after free
      * $(LOCAL_ENV_CC) and $(LOCAL_ENV_DISTCC_HOSTS) should be properly quoted
        (LP: #1744077)
        - [Debian] pass LOCAL_ENV_CC and LOCAL_ENV_DISTCC_HOSTS properly
      * the wifi driver is always hard blocked on a lenovo laptop (LP: #1743672)
        - ACPI: EC: Fix possible issues related to EC initialization order
      * text VTs are unavailable on desktop after upgrade to Ubuntu 17.10
        (LP: #1724911)
        - drm/i915/fbdev: Always forward hotplug events
      * Samsung SSD 960 EVO 500GB refused to change power state (LP: #1705748)
        - nvme-pci: disable APST on Samsung SSD 960 EVO + ASUS PRIME B350M-A
      * [0cf3:e010] QCA6174A XR failed to pair with bt 4.0 device  (LP: #1741166)
        - Bluetooth: btusb: Add support for 0cf3:e010
      * CVE-2017-17741
        - KVM: Fix stack-out-of-bounds read in write_mmio
      * CVE-2018-5333
        - RDS: null pointer dereference in rds_atomic_free_op
      * [800 G3 SFF] [800 G3 DM]External microphone of headset(3-ring) is working,
        2-ring mic not working, both not shown in sound settings  (LP: #1740974)
        - ALSA: hda - Add MIC_NO_PRESENCE fixup for 2 HP machines
      * Two front mics can't work on a lenovo machine (LP: #1740973)
        - ALSA: hda - change the location for one mic on a Lenovo machine
      * No external microphone be detected via headset jack on a dell machine
        (LP: #1740972)
        - ALSA: hda - fix headset mic detection issue on a Dell machine
      *  Can't detect external headset via line-out jack on some Dell machines
        (LP: #1740971)
        - ALSA: hda/realtek - Fix Dell AIO LineOut issue
      * Support realtek new codec alc257 in the alsa hda driver  (LP: #1738911)
        - ALSA: hda/realtek - New codec support for ALC257
      * Add support for 16g huge pages on Ubuntu 16.04.2 PowerNV (LP: #1706247)
        - powerpc/mm/hugetlb: Allow runtime allocation of 16G.
        - powerpc/mm/hugetlb: Add support for reserving gigantic huge pages via kernel
          command line
        - mm/hugetlb: Allow arch to override and call the weak function
      * the kernel is blackholing IPv6 packets to linkdown nexthops (LP: #1738219)
        - ipv6: Do not consider linkdown nexthops during multipath
      * e1000e in 4.4.0-97-generic breaks 82574L under heavy load. (LP: #1730550)
        - e1000e: Avoid receiver overrun interrupt bursts
        - e1000e: Separate signaling for link check/link up
      * Ubuntu 17.10: Include patch "crypto: vmx - Use skcipher for ctr fallback"
        (LP: #1732978)
        - crypto: vmx - Use skcipher for ctr fallback
      * QCA Rome bluetooth can not wakeup after USB runtime suspended.
        (LP: #1737890)
        - Bluetooth: btusb: driver to enable the usb-wakeup feature
      * /dev/bcache/by-uuid links not created after reboot (LP: #1729145)
        - SAUCE: (no-up) bcache: decouple emitting a cached_dev CHANGE uevent
      * Some VMs fail to reboot with "watchdog: BUG: soft lockup - CPU#0 stuck for
        22s! [systemd:1]" (LP: #1730717)
        - SAUCE: exec: fix lockup because retry loop may never exit
      * Request to backport cxlflash patches to 16.04 HWE Kernel (LP: #1730515)
        - scsi: cxlflash: Use derived maximum write same length
        - scsi: cxlflash: Allow cards without WWPN VPD to configure
        - scsi: cxlflash: Derive pid through accessors
      * vagrant artful64 box filesystem too small (LP: #1726818)
        - block: factor out __blkdev_issue_zero_pages()
        - block: cope with WRITE ZEROES failing in blkdev_issue_zeroout()
      * Artful update to 4.13.14 stable release (LP: #1744121)
        - ppp: fix race in ppp device destruction
        - gso: fix payload length when gso_size is zero
        - ipv4: Fix traffic triggered IPsec connections.
        - ipv6: Fix traffic triggered IPsec connections.
        - netlink: do not set cb_running if dump's start() errs
        - net: call cgroup_sk_alloc() earlier in sk_clone_lock()
        - macsec: fix memory leaks when skb_to_sgvec fails
        - l2tp: check ps->sock before running pppol2tp_session_ioctl()
        - netlink: fix netlink_ack() extack race
        - sctp: add the missing sock_owned_by_user check in sctp_icmp_redirect
        - tcp/dccp: fix ireq->opt races
        - packet: avoid panic in packet_getsockopt()
        - geneve: Fix function matching VNI and tunnel ID on big-endian
        - net: bridge: fix returning of vlan range op errors
        - soreuseport: fix initialization race
        - ipv6: flowlabel: do not leave opt->tot_len with garbage
        - sctp: full support for ipv6 ip_nonlocal_bind & IP_FREEBIND
        - tcp/dccp: fix lockdep splat in inet_csk_route_req()
        - tcp/dccp: fix other lockdep splats accessing ireq_opt
        - net: dsa: check master device before put
        - net/unix: don't show information about sockets from other namespaces
        - tap: double-free in error path in tap_open()
        - net/mlx5: Fix health work queue spin lock to IRQ safe
        - net/mlx5e: Properly deal with encap flows add/del under neigh update
        - ipip: only increase err_count for some certain type icmp in ipip_err
        - ip6_gre: only increase err_count for some certain type icmpv6 in ip6gre_err
        - ip6_gre: update dst pmtu if dev mtu has been updated by toobig in
          __gre6_xmit
        - tcp: refresh tp timestamp before tcp_mtu_probe()
        - tap: reference to KVA of an unloaded module causes kernel panic
        - sctp: reset owner sk for data chunks on out queues when migrating a sock
        - net_sched: avoid matching qdisc with zero handle
        - l2tp: hold tunnel in pppol2tp_connect()
        - ipv6: addrconf: increment ifp refcount before ipv6_del_addr()
        - tcp: fix tcp_mtu_probe() vs highest_sack
        - mac80211: accept key reinstall without changing anything
        - mac80211: use constant time comparison with keys
        - mac80211: don't compare TKIP TX MIC key in reinstall prevention
        - usb: usbtest: fix NULL pointer dereference
        - Input: ims-psu - check if CDC union descriptor is sane
        - EDAC, sb_edac: Don't create a second memory controller if HA1 is not present
        - dmaengine: dmatest: warn user when dma test times out
        - Linux 4.13.14
    
     -- Stefan Bader <email address hidden>  Wed, 14 Mar 2018 17:08:12 +0100
  • linux-raspi2 (4.13.0-1015.16) artful; urgency=medium
    
      * linux-raspi2: 4.13.0-1015.16 -proposed tracker (LP: #1751807)
    
      * CVE-2017-5715 // CVE-2017-5753 // CVE-2017-5754
        - [Config] UNMAP_KERNEL_AT_EL0=y && HARDEN_BRANCH_PREDICTOR=y
    
      [ Ubuntu: 4.13.0-37.42 ]
    
      * linux: 4.13.0-37.42 -proposed tracker (LP: #1751798)
      * CVE-2017-5715 // CVE-2017-5753 // CVE-2017-5754
        - arm64: Add ASM_BUG()
        - arm64: consistently use bl for C exception entry
        - arm64: move non-entry code out of .entry.text
        - arm64: unwind: avoid percpu indirection for irq stack
        - arm64: unwind: disregard frame.sp when validating frame pointer
        - arm64: mm: Fix set_memory_valid() declaration
        - arm64: Convert __inval_cache_range() to area-based
        - arm64: Expose DC CVAP to userspace
        - arm64: Handle trapped DC CVAP
        - arm64: Implement pmem API support
        - arm64: uaccess: Implement *_flushcache variants
        - arm64/vdso: Support mremap() for vDSO
        - arm64: unwind: reference pt_regs via embedded stack frame
        - arm64: unwind: remove sp from struct stackframe
        - arm64: uaccess: Add the uaccess_flushcache.c file
        - arm64: fix pmem interface definition
        - arm64: compat: Remove leftover variable declaration
        - fork: allow arch-override of VMAP stack alignment
        - arm64: kernel: remove {THREAD,IRQ_STACK}_START_SP
        - arm64: factor out PAGE_* and CONT_* definitions
        - arm64: clean up THREAD_* definitions
        - arm64: clean up irq stack definitions
        - arm64: move SEGMENT_ALIGN to <asm/memory.h>
        - efi/arm64: add EFI_KIMG_ALIGN
        - arm64: factor out entry stack manipulation
        - arm64: assembler: allow adr_this_cpu to use the stack pointer
        - arm64: use an irq stack pointer
        - arm64: add basic VMAP_STACK support
        - arm64: add on_accessible_stack()
        - arm64: add VMAP_STACK overflow detection
        - arm64: Convert pte handling from inline asm to using (cmp)xchg
        - kvm: arm64: Convert kvm_set_s2pte_readonly() from inline asm to cmpxchg()
        - arm64: Move PTE_RDONLY bit handling out of set_pte_at()
        - arm64: Ignore hardware dirty bit updates in ptep_set_wrprotect()
        - arm64: Remove the !CONFIG_ARM64_HW_AFDBM alternative code paths
        - arm64: introduce separated bits for mm_context_t flags
        - arm64: cleanup {COMPAT_,}SET_PERSONALITY() macro
        - KVM: arm/arm64: Fix guest external abort matching
        - KVM: arm/arm64: vgic: constify seq_operations and file_operations
        - KVM: arm/arm64: vITS: Drop its_ite->lpi field
        - KVM: arm/arm64: Extract GICv3 max APRn index calculation
        - KVM: arm/arm64: Support uaccess of GICC_APRn
        - arm64: Use larger stacks when KASAN is selected
        - arm64: Define cputype macros for Falkor CPU
        - arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm
        - arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb
        - x86/syscalls: Check address limit on user-mode return
        - arm/syscalls: Check address limit on user-mode return
        - arm64/syscalls: Check address limit on user-mode return
        - Revert "arm/syscalls: Check address limit on user-mode return"
        - syscalls: Use CHECK_DATA_CORRUPTION for addr_limit_user_check
        - arm/syscalls: Optimize address limit check
        - arm64/syscalls: Move address limit check in loop
        - futex: Remove duplicated code and fix undefined behaviour
        - arm64: KVM: Fix SMCCC handling of unimplemented SMC/HVC calls
        - arm64: syscallno is secretly an int, make it official
        - arm64: move TASK_* definitions to <asm/processor.h>
        - arm64: mm: Use non-global mappings for kernel space
        - arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN
        - arm64: mm: Move ASID from TTBR0 to TTBR1
        - arm64: mm: Remove pre_ttbr0_update_workaround for Falkor erratum #E1003
        - arm64: mm: Rename post_ttbr0_update_workaround
        - arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN
        - arm64: mm: Allocate ASIDs in pairs
        - arm64: mm: Add arm64_kernel_unmapped_at_el0 helper
        - arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI
        - arm64: entry: Add exception trampoline page for exceptions from EL0
        - arm64: mm: Map entry trampoline into trampoline and kernel page tables
        - arm64: entry: Explicitly pass exception level to kernel_ventry macro
        - arm64: entry: Hook up entry trampoline to exception vectors
        - arm64: erratum: Work around Falkor erratum #E1003 in trampoline code
        - arm64: cpu_errata: Add Kryo to Falkor 1003 errata
        - arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks
        - arm64: entry: Add fake CPU feature for unmapping the kernel at EL0
        - arm64: kaslr: Put kernel vectors address in separate data page
        - arm64: use RET instruction for exiting the trampoline
        - arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0
        - arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry
        - arm64: Take into account ID_AA64PFR0_EL1.CSV3
        - arm64: capabilities: Handle duplicate entries for a capability
        - arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR
        - arm64: kpti: Fix the interaction between ASID switching and software PAN
        - arm64: cputype: Add MIDR values for Cavium ThunderX2 CPUs
        - arm64: Turn on KPTI only on CPUs that need it
        - arm64: kpti: Make use of nG dependent on arm64_kernel_unmapped_at_el0()
        - arm64: mm: Permit transitioning from Global to Non-Global without BBM
        - arm64: kpti: Add ->enable callback to remap swapper using nG mappings
        - arm64: Force KPTI to be disabled on Cavium ThunderX
        - arm64: entry: Reword comment about post_ttbr_update_workaround
        - arm64: idmap: Use "awx" flags for .idmap.text .pushsection directives
        - arm64: barrier: Add CSDB macros to control data-value prediction
        - arm64: Implement array_index_mask_nospec()
        - arm64: Make USER_DS an inclusive limit
        - arm64: Use pointer masking to limit uaccess speculation
        - arm64: entry: Ensure branch through syscall table is bounded under
          speculation
        - arm64: uaccess: Prevent speculative use of the current addr_limit
        - arm64: uaccess: Don't bother eliding access_ok checks in __{get, put}_user
        - arm64: uaccess: Mask __user pointers for __arch_{clear, copy_*}_user
        - arm64: futex: Mask __user pointers prior to dereference
        - arm64: cpufeature: __this_cpu_has_cap() shouldn't stop early
        - arm64: Run enable method for errata work arounds on late CPUs
        - arm64: cpufeature: Pass capability structure to ->enable callback
        - drivers/firmware: Expose psci_get_version through psci_ops structure
        - arm64: Move post_ttbr_update_workaround to C code
        - arm64: Add skeleton to harden the branch predictor against aliasing attacks
        - arm64: Move BP hardening to check_and_switch_context
        - arm64: KVM: Use per-CPU vector when BP hardening is enabled
        - arm64: entry: Apply BP hardening for high-priority synchronous exceptions
        - arm64: entry: Apply BP hardening for suspicious interrupts from EL0
        - arm64: cputype: Add missing MIDR values for Cortex-A72 and Cortex-A75
        - arm64: Implement branch predictor hardening for affected Cortex-A CPUs
        - arm64: Implement branch predictor hardening for Falkor
        - arm64: Branch predictor hardening for Cavium ThunderX2
        - arm64: KVM: Increment PC after handling an SMC trap
        - arm/arm64: KVM: Consolidate the PSCI include files
        - arm/arm64: KVM: Add PSCI_VERSION helper
        - arm/arm64: KVM: Add smccc accessors to PSCI code
        - arm/arm64: KVM: Implement PSCI 1.0 support
        - arm/arm64: KVM: Advertise SMCCC v1.1
        - arm64: KVM: Make PSCI_VERSION a fast path
        - arm/arm64: KVM: Turn kvm_psci_version into a static inline
        - arm64: KVM: Report SMCCC_ARCH_WORKAROUND_1 BP hardening support
        - arm64: KVM: Add SMCCC_ARCH_WORKAROUND_1 fast handling
        - firmware/psci: Expose PSCI conduit
        - firmware/psci: Expose SMCCC version through psci_ops
        - arm/arm64: smccc: Make function identifiers an unsigned quantity
        - arm/arm64: smccc: Implement SMCCC v1.1 inline primitive
        - arm64: Add ARM_SMCCC_ARCH_WORKAROUND_1 BP hardening support
        - arm64: Kill PSCI_GET_VERSION as a variant-2 workaround
        - [Config] UNMAP_KERNEL_AT_EL0=y && HARDEN_BRANCH_PREDICTOR=y
        - SAUCE: arm64: __idmap_cpu_set_reserved_ttbr1: fix !ARM64_PA_BITS_52 logic
        - arm64: Add missing Falkor part number for branch predictor hardening
        - arm64: mm: fix thinko in non-global page table attribute check
      * linux-image-4.13.0-26-generic / linux-image-extra-4.13.0-26-generic fail to
        boot (LP: #1742721)
        - staging: sm750fb: Fix parameter mistake in poke32
    
     -- Thadeu Lima de Souza Cascardo <email address hidden>  Fri, 09 Mar 2018 12:40:45 -0300
  • linux-raspi2 (4.13.0-1014.15) artful; urgency=medium
    
      * linux-raspi2: 4.13.0-1014.15 -proposed tracker (LP: #1750057)
    
    
      [ Ubuntu: 4.13.0-36.40 ]
    
      * linux: 4.13.0-36.40 -proposed tracker (LP: #1750010)
      * Rebuild without "CVE-2017-5754 ARM64 KPTI fixes" patch set
    
    linux-raspi2 (4.13.0-1013.14) artful; urgency=medium
    
      * linux-raspi2: 4.13.0-1013.14 -proposed tracker (LP: #1748483)
    
      [ Ubuntu: 4.13.0-35.39 ]
    
      * linux: 4.13.0-35.39 -proposed tracker (LP: #1748743)
      * CVE-2017-5715 (Spectre v2 Intel)
        - Revert "UBUNTU: SAUCE: turn off IBPB when full retpoline is present"
        - SAUCE: turn off IBRS when full retpoline is present
        - [Packaging] retpoline files must be sorted
        - [Packaging] pull in retpoline files
    
      [ Ubuntu: 4.13.0-34.37 ]
    
      * linux: 4.13.0-34.37 -proposed tracker (LP: #1748475)
      * libata: apply MAX_SEC_1024 to all LITEON EP1 series devices (LP: #1743053)
        - libata: apply MAX_SEC_1024 to all LITEON EP1 series devices
      * KVM patches for s390x to provide facility bits 81 (ppa15) and 82 (bpb)
        (LP: #1747090)
        - KVM: s390: wire up bpb feature
      * artful 4.13 i386 kernels crash after memory hotplug remove (LP: #1747069)
        - Revert "mm, memory_hotplug: do not associate hotadded memory to zones until
          online"
      * CVE-2017-5715 (Spectre v2 Intel)
        - x86/feature: Enable the x86 feature to control Speculation
        - x86/feature: Report presence of IBPB and IBRS control
        - x86/enter: MACROS to set/clear IBRS and set IBPB
        - x86/enter: Use IBRS on syscall and interrupts
        - x86/idle: Disable IBRS entering idle and enable it on wakeup
        - x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
        - x86/mm: Set IBPB upon context switch
        - x86/mm: Only set IBPB when the new thread cannot ptrace current thread
        - x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
        - x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
        - x86/kvm: Set IBPB when switching VM
        - x86/kvm: Toggle IBRS on VM entry and exit
        - x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
        - x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
        - x86/cpu/AMD: Add speculative control support for AMD
        - x86/microcode: Extend post microcode reload to support IBPB feature
        - KVM: SVM: Do not intercept new speculative control MSRs
        - x86/svm: Set IBRS value on VM entry and exit
        - x86/svm: Set IBPB when running a different VCPU
        - KVM: x86: Add speculative control CPUID support for guests
        - SAUCE: turn off IBPB when full retpoline is present
      * Artful 4.13 fixes for tun (LP: #1748846)
        - tun: call dev_get_valid_name() before register_netdevice()
        - tun: allow positive return values on dev_get_valid_name() call
        - tun/tap: sanitize TUNSETSNDBUF input
      * boot failure on AMD Raven + WestonXT (LP: #1742759)
        - SAUCE: drm/amdgpu: add atpx quirk handling (v2)
    
    linux-raspi2 (4.13.0-1012.13) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1012.13 -proposed tracker (LP: #1746914)
    
    
      [ Ubuntu: 4.13.0-33.36 ]
    
      * linux: 4.13.0-33.36 -proposed tracker (LP: #1746903)
      * starting VMs causing retpoline4 to reboot (LP: #1747507) // CVE-2017-5715
        (Spectre v2 retpoline)
        - x86/retpoline: Fill RSB on context switch for affected CPUs
        - x86/retpoline: Add LFENCE to the retpoline/RSB filling RSB macros
        - x86/retpoline: Optimize inline assembler for vmexit_fill_RSB
        - x86/retpoline: Remove the esp/rsp thunk
        - x86/retpoline: Simplify vmexit_fill_RSB()
      * Missing install-time driver for QLogic QED 25/40/100Gb Ethernet NIC
        (LP: #1743638)
        - [d-i] Add qede to nic-modules udeb
      * hisi_sas: driver robustness fixes (LP: #1739807)
        - scsi: hisi_sas: fix reset and port ID refresh issues
        - scsi: hisi_sas: avoid potential v2 hw interrupt issue
        - scsi: hisi_sas: fix v2 hw underflow residual value
        - scsi: hisi_sas: add v2 hw DFX feature
        - scsi: hisi_sas: add irq and tasklet cleanup in v2 hw
        - scsi: hisi_sas: service interrupt ITCT_CLR interrupt in v2 hw
        - scsi: hisi_sas: fix internal abort slot timeout bug
        - scsi: hisi_sas: us start_phy in PHY_FUNC_LINK_RESET
        - scsi: hisi_sas: fix NULL check in SMP abort task path
        - scsi: hisi_sas: fix the risk of freeing slot twice
        - scsi: hisi_sas: kill tasklet when destroying irq in v3 hw
        - scsi: hisi_sas: complete all tasklets prior to host reset
      * [Artful/Zesty] ACPI APEI error handling bug fixes (LP: #1732990)
        - ACPI: APEI: fix the wrong iteration of generic error status block
        - ACPI / APEI: clear error status before acknowledging the error
      * [Zesty/Artful] On ARM64 PCIE physical function passthrough guest fails to
        boot (LP: #1732804)
        - vfio/pci: Virtualize Maximum Payload Size
        - vfio/pci: Virtualize Maximum Read Request Size
      * hisi_sas: Add ATA command support for SMR disks (LP: #1739891)
        - scsi: hisi_sas: support zone management commands
      * thunderx2: i2c driver PEC and ACPI clock fixes (LP: #1738073)
        - ACPI / APD: Add clock frequency for ThunderX2 I2C controller
        - i2c: xlp9xx: Get clock frequency with clk API
        - i2c: xlp9xx: Handle I2C_M_RECV_LEN in msg->flags
      * Falkor erratum 1041 needs workaround (LP: #1738497)
        - [Config] CONFIG_QCOM_FALKOR_ERRATUM_E1041=y
        - arm64: Add software workaround for Falkor erratum 1041
      * ThunderX: TX failure unless checksum offload disabled (LP: #1736593)
        - net: thunderx: Fix TCP/UDP checksum offload for IPv6 pkts
        - net: thunderx: Fix TCP/UDP checksum offload for IPv4 pkts
      * arm64/thunderx: Unhandled context faults in ACPI mode (LP: #1736774)
        - PCI: Set Cavium ACS capability quirk flags to assert RR/CR/SV/UF
        - PCI: Apply Cavium ThunderX ACS quirk to more Root Ports
      * arm64: Unfair rwlock can stall the system (LP: #1732238)
        - locking/qrwlock: Use 'struct qrwlock' instead of 'struct __qrwlock'
        - locking/atomic: Add atomic_cond_read_acquire()
        - locking/qrwlock: Use atomic_cond_read_acquire() when spinning in qrwlock
        - locking/qrwlock, arm64: Move rwlock implementation over to qrwlocks
        - locking/qrwlock: Prevent slowpath writers getting held up by fastpath
      * Shutdown hang on 16.04 with iscsi targets (LP: #1569925)
        - scsi: libiscsi: Allow sd_shutdown on bad transport
      * bt_iter() crash due to NULL pointer (LP: #1744300)
        - blk-mq-tag: check for NULL rq when iterating tags
      * hisilicon hibmc regression due to ea642c3216cb ("drm/ttm: add io_mem_pfn
        callback") (LP: #1738334)
        - SAUCE: drm: hibmc: Initialize the hibmc_bo_driver.io_mem_pfn
      * CVE-2017-5754 ARM64 KPTI fixes
        - arm64: Add ASM_BUG()
        - arm64: consistently use bl for C exception entry
        - arm64: syscallno is secretly an int, make it official
        - arm64: Abstract syscallno manipulation
        - arm64: move non-entry code out of .entry.text
        - arm64: unwind: avoid percpu indirection for irq stack
        - arm64: unwind: disregard frame.sp when validating frame pointer
        - arm64: mm: Fix set_memory_valid() declaration
        - arm64: Convert __inval_cache_range() to area-based
        - arm64: Expose DC CVAP to userspace
        - arm64: Handle trapped DC CVAP
        - arm64: Implement pmem API support
        - arm64: uaccess: Implement *_flushcache variants
        - arm64/vdso: Support mremap() for vDSO
        - arm64: unwind: reference pt_regs via embedded stack frame
        - arm64: unwind: remove sp from struct stackframe
        - arm64: uaccess: Add the uaccess_flushcache.c file
        - arm64: fix pmem interface definition
        - arm64: compat: Remove leftover variable declaration
        - fork: allow arch-override of VMAP stack alignment
        - arm64: kernel: remove {THREAD,IRQ_STACK}_START_SP
        - arm64: factor out PAGE_* and CONT_* definitions
        - arm64: clean up THREAD_* definitions
        - arm64: clean up irq stack definitions
        - arm64: move SEGMENT_ALIGN to <asm/memory.h>
        - efi/arm64: add EFI_KIMG_ALIGN
        - arm64: factor out entry stack manipulation
        - arm64: assembler: allow adr_this_cpu to use the stack pointer
        - arm64: use an irq stack pointer
        - arm64: add basic VMAP_STACK support
        - arm64: add on_accessible_stack()
        - arm64: add VMAP_STACK overflow detection
        - arm64: Convert pte handling from inline asm to using (cmp)xchg
        - kvm: arm64: Convert kvm_set_s2pte_readonly() from inline asm to cmpxchg()
        - arm64: Move PTE_RDONLY bit handling out of set_pte_at()
        - arm64: Ignore hardware dirty bit updates in ptep_set_wrprotect()
        - arm64: Remove the !CONFIG_ARM64_HW_AFDBM alternative code paths
        - arm64: introduce separated bits for mm_context_t flags
        - arm64: cleanup {COMPAT_,}SET_PERSONALITY() macro
        - KVM: arm/arm64: Fix guest external abort matching
        - KVM: arm/arm64: vgic: constify seq_operations and file_operations
        - KVM: arm/arm64: vITS: Drop its_ite->lpi field
        - KVM: arm/arm64: Extract GICv3 max APRn index calculation
        - KVM: arm/arm64: Support uaccess of GICC_APRn
        - arm64: move TASK_* definitions to <asm/processor.h>
        - arm64: Use larger stacks when KASAN is selected
        - arm64: sysreg: Move SPE registers and PSB into common header files
        - arm64: head: Init PMSCR_EL2.{PA,PCT} when entered at EL2 without VHE
        - arm64: Update fault_info table with new exception types
        - arm64: Use existing defines for mdscr
        - arm64: Fix single stepping in kernel traps
        - arm64: asm-bug: Renumber macro local labels to avoid clashes
        - arm64: Implement arch-specific pte_access_permitted()
        - arm64: explicitly mask all exceptions
        - arm64: introduce an order for exceptions
        - arm64: Move the async/fiq helpers to explicitly set process context flags
        - arm64: Mask all exceptions during kernel_exit
        - arm64: entry.S: Remove disable_dbg
        - arm64: entry.S: convert el1_sync
        - arm64: entry.S convert el0_sync
        - arm64: entry.S: convert elX_irq
        - arm64: entry.S: move SError handling into a C function for future expansion
        - arm64: pgd: Mark pgd_cache as __ro_after_init
        - arm64: cpu_ops: Add missing 'const' qualifiers
        - arm64: context: Fix comments and remove pointless smp_wmb()
        - arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm
        - arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb
        - arm64: Expose support for optional ARMv8-A features
        - arm64: KVM: Hide unsupported AArch64 CPU features from guests
        - arm64: mm: Use non-global mappings for kernel space
        - arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN
        - arm64: mm: Move ASID from TTBR0 to TTBR1
        - arm64: mm: Remove pre_ttbr0_update_workaround for Falkor erratum #E1003
        - arm64: mm: Rename post_ttbr0_update_workaround
        - arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN
        - arm64: mm: Allocate ASIDs in pairs
        - arm64: mm: Add arm64_kernel_unmapped_at_el0 helper
        - arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI
        - arm64: entry: Add exception trampoline page for exceptions from EL0
        - arm64: mm: Map entry trampoline into trampoline and kernel page tables
        - arm64: entry: Explicitly pass exception level to kernel_ventry macro
        - arm64: entry: Hook up entry trampoline to exception vectors
        - arm64: erratum: Work around Falkor erratum #E1003 in trampoline code
        - arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks
        - arm64: entry: Add fake CPU feature for unmapping the kernel at EL0
        - arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0
        - arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR
        - arm64: kaslr: Put kernel vectors address in separate data page
        - arm64: use RET instruction for exiting the trampoline
        - arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry
        - arm64: Fix the feature type for ID register fields
        - arm64: Take into account ID_AA64PFR0_EL1.CSV3
        - arm64: cpufeature: Pass capability structure to ->enable callback
        - drivers/firmware: Expose psci_get_version through psci_ops structure
        - arm64: Move post_ttbr_update_workaround to C code
        - arm64: Add skeleton to harden the branch predictor against aliasing attacks
        - arm64: KVM: Use per-CPU vector when BP hardening is enabled
        - arm64: KVM: Make PSCI_VERSION a fast path
        - arm64: cputype: Add missing MIDR values for Cortex-A72 and Cortex-A75
        - arm64: Implement branch predictor hardening for affected Cortex-A CPUs
        - arm64: Define cputype macros for Falkor CPU
        - arm64: Implement branch predictor hardening for Falkor
        - arm64: cputype: Add MIDR values for Cavium ThunderX2 CPUs
        - bpf: inline map in map lookup functions for array and htab
        - bpf: perf event change needed for subsequent bpf helpers
        - bpf: do not test for PCPU_MIN_UNIT_SIZE before percpu allocations
        - arm64: Branch predictor hardening for Cavium ThunderX2
        - arm64: capabilities: Handle duplicate entries for a capability
        - arm64: kpti: Fix the interaction between ASID switching and software PAN
        - SAUCE: arm: Add BTB invalidation on switch_mm for Cortex-A9, A12 and A17
        - SAUCE: arm: Invalidate BTB on prefetch abort outside of user mapping on
          Cortex A8, A9, A12 and A17
        - SAUCE: arm: KVM: Invalidate BTB on guest exit
        - SAUCE: arm: Add icache invalidation on switch_mm for Cortex-A15
        - SAUCE: arm: Invalidate icache on prefetch abort outside of user mapping on
          Cortex-A15
        - SAUCE: arm: KVM: Invalidate icache on guest exit for Cortex-A15
        - SAUCE: asm-generic/barrier: add generic nospec helpers
        - SAUCE: Documentation: document nospec helpers
        - SAUCE: arm64: implement nospec_{load,ptr}()
        - SAUCE: arm: implement nospec_ptr()
        - SAUCE: bpf: inhibit speculated out-of-bounds pointers
        - SAUCE: arm64: Implement branch predictor hardening for Falkor
        - SAUCE: arm64: Branch predictor hardening for Cavium ThunderX2
        - [Config] UNMAP_KERNEL_AT_EL0=y && HARDEN_BRANCH_PREDICTOR=y
      * [artful] panic in update_stack_state when reading /proc/<pid>/stack on i386
        (LP: #1747263)
        - x86/unwind: Fix dereference of untrusted pointer
      * CVE-2017-5753 (Spectre v1 Intel)
        - x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
        - SAUCE: reinstate MFENCE_RDTSC feature definition
        - locking/barriers: introduce new observable speculation barrier
        - bpf: prevent speculative execution in eBPF interpreter
        - x86, bpf, jit: prevent speculative execution when JIT is enabled
        - SAUCE: FIX: x86, bpf, jit: prevent speculative execution when JIT is enabled
        - uvcvideo: prevent speculative execution
        - carl9170: prevent speculative execution
        - p54: prevent speculative execution
        - qla2xxx: prevent speculative execution
        - cw1200: prevent speculative execution
        - Thermal/int340x: prevent speculative execution
        - ipv4: prevent speculative execution
        - ipv6: prevent speculative execution
        - fs: prevent speculative execution
        - net: mpls: prevent speculative execution
        - udf: prevent speculative execution
        - userns: prevent speculative execution
        - SAUCE: powerpc: add osb barrier
        - SAUCE: s390/spinlock: add osb memory barrier
        - SAUCE: claim mitigation via observable speculation barrier
      * CVE-2017-5715 (Spectre v2 retpoline)
        - x86/asm: Fix inline asm call constraints for Clang
        - kvm: vmx: Scrub hardware GPRs at VM-exit
        - sysfs/cpu: Add vulnerability folder
        - x86/cpu: Implement CPU vulnerabilites sysfs functions
        - x86/tboot: Unbreak tboot with PTI enabled
        - objtool: Detect jumps to retpoline thunks
        - objtool: Allow alternatives to be ignored
        - x86/retpoline: Add initial retpoline support
        - x86/spectre: Add boot time option to select Spectre v2 mitigation
        - x86/retpoline/crypto: Convert crypto assembler indirect jumps
        - x86/retpoline/entry: Convert entry assembler indirect jumps
        - x86/retpoline/ftrace: Convert ftrace assembler indirect jumps
        - x86/retpoline/hyperv: Convert assembler indirect jumps
        - x86/retpoline/xen: Convert Xen hypercall indirect jumps
        - x86/retpoline/checksum32: Convert assembler indirect jumps
        - x86/retpoline/irq32: Convert assembler indirect jumps
        - x86/retpoline: Fill return stack buffer on vmexit
        - selftests/x86: Add test_vsyscall
        - x86/pti: Fix !PCID and sanitize defines
        - security/Kconfig: Correct the Documentation reference for PTI
        - x86,perf: Disable intel_bts when PTI
        - x86/retpoline: Remove compile time warning
        - [Config] enable CONFIG_GENERIC_CPU_VULNERABILITIES
        - [Config] enable CONFIG_RETPOLINE
        - [Packaging] retpoline -- add call site validation
        - [Config] disable retpoline checks for first upload
      * CVE-2017-5715 (revert embargoed) // CVE-2017-5753 (revert embargoed)
        - Revert "UBUNTU: SAUCE: x86/entry: Fix up retpoline assembler labels"
        - Revert "kvm: vmx: Scrub hardware GPRs at VM-exit"
        - Revert "Revert "x86/svm: Add code to clear registers on VM exit""
        - Revert "UBUNTU: SAUCE: x86/microcode: Extend post microcode reload to
          support IBPB feature -- repair missmerge"
        - Revert "UBUNTU: SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit"
        - Revert "s390/spinlock: add gmb memory barrier"
        - Revert "powerpc: add gmb barrier"
        - Revert "x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature"
        - Revert "x86/svm: Add code to clear registers on VM exit"
        - Revert "x86/svm: Add code to clobber the RSB on VM exit"
        - Revert "KVM: x86: Add speculative control CPUID support for guests"
        - Revert "x86/svm: Set IBPB when running a different VCPU"
        - Revert "x86/svm: Set IBRS value on VM entry and exit"
        - Revert "KVM: SVM: Do not intercept new speculative control MSRs"
        - Revert "x86/microcode: Extend post microcode reload to support IBPB feature"
        - Revert "x86/cpu/AMD: Add speculative control support for AMD"
        - Revert "x86/entry: Use retpoline for syscall's indirect calls"
        - Revert "x86/syscall: Clear unused extra registers on 32-bit compatible
          syscall entrance"
        - Revert "x86/syscall: Clear unused extra registers on syscall entrance"
        - Revert "x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb
          control"
        - Revert "x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
        - Revert "x86/kvm: Pad RSB on VM transition"
        - Revert "x86/kvm: Toggle IBRS on VM entry and exit"
        - Revert "x86/kvm: Set IBPB when switching VM"
        - Revert "x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm"
        - Revert "x86/entry: Stuff RSB for entry to kernel for non-SMEP platform"
        - Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current
          thread"
        - Revert "x86/mm: Set IBPB upon context switch"
        - Revert "x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup"
        - Revert "x86/idle: Disable IBRS entering idle and enable it on wakeup"
        - Revert "x86/enter: Use IBRS on syscall and interrupts"
        - Revert "x86/enter: MACROS to set/clear IBRS and set IBPB"
        - Revert "x86/feature: Report presence of IBPB and IBRS control"
        - Revert "x86/feature: Enable the x86 feature to control Speculation"
        - Revert "udf: prevent speculative execution"
        - Revert "net: mpls: prevent speculative execution"
        - Revert "fs: prevent speculative execution"
        - Revert "ipv6: prevent speculative execution"
        - Revert "userns: prevent speculative execution"
        - Revert "Thermal/int340x: prevent speculative execution"
        - Revert "cw1200: prevent speculative execution"
        - Revert "qla2xxx: prevent speculative execution"
        - Revert "p54: prevent speculative execution"
        - Revert "carl9170: prevent speculative execution"
        - Revert "uvcvideo: prevent speculative execution"
        - Revert "x86, bpf, jit: prevent speculative execution when JIT is enabled"
        - Revert "bpf: prevent speculative execution in eBPF interpreter"
        - Revert "locking/barriers: introduce new memory barrier gmb()"
      * Unable to boot with i386 4.13.0-25 / 4.13.0-26 / 4.13.0-31 kernel on Xenial
        / Artful (LP: #1745118)
        - x86/mm: Fix overlap of i386 CPU_ENTRY_AREA with FIX_BTMAP
      * 4.13: unable to increase MTU configuration for GRE devices (LP: #1743746)
        - ip_gre: remove the incorrect mtu limit for ipgre tap
      * CVE-2017-17712
        - net: ipv4: fix for a race condition in raw_sendmsg
      * upload urgency should be medium by default (LP: #1745338)
        - [Packaging] update urgency to medium by default
      * CVE-2017-15115
        - sctp: do not peel off an assoc from one netns to another one
      * CVE-2017-8824
        - dccp: CVE-2017-8824: use-after-free in DCCP code
    
      [ Ubuntu: 4.13.0-32.35 ]
    
      * CVE-2017-5715 // CVE-2017-5753
        - SAUCE: x86/entry: Fix up retpoline assembler labels
    
      [ Ubuntu: 4.13.0-31.34 ]
    
      * linux: 4.13.0-31.34 -proposed tracker (LP: #1744294)
      * CVE-2017-5715 // CVE-2017-5753
        - SAUCE: s390: improve cpu alternative handling for gmb and nobp
        - SAUCE: s390: print messages for gmb and nobp
        - [Config] KERNEL_NOBP=y
    
      [ Ubuntu: 4.13.0-30.33 ]
    
      * linux: 4.13.0-30.33 -proposed tracker (LP: #1743412)
      * Do not duplicate changelog entries assigned to more than one bug or CVE
        (LP: #1743383)
        - [Packaging] git-ubuntu-log -- handle multiple bugs/cves better
      * Unable to handle kernel NULL pointer dereference at isci_task_abort_task
        (LP: #1726519)
        - Revert "scsi: libsas: allow async aborts"
      * CVE-2017-5715 // CVE-2017-5753
        - SAUCE: x86/microcode: Extend post microcode reload to support IBPB feature
          -- repair missmerge
        - Revert "x86/svm: Add code to clear registers on VM exit"
        - kvm: vmx: Scrub hardware GPRs at VM-exit
    
      [ Ubuntu: 4.13.0-29.32 ]
    
      * linux: 4.13.0-29.32 -proposed tracker (LP: #1742722)
      * CVE-2017-5754
        - Revert "x86/cpu: Implement CPU vulnerabilites sysfs functions"
        - Revert "sysfs/cpu: Fix typos in vulnerability documentation"
        - Revert "sysfs/cpu: Add vulnerability folder"
        - Revert "UBUNTU: [Config] updateconfigs to enable
          GENERIC_CPU_VULNERABILITIES"
    
      [ Ubuntu: 4.13.0-28.31 ]
    
      * CVE-2017-5753
        - SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
      * CVE-2017-5715
        - SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
    
      [ Ubuntu: 4.13.0-27.30 ]
    
      * CVE-2017-5753
        - locking/barriers: introduce new memory barrier gmb()
        - bpf: prevent speculative execution in eBPF interpreter
        - x86, bpf, jit: prevent speculative execution when JIT is enabled
        - uvcvideo: prevent speculative execution
        - carl9170: prevent speculative execution
        - p54: prevent speculative execution
        - qla2xxx: prevent speculative execution
        - cw1200: prevent speculative execution
        - Thermal/int340x: prevent speculative execution
        - userns: prevent speculative execution
        - ipv6: prevent speculative execution
        - fs: prevent speculative execution
        - net: mpls: prevent speculative execution
        - udf: prevent speculative execution
        - x86/feature: Enable the x86 feature to control Speculation
        - x86/feature: Report presence of IBPB and IBRS control
        - x86/enter: MACROS to set/clear IBRS and set IBPB
        - x86/enter: Use IBRS on syscall and interrupts
        - x86/idle: Disable IBRS entering idle and enable it on wakeup
        - x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
        - x86/mm: Set IBPB upon context switch
        - x86/mm: Only set IBPB when the new thread cannot ptrace current thread
        - x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
        - x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
        - x86/kvm: Set IBPB when switching VM
        - x86/kvm: Toggle IBRS on VM entry and exit
        - x86/kvm: Pad RSB on VM transition
        - x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
        - x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
        - x86/syscall: Clear unused extra registers on syscall entrance
        - x86/syscall: Clear unused extra registers on 32-bit compatible syscall
          entrance
        - x86/entry: Use retpoline for syscall's indirect calls
        - x86/cpu/AMD: Add speculative control support for AMD
        - x86/microcode: Extend post microcode reload to support IBPB feature
        - KVM: SVM: Do not intercept new speculative control MSRs
        - x86/svm: Set IBRS value on VM entry and exit
        - x86/svm: Set IBPB when running a different VCPU
        - KVM: x86: Add speculative control CPUID support for guests
        - x86/svm: Add code to clobber the RSB on VM exit
        - x86/svm: Add code to clear registers on VM exit
        - x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
        - powerpc: add gmb barrier
        - s390/spinlock: add gmb memory barrier
        - x86/microcode/AMD: Add support for fam17h microcode loading
      * CVE-2017-5715
        - locking/barriers: introduce new memory barrier gmb()
        - bpf: prevent speculative execution in eBPF interpreter
        - x86, bpf, jit: prevent speculative execution when JIT is enabled
        - uvcvideo: prevent speculative execution
        - carl9170: prevent speculative execution
        - p54: prevent speculative execution
        - qla2xxx: prevent speculative execution
        - cw1200: prevent speculative execution
        - Thermal/int340x: prevent speculative execution
        - userns: prevent speculative execution
        - ipv6: prevent speculative execution
        - fs: prevent speculative execution
        - net: mpls: prevent speculative execution
        - udf: prevent speculative execution
        - x86/feature: Enable the x86 feature to control Speculation
        - x86/feature: Report presence of IBPB and IBRS control
        - x86/enter: MACROS to set/clear IBRS and set IBPB
        - x86/enter: Use IBRS on syscall and interrupts
        - x86/idle: Disable IBRS entering idle and enable it on wakeup
        - x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
        - x86/mm: Set IBPB upon context switch
        - x86/mm: Only set IBPB when the new thread cannot ptrace current thread
        - x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
        - x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
        - x86/kvm: Set IBPB when switching VM
        - x86/kvm: Toggle IBRS on VM entry and exit
        - x86/kvm: Pad RSB on VM transition
        - x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
        - x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
        - x86/syscall: Clear unused extra registers on syscall entrance
        - x86/syscall: Clear unused extra registers on 32-bit compatible syscall
          entrance
        - x86/entry: Use retpoline for syscall's indirect calls
        - x86/cpu/AMD: Add speculative control support for AMD
        - x86/microcode: Extend post microcode reload to support IBPB feature
        - KVM: SVM: Do not intercept new speculative control MSRs
        - x86/svm: Set IBRS value on VM entry and exit
        - x86/svm: Set IBPB when running a different VCPU
        - KVM: x86: Add speculative control CPUID support for guests
        - x86/svm: Add code to clobber the RSB on VM exit
        - x86/svm: Add code to clear registers on VM exit
        - x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
        - powerpc: add gmb barrier
        - s390/spinlock: add gmb memory barrier
        - x86/microcode/AMD: Add support for fam17h microcode loading
      * CVE-2017-5754
        - x86/pti: Enable PTI by default
        - x86/pti: Make sure the user/kernel PTEs match
        - x86/dumpstack: Fix partial register dumps
        - x86/dumpstack: Print registers for first stack frame
        - x86/process: Define cpu_tss_rw in same section as declaration
        - x86/mm: Set MODULES_END to 0xffffffffff000000
        - x86/mm: Map cpu_entry_area at the same place on 4/5 level
        - x86/kaslr: Fix the vaddr_end mess
        - x86/events/intel/ds: Use the proper cache flush method for mapping ds
          buffers
        - x86/tlb: Drop the _GPL from the cpu_tlbstate export
        - x86/alternatives: Add missing '\n' at end of ALTERNATIVE inline asm
        - x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN
        - x86/pti: Unbreak EFI old_memmap
        - x86/Documentation: Add PTI description
        - x86/cpufeatures: Add X86_BUG_SPECTRE_V[12]
        - sysfs/cpu: Add vulnerability folder
        - x86/cpu: Implement CPU vulnerabilites sysfs functions
        - x86/tboot: Unbreak tboot with PTI enabled
        - x86/mm/pti: Remove dead logic in pti_user_pagetable_walk*()
        - x86/cpu/AMD: Make LFENCE a serializing instruction
        - x86/cpu/AMD: Use LFENCE_RDTSC in preference to MFENCE_RDTSC
        - sysfs/cpu: Fix typos in vulnerability documentation
        - x86/alternatives: Fix optimize_nops() checking
        - x86/pti: Make unpoison of pgd for trusted boot work for real
        - s390: introduce CPU alternatives
        - s390: add ppa to kernel entry / exit
        - SAUCE: powerpc: Secure memory rfi flush
        - SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
        - SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
        - SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
        - SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
        - SAUCE: rfi-flush: Implement congruence-first fallback flush
        - SAUCE: rfi-flush: Make l1d_flush_type bit flags
        - SAUCE: rfi-flush: Push the instruction selection down to the patching
          routine
        - SAUCE: rfi-flush: Expand the RFI section to two nop slots
        - SAUCE: rfi-flush: Support more than one flush type at once
        - SAUCE: rfi-flush: Allow HV to advertise multiple flush types
        - SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
        - SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
        - SAUCE: rfi-flush: Rework powernv logic to be more cautious
        - SAUCE: rfi-flush: Rework pseries logic to be more cautious
        - SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
        - SAUCE: rfi-flush: Fix the fallback flush to actually activate
        - SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
        - SAUCE: rfi-flush: Refactor the macros so the nops are defined once
        - SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
        - SAUCE: rfi-flush: Use rfi-flush in printks
        - SAUCE: rfi-flush: Fallback flush add load dependency
        - SAUCE: rfi-flush: Fix the 32-bit KVM build
        - SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
        - SAUCE: rfi-flush: Make the fallback robust against memory corruption
        - [Config] Disable CONFIG_PPC_DEBUG_RFI
        - [Config] updateconfigs to enable GENERIC_CPU_VULNERABILITIES
      * powerpc: flush L1D on return to use (LP: #1742772)
        - SAUCE: powerpc: Secure memory rfi flush
        - SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
        - SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
        - SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
        - SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
        - SAUCE: rfi-flush: Implement congruence-first fallback flush
        - SAUCE: rfi-flush: Make l1d_flush_type bit flags
        - SAUCE: rfi-flush: Push the instruction selection down to the patching
          routine
        - SAUCE: rfi-flush: Expand the RFI section to two nop slots
        - SAUCE: rfi-flush: Support more than one flush type at once
        - SAUCE: rfi-flush: Allow HV to advertise multiple flush types
        - SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
        - SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
        - SAUCE: rfi-flush: Rework powernv logic to be more cautious
        - SAUCE: rfi-flush: Rework pseries logic to be more cautious
        - SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
        - SAUCE: rfi-flush: Fix the fallback flush to actually activate
        - SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
        - SAUCE: rfi-flush: Refactor the macros so the nops are defined once
        - SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
        - SAUCE: rfi-flush: Use rfi-flush in printks
        - SAUCE: rfi-flush: Fallback flush add load dependency
        - SAUCE: rfi-flush: Fix the 32-bit KVM build
        - SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
        - SAUCE: rfi-flush: Make the fallback robust against memory corruption
        - [Config] Disable CONFIG_PPC_DEBUG_RFI
      * s390: add ppa to kernel entry/exit (LP: #1742771)
        - s390: introduce CPU alternatives
        - s390: add ppa to kernel entry / exit
    
     -- Khalid Elmously <email address hidden>  Fri, 16 Feb 2018 17:21:33 -0500
  • linux-raspi2 (4.13.0-1013.14) artful; urgency=medium
    
      * linux-raspi2: 4.13.0-1013.14 -proposed tracker (LP: #1748483)
    
      [ Ubuntu: 4.13.0-35.39 ]
    
