*** This bug is a duplicate of bug 1744244 ***
https://bugs.launchpad.net/bugs/1744244
This bug was fixed in the package linux - 4.4.0-112.135
---------------
linux (4.4.0-112.135) xenial; urgency=low
* linux: 4.4.0-112.135 -proposed tracker (LP: #1744244)
* CVE-2017-5715 // CVE-2017-5753
- x86/cpuid: Provide get_scattered_cpuid_leaf()
- SAUCE: Fix spec_ctrl support in KVM
- SAUCE: s390: improve cpu alternative handling for gmb and nobp
- SAUCE: s390: print messages for gmb and nobp
- [Config] KERNEL_NOBP=y
linux (4.4.0-111.134) xenial; urgency=low
* linux: 4.4.0-111.134 -proposed tracker (LP: #1743362)
* Do not duplicate changelog entries assigned to more than one bug or CVE
(LP: #1743383)
- [Packaging] git-ubuntu-log -- handle multiple bugs/cves better
* CVE-2017-5715 // CVE-2017-5753
- SAUCE: x86/microcode: Extend post microcode reload to support IBPB feature
-- repair missmerge
- Revert "x86/svm: Add code to clear registers on VM exit"
- kvm: vmx: Scrub hardware GPRs at VM-exit
* CVE-2017-5754
- SAUCE: powerpc: use sync instead of hwsync mnemonic
linux (4.4.0-110.133) xenial; urgency=low
* linux: 4.4.0-110.133 -proposed tracker (LP: #1742995)
* CVE-2017-5753
- x86/microcode/AMD: Add support for fam17h microcode loading
- bpf: add bpf_patch_insn_single helper
- bpf: prepare bpf_int_jit_compile/bpf_prog_select_runtime apis
- bpf: add generic constant blinding for use in jits
- locking/barriers: introduce new memory barrier gmb()
- bpf: prevent speculative execution in eBPF interpreter
- x86, bpf, jit: prevent speculative execution when JIT is enabled
- uvcvideo: prevent speculative execution
- carl9170: prevent speculative execution
- qla2xxx: prevent speculative execution
- Thermal/int340x: prevent speculative execution
- userns: prevent speculative execution
- ipv6: prevent speculative execution
- fs: prevent speculative execution
- net: mpls: prevent speculative execution
- udf: prevent speculative execution
- x86/feature: Enable the x86 feature to control Speculation
- x86/feature: Report presence of IBPB and IBRS control
- x86/enter: MACROS to set/clear IBRS and set IBPB
- x86/enter: Use IBRS on syscall and interrupts
- x86/idle: Disable IBRS entering idle and enable it on wakeup
- x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
- x86/mm: Set IBPB upon context switch
- x86/mm: Only set IBPB when the new thread cannot ptrace current thread
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
- x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
- x86/kvm: Set IBPB when switching VM
- x86/kvm: Toggle IBRS on VM entry and exit
- x86/kvm: Pad RSB on VM transition
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
- x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
- x86/syscall: Clear unused extra registers on syscall entrance
- x86/syscall: Clear unused extra registers on 32-bit compatible syscall
entrance
- x86/entry: Use retpoline for syscall's indirect calls
- x86/cpu/amd, kvm: Satisfy guest kernel reads of IC_CFG MSR
- x86/cpu/AMD: Add speculative control support for AMD
- x86/microcode: Extend post microcode reload to support IBPB feature
- KVM: SVM: Do not intercept new speculative control MSRs
- x86/svm: Set IBRS value on VM entry and exit
- x86/svm: Set IBPB when running a different VCPU
- KVM: x86: Add speculative control CPUID support for guests
- x86/svm: Add code to clobber the RSB on VM exit
- x86/svm: Add code to clear registers on VM exit
- x86/cpu/AMD: Make the LFENCE instruction serialized
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
- powerpc: add gmb barrier
- s390/spinlock: add gmb memory barrier
- SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
