1. 28 May, 2018 2 commits
    • Salvatore Bonaccorso's avatar
      Import Debian changes 4.16.12-1 · 3c5af882
      Salvatore Bonaccorso authored and Lorenzo "Palinuro" Faletra's avatar Lorenzo "Palinuro" Faletra committed
      linux (4.16.12-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.6
          - Revert "pinctrl: intel: Initialize GPIO properly when used through
            irqchip"
          - [armhf] drm: bridge: dw-hdmi: Fix overflow workaround for Amlogic Meson
            GX SoCs
          - i40e: Fix attach VF to VM issue
          - tpm: cmd_ready command can be issued only after granting locality
          - tpm: tpm-interface: fix tpm_transmit/_cmd kdoc
          - tpm: add retry logic
          - Revert "ath10k: send (re)assoc peer command when NSS changed"
          - bonding: do not set slave_dev npinfo before slave_enable_netpoll in
            bond_enslave
          - docs: ip-sysctl.txt: fix name of some ipv6 variables
          - ipv6: add RTA_TABLE and RTA_PREFSRC to rtm_ipv6_policy
          - ipv6: sr: fix NULL pointer dereference in seg6_do_srh_encap()- v4 pkts
          - KEYS: DNS: limit the length of option strings
          - l2tp: check sockaddr length in pppol2tp_connect()
          - llc: delete timers synchronously in llc_sk_free()
          - net: af_packet: fix race in PACKET_{R|T}X_RING
          - net: fix deadlock while clearing neighbor proxy table
          - [arm64,armhf] net: mvpp2: Fix DMA address mask size
          - net: qmi_wwan: add Wistron Neweb D19Q1
          - net/smc: fix shutdown in state SMC_LISTEN
          - net: stmmac: Disable ACS Feature for GMAC >= 4
          - packet: fix bitfield update race
          - pppoe: check sockaddr length in pppoe_connect()
          - Revert "macsec: missing dev_put() on error in macsec_newlink()"
          - sctp: do not check port in sctp_inet6_cmp_addr
          - strparser: Do not call mod_delayed_work with a timeout of LONG_MAX
          - strparser: Fix incorrect strp->need_bytes value.
          - tcp: clear tp->packets_out when purging write queue
          - tcp: don't read out-of-bounds opsize
          - tcp: md5: reject TCP_MD5SIG or TCP_MD5SIG_EXT on established sockets
          - team: avoid adding twice the same option to the event list
          - team: fix netconsole setup over team
          - tipc: add policy for TIPC_NLA_NET_ADDR
          - vlan: Fix reading memory beyond skb->tail in skb_vlan_tagged_multi
          - vmxnet3: fix incorrect dereference when rxvlan is disabled
          - [amd64,arm64] amd-xgbe: Add pre/post auto-negotiation phy hooks
          - [amd64,arm64] amd-xgbe: Improve KR auto-negotiation and training
          - [amd64,arm64] amd-xgbe: Only use the SFP supported transceiver signals
          - net: sched: ife: signal not finding metaid
          - net: sched: ife: handle malformed tlv length
          - net: sched: ife: check on metadata length
          - l2tp: hold reference on tunnels in netlink dumps
          - l2tp: hold reference on tunnels printed in pppol2tp proc file
          - l2tp: hold reference on tunnels printed in l2tp/tunnels debugfs file
          - l2tp: fix {pppol2tp, l2tp_dfs}_seq_stop() in case of seq_file overflow
          - llc: hold llc_sap before release_sock()
          - llc: fix NULL pointer deref for SOCK_ZAPPED
          - [s390x] qeth: fix error handling in adapter command callbacks
          - [s390x] qeth: avoid control IO completion stalls
          - [s390x] qeth: handle failure on workqueue creation
          - [armhf] net: ethernet: ti: cpsw: fix tx vlan priority mapping
          - net: validate attribute sizes in neigh_dump_table()
          - bnxt_en: Fix memory fault in bnxt_ethtool_init()
          - virtio-net: add missing virtqueue kick when flushing packets
          - VSOCK: make af_vsock.ko removable again
          - net: aquantia: Regression on reset with 1.x firmware
          - tun: fix vlan packet truncation
          - net: aquantia: oops when shutdown on already stopped device
          - virtio_net: split out ctrl buffer
          - virtio_net: fix adding vids on big-endian
          - Revert "mm/hmm: fix header file if/else/endif maze"
          - commoncap: Handle memory allocation failure.