      * linux: 4.13.0-35.39 -proposed tracker (LP: #1748743)
      * CVE-2017-5715 (Spectre v2 Intel)
        - Revert "UBUNTU: SAUCE: turn off IBPB when full retpoline is present"
        - SAUCE: turn off IBRS when full retpoline is present
        - [Packaging] retpoline files must be sorted
        - [Packaging] pull in retpoline files
    
      [ Ubuntu: 4.13.0-34.37 ]
    
      * linux: 4.13.0-34.37 -proposed tracker (LP: #1748475)
      * libata: apply MAX_SEC_1024 to all LITEON EP1 series devices (LP: #1743053)
        - libata: apply MAX_SEC_1024 to all LITEON EP1 series devices
      * KVM patches for s390x to provide facility bits 81 (ppa15) and 82 (bpb)
        (LP: #1747090)
        - KVM: s390: wire up bpb feature
      * artful 4.13 i386 kernels crash after memory hotplug remove (LP: #1747069)
        - Revert "mm, memory_hotplug: do not associate hotadded memory to zones until
          online"
      * CVE-2017-5715 (Spectre v2 Intel)
        - x86/feature: Enable the x86 feature to control Speculation
        - x86/feature: Report presence of IBPB and IBRS control
        - x86/enter: MACROS to set/clear IBRS and set IBPB
        - x86/enter: Use IBRS on syscall and interrupts
        - x86/idle: Disable IBRS entering idle and enable it on wakeup
        - x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
        - x86/mm: Set IBPB upon context switch
        - x86/mm: Only set IBPB when the new thread cannot ptrace current thread
        - x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
        - x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
        - x86/kvm: Set IBPB when switching VM
        - x86/kvm: Toggle IBRS on VM entry and exit
        - x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
        - x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
        - x86/cpu/AMD: Add speculative control support for AMD
        - x86/microcode: Extend post microcode reload to support IBPB feature
        - KVM: SVM: Do not intercept new speculative control MSRs
        - x86/svm: Set IBRS value on VM entry and exit
        - x86/svm: Set IBPB when running a different VCPU
        - KVM: x86: Add speculative control CPUID support for guests
        - SAUCE: turn off IBPB when full retpoline is present
      * Artful 4.13 fixes for tun (LP: #1748846)
        - tun: call dev_get_valid_name() before register_netdevice()
        - tun: allow positive return values on dev_get_valid_name() call
        - tun/tap: sanitize TUNSETSNDBUF input
      * boot failure on AMD Raven + WestonXT (LP: #1742759)
        - SAUCE: drm/amdgpu: add atpx quirk handling (v2)
    
    linux-raspi2 (4.13.0-1012.13) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1012.13 -proposed tracker (LP: #1746914)
    
    
      [ Ubuntu: 4.13.0-33.36 ]
    
      * linux: 4.13.0-33.36 -proposed tracker (LP: #1746903)
      * starting VMs causing retpoline4 to reboot (LP: #1747507) // CVE-2017-5715
        (Spectre v2 retpoline)
        - x86/retpoline: Fill RSB on context switch for affected CPUs
        - x86/retpoline: Add LFENCE to the retpoline/RSB filling RSB macros
        - x86/retpoline: Optimize inline assembler for vmexit_fill_RSB
        - x86/retpoline: Remove the esp/rsp thunk
        - x86/retpoline: Simplify vmexit_fill_RSB()
      * Missing install-time driver for QLogic QED 25/40/100Gb Ethernet NIC
        (LP: #1743638)
        - [d-i] Add qede to nic-modules udeb
      * hisi_sas: driver robustness fixes (LP: #1739807)
        - scsi: hisi_sas: fix reset and port ID refresh issues
        - scsi: hisi_sas: avoid potential v2 hw interrupt issue
        - scsi: hisi_sas: fix v2 hw underflow residual value
        - scsi: hisi_sas: add v2 hw DFX feature
        - scsi: hisi_sas: add irq and tasklet cleanup in v2 hw
        - scsi: hisi_sas: service interrupt ITCT_CLR interrupt in v2 hw
        - scsi: hisi_sas: fix internal abort slot timeout bug
        - scsi: hisi_sas: us start_phy in PHY_FUNC_LINK_RESET
        - scsi: hisi_sas: fix NULL check in SMP abort task path
        - scsi: hisi_sas: fix the risk of freeing slot twice
        - scsi: hisi_sas: kill tasklet when destroying irq in v3 hw
        - scsi: hisi_sas: complete all tasklets prior to host reset
      * [Artful/Zesty] ACPI APEI error handling bug fixes (LP: #1732990)
        - ACPI: APEI: fix the wrong iteration of generic error status block
        - ACPI / APEI: clear error status before acknowledging the error
      * [Zesty/Artful] On ARM64 PCIE physical function passthrough guest fails to
        boot (LP: #1732804)
        - vfio/pci: Virtualize Maximum Payload Size
        - vfio/pci: Virtualize Maximum Read Request Size
      * hisi_sas: Add ATA command support for SMR disks (LP: #1739891)
        - scsi: hisi_sas: support zone management commands
      * thunderx2: i2c driver PEC and ACPI clock fixes (LP: #1738073)
        - ACPI / APD: Add clock frequency for ThunderX2 I2C controller
        - i2c: xlp9xx: Get clock frequency with clk API
        - i2c: xlp9xx: Handle I2C_M_RECV_LEN in msg->flags
      * Falkor erratum 1041 needs workaround (LP: #1738497)
        - [Config] CONFIG_QCOM_FALKOR_ERRATUM_E1041=y
        - arm64: Add software workaround for Falkor erratum 1041
      * ThunderX: TX failure unless checksum offload disabled (LP: #1736593)
        - net: thunderx: Fix TCP/UDP checksum offload for IPv6 pkts
        - net: thunderx: Fix TCP/UDP checksum offload for IPv4 pkts
      * arm64/thunderx: Unhandled context faults in ACPI mode (LP: #1736774)
        - PCI: Set Cavium ACS capability quirk flags to assert RR/CR/SV/UF
        - PCI: Apply Cavium ThunderX ACS quirk to more Root Ports
      * arm64: Unfair rwlock can stall the system (LP: #1732238)
        - locking/qrwlock: Use 'struct qrwlock' instead of 'struct __qrwlock'
        - locking/atomic: Add atomic_cond_read_acquire()
        - locking/qrwlock: Use atomic_cond_read_acquire() when spinning in qrwlock
        - locking/qrwlock, arm64: Move rwlock implementation over to qrwlocks
        - locking/qrwlock: Prevent slowpath writers getting held up by fastpath
      * Shutdown hang on 16.04 with iscsi targets (LP: #1569925)
        - scsi: libiscsi: Allow sd_shutdown on bad transport
      * bt_iter() crash due to NULL pointer (LP: #1744300)
        - blk-mq-tag: check for NULL rq when iterating tags
      * hisilicon hibmc regression due to ea642c3216cb ("drm/ttm: add io_mem_pfn
        callback") (LP: #1738334)
        - SAUCE: drm: hibmc: Initialize the hibmc_bo_driver.io_mem_pfn
      * CVE-2017-5754 ARM64 KPTI fixes
        - arm64: Add ASM_BUG()
        - arm64: consistently use bl for C exception entry
        - arm64: syscallno is secretly an int, make it official
        - arm64: Abstract syscallno manipulation
        - arm64: move non-entry code out of .entry.text
        - arm64: unwind: avoid percpu indirection for irq stack
        - arm64: unwind: disregard frame.sp when validating frame pointer
        - arm64: mm: Fix set_memory_valid() declaration
        - arm64: Convert __inval_cache_range() to area-based
        - arm64: Expose DC CVAP to userspace
        - arm64: Handle trapped DC CVAP
        - arm64: Implement pmem API support
        - arm64: uaccess: Implement *_flushcache variants
        - arm64/vdso: Support mremap() for vDSO
        - arm64: unwind: reference pt_regs via embedded stack frame
        - arm64: unwind: remove sp from struct stackframe
        - arm64: uaccess: Add the uaccess_flushcache.c file
        - arm64: fix pmem interface definition
        - arm64: compat: Remove leftover variable declaration
        - fork: allow arch-override of VMAP stack alignment
        - arm64: kernel: remove {THREAD,IRQ_STACK}_START_SP
        - arm64: factor out PAGE_* and CONT_* definitions
        - arm64: clean up THREAD_* definitions
        - arm64: clean up irq stack definitions
        - arm64: move SEGMENT_ALIGN to <asm/memory.h>
        - efi/arm64: add EFI_KIMG_ALIGN
        - arm64: factor out entry stack manipulation
        - arm64: assembler: allow adr_this_cpu to use the stack pointer
        - arm64: use an irq stack pointer
        - arm64: add basic VMAP_STACK support
        - arm64: add on_accessible_stack()
        - arm64: add VMAP_STACK overflow detection
        - arm64: Convert pte handling from inline asm to using (cmp)xchg
        - kvm: arm64: Convert kvm_set_s2pte_readonly() from inline asm to cmpxchg()
        - arm64: Move PTE_RDONLY bit handling out of set_pte_at()
        - arm64: Ignore hardware dirty bit updates in ptep_set_wrprotect()
        - arm64: Remove the !CONFIG_ARM64_HW_AFDBM alternative code paths
        - arm64: introduce separated bits for mm_context_t flags
        - arm64: cleanup {COMPAT_,}SET_PERSONALITY() macro
        - KVM: arm/arm64: Fix guest external abort matching
        - KVM: arm/arm64: vgic: constify seq_operations and file_operations
        - KVM: arm/arm64: vITS: Drop its_ite->lpi field
        - KVM: arm/arm64: Extract GICv3 max APRn index calculation
        - KVM: arm/arm64: Support uaccess of GICC_APRn
        - arm64: move TASK_* definitions to <asm/processor.h>
        - arm64: Use larger stacks when KASAN is selected
        - arm64: sysreg: Move SPE registers and PSB into common header files
        - arm64: head: Init PMSCR_EL2.{PA,PCT} when entered at EL2 without VHE
        - arm64: Update fault_info table with new exception types
        - arm64: Use existing defines for mdscr
        - arm64: Fix single stepping in kernel traps
        - arm64: asm-bug: Renumber macro local labels to avoid clashes
        - arm64: Implement arch-specific pte_access_permitted()
        - arm64: explicitly mask all exceptions
        - arm64: introduce an order for exceptions
        - arm64: Move the async/fiq helpers to explicitly set process context flags
        - arm64: Mask all exceptions during kernel_exit
        - arm64: entry.S: Remove disable_dbg
        - arm64: entry.S: convert el1_sync
        - arm64: entry.S convert el0_sync
        - arm64: entry.S: convert elX_irq
        - arm64: entry.S: move SError handling into a C function for future expansion
        - arm64: pgd: Mark pgd_cache as __ro_after_init
        - arm64: cpu_ops: Add missing 'const' qualifiers
        - arm64: context: Fix comments and remove pointless smp_wmb()
        - arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm
        - arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb
        - arm64: Expose support for optional ARMv8-A features
        - arm64: KVM: Hide unsupported AArch64 CPU features from guests
        - arm64: mm: Use non-global mappings for kernel space
        - arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN
        - arm64: mm: Move ASID from TTBR0 to TTBR1
        - arm64: mm: Remove pre_ttbr0_update_workaround for Falkor erratum #E1003
        - arm64: mm: Rename post_ttbr0_update_workaround
        - arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN
        - arm64: mm: Allocate ASIDs in pairs
        - arm64: mm: Add arm64_kernel_unmapped_at_el0 helper
        - arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI
        - arm64: entry: Add exception trampoline page for exceptions from EL0
        - arm64: mm: Map entry trampoline into trampoline and kernel page tables
        - arm64: entry: Explicitly pass exception level to kernel_ventry macro
        - arm64: entry: Hook up entry trampoline to exception vectors
        - arm64: erratum: Work around Falkor erratum #E1003 in trampoline code
        - arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks
        - arm64: entry: Add fake CPU feature for unmapping the kernel at EL0
        - arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0
        - arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR
        - arm64: kaslr: Put kernel vectors address in separate data page
        - arm64: use RET instruction for exiting the trampoline
        - arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry
        - arm64: Fix the feature type for ID register fields
        - arm64: Take into account ID_AA64PFR0_EL1.CSV3
        - arm64: cpufeature: Pass capability structure to ->enable callback
        - drivers/firmware: Expose psci_get_version through psci_ops structure
        - arm64: Move post_ttbr_update_workaround to C code
        - arm64: Add skeleton to harden the branch predictor against aliasing attacks
        - arm64: KVM: Use per-CPU vector when BP hardening is enabled
        - arm64: KVM: Make PSCI_VERSION a fast path
        - arm64: cputype: Add missing MIDR values for Cortex-A72 and Cortex-A75
        - arm64: Implement branch predictor hardening for affected Cortex-A CPUs
        - arm64: Define cputype macros for Falkor CPU
        - arm64: Implement branch predictor hardening for Falkor
        - arm64: cputype: Add MIDR values for Cavium ThunderX2 CPUs
        - bpf: inline map in map lookup functions for array and htab
        - bpf: perf event change needed for subsequent bpf helpers
        - bpf: do not test for PCPU_MIN_UNIT_SIZE before percpu allocations
        - arm64: Branch predictor hardening for Cavium ThunderX2
        - arm64: capabilities: Handle duplicate entries for a capability
        - arm64: kpti: Fix the interaction between ASID switching and software PAN
        - SAUCE: arm: Add BTB invalidation on switch_mm for Cortex-A9, A12 and A17
        - SAUCE: arm: Invalidate BTB on prefetch abort outside of user mapping on
          Cortex A8, A9, A12 and A17
        - SAUCE: arm: KVM: Invalidate BTB on guest exit
        - SAUCE: arm: Add icache invalidation on switch_mm for Cortex-A15
        - SAUCE: arm: Invalidate icache on prefetch abort outside of user mapping on
          Cortex-A15
        - SAUCE: arm: KVM: Invalidate icache on guest exit for Cortex-A15
        - SAUCE: asm-generic/barrier: add generic nospec helpers
        - SAUCE: Documentation: document nospec helpers
        - SAUCE: arm64: implement nospec_{load,ptr}()
        - SAUCE: arm: implement nospec_ptr()
        - SAUCE: bpf: inhibit speculated out-of-bounds pointers
        - SAUCE: arm64: Implement branch predictor hardening for Falkor
        - SAUCE: arm64: Branch predictor hardening for Cavium ThunderX2
        - [Config] UNMAP_KERNEL_AT_EL0=y && HARDEN_BRANCH_PREDICTOR=y
      * [artful] panic in update_stack_state when reading /proc/<pid>/stack on i386
        (LP: #1747263)
        - x86/unwind: Fix dereference of untrusted pointer
      * CVE-2017-5753 (Spectre v1 Intel)
        - x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
        - SAUCE: reinstate MFENCE_RDTSC feature definition
        - locking/barriers: introduce new observable speculation barrier
        - bpf: prevent speculative execution in eBPF interpreter
        - x86, bpf, jit: prevent speculative execution when JIT is enabled
        - SAUCE: FIX: x86, bpf, jit: prevent speculative execution when JIT is enabled
        - uvcvideo: prevent speculative execution
        - carl9170: prevent speculative execution
        - p54: prevent speculative execution
        - qla2xxx: prevent speculative execution
        - cw1200: prevent speculative execution
        - Thermal/int340x: prevent speculative execution
        - ipv4: prevent speculative execution
        - ipv6: prevent speculative execution
        - fs: prevent speculative execution
        - net: mpls: prevent speculative execution
        - udf: prevent speculative execution
        - userns: prevent speculative execution
        - SAUCE: powerpc: add osb barrier
        - SAUCE: s390/spinlock: add osb memory barrier
        - SAUCE: claim mitigation via observable speculation barrier
      * CVE-2017-5715 (Spectre v2 retpoline)
        - x86/asm: Fix inline asm call constraints for Clang
        - kvm: vmx: Scrub hardware GPRs at VM-exit
        - sysfs/cpu: Add vulnerability folder
        - x86/cpu: Implement CPU vulnerabilites sysfs functions
        - x86/tboot: Unbreak tboot with PTI enabled
        - objtool: Detect jumps to retpoline thunks
        - objtool: Allow alternatives to be ignored
        - x86/retpoline: Add initial retpoline support
        - x86/spectre: Add boot time option to select Spectre v2 mitigation
        - x86/retpoline/crypto: Convert crypto assembler indirect jumps
        - x86/retpoline/entry: Convert entry assembler indirect jumps
        - x86/retpoline/ftrace: Convert ftrace assembler indirect jumps
        - x86/retpoline/hyperv: Convert assembler indirect jumps
        - x86/retpoline/xen: Convert Xen hypercall indirect jumps
        - x86/retpoline/checksum32: Convert assembler indirect jumps
        - x86/retpoline/irq32: Convert assembler indirect jumps
        - x86/retpoline: Fill return stack buffer on vmexit
        - selftests/x86: Add test_vsyscall
        - x86/pti: Fix !PCID and sanitize defines
        - security/Kconfig: Correct the Documentation reference for PTI
        - x86,perf: Disable intel_bts when PTI
        - x86/retpoline: Remove compile time warning
        - [Config] enable CONFIG_GENERIC_CPU_VULNERABILITIES
        - [Config] enable CONFIG_RETPOLINE
        - [Packaging] retpoline -- add call site validation
        - [Config] disable retpoline checks for first upload
      * CVE-2017-5715 (revert embargoed) // CVE-2017-5753 (revert embargoed)
        - Revert "UBUNTU: SAUCE: x86/entry: Fix up retpoline assembler labels"
        - Revert "kvm: vmx: Scrub hardware GPRs at VM-exit"
        - Revert "Revert "x86/svm: Add code to clear registers on VM exit""
        - Revert "UBUNTU: SAUCE: x86/microcode: Extend post microcode reload to
          support IBPB feature -- repair missmerge"
        - Revert "UBUNTU: SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit"
        - Revert "s390/spinlock: add gmb memory barrier"
        - Revert "powerpc: add gmb barrier"
        - Revert "x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature"
        - Revert "x86/svm: Add code to clear registers on VM exit"
        - Revert "x86/svm: Add code to clobber the RSB on VM exit"
        - Revert "KVM: x86: Add speculative control CPUID support for guests"
        - Revert "x86/svm: Set IBPB when running a different VCPU"
        - Revert "x86/svm: Set IBRS value on VM entry and exit"
        - Revert "KVM: SVM: Do not intercept new speculative control MSRs"
        - Revert "x86/microcode: Extend post microcode reload to support IBPB feature"
        - Revert "x86/cpu/AMD: Add speculative control support for AMD"
        - Revert "x86/entry: Use retpoline for syscall's indirect calls"
        - Revert "x86/syscall: Clear unused extra registers on 32-bit compatible
          syscall entrance"
        - Revert "x86/syscall: Clear unused extra registers on syscall entrance"
        - Revert "x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb
          control"
        - Revert "x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
        - Revert "x86/kvm: Pad RSB on VM transition"
        - Revert "x86/kvm: Toggle IBRS on VM entry and exit"
        - Revert "x86/kvm: Set IBPB when switching VM"
        - Revert "x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm"
        - Revert "x86/entry: Stuff RSB for entry to kernel for non-SMEP platform"
        - Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current
          thread"
        - Revert "x86/mm: Set IBPB upon context switch"
        - Revert "x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup"
        - Revert "x86/idle: Disable IBRS entering idle and enable it on wakeup"
        - Revert "x86/enter: Use IBRS on syscall and interrupts"
        - Revert "x86/enter: MACROS to set/clear IBRS and set IBPB"
        - Revert "x86/feature: Report presence of IBPB and IBRS control"
        - Revert "x86/feature: Enable the x86 feature to control Speculation"
        - Revert "udf: prevent speculative execution"
        - Revert "net: mpls: prevent speculative execution"
        - Revert "fs: prevent speculative execution"
        - Revert "ipv6: prevent speculative execution"
        - Revert "userns: prevent speculative execution"
        - Revert "Thermal/int340x: prevent speculative execution"
        - Revert "cw1200: prevent speculative execution"
        - Revert "qla2xxx: prevent speculative execution"
        - Revert "p54: prevent speculative execution"
        - Revert "carl9170: prevent speculative execution"
        - Revert "uvcvideo: prevent speculative execution"
        - Revert "x86, bpf, jit: prevent speculative execution when JIT is enabled"
        - Revert "bpf: prevent speculative execution in eBPF interpreter"
        - Revert "locking/barriers: introduce new memory barrier gmb()"
      * Unable to boot with i386 4.13.0-25 / 4.13.0-26 / 4.13.0-31 kernel on Xenial
        / Artful (LP: #1745118)
        - x86/mm: Fix overlap of i386 CPU_ENTRY_AREA with FIX_BTMAP
      * 4.13: unable to increase MTU configuration for GRE devices (LP: #1743746)
        - ip_gre: remove the incorrect mtu limit for ipgre tap
      * CVE-2017-17712
        - net: ipv4: fix for a race condition in raw_sendmsg
      * upload urgency should be medium by default (LP: #1745338)
        - [Packaging] update urgency to medium by default
      * CVE-2017-15115
        - sctp: do not peel off an assoc from one netns to another one
      * CVE-2017-8824
        - dccp: CVE-2017-8824: use-after-free in DCCP code
    
      [ Ubuntu: 4.13.0-32.35 ]
    
      * CVE-2017-5715 // CVE-2017-5753
        - SAUCE: x86/entry: Fix up retpoline assembler labels
    
      [ Ubuntu: 4.13.0-31.34 ]
    
      * linux: 4.13.0-31.34 -proposed tracker (LP: #1744294)
      * CVE-2017-5715 // CVE-2017-5753
        - SAUCE: s390: improve cpu alternative handling for gmb and nobp
        - SAUCE: s390: print messages for gmb and nobp
        - [Config] KERNEL_NOBP=y
    
      [ Ubuntu: 4.13.0-30.33 ]
    
      * linux: 4.13.0-30.33 -proposed tracker (LP: #1743412)
      * Do not duplicate changelog entries assigned to more than one bug or CVE
        (LP: #1743383)
        - [Packaging] git-ubuntu-log -- handle multiple bugs/cves better
      * Unable to handle kernel NULL pointer dereference at isci_task_abort_task
        (LP: #1726519)
        - Revert "scsi: libsas: allow async aborts"
      * CVE-2017-5715 // CVE-2017-5753
        - SAUCE: x86/microcode: Extend post microcode reload to support IBPB feature
          -- repair missmerge
        - Revert "x86/svm: Add code to clear registers on VM exit"
        - kvm: vmx: Scrub hardware GPRs at VM-exit
    
      [ Ubuntu: 4.13.0-29.32 ]
    
      * linux: 4.13.0-29.32 -proposed tracker (LP: #1742722)
      * CVE-2017-5754
        - Revert "x86/cpu: Implement CPU vulnerabilites sysfs functions"
        - Revert "sysfs/cpu: Fix typos in vulnerability documentation"
        - Revert "sysfs/cpu: Add vulnerability folder"
        - Revert "UBUNTU: [Config] updateconfigs to enable
          GENERIC_CPU_VULNERABILITIES"
    
      [ Ubuntu: 4.13.0-28.31 ]
    
      * CVE-2017-5753
        - SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
      * CVE-2017-5715
        - SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
    
      [ Ubuntu: 4.13.0-27.30 ]
    
      * CVE-2017-5753
        - locking/barriers: introduce new memory barrier gmb()
        - bpf: prevent speculative execution in eBPF interpreter
        - x86, bpf, jit: prevent speculative execution when JIT is enabled
        - uvcvideo: prevent speculative execution
        - carl9170: prevent speculative execution
        - p54: prevent speculative execution
        - qla2xxx: prevent speculative execution
        - cw1200: prevent speculative execution
        - Thermal/int340x: prevent speculative execution
        - userns: prevent speculative execution
        - ipv6: prevent speculative execution
        - fs: prevent speculative execution
        - net: mpls: prevent speculative execution
        - udf: prevent speculative execution
        - x86/feature: Enable the x86 feature to control Speculation
        - x86/feature: Report presence of IBPB and IBRS control
        - x86/enter: MACROS to set/clear IBRS and set IBPB
        - x86/enter: Use IBRS on syscall and interrupts
        - x86/idle: Disable IBRS entering idle and enable it on wakeup
        - x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
        - x86/mm: Set IBPB upon context switch
        - x86/mm: Only set IBPB when the new thread cannot ptrace current thread
        - x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
        - x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
        - x86/kvm: Set IBPB when switching VM
        - x86/kvm: Toggle IBRS on VM entry and exit
        - x86/kvm: Pad RSB on VM transition
        - x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
        - x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
        - x86/syscall: Clear unused extra registers on syscall entrance
        - x86/syscall: Clear unused extra registers on 32-bit compatible syscall
          entrance
        - x86/entry: Use retpoline for syscall's indirect calls
        - x86/cpu/AMD: Add speculative control support for AMD
        - x86/microcode: Extend post microcode reload to support IBPB feature
        - KVM: SVM: Do not intercept new speculative control MSRs
        - x86/svm: Set IBRS value on VM entry and exit
        - x86/svm: Set IBPB when running a different VCPU
        - KVM: x86: Add speculative control CPUID support for guests
        - x86/svm: Add code to clobber the RSB on VM exit
        - x86/svm: Add code to clear registers on VM exit
        - x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
        - powerpc: add gmb barrier
        - s390/spinlock: add gmb memory barrier
        - x86/microcode/AMD: Add support for fam17h microcode loading
      * CVE-2017-5715
        - locking/barriers: introduce new memory barrier gmb()
        - bpf: prevent speculative execution in eBPF interpreter
        - x86, bpf, jit: prevent speculative execution when JIT is enabled
        - uvcvideo: prevent speculative execution
        - carl9170: prevent speculative execution
        - p54: prevent speculative execution
        - qla2xxx: prevent speculative execution
        - cw1200: prevent speculative execution
        - Thermal/int340x: prevent speculative execution
        - userns: prevent speculative execution
        - ipv6: prevent speculative execution
        - fs: prevent speculative execution
        - net: mpls: prevent speculative execution
        - udf: prevent speculative execution
        - x86/feature: Enable the x86 feature to control Speculation
        - x86/feature: Report presence of IBPB and IBRS control
        - x86/enter: MACROS to set/clear IBRS and set IBPB
        - x86/enter: Use IBRS on syscall and interrupts
        - x86/idle: Disable IBRS entering idle and enable it on wakeup
        - x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
        - x86/mm: Set IBPB upon context switch
        - x86/mm: Only set IBPB when the new thread cannot ptrace current thread
        - x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
        - x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
        - x86/kvm: Set IBPB when switching VM
        - x86/kvm: Toggle IBRS on VM entry and exit
        - x86/kvm: Pad RSB on VM transition
        - x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
        - x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
        - x86/syscall: Clear unused extra registers on syscall entrance
        - x86/syscall: Clear unused extra registers on 32-bit compatible syscall
          entrance
        - x86/entry: Use retpoline for syscall's indirect calls
        - x86/cpu/AMD: Add speculative control support for AMD
        - x86/microcode: Extend post microcode reload to support IBPB feature
        - KVM: SVM: Do not intercept new speculative control MSRs
        - x86/svm: Set IBRS value on VM entry and exit
        - x86/svm: Set IBPB when running a different VCPU
        - KVM: x86: Add speculative control CPUID support for guests
        - x86/svm: Add code to clobber the RSB on VM exit
        - x86/svm: Add code to clear registers on VM exit
        - x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
        - powerpc: add gmb barrier
        - s390/spinlock: add gmb memory barrier
        - x86/microcode/AMD: Add support for fam17h microcode loading
      * CVE-2017-5754
        - x86/pti: Enable PTI by default
        - x86/pti: Make sure the user/kernel PTEs match
        - x86/dumpstack: Fix partial register dumps
        - x86/dumpstack: Print registers for first stack frame
        - x86/process: Define cpu_tss_rw in same section as declaration
        - x86/mm: Set MODULES_END to 0xffffffffff000000
        - x86/mm: Map cpu_entry_area at the same place on 4/5 level
        - x86/kaslr: Fix the vaddr_end mess
        - x86/events/intel/ds: Use the proper cache flush method for mapping ds
          buffers
        - x86/tlb: Drop the _GPL from the cpu_tlbstate export
        - x86/alternatives: Add missing '\n' at end of ALTERNATIVE inline asm
        - x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN
        - x86/pti: Unbreak EFI old_memmap
        - x86/Documentation: Add PTI description
        - x86/cpufeatures: Add X86_BUG_SPECTRE_V[12]
        - sysfs/cpu: Add vulnerability folder
        - x86/cpu: Implement CPU vulnerabilites sysfs functions
        - x86/tboot: Unbreak tboot with PTI enabled
        - x86/mm/pti: Remove dead logic in pti_user_pagetable_walk*()
        - x86/cpu/AMD: Make LFENCE a serializing instruction
        - x86/cpu/AMD: Use LFENCE_RDTSC in preference to MFENCE_RDTSC
        - sysfs/cpu: Fix typos in vulnerability documentation
        - x86/alternatives: Fix optimize_nops() checking
        - x86/pti: Make unpoison of pgd for trusted boot work for real
        - s390: introduce CPU alternatives
        - s390: add ppa to kernel entry / exit
        - SAUCE: powerpc: Secure memory rfi flush
        - SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
        - SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
        - SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
        - SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
        - SAUCE: rfi-flush: Implement congruence-first fallback flush
        - SAUCE: rfi-flush: Make l1d_flush_type bit flags
        - SAUCE: rfi-flush: Push the instruction selection down to the patching
          routine
        - SAUCE: rfi-flush: Expand the RFI section to two nop slots
        - SAUCE: rfi-flush: Support more than one flush type at once
        - SAUCE: rfi-flush: Allow HV to advertise multiple flush types
        - SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
        - SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
        - SAUCE: rfi-flush: Rework powernv logic to be more cautious
        - SAUCE: rfi-flush: Rework pseries logic to be more cautious
        - SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
        - SAUCE: rfi-flush: Fix the fallback flush to actually activate
        - SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
        - SAUCE: rfi-flush: Refactor the macros so the nops are defined once
        - SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
        - SAUCE: rfi-flush: Use rfi-flush in printks
        - SAUCE: rfi-flush: Fallback flush add load dependency
        - SAUCE: rfi-flush: Fix the 32-bit KVM build
        - SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
        - SAUCE: rfi-flush: Make the fallback robust against memory corruption
        - [Config] Disable CONFIG_PPC_DEBUG_RFI
        - [Config] updateconfigs to enable GENERIC_CPU_VULNERABILITIES
      * powerpc: flush L1D on return to use (LP: #1742772)
        - SAUCE: powerpc: Secure memory rfi flush
        - SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
        - SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
        - SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
        - SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
        - SAUCE: rfi-flush: Implement congruence-first fallback flush
        - SAUCE: rfi-flush: Make l1d_flush_type bit flags
        - SAUCE: rfi-flush: Push the instruction selection down to the patching
          routine
        - SAUCE: rfi-flush: Expand the RFI section to two nop slots
        - SAUCE: rfi-flush: Support more than one flush type at once
        - SAUCE: rfi-flush: Allow HV to advertise multiple flush types
        - SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
        - SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
        - SAUCE: rfi-flush: Rework powernv logic to be more cautious
        - SAUCE: rfi-flush: Rework pseries logic to be more cautious
        - SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
        - SAUCE: rfi-flush: Fix the fallback flush to actually activate
        - SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
        - SAUCE: rfi-flush: Refactor the macros so the nops are defined once
        - SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
        - SAUCE: rfi-flush: Use rfi-flush in printks
        - SAUCE: rfi-flush: Fallback flush add load dependency
        - SAUCE: rfi-flush: Fix the 32-bit KVM build
        - SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
        - SAUCE: rfi-flush: Make the fallback robust against memory corruption
        - [Config] Disable CONFIG_PPC_DEBUG_RFI
      * s390: add ppa to kernel entry/exit (LP: #1742771)
        - s390: introduce CPU alternatives
        - s390: add ppa to kernel entry / exit
    
     -- Khalid Elmously <email address hidden>  Tue, 13 Feb 2018 09:50:34 -0500
  • linux-raspi2 (4.13.0-1012.13) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1012.13 -proposed tracker (LP: #1746914)
    
    
      [ Ubuntu: 4.13.0-33.36 ]
    
      * linux: 4.13.0-33.36 -proposed tracker (LP: #1746903)
      * starting VMs causing retpoline4 to reboot (LP: #1747507) // CVE-2017-5715
        (Spectre v2 retpoline)
        - x86/retpoline: Fill RSB on context switch for affected CPUs
        - x86/retpoline: Add LFENCE to the retpoline/RSB filling RSB macros
        - x86/retpoline: Optimize inline assembler for vmexit_fill_RSB
        - x86/retpoline: Remove the esp/rsp thunk
        - x86/retpoline: Simplify vmexit_fill_RSB()
      * Missing install-time driver for QLogic QED 25/40/100Gb Ethernet NIC
        (LP: #1743638)
        - [d-i] Add qede to nic-modules udeb
      * hisi_sas: driver robustness fixes (LP: #1739807)
        - scsi: hisi_sas: fix reset and port ID refresh issues
        - scsi: hisi_sas: avoid potential v2 hw interrupt issue
        - scsi: hisi_sas: fix v2 hw underflow residual value
        - scsi: hisi_sas: add v2 hw DFX feature
        - scsi: hisi_sas: add irq and tasklet cleanup in v2 hw
        - scsi: hisi_sas: service interrupt ITCT_CLR interrupt in v2 hw
        - scsi: hisi_sas: fix internal abort slot timeout bug
        - scsi: hisi_sas: us start_phy in PHY_FUNC_LINK_RESET
        - scsi: hisi_sas: fix NULL check in SMP abort task path
        - scsi: hisi_sas: fix the risk of freeing slot twice
        - scsi: hisi_sas: kill tasklet when destroying irq in v3 hw
        - scsi: hisi_sas: complete all tasklets prior to host reset
      * [Artful/Zesty] ACPI APEI error handling bug fixes (LP: #1732990)
        - ACPI: APEI: fix the wrong iteration of generic error status block
        - ACPI / APEI: clear error status before acknowledging the error
      * [Zesty/Artful] On ARM64 PCIE physical function passthrough guest fails to
        boot (LP: #1732804)
        - vfio/pci: Virtualize Maximum Payload Size
        - vfio/pci: Virtualize Maximum Read Request Size
      * hisi_sas: Add ATA command support for SMR disks (LP: #1739891)
        - scsi: hisi_sas: support zone management commands
      * thunderx2: i2c driver PEC and ACPI clock fixes (LP: #1738073)
        - ACPI / APD: Add clock frequency for ThunderX2 I2C controller
        - i2c: xlp9xx: Get clock frequency with clk API
        - i2c: xlp9xx: Handle I2C_M_RECV_LEN in msg->flags
      * Falkor erratum 1041 needs workaround (LP: #1738497)
        - [Config] CONFIG_QCOM_FALKOR_ERRATUM_E1041=y
        - arm64: Add software workaround for Falkor erratum 1041
      * ThunderX: TX failure unless checksum offload disabled (LP: #1736593)
        - net: thunderx: Fix TCP/UDP checksum offload for IPv6 pkts
        - net: thunderx: Fix TCP/UDP checksum offload for IPv4 pkts
      * arm64/thunderx: Unhandled context faults in ACPI mode (LP: #1736774)
        - PCI: Set Cavium ACS capability quirk flags to assert RR/CR/SV/UF
        - PCI: Apply Cavium ThunderX ACS quirk to more Root Ports
      * arm64: Unfair rwlock can stall the system (LP: #1732238)
        - locking/qrwlock: Use 'struct qrwlock' instead of 'struct __qrwlock'
        - locking/atomic: Add atomic_cond_read_acquire()
        - locking/qrwlock: Use atomic_cond_read_acquire() when spinning in qrwlock
        - locking/qrwlock, arm64: Move rwlock implementation over to qrwlocks
        - locking/qrwlock: Prevent slowpath writers getting held up by fastpath
      * Shutdown hang on 16.04 with iscsi targets (LP: #1569925)
        - scsi: libiscsi: Allow sd_shutdown on bad transport
      * bt_iter() crash due to NULL pointer (LP: #1744300)
        - blk-mq-tag: check for NULL rq when iterating tags
      * hisilicon hibmc regression due to ea642c3216cb ("drm/ttm: add io_mem_pfn
        callback") (LP: #1738334)
        - SAUCE: drm: hibmc: Initialize the hibmc_bo_driver.io_mem_pfn
      * CVE-2017-5754 ARM64 KPTI fixes
        - arm64: Add ASM_BUG()
        - arm64: consistently use bl for C exception entry
        - arm64: syscallno is secretly an int, make it official
        - arm64: Abstract syscallno manipulation
        - arm64: move non-entry code out of .entry.text
        - arm64: unwind: avoid percpu indirection for irq stack
        - arm64: unwind: disregard frame.sp when validating frame pointer
        - arm64: mm: Fix set_memory_valid() declaration
        - arm64: Convert __inval_cache_range() to area-based
        - arm64: Expose DC CVAP to userspace
        - arm64: Handle trapped DC CVAP
        - arm64: Implement pmem API support
        - arm64: uaccess: Implement *_flushcache variants
        - arm64/vdso: Support mremap() for vDSO
        - arm64: unwind: reference pt_regs via embedded stack frame
        - arm64: unwind: remove sp from struct stackframe
        - arm64: uaccess: Add the uaccess_flushcache.c file
        - arm64: fix pmem interface definition
        - arm64: compat: Remove leftover variable declaration
        - fork: allow arch-override of VMAP stack alignment
        - arm64: kernel: remove {THREAD,IRQ_STACK}_START_SP
        - arm64: factor out PAGE_* and CONT_* definitions
        - arm64: clean up THREAD_* definitions
        - arm64: clean up irq stack definitions
        - arm64: move SEGMENT_ALIGN to <asm/memory.h>
        - efi/arm64: add EFI_KIMG_ALIGN
        - arm64: factor out entry stack manipulation
        - arm64: assembler: allow adr_this_cpu to use the stack pointer
        - arm64: use an irq stack pointer
        - arm64: add basic VMAP_STACK support
        - arm64: add on_accessible_stack()
        - arm64: add VMAP_STACK overflow detection
        - arm64: Convert pte handling from inline asm to using (cmp)xchg
        - kvm: arm64: Convert kvm_set_s2pte_readonly() from inline asm to cmpxchg()
        - arm64: Move PTE_RDONLY bit handling out of set_pte_at()
        - arm64: Ignore hardware dirty bit updates in ptep_set_wrprotect()
        - arm64: Remove the !CONFIG_ARM64_HW_AFDBM alternative code paths
        - arm64: introduce separated bits for mm_context_t flags
        - arm64: cleanup {COMPAT_,}SET_PERSONALITY() macro
        - KVM: arm/arm64: Fix guest external abort matching
        - KVM: arm/arm64: vgic: constify seq_operations and file_operations
        - KVM: arm/arm64: vITS: Drop its_ite->lpi field
        - KVM: arm/arm64: Extract GICv3 max APRn index calculation
        - KVM: arm/arm64: Support uaccess of GICC_APRn
        - arm64: move TASK_* definitions to <asm/processor.h>
        - arm64: Use larger stacks when KASAN is selected
        - arm64: sysreg: Move SPE registers and PSB into common header files
        - arm64: head: Init PMSCR_EL2.{PA,PCT} when entered at EL2 without VHE
        - arm64: Update fault_info table with new exception types
        - arm64: Use existing defines for mdscr
        - arm64: Fix single stepping in kernel traps
        - arm64: asm-bug: Renumber macro local labels to avoid clashes
        - arm64: Implement arch-specific pte_access_permitted()
        - arm64: explicitly mask all exceptions
        - arm64: introduce an order for exceptions
        - arm64: Move the async/fiq helpers to explicitly set process context flags
        - arm64: Mask all exceptions during kernel_exit
        - arm64: entry.S: Remove disable_dbg
        - arm64: entry.S: convert el1_sync
        - arm64: entry.S convert el0_sync
        - arm64: entry.S: convert elX_irq
        - arm64: entry.S: move SError handling into a C function for future expansion
        - arm64: pgd: Mark pgd_cache as __ro_after_init
        - arm64: cpu_ops: Add missing 'const' qualifiers
        - arm64: context: Fix comments and remove pointless smp_wmb()
        - arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm
        - arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb
        - arm64: Expose support for optional ARMv8-A features
        - arm64: KVM: Hide unsupported AArch64 CPU features from guests
        - arm64: mm: Use non-global mappings for kernel space
        - arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN
        - arm64: mm: Move ASID from TTBR0 to TTBR1
        - arm64: mm: Remove pre_ttbr0_update_workaround for Falkor erratum #E1003
        - arm64: mm: Rename post_ttbr0_update_workaround
        - arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN
        - arm64: mm: Allocate ASIDs in pairs
        - arm64: mm: Add arm64_kernel_unmapped_at_el0 helper
        - arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI
        - arm64: entry: Add exception trampoline page for exceptions from EL0
        - arm64: mm: Map entry trampoline into trampoline and kernel page tables
        - arm64: entry: Explicitly pass exception level to kernel_ventry macro
        - arm64: entry: Hook up entry trampoline to exception vectors
        - arm64: erratum: Work around Falkor erratum #E1003 in trampoline code
        - arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks
        - arm64: entry: Add fake CPU feature for unmapping the kernel at EL0
        - arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0
        - arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR
        - arm64: kaslr: Put kernel vectors address in separate data page
        - arm64: use RET instruction for exiting the trampoline
        - arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry
        - arm64: Fix the feature type for ID register fields
        - arm64: Take into account ID_AA64PFR0_EL1.CSV3
        - arm64: cpufeature: Pass capability structure to ->enable callback
        - drivers/firmware: Expose psci_get_version through psci_ops structure
        - arm64: Move post_ttbr_update_workaround to C code
        - arm64: Add skeleton to harden the branch predictor against aliasing attacks
        - arm64: KVM: Use per-CPU vector when BP hardening is enabled
        - arm64: KVM: Make PSCI_VERSION a fast path
        - arm64: cputype: Add missing MIDR values for Cortex-A72 and Cortex-A75
        - arm64: Implement branch predictor hardening for affected Cortex-A CPUs
        - arm64: Define cputype macros for Falkor CPU
        - arm64: Implement branch predictor hardening for Falkor
        - arm64: cputype: Add MIDR values for Cavium ThunderX2 CPUs
        - bpf: inline map in map lookup functions for array and htab
        - bpf: perf event change needed for subsequent bpf helpers
        - bpf: do not test for PCPU_MIN_UNIT_SIZE before percpu allocations
        - arm64: Branch predictor hardening for Cavium ThunderX2
        - arm64: capabilities: Handle duplicate entries for a capability
        - arm64: kpti: Fix the interaction between ASID switching and software PAN
        - SAUCE: arm: Add BTB invalidation on switch_mm for Cortex-A9, A12 and A17
        - SAUCE: arm: Invalidate BTB on prefetch abort outside of user mapping on
          Cortex A8, A9, A12 and A17
        - SAUCE: arm: KVM: Invalidate BTB on guest exit
        - SAUCE: arm: Add icache invalidation on switch_mm for Cortex-A15
        - SAUCE: arm: Invalidate icache on prefetch abort outside of user mapping on
          Cortex-A15
        - SAUCE: arm: KVM: Invalidate icache on guest exit for Cortex-A15
        - SAUCE: asm-generic/barrier: add generic nospec helpers
        - SAUCE: Documentation: document nospec helpers
        - SAUCE: arm64: implement nospec_{load,ptr}()
        - SAUCE: arm: implement nospec_ptr()
        - SAUCE: bpf: inhibit speculated out-of-bounds pointers
        - SAUCE: arm64: Implement branch predictor hardening for Falkor
        - SAUCE: arm64: Branch predictor hardening for Cavium ThunderX2
        - [Config] UNMAP_KERNEL_AT_EL0=y && HARDEN_BRANCH_PREDICTOR=y
      * [artful] panic in update_stack_state when reading /proc/<pid>/stack on i386
        (LP: #1747263)
        - x86/unwind: Fix dereference of untrusted pointer
      * CVE-2017-5753 (Spectre v1 Intel)
        - x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
        - SAUCE: reinstate MFENCE_RDTSC feature definition
        - locking/barriers: introduce new observable speculation barrier
        - bpf: prevent speculative execution in eBPF interpreter
        - x86, bpf, jit: prevent speculative execution when JIT is enabled
        - SAUCE: FIX: x86, bpf, jit: prevent speculative execution when JIT is enabled
        - uvcvideo: prevent speculative execution
        - carl9170: prevent speculative execution
        - p54: prevent speculative execution
        - qla2xxx: prevent speculative execution
        - cw1200: prevent speculative execution
        - Thermal/int340x: prevent speculative execution
        - ipv4: prevent speculative execution
        - ipv6: prevent speculative execution
        - fs: prevent speculative execution
        - net: mpls: prevent speculative execution
        - udf: prevent speculative execution
        - userns: prevent speculative execution
        - SAUCE: powerpc: add osb barrier
        - SAUCE: s390/spinlock: add osb memory barrier
        - SAUCE: claim mitigation via observable speculation barrier
      * CVE-2017-5715 (Spectre v2 retpoline)
        - x86/asm: Fix inline asm call constraints for Clang
        - kvm: vmx: Scrub hardware GPRs at VM-exit
        - sysfs/cpu: Add vulnerability folder
        - x86/cpu: Implement CPU vulnerabilites sysfs functions
        - x86/tboot: Unbreak tboot with PTI enabled
        - objtool: Detect jumps to retpoline thunks
        - objtool: Allow alternatives to be ignored
        - x86/retpoline: Add initial retpoline support
        - x86/spectre: Add boot time option to select Spectre v2 mitigation
        - x86/retpoline/crypto: Convert crypto assembler indirect jumps
        - x86/retpoline/entry: Convert entry assembler indirect jumps
        - x86/retpoline/ftrace: Convert ftrace assembler indirect jumps
        - x86/retpoline/hyperv: Convert assembler indirect jumps
        - x86/retpoline/xen: Convert Xen hypercall indirect jumps
        - x86/retpoline/checksum32: Convert assembler indirect jumps
        - x86/retpoline/irq32: Convert assembler indirect jumps
        - x86/retpoline: Fill return stack buffer on vmexit
        - selftests/x86: Add test_vsyscall
        - x86/pti: Fix !PCID and sanitize defines
        - security/Kconfig: Correct the Documentation reference for PTI
        - x86,perf: Disable intel_bts when PTI
        - x86/retpoline: Remove compile time warning
        - [Config] enable CONFIG_GENERIC_CPU_VULNERABILITIES
        - [Config] enable CONFIG_RETPOLINE
        - [Packaging] retpoline -- add call site validation
        - [Config] disable retpoline checks for first upload
      * CVE-2017-5715 (revert embargoed) // CVE-2017-5753 (revert embargoed)
        - Revert "UBUNTU: SAUCE: x86/entry: Fix up retpoline assembler labels"
        - Revert "kvm: vmx: Scrub hardware GPRs at VM-exit"
        - Revert "Revert "x86/svm: Add code to clear registers on VM exit""
        - Revert "UBUNTU: SAUCE: x86/microcode: Extend post microcode reload to
          support IBPB feature -- repair missmerge"
        - Revert "UBUNTU: SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit"
        - Revert "s390/spinlock: add gmb memory barrier"
        - Revert "powerpc: add gmb barrier"
        - Revert "x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature"
        - Revert "x86/svm: Add code to clear registers on VM exit"
        - Revert "x86/svm: Add code to clobber the RSB on VM exit"
        - Revert "KVM: x86: Add speculative control CPUID support for guests"
        - Revert "x86/svm: Set IBPB when running a different VCPU"
        - Revert "x86/svm: Set IBRS value on VM entry and exit"
        - Revert "KVM: SVM: Do not intercept new speculative control MSRs"
        - Revert "x86/microcode: Extend post microcode reload to support IBPB feature"
        - Revert "x86/cpu/AMD: Add speculative control support for AMD"
        - Revert "x86/entry: Use retpoline for syscall's indirect calls"
        - Revert "x86/syscall: Clear unused extra registers on 32-bit compatible
          syscall entrance"
        - Revert "x86/syscall: Clear unused extra registers on syscall entrance"
        - Revert "x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb
          control"
        - Revert "x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
        - Revert "x86/kvm: Pad RSB on VM transition"
        - Revert "x86/kvm: Toggle IBRS on VM entry and exit"
        - Revert "x86/kvm: Set IBPB when switching VM"
        - Revert "x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm"
        - Revert "x86/entry: Stuff RSB for entry to kernel for non-SMEP platform"
        - Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current
          thread"
        - Revert "x86/mm: Set IBPB upon context switch"
        - Revert "x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup"
        - Revert "x86/idle: Disable IBRS entering idle and enable it on wakeup"
        - Revert "x86/enter: Use IBRS on syscall and interrupts"
        - Revert "x86/enter: MACROS to set/clear IBRS and set IBPB"
        - Revert "x86/feature: Report presence of IBPB and IBRS control"
        - Revert "x86/feature: Enable the x86 feature to control Speculation"
        - Revert "udf: prevent speculative execution"
        - Revert "net: mpls: prevent speculative execution"
        - Revert "fs: prevent speculative execution"
        - Revert "ipv6: prevent speculative execution"
        - Revert "userns: prevent speculative execution"
        - Revert "Thermal/int340x: prevent speculative execution"
        - Revert "cw1200: prevent speculative execution"
        - Revert "qla2xxx: prevent speculative execution"
        - Revert "p54: prevent speculative execution"
        - Revert "carl9170: prevent speculative execution"
        - Revert "uvcvideo: prevent speculative execution"
        - Revert "x86, bpf, jit: prevent speculative execution when JIT is enabled"
        - Revert "bpf: prevent speculative execution in eBPF interpreter"
        - Revert "locking/barriers: introduce new memory barrier gmb()"
      * Unable to boot with i386 4.13.0-25 / 4.13.0-26 / 4.13.0-31 kernel on Xenial
        / Artful (LP: #1745118)
        - x86/mm: Fix overlap of i386 CPU_ENTRY_AREA with FIX_BTMAP
      * 4.13: unable to increase MTU configuration for GRE devices (LP: #1743746)
        - ip_gre: remove the incorrect mtu limit for ipgre tap
      * CVE-2017-17712
        - net: ipv4: fix for a race condition in raw_sendmsg
      * upload urgency should be medium by default (LP: #1745338)
        - [Packaging] update urgency to medium by default
      * CVE-2017-15115
        - sctp: do not peel off an assoc from one netns to another one
      * CVE-2017-8824
        - dccp: CVE-2017-8824: use-after-free in DCCP code
    