- arm64: no gmb() implementation yet
- arm: no gmb() implementation yet
* CVE-2017-5715
- x86/microcode/AMD: Add support for fam17h microcode loading
- bpf: add bpf_patch_insn_single helper
- bpf: prepare bpf_int_jit_compile/bpf_prog_select_runtime apis
- bpf: add generic constant blinding for use in jits
- locking/barriers: introduce new memory barrier gmb()
- bpf: prevent speculative execution in eBPF interpreter
- x86, bpf, jit: prevent speculative execution when JIT is enabled
- uvcvideo: prevent speculative execution
- carl9170: prevent speculative execution
- qla2xxx: prevent speculative execution
- Thermal/int340x: prevent speculative execution
- userns: prevent speculative execution
- ipv6: prevent speculative execution
- fs: prevent speculative execution
- net: mpls: prevent speculative execution
- udf: prevent speculative execution
- x86/feature: Enable the x86 feature to control Speculation
- x86/feature: Report presence of IBPB and IBRS control
- x86/enter: MACROS to set/clear IBRS and set IBPB
- x86/enter: Use IBRS on syscall and interrupts
- x86/idle: Disable IBRS entering idle and enable it on wakeup
- x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
- x86/mm: Set IBPB upon context switch
- x86/mm: Only set IBPB when the new thread cannot ptrace current thread
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
- x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
- x86/kvm: Set IBPB when switching VM
- x86/kvm: Toggle IBRS on VM entry and exit
- x86/kvm: Pad RSB on VM transition
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
- x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
- x86/syscall: Clear unused extra registers on syscall entrance
- x86/syscall: Clear unused extra registers on 32-bit compatible syscall
entrance
- x86/entry: Use retpoline for syscall's indirect calls
- x86/cpu/amd, kvm: Satisfy guest kernel reads of IC_CFG MSR
- x86/cpu/AMD: Add speculative control support for AMD
- x86/microcode: Extend post microcode reload to support IBPB feature
- KVM: SVM: Do not intercept new speculative control MSRs
- x86/svm: Set IBRS value on VM entry and exit
- x86/svm: Set IBPB when running a different VCPU
- KVM: x86: Add speculative control CPUID support for guests
- x86/svm: Add code to clobber the RSB on VM exit
- x86/svm: Add code to clear registers on VM exit
- x86/cpu/AMD: Make the LFENCE instruction serialized
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
- powerpc: add gmb barrier
- s390/spinlock: add gmb memory barrier
- SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
- arm64: no gmb() implementation yet
- arm: no gmb() implementation yet
* powerpc: flush L1D on return to use (LP: #1742772)
- SAUCE: powerpc: Secure memory rfi flush
- SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
- SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
- SAUCE: Fixup rfid in kvmppc_skip_Hinterrupt should be hrfid
- SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host
- SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
- SAUCE: rfi-flush: Implement congruence-first fallback flush
- SAUCE: rfi-flush: Make l1d_flush_type bit flags
- SAUCE: rfi-flush: Push the instruction selection down to the patching
routine
- SAUCE: rfi-flush: Expand the RFI section to two nop slots
- SAUCE: rfi-flush: Support more than one flush type at once
- SAUCE: rfi-flush: Allow HV to advertise multiple flush types
- SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
- SAUCE: powerpc/asm: Allow including ppc_asm.h in asm files
- SAUCE: Remove setup.h include file otherwise compilation complains about
missing header file.