          - scsi: mptsas: Disable WRITE SAME
          - cdrom: information leak in cdrom_ioctl_media_changed() (CVE-2018-10940)
          - fsnotify: Fix fsnotify_mark_connector race
          - [m68k] mac: Don't remap SWIM MMIO region
          - [m68k] block/swim: Check drive type
          - [m68k] block/swim: Don't log an error message for an invalid ioctl
          - [m68k] block/swim: Remove extra put_disk() call from error path
          - [m68k] block/swim: Rename macros to avoid inconsistent inverted logic
          - [m68k] block/swim: Select appropriate drive on device open
          - [m68k] block/swim: Fix array bounds check
          - [m68k] block/swim: Fix IO error at end of medium
          - tracing: Fix missing tab for hwlat_detector print format
          - hwmon: (k10temp) Add temperature offset for Ryzen 2700X
          - hwmon: (k10temp) Add support for AMD Ryzen w/ Vega graphics
          - [s390x] cio: update chpid descriptor after resource accessibility event
          - [s390x] dasd: fix IO error for newly defined devices
          - [s390x] uprobes: implement arch_uretprobe_is_alive()
          - [s390x] cpum_cf: rename IBM z13/z14 counter names
          - kprobes: Fix random address output of blacklist file
          - ACPI / video: Only default only_lcd to true on Win8-ready _desktops_
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.7
          - ext4: prevent right-shifting extents beyond EXT_MAX_BLOCKS
          - ext4: set h_journal if there is a failure starting a reserved handle
          - ext4: add MODULE_SOFTDEP to ensure crc32c is included in the initramfs
          - random: set up the NUMA crng instances after the CRNG is fully
            initialized
          - random: fix possible sleeping allocation from irq context
          - random: rate limit unseeded randomness warnings
          - usbip: usbip_event: fix to not print kernel pointer address
          - usbip: usbip_host: fix to hold parent lock for device_attach() calls
          - usbip: vhci_hcd: Fix usb device and sockfd leaks
          - usbip: vhci_hcd: check rhport before using in vhci_hub_control()
          - Revert "xhci: plat: Register shutdown for xhci_plat"
          - xhci: Fix USB ports for Dell Inspiron 5775
          - USB: serial: simple: add libtransistor console
          - USB: serial: ftdi_sio: use jtag quirk for Arrow USB Blaster
          - USB: serial: cp210x: add ID for NI USB serial console
          - [arm64] serial: mvebu-uart: Fix local flags handling on termios update
          - usb: typec: ucsi: Increase command completion timeout value
          - usb: core: Add quirk for HP v222w 16GB Mini
          - USB: Increment wakeup count on remote wakeup.
          - ALSA: usb-audio: Skip broken EU on Dell dock USB-audio
          - virtio: add ability to iterate over vqs
          - virtio_console: don't tie bufs to a vq
          - virtio_console: free buffers after reset
          - virtio_console: drop custom control queue cleanup
          - virtio_console: move removal code
          - virtio_console: reset on out of memory
          - drm/virtio: fix vq wait_event condition
          - tty: Don't call panic() at tty_ldisc_init()
          - tty: n_gsm: Fix long delays with control frame timeouts in ADM mode
          - tty: n_gsm: Fix DLCI handling for ADM mode if debug & 2 is not set
          - tty: Avoid possible error pointer dereference at tty_ldisc_restore().
          - tty: Use __GFP_NOFAIL for tty_ldisc_get()
          - ALSA: dice: fix OUI for TC group
          - ALSA: dice: fix error path to destroy initialized stream data
          - ALSA: hda - Skip jack and others for non-existing PCM streams
          - ALSA: opl3: Hardening for potential Spectre v1
          - ALSA: asihpi: Hardening for potential Spectre v1
          - ALSA: hdspm: Hardening for potential Spectre v1
          - ALSA: rme9652: Hardening for potential Spectre v1
          - ALSA: control: Hardening for potential Spectre v1
          - ALSA: pcm: Return negative delays from SNDRV_PCM_IOCTL_DELAY.
          - ALSA: core: Report audio_tstamp in snd_pcm_sync_ptr
          - ALSA: seq: oss: Fix unbalanced use lock for synth MIDI device
          - ALSA: seq: oss: Hardening for potential Spectre v1
          - ALSA: hda: Hardening for potential Spectre v1
          - ALSA: hda/realtek - Add some fixes for ALC233
          - ALSA: hda/realtek - Update ALC255 depop optimize
          - ALSA: hda/realtek - change the location for one of two front mics
          - mtd: spi-nor: cadence-quadspi: Fix page fault kernel panic
          - mtd: cfi: cmdset_0001: Do not allow read/write to suspend erase block.