      [ Ubuntu: 4.13.0-32.35 ]
    
      * CVE-2017-5715 // CVE-2017-5753
        - SAUCE: x86/entry: Fix up retpoline assembler labels
    
      [ Ubuntu: 4.13.0-31.34 ]
    
      * linux: 4.13.0-31.34 -proposed tracker (LP: #1744294)
      * CVE-2017-5715 // CVE-2017-5753
        - SAUCE: s390: improve cpu alternative handling for gmb and nobp
        - SAUCE: s390: print messages for gmb and nobp
        - [Config] KERNEL_NOBP=y
    
      [ Ubuntu: 4.13.0-30.33 ]
    
      * linux: 4.13.0-30.33 -proposed tracker (LP: #1743412)
      * Do not duplicate changelog entries assigned to more than one bug or CVE
        (LP: #1743383)
        - [Packaging] git-ubuntu-log -- handle multiple bugs/cves better
      * Unable to handle kernel NULL pointer dereference at isci_task_abort_task
        (LP: #1726519)
        - Revert "scsi: libsas: allow async aborts"
      * CVE-2017-5715 // CVE-2017-5753
        - SAUCE: x86/microcode: Extend post microcode reload to support IBPB feature
          -- repair missmerge
        - Revert "x86/svm: Add code to clear registers on VM exit"
        - kvm: vmx: Scrub hardware GPRs at VM-exit
    
      [ Ubuntu: 4.13.0-29.32 ]
    
      * linux: 4.13.0-29.32 -proposed tracker (LP: #1742722)
      * CVE-2017-5754
        - Revert "x86/cpu: Implement CPU vulnerabilites sysfs functions"
        - Revert "sysfs/cpu: Fix typos in vulnerability documentation"
        - Revert "sysfs/cpu: Add vulnerability folder"
        - Revert "UBUNTU: [Config] updateconfigs to enable
          GENERIC_CPU_VULNERABILITIES"
    
      [ Ubuntu: 4.13.0-28.31 ]
    
      * CVE-2017-5753
        - SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
      * CVE-2017-5715
        - SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
    
      [ Ubuntu: 4.13.0-27.30 ]
    
      * CVE-2017-5753
        - locking/barriers: introduce new memory barrier gmb()
        - bpf: prevent speculative execution in eBPF interpreter
        - x86, bpf, jit: prevent speculative execution when JIT is enabled
        - uvcvideo: prevent speculative execution
        - carl9170: prevent speculative execution
        - p54: prevent speculative execution
        - qla2xxx: prevent speculative execution
        - cw1200: prevent speculative execution
        - Thermal/int340x: prevent speculative execution
        - userns: prevent speculative execution
        - ipv6: prevent speculative execution
        - fs: prevent speculative execution
        - net: mpls: prevent speculative execution
        - udf: prevent speculative execution
        - x86/feature: Enable the x86 feature to control Speculation
        - x86/feature: Report presence of IBPB and IBRS control
        - x86/enter: MACROS to set/clear IBRS and set IBPB
        - x86/enter: Use IBRS on syscall and interrupts
        - x86/idle: Disable IBRS entering idle and enable it on wakeup
        - x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
        - x86/mm: Set IBPB upon context switch
        - x86/mm: Only set IBPB when the new thread cannot ptrace current thread
        - x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
        - x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
        - x86/kvm: Set IBPB when switching VM
        - x86/kvm: Toggle IBRS on VM entry and exit
        - x86/kvm: Pad RSB on VM transition
        - x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
        - x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
        - x86/syscall: Clear unused extra registers on syscall entrance
        - x86/syscall: Clear unused extra registers on 32-bit compatible syscall
          entrance
        - x86/entry: Use retpoline for syscall's indirect calls
        - x86/cpu/AMD: Add speculative control support for AMD
        - x86/microcode: Extend post microcode reload to support IBPB feature
        - KVM: SVM: Do not intercept new speculative control MSRs
        - x86/svm: Set IBRS value on VM entry and exit
        - x86/svm: Set IBPB when running a different VCPU
        - KVM: x86: Add speculative control CPUID support for guests
        - x86/svm: Add code to clobber the RSB on VM exit
        - x86/svm: Add code to clear registers on VM exit
        - x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
        - powerpc: add gmb barrier
        - s390/spinlock: add gmb memory barrier
        - x86/microcode/AMD: Add support for fam17h microcode loading
      * CVE-2017-5715
        - locking/barriers: introduce new memory barrier gmb()
        - bpf: prevent speculative execution in eBPF interpreter
        - x86, bpf, jit: prevent speculative execution when JIT is enabled
        - uvcvideo: prevent speculative execution
        - carl9170: prevent speculative execution
        - p54: prevent speculative execution
        - qla2xxx: prevent speculative execution
        - cw1200: prevent speculative execution
        - Thermal/int340x: prevent speculative execution
        - userns: prevent speculative execution
        - ipv6: prevent speculative execution
        - fs: prevent speculative execution
        - net: mpls: prevent speculative execution
        - udf: prevent speculative execution
        - x86/feature: Enable the x86 feature to control Speculation
        - x86/feature: Report presence of IBPB and IBRS control
        - x86/enter: MACROS to set/clear IBRS and set IBPB
        - x86/enter: Use IBRS on syscall and interrupts
        - x86/idle: Disable IBRS entering idle and enable it on wakeup
        - x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
        - x86/mm: Set IBPB upon context switch
        - x86/mm: Only set IBPB when the new thread cannot ptrace current thread
        - x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
        - x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
        - x86/kvm: Set IBPB when switching VM
        - x86/kvm: Toggle IBRS on VM entry and exit
        - x86/kvm: Pad RSB on VM transition
        - x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
        - x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
        - x86/syscall: Clear unused extra registers on syscall entrance
        - x86/syscall: Clear unused extra registers on 32-bit compatible syscall
          entrance
        - x86/entry: Use retpoline for syscall's indirect calls
        - x86/cpu/AMD: Add speculative control support for AMD
        - x86/microcode: Extend post microcode reload to support IBPB feature
        - KVM: SVM: Do not intercept new speculative control MSRs
        - x86/svm: Set IBRS value on VM entry and exit
        - x86/svm: Set IBPB when running a different VCPU
        - KVM: x86: Add speculative control CPUID support for guests
        - x86/svm: Add code to clobber the RSB on VM exit
        - x86/svm: Add code to clear registers on VM exit
        - x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
        - powerpc: add gmb barrier
        - s390/spinlock: add gmb memory barrier
        - x86/microcode/AMD: Add support for fam17h microcode loading
      * CVE-2017-5754
        - x86/pti: Enable PTI by default
        - x86/pti: Make sure the user/kernel PTEs match
        - x86/dumpstack: Fix partial register dumps
        - x86/dumpstack: Print registers for first stack frame
        - x86/process: Define cpu_tss_rw in same section as declaration
        - x86/mm: Set MODULES_END to 0xffffffffff000000
        - x86/mm: Map cpu_entry_area at the same place on 4/5 level
        - x86/kaslr: Fix the vaddr_end mess
        - x86/events/intel/ds: Use the proper cache flush method for mapping ds
          buffers
        - x86/tlb: Drop the _GPL from the cpu_tlbstate export
        - x86/alternatives: Add missing '\n' at end of ALTERNATIVE inline asm
        - x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN
        - x86/pti: Unbreak EFI old_memmap
        - x86/Documentation: Add PTI description
        - x86/cpufeatures: Add X86_BUG_SPECTRE_V[12]
        - sysfs/cpu: Add vulnerability folder
        - x86/cpu: Implement CPU vulnerabilites sysfs functions
        - x86/tboot: Unbreak tboot with PTI enabled
        - x86/mm/pti: Remove dead logic in pti_user_pagetable_walk*()
        - x86/cpu/AMD: Make LFENCE a serializing instruction
        - x86/cpu/AMD: Use LFENCE_RDTSC in preference to MFENCE_RDTSC
        - sysfs/cpu: Fix typos in vulnerability documentation
        - x86/alternatives: Fix optimize_nops() checking
        - x86/pti: Make unpoison of pgd for trusted boot work for real
        - s390: introduce CPU alternatives
        - s390: add ppa to kernel entry / exit
        - SAUCE: powerpc: Secure memory rfi flush
        - SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
        - SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
        - SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
        - SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
        - SAUCE: rfi-flush: Implement congruence-first fallback flush
        - SAUCE: rfi-flush: Make l1d_flush_type bit flags
        - SAUCE: rfi-flush: Push the instruction selection down to the patching
          routine
        - SAUCE: rfi-flush: Expand the RFI section to two nop slots
        - SAUCE: rfi-flush: Support more than one flush type at once
        - SAUCE: rfi-flush: Allow HV to advertise multiple flush types
        - SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
        - SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
        - SAUCE: rfi-flush: Rework powernv logic to be more cautious
        - SAUCE: rfi-flush: Rework pseries logic to be more cautious
        - SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
        - SAUCE: rfi-flush: Fix the fallback flush to actually activate
        - SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
        - SAUCE: rfi-flush: Refactor the macros so the nops are defined once
        - SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
        - SAUCE: rfi-flush: Use rfi-flush in printks
        - SAUCE: rfi-flush: Fallback flush add load dependency
        - SAUCE: rfi-flush: Fix the 32-bit KVM build
        - SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
        - SAUCE: rfi-flush: Make the fallback robust against memory corruption
        - [Config] Disable CONFIG_PPC_DEBUG_RFI
        - [Config] updateconfigs to enable GENERIC_CPU_VULNERABILITIES
      * powerpc: flush L1D on return to use (LP: #1742772)
        - SAUCE: powerpc: Secure memory rfi flush
        - SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
        - SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
        - SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
        - SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
        - SAUCE: rfi-flush: Implement congruence-first fallback flush
        - SAUCE: rfi-flush: Make l1d_flush_type bit flags
        - SAUCE: rfi-flush: Push the instruction selection down to the patching
          routine
        - SAUCE: rfi-flush: Expand the RFI section to two nop slots
        - SAUCE: rfi-flush: Support more than one flush type at once
        - SAUCE: rfi-flush: Allow HV to advertise multiple flush types
        - SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
        - SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
        - SAUCE: rfi-flush: Rework powernv logic to be more cautious
        - SAUCE: rfi-flush: Rework pseries logic to be more cautious
        - SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
        - SAUCE: rfi-flush: Fix the fallback flush to actually activate
        - SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
        - SAUCE: rfi-flush: Refactor the macros so the nops are defined once
        - SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
        - SAUCE: rfi-flush: Use rfi-flush in printks
        - SAUCE: rfi-flush: Fallback flush add load dependency
        - SAUCE: rfi-flush: Fix the 32-bit KVM build
        - SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
        - SAUCE: rfi-flush: Make the fallback robust against memory corruption
        - [Config] Disable CONFIG_PPC_DEBUG_RFI
      * s390: add ppa to kernel entry/exit (LP: #1742771)
        - s390: introduce CPU alternatives
        - s390: add ppa to kernel entry / exit
    
     -- Khalid Elmously <email address hidden>  Wed, 07 Feb 2018 16:41:03 -0500
  • linux-raspi2 (4.13.0-1011.11) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1011.11 -proposed tracker (LP: #1741963)
    
      [ Ubuntu: 4.13.0-25.29 ]
    
      * linux: 4.13.0-25.29 -proposed tracker (LP: #1741955)
      * CVE-2017-5754
        - Revert "UBUNTU: [Config] updateconfigs to enable PTI"
        - [Config] Enable PTI with UNWINDER_FRAME_POINTER
    
      [ Ubuntu: 4.13.0-24.28 ]
    
      * linux: 4.13.0-24.28 -proposed tracker (LP: #1741745)
      * CVE-2017-5754
        - x86/cpu, x86/pti: Do not enable PTI on AMD processors
    
    linux-raspi2 (4.13.0-1010.10) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1010.10 -proposed tracker (LP: #1741562)
    
      [ Ubuntu: 4.13.0-23.27 ]
    
      * linux: 4.13.0-23.27 -proposed tracker (LP: #1741556)
      * CVE-2017-5754
        - x86/mm: Add the 'nopcid' boot option to turn off PCID
        - x86/mm: Enable CR4.PCIDE on supported systems
        - x86/mm: Document how CR4.PCIDE restore works
        - x86/entry/64: Refactor IRQ stacks and make them NMI-safe
        - x86/entry/64: Initialize the top of the IRQ stack before switching stacks
        - x86/entry/64: Add unwind hint annotations
        - xen/x86: Remove SME feature in PV guests
        - x86/xen/64: Rearrange the SYSCALL entries
        - irq: Make the irqentry text section unconditional
        - x86/xen/64: Fix the reported SS and CS in SYSCALL
        - x86/paravirt/xen: Remove xen_patch()
        - x86/traps: Simplify pagefault tracing logic
        - x86/idt: Unify gate_struct handling for 32/64-bit kernels
        - x86/asm: Replace access to desc_struct:a/b fields
        - x86/xen: Get rid of paravirt op adjust_exception_frame
        - x86/paravirt: Remove no longer used paravirt functions
        - x86/entry: Fix idtentry unwind hint
        - x86/mm/64: Initialize CR4.PCIDE early
        - objtool: Add ORC unwind table generation
        - objtool, x86: Add facility for asm code to provide unwind hints
        - x86/unwind: Add the ORC unwinder
        - x86/kconfig: Consolidate unwinders into multiple choice selection
        - objtool: Upgrade libelf-devel warning to error for CONFIG_ORC_UNWINDER
        - x86/ldt/64: Refresh DS and ES when modify_ldt changes an entry
        - x86/mm: Give each mm TLB flush generation a unique ID
        - x86/mm: Track the TLB's tlb_gen and update the flushing algorithm
        - x86/mm: Rework lazy TLB mode and TLB freshness tracking
        - x86/mm: Implement PCID based optimization: try to preserve old TLB entries
          using PCID
        - x86/mm: Factor out CR3-building code
        - x86/mm/64: Stop using CR3.PCID == 0 in ASID-aware code
        - x86/mm: Flush more aggressively in lazy TLB mode
        - Revert "x86/mm: Stop calling leave_mm() in idle code"
        - kprobes/x86: Set up frame pointer in kprobe trampoline
        - x86/tracing: Introduce a static key for exception tracing
        - x86/boot: Add early cmdline parsing for options with arguments
        - mm, x86/mm: Fix performance regression in get_user_pages_fast()
        - x86/asm: Remove unnecessary \n\t in front of CC_SET() from asm templates
        - objtool: Don't report end of section error after an empty unwind hint
        - x86/head: Remove confusing comment
        - x86/head: Remove unused 'bad_address' code
        - x86/head: Fix head ELF function annotations
        - x86/boot: Annotate verify_cpu() as a callable function
        - x86/xen: Fix xen head ELF annotations
        - x86/xen: Add unwind hint annotations
        - x86/head: Add unwind hint annotations
        - ACPI / APEI: adjust a local variable type in ghes_ioremap_pfn_irq()
        - x86/unwinder: Make CONFIG_UNWINDER_ORC=y the default in the 64-bit defconfig
        - x86/fpu/debug: Remove unused 'x86_fpu_state' and 'x86_fpu_deactivate_state'
          tracepoints
        - x86/unwind: Rename unwinder config options to 'CONFIG_UNWINDER_*'
        - x86/unwind: Make CONFIG_UNWINDER_ORC=y the default in kconfig for 64-bit
        - bitops: Add clear/set_bit32() to linux/bitops.h
        - x86/cpuid: Add generic table for CPUID dependencies
        - x86/fpu: Parse clearcpuid= as early XSAVE argument
        - x86/fpu: Make XSAVE check the base CPUID features before enabling
        - x86/fpu: Remove the explicit clearing of XSAVE dependent features
        - x86/platform/UV: Convert timers to use timer_setup()
        - objtool: Print top level commands on incorrect usage
        - x86/cpuid: Prevent out of bound access in do_clear_cpu_cap()
        - x86/entry: Use SYSCALL_DEFINE() macros for sys_modify_ldt()
        - mm/sparsemem: Allocate mem_section at runtime for CONFIG_SPARSEMEM_EXTREME=y
        - x86/kasan: Use the same shadow offset for 4- and 5-level paging
        - x86/xen: Provide pre-built page tables only for CONFIG_XEN_PV=y and
          CONFIG_XEN_PVH=y
        - x86/xen: Drop 5-level paging support code from the XEN_PV code
        - ACPI / APEI: remove the unused dead-code for SEA/NMI notification type
        - x86/asm: Don't use the confusing '.ifeq' directive
        - x86/build: Beautify build log of syscall headers
        - x86/mm/64: Rename the register_page_bootmem_memmap() 'size' parameter to
          'nr_pages'
        - x86/cpufeatures: Enable new SSE/AVX/AVX512 CPU features
        - x86/mm: Relocate page fault error codes to traps.h
        - x86/boot: Relocate definition of the initial state of CR0
        - ptrace,x86: Make user_64bit_mode() available to 32-bit builds
        - x86/entry/64: Remove the restore_c_regs_and_iret label
        - x86/entry/64: Split the IRET-to-user and IRET-to-kernel paths
        - x86/entry/64: Move SWAPGS into the common IRET-to-usermode path
        - x86/entry/64: Simplify reg restore code in the standard IRET paths
        - x86/entry/64: Shrink paranoid_exit_restore and make labels local
        - x86/entry/64: Use pop instead of movq in syscall_return_via_sysret
        - x86/entry/64: Merge the fast and slow SYSRET paths
        - x86/entry/64: Use POP instead of MOV to restore regs on NMI return
        - x86/entry/64: Remove the RESTORE_..._REGS infrastructure
        - xen, x86/entry/64: Add xen NMI trap entry
        - x86/entry/64: De-Xen-ify our NMI code
        - x86/entry/32: Pull the MSR_IA32_SYSENTER_CS update code out of
          native_load_sp0()
        - x86/entry/64: Pass SP0 directly to load_sp0()
        - x86/entry: Add task_top_of_stack() to find the top of a task's stack
        - x86/xen/64, x86/entry/64: Clean up SP code in cpu_initialize_context()
        - x86/entry/64: Stop initializing TSS.sp0 at boot
        - x86/entry/64: Remove all remaining direct thread_struct::sp0 reads
        - x86/entry/32: Fix cpu_current_top_of_stack initialization at boot
        - x86/entry/64: Remove thread_struct::sp0
        - x86/traps: Use a new on_thread_stack() helper to clean up an assertion
        - x86/entry/64: Shorten TEST instructions
        - x86/cpuid: Replace set/clear_bit32()
        - bitops: Revert cbe96375025e ("bitops: Add clear/set_bit32() to
          linux/bitops.h")
        - x86/mm: Define _PAGE_TABLE using _KERNPG_TABLE
        - x86/cpufeatures: Re-tabulate the X86_FEATURE definitions
        - x86/cpufeatures: Fix various details in the feature definitions
        - selftests/x86/protection_keys: Fix syscall NR redefinition warnings
        - selftests/x86/ldt_gdt: Robustify against set_thread_area() and LAR oddities
        - selftests/x86/ldt_gdt: Add infrastructure to test set_thread_area()
        - selftests/x86/ldt_gdt: Run most existing LDT test cases against the GDT as
          well
        - selftests/x86/ldt_get: Add a few additional tests for limits
        - ACPI / APEI: Replace ioremap_page_range() with fixmap
        - x86/virt, x86/platform: Merge 'struct x86_hyper' into 'struct x86_platform'
          and 'struct x86_init'
        - x86/virt: Add enum for hypervisors to replace x86_hyper
        - drivers/misc/intel/pti: Rename the header file to free up the namespace
        - x86/cpufeature: Add User-Mode Instruction Prevention definitions
        - x86: Make X86_BUG_FXSAVE_LEAK detectable in CPUID on AMD
        - perf/x86: Enable free running PEBS for REGS_USER/INTR
        - bpf: fix build issues on um due to mising bpf_perf_event.h
        - locking/barriers: Add implicit smp_read_barrier_depends() to READ_ONCE()
        - locking/barriers: Convert users of lockless_dereference() to READ_ONCE()
        - x86/mm/kasan: Don't use vmemmap_populate() to initialize shadow
        - mm/sparsemem: Fix ARM64 boot crash when CONFIG_SPARSEMEM_EXTREME=y
        - objtool: Move synced files to their original relative locations
        - objtool: Move kernel headers/code sync check to a script
        - objtool: Fix cross-build
        - tools/headers: Sync objtool UAPI header
        - objtool: Fix 64-bit build on 32-bit host
        - x86/decoder: Fix and update the opcodes map
        - x86/decoder: Add new TEST instruction pattern
        - x86/insn-eval: Add utility functions to get segment selector
        - x86/entry/64/paravirt: Use paravirt-safe macro to access eflags
        - x86/unwinder/orc: Dont bail on stack overflow
        - x86/unwinder: Handle stack overflows more gracefully
        - x86/irq: Remove an old outdated comment about context tracking races
        - x86/irq/64: Print the offending IP in the stack overflow warning
        - x86/entry/64: Allocate and enable the SYSENTER stack
        - x86/dumpstack: Add get_stack_info() support for the SYSENTER stack
        - x86/entry/gdt: Put per-CPU GDT remaps in ascending order
        - x86/mm/fixmap: Generalize the GDT fixmap mechanism, introduce struct
          cpu_entry_area
        - x86/kasan/64: Teach KASAN about the cpu_entry_area
        - x86/entry: Fix assumptions that the HW TSS is at the beginning of cpu_tss
        - x86/dumpstack: Handle stack overflow on all stacks
        - x86/entry: Move SYSENTER_stack to the beginning of struct tss_struct
        - x86/entry: Remap the TSS into the CPU entry area
        - x86/entry/64: Separate cpu_current_top_of_stack from TSS.sp0
        - x86/espfix/64: Stop assuming that pt_regs is on the entry stack
        - x86/entry/64: Use a per-CPU trampoline stack for IDT entries
        - x86/entry/64: Return to userspace from the trampoline stack
        - x86/entry/64: Create a per-CPU SYSCALL entry trampoline
        - x86/entry/64: Move the IST stacks into struct cpu_entry_area
        - x86/entry/64: Remove the SYSENTER stack canary
        - x86/entry: Clean up the SYSENTER_stack code
        - x86/entry/64: Make cpu_entry_area.tss read-only
        - x86/paravirt: Dont patch flush_tlb_single
        - x86/paravirt: Provide a way to check for hypervisors
        - x86/cpufeatures: Make CPU bugs sticky
        - x86/Kconfig: Limit NR_CPUS on 32-bit to a sane amount
        - x86/mm/dump_pagetables: Check PAGE_PRESENT for real
        - x86/mm/dump_pagetables: Make the address hints correct and readable
        - x86/vsyscall/64: Explicitly set _PAGE_USER in the pagetable hierarchy
        - x86/vsyscall/64: Warn and fail vsyscall emulation in NATIVE mode
        - arch, mm: Allow arch_dup_mmap() to fail
        - x86/ldt: Rework locking
        - x86/ldt: Prevent LDT inheritance on exec
        - x86/mm/64: Improve the memory map documentation
        - x86/doc: Remove obvious weirdnesses from the x86 MM layout documentation
        - x86/entry: Rename SYSENTER_stack to CPU_ENTRY_AREA_entry_stack
        - x86/uv: Use the right TLB-flush API
        - x86/microcode: Dont abuse the TLB-flush interface
        - x86/mm: Use __flush_tlb_one() for kernel memory
        - x86/mm: Remove superfluous barriers
        - x86/mm: Add comments to clarify which TLB-flush functions are supposed to
          flush what
        - x86/mm: Move the CR3 construction functions to tlbflush.h
        - x86/mm: Remove hard-coded ASID limit checks
        - x86/mm: Put MMU to hardware ASID translation in one place
        - x86/mm: Create asm/invpcid.h
        - x86/cpu_entry_area: Move it to a separate unit
        - x86/cpu_entry_area: Move it out of the fixmap
        - init: Invoke init_espfix_bsp() from mm_init()
        - x86/cpu_entry_area: Prevent wraparound in setup_cpu_entry_area_ptes() on
          32bit
        - x86/cpufeatures: Add X86_BUG_CPU_INSECURE
        - x86/mm/pti: Disable global pages if PAGE_TABLE_ISOLATION=y
        - x86/mm/pti: Prepare the x86/entry assembly code for entry/exit CR3 switching
        - x86/mm/pti: Add infrastructure for page table isolation
        - x86/pti: Add the pti= cmdline option and documentation
        - x86/mm/pti: Add mapping helper functions
        - x86/mm/pti: Allow NX poison to be set in p4d/pgd
        - x86/mm/pti: Allocate a separate user PGD
        - x86/mm/pti: Populate user PGD
        - x86/mm/pti: Add functions to clone kernel PMDs
        - x86/mm/pti: Force entry through trampoline when PTI active
        - x86/mm/pti: Share cpu_entry_area with user space page tables
        - x86/entry: Align entry text section to PMD boundary
        - x86/mm/pti: Share entry text PMD
        - x86/mm/pti: Map ESPFIX into user space
        - x86/cpu_entry_area: Add debugstore entries to cpu_entry_area
        - x86/events/intel/ds: Map debug buffers in cpu_entry_area
        - x86/mm/64: Make a full PGD-entry size hole in the memory map
        - x86/pti: Put the LDT in its own PGD if PTI is on
        - x86/pti: Map the vsyscall page if needed
        - x86/mm: Allow flushing for future ASID switches
        - x86/mm: Abstract switching CR3
        - x86/mm: Use/Fix PCID to optimize user/kernel switches
        - x86/mm: Optimize RESTORE_CR3
        - x86/mm: Use INVPCID for __native_flush_tlb_single()
        - x86/mm: Clarify the whole ASID/kernel PCID/user PCID naming
        - x86/dumpstack: Indicate in Oops whether PTI is configured and enabled
        - x86/mm/pti: Add Kconfig
        - x86/mm/dump_pagetables: Add page table directory to the debugfs VFS
          hierarchy
        - x86/mm/dump_pagetables: Check user space page table for WX pages
        - x86/mm/dump_pagetables: Allow dumping current pagetables
        - x86/ldt: Make the LDT mapping RO
        - x86/smpboot: Remove stale TLB flush invocations
        - x86/mm: Remove preempt_disable/enable() from __native_flush_tlb()
        - x86/ldt: Plug memory leak in error path
        - x86/ldt: Make LDT pgtable free conditional
        - [Config] updateconfigs to enable PTI
        - kvm: x86: fix RSM when PCID is non-zero
        - x86/pti: Switch to kernel CR3 at early in entry_SYSCALL_compat()
        - SAUCE: only attempt to use PCID in 64 bit builds
        - SAUCE: BODGE: temporarily disable some kprobe trace points which are
          cratering
        - s390/mm: use generic mm_hooks
        - objtool: use sh to invoke sync-check.sh in the Makefile
      * CVE-2017-17862
        - bpf: fix branch pruning logic
      * CVE-2017-17864
        - SAUCE: bpf/verifier: Fix states_equal() comparison of pointer and UNKNOWN
      * CVE-2017-16995
        - bpf: fix incorrect sign extension in check_alu_op()
      * CVE-2017-17863
        - SAUCE: bpf: reject out-of-bounds stack pointer calculation
    
      [ Ubuntu: 4.13.0-21.24 ]
    
      * linux: 4.13.0-21.24 -proposed tracker (LP: #1738823)
      * Ubuntu 17.10 corrupting BIOS - many LENOVO laptops models (LP: #1734147)
        - [Config] CONFIG_SPI_INTEL_SPI_PLATFORM=n
    
     -- Kleber Sacilotto de Souza <email address hidden>  Tue, 09 Jan 2018 10:46:24 +0100
  • linux-raspi2 (4.13.0-1009.9) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1009.9 -proposed tracker (LP: #1737909)
    
    
      [ Ubuntu: 4.13.0-20.23 ]
    
      * linux: 4.13.0-20.23 -proposed tracker (LP: #1737903)
      * CVE-2017-15115
        - sctp: do not peel off an assoc from one netns to another one
      * CVE-2017-8824
        - dccp: CVE-2017-8824: use-after-free in DCCP code
    
     -- Khalid Elmously <email address hidden>  Wed, 13 Dec 2017 13:45:12 -0500
  • linux-raspi2 (4.13.0-1008.8) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1008.8 -proposed tracker (LP: #1736125)
    
      [ Ubuntu: 4.13.0-19.22 ]
    
      * linux: 4.13.0-19.22 -proposed tracker (LP: #1736118)
      * CVE-2017-1000405
        - mm, thp: Do not make page table dirty unconditionally in touch_p[mu]d()
    
    linux-raspi2 (4.13.0-1007.7) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1007.7 -proposed tracker (LP: #1733536)
    
      * Dropped "staging: bcm2835-audio: Fix memory corruption" from the
        raspi2 tree in favour of the upstream change with the same name
        but slightly different content (LP: #1731951).
    
      [ Ubuntu: 4.13.0-18.21 ]
    
      * linux: 4.13.0-18.21 -proposed tracker (LP: #1733530)
      * NVMe timeout is too short (LP: #1729119)
        - nvme: update timeout module parameter type
      * CPU call trace on AMD Raven Ridge after S3 (LP: #1732894)
        - x86/mce/AMD: Allow any CPU to initialize the smca_banks array
      * Set PANIC_TIMEOUT=10 on Power Systems (LP: #1730660)
        - [Config]: Set PANIC_TIMEOUT=10 on ppc64el
      * Cannot pair BLE remote devices when using combo BT SoC (LP: #1731467)
        - Bluetooth: increase timeout for le auto connections
      * enable CONFIG_SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH easily confuse users
        (LP: #1732627)
        - [Config] CONFIG_SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH=n
      * Plantronics P610 does not support sample rate reading (LP: #1719853)
        - ALSA: usb-audio: Add sample rate quirk for Plantronics P610
      * Allow drivers to use Relaxed Ordering on capable root ports (LP: #1721365)
        - Revert commit 1a8b6d76dc5b ("net:add one common config...")
        - net: ixgbe: Use new PCI_DEV_FLAGS_NO_RELAXED_ORDERING flag
      * support GICv3 ITS save/restore & migration (LP: #1710019)
        - KVM: arm/arm64: vgic-its: Fix return value for device table restore
      * Device hotplugging with MPT SAS cannot work for VMWare ESXi (LP: #1730852)
        - scsi: mptsas: Fixup device hotplug for VMWare ESXi
      * Artful update to 4.13.13 stable release (LP: #1732726)
        - netfilter: nat: Revert "netfilter: nat: convert nat bysrc hash to
          rhashtable"
        - netfilter: nft_set_hash: disable fast_ops for 2-len keys
        - workqueue: Fix NULL pointer dereference
        - crypto: ccm - preserve the IV buffer
        - crypto: x86/sha1-mb - fix panic due to unaligned access
        - crypto: x86/sha256-mb - fix panic due to unaligned access
        - KEYS: fix NULL pointer dereference during ASN.1 parsing [ver #2]
        - ACPI / PM: Blacklist Low Power S0 Idle _DSM for Dell XPS13 9360
        - ARM: 8720/1: ensure dump_instr() checks addr_limit
        - ALSA: timer: Limit max instances per timer
        - ALSA: usb-audio: support new Amanero Combo384 firmware version
        - ALSA: hda - fix headset mic problem for Dell machines with alc274
        - ALSA: seq: Fix OSS sysex delivery in OSS emulation
        - ALSA: seq: Avoid invalid lockdep class warning
        - MIPS: Fix CM region target definitions
        - MIPS: BMIPS: Fix missing cbr address
        - MIPS: AR7: Defer registration of GPIO
        - MIPS: AR7: Ensure that serial ports are properly set up
        - KVM: PPC: Book3S HV: Fix exclusion between HPT resizing and other HPT
          updates
        - Input: elan_i2c - add ELAN060C to the ACPI table
        - rbd: use GFP_NOIO for parent stat and data requests
        - drm/vmwgfx: Fix Ubuntu 17.10 Wayland black screen issue
        - Revert "x86: CPU: Fix up "cpu MHz" in /proc/cpuinfo"
        - can: sun4i: handle overrun in RX FIFO
        - can: peak: Add support for new PCIe/M2 CAN FD interfaces
        - can: ifi: Fix transmitter delay calculation
        - can: c_can: don't indicate triple sampling support for D_CAN
        - x86/debug: Handle warnings before the notifier chain, to fix KGDB crash
        - x86/smpboot: Make optimization of delay calibration work correctly
        - x86/oprofile/ppro: Do not use __this_cpu*() in preemptible context
        - Linux 4.13.13
      * ELANTECH Touchpad is not detected in 'Lenovo Ideapad 320 14AST' after fresh
        install (LP: #1727544)
        - Input: elan_i2c - add ELAN060C to the ACPI table
      * Power8 Nest PMU Instrumentation support (LP: #1481347)
        - powerpc/powernv: Add IMC OPAL APIs
        - powerpc/powernv: Detect and create IMC device
        - powerpc/perf: Add nest IMC PMU support
        - powerpc/perf: Add core IMC PMU support
        - powerpc/perf: Add thread IMC PMU support
        - powerpc/perf: Fix double unlock in imc_common_cpuhp_mem_free()
        - powerpc/perf/imc: Fix nest events on muti socket system
        - powerpc/powernv: Fix build error in opal-imc.c when NUMA=n
        - powerpc/perf: Fix usage of nest_imc_refc
        - powerpc/perf: Fix for core/nest imc call trace on cpuhotplug
        - powerpc/perf: Add ___GFP_NOWARN flag to alloc_pages_node()
        - powerpc/perf: Fix IMC initialization crash
      * Artful update to 4.13.12 stable release (LP: #1731971)
        - ALSA: timer: Add missing mutex lock for compat ioctls
        - ALSA: seq: Fix nested rwsem annotation for lockdep splat
        - cifs: check MaxPathNameComponentLength != 0 before using it
        - KEYS: return full count in keyring_read() if buffer is too small
        - KEYS: trusted: fix writing past end of buffer in trusted_read()
        - KEYS: fix out-of-bounds read during ASN.1 parsing
        - ASoC: adau17x1: Workaround for noise bug in ADC
        - virtio_blk: Fix an SG_IO regression
        - arm64: ensure __dump_instr() checks addr_limit
        - KVM: arm64: its: Fix missing dynamic allocation check in scan_its_table
        - arm/arm64: KVM: set right LR register value for 32 bit guest when inject
          abort
        - arm/arm64: kvm: Disable branch profiling in HYP code
        - ARM: dts: mvebu: pl310-cache disable double-linefill
        - ARM: 8715/1: add a private asm/unaligned.h
        - drm/amdgpu: return -ENOENT from uvd 6.0 early init for harvesting
        - drm/amdgpu: allow harvesting check for Polaris VCE
        - userfaultfd: hugetlbfs: prevent UFFDIO_COPY to fill beyond the end of i_size
        - ocfs2: fstrim: Fix start offset of first cluster group during fstrim
        - fs/hugetlbfs/inode.c: fix hwpoison reserve accounting
        - mm, swap: fix race between swap count continuation operations
        - drm/i915: Do not rely on wm preservation for ILK watermarks
        - drm/i915/edp: read edp display control registers unconditionally
        - Revert "powerpc64/elfv1: Only dereference function descriptor for non-text
          symbols"
        - MIPS: bpf: Fix a typo in build_one_insn()
        - MIPS: smp-cmp: Use right include for task_struct
        - MIPS: microMIPS: Fix incorrect mask in insn_table_MM
        - MIPS: SMP: Fix deadlock & online race
        - Revert "x86: do not use cpufreq_quick_get() for /proc/cpuinfo "cpu MHz""
        - x86: CPU: Fix up "cpu MHz" in /proc/cpuinfo
        - powerpc/kprobes: Dereference function pointers only if the address does not
          belong to kernel text
        - futex: Fix more put_pi_state() vs. exit_pi_state_list() races
        - perf/cgroup: Fix perf cgroup hierarchy support
        - x86/mcelog: Get rid of RCU remnants
        - irqchip/irq-mvebu-gicp: Add missing spin_lock init
        - Linux 4.13.12
      * Artful update to 4.13.11 stable release (LP: #1731961)
        - workqueue: replace pool->manager_arb mutex with a flag
        - nvme-fc: fix iowait hang
        - ALSA: hda/realtek - Add support for ALC236/ALC3204
        - ALSA: hda - fix headset mic problem for Dell machines with alc236
        - ceph: unlock dangling spinlock in try_flush_caps()
        - Fix tracing sample code warning.
        - KVM: PPC: Fix oops when checking KVM_CAP_PPC_HTM
        - KVM: PPC: Book3S HV: POWER9 more doorbell fixes
        - KVM: PPC: Book3S: Protect kvmppc_gpa_to_ua() with SRCU
        - s390/kvm: fix detection of guest machine checks
        - nbd: handle interrupted sendmsg with a sndtimeo set
        - spi: uapi: spidev: add missing ioctl header
        - spi: a3700: Return correct value on timeout detection
        - spi: bcm-qspi: Fix use after free in bcm_qspi_probe() in error path
        - spi: armada-3700: Fix failing commands with quad-SPI
        - ovl: add NULL check in ovl_alloc_inode
        - ovl: fix EIO from lookup of non-indexed upper
        - ovl: handle ENOENT on index lookup
        - ovl: do not cleanup unsupported index entries
        - fuse: fix READDIRPLUS skipping an entry
        - xen/gntdev: avoid out of bounds access in case of partial gntdev_mmap()
        - xen: fix booting ballooned down hvm guest
        - cifs: Select all required crypto modules
        - CIFS: Fix NULL pointer deref on SMB2_tcon() failure
        - Input: elan_i2c - add ELAN0611 to the ACPI table
        - Input: gtco - fix potential out-of-bound access
        - Fix encryption labels and lengths for SMB3.1.1
        - SMB3: Validate negotiate request must always be signed
        - assoc_array: Fix a buggy node-splitting case
        - scsi: zfcp: fix erp_action use-before-initialize in REC action trace
        - scsi: aacraid: Fix controller initialization failure
        - scsi: qla2xxx: Initialize Work element before requesting IRQs
        - scsi: sg: Re-fix off by one in sg_fill_request_table()
        - x86/cpu/AMD: Apply the Erratum 688 fix when the BIOS doesn't
        - drm/amd/powerplay: fix uninitialized variable
        - drm/i915/perf: fix perf enable/disable ioctls with 32bits userspace
        - can: sun4i: fix loopback mode
        - can: kvaser_usb: Correct return value in printout
        - can: kvaser_usb: Ignore CMD_FLUSH_QUEUE_REPLY messages
        - cfg80211: fix connect/disconnect edge cases
        - ipsec: Fix aborted xfrm policy dump crash
        - regulator: fan53555: fix I2C device ids
        - powerpc/xive: Fix the size of the cpumask used in xive_find_target_in_mask()
        - Linux 4.13.11
      * Touchpad not detected - Lenovo ideapad 320-15IKB (LP: #1723736)
        - Input: elan_i2c - add ELAN0611 to the ACPI table
      * Artful update to 4.13.10 stable release (LP: #1731951)
        - staging: bcm2835-audio: Fix memory corruption
        - USB: devio: Revert "USB: devio: Don't corrupt user memory"
        - USB: core: fix out-of-bounds access bug in usb_get_bos_descriptor()
        - USB: serial: metro-usb: add MS7820 device id
        - usb: cdc_acm: Add quirk for Elatec TWN3
        - usb: quirks: add quirk for WORLDE MINI MIDI keyboard
        - usb: hub: Allow reset retry for USB2 devices on connect bounce
        - ALSA: usb-audio: Add native DSD support for Pro-Ject Pre Box S2 Digital
        - can: gs_usb: fix busy loop if no more TX context is available
        - scsi: qla2xxx: Fix uninitialized work element
        - nbd: don't set the device size until we're connected
        - s390/cputime: fix guest/irq/softirq times after CPU hotplug
        - parisc: Fix double-word compare and exchange in LWS code on 32-bit kernels
        - parisc: Fix detection of nonsynchronous cr16 cycle counters
        - iio: dummy: events: Add missing break
        - usb: musb: sunxi: Explicitly release USB PHY on exit
        - USB: musb: fix session-bit runtime-PM quirk
        - USB: musb: fix late external abort on suspend
        - usb: musb: musb_cppi41: Fix the address of teardown and autoreq registers
        - usb: musb: musb_cppi41: Fix cppi41_set_dma_mode() for DA8xx
        - usb: musb: musb_cppi41: Configure the number of channels for DA8xx
        - usb: musb: Check for host-mode using is_host_active() on reset interrupt
        - xhci: Identify USB 3.1 capable hosts by their port protocol capability
        - xhci: Cleanup current_cmd in xhci_cleanup_command_queue()
        - usb: xhci: Reset halted endpoint if trb is noop
        - usb: xhci: Handle error condition in xhci_stop_device()
        - can: esd_usb2: Fix can_dlc value for received RTR, frames
        - can: af_can: can_pernet_init(): add missing error handling for kzalloc
          returning NULL
        - can: flexcan: fix state transition regression
        - can: flexcan: rename legacy error state quirk
        - can: flexcan: implement error passive state quirk
        - can: flexcan: fix i.MX6 state transition issue
        - can: flexcan: fix i.MX28 state transition issue
        - can: flexcan: fix p1010 state transition issue
        - KEYS: encrypted: fix dereference of NULL user_key_payload
        - mmc: sdhci-pci: Fix default d3_retune for Intel host controllers
        - drm/i915: Use bdw_ddi_translations_fdi for Broadwell
        - drm/nouveau/kms/nv50: fix oops during DP IRQ handling on non-MST boards
        - drm/nouveau/bsp/g92: disable by default
        - drm/nouveau/mmu: flush tlbs before deleting page tables
        - media: s5p-cec: add NACK detection support
        - media: cec: Respond to unregistered initiators, when applicable
        - media: dvb: i2c transfers over usb cannot be done from stack
        - tracing/samples: Fix creation and deletion of simple_thread_fn creation
        - ALSA: seq: Enable 'use' locking in all configurations
        - ALSA: hda: Remove superfluous '-' added by printk conversion
        - ALSA: hda: Abort capability probe at invalid register read
        - i2c: ismt: Separate I2C block read from SMBus block read
        - i2c: piix4: Fix SMBus port selection for AMD Family 17h chips
        - Revert "tools/power turbostat: stop migrating, unless '-m'"
        - Input: stmfts - fix setting ABS_MT_POSITION_* maximum size
        - brcmfmac: Add check for short event packets
        - brcmsmac: make some local variables 'static const' to reduce stack size
        - ARM: dts: sun6i: Fix endpoint IDs in second display pipeline
        - bus: mbus: fix window size calculation for 4GB windows
        - clockevents/drivers/cs5535: Improve resilience to spurious interrupts
        - rtlwifi: rtl8821ae: Fix connection lost problem
        - x86/microcode/intel: Disable late loading on model 79
        - lib/digsig: fix dereference of NULL user_key_payload
        - fscrypt: fix dereference of NULL user_key_payload
        - ecryptfs: fix dereference of NULL user_key_payload
        - KEYS: Fix race between updating and finding a negative key
        - FS-Cache: fix dereference of NULL user_key_payload
        - KEYS: don't let add_key() update an uninstantiated key
        - pkcs7: Prevent NULL pointer dereference, since sinfo is not always set.
        - arm64: dts: rockchip: correct vqmmc voltage for rk3399 platforms
        - ALSA: hda - Fix incorrect TLV callback check introduced during set_fs()
          removal
        - iomap_dio_rw: Allocate AIO completion queue before submitting dio
        - xfs: don't unconditionally clear the reflink flag on zero-block files
        - xfs: evict CoW fork extents when performing finsert/fcollapse
        - fs/xfs: Use %pS printk format for direct addresses
        - xfs: report zeroed or not correctly in xfs_zero_range()
        - xfs: update i_size after unwritten conversion in dio completion
        - xfs: perag initialization should only touch m_ag_max_usable for AG 0
        - xfs: Capture state of the right inode in xfs_iflush_done
        - xfs: always swap the cow forks when swapping extents
        - xfs: handle racy AIO in xfs_reflink_end_cow
        - xfs: Don't log uninitialised fields in inode structures
        - xfs: move more RT specific code under CONFIG_XFS_RT
        - xfs: don't change inode mode if ACL update fails
        - xfs: reinit btree pointer on attr tree inactivation walk
        - xfs: handle error if xfs_btree_get_bufs fails
        - xfs: cancel dirty pages on invalidation
        - xfs: trim writepage mapping to within eof
        - xfs: move two more RT specific functions into CONFIG_XFS_RT
        - Linux 4.13.10
      * Artful update to 4.13.9 stable release (LP: #1731926)
        - perf pmu: Unbreak perf record for arm/arm64 with events with explicit PMU
        - mm: page_vma_mapped: ensure pmd is loaded with READ_ONCE outside of lock
        - HID: hid-elecom: extend to fix descriptor for HUGE trackball
        - Drivers: hv: vmbus: Fix rescind handling issues
        - Drivers: hv: vmbus: Fix bugs in rescind handling
        - vmbus: simplify hv_ringbuffer_read
        - vmbus: refactor hv_signal_on_read
        - vmbus: eliminate duplicate cached index
        - vmbus: more host signalling avoidance
        - Linux 4.13.9
    
     -- Stefan Bader <email address hidden>  Mon, 04 Dec 2017 14:06:40 +0100
  • linux-raspi2 (4.13.0-1007.7) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1007.7 -proposed tracker (LP: #1733536)
    
      * Dropped "staging: bcm2835-audio: Fix memory corruption" from the
        raspi2 tree in favour of the upstream change with the same name
        but slightly different content (LP: #1731951).
    