- SAUCE: Fix compilation errors for arch/powerpc/lib/feature-fixups.c
- SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
- SAUCE: rfi-flush: Rework powernv logic to be more cautious
- SAUCE: rfi-flush: Rework pseries logic to be more cautious
- SAUCE: rfi-flush: Fix the fallback flush to actually activate
- SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
- SAUCE: rfi-flush: Refactor the macros so the nops are defined once
- SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
- SAUCE: rfi-flush: Use rfi-flush in printks
- SAUCE: rfi-flush: Fallback flush add load dependency
- SAUCE: rfi-flush: Fix the 32-bit KVM build
- SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
- SAUCE: UBUNTU: [Config] Disable CONFIG_PPC_DEBUG_RFI
* s390: add ppa to kernel entry/exit (LP: #1742771)
- s390: introduce CPU alternatives
- s390: add ppa to kernel entry / exit
* CVE-2017-5754
- x86/tlb: Drop the _GPL from the cpu_tlbstate export
- Map the vsyscall page with _PAGE_USER
- s390: introduce CPU alternatives
- s390: add ppa to kernel entry / exit
- SAUCE: powerpc: Secure memory rfi flush
- SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
- SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
- SAUCE: Fixup rfid in kvmppc_skip_Hinterrupt should be hrfid
- SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host
- SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
- SAUCE: rfi-flush: Implement congruence-first fallback flush
- SAUCE: rfi-flush: Make l1d_flush_type bit flags
- SAUCE: rfi-flush: Push the instruction selection down to the patching
routine
- SAUCE: rfi-flush: Expand the RFI section to two nop slots
- SAUCE: rfi-flush: Support more than one flush type at once
- SAUCE: rfi-flush: Allow HV to advertise multiple flush types
- SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
- SAUCE: powerpc/asm: Allow including ppc_asm.h in asm files
- SAUCE: Remove setup.h include file otherwise compilation complains about
missing header file.
- SAUCE: Fix compilation errors for arch/powerpc/lib/feature-fixups.c
- SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
- SAUCE: rfi-flush: Rework powernv logic to be more cautious
- SAUCE: rfi-flush: Rework pseries logic to be more cautious
- SAUCE: rfi-flush: Fix the fallback flush to actually activate
- SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
- SAUCE: rfi-flush: Refactor the macros so the nops are defined once
- SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
- SAUCE: rfi-flush: Use rfi-flush in printks
- SAUCE: rfi-flush: Fallback flush add load dependency
- SAUCE: rfi-flush: Fix the 32-bit KVM build
- SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
- SAUCE: UBUNTU: [Config] Disable CONFIG_PPC_DEBUG_RFI
-- Stefan Bader <stefan.ba...@canonical.com> Fri, 19 Jan 2018 11:03:51
+0100
** Changed in: linux (Ubuntu Xenial)
Status: Confirmed => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-5715
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-5753
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-5754
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1742995
Title:
linux: 4.4.0-110.133 -proposed tracker
Status in Kernel SRU Workflow:
In Progress
Status in Kernel SRU Workflow automated-testing series:
Incomplete
Status in Kernel SRU Workflow certification-testing series:
Confirmed
Status in Kernel SRU Workflow prepare-package series:
Fix Released
Status in Kernel SRU Workflow prepare-package-meta series:
Fix Released
Status in Kernel SRU Workflow prepare-package-signed series:
Fix Released
Status in Kernel SRU Workflow promote-to-proposed series:
Fix Released
Status in Kernel SRU Workflow promote-to-security series:
New
Status in Kernel SRU Workflow promote-to-updates series:
New
Status in Kernel SRU Workflow regression-testing series:
Confirmed
Status in Kernel SRU Workflow security-signoff series:
In Progress
Status in Kernel SRU Workflow snap-certification-testing series:
New
Status in Kernel SRU Workflow snap-release-to-beta series:
Confirmed
Status in Kernel SRU Workflow snap-release-to-candidate series:
New
Status in Kernel SRU Workflow snap-release-to-edge series:
Confirmed
Status in Kernel SRU Workflow snap-release-to-stable series:
New
Status in Kernel SRU Workflow upload-to-ppa series:
Invalid
Status in Kernel SRU Workflow verification-testing series:
Confirmed
Status in linux package in Ubuntu:
Invalid
Status in linux source package in Xenial:
Fix Released
Bug description:
This bug is for tracking the <version to be filled> upload package.
This bug will contain status and testing results related to that
upload.
For an explanation of the tasks and the associated workflow see:
https://wiki.ubuntu.com/Kernel/kernel-sru-workflow
backports: 1742996,1742998
derivatives: 1742999,1743000,1743001,1743002,1743004,1743006
-- swm properties --
boot-testing-requested: true
phase: Promoted to proposed
proposed-announcement-sent: true
proposed-testing-requested: true
To manage notifications about this bug go to:
https://bugs.launchpad.net/kernel-sru-workflow/+bug/1742995/+subscriptions
--
Mailing list: https://launchpad.net/~kernel-packages
Post to : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help : https://help.launchpad.net/ListHelp