          - mtd: cfi: cmdset_0001: Workaround Micron Erase suspend bug.
          - mtd: cfi: cmdset_0002: Do not allow read/write to suspend erase block.
          - mtd: rawnand: tango: Fix struct clk memory leak
          - mtd: rawnand: marvell: fix the chip-select DT parsing logic
          - kobject: don't use WARN for registration failures
          - scsi: sd_zbc: Avoid that resetting a zone fails sporadically
          - scsi: sd: Defer spinning up drive while SANITIZE is in progress
          - blk-mq: start request gstate with gen 1
          - bfq-iosched: ensure to clear bic/bfqq pointers when preparing request
          - block: do not use interruptible wait anywhere
          - [s390x] vfio: ccw: process ssch with interrupts disabled
          - [arm64] PCI: aardvark: Fix logic in advk_pcie_{rd,wr}_conf()
          - [arm64] PCI: aardvark: Set PIO_ADDR_LS correctly in advk_pcie_rd_conf()
          - [arm64] PCI: aardvark: Use ISR1 instead of ISR0 interrupt in legacy irq
            mode
          - [arm64] PCI: aardvark: Fix PCIe Max Read Request Size setting
          - [armhf,arm64] KVM: Close VMID generation race
          - [powerpc*] mm: Flush cache on memory hot(un)plug
          - [powerpc*] mce: Fix a bug where mce loops on memory UE.
          - [powerpc*] powernv/npu: Do a PID GPU TLB flush when invalidating a large
            address range
          - crypto: drbg - set freed buffers to NULL
          - libceph: un-backoff on tick when we have a authenticated session
          - libceph: reschedule a tick in finish_hunting()
          - libceph: validate con->state at the top of try_write()
          - PCI / PM: Do not clear state_saved in pci_pm_freeze() when smart suspend
            is set
          - module: Fix display of wrong module .text address
          - earlycon: Use a pointer table to fix __earlycon_table stride
          - [powerpc*] cpufreq: powernv: Fix hardlockup due to synchronous smp_call
            in timer interrupt
          - [powerpc*] rtc: opal: Fix OPAL RTC driver OPAL_BUSY loops
          - drm/edid: Reset more of the display info
          - drm/amdgpu: set COMPUTE_PGM_RSRC1 for SGPR/VGPR clearing shaders
          - [x86] drm/i915/fbdev: Enable late fbdev initial configuration
          - [x86] drm/i915/audio: set minimum CD clock to twice the BCLK
          - [x86] drm/i915: Enable display WA#1183 from its correct spot
          - drm/amd/display: Fix deadlock when flushing irq
          - drm/amd/display: Don't read EDID in atomic_check
          - drm/amd/display: Disallow enabling CRTC without primary plane with FB
          - objtool, perf: Fix GCC 8 -Wrestrict error
          - [x86] ipc: Fix x32 version of shmid64_ds and msqid64_ds
          - [x86] smpboot: Don't use mwait_play_dead() on AMD systems
          - [x86] microcode/intel: Save microcode patch unconditionally
          - [x86] microcode: Do not exit early from __reload_late()
          - tick/sched: Do not mess with an enqueued hrtimer
          - [x86] crypto: ccp - add check to get PSP master only when PSP is
            detected
          - [armhf,arm64] KVM: Add PSCI version selection API
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.8
          - ACPI / button: make module loadable when booted in non-ACPI mode
          - [arm64] Add work around for Arm Cortex-A55 Erratum 1024718
          - ALSA: hda - Fix incorrect usage of IS_REACHABLE()
          - ALSA: pcm: Check PCM state at xfern compat ioctl
          - ALSA: seq: Fix races at MIDI encoding in snd_virmidi_output_trigger()
          - ALSA: dice: fix kernel NULL pointer dereference due to invalid
            calculation for array index
          - ALSA: aloop: Mark paused device as inactive
          - ALSA: aloop: Add missing cable lock to ctl API callbacks
          - errseq: Always report a writeback error once
          - tracepoint: Do not warn on ENOMEM
          - scsi: target: Fix fortify_panic kernel exception