      [ Ubuntu: 4.13.0-18.21 ]
    
      * linux: 4.13.0-18.21 -proposed tracker (LP: #1733530)
      * NVMe timeout is too short (LP: #1729119)
        - nvme: update timeout module parameter type
      * CPU call trace on AMD Raven Ridge after S3 (LP: #1732894)
        - x86/mce/AMD: Allow any CPU to initialize the smca_banks array
      * Set PANIC_TIMEOUT=10 on Power Systems (LP: #1730660)
        - [Config]: Set PANIC_TIMEOUT=10 on ppc64el
      * Cannot pair BLE remote devices when using combo BT SoC (LP: #1731467)
        - Bluetooth: increase timeout for le auto connections
      * enable CONFIG_SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH easily confuse users
        (LP: #1732627)
        - [Config] CONFIG_SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH=n
      * Plantronics P610 does not support sample rate reading (LP: #1719853)
        - ALSA: usb-audio: Add sample rate quirk for Plantronics P610
      * Allow drivers to use Relaxed Ordering on capable root ports (LP: #1721365)
        - Revert commit 1a8b6d76dc5b ("net:add one common config...")
        - net: ixgbe: Use new PCI_DEV_FLAGS_NO_RELAXED_ORDERING flag
      * support GICv3 ITS save/restore & migration (LP: #1710019)
        - KVM: arm/arm64: vgic-its: Fix return value for device table restore
      * Device hotplugging with MPT SAS cannot work for VMWare ESXi (LP: #1730852)
        - scsi: mptsas: Fixup device hotplug for VMWare ESXi
      * Artful update to 4.13.13 stable release (LP: #1732726)
        - netfilter: nat: Revert "netfilter: nat: convert nat bysrc hash to
          rhashtable"
        - netfilter: nft_set_hash: disable fast_ops for 2-len keys
        - workqueue: Fix NULL pointer dereference
        - crypto: ccm - preserve the IV buffer
        - crypto: x86/sha1-mb - fix panic due to unaligned access
        - crypto: x86/sha256-mb - fix panic due to unaligned access
        - KEYS: fix NULL pointer dereference during ASN.1 parsing [ver #2]
        - ACPI / PM: Blacklist Low Power S0 Idle _DSM for Dell XPS13 9360
        - ARM: 8720/1: ensure dump_instr() checks addr_limit
        - ALSA: timer: Limit max instances per timer
        - ALSA: usb-audio: support new Amanero Combo384 firmware version
        - ALSA: hda - fix headset mic problem for Dell machines with alc274
        - ALSA: seq: Fix OSS sysex delivery in OSS emulation
        - ALSA: seq: Avoid invalid lockdep class warning
        - MIPS: Fix CM region target definitions
        - MIPS: BMIPS: Fix missing cbr address
        - MIPS: AR7: Defer registration of GPIO
        - MIPS: AR7: Ensure that serial ports are properly set up
        - KVM: PPC: Book3S HV: Fix exclusion between HPT resizing and other HPT
          updates
        - Input: elan_i2c - add ELAN060C to the ACPI table
        - rbd: use GFP_NOIO for parent stat and data requests
        - drm/vmwgfx: Fix Ubuntu 17.10 Wayland black screen issue
        - Revert "x86: CPU: Fix up "cpu MHz" in /proc/cpuinfo"
        - can: sun4i: handle overrun in RX FIFO
        - can: peak: Add support for new PCIe/M2 CAN FD interfaces
        - can: ifi: Fix transmitter delay calculation
        - can: c_can: don't indicate triple sampling support for D_CAN
        - x86/debug: Handle warnings before the notifier chain, to fix KGDB crash
        - x86/smpboot: Make optimization of delay calibration work correctly
        - x86/oprofile/ppro: Do not use __this_cpu*() in preemptible context
        - Linux 4.13.13
      * ELANTECH Touchpad is not detected in 'Lenovo Ideapad 320 14AST' after fresh
        install (LP: #1727544)
        - Input: elan_i2c - add ELAN060C to the ACPI table
      * Power8 Nest PMU Instrumentation support (LP: #1481347)
        - powerpc/powernv: Add IMC OPAL APIs
        - powerpc/powernv: Detect and create IMC device
        - powerpc/perf: Add nest IMC PMU support
        - powerpc/perf: Add core IMC PMU support
        - powerpc/perf: Add thread IMC PMU support
        - powerpc/perf: Fix double unlock in imc_common_cpuhp_mem_free()
        - powerpc/perf/imc: Fix nest events on muti socket system
        - powerpc/powernv: Fix build error in opal-imc.c when NUMA=n
        - powerpc/perf: Fix usage of nest_imc_refc
        - powerpc/perf: Fix for core/nest imc call trace on cpuhotplug
        - powerpc/perf: Add ___GFP_NOWARN flag to alloc_pages_node()
        - powerpc/perf: Fix IMC initialization crash
      * Artful update to 4.13.12 stable release (LP: #1731971)
        - ALSA: timer: Add missing mutex lock for compat ioctls
        - ALSA: seq: Fix nested rwsem annotation for lockdep splat
        - cifs: check MaxPathNameComponentLength != 0 before using it
        - KEYS: return full count in keyring_read() if buffer is too small
        - KEYS: trusted: fix writing past end of buffer in trusted_read()
        - KEYS: fix out-of-bounds read during ASN.1 parsing
        - ASoC: adau17x1: Workaround for noise bug in ADC
        - virtio_blk: Fix an SG_IO regression
        - arm64: ensure __dump_instr() checks addr_limit
        - KVM: arm64: its: Fix missing dynamic allocation check in scan_its_table
        - arm/arm64: KVM: set right LR register value for 32 bit guest when inject
          abort
        - arm/arm64: kvm: Disable branch profiling in HYP code
        - ARM: dts: mvebu: pl310-cache disable double-linefill
        - ARM: 8715/1: add a private asm/unaligned.h
        - drm/amdgpu: return -ENOENT from uvd 6.0 early init for harvesting
        - drm/amdgpu: allow harvesting check for Polaris VCE
        - userfaultfd: hugetlbfs: prevent UFFDIO_COPY to fill beyond the end of i_size
        - ocfs2: fstrim: Fix start offset of first cluster group during fstrim
        - fs/hugetlbfs/inode.c: fix hwpoison reserve accounting
        - mm, swap: fix race between swap count continuation operations
        - drm/i915: Do not rely on wm preservation for ILK watermarks
        - drm/i915/edp: read edp display control registers unconditionally
        - Revert "powerpc64/elfv1: Only dereference function descriptor for non-text
          symbols"
        - MIPS: bpf: Fix a typo in build_one_insn()
        - MIPS: smp-cmp: Use right include for task_struct
        - MIPS: microMIPS: Fix incorrect mask in insn_table_MM
        - MIPS: SMP: Fix deadlock & online race
        - Revert "x86: do not use cpufreq_quick_get() for /proc/cpuinfo "cpu MHz""
        - x86: CPU: Fix up "cpu MHz" in /proc/cpuinfo
        - powerpc/kprobes: Dereference function pointers only if the address does not
          belong to kernel text
        - futex: Fix more put_pi_state() vs. exit_pi_state_list() races
        - perf/cgroup: Fix perf cgroup hierarchy support
        - x86/mcelog: Get rid of RCU remnants
        - irqchip/irq-mvebu-gicp: Add missing spin_lock init
        - Linux 4.13.12
      * Artful update to 4.13.11 stable release (LP: #1731961)
        - workqueue: replace pool->manager_arb mutex with a flag
        - nvme-fc: fix iowait hang
        - ALSA: hda/realtek - Add support for ALC236/ALC3204
        - ALSA: hda - fix headset mic problem for Dell machines with alc236
        - ceph: unlock dangling spinlock in try_flush_caps()
        - Fix tracing sample code warning.
        - KVM: PPC: Fix oops when checking KVM_CAP_PPC_HTM
        - KVM: PPC: Book3S HV: POWER9 more doorbell fixes
        - KVM: PPC: Book3S: Protect kvmppc_gpa_to_ua() with SRCU
        - s390/kvm: fix detection of guest machine checks
        - nbd: handle interrupted sendmsg with a sndtimeo set
        - spi: uapi: spidev: add missing ioctl header
        - spi: a3700: Return correct value on timeout detection
        - spi: bcm-qspi: Fix use after free in bcm_qspi_probe() in error path
        - spi: armada-3700: Fix failing commands with quad-SPI
        - ovl: add NULL check in ovl_alloc_inode
        - ovl: fix EIO from lookup of non-indexed upper
        - ovl: handle ENOENT on index lookup
        - ovl: do not cleanup unsupported index entries
        - fuse: fix READDIRPLUS skipping an entry
        - xen/gntdev: avoid out of bounds access in case of partial gntdev_mmap()
        - xen: fix booting ballooned down hvm guest
        - cifs: Select all required crypto modules
        - CIFS: Fix NULL pointer deref on SMB2_tcon() failure
        - Input: elan_i2c - add ELAN0611 to the ACPI table
        - Input: gtco - fix potential out-of-bound access
        - Fix encryption labels and lengths for SMB3.1.1
        - SMB3: Validate negotiate request must always be signed
        - assoc_array: Fix a buggy node-splitting case
        - scsi: zfcp: fix erp_action use-before-initialize in REC action trace
        - scsi: aacraid: Fix controller initialization failure
        - scsi: qla2xxx: Initialize Work element before requesting IRQs
        - scsi: sg: Re-fix off by one in sg_fill_request_table()
        - x86/cpu/AMD: Apply the Erratum 688 fix when the BIOS doesn't
        - drm/amd/powerplay: fix uninitialized variable
        - drm/i915/perf: fix perf enable/disable ioctls with 32bits userspace
        - can: sun4i: fix loopback mode
        - can: kvaser_usb: Correct return value in printout
        - can: kvaser_usb: Ignore CMD_FLUSH_QUEUE_REPLY messages
        - cfg80211: fix connect/disconnect edge cases
        - ipsec: Fix aborted xfrm policy dump crash
        - regulator: fan53555: fix I2C device ids
        - powerpc/xive: Fix the size of the cpumask used in xive_find_target_in_mask()
        - Linux 4.13.11
      * Touchpad not detected - Lenovo ideapad 320-15IKB (LP: #1723736)
        - Input: elan_i2c - add ELAN0611 to the ACPI table
      * Artful update to 4.13.10 stable release (LP: #1731951)
        - staging: bcm2835-audio: Fix memory corruption
        - USB: devio: Revert "USB: devio: Don't corrupt user memory"
        - USB: core: fix out-of-bounds access bug in usb_get_bos_descriptor()
        - USB: serial: metro-usb: add MS7820 device id
        - usb: cdc_acm: Add quirk for Elatec TWN3
        - usb: quirks: add quirk for WORLDE MINI MIDI keyboard
        - usb: hub: Allow reset retry for USB2 devices on connect bounce
        - ALSA: usb-audio: Add native DSD support for Pro-Ject Pre Box S2 Digital
        - can: gs_usb: fix busy loop if no more TX context is available
        - scsi: qla2xxx: Fix uninitialized work element
        - nbd: don't set the device size until we're connected
        - s390/cputime: fix guest/irq/softirq times after CPU hotplug
        - parisc: Fix double-word compare and exchange in LWS code on 32-bit kernels
        - parisc: Fix detection of nonsynchronous cr16 cycle counters
        - iio: dummy: events: Add missing break
        - usb: musb: sunxi: Explicitly release USB PHY on exit
        - USB: musb: fix session-bit runtime-PM quirk
        - USB: musb: fix late external abort on suspend
        - usb: musb: musb_cppi41: Fix the address of teardown and autoreq registers
        - usb: musb: musb_cppi41: Fix cppi41_set_dma_mode() for DA8xx
        - usb: musb: musb_cppi41: Configure the number of channels for DA8xx
        - usb: musb: Check for host-mode using is_host_active() on reset interrupt
        - xhci: Identify USB 3.1 capable hosts by their port protocol capability
        - xhci: Cleanup current_cmd in xhci_cleanup_command_queue()
        - usb: xhci: Reset halted endpoint if trb is noop
        - usb: xhci: Handle error condition in xhci_stop_device()
        - can: esd_usb2: Fix can_dlc value for received RTR, frames
        - can: af_can: can_pernet_init(): add missing error handling for kzalloc
          returning NULL
        - can: flexcan: fix state transition regression
        - can: flexcan: rename legacy error state quirk
        - can: flexcan: implement error passive state quirk
        - can: flexcan: fix i.MX6 state transition issue
        - can: flexcan: fix i.MX28 state transition issue
        - can: flexcan: fix p1010 state transition issue
        - KEYS: encrypted: fix dereference of NULL user_key_payload
        - mmc: sdhci-pci: Fix default d3_retune for Intel host controllers
        - drm/i915: Use bdw_ddi_translations_fdi for Broadwell
        - drm/nouveau/kms/nv50: fix oops during DP IRQ handling on non-MST boards
        - drm/nouveau/bsp/g92: disable by default
        - drm/nouveau/mmu: flush tlbs before deleting page tables
        - media: s5p-cec: add NACK detection support
        - media: cec: Respond to unregistered initiators, when applicable
        - media: dvb: i2c transfers over usb cannot be done from stack
        - tracing/samples: Fix creation and deletion of simple_thread_fn creation
        - ALSA: seq: Enable 'use' locking in all configurations
        - ALSA: hda: Remove superfluous '-' added by printk conversion
        - ALSA: hda: Abort capability probe at invalid register read
        - i2c: ismt: Separate I2C block read from SMBus block read
        - i2c: piix4: Fix SMBus port selection for AMD Family 17h chips
        - Revert "tools/power turbostat: stop migrating, unless '-m'"
        - Input: stmfts - fix setting ABS_MT_POSITION_* maximum size
        - brcmfmac: Add check for short event packets
        - brcmsmac: make some local variables 'static const' to reduce stack size
        - ARM: dts: sun6i: Fix endpoint IDs in second display pipeline
        - bus: mbus: fix window size calculation for 4GB windows
        - clockevents/drivers/cs5535: Improve resilience to spurious interrupts
        - rtlwifi: rtl8821ae: Fix connection lost problem
        - x86/microcode/intel: Disable late loading on model 79
        - lib/digsig: fix dereference of NULL user_key_payload
        - fscrypt: fix dereference of NULL user_key_payload
        - ecryptfs: fix dereference of NULL user_key_payload
        - KEYS: Fix race between updating and finding a negative key
        - FS-Cache: fix dereference of NULL user_key_payload
        - KEYS: don't let add_key() update an uninstantiated key
        - pkcs7: Prevent NULL pointer dereference, since sinfo is not always set.
        - arm64: dts: rockchip: correct vqmmc voltage for rk3399 platforms
        - ALSA: hda - Fix incorrect TLV callback check introduced during set_fs()
          removal
        - iomap_dio_rw: Allocate AIO completion queue before submitting dio
        - xfs: don't unconditionally clear the reflink flag on zero-block files
        - xfs: evict CoW fork extents when performing finsert/fcollapse
        - fs/xfs: Use %pS printk format for direct addresses
        - xfs: report zeroed or not correctly in xfs_zero_range()
        - xfs: update i_size after unwritten conversion in dio completion
        - xfs: perag initialization should only touch m_ag_max_usable for AG 0
        - xfs: Capture state of the right inode in xfs_iflush_done
        - xfs: always swap the cow forks when swapping extents
        - xfs: handle racy AIO in xfs_reflink_end_cow
        - xfs: Don't log uninitialised fields in inode structures
        - xfs: move more RT specific code under CONFIG_XFS_RT
        - xfs: don't change inode mode if ACL update fails
        - xfs: reinit btree pointer on attr tree inactivation walk
        - xfs: handle error if xfs_btree_get_bufs fails
        - xfs: cancel dirty pages on invalidation
        - xfs: trim writepage mapping to within eof
        - xfs: move two more RT specific functions into CONFIG_XFS_RT
        - Linux 4.13.10
      * Artful update to 4.13.9 stable release (LP: #1731926)
        - perf pmu: Unbreak perf record for arm/arm64 with events with explicit PMU
        - mm: page_vma_mapped: ensure pmd is loaded with READ_ONCE outside of lock
        - HID: hid-elecom: extend to fix descriptor for HUGE trackball
        - Drivers: hv: vmbus: Fix rescind handling issues
        - Drivers: hv: vmbus: Fix bugs in rescind handling
        - vmbus: simplify hv_ringbuffer_read
        - vmbus: refactor hv_signal_on_read
        - vmbus: eliminate duplicate cached index
        - vmbus: more host signalling avoidance
        - Linux 4.13.9
    
     -- Stefan Bader <email address hidden>  Wed, 22 Nov 2017 10:25:10 +0100
  • linux-raspi2 (4.13.0-1006.6) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1006.6 -proposed tracker (LP: #1730611)
    
      * Artful update to v4.13.5 stable release (LP: #1721777)
        - [Config] Updating config after rebasing
    
      [ Ubuntu: 4.13.0-17.20 ]
    
      * linux: 4.13.0-17.20 -proposed tracker (LP: #1728927)
      * thunderx2 ahci errata workaround needs additional delays (LP: #1724117)
        - SAUCE: ahci: thunderx2: stop engine fix update
      * usb 3-1: 2:1: cannot get freq at ep 0x1 (LP: #1708499)
        - ALSA: usb-audio: Add sample rate quirk for Plantronics C310/C520-M
      * Plantronics Blackwire C520-M - Cannot get freq at ep 0x1, 0x81
        (LP: #1709282)
        - ALSA: usb-audio: Add sample rate quirk for Plantronics C310/C520-M
      * TSC_DEADLINE incorrectly disabled inside virtual guests (LP: #1724912)
        - x86/apic: Silence "FW_BUG TSC_DEADLINE disabled due to Errata" on CPUs
          without the feature
        - x86/apic: Silence "FW_BUG TSC_DEADLINE disabled due to Errata" on
          hypervisors
      * x86/apic: Update TSC_DEADLINE quirk with additional SKX stepping
        (LP: #1724612)
        - x86/apic: Update TSC_DEADLINE quirk with additional SKX stepping
      * [Artful] Add support for Dell/Wyse 3040 audio codec (LP: #1723916)
        - SAUCE: ASoC: rt5670: Add support for Wyse 3040
      * [Artful] Some Dell Monitors Doesn't Work Well with Dell/Wyse 3040
        (LP: #1723915)
        - SAUCE: drm/i915: Workaround for DP DPMS D3 on Dell monitor
      * [Artful] Support headset mode for DELL WYSE (LP: #1723913)
        - SAUCE: ALSA: hda/realtek - Add support headset mode for DELL WYSE
      * Touchpad and TrackPoint Dose Not Work on Lenovo X1C6 and X280 (LP: #1723986)
        - SAUCE: Input: synaptics-rmi4 - RMI4 can also use SMBUS version 3
        - SAUCE: Input: synaptics - Lenovo X1 Carbon 5 should use SMBUS/RMI
        - SAUCE: Input: synaptics - add Intertouch support on X1 Carbon 6th and X280
      * Artful update to v4.13.8 stable release (LP: #1724669)
        - USB: dummy-hcd: Fix deadlock caused by disconnect detection
        - MIPS: math-emu: Remove pr_err() calls from fpu_emu()
        - MIPS: bpf: Fix uninitialised target compiler error
        - mei: always use domain runtime pm callbacks.
        - dmaengine: edma: Align the memcpy acnt array size with the transfer
        - dmaengine: ti-dma-crossbar: Fix possible race condition with dma_inuse
        - NFS: Fix uninitialized rpc_wait_queue
        - nfs/filelayout: fix oops when freeing filelayout segment
        - HID: usbhid: fix out-of-bounds bug
        - crypto: skcipher - Fix crash on zero-length input
        - crypto: shash - Fix zero-length shash ahash digest crash
        - KVM: MMU: always terminate page walks at level 1
        - KVM: nVMX: fix guest CR4 loading when emulating L2 to L1 exit
        - usb: renesas_usbhs: Fix DMAC sequence for receiving zero-length packet
        - pinctrl/amd: Fix build dependency on pinmux code
        - iommu/amd: Finish TLB flush in amd_iommu_unmap()
        - device property: Track owner device of device property
        - Revert "vmalloc: back off when the current task is killed"
        - fs/mpage.c: fix mpage_writepage() for pages with buffers
        - ALSA: usb-audio: Kill stray URB at exiting
        - ALSA: seq: Fix use-after-free at creating a port
        - ALSA: seq: Fix copy_from_user() call inside lock
        - ALSA: caiaq: Fix stray URB at probe error path
        - ALSA: line6: Fix NULL dereference at podhd_disconnect()
        - ALSA: line6: Fix missing initialization before error path
        - ALSA: line6: Fix leftover URB at error-path during probe
        - drm/atomic: Unref duplicated drm_atomic_state in drm_atomic_helper_resume()
        - drm/i915/edp: Get the Panel Power Off timestamp after panel is off
        - drm/i915: Read timings from the correct transcoder in intel_crtc_mode_get()
        - drm/i915/bios: parse DDI ports also for CHV for HDMI DDC pin and DP AUX
          channel
        - drm/i915: Use crtc_state_is_legacy_gamma in intel_color_check
        - usb: gadget: configfs: Fix memory leak of interface directory data
        - usb: gadget: composite: Fix use-after-free in
          usb_composite_overwrite_options
        - PCI: aardvark: Move to struct pci_host_bridge IRQ mapping functions
        - Revert "PCI: tegra: Do not allocate MSI target memory"
        - direct-io: Prevent NULL pointer access in submit_page_section
        - fix unbalanced page refcounting in bio_map_user_iov
        - more bio_map_user_iov() leak fixes
        - bio_copy_user_iov(): don't ignore ->iov_offset
        - perf script: Add missing separator for "-F ip,brstack" (and brstackoff)
        - genirq/cpuhotplug: Enforce affinity setting on startup of managed irqs
        - genirq/cpuhotplug: Add sanity check for effective affinity mask
        - USB: serial: ftdi_sio: add id for Cypress WICED dev board
        - USB: serial: cp210x: fix partnum regression
        - USB: serial: cp210x: add support for ELV TFD500
        - USB: serial: option: add support for TP-Link LTE module
        - USB: serial: qcserial: add Dell DW5818, DW5819
        - USB: serial: console: fix use-after-free on disconnect
        - USB: serial: console: fix use-after-free after failed setup
        - RAS/CEC: Use the right length for "cec_disable"
        - x86/microcode: Do the family check first
        - x86/alternatives: Fix alt_max_short macro to really be a max()
        - KVM: nVMX: update last_nonleaf_level when initializing nested EPT
        - Linux 4.13.8
      * Artful update to v4.13.7 stable release (LP: #1724668)
        - watchdog: Revert "iTCO_wdt: all versions count down twice"
        - Linux 4.13.7
      * libvirt - vnc port selection regression with newer kernels (LP: #1722702)
        - net: set tb->fast_sk_family
        - net: use inet6_rcv_saddr to compare sockets
        - inet: fix improper empty comparison
      * powerpc/64s: Add workaround for P9 vector CI load issue (LP: #1721070)
        - powerpc/mce: Move 64-bit machine check code into mce.c
        - powerpc/64s: Add workaround for P9 vector CI load issue
      * Artful update to v4.13.6 stable release (LP: #1723145)
        - imx-media-of: avoid uninitialized variable warning
        - usb: dwc3: ep0: fix DMA starvation by assigning req->trb on ep0
        - mlxsw: spectrum: Fix EEPROM access in case of SFP/SFP+
        - net: bonding: Fix transmit load balancing in balance-alb mode if specified
          by sysfs
        - openvswitch: Fix an error handling path in 'ovs_nla_init_match_and_action()'
        - mlxsw: spectrum: Prevent mirred-related crash on removal
        - net: bonding: fix tlb_dynamic_lb default value
        - net_sched: gen_estimator: fix scaling error in bytes/packets samples
        - net: sched: fix use-after-free in tcf_action_destroy and tcf_del_walker
        - sctp: potential read out of bounds in sctp_ulpevent_type_enabled()
        - tcp: update skb->skb_mstamp more carefully
        - bpf/verifier: reject BPF_ALU64|BPF_END
        - tcp: fix data delivery rate
        - udpv6: Fix the checksum computation when HW checksum does not apply
        - ip6_gre: skb_push ipv6hdr before packing the header in ip6gre_header
        - net: phy: Fix mask value write on gmii2rgmii converter speed register
        - ip6_tunnel: do not allow loading ip6_tunnel if ipv6 is disabled in cmdline
        - net/sched: cls_matchall: fix crash when used with classful qdisc
        - 8139too: revisit napi_complete_done() usage
        - bpf: do not disable/enable BH in bpf_map_free_id()
        - tcp: fastopen: fix on syn-data transmit failure
        - net: emac: Fix napi poll list corruption
        - net: ipv6: fix regression of no RTM_DELADDR sent after DAD failure
        - packet: hold bind lock when rebinding to fanout hook
        - bpf: one perf event close won't free bpf program attached by another perf
          event
        - net: change skb->mac_header when Generic XDP calls adjust_head
        - isdn/i4l: fetch the ppp_write buffer in one shot
        - net_sched: always reset qdisc backlog in qdisc_reset()
        - net: stmmac: Cocci spatch "of_table"
        - net: qcom/emac: specify the correct size when mapping a DMA buffer
        - vti: fix use after free in vti_tunnel_xmit/vti6_tnl_xmit
        - l2tp: fix race condition in l2tp_tunnel_delete
        - tun: bail out from tun_get_user() if the skb is empty
        - net: dsa: mv88e6xxx: Allow dsa and cpu ports in multiple vlans
        - net: dsa: Fix network device registration order
        - packet: in packet_do_bind, test fanout with bind_lock held
        - packet: only test po->has_vnet_hdr once in packet_snd
        - net: dsa: mv88e6xxx: lock mutex when freeing IRQs
        - net: Set sk_prot_creator when cloning sockets to the right proto
        - net/mlx5e: IPoIB, Fix access to invalid memory address
        - netlink: do not proceed if dump's start() errs
        - ip6_gre: ip6gre_tap device should keep dst
        - ip6_tunnel: update mtu properly for ARPHRD_ETHER tunnel device in tx path
        - IPv4: early demux can return an error code
        - tipc: use only positive error codes in messages
        - l2tp: fix l2tp_eth module loading
        - socket, bpf: fix possible use after free
        - net: rtnetlink: fix info leak in RTM_GETSTATS call
        - bpf: fix bpf_tail_call() x64 JIT
        - usb: gadget: core: fix ->udc_set_speed() logic
        - USB: gadgetfs: Fix crash caused by inadequate synchronization
        - USB: gadgetfs: fix copy_to_user while holding spinlock
        - usb: gadget: udc: atmel: set vbus irqflags explicitly
        - usb: gadget: udc: renesas_usb3: fix for no-data control transfer
        - usb: gadget: udc: renesas_usb3: fix Pn_RAMMAP.Pn_MPKT value
        - usb: gadget: udc: renesas_usb3: Fix return value of usb3_write_pipe()
        - usb-storage: unusual_devs entry to fix write-access regression for Seagate
          external drives
        - usb-storage: fix bogus hardware error messages for ATA pass-thru devices
        - usb: renesas_usbhs: fix the BCLR setting condition for non-DCP pipe
        - usb: renesas_usbhs: fix usbhsf_fifo_clear() for RX direction
        - ALSA: usb-audio: Check out-of-bounds access by corrupted buffer descriptor
        - usb: pci-quirks.c: Corrected timeout values used in handshake
        - USB: cdc-wdm: ignore -EPIPE from GetEncapsulatedResponse
        - USB: dummy-hcd: fix connection failures (wrong speed)
        - USB: dummy-hcd: fix infinite-loop resubmission bug
        - USB: dummy-hcd: Fix erroneous synchronization change
        - USB: devio: Prevent integer overflow in proc_do_submiturb()
        - USB: devio: Don't corrupt user memory
        - USB: g_mass_storage: Fix deadlock when driver is unbound
        - USB: uas: fix bug in handling of alternate settings
        - USB: core: harden cdc_parse_cdc_header
        - usb: Increase quirk delay for USB devices
        - USB: fix out-of-bounds in usb_set_configuration
        - usb: xhci: Free the right ring in xhci_add_endpoint()
        - xhci: fix finding correct bus_state structure for USB 3.1 hosts
        - xhci: fix wrong endpoint ESIT value shown in tracing
        - usb: host: xhci-plat: allow sysdev to inherit from ACPI
        - xhci: Fix sleeping with spin_lock_irq() held in ASmedia 1042A workaround
        - Revert "xhci: Limit USB2 port wake support for AMD Promontory hosts"
        - iio: adc: twl4030: Fix an error handling path in 'twl4030_madc_probe()'
        - iio: adc: twl4030: Disable the vusb3v1 rugulator in the error handling path
          of 'twl4030_madc_probe()'
        - iio: ad_sigma_delta: Implement a dedicated reset function
        - staging: iio: ad7192: Fix - use the dedicated reset function avoiding dma
          from stack.
        - iio: core: Return error for failed read_reg
        - IIO: BME280: Updates to Humidity readings need ctrl_reg write!
        - iio: trigger: stm32-timer: preset shouldn't be buffered
        - iio: trigger: stm32-timer: fix a corner case to write preset
        - iio: ad7793: Fix the serial interface reset
        - iio: adc: stm32: fix bad error check on max_channels
        - iio: adc: mcp320x: Fix readout of negative voltages
        - iio: adc: mcp320x: Fix oops on module unload
        - uwb: properly check kthread_run return value
        - uwb: ensure that endpoint is interrupt
        - staging: vchiq_2835_arm: Fix NULL ptr dereference in free_pagelist
        - ksm: fix unlocked iteration over vmas in cmp_and_merge_page()
        - mm, hugetlb, soft_offline: save compound page order before page migration
        - mm, oom_reaper: skip mm structs with mmu notifiers
        - mm: fix RODATA_TEST failure "rodata_test: test data was not read only"
        - mm: avoid marking swap cached page as lazyfree
        - mm: fix data corruption caused by lazyfree page
        - userfaultfd: non-cooperative: fix fork use after free
        - lib/ratelimit.c: use deferred printk() version
        - lsm: fix smack_inode_removexattr and xattr_getsecurity memleak
        - ALSA: compress: Remove unused variable
        - Revert "ALSA: echoaudio: purge contradictions between dimension matrix
          members and total number of members"
        - ALSA: usx2y: Suppress kernel warning at page allocation failures
        - powerpc/powernv: Increase memory block size to 1GB on radix
        - powerpc: Fix action argument for cpufeatures-based TLB flush
        - powerpc/64s: Use emergency stack for kernel TM Bad Thing program checks
        - powerpc/tm: Fix illegal TM state in signal handler
        - percpu: make this_cpu_generic_read() atomic w.r.t. interrupts
        - intel_th: pci: Add Lewisburg PCH support
        - driver core: platform: Don't read past the end of "driver_override" buffer
        - cgroup: Reinit cgroup_taskset structure before cgroup_migrate_execute()
          returns
        - Drivers: hv: fcopy: restore correct transfer length
        - vmbus: don't acquire the mutex in vmbus_hvsock_device_unregister()
        - stm class: Fix a use-after-free
        - auxdisplay: charlcd: properly restore atomic counter on error path
        - ftrace: Fix kmemleak in unregister_ftrace_graph
        - ovl: fix error value printed in ovl_lookup_index()
        - ovl: fix dput() of ERR_PTR in ovl_cleanup_index()
        - ovl: fix dentry leak in ovl_indexdir_cleanup()
        - ovl: fix missing unlock_rename() in ovl_do_copy_up()
        - ovl: fix regression caused by exclusive upper/work dir protection
        - arm64: dt marvell: Fix AP806 system controller size
        - arm64: Ensure the instruction emulation is ready for userspace
        - HID: rmi: Make sure the HID device is opened on resume
        - HID: i2c-hid: allocate hid buffers for real worst case
        - HID: wacom: leds: Don't try to control the EKR's read-only LEDs
        - HID: wacom: Properly report negative values from Intuos Pro 2 Bluetooth
        - HID: wacom: Correct coordinate system of touchring and pen twist
        - HID: wacom: generic: Send MSC_SERIAL and ABS_MISC when leaving prox
        - HID: wacom: generic: Clear ABS_MISC when tool leaves proximity
        - HID: wacom: Always increment hdev refcount within wacom_get_hdev_data
        - HID: wacom: bits shifted too much for 9th and 10th buttons
        - btrfs: avoid overflow when sector_t is 32 bit
        - Btrfs: fix overlap of fs_info::flags values
        - rocker: fix rocker_tlv_put_* functions for KASAN
        - netlink: fix nla_put_{u8,u16,u32} for KASAN
        - dm crypt: reject sector_size feature if device length is not aligned to it
        - dm ioctl: fix alignment of event number in the device list
        - dm crypt: fix memory leak in crypt_ctr_cipher_old()
        - KVM: PPC: Book3S: Fix server always zero from kvmppc_xive_get_xive()
        - kvm/x86: Avoid async PF preempting the kernel incorrectly
        - iwlwifi: mvm: use IWL_HCMD_NOCOPY for MCAST_FILTER_CMD
        - scsi: sd: Implement blacklist option for WRITE SAME w/ UNMAP
        - scsi: sd: Do not override max_sectors_kb sysfs setting
        - brcmfmac: add length check in brcmf_cfg80211_escan_handler()
        - brcmfmac: setup passive scan if requested by user-space
        - drm/i915: always update ELD connector type after get modes
        - drm/i915/bios: ignore HDMI on port A
        - bsg-lib: fix use-after-free under memory-pressure
        - nvme-pci: Use PCI bus address for data/queues in CMB
        - mmc: core: add driver strength selection when selecting hs400es
        - nl80211: Define policy for packet pattern attributes
        - clk: samsung: exynos4: Enable VPLL and EPLL clocks for suspend/resume cycle
        - udp: perform source validation for mcast early demux
        - udp: fix bcast packet reception
        - base: arch_topology: fix section mismatch build warnings
        - Linux 4.13.6
      * Artful update to v4.13.5 stable release (LP: #1721777)
        - cifs: check rsp for NULL before dereferencing in SMB2_open
        - cifs: release cifs root_cred after exit_cifs
        - cifs: release auth_key.response for reconnect.
        - nvme-pci: fix host memory buffer allocation fallback
        - nvme-pci: use appropriate initial chunk size for HMB allocation
        - nvme-pci: propagate (some) errors from host memory buffer setup
        - dax: remove the pmem_dax_ops->flush abstraction
        - dm integrity: do not check integrity for failed read operations
        - mmc: block: Fix incorrectly initialized requests
        - fs/proc: Report eip/esp in /prod/PID/stat for coredumping
        - scsi: scsi_transport_fc: fix NULL pointer dereference in fc_bsg_job_timeout
        - SMB3: Add support for multidialect negotiate (SMB2.1 and later)
        - mac80211: fix VLAN handling with TXQs
        - mac80211_hwsim: Use proper TX power
        - mac80211: flush hw_roc_start work before cancelling the ROC
        - mac80211: fix deadlock in driver-managed RX BA session start
        - genirq: Make sparse_irq_lock protect what it should protect
        - genirq/msi: Fix populating multiple interrupts
        - genirq: Fix cpumask check in __irq_startup_managed()
        - KVM: PPC: Book3S HV: Hold kvm->lock around call to kvmppc_update_lpcr
        - KVM: PPC: Book3S HV: Fix bug causing host SLB to be restored incorrectly
        - KVM: PPC: Book3S HV: Don't access XIVE PIPR register using byte accesses
        - tracing: Fix trace_pipe behavior for instance traces
        - tracing: Erase irqsoff trace with empty write
        - tracing: Remove RCU work arounds from stack tracer
        - md/raid5: fix a race condition in stripe batch
        - md/raid5: preserve STRIPE_ON_UNPLUG_LIST in break_stripe_batch_list
        - scsi: scsi_transport_iscsi: fix the issue that iscsi_if_rx doesn't parse
          nlmsg properly
        - scsi: aacraid: Fix 2T+ drives on SmartIOC-2000
        - scsi: aacraid: Add a small delay after IOP reset
        - drm/exynos: Fix locking in the suspend/resume paths
        - drm/i915/gvt: Fix incorrect PCI BARs reporting
        - Revert "drm/i915/bxt: Disable device ready before shutdown command"
        - drm/amdgpu: revert tile table update for oland
        - drm/radeon: disable hard reset in hibernate for APUs
        - crypto: drbg - fix freeing of resources
        - crypto: talitos - Don't provide setkey for non hmac hashing algs.
        - crypto: talitos - fix sha224
        - crypto: talitos - fix hashing
        - security/keys: properly zero out sensitive key material in big_key
        - security/keys: rewrite all of big_key crypto
        - KEYS: fix writing past end of user-supplied buffer in keyring_read()
        - KEYS: prevent creating a different user's keyrings
        - KEYS: prevent KEYCTL_READ on negative key
        - libnvdimm, namespace: fix btt claim class crash
        - powerpc/eeh: Create PHB PEs after EEH is initialized
        - powerpc/pseries: Fix parent_dn reference leak in add_dt_node()
        - powerpc/tm: Flush TM only if CPU has TM feature
        - MIPS: Fix perf event init
        - s390/perf: fix bug when creating per-thread event
        - s390/mm: make pmdp_invalidate() do invalidation only
        - s390/mm: fix write access check in gup_huge_pmd()
        - PM: core: Fix device_pm_check_callbacks()
        - Revert "IB/ipoib: Update broadcast object if PKey value was changed in index
          0"
        - Fix SMB3.1.1 guest authentication to Samba
        - SMB3: Fix endian warning
        - SMB3: Warn user if trying to sign connection that authenticated as guest
        - SMB: Validate negotiate (to protect against downgrade) even if signing off
        - SMB3: handle new statx fields
        - SMB3: Don't ignore O_SYNC/O_DSYNC and O_DIRECT flags
        - vfs: Return -ENXIO for negative SEEK_HOLE / SEEK_DATA offsets
        - libceph: don't allow bidirectional swap of pg-upmap-items
        - nl80211: check for the required netlink attributes presence
        - brd: fix overflow in __brd_direct_access
        - gfs2: Fix debugfs glocks dump
        - bsg-lib: don't free job in bsg_prepare_job
        - iw_cxgb4: drop listen destroy replies if no ep found
        - iw_cxgb4: remove the stid on listen create failure
        - iw_cxgb4: put ep reference in pass_accept_req()
        - rcu: Allow for page faults in NMI handlers
        - mmc: sdhci-pci: Fix voltage switch for some Intel host controllers
        - extable: Consolidate *kernel_text_address() functions
        - extable: Enable RCU if it is not watching in kernel_text_address()
        - seccomp: fix the usage of get/put_seccomp_filter() in seccomp_get_filter()
        - arm64: Make sure SPsel is always set
        - arm64: fault: Route pte translation faults via do_translation_fault
        - KVM: VMX: extract __pi_post_block
        - KVM: VMX: avoid double list add with VT-d posted interrupts
        - KVM: VMX: simplify and fix vmx_vcpu_pi_load
        - KVM: nVMX: fix HOST_CR3/HOST_CR4 cache
        - kvm/x86: Handle async PF in RCU read-side critical sections
        - kvm: nVMX: Don't allow L2 to access the hardware CR8
        - xfs: validate bdev support for DAX inode flag
        - fix infoleak in waitid(2)
        - sched/sysctl: Check user input value of sysctl_sched_time_avg
        - irq/generic-chip: Don't replace domain's name
        - mtd: Fix partition alignment check on multi-erasesize devices
        - mtd: nand: atmel: fix buffer overflow in atmel_pmecc_user
        - etnaviv: fix submit error path
        - etnaviv: fix gem object list corruption
        - futex: Fix pi_state->owner serialization
        - md: fix a race condition for flush request handling
        - md: separate request handling
        - PCI: Fix race condition with driver_override
        - btrfs: fix NULL pointer dereference from free_reloc_roots()
        - btrfs: clear ordered flag on cleaning up ordered extents
        - btrfs: finish ordered extent cleaning if no progress is found
        - btrfs: propagate error to btrfs_cmp_data_prepare caller
        - btrfs: prevent to set invalid default subvolid
        - platform/x86: fujitsu-laptop: Don't oops when FUJ02E3 is not presnt
        - PM / OPP: Call notifier without holding opp_table->lock
        - x86/mm: Fix fault error path using unsafe vma pointer
        - x86/fpu: Don't let userspace set bogus xcomp_bv
        - KVM: VMX: do not change SN bit in vmx_update_pi_irte()
        - KVM: VMX: remove WARN_ON_ONCE in kvm_vcpu_trigger_posted_interrupt
        - KVM: VMX: use cmpxchg64
        - video: fbdev: aty: do not leak uninitialized padding in clk to userspace
        - Linux 4.13.5
        - [Config] Update configs for v4.13.5
    
      [ Ubuntu: 4.13.0-16.19 ]
    
      * 20170817 - ISO hangs on boot on qemu with splash screen enabled and qxl
        graphics driver (LP: #1711358)
        - qxl: fix framebuffer unpinning
      * [Bug] USB controller failed to respond on Denverton after loading
        intel_th_pci module (LP: #1715833)
        - SAUCE: PCI: Disable broken RTIT_BAR of Intel TH
      * CVE-2017-5123
        - waitid(): Add missing access_ok() checks
    
     -- Khalid Elmously <email address hidden>  Wed, 08 Nov 2017 12:45:39 -0500
  • linux-raspi2 (4.13.0-1005.5) artful; urgency=low
    
      [ Ubuntu: 4.13.0-16.17 ]
    
      * CVE-2017-5123
        - waitid(): Add missing access_ok() checks
    
    linux-raspi2 (4.13.0-1004.4) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1004.4 -proposed tracker (LP: #1721562)
    
      * Miscellaneous Ubuntu changes
        - [Config] update configs follwing rebase to Ubuntu-4.13.0-15.16
    
      [ Ubuntu: 4.13.0-15.16 ]
    
      * linux: 4.13.0-15.16 -proposed tracker (LP: #1721373)
      * Boot regression on POWER9 (LP: #1721391)
        - Revert "crypto/nx: Add P9 NX support for 842 compression engine"
        - Revert "crypto/nx: Add P9 NX specific error codes for 842 engine"
        - Revert "crypto/nx: Use kzalloc for workmem allocation"
        - Revert "crypto/nx: Add nx842_add_coprocs_list function"
        - Revert "crypto/nx: Create nx842_delete_coprocs function"
        - Revert "crypto/nx: Create nx842_configure_crb function"
        - Revert "crypto/nx: Rename nx842_powernv_function as icswx function"
        - Revert "UBUNTU: [Config] CONFIG_PPC_VAS=y"
        - Revert "powerpc/powernv/vas: Define copy/paste interfaces"
        - Revert "powerpc/powernv/vas: Define vas_tx_win_open()"
        - Revert "powerpc/powernv/vas: Define vas_win_close() interface"
        - Revert "powerpc/powernv/vas: Define vas_rx_win_open() interface"
        - Revert "powerpc/powernv/vas: Define helpers to alloc/free windows"
        - Revert "powerpc/powernv/vas: Define helpers to init window context"
        - Revert "powerpc/powernv/vas: Define helpers to access MMIO regions"
        - Revert "powerpc/powernv/vas: Define vas_init() and vas_exit()"
        - Revert "powerpc/powernv: Move GET_FIELD/SET_FIELD to vas.h"
        - Revert "powerpc/powernv/vas: Define macros, register fields and structures"
        - Revert "powerpc/powernv: Enable PCI peer-to-peer"
        - Revert "powerpc/powernv: Add support to set power-shifting-ratio"
        - Revert "powerpc/powernv: Add support for powercap framework"
        - Revert "powerpc/perf: Add nest IMC PMU support"
        - Revert "powerpc/powernv: Detect and create IMC device"
        - Revert "powerpc/powernv: Add IMC OPAL APIs"
      * smartpqi patches for Artful (LP: #1721381)
        - scsi: smartpqi: add pqi reset quiesce support
        - scsi: smartpqi: enhance BMIC cache flush
        - scsi: smartpqi: update pqi passthru ioctl
        - scsi: smartpqi: cleanup doorbell register usage.
        - scsi: smartpqi: update kexec and power down support
        - scsi: smartpqi: add in new controller ids
        - scsi: smartpqi: change driver version to 1.1.2-125
      * CONFIG_DEBUG_FS is not enabled by "make zfcpdump_defconfig" with Ubuntu
        17.10 (kernel 4.13) (LP: #1719290)
        - SAUCE: s390: update zfcpdump_defconfig
      * [Feature] PXE boot with Intel Omni-Path (LP: #1712031)
        - d-i: Add hfi1 to nic-modules
      * [Feature]CNL:New device IDs for CNL (LP: #1685729)
        - pinctrl: intel: Add Intel Cannon Lake PCH-H pin controller support
    
      [ Ubuntu: 4.13.0-14.15 ]
    
      * linux: 4.13.0-14.15 -proposed tracker (LP: #1721122)
      * [Artful] ltp rwtest - Unable to handle kernel paging request at virtual
        address (LP: #1721067)
        - arm64: mm: Use READ_ONCE when dereferencing pointer to pte table
      * linux 4.13.0-13.14 ADT test failure with linux 4.13.0-13.14 (LP: #1720779)
        - SAUCE: LSM stacking: check for invalid zero sized writes
      * Add installer support for Broadcom BCM573xx network drivers. (LP: #1720466)
        - d-i: Add bnxt_en to nic-modules.
      * Miscellaneous Ubuntu changes
        - [Packaging] Include arch/arm64/kernel/ftrace-mod.o in headers package
    
      [ Ubuntu: 4.13.0-13.14 ]
    
      * linux: 4.13.0-13.14 -proposed tracker (LP: #1720239)
      * [Bug] USB 3.1 Gen2 works as 5Gbps (LP: #1720045)
        - xhci: set missing SuperSpeedPlus Link Protocol bit in roothub descriptor
      * [Feature]Memory Bandwidth Monitoring(MBM) port to new Cache Quality
        Monitoring (CQM) (LP: #1591609)
        - x86/perf/cqm: Wipe out perf based cqm
        - x86/intel_rdt/cqm: Documentation for resctrl based RDT Monitoring
        - x86/intel_rdt: Introduce a common compile option for RDT
        - x86/intel_rdt: Change file names to accommodate RDT monitor code
        - x86/intel_rdt: Mark rdt_root and closid_alloc as static
        - x86/intel_rdt: Cleanup namespace to support RDT monitoring
        - x86/intel_rdt: Make rdt_resources_all more readable
        - x86/intel_rdt/cqm: Add RDT monitoring initialization
        - x86/intel_rdt/cqm: Add RMID (Resource monitoring ID) management
        - x86/intel_rdt: Simplify info and base file lists
        - x86/intel_rdt/cqm: Add info files for RDT monitoring
        - x86/intel_rdt: Prepare for RDT monitoring mkdir support
        - x86/intel_rdt/cqm: Add mkdir support for RDT monitoring
        - x86/intel_rdt: Change closid type from int to u32
        - x86/intel_rdt/cqm: Add tasks file support
        - x86/intel_rdt: Prepare to add RDT monitor cpus file support
        - x86/intel_rdt/cqm: Add cpus file support
        - x86/intel_rdt: Prepare for RDT monitor data support
        - x86/intel_rdt/cqm: Add mon_data
        - x86/intel_rdt: Separate the ctrl bits from rmdir
        - x86/intel_rdt/cqm: Add rmdir support
        - x86/intel_rdt/cqm: Add mount,umount support
        - x86/intel_rdt: Introduce rdt_enable_key for scheduling
        - x86/intel_rdt/cqm: Add sched_in support
        - x86/intel_rdt/cqm: Add CPU hotplug support
        - x86/intel_rdt/mbm: Basic counting of MBM events (total and local)
        - x86/intel_rdt/mbm: Add mbm counter initialization
        - x86/intel_rdt/mbm: Handle counter overflow
        - x86/intel_rdt: Show bitmask of shareable resource with other executing units
        - x86/intel_rdt/cqm: Clear the default RMID during hotcpu
        - x86/intel_rdt: Modify the intel_pqr_state for better performance
        - x86/intel_rdt/mbm: Fix MBM overflow handler during CPU hotplug
        - x86/intel_rdt/cqm: Improve limbo list processing
        - x86/intel_rdt: Remove redundant ternary operator on return
        - [Config] CONFIG_INTEL_RDT=y
      * [Feature] RDT: Disable most RDT features on Skylake server (LP: #1713619)
        - x86/intel_rdt: Move special case code for Haswell to a quirk function
        - x86/intel_rdt: Add command line options for resource director technology
        - x86/intel_rdt: Turn off most RDT features on Skylake
      * CVE-2017-1000252
        - KVM: VMX: Do not BUG() on out-of-bounds guest IRQ
      * POWER9: NX842 module changes (LP: #1718292)
        - crypto/nx: Rename nx842_powernv_function as icswx function
        - crypto/nx: Create nx842_configure_crb function
        - crypto/nx: Create nx842_delete_coprocs function
        - crypto/nx: Add nx842_add_coprocs_list function
        - crypto/nx: Use kzalloc for workmem allocation
        - crypto/nx: Add P9 NX specific error codes for 842 engine
        - crypto/nx: Add P9 NX support for 842 compression engine
      * [Ubuntu 17.10] POWER9 - Base - Integrate P9 VAS (Virtual Accelerator
        Switchboard) support in kernel (LP: #1718293)
        - powerpc/powernv: Add IMC OPAL APIs
        - powerpc/powernv: Detect and create IMC device
        - powerpc/perf: Add nest IMC PMU support
        - powerpc/powernv: Add support for powercap framework
        - powerpc/powernv: Add support to set power-shifting-ratio
        - powerpc/powernv: Enable PCI peer-to-peer
        - powerpc/powernv/vas: Define macros, register fields and structures
        - powerpc/powernv: Move GET_FIELD/SET_FIELD to vas.h
        - powerpc/powernv/vas: Define vas_init() and vas_exit()
        - powerpc/powernv/vas: Define helpers to access MMIO regions
        - powerpc/powernv/vas: Define helpers to init window context
        - powerpc/powernv/vas: Define helpers to alloc/free windows
        - powerpc/powernv/vas: Define vas_rx_win_open() interface
        - powerpc/powernv/vas: Define vas_win_close() interface
        - powerpc/powernv/vas: Define vas_tx_win_open()
        - powerpc/powernv/vas: Define copy/paste interfaces
        - [Config] CONFIG_PPC_VAS=y
      * Artful update to v4.13.4 stable release (LP: #1720154)
        - orangefs: Don't clear SGID when inheriting ACLs
        - <linux/uaccess.h>: Fix copy_in_user() declaration
        - IB/hfi1: Revert egress pkey check enforcement
        - IB/{qib, hfi1}: Avoid flow control testing for RDMA write operation
        - IB/mlx5: Fix cached MR allocation flow
        - srcu: Provide ordering for CPU not involved in grace period
        - smp/hotplug: Handle removal correctly in cpuhp_store_callbacks()
        - Input: xpad - validate USB endpoint type during probe
        - drm/amdgpu: read reg in each iterator of psp_wait_for loop
        - tty: improve tty_insert_flip_char() fast path
        - tty: improve tty_insert_flip_char() slow path
        - tty: fix __tty_insert_flip_char regression
        - pinctrl: samsung: Fix invalid register offset used for Exynos5433 external
          interrupts
        - pinctrl: samsung: Fix NULL pointer exception on external interrupts on
          S3C24xx
        - pinctrl/amd: save pin registers over suspend/resume
        - MIPS: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix quiet NaN propagation
        - MIPS: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix cases of both inputs zero
        - MIPS: math-emu: <MAX|MIN>.<D|S>: Fix cases of both inputs negative
        - MIPS: math-emu: <MAXA|MINA>.<D|S>: Fix cases of input values with opposite
          signs
        - MIPS: math-emu: <MAXA|MINA>.<D|S>: Fix cases of both infinite inputs
        - MIPS: math-emu: MINA.<D|S>: Fix some cases of infinity and zero inputs
        - MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix NaN propagation
        - MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix some cases of infinite inputs
        - MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix some cases of zero inputs
        - MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Clean up "maddf_flags" enumeration
        - MIPS: math-emu: <MADDF|MSUBF>.S: Fix accuracy (32-bit case)
        - MIPS: math-emu: <MADDF|MSUBF>.D: Fix accuracy (64-bit case)
        - docs: disable KASLR when debugging kernel
        - crypto: ccp - Fix XTS-AES-128 support on v5 CCPs
        - crypto: scompress - don't sleep with preemption disabled
        - crypto: caam/qi - fix typo in authenc alg driver name
        - crypto: caam/qi - properly set IV after {en,de}crypt
        - crypto: AF_ALG - remove SGL terminator indicator when chaining
        - regulator: cpcap: Fix standby mode
        - wcn36xx: Introduce mutual exclusion of fw configuration
        - ext4: in ext4_seek_{hole,data}, return -ENXIO for negative offsets
        - ext4: fix incorrect quotaoff if the quota feature is enabled
        - ext4: fix quota inconsistency during orphan cleanup for read-only mounts
        - cxl: Fix driver use count
        - powerpc/powernv/npu: Move tlb flush before launching ATSD
        - powerpc/pseries: Don't attempt to acquire drc during memory hot add for
          assigned lmbs
        - powerpc: Fix DAR reporting when alignment handler faults
        - block: Relax a check in blk_start_queue()
        - block: directly insert blk-mq request from blk_insert_cloned_request()
        - md/bitmap: copy correct data for bitmap super
        - md/bitmap: disable bitmap_resize for file-backed bitmaps.
        - skd: Avoid that module unloading triggers a use-after-free
        - skd: Submit requests to firmware before triggering the doorbell
        - scsi: zfcp: fix queuecommand for scsi_eh commands when DIX enabled
        - scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path
        - scsi: zfcp: fix capping of unsuccessful GPN_FT SAN response trace records
        - scsi: zfcp: fix passing fsf_req to SCSI trace on TMF to correlate with HBA
        - scsi: zfcp: fix missing trace records for early returns in TMF eh handlers
        - scsi: zfcp: fix payload with full FCP_RSP IU in SCSI trace records
        - scsi: zfcp: trace HBA FSF response by default on dismiss or timedout late
          response
        - scsi: zfcp: trace high part of "new" 64 bit SCSI LUN
        - scsi: qedi: off by one in qedi_get_cmd_from_tid()
        - scsi: aacraid: Fix command send race condition
        - scsi: megaraid_sas: mismatch of allocated MFI frame size and length exposed
          in MFI MPT pass through command
        - scsi: megaraid_sas: set minimum value of resetwaittime to be 1 secs
        - scsi: megaraid_sas: Check valid aen class range to avoid kernel panic
        - scsi: megaraid_sas: Return pended IOCTLs with cmd_status
          MFI_STAT_WRONG_STATE in case adapter is dead
        - scsi: storvsc: fix memory leak on ring buffer busy
        - scsi: sg: factor out sg_fill_request_table()
        - scsi: sg: fixup infoleak when using SG_GET_REQUEST_TABLE
        - scsi: qla2xxx: Update fw_started flags at qpair creation.
        - scsi: qla2xxx: Correction to vha->vref_count timeout
        - scsi: qla2xxx: Fix target multiqueue configuration
        - scsi: qla2xxx: Use BIT_6 to acquire FAWWPN from switch
        - scsi: qla2xxx: Use fabric name for Get Port Speed command
        - scsi: qla2xxx: Fix an integer overflow in sysfs code
        - mailbox: bcm-flexrm-mailbox: Fix mask used in CMPL_START_ADDR_VALUE()
        - ftrace: Fix debug preempt config name in stack_tracer_{en,dis}able
        - ftrace: Fix selftest goto location on error
        - ftrace: Fix memleak when unregistering dynamic ops when tracing disabled
        - tracing: Add barrier to trace_printk() buffer nesting modification
        - tracing: Fix clear of RECORDED_TGID flag when disabling trace event
        - tracing: Apply trace_clock changes to instance max buffer
        - ARC: Re-enable MMU upon Machine Check exception
        - PCI: shpchp: Enable bridge bus mastering if MSI is enabled
        - PCI: pciehp: Report power fault only once until we clear it
        - net/netfilter/nf_conntrack_core: Fix net_conntrack_lock()
        - media: v4l2-compat-ioctl32: Fix timespec conversion
        - media: Revert "[media] lirc_dev: remove superfluous get/put_device() calls"
        - media: venus: fix copy/paste error in return_buf_error
        - media: uvcvideo: Prevent heap overflow when accessing mapped controls
        - media: adv7180: add missing adv7180cp, adv7180st i2c device IDs
        - PM / devfreq: Fix memory leak when fail to register device
        - ALSA: seq: Cancel pending autoload work at unbinding device
        - bcache: initialize dirty stripes in flash_dev_run()
        - bcache: Fix leak of bdev reference
        - bcache: do not subtract sectors_to_gc for bypassed IO
        - bcache: correct cache_dirty_target in __update_writeback_rate()
        - bcache: Correct return value for sysfs attach errors
        - bcache: fix sequential large write IO bypass
        - bcache: fix for gc and write-back race
        - bcache: fix bch_hprint crash and improve output
        - sched/cpuset/pm: Fix cpuset vs. suspend-resume bugs
        - iwlwifi: add workaround to disable wide channels in 5GHz
        - Linux 4.13.4
      * [17.10 FEAT] KVM: CPU Model z14 (LP: #1719297)
        - KVM: s390: Support Configuration z/Architecture Mode
      * sata reset hangs w/ early cn99xx silicon (LP: #1719031)
        - SAUCE: ahci: thunderx2: Fix for errata that affects stop engine
        - SAUCE: ahci: thunderx2: stop engine fix update
      * PCI quirk required for SATA on early cn99xx silicon (LP: #1718760)
        - SAUCE: PCI: Vulcan: AHCI PCI bar fix for Broadcom Vulcan early silicon
      * Please make linux-libc-dev Provide: aufs-dev (LP: #1716091)
        - [Packaging] Add aufs-dev to the Provides: for linux-libc-dev
      * Miscellaneous Ubuntu changes
        - [Packaging] Use SRCPKGNAME rather than hard-coding the source package name
        - SAUCE: LSM stacking: procfs: add smack subdir to attrs
        - SAUCE: LSM stacking: LSM: manage credential security blobs
        - SAUCE: LSM stacking: LSM: Manage file security blobs
        - SAUCE: LSM stacking: LSM: manage task security blobs
        - SAUCE: LSM stacking: LSM: Infrastructure management of the remaining blobs
        - SAUCE: LSM stacking: LSM: general but not extreme module stacking
        - SAUCE: LSM stacking: LSM: Complete task_alloc hook
        - SAUCE: LSM stacking: fixup procsfs: add smack subdir to attrs
        - SAUCE: LSM stacking: fixup initialize task->security
        - SAUCE: LSM stacking: fixup: alloc_task_ctx is dead code
        - SAUCE: LSM stacking: add support for stacking getpeersec_stream
        - SAUCE: LSM stacking: add stacking support to apparmor network hooks
        - SAUCE: LSM stacking: fixup apparmor stacking enablement
        - SAUCE: LSM stacking: fixup stacking kconfig
        - SAUCE: LSM stacking: allow selecting multiple LSMs using kernel boot params
        - SAUCE: LSM stacking: provide prctl interface for setting context
        - SAUCE: LSM stacking: inherit current display LSM
        - SAUCE: LSM stacking: keep an index for each registered LSM
        - SAUCE: LSM stacking: verify display LSM
        - SAUCE: LSM stacking: provide a way to specify the default display lsm
        - SAUCE: LSM stacking: make sure LSM blob align on 64 bit boundaries
        - SAUCE: LSM stacking: add /proc/<pid>/attr/display_lsm
        - SAUCE: LSM stacking: add Kconfig to set default display LSM
        - SAUCE: LSM stacking: add configs for LSM stacking
        - [Config] Run updateconfigs after merging LSM stacking
    
      [ Ubuntu: 4.13.0-12.13 ]
    
      * linux: 4.13.0-12.13 -proposed tracker (LP: #1718980)
      * [Feature] SKX: Support crystall ridge / far / near memory indication in PEBS
        (LP: #1591813)
        - perf/x86: Move Nehalem PEBS code to flag
        - perf/x86: Fix data source decoding for Skylake
      * Upgrade to 4.13.0-11.12 in artful amd64 VM breaks display on wayland
        (LP: #1718679)
        - [Config] CONFIG_DRM_VBOXVIDEO=n
      * ipmmu-vmsa driver breaks arm64 boots (LP: #1718734)
        - [Config] Disable CONFIG_IPMMU_VMSA on arm64
      * Vlun resize request could fail with cxlflash driver (LP: #1713575)
        - scsi: cxlflash: Fix vlun resize failure in the shrink path
      * multipath -ll is not showing the disks which are actually multipath
        (LP: #1718397)
        - fs: aio: fix the increment of aio-nr and counting against aio-max-nr
      * [Feature] Crystal Ridge - BTT - Rework error clearing (LP: #1704350)
        - libnvdimm, btt: fix a missed NVDIMM_IO_ATOMIC case in the write path
        - libnvdimm, btt: refactor map entry operations with macros
        - libnvdimm, btt: ensure that flags were also unchanged during a map_read
        - libnvdimm, btt: cache sector_size in arena_info
        - libnvdimm: fix potential deadlock while clearing errors
        - libnvdimm, btt: rework error clearing
      * [Feature] Crystal Ridge - have 4k DAX faults use a common zero page
        (LP: #1704439)
        - mm: add vm_insert_mixed_mkwrite()
        - dax: relocate some dax functions
        - dax: use common 4k zero page for dax mmap reads
        - dax: remove DAX code from page_cache_tree_insert()
        - dax: move all DAX radix tree defs to fs/dax.c
      * [bug] 17.10: CDP test fail on platform of Purley-2S/4S/Neoncity,BDW-
        de/ep/ex, (LP: #1716843)
        - SAUCE: (no-up) x86/intel_rdt: Fix cdp info directory files issue
      * [featue] GPIO support for Denverton (LP: #1591829)
        - pinctrl: intel: Add Intel Denverton pin controller support
      * ETPS/2 Elantech Touchpad inconsistently detected (Gigabyte P57W laptop)
        (LP: #1594214)
        - Input: i8042 - add Gigabyte P57 to the keyboard reset table
      * autopkgtest profile fails to build on armhf (LP: #1717920)
        - [Packaging] autopkgtest -- disable d-i when dropping flavours
      * Artful update to v4.13.3 stable release (LP: #1718412)
        - Revert "net: use lib/percpu_counter API for fragmentation mem accounting"
        - Revert "net: fix percpu memory leaks"
        - gianfar: Fix Tx flow control deactivation
        - vhost_net: correctly check tx avail during rx busy polling
        - ip6_gre: update mtu properly in ip6gre_err
        - udp: drop head states only when all skb references are gone
        - ipv6: fix memory leak with multiple tables during netns destruction
        - ipv6: fix typo in fib6_net_exit()
        - sctp: fix missing wake ups in some situations
        - tcp: fix a request socket leak
        - ip_tunnel: fix setting ttl and tos value in collect_md mode
        - f2fs: let fill_super handle roll-forward errors
        - f2fs: check hot_data for roll-forward recovery
        - x86/fsgsbase/64: Fully initialize FS and GS state in start_thread_common
        - x86/fsgsbase/64: Report FSBASE and GSBASE correctly in core dumps
        - x86/switch_to/64: Rewrite FS/GS switching yet again to fix AMD CPUs
        - x86/mm, mm/hwpoison: Clear PRESENT bit for kernel 1:1 mappings of poison
          pages
        - ovl: fix false positive ESTALE on lookup
        - fuse: allow server to run in different pid_ns
        - idr: remove WARN_ON_ONCE() when trying to replace negative ID
        - libnvdimm, btt: check memory allocation failure
        - libnvdimm: fix integer overflow static analysis warning
        - xfs: write unmount record for ro mounts
        - xfs: toggle readonly state around xfs_log_mount_finish
        - xfs: Add infrastructure needed for error propagation during buffer IO
          failure
        - xfs: Properly retry failed inode items in case of error during buffer
          writeback
        - xfs: fix recovery failure when log record header wraps log end
        - xfs: always verify the log tail during recovery
        - xfs: fix log recovery corruption error due to tail overwrite
        - xfs: handle -EFSCORRUPTED during head/tail verification
        - xfs: stop searching for free slots in an inode chunk when there are none
        - xfs: evict all inodes involved with log redo item
        - xfs: check for race with xfs_reclaim_inode() in xfs_ifree_cluster()
        - xfs: open-code xfs_buf_item_dirty()
        - xfs: remove unnecessary dirty bli format check for ordered bufs
        - xfs: ordered buffer log items are never formatted
        - xfs: refactor buffer logging into buffer dirtying helper
        - xfs: don't log dirty ranges for ordered buffers
        - xfs: skip bmbt block ino validation during owner change
        - xfs: move bmbt owner change to last step of extent swap
        - xfs: disallow marking previously dirty buffers as ordered
        - xfs: relog dirty buffers during swapext bmbt owner change
        - xfs: disable per-inode DAX flag
        - xfs: fix incorrect log_flushed on fsync
        - xfs: don't set v3 xflags for v2 inodes
        - xfs: open code end_buffer_async_write in xfs_finish_page_writeback
        - xfs: use kmem_free to free return value of kmem_zalloc
        - md/raid1/10: reset bio allocated from mempool
        - md/raid5: release/flush io in raid5_do_work()
        - xfs: fix compiler warnings
        - Linux 4.13.3
      * Artful update to v4.13.2 stable release (LP: #1717549)
        - mtd: nand: make Samsung SLC NAND usable again
        - mtd: nand: hynix: add support for 20nm NAND chips
        - mtd: nand: mxc: Fix mxc_v1 ooblayout
        - mtd: nand: qcom: fix read failure without complete bootchain
        - mtd: nand: qcom: fix config error for BCH
        - nvme-fabrics: generate spec-compliant UUID NQNs
        - btrfs: resume qgroup rescan on rw remount
        - rtlwifi: btcoexist: Fix breakage of ant_sel for rtl8723be
        - rtlwifi: btcoexist: Fix antenna selection code
        - radix-tree: must check __radix_tree_preload() return value
        - brcmfmac: feature check for multi-scheduled scan fails on bcm4345 devices
        - kselftests: timers: leap-a-day: Change default arguments to help test runs
        - selftests: timers: Fix run_destructive_tests target to handle skipped tests
        - selftests/x86/fsgsbase: Test selectors 1, 2, and 3
        - mm: kvfree the swap cluster info if the swap file is unsatisfactory
        - mm/swapfile.c: fix swapon frontswap_map memory leak on error
        - mm/sparse.c: fix typo in online_mem_sections
        - mm/memory.c: fix mem_cgroup_oom_disable() call missing
        - KVM: SVM: Limit PFERR_NESTED_GUEST_PAGE error_code check to L1 guest
        - Revert "firmware: add sanity check on shutdown/suspend"
        - rt2800: fix TX_PIN_CFG setting for non MT7620 chips
        - ARM64: dts: marvell: armada-37xx: Fix GIC maintenance interrupt
        - ARM: 8692/1: mm: abort uaccess retries upon fatal signal
        - NFS: Fix 2 use after free issues in the I/O code
        - NFS: Sync the correct byte range during synchronous writes
        - NFSv4: Fix up mirror allocation
        - xfs: XFS_IS_REALTIME_INODE() should be false if no rt device present
        - Linux 4.13.2
      * [Bug] Thunderbolt-patches: Related to the way the key for secure connection
        is handled (LP: #1717430)
        - thunderbolt: Remove superfluous check
        - thunderbolt: Make key root-only accessible
        - thunderbolt: Allow clearing the key
      * [Bug] Thunderbolt-patches: Fixes the issue regarding the order of ACPI calls
        w.r.t. PCI enumeration (LP: #1717431)
        - ACPICA: Dispatch active GPEs at init time
        - ACPICA: Make it possible to enable runtime GPEs earlier
        - ACPI / scan: Enable GPEs before scanning the namespace
      * Miscellaneous Ubuntu changes
        - ubuntu: vbox -- update to 5.1.28-dfsg-1
        - [Config] CONFIG_PINCTRL_DENVERTON=m
        - [Config] CONFIG_I2C_XLP9XX=m
      * Miscellaneous upstream changes
        - Introduce v3 namespaced file capabilities
    
     -- Seth Forshee <email address hidden>  Tue, 10 Oct 2017 11:58:16 -0500
  • linux-raspi2 (4.13.0-1004.4) artful; urgency=low
    
      * linux-raspi2: 4.13.0-1004.4 -proposed tracker (LP: #1721562)
    
      * Miscellaneous Ubuntu changes
        - [Config] update configs follwing rebase to Ubuntu-4.13.0-15.16
    
      [ Ubuntu: 4.13.0-15.16 ]
    
      * linux: 4.13.0-15.16 -proposed tracker (LP: #1721373)
      * Boot regression on POWER9 (LP: #1721391)
        - Revert "crypto/nx: Add P9 NX support for 842 compression engine"
        - Revert "crypto/nx: Add P9 NX specific error codes for 842 engine"
        - Revert "crypto/nx: Use kzalloc for workmem allocation"
        - Revert "crypto/nx: Add nx842_add_coprocs_list function"
        - Revert "crypto/nx: Create nx842_delete_coprocs function"
        - Revert "crypto/nx: Create nx842_configure_crb function"
        - Revert "crypto/nx: Rename nx842_powernv_function as icswx function"
        - Revert "UBUNTU: [Config] CONFIG_PPC_VAS=y"
        - Revert "powerpc/powernv/vas: Define copy/paste interfaces"
        - Revert "powerpc/powernv/vas: Define vas_tx_win_open()"
        - Revert "powerpc/powernv/vas: Define vas_win_close() interface"
        - Revert "powerpc/powernv/vas: Define vas_rx_win_open() interface"
        - Revert "powerpc/powernv/vas: Define helpers to alloc/free windows"
        - Revert "powerpc/powernv/vas: Define helpers to init window context"
        - Revert "powerpc/powernv/vas: Define helpers to access MMIO regions"
        - Revert "powerpc/powernv/vas: Define vas_init() and vas_exit()"
        - Revert "powerpc/powernv: Move GET_FIELD/SET_FIELD to vas.h"
        - Revert "powerpc/powernv/vas: Define macros, register fields and structures"
        - Revert "powerpc/powernv: Enable PCI peer-to-peer"
        - Revert "powerpc/powernv: Add support to set power-shifting-ratio"
        - Revert "powerpc/powernv: Add support for powercap framework"
        - Revert "powerpc/perf: Add nest IMC PMU support"
        - Revert "powerpc/powernv: Detect and create IMC device"
        - Revert "powerpc/powernv: Add IMC OPAL APIs"
      * smartpqi patches for Artful (LP: #1721381)
        - scsi: smartpqi: add pqi reset quiesce support
        - scsi: smartpqi: enhance BMIC cache flush
        - scsi: smartpqi: update pqi passthru ioctl
        - scsi: smartpqi: cleanup doorbell register usage.
        - scsi: smartpqi: update kexec and power down support
        - scsi: smartpqi: add in new controller ids
        - scsi: smartpqi: change driver version to 1.1.2-125
      * CONFIG_DEBUG_FS is not enabled by "make zfcpdump_defconfig" with Ubuntu
        17.10 (kernel 4.13) (LP: #1719290)
        - SAUCE: s390: update zfcpdump_defconfig
      * [Feature] PXE boot with Intel Omni-Path (LP: #1712031)
        - d-i: Add hfi1 to nic-modules
      * [Feature]CNL:New device IDs for CNL (LP: #1685729)
        - pinctrl: intel: Add Intel Cannon Lake PCH-H pin controller support
    
      [ Ubuntu: 4.13.0-14.15 ]
    
      * linux: 4.13.0-14.15 -proposed tracker (LP: #1721122)
      * [Artful] ltp rwtest - Unable to handle kernel paging request at virtual
        address (LP: #1721067)
        - arm64: mm: Use READ_ONCE when dereferencing pointer to pte table
      * linux 4.13.0-13.14 ADT test failure with linux 4.13.0-13.14 (LP: #1720779)
        - SAUCE: LSM stacking: check for invalid zero sized writes
      * Add installer support for Broadcom BCM573xx network drivers. (LP: #1720466)
        - d-i: Add bnxt_en to nic-modules.
      * Miscellaneous Ubuntu changes
        - [Packaging] Include arch/arm64/kernel/ftrace-mod.o in headers package
    
      [ Ubuntu: 4.13.0-13.14 ]
    
      * linux: 4.13.0-13.14 -proposed tracker (LP: #1720239)
      * [Bug] USB 3.1 Gen2 works as 5Gbps (LP: #1720045)
        - xhci: set missing SuperSpeedPlus Link Protocol bit in roothub descriptor
      * [Feature]Memory Bandwidth Monitoring(MBM) port to new Cache Quality
        Monitoring (CQM) (LP: #1591609)
        - x86/perf/cqm: Wipe out perf based cqm
        - x86/intel_rdt/cqm: Documentation for resctrl based RDT Monitoring
        - x86/intel_rdt: Introduce a common compile option for RDT
        - x86/intel_rdt: Change file names to accommodate RDT monitor code
        - x86/intel_rdt: Mark rdt_root and closid_alloc as static
        - x86/intel_rdt: Cleanup namespace to support RDT monitoring
        - x86/intel_rdt: Make rdt_resources_all more readable
        - x86/intel_rdt/cqm: Add RDT monitoring initialization
        - x86/intel_rdt/cqm: Add RMID (Resource monitoring ID) management
        - x86/intel_rdt: Simplify info and base file lists
        - x86/intel_rdt/cqm: Add info files for RDT monitoring
        - x86/intel_rdt: Prepare for RDT monitoring mkdir support
        - x86/intel_rdt/cqm: Add mkdir support for RDT monitoring
        - x86/intel_rdt: Change closid type from int to u32
        - x86/intel_rdt/cqm: Add tasks file support
        - x86/intel_rdt: Prepare to add RDT monitor cpus file support
        - x86/intel_rdt/cqm: Add cpus file support
        - x86/intel_rdt: Prepare for RDT monitor data support
        - x86/intel_rdt/cqm: Add mon_data
        - x86/intel_rdt: Separate the ctrl bits from rmdir
        - x86/intel_rdt/cqm: Add rmdir support
        - x86/intel_rdt/cqm: Add mount,umount support
        - x86/intel_rdt: Introduce rdt_enable_key for scheduling
        - x86/intel_rdt/cqm: Add sched_in support
        - x86/intel_rdt/cqm: Add CPU hotplug support
        - x86/intel_rdt/mbm: Basic counting of MBM events (total and local)
        - x86/intel_rdt/mbm: Add mbm counter initialization
        - x86/intel_rdt/mbm: Handle counter overflow
        - x86/intel_rdt: Show bitmask of shareable resource with other executing units
        - x86/intel_rdt/cqm: Clear the default RMID during hotcpu
        - x86/intel_rdt: Modify the intel_pqr_state for better performance
        - x86/intel_rdt/mbm: Fix MBM overflow handler during CPU hotplug
        - x86/intel_rdt/cqm: Improve limbo list processing
        - x86/intel_rdt: Remove redundant ternary operator on return
        - [Config] CONFIG_INTEL_RDT=y
      * [Feature] RDT: Disable most RDT features on Skylake server (LP: #1713619)
        - x86/intel_rdt: Move special case code for Haswell to a quirk function
        - x86/intel_rdt: Add command line options for resource director technology
        - x86/intel_rdt: Turn off most RDT features on Skylake
      * CVE-2017-1000252
        - KVM: VMX: Do not BUG() on out-of-bounds guest IRQ
      * POWER9: NX842 module changes (LP: #1718292)
        - crypto/nx: Rename nx842_powernv_function as icswx function
        - crypto/nx: Create nx842_configure_crb function
        - crypto/nx: Create nx842_delete_coprocs function
        - crypto/nx: Add nx842_add_coprocs_list function
        - crypto/nx: Use kzalloc for workmem allocation
        - crypto/nx: Add P9 NX specific error codes for 842 engine
        - crypto/nx: Add P9 NX support for 842 compression engine
      * [Ubuntu 17.10] POWER9 - Base - Integrate P9 VAS (Virtual Accelerator
        Switchboard) support in kernel (LP: #1718293)
        - powerpc/powernv: Add IMC OPAL APIs
        - powerpc/powernv: Detect and create IMC device
        - powerpc/perf: Add nest IMC PMU support
        - powerpc/powernv: Add support for powercap framework
        - powerpc/powernv: Add support to set power-shifting-ratio
        - powerpc/powernv: Enable PCI peer-to-peer
        - powerpc/powernv/vas: Define macros, register fields and structures
        - powerpc/powernv: Move GET_FIELD/SET_FIELD to vas.h
        - powerpc/powernv/vas: Define vas_init() and vas_exit()
        - powerpc/powernv/vas: Define helpers to access MMIO regions
        - powerpc/powernv/vas: Define helpers to init window context
        - powerpc/powernv/vas: Define helpers to alloc/free windows
        - powerpc/powernv/vas: Define vas_rx_win_open() interface
        - powerpc/powernv/vas: Define vas_win_close() interface
        - powerpc/powernv/vas: Define vas_tx_win_open()
        - powerpc/powernv/vas: Define copy/paste interfaces
        - [Config] CONFIG_PPC_VAS=y
      * Artful update to v4.13.4 stable release (LP: #1720154)
        - orangefs: Don't clear SGID when inheriting ACLs
        - <linux/uaccess.h>: Fix copy_in_user() declaration
        - IB/hfi1: Revert egress pkey check enforcement
        - IB/{qib, hfi1}: Avoid flow control testing for RDMA write operation
        - IB/mlx5: Fix cached MR allocation flow
        - srcu: Provide ordering for CPU not involved in grace period
        - smp/hotplug: Handle removal correctly in cpuhp_store_callbacks()
        - Input: xpad - validate USB endpoint type during probe
        - drm/amdgpu: read reg in each iterator of psp_wait_for loop
        - tty: improve tty_insert_flip_char() fast path
        - tty: improve tty_insert_flip_char() slow path
        - tty: fix __tty_insert_flip_char regression
        - pinctrl: samsung: Fix invalid register offset used for Exynos5433 external
          interrupts
        - pinctrl: samsung: Fix NULL pointer exception on external interrupts on
          S3C24xx
        - pinctrl/amd: save pin registers over suspend/resume
        - MIPS: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix quiet NaN propagation
        - MIPS: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix cases of both inputs zero
        - MIPS: math-emu: <MAX|MIN>.<D|S>: Fix cases of both inputs negative
        - MIPS: math-emu: <MAXA|MINA>.<D|S>: Fix cases of input values with opposite
          signs
        - MIPS: math-emu: <MAXA|MINA>.<D|S>: Fix cases of both infinite inputs
        - MIPS: math-emu: MINA.<D|S>: Fix some cases of infinity and zero inputs
        - MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix NaN propagation
        - MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix some cases of infinite inputs
        - MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix some cases of zero inputs
        - MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Clean up "maddf_flags" enumeration
        - MIPS: math-emu: <MADDF|MSUBF>.S: Fix accuracy (32-bit case)
        - MIPS: math-emu: <MADDF|MSUBF>.D: Fix accuracy (64-bit case)
        - docs: disable KASLR when debugging kernel
        - crypto: ccp - Fix XTS-AES-128 support on v5 CCPs
        - crypto: scompress - don't sleep with preemption disabled
        - crypto: caam/qi - fix typo in authenc alg driver name
        - crypto: caam/qi - properly set IV after {en,de}crypt
        - crypto: AF_ALG - remove SGL terminator indicator when chaining
        - regulator: cpcap: Fix standby mode
        - wcn36xx: Introduce mutual exclusion of fw configuration
        - ext4: in ext4_seek_{hole,data}, return -ENXIO for negative offsets
        - ext4: fix incorrect quotaoff if the quota feature is enabled
        - ext4: fix quota inconsistency during orphan cleanup for read-only mounts
        - cxl: Fix driver use count
        - powerpc/powernv/npu: Move tlb flush before launching ATSD
        - powerpc/pseries: Don't attempt to acquire drc during memory hot add for
          assigned lmbs
        - powerpc: Fix DAR reporting when alignment handler faults
        - block: Relax a check in blk_start_queue()
        - block: directly insert blk-mq request from blk_insert_cloned_request()
        - md/bitmap: copy correct data for bitmap super
        - md/bitmap: disable bitmap_resize for file-backed bitmaps.
        - skd: Avoid that module unloading triggers a use-after-free
        - skd: Submit requests to firmware before triggering the doorbell
        - scsi: zfcp: fix queuecommand for scsi_eh commands when DIX enabled
        - scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path
        - scsi: zfcp: fix capping of unsuccessful GPN_FT SAN response trace records
        - scsi: zfcp: fix passing fsf_req to SCSI trace on TMF to correlate with HBA
        - scsi: zfcp: fix missing trace records for early returns in TMF eh handlers
        - scsi: zfcp: fix payload with full FCP_RSP IU in SCSI trace records
        - scsi: zfcp: trace HBA FSF response by default on dismiss or timedout late
          response
        - scsi: zfcp: trace high part of "new" 64 bit SCSI LUN
        - scsi: qedi: off by one in qedi_get_cmd_from_tid()
        - scsi: aacraid: Fix command send race condition
        - scsi: megaraid_sas: mismatch of allocated MFI frame size and length exposed
          in MFI MPT pass through command
        - scsi: megaraid_sas: set minimum value of resetwaittime to be 1 secs
        - scsi: megaraid_sas: Check valid aen class range to avoid kernel panic
        - scsi: megaraid_sas: Return pended IOCTLs with cmd_status
          MFI_STAT_WRONG_STATE in case adapter is dead
        - scsi: storvsc: fix memory leak on ring buffer busy
        - scsi: sg: factor out sg_fill_request_table()
        - scsi: sg: fixup infoleak when using SG_GET_REQUEST_TABLE
        - scsi: qla2xxx: Update fw_started flags at qpair creation.
        - scsi: qla2xxx: Correction to vha->vref_count timeout
        - scsi: qla2xxx: Fix target multiqueue configuration
        - scsi: qla2xxx: Use BIT_6 to acquire FAWWPN from switch
        - scsi: qla2xxx: Use fabric name for Get Port Speed command
        - scsi: qla2xxx: Fix an integer overflow in sysfs code
        - mailbox: bcm-flexrm-mailbox: Fix mask used in CMPL_START_ADDR_VALUE()
        - ftrace: Fix debug preempt config name in stack_tracer_{en,dis}able
        - ftrace: Fix selftest goto location on error
        - ftrace: Fix memleak when unregistering dynamic ops when tracing disabled
        - tracing: Add barrier to trace_printk() buffer nesting modification
        - tracing: Fix clear of RECORDED_TGID flag when disabling trace event
        - tracing: Apply trace_clock changes to instance max buffer
        - ARC: Re-enable MMU upon Machine Check exception
        - PCI: shpchp: Enable bridge bus mastering if MSI is enabled
        - PCI: pciehp: Report power fault only once until we clear it
        - net/netfilter/nf_conntrack_core: Fix net_conntrack_lock()
        - media: v4l2-compat-ioctl32: Fix timespec conversion
        - media: Revert "[media] lirc_dev: remove superfluous get/put_device() calls"
        - media: venus: fix copy/paste error in return_buf_error
        - media: uvcvideo: Prevent heap overflow when accessing mapped controls
        - media: adv7180: add missing adv7180cp, adv7180st i2c device IDs
        - PM / devfreq: Fix memory leak when fail to register device
        - ALSA: seq: Cancel pending autoload work at unbinding device
        - bcache: initialize dirty stripes in flash_dev_run()
        - bcache: Fix leak of bdev reference
        - bcache: do not subtract sectors_to_gc for bypassed IO
        - bcache: correct cache_dirty_target in __update_writeback_rate()
        - bcache: Correct return value for sysfs attach errors
        - bcache: fix sequential large write IO bypass
        - bcache: fix for gc and write-back race
        - bcache: fix bch_hprint crash and improve output
        - sched/cpuset/pm: Fix cpuset vs. suspend-resume bugs
        - iwlwifi: add workaround to disable wide channels in 5GHz
        - Linux 4.13.4
      * [17.10 FEAT] KVM: CPU Model z14 (LP: #1719297)
        - KVM: s390: Support Configuration z/Architecture Mode
      * sata reset hangs w/ early cn99xx silicon (LP: #1719031)
        - SAUCE: ahci: thunderx2: Fix for errata that affects stop engine
        - SAUCE: ahci: thunderx2: stop engine fix update
      * PCI quirk required for SATA on early cn99xx silicon (LP: #1718760)
        - SAUCE: PCI: Vulcan: AHCI PCI bar fix for Broadcom Vulcan early silicon
      * Please make linux-libc-dev Provide: aufs-dev (LP: #1716091)
        - [Packaging] Add aufs-dev to the Provides: for linux-libc-dev
      * Miscellaneous Ubuntu changes
        - [Packaging] Use SRCPKGNAME rather than hard-coding the source package name
        - SAUCE: LSM stacking: procfs: add smack subdir to attrs
        - SAUCE: LSM stacking: LSM: manage credential security blobs
        - SAUCE: LSM stacking: LSM: Manage file security blobs
        - SAUCE: LSM stacking: LSM: manage task security blobs
        - SAUCE: LSM stacking: LSM: Infrastructure management of the remaining blobs
        - SAUCE: LSM stacking: LSM: general but not extreme module stacking
        - SAUCE: LSM stacking: LSM: Complete task_alloc hook
        - SAUCE: LSM stacking: fixup procsfs: add smack subdir to attrs
        - SAUCE: LSM stacking: fixup initialize task->security
        - SAUCE: LSM stacking: fixup: alloc_task_ctx is dead code
        - SAUCE: LSM stacking: add support for stacking getpeersec_stream
        - SAUCE: LSM stacking: add stacking support to apparmor network hooks
        - SAUCE: LSM stacking: fixup apparmor stacking enablement
        - SAUCE: LSM stacking: fixup stacking kconfig
        - SAUCE: LSM stacking: allow selecting multiple LSMs using kernel boot params
        - SAUCE: LSM stacking: provide prctl interface for setting context
        - SAUCE: LSM stacking: inherit current display LSM
        - SAUCE: LSM stacking: keep an index for each registered LSM
        - SAUCE: LSM stacking: verify display LSM
        - SAUCE: LSM stacking: provide a way to specify the default display lsm
        - SAUCE: LSM stacking: make sure LSM blob align on 64 bit boundaries
        - SAUCE: LSM stacking: add /proc/<pid>/attr/display_lsm
        - SAUCE: LSM stacking: add Kconfig to set default display LSM
        - SAUCE: LSM stacking: add configs for LSM stacking
        - [Config] Run updateconfigs after merging LSM stacking
    
      [ Ubuntu: 4.13.0-12.13 ]
    
      * linux: 4.13.0-12.13 -proposed tracker (LP: #1718980)
      * [Feature] SKX: Support crystall ridge / far / near memory indication in PEBS
        (LP: #1591813)
        - perf/x86: Move Nehalem PEBS code to flag
        - perf/x86: Fix data source decoding for Skylake
      * Upgrade to 4.13.0-11.12 in artful amd64 VM breaks display on wayland
        (LP: #1718679)
        - [Config] CONFIG_DRM_VBOXVIDEO=n
      * ipmmu-vmsa driver breaks arm64 boots (LP: #1718734)
        - [Config] Disable CONFIG_IPMMU_VMSA on arm64
      * Vlun resize request could fail with cxlflash driver (LP: #1713575)
        - scsi: cxlflash: Fix vlun resize failure in the shrink path
      * multipath -ll is not showing the disks which are actually multipath
        (LP: #1718397)
        - fs: aio: fix the increment of aio-nr and counting against aio-max-nr
      * [Feature] Crystal Ridge - BTT - Rework error clearing (LP: #1704350)
        - libnvdimm, btt: fix a missed NVDIMM_IO_ATOMIC case in the write path
        - libnvdimm, btt: refactor map entry operations with macros
        - libnvdimm, btt: ensure that flags were also unchanged during a map_read
        - libnvdimm, btt: cache sector_size in arena_info
        - libnvdimm: fix potential deadlock while clearing errors
        - libnvdimm, btt: rework error clearing
      * [Feature] Crystal Ridge - have 4k DAX faults use a common zero page
        (LP: #1704439)
        - mm: add vm_insert_mixed_mkwrite()
        - dax: relocate some dax functions
        - dax: use common 4k zero page for dax mmap reads
        - dax: remove DAX code from page_cache_tree_insert()
        - dax: move all DAX radix tree defs to fs/dax.c
      * [bug] 17.10: CDP test fail on platform of Purley-2S/4S/Neoncity,BDW-
        de/ep/ex, (LP: #1716843)
        - SAUCE: (no-up) x86/intel_rdt: Fix cdp info directory files issue
      * [featue] GPIO support for Denverton (LP: #1591829)
        - pinctrl: intel: Add Intel Denverton pin controller support
      * ETPS/2 Elantech Touchpad inconsistently detected (Gigabyte P57W laptop)
        (LP: #1594214)
        - Input: i8042 - add Gigabyte P57 to the keyboard reset table
      * autopkgtest profile fails to build on armhf (LP: #1717920)
        - [Packaging] autopkgtest -- disable d-i when dropping flavours
      * Artful update to v4.13.3 stable release (LP: #1718412)
        - Revert "net: use lib/percpu_counter API for fragmentation mem accounting"
        - Revert "net: fix percpu memory leaks"
        - gianfar: Fix Tx flow control deactivation
        - vhost_net: correctly check tx avail during rx busy polling
        - ip6_gre: update mtu properly in ip6gre_err
        - udp: drop head states only when all skb references are gone
        - ipv6: fix memory leak with multiple tables during netns destruction
        - ipv6: fix typo in fib6_net_exit()
        - sctp: fix missing wake ups in some situations
        - tcp: fix a request socket leak
        - ip_tunnel: fix setting ttl and tos value in collect_md mode
        - f2fs: let fill_super handle roll-forward errors
        - f2fs: check hot_data for roll-forward recovery
        - x86/fsgsbase/64: Fully initialize FS and GS state in start_thread_common
        - x86/fsgsbase/64: Report FSBASE and GSBASE correctly in core dumps
        - x86/switch_to/64: Rewrite FS/GS switching yet again to fix AMD CPUs
        - x86/mm, mm/hwpoison: Clear PRESENT bit for kernel 1:1 mappings of poison
          pages
        - ovl: fix false positive ESTALE on lookup
        - fuse: allow server to run in different pid_ns
        - idr: remove WARN_ON_ONCE() when trying to replace negative ID
        - libnvdimm, btt: check memory allocation failure
        - libnvdimm: fix integer overflow static analysis warning
        - xfs: write unmount record for ro mounts
        - xfs: toggle readonly state around xfs_log_mount_finish
        - xfs: Add infrastructure needed for error propagation during buffer IO
          failure
        - xfs: Properly retry failed inode items in case of error during buffer
          writeback
        - xfs: fix recovery failure when log record header wraps log end
        - xfs: always verify the log tail during recovery
        - xfs: fix log recovery corruption error due to tail overwrite
        - xfs: handle -EFSCORRUPTED during head/tail verification
        - xfs: stop searching for free slots in an inode chunk when there are none
        - xfs: evict all inodes involved with log redo item
        - xfs: check for race with xfs_reclaim_inode() in xfs_ifree_cluster()
        - xfs: open-code xfs_buf_item_dirty()
        - xfs: remove unnecessary dirty bli format check for ordered bufs
        - xfs: ordered buffer log items are never formatted
        - xfs: refactor buffer logging into buffer dirtying helper
        - xfs: don't log dirty ranges for ordered buffers
        - xfs: skip bmbt block ino validation during owner change
        - xfs: move bmbt owner change to last step of extent swap
        - xfs: disallow marking previously dirty buffers as ordered
        - xfs: relog dirty buffers during swapext bmbt owner change
        - xfs: disable per-inode DAX flag
        - xfs: fix incorrect log_flushed on fsync
        - xfs: don't set v3 xflags for v2 inodes
        - xfs: open code end_buffer_async_write in xfs_finish_page_writeback
        - xfs: use kmem_free to free return value of kmem_zalloc
        - md/raid1/10: reset bio allocated from mempool
        - md/raid5: release/flush io in raid5_do_work()
        - xfs: fix compiler warnings
        - Linux 4.13.3
      * Artful update to v4.13.2 stable release (LP: #1717549)
        - mtd: nand: make Samsung SLC NAND usable again
        - mtd: nand: hynix: add support for 20nm NAND chips
        - mtd: nand: mxc: Fix mxc_v1 ooblayout
        - mtd: nand: qcom: fix read failure without complete bootchain
        - mtd: nand: qcom: fix config error for BCH
        - nvme-fabrics: generate spec-compliant UUID NQNs
        - btrfs: resume qgroup rescan on rw remount
        - rtlwifi: btcoexist: Fix breakage of ant_sel for rtl8723be
        - rtlwifi: btcoexist: Fix antenna selection code
        - radix-tree: must check __radix_tree_preload() return value
        - brcmfmac: feature check for multi-scheduled scan fails on bcm4345 devices
        - kselftests: timers: leap-a-day: Change default arguments to help test runs
        - selftests: timers: Fix run_destructive_tests target to handle skipped tests
        - selftests/x86/fsgsbase: Test selectors 1, 2, and 3
        - mm: kvfree the swap cluster info if the swap file is unsatisfactory
        - mm/swapfile.c: fix swapon frontswap_map memory leak on error
        - mm/sparse.c: fix typo in online_mem_sections
        - mm/memory.c: fix mem_cgroup_oom_disable() call missing
        - KVM: SVM: Limit PFERR_NESTED_GUEST_PAGE error_code check to L1 guest
        - Revert "firmware: add sanity check on shutdown/suspend"
        - rt2800: fix TX_PIN_CFG setting for non MT7620 chips
        - ARM64: dts: marvell: armada-37xx: Fix GIC maintenance interrupt
        - ARM: 8692/1: mm: abort uaccess retries upon fatal signal
        - NFS: Fix 2 use after free issues in the I/O code
        - NFS: Sync the correct byte range during synchronous writes
        - NFSv4: Fix up mirror allocation
        - xfs: XFS_IS_REALTIME_INODE() should be false if no rt device present
        - Linux 4.13.2
      * [Bug] Thunderbolt-patches: Related to the way the key for secure connection
        is handled (LP: #1717430)
        - thunderbolt: Remove superfluous check
        - thunderbolt: Make key root-only accessible
        - thunderbolt: Allow clearing the key
      * [Bug] Thunderbolt-patches: Fixes the issue regarding the order of ACPI calls
        w.r.t. PCI enumeration (LP: #1717431)
        - ACPICA: Dispatch active GPEs at init time
        - ACPICA: Make it possible to enable runtime GPEs earlier
        - ACPI / scan: Enable GPEs before scanning the namespace
      * Miscellaneous Ubuntu changes
        - ubuntu: vbox -- update to 5.1.28-dfsg-1
        - [Config] CONFIG_PINCTRL_DENVERTON=m
        - [Config] CONFIG_I2C_XLP9XX=m
      * Miscellaneous upstream changes
        - Introduce v3 namespaced file capabilities
    
     -- Seth Forshee <email address hidden>  Thu, 05 Oct 2017 09:57:27 -0500
  • linux-raspi2 (4.10.0-1019.22) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1019.22 -proposed tracker (LP: #1718147)
    
      [ Ubuntu: 4.10.0-36.40 ]
    
      * linux: 4.10.0-36.40 -proposed tracker (LP: #1718143)
      * Neighbour confirmation broken, breaks ARP cache aging (LP: #1715812)
        - sock: add sk_dst_pending_confirm flag
        - net: add dst_pending_confirm flag to skbuff
        - sctp: add dst_pending_confirm flag
        - tcp: replace dst_confirm with sk_dst_confirm
        - net: add confirm_neigh method to dst_ops
        - net: use dst_confirm_neigh for UDP, RAW, ICMP, L2TP
        - net: pending_confirm is not used anymore
      * SRIOV: warning if unload VFs (LP: #1715073)
        - PCI: Lock each enable/disable num_vfs operation in sysfs
        - PCI: Disable VF decoding before pcibios_sriov_disable() updates resources
      * Kernel has troule recognizing Corsair Strafe RGB keyboard (LP: #1678477)
        - usb: quirks: add delay init quirk for Corsair Strafe RGB keyboard
      * CVE-2017-14106
        - tcp: initialize rcv_mss to TCP_MIN_MSS instead of 0
      * [CIFS] Fix maximum SMB2 header size (LP: #1713884)
        - CIFS: Fix maximum SMB2 header size
      * Middle button of trackpoint doesn't work (LP: #1715271)
        - Input: trackpoint - assume 3 buttons when buttons detection fails
      * Drop GPL from of_node_to_nid() export to match other arches (LP: #1709179)
        - powerpc: Drop GPL from of_node_to_nid() export to match other arches
      * vhost guest network randomly drops under stress (kvm) (LP: #1711251)
        - Revert "vhost: cache used event for better performance"
      * arm64 arch_timer fixes (LP: #1713821)
        - Revert "UBUNTU: SAUCE: arm64: arch_timer: Enable CNTVCT_EL0 trap if
          workaround is enabled"
        - arm64: arch_timer: Enable CNTVCT_EL0 trap if workaround is enabled
        - clocksource/arm_arch_timer: Fix arch_timer_mem_find_best_frame()
        - clocksource/drivers/arm_arch_timer: Fix read and iounmap of incorrect
          variable
        - clocksource/drivers/arm_arch_timer: Fix mem frame loop initialization
        - clocksource/drivers/arm_arch_timer: Avoid infinite recursion when ftrace is
          enabled
      * Touchpad not detected (LP: #1708852)
        - Input: elan_i2c - add ELAN0608 to the ACPI table
    
     -- Kleber Sacilotto de Souza <email address hidden>  Tue, 19 Sep 2017 12:10:26 +0200
  • linux-raspi2 (4.10.0-1018.21) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1018.21 -proposed tracker (LP: #1716610)
    
      [ Ubuntu: 4.10.0-35.39 ]
    
      * linux: 4.10.0-35.39 -proposed tracker (LP: #1716606)
      * kernel panic -not syncing: Fatal exception: panic_on_oops (LP: #1708399)
        - SAUCE: s390/mm: fix local TLB flushing vs. detach of an mm address space
        - SAUCE: s390/mm: fix race on mm->context.flush_mm
      * CVE-2017-1000251
        - Bluetooth: Properly check L2CAP config option output buffer length
    
    linux-raspi2 (4.10.0-1017.20) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1017.20 -proposed tracker (LP: #1713473)
    
      [ Ubuntu: 4.10.0-34.38 ]
    