          - Input: leds - fix out of bound access
          - Input: atmel_mxt_ts - add touchpad button mapping for Samsung Chromebook
            Pro
          - swiotlb: fix inversed DMA_ATTR_NO_WARN test
          - rtlwifi: cleanup 8723be ant_sel definition
          - xfs: prevent creating negative-sized file via INSERT_RANGE
          - RDMA/cxgb4: release hw resources on device removal
          - RDMA/ucma: Allow resolving address w/o specifying source address
          - RDMA/mlx5: Fix multiple NULL-ptr deref errors in rereg_mr flow
          - RDMA/mlx4: Add missed RSS hash inner header flag
          - RDMA/mlx5: Protect from shift operand overflow
          - NET: usb: qmi_wwan: add support for ublox R410M PID 0x90b2
          - IB/mlx5: Use unlimited rate when static rate is not supported
          - infiniband: mlx5: fix build errors when INFINIBAND_USER_ACCESS=m
          - IB/hfi1: Fix handling of FECN marked multicast packet
          - IB/hfi1: Fix loss of BECN with AHG
          - IB/hfi1: Fix NULL pointer dereference when invalid num_vls is used
          - iw_cxgb4: Atomically flush per QP HW CQEs
          - btrfs: Take trans lock before access running trans in check_delayed_ref
          - [arm64,armhf] drm/vc4: Make sure vc4_bo_{inc,dec}_usecnt() calls are
            balanced
          - [x86] drm/vmwgfx: Fix a buffer object leak
          - drm/bridge: vga-dac: Fix edid memory leak
          - xhci: Fix use-after-free in xhci_free_virt_device
          - USB: serial: visor: handle potential invalid device configuration
          - [arm64,armhf] usb: dwc3: gadget: Fix list_del corruption in
            dwc3_ep_dequeue
          - USB: Accept bulk endpoints with 1024-byte maxpacket
          - USB: serial: option: reimplement interface masking
          - USB: serial: option: adding support for ublox R410M
          - [arm64,armhf] usb: musb: host: fix potential NULL pointer dereference
          - [arm64, armhf] usb: musb: trace: fix NULL pointer dereference in
            musb_g_tx()
          - [x86] platform/x86: asus-wireless: Fix NULL pointer dereference
          - [x86] platform/x86: Kconfig: Fix dell-laptop dependency chain.
          - [x86] KVM: remove APIC Timer periodic/oneshot spikes
          - [x86] tsc: Always unregister clocksource_tsc_early
          - [x86] tsc: Fix mark_tsc_unstable()
          - [arm64] irqchip/qcom: Fix check for spurious interrupts
          - clocksource: Allow clocksource_mark_unstable() on unregistered
            clocksources
          - clocksource: Initialize cs->wd_list
          - clocksource: Consistent de-rate when marking unstable
          - tracing: Fix bad use of igrab in trace_uprobe.c
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.9
          - ipvs: fix rtnl_lock lockups caused by start_sync_thread
          - netfilter: ebtables: don't attempt to allocate 0-sized compat array
          - clk: ti: fix flag space conflict with clkctrl clocks
          - rds: tcp: must use spin_lock_irq* and not spin_lock_bh with
            rds_tcp_conn_lock
          - crypto: af_alg - fix possible uninit-value in alg_bind()
          - netlink: fix uninit-value in netlink_sendmsg
          - net: fix rtnh_ok()
          - net: initialize skb->peeked when cloning
          - net: fix uninit-value in __hw_addr_add_ex()
          - dccp: initialize ireq->ir_mark
          - ipv4: fix uninit-value in ip_route_output_key_hash_rcu()
          - soreuseport: initialise timewait reuseport field
          - inetpeer: fix uninit-value in inet_getpeer
          - bpf/tracing: fix a deadlock in perf_event_detach_bpf_prog
          - memcg: fix per_node_info cleanup
          - perf: Remove superfluous allocation error check
          - i2c: dev: prevent ZERO_SIZE_PTR deref in i2cdev_ioctl_rdwr()
          - tcp: fix TCP_REPAIR_QUEUE bound checking
          - bdi: wake up concurrent wb_shutdown() callers.