      * linux: 4.10.0-34.38 -proposed tracker (LP: #1713470)
      * Ubuntu 16.04.03: perf tool does not count pm_run_inst_cmpl with rcode on
        POWER9 DD2.0 (LP: #1709964)
        - powerpc/perf: Fix Power9 test_adder fields
      * HID: multitouch: Support ALPS PTP Stick and Touchpad devices (LP: #1712481)
        - HID: multitouch: Support PTP Stick and Touchpad device
        - SAUCE: HID: multitouch: Support ALPS PTP stick with pid 0x120A
      * igb: Support using Broadcom 54616 as PHY (LP: #1712024)
        - SAUCE: igb: add support for using Broadcom 54616 as PHY
      * RPT related fixes missing in Ubuntu 16.04.3 (LP: #1709220)
        - powerpc/mm/radix: Optimise tlbiel flush all case
        - powerpc/mm/radix: Improve _tlbiel_pid to be usable for PWC flushes
        - powerpc/mm/radix: Improve TLB/PWC flushes
        - powerpc/mm/radix: Avoid flushing the PWC on every flush_tlb_range
      * AMD RV platforms with SNPS 3.1 USB controller stop responding (S3 issue)
        (LP: #1711098)
        - usb: xhci: Issue stop EP command only when the EP state is running
      * dma-buf: performance issue when looking up the fence status (LP: #1711096)
        - dma-buf: avoid scheduling on fence status query v2
      * IPR driver causes multipath to fail paths/stuck IO on Medium Errors
        (LP: #1682644)
        - scsi: ipr: do not set DID_PASSTHROUGH on CHECK CONDITION
      * Disable CONFIG_MEMORY_HOTPLUG_DEFAULT_ONLINE (LP: #1709171)
        - [Config] CONFIG_MEMORY_HOTPLUG_DEFAULT_ONLINE=n for ppc64el
      * memory-hotplug test needs to be fixed (LP: #1710868)
        - selftests: typo correction for memory-hotplug test
        - selftests: check hot-pluggagble memory for memory-hotplug test
        - selftests: check percentage range for memory-hotplug test
        - selftests: add missing test name in memory-hotplug test
        - selftests: fix memory-hotplug test
      * Ubuntu 16.04.3: Qemu fails on P9 (LP: #1686019)
        - KVM: PPC: Pass kvm* to kvmppc_find_table()
        - KVM: PPC: Use preregistered memory API to access TCE list
        - KVM: PPC: VFIO: Add in-kernel acceleration for VFIO
        - powerpc/powernv/iommu: Add real mode version of iommu_table_ops::exchange()
        - powerpc/powernv/ioda2: Update iommu table base on ownership change
        - powerpc/iommu/vfio_spapr_tce: Cleanup iommu_table disposal
        - powerpc/vfio_spapr_tce: Add reference counting to iommu_table
        - powerpc/mmu: Add real mode support for IOMMU preregistered memory
        - KVM: PPC: Reserve KVM_CAP_SPAPR_TCE_VFIO capability number
        - KVM: PPC: Book3S HV: Add radix checks in real-mode hypercall handlers
      * [SRU][Zesty] [QDF2400] pl011 E44 erratum patch needed for 2.0 firmware and
        1.1 silicon (LP: #1709123)
        - tty: pl011: fix initialization order of QDF2400 E44
      * Docker hangs with xfs using aufs storage driver (LP: #1709749)
        - SAUCE: aufs: for v4.5, use vfs_clone_file_range() in copy-up
        - SAUCE: aufs: bugfix, for v4.10, copy-up on XFS branch
      * ACPI ID for Hip07/08 I2C controller has typo (LP: #1711182)
        - ACPI: APD: Fix HID for Hisilicon Hip07/08
      * Avoid spurious PMU interrupts after idle (LP: #1709352)
        - powerpc/perf: Avoid spurious PMU interrupts after idle
      * [SRU][ZESTY]kernel BUG at
        /build/linux-H5UzH8/linux-4.10.0/drivers/nvme/host/pci.c:567! (LP: #1709073)
        - block: fix bio_will_gap() for first bvec with offset
      * CVE-2017-7541
        - brcmfmac: fix possible buffer overflow in brcmf_cfg80211_mgmt_tx()
      * sort ABI files with C.UTF-8 locale (LP: #1712345)
        - [Packaging] sort ABI files with C.UTF-8 locale
      * Please only recommend or suggest initramfs-tools | linux-initramfs-tool for
        kernels able to boot without initramfs (LP: #1700972)
        - [Debian] Don't depend on initramfs-tools
    
     -- Juerg Haefliger <email address hidden>  Wed, 13 Sep 2017 10:08:15 +0200
  • linux-raspi2 (4.10.0-1017.20) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1017.20 -proposed tracker (LP: #1713473)
    
      [ Ubuntu: 4.10.0-34.38 ]
    
      * linux: 4.10.0-34.38 -proposed tracker (LP: #1713470)
      * Ubuntu 16.04.03: perf tool does not count pm_run_inst_cmpl with rcode on
        POWER9 DD2.0 (LP: #1709964)
        - powerpc/perf: Fix Power9 test_adder fields
      * HID: multitouch: Support ALPS PTP Stick and Touchpad devices (LP: #1712481)
        - HID: multitouch: Support PTP Stick and Touchpad device
        - SAUCE: HID: multitouch: Support ALPS PTP stick with pid 0x120A
      * igb: Support using Broadcom 54616 as PHY (LP: #1712024)
        - SAUCE: igb: add support for using Broadcom 54616 as PHY
      * RPT related fixes missing in Ubuntu 16.04.3 (LP: #1709220)
        - powerpc/mm/radix: Optimise tlbiel flush all case
        - powerpc/mm/radix: Improve _tlbiel_pid to be usable for PWC flushes
        - powerpc/mm/radix: Improve TLB/PWC flushes
        - powerpc/mm/radix: Avoid flushing the PWC on every flush_tlb_range
      * AMD RV platforms with SNPS 3.1 USB controller stop responding (S3 issue)
        (LP: #1711098)
        - usb: xhci: Issue stop EP command only when the EP state is running
      * dma-buf: performance issue when looking up the fence status (LP: #1711096)
        - dma-buf: avoid scheduling on fence status query v2
      * IPR driver causes multipath to fail paths/stuck IO on Medium Errors
        (LP: #1682644)
        - scsi: ipr: do not set DID_PASSTHROUGH on CHECK CONDITION
      * Disable CONFIG_MEMORY_HOTPLUG_DEFAULT_ONLINE (LP: #1709171)
        - [Config] CONFIG_MEMORY_HOTPLUG_DEFAULT_ONLINE=n for ppc64el
      * memory-hotplug test needs to be fixed (LP: #1710868)
        - selftests: typo correction for memory-hotplug test
        - selftests: check hot-pluggagble memory for memory-hotplug test
        - selftests: check percentage range for memory-hotplug test
        - selftests: add missing test name in memory-hotplug test
        - selftests: fix memory-hotplug test
      * Ubuntu 16.04.3: Qemu fails on P9 (LP: #1686019)
        - KVM: PPC: Pass kvm* to kvmppc_find_table()
        - KVM: PPC: Use preregistered memory API to access TCE list
        - KVM: PPC: VFIO: Add in-kernel acceleration for VFIO
        - powerpc/powernv/iommu: Add real mode version of iommu_table_ops::exchange()
        - powerpc/powernv/ioda2: Update iommu table base on ownership change
        - powerpc/iommu/vfio_spapr_tce: Cleanup iommu_table disposal
        - powerpc/vfio_spapr_tce: Add reference counting to iommu_table
        - powerpc/mmu: Add real mode support for IOMMU preregistered memory
        - KVM: PPC: Reserve KVM_CAP_SPAPR_TCE_VFIO capability number
        - KVM: PPC: Book3S HV: Add radix checks in real-mode hypercall handlers
      * [SRU][Zesty] [QDF2400] pl011 E44 erratum patch needed for 2.0 firmware and
        1.1 silicon (LP: #1709123)
        - tty: pl011: fix initialization order of QDF2400 E44
      * Docker hangs with xfs using aufs storage driver (LP: #1709749)
        - SAUCE: aufs: for v4.5, use vfs_clone_file_range() in copy-up
        - SAUCE: aufs: bugfix, for v4.10, copy-up on XFS branch
      * ACPI ID for Hip07/08 I2C controller has typo (LP: #1711182)
        - ACPI: APD: Fix HID for Hisilicon Hip07/08
      * Avoid spurious PMU interrupts after idle (LP: #1709352)
        - powerpc/perf: Avoid spurious PMU interrupts after idle
      * [SRU][ZESTY]kernel BUG at
        /build/linux-H5UzH8/linux-4.10.0/drivers/nvme/host/pci.c:567! (LP: #1709073)
        - block: fix bio_will_gap() for first bvec with offset
      * CVE-2017-7541
        - brcmfmac: fix possible buffer overflow in brcmf_cfg80211_mgmt_tx()
      * sort ABI files with C.UTF-8 locale (LP: #1712345)
        - [Packaging] sort ABI files with C.UTF-8 locale
      * Please only recommend or suggest initramfs-tools | linux-initramfs-tool for
        kernels able to boot without initramfs (LP: #1700972)
        - [Debian] Don't depend on initramfs-tools
    
     -- Thadeu Lima de Souza Cascardo <email address hidden>  Mon, 28 Aug 2017 15:31:18 -0300
  • linux-raspi2 (4.10.0-1016.19) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1016.19 -proposed tracker (LP: #1709305)
    
      * [SRU][Zesty] arm64: Add support for handling memory corruption
        (LP: #1696852)
        - (config) Update config for arm64 master changes
    
      * ThunderX: soft lockup on 4.8+ kernels when running qemu-efi with vhost=on
        (LP: #1673564)
        - (config) Update config for arm64 master changes
    
      [ Ubuntu: 4.10.0-33.37 ]
    
      * linux: 4.10.0-33.37 -proposed tracker (LP: #1709303)
      * CVE-2017-1000112
        - Revert "udp: consistently apply ufo or fragmentation"
        - udp: consistently apply ufo or fragmentation
      * CVE-2017-1000111
        - Revert "net-packet: fix race in packet_set_ring on PACKET_RESERVE"
        - packet: fix tp_reserve race in packet_set_ring
      * ThunderX: soft lockup on 4.8+ kernels when running qemu-efi with vhost=on
        (LP: #1673564)
        - irqchip/gic-v3: Add missing system register definitions
        - arm64: KVM: Do not use stack-protector to compile EL2 code
        - KVM: arm/arm64: vgic-v3: Use PREbits to infer the number of ICH_APxRn_EL2
          registers
        - KVM: arm/arm64: vgic-v3: Fix nr_pre_bits bitfield extraction
        - arm64: Add a facility to turn an ESR syndrome into a sysreg encoding
        - KVM: arm/arm64: vgic-v3: Add accessors for the ICH_APxRn_EL2 registers
        - KVM: arm64: Make kvm_condition_valid32() accessible from EL2
        - KVM: arm64: vgic-v3: Add hook to handle guest GICv3 sysreg accesses at EL2
        - KVM: arm64: vgic-v3: Add ICV_BPR1_EL1 handler
        - KVM: arm64: vgic-v3: Add ICV_IGRPEN1_EL1 handler
        - KVM: arm64: vgic-v3: Add ICV_IAR1_EL1 handler
        - KVM: arm64: vgic-v3: Add ICV_EOIR1_EL1 handler
        - KVM: arm64: vgic-v3: Add ICV_AP1Rn_EL1 handler
        - KVM: arm64: vgic-v3: Add ICV_HPPIR1_EL1 handler
        - KVM: arm64: vgic-v3: Enable trapping of Group-1 system registers
        - KVM: arm64: Enable GICv3 Group-1 sysreg trapping via command-line
        - KVM: arm64: vgic-v3: Add ICV_BPR0_EL1 handler
        - KVM: arm64: vgic-v3: Add ICV_IGNREN0_EL1 handler
        - KVM: arm64: vgic-v3: Add misc Group-0 handlers
        - KVM: arm64: vgic-v3: Enable trapping of Group-0 system registers
        - KVM: arm64: Enable GICv3 Group-0 sysreg trapping via command-line
        - arm64: Add MIDR values for Cavium cn83XX SoCs
        - [Config] CONFIG_CAVIUM_ERRATUM_30115=y
        - arm64: Add workaround for Cavium Thunder erratum 30115
        - KVM: arm64: vgic-v3: Add ICV_DIR_EL1 handler
        - KVM: arm64: vgic-v3: Add ICV_RPR_EL1 handler
        - KVM: arm64: vgic-v3: Add ICV_CTLR_EL1 handler
        - KVM: arm64: vgic-v3: Add ICV_PMR_EL1 handler
        - KVM: arm64: Enable GICv3 common sysreg trapping via command-line
        - KVM: arm64: vgic-v3: Log which GICv3 system registers are trapped
        - arm64: KVM: Make unexpected reads from WO registers inject an undef
        - KVM: arm64: Log an error if trapping a read-from-write-only GICv3 access
        - KVM: arm64: Log an error if trapping a write-to-read-only GICv3 access
      * ibmvscsis: Do not send aborted task response (LP: #1689365)
        - target: Fix unknown fabric callback queue-full errors
        - ibmvscsis: Do not send aborted task response
        - ibmvscsis: Clear left-over abort_cmd pointers
        - ibmvscsis: Fix the incorrect req_lim_delta
      * hisi_sas performance improvements (LP: #1708734)
        - scsi: hisi_sas: define hisi_sas_device.device_id as int
        - scsi: hisi_sas: optimise the usage of hisi_hba.lock
        - scsi: hisi_sas: relocate sata_done_v2_hw()
        - scsi: hisi_sas: optimise DMA slot memory
      * hisi_sas driver reports mistakes timed out task for internal abort
        (LP: #1708730)
        - scsi: hisi_sas: fix timeout check in hisi_sas_internal_task_abort()
      * scsi: hisi_sas: add null check before indirect pointer dereference
        (LP: #1708714)
        - scsi: hisi_sas: add null check before indirect pointer dereference
      * [LTCTest][Opal][FW860.20] HMI recoverable errors failed to recover and
        system goes to dump state. (LP: #1684054)
        - powerpc/64: Fix HMI exception on LE with CONFIG_RELOCATABLE=y
      * Set CONFIG_SATA_HIGHBANK=y on armhf (LP: #1703430)
        - [Config] CONFIG_SATA_HIGHBANK=y
      * Adt tests of src:linux time out often on armhf lxc containers (LP: #1705495)
        - [Packaging] tests -- reduce rebuild test to one flavour
      * support Hip07/08 I2C controller (LP: #1708293)
        - ACPI / APD: Add clock frequency for Hisilicon Hip07/08 I2C controller
        - i2c: designware: Add ACPI HID for Hisilicon Hip07/08 I2C controller
      * Mute key LED does not work on HP ProBook 440 (LP: #1705586)
        - ALSA: hda - Add HP ZBook 15u G3 Conexant CX20724 GPIO mute leds
        - ALSA: hda - Add mute led support for HP ProBook 440 G4
      * Hisilicon D05 onboard fibre NIC link indicator LEDs don't work
        (LP: #1704903)
        - net: hns: add acpi function of xge led control
      * zesty unable to handle kernel NULL pointer dereference (LP: #1680904)
        - drm/i915: Do not drop pagetables when empty
      * hns: use after free in hns_nic_net_xmit_hw (LP: #1704885)
        - net: hns: Fix a skb used after free bug
      * [ARM64] config EDAC_GHES=y depends on EDAC_MM_EDAC=y (LP: #1706141)
        - [Config] set EDAC_MM_EDAC=y for ARM64
      * [Hyper-V] hv_netvsc: Exclude non-TCP port numbers from vRSS hashing
        (LP: #1690174)
        - hv_netvsc: Exclude non-TCP port numbers from vRSS hashing
      * ath10k doesn't report full RSSI information (LP: #1706531)
        - ath10k: add per chain RSSI reporting
      * ideapad_laptop don't support v310-14isk (LP: #1705378)
        - platform/x86: ideapad-laptop: Add several models to no_hw_rfkill
      * hns: ethtool selftest crashes system (LP: #1705712)
        - net/hns:bugfix of ethtool -t phy self_test
      * ath9k freezes suspend resume Ubuntu 17.04 (LP: #1697027)
        - ath9k: fix an invalid pointer dereference in ath9k_rng_stop()
      * xhci_hcd: ERROR Transfer event TRB DMA ptr not part of current TD ep_index 2
        comp_code 13 (LP: #1667750)
        - xhci: Bad Ethernet performance plugged in ASM1042A host
      * Migrating KSM page causes the VM lock up as the KSM page merging list is too
        large (LP: #1680513)
        - ksm: introduce ksm_max_page_sharing per page deduplication limit
        - ksm: fix use after free with merge_across_nodes = 0
        - ksm: cleanup stable_node chain collapse case
        - ksm: swap the two output parameters of chain/chain_prune
        - ksm: optimize refile of stable_node_dup at the head of the chain
      * Change CONFIG_IBMVETH to module (LP: #1704479)
        - [Config] CONFIG_IBMVETH=m
      * CVE-2017-7487
        - ipx: call ipxitf_put() in ioctl error path
      * Hotkeys on new Thinkpad systems aren't working (LP: #1705169)
        - platform/x86: thinkpad_acpi: guard generic hotkey case
        - platform/x86: thinkpad_acpi: add mapping for new hotkeys
      * misleading kernel warning skb_warn_bad_offload during checksum calculation
        (LP: #1705447)
        - net: reduce skb_warn_bad_offload() noise
      * Ubuntu 16.04.02: ibmveth: Support to enable LSO/CSO for Trunk VEA
        (LP: #1692538)
        - ibmveth: Support to enable LSO/CSO for Trunk VEA.
      * bonding: stack dump when unregistering a netdev (LP: #1704102)
        - bonding: avoid NETDEV_CHANGEMTU event when unregistering slave
      * Ubuntu 16.04 IOB Error when the Mustang board rebooted (LP: #1693673)
        - drivers: net: xgene: Fix redundant prefetch buffer cleanup
      * Ubuntu16.04: NVMe 4K+T10 DIF/DIX format returns I/O error on dd with split
        op (LP: #1689946)
        - blk-mq: NVMe 512B/4K+T10 DIF/DIX format returns I/O error on dd with split
          op
      * linux >= 4.2: bonding 802.3ad does not work with 5G, 25G and 50G link speeds
        (LP: #1697892)
        - bonding: add 802.3ad support for 25G speeds
        - bonding: fix 802.3ad support for 5G and 50G speeds
      * [SRU][Zesty] arm64: Add support for handling memory corruption
        (LP: #1696852)
        - arm64: mm: Update perf accounting to handle poison faults
        - arm64: hugetlb: Fix huge_pte_offset to return poisoned page table entries
        - arm64: kconfig: allow support for memory failure handling
        - arm64: hwpoison: add VM_FAULT_HWPOISON[_LARGE] handling
      * [SRU][Zesty] Add UEFI 2.6 and ACPI 6.1 updates for RAS on ARM64
        (LP: #1696570)
        - acpi: apei: read ack upon ghes record consumption
        - ras: acpi/apei: cper: add support for generic data v3 structure
        - cper: add timestamp print to CPER status printing
        - efi: parse ARM processor error
        - arm64: exception: handle Synchronous External Abort
        - acpi: apei: handle SEA notification type for ARMv8
        - acpi: apei: panic OS with fatal error status block
        - efi: print unrecognized CPER section
        - ras: acpi / apei: generate trace event for unrecognized CPER section
        - trace, ras: add ARM processor error trace event
        - ras: mark stub functions as 'inline'
        - arm/arm64: KVM: add guest SEA support
        - acpi: apei: check for pending errors when probing GHES entries
        - [Config] CONFIG_ACPI_APEI_SEA=y
    
     -- Stefan Bader <email address hidden>  Fri, 11 Aug 2017 12:52:19 +0200
  • linux-raspi2 (4.10.0-1015.18) zesty; urgency=low
    
      [ Ubuntu: 4.10.0-32.36 ]
    
      * CVE-2017-1000112
        - udp: avoid ufo handling on IP payload compression packets
        - net: account for current skb length when deciding about UFO
        - udp: consistently apply ufo or fragmentation
      * CVE-2017-1000111
        - net-packet: fix race in packet_set_ring on PACKET_RESERVE
    
     -- Stefan Bader <email address hidden>  Tue, 08 Aug 2017 14:50:22 +0200
  • linux-raspi2 (4.10.0-1013.16) zesty; urgency=low
    
      [ Ubuntu: 4.10.0-30.34 ]
    
      * CVE-2017-7533
        - dentry name snapshots
    
    linux-raspi2 (4.10.0-1012.15) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1012.15 -proposed tracker (LP: #1704966)
    
      * arm64: fix crash reading /proc/kcore (LP: #1702749)
        - [Config] updateconfigs caused by kcore fix
    
      [ Ubuntu: 4.10.0-29.33 ]
    
      * linux: 4.10.0-29.33 -proposed tracker (LP: #1704961)
      * Opal and POWER9 DD2 (LP: #1702159)
        - powerpc/powernv: Tell OPAL about our MMU mode on POWER9
        - powerpc/powernv: Fix boot on Power8 bare metal due to opal_configure_cores()
      * CVE-2017-1000364
        - mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack
        - mm/mmap.c: expand_downwards: don't require the gap if !vm_prev
      * [Xenial] nvme: Quirks for PM1725 controllers (LP: #1704435)
        - nvme: Quirks for PM1725 controllers
      * hns: under heavy load, NIC may fail and require reboot (LP: #1704146)
        - net: hns: Bugfix for Tx timeout handling in hns driver
      * New ACPI identifiers for ThunderX SMMU (LP: #1703437)
        - iommu/arm-smmu: Plumb in new ACPI identifiers
      * CVE-2017-7482
        - rxrpc: Fix several cases where a padded len isn't checked in ticket decode
      * CVE-2017-1000365
        - fs/exec.c: account for argv/envp pointers
      * CVE-2017-10810
        - drm/virtio: don't leak bo on drm_gem_object_init failure
      * Data corruption with hio driver  (LP: #1701316)
        - SAUCE: hio: Fix incorrect use of enum req_opf values
      * arm64: fix crash reading /proc/kcore (LP: #1702749)
        - fs/proc: kcore: use kcore_list type to check for vmalloc/module address
        - arm64: mm: select CONFIG_ARCH_PROC_KCORE_TEXT
      * cxlflash update request in the Xenial SRU stream (LP: #1702521)
        - scsi: cxlflash: Refactor context reset to share reset logic
        - scsi: cxlflash: Support SQ Command Mode
        - scsi: cxlflash: Cleanup prints
        - scsi: cxlflash: Cancel scheduled workers before stopping AFU
        - scsi: cxlflash: Enable PCI device ID for future IBM CXL Flash AFU
        - scsi: cxlflash: Separate RRQ processing from the RRQ interrupt handler
        - scsi: cxlflash: Serialize RRQ access and support offlevel processing
        - scsi: cxlflash: Implement IRQ polling for RRQ processing
        - scsi: cxlflash: Update sysfs helper routines to pass config structure
        - scsi: cxlflash: Support dynamic number of FC ports
        - scsi: cxlflash: Remove port configuration assumptions
        - scsi: cxlflash: Hide FC internals behind common access routine
        - scsi: cxlflash: SISlite updates to support 4 ports
        - scsi: cxlflash: Support up to 4 ports
        - scsi: cxlflash: Fence EEH during probe
        - scsi: cxlflash: Remove unnecessary DMA mapping
        - scsi: cxlflash: Fix power-of-two validations
        - scsi: cxlflash: Fix warnings/errors
        - scsi: cxlflash: Improve asynchronous interrupt processing
        - scsi: cxlflash: Support multiple hardware queues
        - scsi: cxlflash: Add hardware queues attribute
        - scsi: cxlflash: Introduce hardware queue steering
        - cxl: Enable PCI device IDs for future IBM CXL adapters
        - scsi: cxlflash: Select IRQ_POLL
        - scsi: cxlflash: Combine the send queue locks
        - scsi: cxlflash: Update cxlflash_afu_sync() to return errno
        - scsi: cxlflash: Reset hardware queue context via specified register
        - scsi: cxlflash: Schedule asynchronous reset of the host
        - scsi: cxlflash: Handle AFU sync failures
        - scsi: cxlflash: Track pending scsi commands in each hardware queue
        - scsi: cxlflash: Flush pending commands in cleanup path
        - scsi: cxlflash: Add scsi command abort handler
        - scsi: cxlflash: Create character device to provide host management interface
        - scsi: cxlflash: Separate AFU internal command handling from AFU sync
          specifics
        - scsi: cxlflash: Introduce host ioctl support
        - scsi: cxlflash: Refactor AFU capability checking
        - scsi: cxlflash: Support LUN provisioning
        - scsi: cxlflash: Support AFU debug
        - scsi: cxlflash: Support WS16 unmap
        - scsi: cxlflash: Remove zeroing of private command data
        - scsi: cxlflash: Update TMF command processing
        - scsi: cxlflash: Avoid double free of character device
        - scsi: cxlflash: Update send_tmf() parameters
        - scsi: cxlflash: Update debug prints in reset handlers
      * Ath10k to read different board data file if specify in SMBIOS (LP: #1666742)
        - ath10k: search SMBIOS for OEM board file extension
      * APST gets enabled against explicit kernel option (LP: #1699004)
        - nvme: Display raw APST configuration via DYNAMIC_DEBUG
        - nvme: Add nvme_core.force_apst to ignore the NO_APST quirk
        - nvme: explicitly disable APST on quirked devices
      * Quirk for non-compliant PCI bridge on HiSilicon D05 board (LP: #1698706)
        - SAUCE: PCI: Support hibmc VGA cards behind a misbehaving HiSilicon bridge
      * New NVLINK2 patches (LP: #1701272)
        - powerpc/powernv/npu-dma: Add explicit flush when sending an ATSD
        - powerpc/npu-dma: Remove spurious WARN_ON when a PCI device has no of_node
      * ERAT invalidate on context switch removal (LP: #1700819)
        - powerpc: Only do ERAT invalidate on radix context switch on P9 DD1
      * powerpc: Invalidate ERAT on powersave wakeup for POWER9 (LP: #1700521)
        - powerpc/64s: Invalidate ERAT on powersave wakeup for POWER9
      * update ENA driver to 1.2.0k from net-next (LP: #1701575)
        - net/ena: use napi_complete_done() return value
        - net: ena: remove superfluous check in ena_remove()
        - net/ena: switch to pci_alloc_irq_vectors
        - net: ena: fix rare uncompleted admin command false alarm
        - net: ena: fix bug that might cause hang after consecutive open/close
          interface.
        - net: ena: add missing return when ena_com_get_io_handlers() fails
        - net: ena: fix race condition between submit and completion admin command
        - net: ena: add missing unmap bars on device removal
        - net: ena: fix theoretical Rx hang on low memory systems
        - net: ena: disable admin msix while working in polling mode
        - net: ena: bug fix in lost tx packets detection mechanism
        - net: ena: update ena driver to version 1.1.7
        - net: ena: change return value for unsupported features unsupported return
          value
        - net: ena: add hardware hints capability to the driver
        - net: ena: change sizeof() argument to be the type pointer
        - net: ena: add reset reason for each device FLR
        - net: ena: add support for out of order rx buffers refill
        - net: ena: allow the driver to work with small number of msix vectors
        - net: ena: use napi_schedule_irqoff when possible
        - net: ena: separate skb allocation to dedicated function
        - net: ena: use lower_32_bits()/upper_32_bits() to split dma address
        - net: ena: update driver's rx drop statistics
        - net: ena: update ena driver to version 1.2.0
    
     -- Thadeu Lima de Souza Cascardo <email address hidden>  Tue, 01 Aug 2017 09:56:39 -0300
  • linux-raspi2 (4.10.0-1012.15) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1012.15 -proposed tracker (LP: #1704966)
    
      * arm64: fix crash reading /proc/kcore (LP: #1702749)
        - [Config] updateconfigs caused by kcore fix
    
      [ Ubuntu: 4.10.0-29.33 ]
    
      * linux: 4.10.0-29.33 -proposed tracker (LP: #1704961)
      * Opal and POWER9 DD2 (LP: #1702159)
        - powerpc/powernv: Tell OPAL about our MMU mode on POWER9
        - powerpc/powernv: Fix boot on Power8 bare metal due to opal_configure_cores()
      * CVE-2017-1000364
        - mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack
        - mm/mmap.c: expand_downwards: don't require the gap if !vm_prev
      * [Xenial] nvme: Quirks for PM1725 controllers (LP: #1704435)
        - nvme: Quirks for PM1725 controllers
      * hns: under heavy load, NIC may fail and require reboot (LP: #1704146)
        - net: hns: Bugfix for Tx timeout handling in hns driver
      * New ACPI identifiers for ThunderX SMMU (LP: #1703437)
        - iommu/arm-smmu: Plumb in new ACPI identifiers
      * CVE-2017-7482
        - rxrpc: Fix several cases where a padded len isn't checked in ticket decode
      * CVE-2017-1000365
        - fs/exec.c: account for argv/envp pointers
      * CVE-2017-10810
        - drm/virtio: don't leak bo on drm_gem_object_init failure
      * Data corruption with hio driver  (LP: #1701316)
        - SAUCE: hio: Fix incorrect use of enum req_opf values
      * arm64: fix crash reading /proc/kcore (LP: #1702749)
        - fs/proc: kcore: use kcore_list type to check for vmalloc/module address
        - arm64: mm: select CONFIG_ARCH_PROC_KCORE_TEXT
      * cxlflash update request in the Xenial SRU stream (LP: #1702521)
        - scsi: cxlflash: Refactor context reset to share reset logic
        - scsi: cxlflash: Support SQ Command Mode
        - scsi: cxlflash: Cleanup prints
        - scsi: cxlflash: Cancel scheduled workers before stopping AFU
        - scsi: cxlflash: Enable PCI device ID for future IBM CXL Flash AFU
        - scsi: cxlflash: Separate RRQ processing from the RRQ interrupt handler
        - scsi: cxlflash: Serialize RRQ access and support offlevel processing
        - scsi: cxlflash: Implement IRQ polling for RRQ processing
        - scsi: cxlflash: Update sysfs helper routines to pass config structure
        - scsi: cxlflash: Support dynamic number of FC ports
        - scsi: cxlflash: Remove port configuration assumptions
        - scsi: cxlflash: Hide FC internals behind common access routine
        - scsi: cxlflash: SISlite updates to support 4 ports
        - scsi: cxlflash: Support up to 4 ports
        - scsi: cxlflash: Fence EEH during probe
        - scsi: cxlflash: Remove unnecessary DMA mapping
        - scsi: cxlflash: Fix power-of-two validations
        - scsi: cxlflash: Fix warnings/errors
        - scsi: cxlflash: Improve asynchronous interrupt processing
        - scsi: cxlflash: Support multiple hardware queues
        - scsi: cxlflash: Add hardware queues attribute
        - scsi: cxlflash: Introduce hardware queue steering
        - cxl: Enable PCI device IDs for future IBM CXL adapters
        - scsi: cxlflash: Select IRQ_POLL
        - scsi: cxlflash: Combine the send queue locks
        - scsi: cxlflash: Update cxlflash_afu_sync() to return errno
        - scsi: cxlflash: Reset hardware queue context via specified register
        - scsi: cxlflash: Schedule asynchronous reset of the host
        - scsi: cxlflash: Handle AFU sync failures
        - scsi: cxlflash: Track pending scsi commands in each hardware queue
        - scsi: cxlflash: Flush pending commands in cleanup path
        - scsi: cxlflash: Add scsi command abort handler
        - scsi: cxlflash: Create character device to provide host management interface
        - scsi: cxlflash: Separate AFU internal command handling from AFU sync
          specifics
        - scsi: cxlflash: Introduce host ioctl support
        - scsi: cxlflash: Refactor AFU capability checking
        - scsi: cxlflash: Support LUN provisioning
        - scsi: cxlflash: Support AFU debug
        - scsi: cxlflash: Support WS16 unmap
        - scsi: cxlflash: Remove zeroing of private command data
        - scsi: cxlflash: Update TMF command processing
        - scsi: cxlflash: Avoid double free of character device
        - scsi: cxlflash: Update send_tmf() parameters
        - scsi: cxlflash: Update debug prints in reset handlers
      * Ath10k to read different board data file if specify in SMBIOS (LP: #1666742)
        - ath10k: search SMBIOS for OEM board file extension
      * APST gets enabled against explicit kernel option (LP: #1699004)
        - nvme: Display raw APST configuration via DYNAMIC_DEBUG
        - nvme: Add nvme_core.force_apst to ignore the NO_APST quirk
        - nvme: explicitly disable APST on quirked devices
      * Quirk for non-compliant PCI bridge on HiSilicon D05 board (LP: #1698706)
        - SAUCE: PCI: Support hibmc VGA cards behind a misbehaving HiSilicon bridge
      * New NVLINK2 patches (LP: #1701272)
        - powerpc/powernv/npu-dma: Add explicit flush when sending an ATSD
        - powerpc/npu-dma: Remove spurious WARN_ON when a PCI device has no of_node
      * ERAT invalidate on context switch removal (LP: #1700819)
        - powerpc: Only do ERAT invalidate on radix context switch on P9 DD1
      * powerpc: Invalidate ERAT on powersave wakeup for POWER9 (LP: #1700521)
        - powerpc/64s: Invalidate ERAT on powersave wakeup for POWER9
      * update ENA driver to 1.2.0k from net-next (LP: #1701575)
        - net/ena: use napi_complete_done() return value
        - net: ena: remove superfluous check in ena_remove()
        - net/ena: switch to pci_alloc_irq_vectors
        - net: ena: fix rare uncompleted admin command false alarm
        - net: ena: fix bug that might cause hang after consecutive open/close
          interface.
        - net: ena: add missing return when ena_com_get_io_handlers() fails
        - net: ena: fix race condition between submit and completion admin command
        - net: ena: add missing unmap bars on device removal
        - net: ena: fix theoretical Rx hang on low memory systems
        - net: ena: disable admin msix while working in polling mode
        - net: ena: bug fix in lost tx packets detection mechanism
        - net: ena: update ena driver to version 1.1.7
        - net: ena: change return value for unsupported features unsupported return
          value
        - net: ena: add hardware hints capability to the driver
        - net: ena: change sizeof() argument to be the type pointer
        - net: ena: add reset reason for each device FLR
        - net: ena: add support for out of order rx buffers refill
        - net: ena: allow the driver to work with small number of msix vectors
        - net: ena: use napi_schedule_irqoff when possible
        - net: ena: separate skb allocation to dedicated function
        - net: ena: use lower_32_bits()/upper_32_bits() to split dma address
        - net: ena: update driver's rx drop statistics
        - net: ena: update ena driver to version 1.2.0
    
     -- Kleber Sacilotto de Souza <email address hidden>  Wed, 19 Jul 2017 15:53:42 +0200
  • linux-raspi2 (4.10.0-1011.14) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1011.14 -proposed tracker (LP: #1701017)
    
      * arm64 kernel crashdump support (LP: #1694859)
        - [Config] CONFIG_CRASH_DUMP=y on arm64
    
      * hisi_sas driver updates (LP: #1695999)
        - [Config] updateconfigs following rebase
    
      * raspi2 config diverges from master/generic armhf (LP: #1693250)
        - [Config] config sync wrt master
        - disable SND_ARMAACI, FTBFS
        - skip ABI and modules checks
    
      [ Ubuntu: 4.10.0-28.32 ]
    
      * linux: 4.10.0-28.32 -proposed tracker (LP: #1701013)
      * KILLER1435-S[0489:e0a2] BT cannot search BT 4.0 device (LP: #1699651)
        - Bluetooth: btusb: Add support for 0489:e0a2 QCA_ROME device
      * aacraid driver may return uninitialized stack data to userspace
        (LP: #1700077)
        - SAUCE: scsi: aacraid: Don't copy uninitialized stack memory to userspace
      * CVE-2017-9605
        - drm/vmwgfx: Make sure backup_handle is always valid
      * CVE-2017-1000380
        - ALSA: timer: Fix race between read and ioctl
        - ALSA: timer: Fix missing queue indices reset at SNDRV_TIMER_IOCTL_SELECT
      * XDP eBPF programs fail to verify on Zesty ppc64el (LP: #1699627)
        - [Config] ppc64el: build for Power8 not Power7
      * AACRAID for power9 platform (LP: #1689980)
        - scripts/spelling.txt: add "therfore" pattern and fix typo instances
        - scsi: aacraid: fix PCI error recovery path
        - scsi: aacraid: pci_alloc_consistent() failures on ARM64
        - scsi: aacraid: Remove __GFP_DMA for raw srb memory
        - scsi: aacraid: Fix DMAR issues with iommu=pt
        - scsi: aacraid: Added 32 and 64 queue depth for arc natives
        - scsi: aacraid: Set correct Queue Depth for HBA1000 RAW disks
        - scsi: aacraid: Remove reset support from check_health
        - scsi: aacraid: Change wait time for fib completion
        - scsi: aacraid: Log count info of scsi cmds before reset
        - scsi: aacraid: Print ctrl status before eh reset
        - scsi: aacraid: Using single reset mask for IOP reset
        - scsi: aacraid: Rework IOP reset
        - scsi: aacraid: Add periodic checks to see IOP reset status
        - scsi: aacraid: Rework SOFT reset code
        - scsi: aacraid: Rework aac_src_restart
        - scsi: aacraid: Use correct function to get ctrl health
        - scsi: aacraid: Make sure ioctl returns on controller reset
        - scsi: aacraid: Enable ctrl reset for both hba and arc
        - scsi: aacraid: Add reset debugging statements
        - scsi: aacraid: Remove reference to Series-9
        - scsi: aacraid: Update driver version to 50834
      * arm64 kernel crashdump support (LP: #1694859)
        - memblock: add memblock_clear_nomap()
        - memblock: add memblock_cap_memory_range()
        - arm64: limit memory regions based on DT property, usable-memory-range
        - arm64: kdump: reserve memory for crash dump kernel
        - arm64: mm: add set_memory_valid()
        - arm64: mm: use phys_addr_t instead of unsigned long in __map_memblock
        - arm64: kdump: protect crash dump kernel memory
        - arm64: hibernate: preserve kdump image around hibernation
        - arm64: kdump: implement machine_crash_shutdown()
        - arm64: kdump: add VMCOREINFO's for user-space tools
        - [Config] CONFIG_CRASH_DUMP=y on arm64
        - arm64: kdump: provide /proc/vmcore file
        - Documentation: kdump: describe arm64 port
        - Documentation: dt: chosen properties for arm64 kdump
        - efi/libstub/arm*: Set default address and size cells values for an empty dtb
      * hibmc driver does not include "pci:" prefix in bus ID (LP: #1698700)
        - SAUCE: drm: hibmc: Use set_busid function from drm core
      * Processes in "D" state due to zap_pid_ns_processes kernel call with Ubuntu +
        Docker (LP: #1698264)
        - pid_ns: Sleep in TASK_INTERRUPTIBLE in zap_pid_ns_processes
      * Bugfixes for  hns network driver (LP: #1696031)
        - hns_enet: use cpumask_var_t for on-stack mask
        - net: hns: fix uninitialized data use
        - net: hns: avoid gcc-7.0.1 warning for uninitialized data
        - net: hns: Add ACPI support to check SFP present
        - net: hns: Fix the implementation of irq affinity function
        - net: hns: Modify GMAC init TX threshold value
        - net: hns: Optimize the code for GMAC pad and crc Config
        - net: hns: Remove redundant memset during buffer release
        - net: hns: bug fix of ethtool show the speed
        - net: hns: Optimize hns_nic_common_poll for better performance
        - net: hns: Fix to adjust buf_size of ring according to mtu
        - net: hns: Replace netif_tx_lock to ring spin lock
        - net: hns: Correct HNS RSS key set function
        - net: hns: Remove the redundant adding and deleting mac function
        - net: hns: Remove redundant mac_get_id()
        - net: hns: Remove redundant mac table operations
        - net: hns: Clean redundant code from hns_mdio.c file
        - net: hns: Optimise the code in hns_mdio_wait_ready()
        - net: hns: Simplify the exception sequence in hns_ppe_init()
        - net: hns: Adjust the SBM module buffer threshold
        - net: hns: Avoid Hip06 chip TX packet line bug
        - net: hns: Some checkpatch.pl script & warning fixes
        - net: hns: support deferred probe when can not obtain irq
        - net: hns: support deferred probe when no mdio
        - net: hns: fix ethtool_get_strings overflow in hns driver
      * CVE-2017-7346
        - drm/vmwgfx: limit the number of mip levels in vmw_gb_surface_define_ioctl()
      * [SRU][Zesty] qcom_emac is unable to get ip address with at803x phy driver.
        (LP: #1696143)
        - net: qcom/emac: do not use hardware mdio automatic polling
      * hisi_sas driver updates (LP: #1695999)
        - scsi: hisi_sas: service v2 hw CQ ISR with tasklet
        - scsi: hisi_sas: lock sensitive regions when servicing CQ interrupt
        - scsi: hisi_sas: lock sensitive region in hisi_sas_slot_abort()
        - scsi: hisi_sas: workaround v2 hw SATA IO timeout issue
        - scsi: hisi_sas: modify some values of ITCT table
        - scsi: hisi_sas: downgrade refclk message
        - scsi: hisi_sas: modify hard reset for directed-attached disk
        - scsi: hisi_sas: downgrade internal abort exit print
        - scsi: hisi_sas: fix probe ordering problem
        - scsi: hisi_sas: decrease running_req in hisi_sas_slot_task_free()
        - scsi: hisi_sas: add to_hisi_sas_port()
        - scsi: hisi_sas: add controller reset
        - scsi: hisi_sas: move PHY init to hisi_sas_scan_start()
        - scsi: hisi_sas: add softreset function for SATA disk
        - scsi: hisi_sas: remove hisi_sas_port_deformed()
        - scsi: hisi_sas: error hisi_sas_task_prep() when port down
        - scsi: hisi_sas: only reset link for PHY_FUNC_LINK_RESET
        - scsi: hisi_sas: modify error handling for v2 hw
        - scsi: hisi_sas: modify hisi_sas_abort_task() for SSP
        - scsi: hisi_sas: hardreset for SATA disk in LU reset
        - scsi: hisi_sas: check for SAS_TASK_STATE_ABORTED in slot complete
        - scsi: hisi_sas: free slots after hardreset
        - scsi: hisi_sas: fix some sas_task.task_state_lock locking
        - scsi: hisi_sas: remove task free'ing for timeouts
        - scsi: hisi_sas: process error codes according to their priority
        - scsi: hisi_sas: some modifications to v2 hw reg init values
        - scsi: hisi_sas: handle PHY UP+DOWN simultaneous irq
        - scsi: hisi_sas: rename hisi_sas_link_timeout_{enable, disable}_link
        - scsi: hisi_sas: add hisi_sas_clear_nexus_ha()
        - scsi: hisi_sas: release SMP slot in lldd_abort_task
        - scsi: hisi_sas: check hisi_sas_lu_reset() error message
        - scsi: hisi_sas: use dev_is_sata to identify SATA or SAS disk
        - scsi: hisi_sas: add is_sata_phy_v2_hw()
        - scsi: hisi_sas: add missing break in switch statement
        - scsi: hisi_sas: fix SATA dependency
        - scsi: hisi_sas: workaround STP link SoC bug
        - scsi: hisi_sas: workaround a SoC SATA IO processing bug
        - scsi: hisi_sas: workaround SoC about abort timeout bug
        - scsi: hisi_sas: add v2 hw internal abort timeout workaround
        - scsi: hisi_sas: fix NULL deference when TMF timeouts
        - scsi: hisi_sas: controller reset for multi-bits ECC and AXI fatal errors
      * [SRU][Zesty] fix soft lockup on overcommited hugepages (LP: #1696165)
        - mm/migrate: fix refcount handling when !hugepage_migration_supported()
      * HiSilicon D05: installer doesn't appear on VGA (LP: #1698954)
        - d-i: Add hibmc-drm to kernel-image udeb
      * Fix /proc/cpuinfo revision for POWER9 DD2 (LP: #1698844)
        - SAUCE: powerpc: Fix /proc/cpuinfo revision for POWER9 DD2
      * CVE-2014-9900
        - net: Zeroing the structure ethtool_wolinfo in ethtool_get_wol()
      * OpenPower: Some multipaths temporarily have only a single path
        (LP: #1696445)
        - scsi: ses: don't get power status of SES device slot on probe
    
     -- Juerg Haefliger <email address hidden>  Fri, 30 Jun 2017 12:25:42 +0200
  • linux-raspi2 (4.10.0-1010.13) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1010.13 -proposed tracker (LP: #1700532)
    
    
      [ Ubuntu: 4.10.0-26.30 ]
    
      * linux: 4.10.0-26.30 -proposed tracker (LP: #1700528)
      * CVE-2017-1000364
        - Revert "UBUNTU: SAUCE: mm: Only expand stack if guard area is hit"
        - Revert "mm: do not collapse stack gap into THP"
        - Revert "mm: enlarge stack guard gap"
        - mm: larger stack guard gap, between vmas
        - mm: fix new crash in unmapped_area_topdown()
        - Allow stack to grow up to address space limit
    
    linux-raspi2 (4.10.0-1009.12) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1009.12 -proposed tracker (LP: #1699032)
    
      [ Ubuntu: 4.10.0-25.29 ]
    
      * linux: 4.10.0-25.29 -proposed tracker (LP: #1699028)
      * CVE-2017-1000364
        - SAUCE: mm: Only expand stack if guard area is hit
      * CVE-2017-9074
        - ipv6: Prevent overrun when parsing v6 header options
        - ipv6: Check ip6_find_1stfragopt() return value properly.
      * [Zesty] QDF2400 ARM64 server - NMI watchdog: BUG: soft lockup - CPU#8 stuck
        for 22s!  (LP: #1680549)
        - iommu/dma: Stop getting dma_32bit_pfn wrong
        - iommu/dma: Implement PCI allocation optimisation
        - iommu/dma: Convert to address-based allocation
        - iommu/dma: Clean up MSI IOVA allocation
        - iommu/dma: Plumb in the per-CPU IOVA caches
        - iommu/iova: Fix underflow bug in __alloc_and_insert_iova_range
      * Zesty update to 4.10.17 stable release (LP: #1692898)
        - xen: adjust early dom0 p2m handling to xen hypervisor behavior
        - target: Fix compare_and_write_callback handling for non GOOD status
        - target/fileio: Fix zero-length READ and WRITE handling
        - iscsi-target: Set session_fall_back_to_erl0 when forcing reinstatement
        - usb: xhci: bInterval quirk for TI TUSB73x0
        - usb: host: xhci: print correct command ring address
        - USB: serial: ftdi_sio: add device ID for Microsemi/Arrow SF2PLUS Dev Kit
        - USB: Proper handling of Race Condition when two USB class drivers try to
          call init_usb_class simultaneously
        - USB: Revert "cdc-wdm: fix "out-of-sync" due to missing notifications"
        - staging: vt6656: use off stack for in buffer USB transfers.
        - staging: vt6656: use off stack for out buffer USB transfers.
        - staging: gdm724x: gdm_mux: fix use-after-free on module unload
        - staging: wilc1000: Fix problem with wrong vif index
        - staging: comedi: jr3_pci: fix possible null pointer dereference
        - staging: comedi: jr3_pci: cope with jiffies wraparound
        - usb: misc: add missing continue in switch
        - usb: gadget: legacy gadgets are optional
        - usb: Make sure usb/phy/of gets built-in
        - usb: hub: Fix error loop seen after hub communication errors
        - usb: hub: Do not attempt to autosuspend disconnected devices
        - x86/boot: Fix BSS corruption/overwrite bug in early x86 kernel startup
        - selftests/x86/ldt_gdt_32: Work around a glibc sigaction() bug
        - x86, pmem: Fix cache flushing for iovec write < 8 bytes
        - um: Fix PTRACE_POKEUSER on x86_64
        - perf/x86: Fix Broadwell-EP DRAM RAPL events
        - KVM: x86: fix user triggerable warning in kvm_apic_accept_events()
        - KVM: arm/arm64: fix races in kvm_psci_vcpu_on
        - arm64: KVM: Fix decoding of Rt/Rt2 when trapping AArch32 CP accesses
        - block: fix blk_integrity_register to use template's interval_exp if not 0
        - crypto: s5p-sss - Close possible race for completed requests
        - crypto: algif_aead - Require setkey before accept(2)
        - crypto: ccp - Use only the relevant interrupt bits
        - crypto: ccp - Disable interrupts early on unload
        - crypto: ccp - Change ISR handler method for a v3 CCP
        - crypto: ccp - Change ISR handler method for a v5 CCP
        - dm crypt: rewrite (wipe) key in crypto layer using random data
        - dm era: save spacemap metadata root after the pre-commit
        - dm rq: check blk_mq_register_dev() return value in
          dm_mq_init_request_queue()
        - dm thin: fix a memory leak when passing discard bio down
        - vfio/type1: Remove locked page accounting workqueue
        - iov_iter: don't revert iov buffer if csum error
        - IB/core: Fix sysfs registration error flow
        - IB/core: For multicast functions, verify that LIDs are multicast LIDs
        - IB/IPoIB: ibX: failed to create mcg debug file
        - IB/mlx4: Fix ib device initialization error flow
        - IB/mlx4: Reduce SRIOV multicast cleanup warning message to debug level
        - IB/hfi1: Prevent kernel QP post send hard lockups
        - perf auxtrace: Fix no_size logic in addr_filter__resolve_kernel_syms()
        - perf annotate s390: Fix perf annotate error -95 (4.10 regression)
        - perf annotate s390: Implement jump types for perf annotate
        - jbd2: fix dbench4 performance regression for 'nobarrier' mounts
        - ext4: evict inline data when writing to memory map
        - orangefs: fix bounds check for listxattr
        - orangefs: clean up oversize xattr validation
        - orangefs: do not set getattr_time on orangefs_lookup
        - orangefs: do not check possibly stale size on truncate
        - fs/xattr.c: zero out memory copied to userspace in getxattr
        - ceph: fix memory leak in __ceph_setxattr()
        - fs/block_dev: always invalidate cleancache in invalidate_bdev()
        - mm: prevent potential recursive reclaim due to clearing PF_MEMALLOC
        - Fix match_prepath()
        - Set unicode flag on cifs echo request to avoid Mac error
        - SMB3: Work around mount failure when using SMB3 dialect to Macs
        - CIFS: fix mapping of SFM_SPACE and SFM_PERIOD
        - cifs: fix leak in FSCTL_ENUM_SNAPS response handling
        - cifs: fix CIFS_ENUMERATE_SNAPSHOTS oops
        - CIFS: fix oplock break deadlocks
        - cifs: fix CIFS_IOC_GET_MNT_INFO oops
        - CIFS: add misssing SFM mapping for doublequote
        - ovl: do not set overlay.opaque on non-dir create
        - padata: free correct variable
        - md/raid1: avoid reusing a resync bio after error handling.
        - device-dax: fix cdev leak
        - device-dax: fix sysfs attribute deadlock
        - dax: prevent invalidation of mapped DAX entries
        - mm: fix data corruption due to stale mmap reads
        - f2fs: fix fs corruption due to zero inode page
        - fscrypt: fix context consistency check when key(s) unavailable
        - serial: samsung: Use right device for DMA-mapping calls
        - serial: omap: fix runtime-pm handling on unbind
        - serial: omap: suspend device on probe errors
        - tty: pty: Fix ldisc flush after userspace become aware of the data already
        - Bluetooth: Fix user channel for 32bit userspace on 64bit kernel
        - Bluetooth: hci_bcm: add missing tty-device sanity check
        - Bluetooth: hci_intel: add missing tty-device sanity check
        - libnvdimm, region: fix flush hint detection crash
        - libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify
        - libnvdimm: fix nvdimm_bus_lock() vs device_lock() ordering
        - libnvdimm, pfn: fix 'npfns' vs section alignment
        - pstore: Shut down worker when unregistering
        - Linux 4.10.17
      * [SRU][Zesty] Support SMMU passthrough using the default domain
        (LP: #1688158)
        - iommu/arm-smmu: Restrict domain attributes to UNMANAGED domains
        - iommu/arm-smmu: Install bypass S2CRs for IOMMU_DOMAIN_IDENTITY domains
        - iommu/arm-smmu-v3: Make arm_smmu_install_ste_for_dev return void
        - iommu: Rename iommu_get_instance()
        - iommu: Rename struct iommu_device
        - iommu: Introduce new 'struct iommu_device'
        - iommu: Add sysfs bindings for struct iommu_device
        - iommu: Make iommu_device_link/unlink take a struct iommu_device
        - iommu: Add iommu_device_set_fwnode() interface
        - iommu/arm-smmu: Make use of the iommu_register interface
        - iommu/arm-smmu-v3: Install bypass STEs for IOMMU_DOMAIN_IDENTITY domains
        - iommu: Allow default domain type to be set on the kernel command line
        - arm64: dma-mapping: Only swizzle DMA ops for IOMMU_DOMAIN_DMA
        - iommu/vt-d: Fix crash on boot when DMAR is disabled
      * Enable Matrox driver for Ubuntu 16.04.3 (LP: #1693337)
        - [Config] Enable CONFIG_DRM_MGAG200 as module
        - drm/mgag200: Added support for the new device G200eH3
      * Ubuntu16.04.03: POWER9 XIVE: msgsnd/doorbell IPI support (backport)
        (LP: #1691973)
        - powerpc/64s: Add msgp facility unavailable log string
        - powerpc/64s: Add SCV FSCR bit for ISA v3.0
        - powerpc/xmon: Dump memory in CPU endian format
        - powerpc/xive: Native exploitation of the XIVE interrupt controller
        - powerpc: Change the doorbell IPI calling convention
        - powerpc: Introduce msgsnd/doorbell barrier primitives
        - powerpc/64s: Avoid a branch for ppc_msgsnd
        - powerpc/powernv: POWER9 support for msgsnd/doorbell IPI
        - powerpc: Add optional smp_ops->prepare_cpu SMP callback
        - powerpc: Add more PPC bit conversion macros
        - powerpc/powernv: Add XIVE related definitions to opal-api.h
        - powerpc/smp: Remove migrate_irq() custom implementation
        - powerpc/powernv: Fix oops on P9 DD1 in cause_ipi()
        - (config) Update configs with PPC_XIVE options
      * CVE-2017-100363
        - char: lp: fix possible integer overflow in lp_setup()
      * CVE-2017-9242
        - ipv6: fix out of bound writes in __ip6_append_data()
      * CVE-2017-9075
        - sctp: do not inherit ipv6_{mc|ac|fl}_list from parent
      * CVE-2017-9076
        - ipv6/dccp: do not inherit ipv6_mc_list from parent
      * CVE-2017-9077
        - ipv6/dccp: do not inherit ipv6_mc_list from parent
      * CVE-2017-8890
        - dccp/tcp: do not inherit mc_list from parent
      * Module signing exclusion for staging drivers does not work properly
        (LP: #1690908)
        - SAUCE: Fix module signing exclusion in package builds
      * extend-diff-ignore should use exact matches (LP: #1693504)
        - [Packaging] exact extend-diff-ignore matches
      * Marvell MacchiatoBin crashes in fintek_8250_probe() (LP: #1692548)
        - drivers/tty: 8250: only call fintek_8250_probe when doing port I/O
      * arm-smmu arm-smmu.2.auto: Unhandled context fault (LP: #1694506)
        - net: thunderx: Fix IOMMU translation faults
      * arm64: mbigen updates (LP: #1692783)
        - Revert "UBUNTU: SAUCE: irqchip: mbigen: Add ACPI support"
        - irqchip/mbigen: Add ACPI support
        - irqchip/mbigen: Fix return value check in mbigen_device_probe()
        - irqchip/mbigen: Fix memory mapping code
        - irqchip/mbigen: Fix potential NULL dereferencing
        - irqchip/mbigen: Fix the clear register offset calculation
      * System doesn't boot properly on Gigabyte AM4 motherboards (AMD Ryzen)
        (LP: #1671360)
        - pinctrl: amd: make use of raw_spinlock variants
        - pinctrl/amd: Use regular interrupt instead of chained
      * PowerPC: Pstore dump for powerpc is broken (LP: #1691045)
        - pstore: Fix flags to enable dumps on powerpc
      * Dell Inspiron on kernel 4.10 : battery detected only after AC power adapter
        event (LP: #1678590)
        - ACPI / blacklist: add _REV quirk for Dell Inspiron 7537
      * APST quirk needed for Intel NVMe (LP: #1686592)
        - nvme: Quirk APST on Intel 600P/P3100 devices
      * Merlin SGMII fail on Ubuntu Xenial HWE kernel (LP: #1686305)
        - drivers: net: phy: xgene: Fix mdio write
      * Zesty update to 4.10.16 stable release (LP: #1691369)
        - 9p: fix a potential acl leak
        - drm/sti: fix GDP size to support up to UHD resolution
        - hwmon: (it87) Fix pwm4 detection for IT8620 and IT8628
        - mtd: nand: Add OX820 NAND hardware dependency
        - tpm: fix RC value check in tpm2_seal_trusted
        - tmp: use pdev for parent device in tpm_chip_alloc
        - crypto: caam - fix error path for ctx_dma mapping failure
        - crypto: caam - don't dma_map key for hash algorithms
        - power: supply: lp8788: prevent out of bounds array access
        - cpupower: Fix turbo frequency reporting for pre-Sandy Bridge cores
        - powerpc/perf: Fix perf_get_data_addr() for power9 DD1
        - powerpc/perf: Handle sdar_mode for marked event in power9
        - powerpc/mm: Fixup wrong LPCR_VRMASD value
        - powerpc/powernv: Fix opal_exit tracepoint opcode
        - powerpc/mm: Fix build break when CMA=n && SPAPR_TCE_IOMMU=y
        - powerpc/ftrace: Fix confusing help text for DISABLE_MPROFILE_KERNEL
        - powerpc: Correctly disable latent entropy GCC plugin on prom_init.o
        - power: supply: bq24190_charger: Fix irq trigger to IRQF_TRIGGER_FALLING
        - power: supply: bq24190_charger: Call set_mode_host() on pm_resume()
        - power: supply: bq24190_charger: Install irq_handler_thread() at end of
          probe()
        - power: supply: bq24190_charger: Call power_supply_changed() for relevant
          component
        - power: supply: bq24190_charger: Don't read fault register outside
          irq_handle_thread()
        - power: supply: bq24190_charger: Handle fault before status on interrupt
        - arm64: dts: r8a7795: Mark EthernetAVB device node disabled
        - arm: dts: qcom: Fix ipq board clock rates
        - arm64: remove wrong CONFIG_PROC_SYSCTL ifdef
        - arm64: Improve detection of user/non-user mappings in set_pte(_at)
        - spi: armada-3700: Remove spi_master_put in a3700_spi_remove()
        - leds: ktd2692: avoid harmless maybe-uninitialized warning
        - ARM: pxa: ezx: fix a910 camera data
        - ARM: dts: NSP: GPIO reboot open-source
        - ARM: dts: imx6sx-udoo-neo: Fix reboot hang
        - ARM: OMAP5 / DRA7: Fix HYP mode boot for thumb2 build
        - ARM: OMAP3: Fix smartreflex platform data regression
        - ARM: dts: am57xx-idk: tpic2810 is on I2C bus, not SPI
        - ARM: dts: sun7i: lamobo-r1: Fix CPU port RGMII settings
        - mwifiex: debugfs: Fix (sometimes) off-by-1 SSID print
        - mwifiex: remove redundant dma padding in AMSDU
        - mwifiex: Avoid skipping WEP key deletion for AP
        - mwifiex: don't enable/disable IRQ 0 during suspend/resume
        - mwifiex: set adapter->dev before starting to use mwifiex_dbg()
        - iwlwifi: mvm: properly check for transport data in dump
        - iwlwifi: mvm: don't restart HW if suspend fails with unified image
        - iwlwifi: mvm: overwrite skb info later
        - iwlwifi: pcie: don't increment / decrement a bool
        - iwlwifi: pcie: trans: Remove unused 'shift_param'
        - iwlwifi: pcie: fix the set of DMA memory mask
        - iwlwifi: mvm: fix reorder timer re-arming
        - iwlwifi: mvm: Use aux queue for offchannel frames in dqa
        - iwlwifi: mvm/pcie: adjust A-MSDU tx_cmd length in PCIe
        - iwlwifi: mvm: fix pending frame counter calculation
        - iwlwifi: mvm: fix references to first_agg_queue in DQA mode
        - iwlwifi: mvm: synchronize firmware DMA paging memory
        - iwlwifi: mvm: writing zero bytes to debugfs causes a crash
        - iwlwifi: mvm: fix accessing fw_id_to_mac_id
        - x86/ioapic: Restore IO-APIC irq_chip retrigger callback
        - x86/pci-calgary: Fix iommu_free() comparison of unsigned expression >= 0
        - x86/mpx: Re-add MPX to selftests Makefile
        - clk: Make x86/ conditional on CONFIG_COMMON_CLK
        - platform/x86: intel_pmc_core: fix out-of-bounds accesses on stack
        - kprobes/x86: Fix kernel panic when certain exception-handling addresses are
          probed
        - x86/platform/intel-mid: Correct MSI IRQ line for watchdog device
        - Revert "KVM: nested VMX: disable perf cpuid reporting"
        - KVM: nVMX: initialize PML fields in vmcs02
        - KVM: nVMX: do not leak PML full vmexit to L1
        - usb: dwc2: host: use msleep() for long delay
        - usb: host: ehci-exynos: Decrese node refcount on exynos_ehci_get_phy() error
          paths
        - usb: host: ohci-exynos: Decrese node refcount on exynos_ehci_get_phy() error
          paths
        - usb: chipidea: Only read/write OTGSC from one place
        - usb: chipidea: Handle extcon events properly
        - USB: serial: keyspan_pda: fix receive sanity checks
        - USB: serial: digi_acceleport: fix incomplete rx sanity check
        - USB: serial: ssu100: fix control-message error handling
        - USB: serial: io_edgeport: fix epic-descriptor handling
        - USB: serial: ti_usb_3410_5052: fix control-message error handling
        - USB: serial: ark3116: fix open error handling
        - USB: serial: ftdi_sio: fix latency-timer error handling
        - USB: serial: quatech2: fix control-message error handling
        - USB: serial: mct_u232: fix modem-status error handling
        - USB: serial: ch341: fix modem-status handling
        - USB: serial: io_edgeport: fix descriptor error handling
        - clk: rockchip: add "," to mux_pll_src_apll_dpll_gpll_usb480m_p on rk3036
        - phy: qcom-usb-hs: Add depends on EXTCON
        - serial: 8250_omap: Fix probe and remove for PM runtime
        - scsi: qedi: Fix possible memory leak in qedi_iscsi_update_conn()
        - scsi: qedi: fix build error without DEBUG_FS
        - scsi: qla2xxx: Fix crash in qla2xxx_eh_abort on bad ptr
        - scsi: mac_scsi: Fix MAC_SCSI=m option when SCSI=m
        - scsi: smartpqi: fix time handling
        - MIPS: R2-on-R6 MULTU/MADDU/MSUBU emulation bugfix
        - brcmfmac: Ensure pointer correctly set if skb data location changes
        - brcmfmac: Make skb header writable before use
        - staging/lustre/llite: move root_squash from sysfs to debugfs
        - staging: wlan-ng: add missing byte order conversion
        - staging: emxx_udc: remove incorrect __init annotations
        - staging: lustre: ptlrpc: avoid warning on missing return
        - ALSA: hda - Fix deadlock of controller device lock at unbinding
        - sparc64: fix fault handling in NGbzero.S and GENbzero.S
        - tcp: do not underestimate skb->truesize in tcp_trim_head()
        - net: adjust skb->truesize in ___pskb_trim()
        - net: macb: fix phy interrupt parsing
        - geneve: fix incorrect setting of UDP checksum flag
        - bpf: enhance verifier to understand stack pointer arithmetic
        - bpf, arm64: fix jit branch offset related to ldimm64
        - tcp: fix wraparound issue in tcp_lp
        - net: ipv6: Do not duplicate DAD on link up
        - net: usb: qmi_wwan: add Telit ME910 support
        - tcp: do not inherit fastopen_req from parent
        - ipv4, ipv6: ensure raw socket message is big enough to hold an IP header
        - rtnetlink: NUL-terminate IFLA_PHYS_PORT_NAME string
        - ipv6: initialize route null entry in addrconf_init()
        - ipv6: reorder ip6_route_dev_notifier after ipv6_dev_notf
        - bnxt_en: allocate enough space for ->ntp_fltr_bmap
        - bpf: don't let ldimm64 leak map addresses on unprivileged
        - net: mdio-mux: bcm-iproc: call mdiobus_free() in error path
        - openvswitch: Set internal device max mtu to ETH_MAX_MTU.
        - f2fs: sanity check segment count
        - xen: Revert commits da72ff5bfcb0 and 72a9b186292d
        - drm/hisilicon/hibmc: Fix wrong pointer passed to PTR_ERR()
        - drm: mxsfb: drm_dev_alloc() returns error pointers
        - drm/ttm: fix use-after-free races in vm fault handling
        - block: get rid of blk_integrity_revalidate()
        - Linux 4.10.16
        - [Config] Remove CONFIG_MTD_NAND_OXNAS=m
        - Ignore missing oxnas_nand
      * Keyboard backlight control does not work on some dell laptops.
        (LP: #1693126)
        - platform/x86: dell-laptop: Add Latitude 7480 and others to the DMI whitelist
        - platform/x86: dell-laptop: Add keyboard backlight timeout AC settings
      * Hardware transaction memory corruption (LP: #1691477)
        - powerpc/tm: Fix FP and VMX register corruption
      * Offlined CPUs of a core fail to come up online on POWER9 DD1 (Ubuntu 17.04)
        (LP: #1685792)
        - powerpc/powernv: Move CPU-Offline idle state invocation from smp.c to idle.c
        - powerpc/powernv/smp: Add busy-wait loop as fall back for CPU-Hotplug
        - powerpc/powernv/idle: Don't override default/deepest directly in kernel
        - powerpc/powernv: Recover correct PACA on wakeup from a stop on P9 DD1
      * [Regression] NUMA_BALANCING disabled on arm64 (LP: #1690914)
        - [Config] CONFIG_NUMA_BALANCING{,_DEFAULT_ENABLED}=y on arm64
      * ATS fix: Fix opal_npu_destroy_context call (LP: #1692580)
        - powerpc/powernv/npu-dma.c: Fix opal_npu_destroy_context() call
      * powerpc/powernv: Introduce address translation services for Nvlink2
        (LP: #1690412)
        - powerpc/powernv: Require MMU_NOTIFIER to fix NPU build
        - drivers/of/base.c: Add of_property_read_u64_index
        - powerpc/powernv: Add sanity checks to pnv_pci_get_{gpu|npu}_dev
        - powerpc/powernv: Introduce address translation services for Nvlink2
      * exec'ing a setuid binary from a threaded program sometimes fails to setuid
        (LP: #1672819)
        - SAUCE: exec: ensure file system accounting in check_unsafe_exec is correct
    
     -- Juerg Haefliger <email address hidden>  Tue, 27 Jun 2017 12:52:33 +0200
  • linux-raspi2 (4.10.0-1009.12) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1009.12 -proposed tracker (LP: #1699032)
    
      [ Ubuntu: 4.10.0-25.29 ]
    
      * linux: 4.10.0-25.29 -proposed tracker (LP: #1699028)
      * CVE-2017-1000364
        - SAUCE: mm: Only expand stack if guard area is hit
      * CVE-2017-9074
        - ipv6: Prevent overrun when parsing v6 header options
        - ipv6: Check ip6_find_1stfragopt() return value properly.
      * [Zesty] QDF2400 ARM64 server - NMI watchdog: BUG: soft lockup - CPU#8 stuck
        for 22s!  (LP: #1680549)
        - iommu/dma: Stop getting dma_32bit_pfn wrong
        - iommu/dma: Implement PCI allocation optimisation
        - iommu/dma: Convert to address-based allocation
        - iommu/dma: Clean up MSI IOVA allocation
        - iommu/dma: Plumb in the per-CPU IOVA caches
        - iommu/iova: Fix underflow bug in __alloc_and_insert_iova_range
      * Zesty update to 4.10.17 stable release (LP: #1692898)
        - xen: adjust early dom0 p2m handling to xen hypervisor behavior
        - target: Fix compare_and_write_callback handling for non GOOD status
        - target/fileio: Fix zero-length READ and WRITE handling
        - iscsi-target: Set session_fall_back_to_erl0 when forcing reinstatement
        - usb: xhci: bInterval quirk for TI TUSB73x0
        - usb: host: xhci: print correct command ring address
        - USB: serial: ftdi_sio: add device ID for Microsemi/Arrow SF2PLUS Dev Kit
        - USB: Proper handling of Race Condition when two USB class drivers try to
          call init_usb_class simultaneously
        - USB: Revert "cdc-wdm: fix "out-of-sync" due to missing notifications"
        - staging: vt6656: use off stack for in buffer USB transfers.
        - staging: vt6656: use off stack for out buffer USB transfers.
        - staging: gdm724x: gdm_mux: fix use-after-free on module unload
        - staging: wilc1000: Fix problem with wrong vif index
        - staging: comedi: jr3_pci: fix possible null pointer dereference
        - staging: comedi: jr3_pci: cope with jiffies wraparound
        - usb: misc: add missing continue in switch
        - usb: gadget: legacy gadgets are optional
        - usb: Make sure usb/phy/of gets built-in
        - usb: hub: Fix error loop seen after hub communication errors
        - usb: hub: Do not attempt to autosuspend disconnected devices
        - x86/boot: Fix BSS corruption/overwrite bug in early x86 kernel startup
        - selftests/x86/ldt_gdt_32: Work around a glibc sigaction() bug
        - x86, pmem: Fix cache flushing for iovec write < 8 bytes
        - um: Fix PTRACE_POKEUSER on x86_64
        - perf/x86: Fix Broadwell-EP DRAM RAPL events
        - KVM: x86: fix user triggerable warning in kvm_apic_accept_events()
        - KVM: arm/arm64: fix races in kvm_psci_vcpu_on
        - arm64: KVM: Fix decoding of Rt/Rt2 when trapping AArch32 CP accesses
        - block: fix blk_integrity_register to use template's interval_exp if not 0
        - crypto: s5p-sss - Close possible race for completed requests
        - crypto: algif_aead - Require setkey before accept(2)
        - crypto: ccp - Use only the relevant interrupt bits
        - crypto: ccp - Disable interrupts early on unload
        - crypto: ccp - Change ISR handler method for a v3 CCP
        - crypto: ccp - Change ISR handler method for a v5 CCP
        - dm crypt: rewrite (wipe) key in crypto layer using random data
        - dm era: save spacemap metadata root after the pre-commit
        - dm rq: check blk_mq_register_dev() return value in
          dm_mq_init_request_queue()
        - dm thin: fix a memory leak when passing discard bio down
        - vfio/type1: Remove locked page accounting workqueue
        - iov_iter: don't revert iov buffer if csum error
        - IB/core: Fix sysfs registration error flow
        - IB/core: For multicast functions, verify that LIDs are multicast LIDs
        - IB/IPoIB: ibX: failed to create mcg debug file
        - IB/mlx4: Fix ib device initialization error flow
        - IB/mlx4: Reduce SRIOV multicast cleanup warning message to debug level
        - IB/hfi1: Prevent kernel QP post send hard lockups
        - perf auxtrace: Fix no_size logic in addr_filter__resolve_kernel_syms()
        - perf annotate s390: Fix perf annotate error -95 (4.10 regression)
        - perf annotate s390: Implement jump types for perf annotate
        - jbd2: fix dbench4 performance regression for 'nobarrier' mounts
        - ext4: evict inline data when writing to memory map
        - orangefs: fix bounds check for listxattr
        - orangefs: clean up oversize xattr validation
        - orangefs: do not set getattr_time on orangefs_lookup
        - orangefs: do not check possibly stale size on truncate
        - fs/xattr.c: zero out memory copied to userspace in getxattr
        - ceph: fix memory leak in __ceph_setxattr()
        - fs/block_dev: always invalidate cleancache in invalidate_bdev()
        - mm: prevent potential recursive reclaim due to clearing PF_MEMALLOC
        - Fix match_prepath()
        - Set unicode flag on cifs echo request to avoid Mac error
        - SMB3: Work around mount failure when using SMB3 dialect to Macs
        - CIFS: fix mapping of SFM_SPACE and SFM_PERIOD
        - cifs: fix leak in FSCTL_ENUM_SNAPS response handling
        - cifs: fix CIFS_ENUMERATE_SNAPSHOTS oops
        - CIFS: fix oplock break deadlocks
        - cifs: fix CIFS_IOC_GET_MNT_INFO oops
        - CIFS: add misssing SFM mapping for doublequote
        - ovl: do not set overlay.opaque on non-dir create
        - padata: free correct variable
        - md/raid1: avoid reusing a resync bio after error handling.
        - device-dax: fix cdev leak
        - device-dax: fix sysfs attribute deadlock
        - dax: prevent invalidation of mapped DAX entries
        - mm: fix data corruption due to stale mmap reads
        - f2fs: fix fs corruption due to zero inode page
        - fscrypt: fix context consistency check when key(s) unavailable
        - serial: samsung: Use right device for DMA-mapping calls
        - serial: omap: fix runtime-pm handling on unbind
        - serial: omap: suspend device on probe errors
        - tty: pty: Fix ldisc flush after userspace become aware of the data already
        - Bluetooth: Fix user channel for 32bit userspace on 64bit kernel
        - Bluetooth: hci_bcm: add missing tty-device sanity check
        - Bluetooth: hci_intel: add missing tty-device sanity check
        - libnvdimm, region: fix flush hint detection crash
        - libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify
        - libnvdimm: fix nvdimm_bus_lock() vs device_lock() ordering
        - libnvdimm, pfn: fix 'npfns' vs section alignment
        - pstore: Shut down worker when unregistering
        - Linux 4.10.17
      * [SRU][Zesty] Support SMMU passthrough using the default domain
        (LP: #1688158)
        - iommu/arm-smmu: Restrict domain attributes to UNMANAGED domains
        - iommu/arm-smmu: Install bypass S2CRs for IOMMU_DOMAIN_IDENTITY domains
        - iommu/arm-smmu-v3: Make arm_smmu_install_ste_for_dev return void
        - iommu: Rename iommu_get_instance()
        - iommu: Rename struct iommu_device
        - iommu: Introduce new 'struct iommu_device'
        - iommu: Add sysfs bindings for struct iommu_device
        - iommu: Make iommu_device_link/unlink take a struct iommu_device
        - iommu: Add iommu_device_set_fwnode() interface
        - iommu/arm-smmu: Make use of the iommu_register interface
        - iommu/arm-smmu-v3: Install bypass STEs for IOMMU_DOMAIN_IDENTITY domains
        - iommu: Allow default domain type to be set on the kernel command line
        - arm64: dma-mapping: Only swizzle DMA ops for IOMMU_DOMAIN_DMA
        - iommu/vt-d: Fix crash on boot when DMAR is disabled
      * Enable Matrox driver for Ubuntu 16.04.3 (LP: #1693337)
        - [Config] Enable CONFIG_DRM_MGAG200 as module
        - drm/mgag200: Added support for the new device G200eH3
      * Ubuntu16.04.03: POWER9 XIVE: msgsnd/doorbell IPI support (backport)
        (LP: #1691973)
        - powerpc/64s: Add msgp facility unavailable log string
        - powerpc/64s: Add SCV FSCR bit for ISA v3.0
        - powerpc/xmon: Dump memory in CPU endian format
        - powerpc/xive: Native exploitation of the XIVE interrupt controller
        - powerpc: Change the doorbell IPI calling convention
        - powerpc: Introduce msgsnd/doorbell barrier primitives
        - powerpc/64s: Avoid a branch for ppc_msgsnd
        - powerpc/powernv: POWER9 support for msgsnd/doorbell IPI
        - powerpc: Add optional smp_ops->prepare_cpu SMP callback
        - powerpc: Add more PPC bit conversion macros
        - powerpc/powernv: Add XIVE related definitions to opal-api.h
        - powerpc/smp: Remove migrate_irq() custom implementation
        - powerpc/powernv: Fix oops on P9 DD1 in cause_ipi()
        - (config) Update configs with PPC_XIVE options
      * CVE-2017-100363
        - char: lp: fix possible integer overflow in lp_setup()
      * CVE-2017-9242
        - ipv6: fix out of bound writes in __ip6_append_data()
      * CVE-2017-9075
        - sctp: do not inherit ipv6_{mc|ac|fl}_list from parent
      * CVE-2017-9076
        - ipv6/dccp: do not inherit ipv6_mc_list from parent
      * CVE-2017-9077
        - ipv6/dccp: do not inherit ipv6_mc_list from parent
      * CVE-2017-8890
        - dccp/tcp: do not inherit mc_list from parent
      * Module signing exclusion for staging drivers does not work properly
        (LP: #1690908)
        - SAUCE: Fix module signing exclusion in package builds
      * extend-diff-ignore should use exact matches (LP: #1693504)
        - [Packaging] exact extend-diff-ignore matches
      * Marvell MacchiatoBin crashes in fintek_8250_probe() (LP: #1692548)
        - drivers/tty: 8250: only call fintek_8250_probe when doing port I/O
      * arm-smmu arm-smmu.2.auto: Unhandled context fault (LP: #1694506)
        - net: thunderx: Fix IOMMU translation faults
      * arm64: mbigen updates (LP: #1692783)
        - Revert "UBUNTU: SAUCE: irqchip: mbigen: Add ACPI support"
        - irqchip/mbigen: Add ACPI support
        - irqchip/mbigen: Fix return value check in mbigen_device_probe()
        - irqchip/mbigen: Fix memory mapping code
        - irqchip/mbigen: Fix potential NULL dereferencing
        - irqchip/mbigen: Fix the clear register offset calculation
      * System doesn't boot properly on Gigabyte AM4 motherboards (AMD Ryzen)
        (LP: #1671360)
        - pinctrl: amd: make use of raw_spinlock variants
        - pinctrl/amd: Use regular interrupt instead of chained
      * PowerPC: Pstore dump for powerpc is broken (LP: #1691045)
        - pstore: Fix flags to enable dumps on powerpc
      * Dell Inspiron on kernel 4.10 : battery detected only after AC power adapter
        event (LP: #1678590)
        - ACPI / blacklist: add _REV quirk for Dell Inspiron 7537
      * APST quirk needed for Intel NVMe (LP: #1686592)
        - nvme: Quirk APST on Intel 600P/P3100 devices
      * Merlin SGMII fail on Ubuntu Xenial HWE kernel (LP: #1686305)
        - drivers: net: phy: xgene: Fix mdio write
      * Zesty update to 4.10.16 stable release (LP: #1691369)
        - 9p: fix a potential acl leak
        - drm/sti: fix GDP size to support up to UHD resolution
        - hwmon: (it87) Fix pwm4 detection for IT8620 and IT8628
        - mtd: nand: Add OX820 NAND hardware dependency
        - tpm: fix RC value check in tpm2_seal_trusted
        - tmp: use pdev for parent device in tpm_chip_alloc
        - crypto: caam - fix error path for ctx_dma mapping failure
        - crypto: caam - don't dma_map key for hash algorithms
        - power: supply: lp8788: prevent out of bounds array access
        - cpupower: Fix turbo frequency reporting for pre-Sandy Bridge cores
        - powerpc/perf: Fix perf_get_data_addr() for power9 DD1
        - powerpc/perf: Handle sdar_mode for marked event in power9
        - powerpc/mm: Fixup wrong LPCR_VRMASD value
        - powerpc/powernv: Fix opal_exit tracepoint opcode
        - powerpc/mm: Fix build break when CMA=n && SPAPR_TCE_IOMMU=y
        - powerpc/ftrace: Fix confusing help text for DISABLE_MPROFILE_KERNEL
        - powerpc: Correctly disable latent entropy GCC plugin on prom_init.o
        - power: supply: bq24190_charger: Fix irq trigger to IRQF_TRIGGER_FALLING
        - power: supply: bq24190_charger: Call set_mode_host() on pm_resume()
        - power: supply: bq24190_charger: Install irq_handler_thread() at end of
          probe()
        - power: supply: bq24190_charger: Call power_supply_changed() for relevant
          component
        - power: supply: bq24190_charger: Don't read fault register outside
          irq_handle_thread()
        - power: supply: bq24190_charger: Handle fault before status on interrupt
        - arm64: dts: r8a7795: Mark EthernetAVB device node disabled
        - arm: dts: qcom: Fix ipq board clock rates
        - arm64: remove wrong CONFIG_PROC_SYSCTL ifdef
        - arm64: Improve detection of user/non-user mappings in set_pte(_at)
        - spi: armada-3700: Remove spi_master_put in a3700_spi_remove()
        - leds: ktd2692: avoid harmless maybe-uninitialized warning
        - ARM: pxa: ezx: fix a910 camera data
        - ARM: dts: NSP: GPIO reboot open-source
        - ARM: dts: imx6sx-udoo-neo: Fix reboot hang
        - ARM: OMAP5 / DRA7: Fix HYP mode boot for thumb2 build
        - ARM: OMAP3: Fix smartreflex platform data regression
        - ARM: dts: am57xx-idk: tpic2810 is on I2C bus, not SPI
        - ARM: dts: sun7i: lamobo-r1: Fix CPU port RGMII settings
        - mwifiex: debugfs: Fix (sometimes) off-by-1 SSID print
        - mwifiex: remove redundant dma padding in AMSDU
        - mwifiex: Avoid skipping WEP key deletion for AP
        - mwifiex: don't enable/disable IRQ 0 during suspend/resume
        - mwifiex: set adapter->dev before starting to use mwifiex_dbg()
        - iwlwifi: mvm: properly check for transport data in dump
        - iwlwifi: mvm: don't restart HW if suspend fails with unified image
        - iwlwifi: mvm: overwrite skb info later
        - iwlwifi: pcie: don't increment / decrement a bool
        - iwlwifi: pcie: trans: Remove unused 'shift_param'
        - iwlwifi: pcie: fix the set of DMA memory mask
        - iwlwifi: mvm: fix reorder timer re-arming
        - iwlwifi: mvm: Use aux queue for offchannel frames in dqa
        - iwlwifi: mvm/pcie: adjust A-MSDU tx_cmd length in PCIe
        - iwlwifi: mvm: fix pending frame counter calculation
        - iwlwifi: mvm: fix references to first_agg_queue in DQA mode
        - iwlwifi: mvm: synchronize firmware DMA paging memory
        - iwlwifi: mvm: writing zero bytes to debugfs causes a crash
        - iwlwifi: mvm: fix accessing fw_id_to_mac_id
        - x86/ioapic: Restore IO-APIC irq_chip retrigger callback
        - x86/pci-calgary: Fix iommu_free() comparison of unsigned expression >= 0
        - x86/mpx: Re-add MPX to selftests Makefile
        - clk: Make x86/ conditional on CONFIG_COMMON_CLK
        - platform/x86: intel_pmc_core: fix out-of-bounds accesses on stack
        - kprobes/x86: Fix kernel panic when certain exception-handling addresses are
          probed
        - x86/platform/intel-mid: Correct MSI IRQ line for watchdog device
        - Revert "KVM: nested VMX: disable perf cpuid reporting"
        - KVM: nVMX: initialize PML fields in vmcs02
        - KVM: nVMX: do not leak PML full vmexit to L1
        - usb: dwc2: host: use msleep() for long delay
        - usb: host: ehci-exynos: Decrese node refcount on exynos_ehci_get_phy() error
          paths
        - usb: host: ohci-exynos: Decrese node refcount on exynos_ehci_get_phy() error
          paths
        - usb: chipidea: Only read/write OTGSC from one place
        - usb: chipidea: Handle extcon events properly
        - USB: serial: keyspan_pda: fix receive sanity checks
        - USB: serial: digi_acceleport: fix incomplete rx sanity check
        - USB: serial: ssu100: fix control-message error handling
        - USB: serial: io_edgeport: fix epic-descriptor handling
        - USB: serial: ti_usb_3410_5052: fix control-message error handling
        - USB: serial: ark3116: fix open error handling
        - USB: serial: ftdi_sio: fix latency-timer error handling
        - USB: serial: quatech2: fix control-message error handling
        - USB: serial: mct_u232: fix modem-status error handling
        - USB: serial: ch341: fix modem-status handling
        - USB: serial: io_edgeport: fix descriptor error handling
        - clk: rockchip: add "," to mux_pll_src_apll_dpll_gpll_usb480m_p on rk3036
        - phy: qcom-usb-hs: Add depends on EXTCON
        - serial: 8250_omap: Fix probe and remove for PM runtime
        - scsi: qedi: Fix possible memory leak in qedi_iscsi_update_conn()
        - scsi: qedi: fix build error without DEBUG_FS
        - scsi: qla2xxx: Fix crash in qla2xxx_eh_abort on bad ptr
        - scsi: mac_scsi: Fix MAC_SCSI=m option when SCSI=m
        - scsi: smartpqi: fix time handling
        - MIPS: R2-on-R6 MULTU/MADDU/MSUBU emulation bugfix
        - brcmfmac: Ensure pointer correctly set if skb data location changes
        - brcmfmac: Make skb header writable before use
        - staging/lustre/llite: move root_squash from sysfs to debugfs
        - staging: wlan-ng: add missing byte order conversion
        - staging: emxx_udc: remove incorrect __init annotations
        - staging: lustre: ptlrpc: avoid warning on missing return
        - ALSA: hda - Fix deadlock of controller device lock at unbinding
        - sparc64: fix fault handling in NGbzero.S and GENbzero.S
        - tcp: do not underestimate skb->truesize in tcp_trim_head()
        - net: adjust skb->truesize in ___pskb_trim()
        - net: macb: fix phy interrupt parsing
        - geneve: fix incorrect setting of UDP checksum flag
        - bpf: enhance verifier to understand stack pointer arithmetic
        - bpf, arm64: fix jit branch offset related to ldimm64
        - tcp: fix wraparound issue in tcp_lp
        - net: ipv6: Do not duplicate DAD on link up
        - net: usb: qmi_wwan: add Telit ME910 support
        - tcp: do not inherit fastopen_req from parent
        - ipv4, ipv6: ensure raw socket message is big enough to hold an IP header
        - rtnetlink: NUL-terminate IFLA_PHYS_PORT_NAME string
        - ipv6: initialize route null entry in addrconf_init()
        - ipv6: reorder ip6_route_dev_notifier after ipv6_dev_notf
        - bnxt_en: allocate enough space for ->ntp_fltr_bmap
        - bpf: don't let ldimm64 leak map addresses on unprivileged
        - net: mdio-mux: bcm-iproc: call mdiobus_free() in error path
        - openvswitch: Set internal device max mtu to ETH_MAX_MTU.
        - f2fs: sanity check segment count
        - xen: Revert commits da72ff5bfcb0 and 72a9b186292d
        - drm/hisilicon/hibmc: Fix wrong pointer passed to PTR_ERR()
        - drm: mxsfb: drm_dev_alloc() returns error pointers
        - drm/ttm: fix use-after-free races in vm fault handling
        - block: get rid of blk_integrity_revalidate()
        - Linux 4.10.16
        - [Config] Remove CONFIG_MTD_NAND_OXNAS=m
        - Ignore missing oxnas_nand
      * Keyboard backlight control does not work on some dell laptops.
        (LP: #1693126)
        - platform/x86: dell-laptop: Add Latitude 7480 and others to the DMI whitelist
        - platform/x86: dell-laptop: Add keyboard backlight timeout AC settings
      * Hardware transaction memory corruption (LP: #1691477)
        - powerpc/tm: Fix FP and VMX register corruption
      * Offlined CPUs of a core fail to come up online on POWER9 DD1 (Ubuntu 17.04)
        (LP: #1685792)
        - powerpc/powernv: Move CPU-Offline idle state invocation from smp.c to idle.c
        - powerpc/powernv/smp: Add busy-wait loop as fall back for CPU-Hotplug
        - powerpc/powernv/idle: Don't override default/deepest directly in kernel
        - powerpc/powernv: Recover correct PACA on wakeup from a stop on P9 DD1
      * [Regression] NUMA_BALANCING disabled on arm64 (LP: #1690914)
        - [Config] CONFIG_NUMA_BALANCING{,_DEFAULT_ENABLED}=y on arm64
      * ATS fix: Fix opal_npu_destroy_context call (LP: #1692580)
        - powerpc/powernv/npu-dma.c: Fix opal_npu_destroy_context() call
      * powerpc/powernv: Introduce address translation services for Nvlink2
        (LP: #1690412)
        - powerpc/powernv: Require MMU_NOTIFIER to fix NPU build
        - drivers/of/base.c: Add of_property_read_u64_index
        - powerpc/powernv: Add sanity checks to pnv_pci_get_{gpu|npu}_dev
        - powerpc/powernv: Introduce address translation services for Nvlink2
      * exec'ing a setuid binary from a threaded program sometimes fails to setuid
        (LP: #1672819)
        - SAUCE: exec: ensure file system accounting in check_unsafe_exec is correct
    
     -- Stefan Bader <email address hidden>  Tue, 20 Jun 2017 16:51:39 +0200
  • linux-raspi2 (4.10.0-1008.11) zesty; urgency=low
    
      [ Ubuntu: 4.10.0-24.28 ]
    
      * CVE-2017-1000364
        - mm: enlarge stack guard gap
        - mm: do not collapse stack gap into THP
    
     -- Stefan Bader <email address hidden>  Wed, 14 Jun 2017 11:08:11 +0200
  • linux-raspi2 (4.10.0-1007.9) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1007.9 -proposed tracker (LP: #1696372)
    
      [ Ubuntu: 4.10.0-23.25 ]
    
      * linux: 4.10.0-23.25 -proposed tracker (LP: #1696369)
      * CVE-2017-9074
        - ipv6: Prevent overrun when parsing v6 header options
        - ipv6: Check ip6_find_1stfragopt() return value properly.
      * [Zesty] QDF2400 ARM64 server - NMI watchdog: BUG: soft lockup - CPU#8 stuck
        for 22s!  (LP: #1680549)
        - iommu/dma: Stop getting dma_32bit_pfn wrong
        - iommu/dma: Implement PCI allocation optimisation
        - iommu/dma: Convert to address-based allocation
        - iommu/dma: Clean up MSI IOVA allocation
        - iommu/dma: Plumb in the per-CPU IOVA caches
        - iommu/iova: Fix underflow bug in __alloc_and_insert_iova_range
      * Zesty update to 4.10.17 stable release (LP: #1692898)
        - xen: adjust early dom0 p2m handling to xen hypervisor behavior
        - target: Fix compare_and_write_callback handling for non GOOD status
        - target/fileio: Fix zero-length READ and WRITE handling
        - iscsi-target: Set session_fall_back_to_erl0 when forcing reinstatement
        - usb: xhci: bInterval quirk for TI TUSB73x0
        - usb: host: xhci: print correct command ring address
        - USB: serial: ftdi_sio: add device ID for Microsemi/Arrow SF2PLUS Dev Kit
        - USB: Proper handling of Race Condition when two USB class drivers try to
          call init_usb_class simultaneously
        - USB: Revert "cdc-wdm: fix "out-of-sync" due to missing notifications"
        - staging: vt6656: use off stack for in buffer USB transfers.
        - staging: vt6656: use off stack for out buffer USB transfers.
        - staging: gdm724x: gdm_mux: fix use-after-free on module unload
        - staging: wilc1000: Fix problem with wrong vif index
        - staging: comedi: jr3_pci: fix possible null pointer dereference
        - staging: comedi: jr3_pci: cope with jiffies wraparound
        - usb: misc: add missing continue in switch
        - usb: gadget: legacy gadgets are optional
        - usb: Make sure usb/phy/of gets built-in
        - usb: hub: Fix error loop seen after hub communication errors
        - usb: hub: Do not attempt to autosuspend disconnected devices
        - x86/boot: Fix BSS corruption/overwrite bug in early x86 kernel startup
        - selftests/x86/ldt_gdt_32: Work around a glibc sigaction() bug
        - x86, pmem: Fix cache flushing for iovec write < 8 bytes
        - um: Fix PTRACE_POKEUSER on x86_64
        - perf/x86: Fix Broadwell-EP DRAM RAPL events
        - KVM: x86: fix user triggerable warning in kvm_apic_accept_events()
        - KVM: arm/arm64: fix races in kvm_psci_vcpu_on
        - arm64: KVM: Fix decoding of Rt/Rt2 when trapping AArch32 CP accesses
        - block: fix blk_integrity_register to use template's interval_exp if not 0
        - crypto: s5p-sss - Close possible race for completed requests
        - crypto: algif_aead - Require setkey before accept(2)
        - crypto: ccp - Use only the relevant interrupt bits
        - crypto: ccp - Disable interrupts early on unload
        - crypto: ccp - Change ISR handler method for a v3 CCP
        - crypto: ccp - Change ISR handler method for a v5 CCP
        - dm crypt: rewrite (wipe) key in crypto layer using random data
        - dm era: save spacemap metadata root after the pre-commit
        - dm rq: check blk_mq_register_dev() return value in
          dm_mq_init_request_queue()
        - dm thin: fix a memory leak when passing discard bio down
        - vfio/type1: Remove locked page accounting workqueue
        - iov_iter: don't revert iov buffer if csum error
        - IB/core: Fix sysfs registration error flow
        - IB/core: For multicast functions, verify that LIDs are multicast LIDs
        - IB/IPoIB: ibX: failed to create mcg debug file
        - IB/mlx4: Fix ib device initialization error flow
        - IB/mlx4: Reduce SRIOV multicast cleanup warning message to debug level
        - IB/hfi1: Prevent kernel QP post send hard lockups
        - perf auxtrace: Fix no_size logic in addr_filter__resolve_kernel_syms()
        - perf annotate s390: Fix perf annotate error -95 (4.10 regression)
        - perf annotate s390: Implement jump types for perf annotate
        - jbd2: fix dbench4 performance regression for 'nobarrier' mounts
        - ext4: evict inline data when writing to memory map
        - orangefs: fix bounds check for listxattr
        - orangefs: clean up oversize xattr validation
        - orangefs: do not set getattr_time on orangefs_lookup
        - orangefs: do not check possibly stale size on truncate
        - fs/xattr.c: zero out memory copied to userspace in getxattr
        - ceph: fix memory leak in __ceph_setxattr()
        - fs/block_dev: always invalidate cleancache in invalidate_bdev()
        - mm: prevent potential recursive reclaim due to clearing PF_MEMALLOC
        - Fix match_prepath()
        - Set unicode flag on cifs echo request to avoid Mac error
        - SMB3: Work around mount failure when using SMB3 dialect to Macs
        - CIFS: fix mapping of SFM_SPACE and SFM_PERIOD
        - cifs: fix leak in FSCTL_ENUM_SNAPS response handling
        - cifs: fix CIFS_ENUMERATE_SNAPSHOTS oops
        - CIFS: fix oplock break deadlocks
        - cifs: fix CIFS_IOC_GET_MNT_INFO oops
        - CIFS: add misssing SFM mapping for doublequote
        - ovl: do not set overlay.opaque on non-dir create
        - padata: free correct variable
        - md/raid1: avoid reusing a resync bio after error handling.
        - device-dax: fix cdev leak
        - device-dax: fix sysfs attribute deadlock
        - dax: prevent invalidation of mapped DAX entries
        - mm: fix data corruption due to stale mmap reads
        - f2fs: fix fs corruption due to zero inode page
        - fscrypt: fix context consistency check when key(s) unavailable
        - serial: samsung: Use right device for DMA-mapping calls
        - serial: omap: fix runtime-pm handling on unbind
        - serial: omap: suspend device on probe errors
        - tty: pty: Fix ldisc flush after userspace become aware of the data already
        - Bluetooth: Fix user channel for 32bit userspace on 64bit kernel
        - Bluetooth: hci_bcm: add missing tty-device sanity check
        - Bluetooth: hci_intel: add missing tty-device sanity check
        - libnvdimm, region: fix flush hint detection crash
        - libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify
        - libnvdimm: fix nvdimm_bus_lock() vs device_lock() ordering
        - libnvdimm, pfn: fix 'npfns' vs section alignment
        - pstore: Shut down worker when unregistering
        - Linux 4.10.17
      * [SRU][Zesty] Support SMMU passthrough using the default domain
        (LP: #1688158)
        - iommu/arm-smmu: Restrict domain attributes to UNMANAGED domains
        - iommu/arm-smmu: Install bypass S2CRs for IOMMU_DOMAIN_IDENTITY domains
        - iommu/arm-smmu-v3: Make arm_smmu_install_ste_for_dev return void
        - iommu: Rename iommu_get_instance()
        - iommu: Rename struct iommu_device
        - iommu: Introduce new 'struct iommu_device'
        - iommu: Add sysfs bindings for struct iommu_device
        - iommu: Make iommu_device_link/unlink take a struct iommu_device
        - iommu: Add iommu_device_set_fwnode() interface
        - iommu/arm-smmu: Make use of the iommu_register interface
        - iommu/arm-smmu-v3: Install bypass STEs for IOMMU_DOMAIN_IDENTITY domains
        - iommu: Allow default domain type to be set on the kernel command line
        - arm64: dma-mapping: Only swizzle DMA ops for IOMMU_DOMAIN_DMA
        - iommu/vt-d: Fix crash on boot when DMAR is disabled
      * Enable Matrox driver for Ubuntu 16.04.3 (LP: #1693337)
        - [Config] Enable CONFIG_DRM_MGAG200 as module
        - drm/mgag200: Added support for the new device G200eH3
      * Ubuntu16.04.03: POWER9 XIVE: msgsnd/doorbell IPI support (backport)
        (LP: #1691973)
        - powerpc/64s: Add msgp facility unavailable log string
        - powerpc/64s: Add SCV FSCR bit for ISA v3.0
        - powerpc/xmon: Dump memory in CPU endian format
        - powerpc/xive: Native exploitation of the XIVE interrupt controller
        - powerpc: Change the doorbell IPI calling convention
        - powerpc: Introduce msgsnd/doorbell barrier primitives
        - powerpc/64s: Avoid a branch for ppc_msgsnd
        - powerpc/powernv: POWER9 support for msgsnd/doorbell IPI
        - powerpc: Add optional smp_ops->prepare_cpu SMP callback
        - powerpc: Add more PPC bit conversion macros
        - powerpc/powernv: Add XIVE related definitions to opal-api.h
        - powerpc/smp: Remove migrate_irq() custom implementation
        - powerpc/powernv: Fix oops on P9 DD1 in cause_ipi()
        - (config) Update configs with PPC_XIVE options
      * CVE-2017-100363
        - char: lp: fix possible integer overflow in lp_setup()
      * CVE-2017-9242
        - ipv6: fix out of bound writes in __ip6_append_data()
      * CVE-2017-9075
        - sctp: do not inherit ipv6_{mc|ac|fl}_list from parent
      * CVE-2017-9076
        - ipv6/dccp: do not inherit ipv6_mc_list from parent
      * CVE-2017-9077
        - ipv6/dccp: do not inherit ipv6_mc_list from parent
      * CVE-2017-8890
        - dccp/tcp: do not inherit mc_list from parent
      * Module signing exclusion for staging drivers does not work properly
        (LP: #1690908)
        - SAUCE: Fix module signing exclusion in package builds
      * extend-diff-ignore should use exact matches (LP: #1693504)
        - [Packaging] exact extend-diff-ignore matches
      * Marvell MacchiatoBin crashes in fintek_8250_probe() (LP: #1692548)
        - drivers/tty: 8250: only call fintek_8250_probe when doing port I/O
      * arm-smmu arm-smmu.2.auto: Unhandled context fault (LP: #1694506)
        - net: thunderx: Fix IOMMU translation faults
      * arm64: mbigen updates (LP: #1692783)
        - Revert "UBUNTU: SAUCE: irqchip: mbigen: Add ACPI support"
        - irqchip/mbigen: Add ACPI support
        - irqchip/mbigen: Fix return value check in mbigen_device_probe()
        - irqchip/mbigen: Fix memory mapping code
        - irqchip/mbigen: Fix potential NULL dereferencing
        - irqchip/mbigen: Fix the clear register offset calculation
      * System doesn't boot properly on Gigabyte AM4 motherboards (AMD Ryzen)
        (LP: #1671360)
        - pinctrl: amd: make use of raw_spinlock variants
        - pinctrl/amd: Use regular interrupt instead of chained
      * PowerPC: Pstore dump for powerpc is broken (LP: #1691045)
        - pstore: Fix flags to enable dumps on powerpc
      * Dell Inspiron on kernel 4.10 : battery detected only after AC power adapter
        event (LP: #1678590)
        - ACPI / blacklist: add _REV quirk for Dell Inspiron 7537
      * APST quirk needed for Intel NVMe (LP: #1686592)
        - nvme: Quirk APST on Intel 600P/P3100 devices
      * Merlin SGMII fail on Ubuntu Xenial HWE kernel (LP: #1686305)
        - drivers: net: phy: xgene: Fix mdio write
      * Zesty update to 4.10.16 stable release (LP: #1691369)
        - 9p: fix a potential acl leak
        - drm/sti: fix GDP size to support up to UHD resolution
        - hwmon: (it87) Fix pwm4 detection for IT8620 and IT8628
        - mtd: nand: Add OX820 NAND hardware dependency
        - tpm: fix RC value check in tpm2_seal_trusted
        - tmp: use pdev for parent device in tpm_chip_alloc
        - crypto: caam - fix error path for ctx_dma mapping failure
        - crypto: caam - don't dma_map key for hash algorithms
        - power: supply: lp8788: prevent out of bounds array access
        - cpupower: Fix turbo frequency reporting for pre-Sandy Bridge cores
        - powerpc/perf: Fix perf_get_data_addr() for power9 DD1
        - powerpc/perf: Handle sdar_mode for marked event in power9
        - powerpc/mm: Fixup wrong LPCR_VRMASD value
        - powerpc/powernv: Fix opal_exit tracepoint opcode
        - powerpc/mm: Fix build break when CMA=n && SPAPR_TCE_IOMMU=y
        - powerpc/ftrace: Fix confusing help text for DISABLE_MPROFILE_KERNEL
        - powerpc: Correctly disable latent entropy GCC plugin on prom_init.o
        - power: supply: bq24190_charger: Fix irq trigger to IRQF_TRIGGER_FALLING
        - power: supply: bq24190_charger: Call set_mode_host() on pm_resume()
        - power: supply: bq24190_charger: Install irq_handler_thread() at end of
          probe()
        - power: supply: bq24190_charger: Call power_supply_changed() for relevant
          component
        - power: supply: bq24190_charger: Don't read fault register outside
          irq_handle_thread()
        - power: supply: bq24190_charger: Handle fault before status on interrupt
        - arm64: dts: r8a7795: Mark EthernetAVB device node disabled
        - arm: dts: qcom: Fix ipq board clock rates
        - arm64: remove wrong CONFIG_PROC_SYSCTL ifdef
        - arm64: Improve detection of user/non-user mappings in set_pte(_at)
        - spi: armada-3700: Remove spi_master_put in a3700_spi_remove()
        - leds: ktd2692: avoid harmless maybe-uninitialized warning
        - ARM: pxa: ezx: fix a910 camera data
        - ARM: dts: NSP: GPIO reboot open-source
        - ARM: dts: imx6sx-udoo-neo: Fix reboot hang
        - ARM: OMAP5 / DRA7: Fix HYP mode boot for thumb2 build
        - ARM: OMAP3: Fix smartreflex platform data regression
        - ARM: dts: am57xx-idk: tpic2810 is on I2C bus, not SPI
        - ARM: dts: sun7i: lamobo-r1: Fix CPU port RGMII settings
        - mwifiex: debugfs: Fix (sometimes) off-by-1 SSID print
        - mwifiex: remove redundant dma padding in AMSDU
        - mwifiex: Avoid skipping WEP key deletion for AP
        - mwifiex: don't enable/disable IRQ 0 during suspend/resume
        - mwifiex: set adapter->dev before starting to use mwifiex_dbg()
        - iwlwifi: mvm: properly check for transport data in dump
        - iwlwifi: mvm: don't restart HW if suspend fails with unified image
        - iwlwifi: mvm: overwrite skb info later
        - iwlwifi: pcie: don't increment / decrement a bool
        - iwlwifi: pcie: trans: Remove unused 'shift_param'
        - iwlwifi: pcie: fix the set of DMA memory mask
        - iwlwifi: mvm: fix reorder timer re-arming
        - iwlwifi: mvm: Use aux queue for offchannel frames in dqa
        - iwlwifi: mvm/pcie: adjust A-MSDU tx_cmd length in PCIe
        - iwlwifi: mvm: fix pending frame counter calculation
        - iwlwifi: mvm: fix references to first_agg_queue in DQA mode
        - iwlwifi: mvm: synchronize firmware DMA paging memory
        - iwlwifi: mvm: writing zero bytes to debugfs causes a crash
        - iwlwifi: mvm: fix accessing fw_id_to_mac_id
        - x86/ioapic: Restore IO-APIC irq_chip retrigger callback
        - x86/pci-calgary: Fix iommu_free() comparison of unsigned expression >= 0
        - x86/mpx: Re-add MPX to selftests Makefile
        - clk: Make x86/ conditional on CONFIG_COMMON_CLK
        - platform/x86: intel_pmc_core: fix out-of-bounds accesses on stack
        - kprobes/x86: Fix kernel panic when certain exception-handling addresses are
          probed
        - x86/platform/intel-mid: Correct MSI IRQ line for watchdog device
        - Revert "KVM: nested VMX: disable perf cpuid reporting"
        - KVM: nVMX: initialize PML fields in vmcs02
        - KVM: nVMX: do not leak PML full vmexit to L1
        - usb: dwc2: host: use msleep() for long delay
        - usb: host: ehci-exynos: Decrese node refcount on exynos_ehci_get_phy() error
          paths
        - usb: host: ohci-exynos: Decrese node refcount on exynos_ehci_get_phy() error
          paths
        - usb: chipidea: Only read/write OTGSC from one place
        - usb: chipidea: Handle extcon events properly
        - USB: serial: keyspan_pda: fix receive sanity checks
        - USB: serial: digi_acceleport: fix incomplete rx sanity check
        - USB: serial: ssu100: fix control-message error handling
        - USB: serial: io_edgeport: fix epic-descriptor handling
        - USB: serial: ti_usb_3410_5052: fix control-message error handling
        - USB: serial: ark3116: fix open error handling
        - USB: serial: ftdi_sio: fix latency-timer error handling
        - USB: serial: quatech2: fix control-message error handling
        - USB: serial: mct_u232: fix modem-status error handling
        - USB: serial: ch341: fix modem-status handling
        - USB: serial: io_edgeport: fix descriptor error handling
        - clk: rockchip: add "," to mux_pll_src_apll_dpll_gpll_usb480m_p on rk3036
        - phy: qcom-usb-hs: Add depends on EXTCON
        - serial: 8250_omap: Fix probe and remove for PM runtime
        - scsi: qedi: Fix possible memory leak in qedi_iscsi_update_conn()
        - scsi: qedi: fix build error without DEBUG_FS
        - scsi: qla2xxx: Fix crash in qla2xxx_eh_abort on bad ptr
        - scsi: mac_scsi: Fix MAC_SCSI=m option when SCSI=m
        - scsi: smartpqi: fix time handling
        - MIPS: R2-on-R6 MULTU/MADDU/MSUBU emulation bugfix
        - brcmfmac: Ensure pointer correctly set if skb data location changes
        - brcmfmac: Make skb header writable before use
        - staging/lustre/llite: move root_squash from sysfs to debugfs
        - staging: wlan-ng: add missing byte order conversion
        - staging: emxx_udc: remove incorrect __init annotations
        - staging: lustre: ptlrpc: avoid warning on missing return
        - ALSA: hda - Fix deadlock of controller device lock at unbinding
        - sparc64: fix fault handling in NGbzero.S and GENbzero.S
        - tcp: do not underestimate skb->truesize in tcp_trim_head()
        - net: adjust skb->truesize in ___pskb_trim()
        - net: macb: fix phy interrupt parsing
        - geneve: fix incorrect setting of UDP checksum flag
        - bpf: enhance verifier to understand stack pointer arithmetic
        - bpf, arm64: fix jit branch offset related to ldimm64
        - tcp: fix wraparound issue in tcp_lp
        - net: ipv6: Do not duplicate DAD on link up
        - net: usb: qmi_wwan: add Telit ME910 support
        - tcp: do not inherit fastopen_req from parent
        - ipv4, ipv6: ensure raw socket message is big enough to hold an IP header
        - rtnetlink: NUL-terminate IFLA_PHYS_PORT_NAME string
        - ipv6: initialize route null entry in addrconf_init()
        - ipv6: reorder ip6_route_dev_notifier after ipv6_dev_notf
        - bnxt_en: allocate enough space for ->ntp_fltr_bmap
        - bpf: don't let ldimm64 leak map addresses on unprivileged
        - net: mdio-mux: bcm-iproc: call mdiobus_free() in error path
        - openvswitch: Set internal device max mtu to ETH_MAX_MTU.
        - f2fs: sanity check segment count
        - xen: Revert commits da72ff5bfcb0 and 72a9b186292d
        - drm/hisilicon/hibmc: Fix wrong pointer passed to PTR_ERR()
        - drm: mxsfb: drm_dev_alloc() returns error pointers
        - drm/ttm: fix use-after-free races in vm fault handling
        - block: get rid of blk_integrity_revalidate()
        - Linux 4.10.16
        - [Config] Remove CONFIG_MTD_NAND_OXNAS=m
        - Ignore missing oxnas_nand
      * Keyboard backlight control does not work on some dell laptops.
        (LP: #1693126)
        - platform/x86: dell-laptop: Add Latitude 7480 and others to the DMI whitelist
        - platform/x86: dell-laptop: Add keyboard backlight timeout AC settings
      * Hardware transaction memory corruption (LP: #1691477)
        - powerpc/tm: Fix FP and VMX register corruption
      * Offlined CPUs of a core fail to come up online on POWER9 DD1 (Ubuntu 17.04)
        (LP: #1685792)
        - powerpc/powernv: Move CPU-Offline idle state invocation from smp.c to idle.c
        - powerpc/powernv/smp: Add busy-wait loop as fall back for CPU-Hotplug
        - powerpc/powernv/idle: Don't override default/deepest directly in kernel
        - powerpc/powernv: Recover correct PACA on wakeup from a stop on P9 DD1
      * [Regression] NUMA_BALANCING disabled on arm64 (LP: #1690914)
        - [Config] CONFIG_NUMA_BALANCING{,_DEFAULT_ENABLED}=y on arm64
      * ATS fix: Fix opal_npu_destroy_context call (LP: #1692580)
        - powerpc/powernv/npu-dma.c: Fix opal_npu_destroy_context() call
      * powerpc/powernv: Introduce address translation services for Nvlink2
        (LP: #1690412)
        - powerpc/powernv: Require MMU_NOTIFIER to fix NPU build
        - drivers/of/base.c: Add of_property_read_u64_index
        - powerpc/powernv: Add sanity checks to pnv_pci_get_{gpu|npu}_dev
        - powerpc/powernv: Introduce address translation services for Nvlink2
      * exec'ing a setuid binary from a threaded program sometimes fails to setuid
        (LP: #1672819)
        - SAUCE: exec: ensure file system accounting in check_unsafe_exec is correct
    
     -- Stefan Bader <email address hidden>  Fri, 09 Jun 2017 11:38:09 +0200
  • linux-raspi2 (4.10.0-1006.8) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1006.8 -proposed tracker (LP: #1691153)
    
      [ Ubuntu: 4.10.0-22.24 ]
    
      * linux: 4.10.0-22.24 -proposed tracker (LP: #1691146)
      * Fix NVLINK2 TCE route (LP: #1690155)
        - powerpc/powernv: Fix TCE kill on NVLink2
      * CVE-2017-0605
        - tracing: Use strlcpy() instead of strcpy() in __trace_find_cmdline()
      * perf: qcom: Add L3 cache PMU driver (LP: #1689856)
        - [Config] CONFIG_QCOM_L3_PMU=y
        - perf: qcom: Add L3 cache PMU driver
      * No PMU support for ACPI-based arm64 systems (LP: #1689661)
        - drivers/perf: arm_pmu: rework per-cpu allocation
        - drivers/perf: arm_pmu: manage interrupts per-cpu
        - drivers/perf: arm_pmu: split irq request from enable
        - drivers/perf: arm_pmu: remove pointless PMU disabling
        - drivers/perf: arm_pmu: define armpmu_init_fn
        - drivers/perf: arm_pmu: fold init into alloc
        - drivers/perf: arm_pmu: factor out pmu registration
        - drivers/perf: arm_pmu: simplify cpu_pmu_request_irqs()
        - drivers/perf: arm_pmu: handle no platform_device
        - drivers/perf: arm_pmu: rename irq request/free functions
        - drivers/perf: arm_pmu: split cpu-local irq request/free
        - drivers/perf: arm_pmu: move irq request/free into probe
        - drivers/perf: arm_pmu: split out platform device probe logic
        - arm64: add function to get a cpu's MADT GICC table
        - [Config] CONFIG_ARM_PMU_ACPI=y
        - drivers/perf: arm_pmu: add ACPI framework
        - arm64: pmuv3: handle !PMUv3 when probing
        - arm64: pmuv3: use arm_pmu ACPI framework
      * [SRU][Zesty]QDF2400 kernel oops on ipmitool fru write 0 fru.bin
        (LP: #1689886)
        - ipmi: Fix kernel panic at ipmi_ssif_thread()
      * tty: pl011: fix earlycon work-around for QDF2400 erratum 44  (LP: #1689818)
        - tty: pl011: fix earlycon work-around for QDF2400 erratum 44
        - tty: pl011: use "qdf2400_e44" as the earlycon name for QDF2400 E44
      * kernel-wedge fails in artful due to leftover squashfs-modules d-i files
        (LP: #1688259)
        - Remove squashfs-modules files from d-i
        - [Config] as squashfs-modules is builtin kernel-image must Provides: it
      * arm64/ACPI support for SBSA watchdog (LP: #1688114)
        - clocksource: arm_arch_timer: clean up printk usage
        - clocksource: arm_arch_timer: rename type macros
        - clocksource: arm_arch_timer: rename the PPI enum
        - clocksource: arm_arch_timer: move enums and defines to header file
        - clocksource: arm_arch_timer: add a new enum for spi type
        - clocksource: arm_arch_timer: rework PPI selection
        - clocksource: arm_arch_timer: split dt-only rate handling
        - clocksource: arm_arch_timer: refactor arch_timer_needs_probing
        - clocksource: arm_arch_timer: move arch_timer_needs_of_probing into DT init
          call
        - clocksource: arm_arch_timer: add structs to describe MMIO timer
        - clocksource: arm_arch_timer: split MMIO timer probing.
        - [Config] CONFIG_ACPI_GTDT=y
        - acpi/arm64: Add GTDT table parse driver
        - clocksource: arm_arch_timer: simplify ACPI support code.
        - acpi/arm64: Add memory-mapped timer support in GTDT driver
        - clocksource: arm_arch_timer: add GTDT support for memory-mapped timer
        - acpi/arm64: Add SBSA Generic Watchdog support in GTDT driver
      * kernel BUG at /build/linux-7LGLH_/linux-4.10.0/include/linux/swapops.h:129
        (LP: #1674838)
        - Revert "mm/ksm: handle protnone saved writes when making page write protect"
        - Revert "mm, ksm: convert write_protect_page() to use page_vma_mapped_walk()"
        - Revert "mm: introduce page_vma_mapped_walk()"
        - mm/ksm: handle protnone saved writes when making page write protect
      * arm64: Add CNTFRQ_EL0 handler (LP: #1688164)
        - arm64: Add CNTFRQ_EL0 trap handler
      * Support IPMI system interface on Cavium ThunderX (LP: #1688132)
        - i2c: thunderx: Enable HWMON class probing
      * Update ENA driver to 1.1.2 from net-next (LP: #1664312)
        - net/ena: remove ntuple filter support from device feature list
        - net/ena: fix queues number calculation
        - net/ena: fix ethtool RSS flow configuration
        - net/ena: fix RSS default hash configuration
        - net/ena: fix NULL dereference when removing the driver after device reset
          failed
        - net/ena: refactor ena_get_stats64 to be atomic context safe
        - net/ena: fix potential access to freed memory during device reset
        - net/ena: use READ_ONCE to access completion descriptors
        - net/ena: reduce the severity of ena printouts
        - net/ena: change driver's default timeouts
        - net/ena: change condition for host attribute configuration
        - net/ena: update driver version to 1.1.2
      * Zesty update to 4.10.15 stable release (LP: #1689258)
        - timerfd: Protect the might cancel mechanism proper
        - Handle mismatched open calls
        - hwmon: (it87) Avoid registering the same chip on both SIO addresses
        - dm ioctl: prevent stack leak in dm ioctl call
        - Linux 4.10.15
      * Zesty update to 4.10.14 stable release (LP: #1688499)
        - ping: implement proper locking
        - sparc64: kern_addr_valid regression
        - sparc64: Fix kernel panic due to erroneous #ifdef surrounding pmd_write()
        - net: neigh: guard against NULL solicit() method
        - net: phy: handle state correctly in phy_stop_machine
        - kcm: return immediately after copy_from_user() failure
        - secure_seq: downgrade to per-host timestamp offsets
        - bpf: improve verifier packet range checks
        - Revert "UBUNTU: SAUCE: (no-up) net/mlx5: Avoid dereferencing uninitialized
          pointer"
        - net/mlx5: Avoid dereferencing uninitialized pointer
        - l2tp: hold tunnel socket when handling control frames in l2tp_ip and
          l2tp_ip6
        - l2tp: purge socket queues in the .destruct() callback
        - openvswitch: Fix ovs_flow_key_update()
        - l2tp: take reference on sessions being dumped
        - l2tp: fix PPP pseudo-wire auto-loading
        - net: ipv4: fix multipath RTM_GETROUTE behavior when iif is given
        - sctp: listen on the sock only when it's state is listening or closed
        - tcp: clear saved_syn in tcp_disconnect()
        - ipv6: Fix idev->addr_list corruption
        - net-timestamp: avoid use-after-free in ip_recv_error
        - net: vrf: Fix setting NLM_F_EXCL flag when adding l3mdev rule
        - sh_eth: unmap DMA buffers when freeing rings
        - ipv6: sr: fix out-of-bounds access in SRH validation
        - dp83640: don't recieve time stamps twice
        - ipv6: sr: fix double free of skb after handling invalid SRH
        - ipv6: fix source routing
        - gso: Validate assumption of frag_list segementation
        - net: ipv6: RTF_PCPU should not be settable from userspace
        - netpoll: Check for skb->queue_mapping
        - ip6mr: fix notification device destruction
        - net/mlx5: Fix driver load bad flow when having fw initializing timeout
        - net/mlx5: E-Switch, Correctly deal with inline mode on ConnectX-5
        - net/mlx5e: Fix small packet threshold
        - net/mlx5e: Fix ETHTOOL_GRXCLSRLALL handling
        - tcp: fix SCM_TIMESTAMPING_OPT_STATS for normal skbs
        - tcp: mark skbs with SCM_TIMESTAMPING_OPT_STATS
        - macvlan: Fix device ref leak when purging bc_queue
        - net: ipv6: regenerate host route if moved to gc list
        - net: phy: fix auto-negotiation stall due to unavailable interrupt
        - ipv6: check skb->protocol before lookup for nexthop
        - tcp: memset ca_priv data to 0 properly
        - ipv6: check raw payload size correctly in ioctl
        - ALSA: oxfw: fix regression to handle Stanton SCS.1m/1d
        - ALSA: firewire-lib: fix inappropriate assignment between signed/unsigned
          type
        - ALSA: seq: Don't break snd_use_lock_sync() loop by timeout
        - scsi: return correct blkprep status code in case scsi_init_io() fails.
        - ARC: [plat-eznps] Fix build error
        - MIPS: KGDB: Use kernel context for sleeping threads
        - MIPS: cevt-r4k: Fix out-of-bounds array access
        - MIPS: Avoid BUG warning in arch_check_elf
        - p9_client_readdir() fix
        - ASoC: intel: Fix PM and non-atomic crash in bytcr drivers
        - Input: i8042 - add Clevo P650RS to the i8042 reset list
        - nfsd: check for oversized NFSv2/v3 arguments
        - nfsd4: minor NFSv2/v3 write decoding cleanup
        - nfsd: stricter decoding of write-like NFSv2/v3 ops
        - ceph: fix recursion between ceph_set_acl() and __ceph_setattr()
        - macsec: avoid heap overflow in skb_to_sgvec
        - net: can: usb: gs_usb: Fix buffer on stack
        - cpu/hotplug: Serialize callback invocations proper
        - ftrace/x86: Fix triple fault with graph tracing and suspend-to-ram
        - Linux 4.10.14
      * Zesty update to 4.10.13 stable release (LP: #1688485)
        - KEYS: Disallow keyrings beginning with '.' to be joined as session keyrings
        - KEYS: Change the name of the dead type to ".dead" to prevent user access
        - KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyrings
        - tracing: Allocate the snapshot buffer before enabling probe
        - HID: wacom: Treat HID_DG_TOOLSERIALNUMBER as unsigned
        - ring-buffer: Have ring_buffer_iter_empty() return true when empty
        - mm: prevent NR_ISOLATE_* stats from going negative
        - cifs: Do not send echoes before Negotiate is complete
        - CIFS: remove bad_network_name flag
        - mmc: dw_mmc: silent verbose log when calling from PM context
        - s390/mm: fix CMMA vs KSM vs others
        - Input: elantech - add Fujitsu Lifebook E547 to force crc_enabled
        - ACPI / power: Avoid maybe-uninitialized warning
        - mmc: dw_mmc: Don't allow Runtime PM for SDIO cards
        - mmc: sdhci-esdhc-imx: increase the pad I/O drive strength for DDR50 card
        - ubifs: Fix RENAME_WHITEOUT support
        - ubifs: Fix O_TMPFILE corner case in ubifs_link()
        - mac80211: reject ToDS broadcast data frames
        - mac80211: fix MU-MIMO follow-MAC mode
        - x86/mce: Make the MCE notifier a blocking one
        - ubi/upd: Always flush after prepared for an update
        - powerpc/kprobe: Fix oops when kprobed on 'stdu' instruction
        - x86/mce/AMD: Give a name to MCA bank 3 when accessed with legacy MSRs
        - device-dax: switch to srcu, fix rcu_read_lock() vs pte allocation
        - Linux 4.10.13
      * Zesty update to 4.10.12 stable release (LP: #1687045)
        - Revert "UBUNTU: SAUCE: Revert "audit: fix auditd/kernel connection state
          tracking""
        - cgroup, kthread: close race window where new kthreads can be migrated to
          non-root cgroups
        - audit: make sure we don't let the retry queue grow without bounds
        - tcmu: Fix possible overwrite of t_data_sg's last iov[]
        - tcmu: Fix wrongly calculating of the base_command_size
        - tcmu: Skip Data-Out blocks before gathering Data-In buffer for BIDI case
        - thp: fix MADV_DONTNEED vs. MADV_FREE race
        - thp: fix MADV_DONTNEED vs clear soft dirty race
        - zsmalloc: expand class bit
        - orangefs: free superblock when mount fails
        - drm/nouveau/mpeg: mthd returns true on success now
        - drm/nouveau/mmu/nv4a: use nv04 mmu rather than the nv44 one
        - drm/nouveau/kms/nv50: fix setting of HeadSetRasterVertBlankDmi method
        - drm/nouveau/kms/nv50: fix double dma_fence_put() when destroying plane state
        - drm/nouveau: initial support (display-only) for GP107
        - drm/etnaviv: fix missing unlock on error in etnaviv_gpu_submit()
        - drm/fb-helper: Allow var->x/yres(_virtual) < fb->width/height again
        - CIFS: reconnect thread reschedule itself
        - CIFS: store results of cifs_reopen_file to avoid infinite wait
        - Input: xpad - add support for Razer Wildcat gamepad
        - perf annotate s390: Fix perf annotate error -95 (4.10 regression)
        - perf/x86: Avoid exposing wrong/stale data in intel_pmu_lbr_read_32()
        - x86/efi: Don't try to reserve runtime regions
        - x86/signals: Fix lower/upper bound reporting in compat siginfo
        - x86/intel_rdt: Fix locking in rdtgroup_schemata_write()
        - x86, pmem: fix broken __copy_user_nocache cache-bypass assumptions
        - x86/vdso: Ensure vdso32_enabled gets set to valid values only
        - x86/vdso: Plug race between mapping and ELF header setup
        - acpi, nfit, libnvdimm: fix interleave set cookie calculation (64-bit
          comparison)
        - ACPI / scan: Set the visited flag for all enumerated devices
        - parisc: fix bugs in pa_memcpy
        - efi/libstub: Skip GOP with PIXEL_BLT_ONLY format
        - efi/fb: Avoid reconfiguration of BAR that covers the framebuffer
        - iscsi-target: Fix TMR reference leak during session shutdown
        - iscsi-target: Drop work-around for legacy GlobalSAN initiator
        - scsi: sr: Sanity check returned mode data
        - scsi: sd: Consider max_xfer_blocks if opt_xfer_blocks is unusable
        - scsi: qla2xxx: Add fix to read correct register value for ISP82xx.
        - scsi: sd: Fix capacity calculation with 32-bit sector_t
        - target: Avoid mappedlun symlink creation during lun shutdown
        - xen, fbfront: fix connecting to backend
        - new privimitive: iov_iter_revert()
        - make skb_copy_datagram_msg() et.al. preserve ->msg_iter on error
        - libnvdimm: fix blk free space accounting
        - libnvdimm: fix reconfig_mutex, mmap_sem, and jbd2_handle lockdep splat
        - libnvdimm: band aid btt vs clear poison locking
        - can: ifi: use correct register to read rx status
        - pwm: rockchip: State of PWM clock should synchronize with PWM enabled state
        - cpufreq: Bring CPUs up even if cpufreq_online() failed
        - irqchip/irq-imx-gpcv2: Fix spinlock initialization
        - ftrace: Fix removing of second function probe
        - drm/i915/gvt: set the correct default value of CTX STATUS PTR
        - char: lack of bool string made CONFIG_DEVPORT always on
        - Revert "MIPS: Lantiq: Fix cascaded IRQ setup"
        - zram: do not use copy_page with non-page aligned address
        - ftrace: Fix function pid filter on instances
        - crypto: algif_aead - Fix bogus request dereference in completion function
        - crypto: xts - Fix use-after-free on EINPROGRESS
        - crypto: ahash - Fix EINPROGRESS notification callback
        - crypto: lrw - Fix use-after-free on EINPROGRESS
        - parisc: Fix get_user() for 64-bit value on 32-bit kernel
        - dvb-usb-v2: avoid use-after-free
        - [Config] CONFIG_SND_SOC_INTEL_BDW_RT5677_MACH=m
        - ASoC: Intel: select DW_DMAC_CORE since it's mandatory
        - platform/x86: acer-wmi: setup accelerometer when machine has appropriate
          notify event
        - x86/xen: Fix APIC id mismatch warning on Intel
        - ACPI / EC: Use busy polling mode when GPE is not enabled
        - rtc: tegra: Implement clock handling
        - mm: Tighten x86 /dev/mem with zeroing reads
        - cxusb: Use a dma capable buffer also for reading
        - virtio-console: avoid DMA from stack
        - Linux 4.10.12
      * Support low-pin-count devices on Hisilicon SoCs (LP: #1677319)
        - [Config] CONFIG_LIBIO=y on arm64 only
        - SAUCE: LIBIO: Introduce a generic PIO mapping method
        - SAUCE: OF: Add missing I/O range exception for indirect-IO devices
        - [Config] CONFIG_HISILICON_LPC=y
        - SAUCE: LPC: Support the device-tree LPC host on Hip06/Hip07
        - SAUCE: LIBIO: Support the dynamically logical PIO registration of ACPI host
          I/O
        - SAUCE: LPC: Add the ACPI LPC support
        - SAUCE: PCI: Apply the new generic I/O management on PCI IO hosts
        - SAUCE: PCI: Restore codepath for !CONFIG_LIBIO
      * APST quirk needed for Samsung 512GB NVMe drive (LP: #1678184)
        - nvme: Adjust the Samsung APST quirk
        - nvme: Quirk APST off on "THNSF5256GPUK TOSHIBA"
      * [Zesty] d-i: replace msm_emac with qcom_emac (LP: #1677297)
        - Revert "UBUNTU: d-i: initrd needs msm_emac on amberwing platform."
        - d-i: initrd needs qcom_emac on amberwing platform.
      * POWER9: CAPI2 enablement (LP: #1686519)
        - cxl: Fix build when CONFIG_DEBUG_FS=n
        - cxl: Read vsec perst load image
        - cxl: Remove unused values in bare-metal environment.
        - cxl: Keep track of mm struct associated with a context
        - cxl: Update implementation service layer
        - cxl: Rename some psl8 specific functions
        - cxl: Isolate few psl8 specific calls
        - cxl: Force psl data-cache flush during device shutdown
        - cxl: Add psl9 specific code
      * CVE-2017-7979
        - net sched actions: allocate act cookie early
      * refcount underflow / kernel NULL dereference after attempting to add basic
        tc filter (LP: #1682368)
        - net_sched: nla_memdup_cookie() can be static
    
     -- Thadeu Lima de Souza Cascardo <email address hidden>  Mon, 22 May 2017 14:49:48 -0300
  • linux-raspi2 (4.10.0-1005.7) zesty; urgency=low
    
      * linux-raspi2: 4.10.0-1005.7 -proposed tracker (LP: #1686419)
    
      [ Ubuntu: 4.10.0-21.23 ]
    
      * linux: 4.10.0-21.23 -proposed tracker (LP: #1686414)
    
      * Need to stop using bzip2 compression in packages for zesty onward
        (LP: #1686782)
        - [Debian] Use default compression for all packages
    
      * [Hyper-V][SAUCE] pci-hyperv: Use only 16 bit integer for PCI domain
        (LP: #1684971)
        - SAUCE: pci-hyperv: Use only 16 bit integer for PCI domain
    
      * CVE-2017-7477: macsec: avoid heap overflow in skb_to_sgvec (LP: #1685892)
        - macsec: avoid heap overflow in skb_to_sgvec
        - macsec: dynamically allocate space for sglist
    
      * Zesty update to 4.10.11 stable release (LP: #1685140)
        - drm/i915: Fix forcewake active domain tracking
        - drm/i915: Move updating color management to before vblank evasion
        - drm/i915/fbdev: Stop repeating tile configuration on stagnation
        - drm/i915: Squelch any ktime/jiffie rounding errors for wait-ioctl
        - drm/i915/gen9: Increase PCODE request timeout to 50ms
        - drm/i915: Store a permanent error in obj->mm.pages
        - drm/i915: Nuke debug messages from the pipe update critical section
        - drm/i915: Avoid tweaking evaluation thresholds on Baytrail v3
        - drm/i915: Reject HDMI 12bpc if the sink doesn't indicate support
        - drm/i915: Only enable hotplug interrupts if the display interrupts are
          enabled
        - drm/i915: Drop support for I915_EXEC_CONSTANTS_* execbuf parameters.
        - drm/i915: Stop using RP_DOWN_EI on Baytrail
        - drm/i915: Avoid rcu_barrier() from reclaim paths (shrinker)
        - drm/i915: Do .init_clock_gating() earlier to avoid it clobbering watermarks
        - orangefs: Dan Carpenter influenced cleanups...
        - orangefs: fix buffer size mis-match between kernel space and user space.
        - nfs: flexfiles: fix kernel OOPS if MDS returns unsupported DS type
        - rt2x00usb: fix anchor initialization
        - rt2x00usb: do not anchor rx and tx urb's
        - MIPS: Introduce irq_stack
        - MIPS: Stack unwinding while on IRQ stack
        - MIPS: Only change $28 to thread_info if coming from user mode
        - MIPS: Switch to the irq_stack in interrupts
        - MIPS: Select HAVE_IRQ_EXIT_ON_IRQ_STACK
        - MIPS: IRQ Stack: Fix erroneous jal to plat_irq_dispatch
        - crypto: caam - fix RNG deinstantiation error checking
        - crypto: caam - fix invalid dereference in caam_rsa_init_tfm()
        - dma-buf: add support for compat ioctl
        - Linux 4.10.11
    
      * Zesty update to v4.10.10 stable release (LP: #1682130)
        - drm/vmwgfx: Type-check lookups of fence objects
        - drm/vmwgfx: NULL pointer dereference in vmw_surface_define_ioctl()
        - drm/vmwgfx: avoid calling vzalloc with a 0 size in vmw_get_cap_3d_ioctl()
        - drm/ttm, drm/vmwgfx: Relax permission checking when opening surfaces
        - drm/vmwgfx: Remove getparam error message
        - drm/vmwgfx: fix integer overflow in vmw_surface_define_ioctl()
        - PCI: thunder-pem: Add legacy firmware support for Cavium ThunderX host
          controller
        - PCI: thunder-pem: Fix legacy firmware PEM-specific resources
        - sysfs: be careful of error returns from ops->show()
        - staging: android: ashmem: lseek failed due to no FMODE_LSEEK.
        - arm/arm64: KVM: Take mmap_sem in stage2_unmap_vm
        - arm/arm64: KVM: Take mmap_sem in kvm_arch_prepare_memory_region
        - kvm: arm/arm64: Fix locking for kvm_free_stage2_pgd
        - iio: core: Fix IIO_VAL_FRACTIONAL_LOG2 for negative values
        - iio: st_pressure: initialize lps22hb bootime
        - iio: bmg160: reset chip when probing
        - arm64: mm: unaligned access by user-land should be received as SIGBUS
        - cfg80211: check rdev resume callback only for registered wiphy
        - Reset TreeId to zero on SMB2 TREE_CONNECT
        - mm/page_alloc.c: fix print order in show_free_areas()
        - ptrace: fix PTRACE_LISTEN race corrupting task->state
        - dax: fix radix tree insertion race
        - dm verity fec: limit error correction recursion
        - dm verity fec: fix bufio leaks
        - ACPI / gpio: do not fall back to parsing _CRS when we get a deferral
        - ACPI / scan: Prefer devices without _HID for _ADR matching
        - Kbuild: use cc-disable-warning consistently for maybe-uninitialized
        - jump label: fix passing kbuild_cflags when checking for asm goto support
        - orangefs: move features validation to fix filesystem hang
        - xfs: Honor FALLOC_FL_KEEP_SIZE when punching ends of files
        - ring-buffer: Fix return value check in test_ringbuffer()
        - mac80211: unconditionally start new netdev queues with iTXQ support
        - brcmfmac: use local iftype avoiding use-after-free of virtual interface
        - metag/usercopy: Drop unused macros
        - metag/usercopy: Fix alignment error checking
        - metag/usercopy: Add early abort to copy_to_user
        - metag/usercopy: Zero rest of buffer from copy_from_user
        - metag/usercopy: Set flags before ADDZ
        - metag/usercopy: Fix src fixup in from user rapf loops
        - metag/usercopy: Add missing fixups
        - drm/msm: adreno: fix build error without debugfs
        - powerpc: Disable HFSCR[TM] if TM is not supported
        - powerpc/mm: Add missing global TLB invalidate if cxl is active
        - powerpc/64: Fix flush_(d|i)cache_range() called from modules
        - powerpc: Don't try to fix up misaligned load-with-reservation instructions
        - powerpc/crypto/crc32c-vpmsum: Fix missing preempt_disable()
        - dm raid: fix NULL pointer dereference for raid1 without bitmap
        - x86/mce: Don't print MCEs when mcelog is active
        - nios2: reserve boot memory for device tree
        - xtensa: make __pa work with uncached KSEG addresses
        - s390/decompressor: fix initrd corruption caused by bss clear
        - s390/uaccess: get_user() should zero on failure (again)
        - MIPS: Force o32 fp64 support on 32bit MIPS64r6 kernels
        - MIPS: ralink: Fix typos in rt3883 pinctrl
        - MIPS: End spinlocks with .insn
        - MIPS: Lantiq: fix missing xbar kernel panic
        - MIPS: Check TLB before handle_ri_rdhwr() for Loongson-3
        - MIPS: Add MIPS_CPU_FTLB for Loongson-3A R2
        - MIPS: Flush wrong invalid FTLB entry for huge page
        - MIPS: c-r4k: Fix Loongson-3's vcache/scache waysize calculation
        - drm/i915/gvt: Fix gvt scheduler interval time
        - drm/i915/kvmgt: fix suspicious rcu dereference usage
        - usb: dwc3: gadget: delay unmap of bounced requests
        - Documentation: stable-kernel-rules: fix stable-tag format
        - mm/mempolicy.c: fix error handling in set_mempolicy and mbind.
        - random: use chacha20 for get_random_int/long
        - kvm: fix page struct leak in handle_vmon
        - drm/edid: constify edid quirk list
        - drm/i915: fix INTEL_BDW_IDS definition
        - drm/i915: more .is_mobile cleanups for BDW
        - drm/i915: actually drive the BDW reserved IDs
        - ASoC: Intel: bytcr_rt5640: quirks for Insyde devices
        - usb: chipidea: msm: Rely on core to override AHBBURST
        - serial: 8250_omap: Add OMAP_DMA_TX_KICK quirk for AM437x
        - usb: xhci: add quirk flag for broken PED bits
        - usb: host: xhci-plat: enable BROKEN_PED quirk if platform requested
        - usb: dwc3: host: pass quirk-broken-port-ped property for known broken
          revisions
        - drm/mga: remove device_is_agp callback
        - PCI: Add ACS quirk for Intel Union Point
        - PCI: xgene: Fix double free on init error
        - sata: ahci-da850: implement a workaround for the softreset quirk
        - ACPI / button: Change default behavior to lid_init_state=open
        - ASoC: codecs: rt5670: add quirk for Lenovo Thinkpad 10
        - ASoC: Intel: Baytrail: add quirk for Lenovo Thinkpad 10
        - ASoC: Intel: cht_bsw_rt5645: harden ACPI device detection
        - ASoC: Intel: cht_bsw_rt5645: add Baytrail MCLK support
        - ACPI: save NVS memory for Lenovo G50-45
        - ASoC: sun4i-i2s: Add quirks to handle a31 compatible
        - HID: wacom: don't apply generic settings to old devices
        - arm: kernel: Add SMC structure parameter
        - firmware: qcom: scm: Fix interrupted SCM calls
        - ARM: smccc: Update HVC comment to describe new quirk parameter
        - PCI: Add Broadcom Northstar2 PAXC quirk for device class and MPSS
        - PCI: Disable MSI for HiSilicon Hip06/Hip07 Root Ports
        - mmc: sdhci-of-esdhc: remove default broken-cd for ARM
        - PCI: Sort the list of devices with D3 delay quirk by ID
        - watchdog: s3c2410: Fix infinite interrupt in soft mode
        - platform/x86: asus-wmi: Detect quirk_no_rfkill from the DSDT
        - x86/reboot/quirks: Add ASUS EeeBook X205TA reboot quirk
        - x86/reboot/quirks: Add ASUS EeeBook X205TA/W reboot quirk
        - usb-storage: Add ignore-residue quirk for Initio INIC-3619
        - x86/reboot/quirks: Fix typo in ASUS EeeBook X205TA reboot quirk
        - Linux 4.10.10
    
      * Broken PowerNV PCI hotplug driver - Patch backporting to zesty
        (LP: #1680328)
        - drivers/pci/hotplug: Mask PDC interrupt if required
    
      * Zesty update to v4.10.9 stable release (LP: #1681875)
        - libceph: force GFP_NOIO for socket allocations
        - KVM: nVMX: fix nested EPT detection
        - xfs: pull up iolock from xfs_free_eofblocks()
        - xfs: sync eofblocks scans under iolock are livelock prone
        - xfs: fix eofblocks race with file extending async dio writes
        - xfs: fix toctou race when locking an inode to access the data map
        - xfs: fail _dir_open when readahead fails
        - xfs: filter out obviously bad btree pointers
        - xfs: check for obviously bad level values in the bmbt root
        - xfs: verify free block header fields
        - xfs: allow unwritten extents in the CoW fork
        - xfs: mark speculative prealloc CoW fork extents unwritten
        - xfs: reset b_first_retry_time when clear the retry status of xfs_buf_t
        - xfs: reject all unaligned direct writes to reflinked files
        - xfs: update ctime and mtime on clone destinatation inodes
        - xfs: correct null checks and error processing in xfs_initialize_perag
        - xfs: don't fail xfs_extent_busy allocation
        - xfs: handle indlen shortage on delalloc extent merge
        - xfs: split indlen reservations fairly when under reserved
        - xfs: fix uninitialized variable in _reflink_convert_cow
        - xfs: don't reserve blocks for right shift transactions
        - xfs: Use xfs_icluster_size_fsb() to calculate inode chunk alignment
        - xfs: tune down agno asserts in the bmap code
        - xfs: only reclaim unwritten COW extents periodically
        - xfs: fix and streamline error handling in xfs_end_io
        - xfs: Use xfs_icluster_size_fsb() to calculate inode alignment mask
        - xfs: use iomap new flag for newly allocated delalloc blocks
        - xfs: try any AG when allocating the first btree block when reflinking
        - scsi: sg: check length passed to SG_NEXT_CMD_LEN
        - scsi: libsas: fix ata xfer length
        - scsi: scsi_dh_alua: Check scsi_device_get() return value
        - scsi: scsi_dh_alua: Ensure that alua_activate() calls the completion
          function
        - PCI: iproc: Save host bridge window resource in struct iproc_pcie
        - PCI: thunder-pem: Use Cavium assigned hardware ID for ThunderX host
          controller
        - ALSA: seq: Fix race during FIFO resize
        - ALSA: hda - fix a problem for lineout on a Dell AIO machine
        - ASoC: atmel-classd: fix audio clock rate
        - ASoC: Intel: Skylake: fix invalid memory access due to wrong reference of
          pointer
        - ASoC: rt5665: fix getting wrong work handler container
        - HID: wacom: Don't add ghost interface as shared data
        - mmc: sdhci: Disable runtime pm when the sdio_irq is enabled
        - mmc: sdhci-of-at91: fix MMC_DDR_52 timing selection
        - crypto: ccp - Make some CCP DMA channels private
        - crypto: xts,lrw - fix out-of-bounds write after kmalloc failure
        - ARCv2: SLC: Make sure busy bit is set properly on SLC flushing
        - NFSv4.1 fix infinite loop on IO BAD_STATEID error
        - nfsd: map the ENOKEY to nfserr_perm for avoiding warning
        - dt-bindings: rng: clocks property on omap_rng not always mandatory
        - parisc: Clean up fixup routines for get_user()/put_user()
        - parisc: Avoid stalled CPU warnings after system shutdown
        - parisc: Fix access fault handling in pa_memcpy()
        - ACPI: Fix incompatibility with mcount-based function graph tracing
        - ACPI: Do not create a platform_device for IOAPIC/IOxAPIC
        - tty/serial: atmel: fix race condition (TX+DMA)
        - tty/serial: atmel: fix TX path in atmel_console_write()
        - xhci: Set URB actual length for stopped control transfers
        - USB: fix linked-list corruption in rh_call_control()
        - serial: mxs-auart: Fix baudrate calculation
        - KVM: x86: clear bus pointer when destroyed
        - KVM: kvm_io_bus_unregister_dev() should never fail
        - drm/radeon: Override fpfn for all VRAM placements in radeon_evict_flags
        - drm/vc4: Allocate the right amount of space for boot-time CRTC state.
        - drm/etnaviv: (re-)protect fence allocation with GPU mutex
        - drm/i915/kvmgt: Hold struct kvm reference
        - x86/mm/KASLR: Exclude EFI region from KASLR VA space randomization
        - x86/mce: Fix copy/paste error in exception table entries
        - lib/syscall: Clear return values when no stack
        - mm: rmap: fix huge file mmap accounting in the memcg stats
        - mm: workingset: fix premature shadow node shrinking with cgroups
        - mm, hugetlb: use pte_present() instead of pmd_present() in follow_huge_pmd()
        - drm/armada: Fix compile fail
        - ARM: dts: BCM5301X: Correct GIC_PPI interrupt flags
        - MIPS: Lantiq: Fix cascaded IRQ setup
        - blk: improve order of bio handling in generic_make_request()
        - blk: Ensure users for current->bio_list can see the full list.
        - padata: avoid race in reordering
        - nvme/core: Fix race kicking freed request_queue
        - nvme/pci: Disable on removal when disconnected
        - drm/i915: Move the release of PT page to the upper caller
        - drm/i915: Let execlist_update_context() cover !FULL_PPGTT mode.
        - drm/i915: A hotfix for making aliasing PPGTT work for GVT-g
        - Linux 4.10.9
    
      * POWER9: Improve performance on memory management (LP: #1681429)
        - SAUCE: powerpc/mm/radix: Don't do page walk cache flush when doing full mm
          flush
        - SAUCE: powerpc/mm/radix: Remove unnecessary ptesync
    
      * Disable CONFIG_HVC_UDBG on ppc64el (LP: #1680888)
        - [Config] Disable CONFIG_HVC_UDBG on ppc64el
    
      [ Ubuntu: 4.10.0-20.22 ]
    
      * linux: 4.10.0-20.22 -proposed tracker (LP: #1684491)
    
      * [Hyper-V] hv: util: move waiting for release to hv_utils_transport itself
        (LP: #1682561)
        - Drivers: hv: util: move waiting for release to hv_utils_transport itself
    
     -- Kleber Sacilotto de Souza <email address hidden>  Fri, 28 Apr 2017 16:27:28 +0200
  • linux-raspi2 (4.10.0-1004.6) zesty; urgency=low
    
      [ Tim Gardner ]
    
      * Release Tracking Bug
        - LP: #1680768
    
      * Rebase against Ubuntu-4.10.0-19.21
    
      * ADT regressions caused by "audit: fix auditd/kernel connection state
        tracking" (LP: #1680532)
        - SAUCE: Revert "audit: fix auditd/kernel connection state tracking"
    
     -- Tim Gardner <email address hidden>  Fri, 07 Apr 2017 10:12:01 +0100