          - bdi: Fix use after free bug in debugfs_remove()
          - bdi: Fix oops in wb_workfn()
          - compat: fix 4-byte infoleak via uninitialized struct field
          - gpioib: do not free unrequested descriptors
          - gpio: fix error path in lineevent_create
          - rfkill: gpio: fix memory leak in probe error path
          - libata: Apply NOLPM quirk for SanDisk SD7UB3Q*G1001 SSDs
          - dm integrity: use kvfree for kvmalloc'd memory
          - tracing: Fix regex_match_front() to not over compare the test string
          - mm: sections are not offlined during memory hotremove
          - mm, oom: fix concurrent munlock and oom reaper unmap (CVE-2018-1000200)
          - ceph: fix rsize/wsize capping in ceph_direct_read_write()
          - can: kvaser_usb: Increase correct stats counter in kvaser_usb_rx_can_msg()
          - [armhf,arm64] drm/vc4: Fix scaling of uni-planar formats
          - drm/ttm: Use GFP_TRANSHUGE_LIGHT for allocating huge pages
          - [x86] drm/i915: Fix drm:intel_enable_lvds ERROR message in kernel log
          - [x86] drm/i915: Adjust eDP's logical vco in a reliable place.
          - drm/nouveau: Fix deadlock in nv50_mstm_register_connector()
            (Closes: #898825)
          - drm/nouveau/ttm: don't dereference nvbo::cli, it can outlive client
          - drm/atomic: Clean old_state/new_state in drm_atomic_state_default_clear()
          - drm/atomic: Clean private obj old_state/new_state in
            drm_atomic_state_default_clear()
          - net: atm: Fix potential Spectre v1
          - atm: zatm: Fix potential Spectre v1
          - PCI / PM: Always check PME wakeup capability for runtime wakeup support
          - PCI / PM: Check device_may_wakeup() in pci_enable_wake()
          - cpufreq: schedutil: Avoid using invalid next_freq
          - Revert "Bluetooth: btusb: Fix quirk for Atheros 1525/QCA6174"
          - [x86] Bluetooth: btusb: Add Dell XPS 13 9360 to
            btusb_needs_reset_resume_table
          - Bluetooth: btusb: Only check needs_reset_resume DMI table for QCA rome
            chipsets
          - [armhf] thermal: exynos: Reading temperature makes sense only when TMU is
            turned on
          - [armhf] thermal: exynos: Propagate error value from tmu_read()
          - nvme: add quirk to force medium priority for SQ creation
          - nvme: Fix sync controller reset return
          - smb3: directory sync should not return an error
          - swiotlb: silent unwanted warning "buffer is full"
          - sched/core: Fix possible Spectre-v1 indexing for sched_prio_to_weight[]
          - sched/autogroup: Fix possible Spectre-v1 indexing for
            sched_prio_to_weight[]
          - tracing/uprobe_event: Fix strncpy corner case
          - [x86] perf: Fix possible Spectre-v1 indexing for hw_perf_event cache_*
          - [x86] perf/cstate: Fix possible Spectre-v1 indexing for pkg_msr
          - [x86] perf/msr: Fix possible Spectre-v1 indexing in the MSR driver
          - perf/core: Fix possible Spectre-v1 indexing for ->aux_pages[]
          - [x86] perf: Fix possible Spectre-v1 indexing for x86_pmu::event_map()
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.10
          - 8139too: Use disable_irq_nosync() in rtl8139_poll_controller()
          - bridge: check iface upper dev when setting master via ioctl
          - dccp: fix tasklet usage
          - ipv4: fix fnhe usage by non-cached routes
          - ipv4: fix memory leaks in udp_sendmsg, ping_v4_sendmsg
          - llc: better deal with too small mtu
          - net: ethernet: sun: niu set correct packet size in skb
          - [armhf] net: ethernet: ti: cpsw: fix packet leaking in dual_mac mode
          - net/mlx4_en: Fix an error handling path in 'mlx4_en_init_netdev()'
          - net/mlx4_en: Verify coalescing parameters are in range
          - net/mlx5e: Err if asked to offload TC match on frag being first
          - net/mlx5: E-Switch, Include VF RDMA stats in vport statistics
          - net sched actions: fix refcnt leak in skbmod
          - net_sched: fq: take care of throttled flows before reuse
          - net: support compat 64-bit time in {s,g}etsockopt
          - openvswitch: Don't swap table in nlattr_set() after OVS_ATTR_NESTED is
            found
          - qmi_wwan: do not steal interfaces from class drivers
          - r8169: fix powering up RTL8168h
          - rds: do not leak kernel memory to user land
          - sctp: delay the authentication for the duplicated cookie-echo chunk
          - sctp: fix the issue that the cookie-ack with auth can't get processed
          - sctp: handle two v4 addrs comparison in sctp_inet6_cmp_addr
          - sctp: remove sctp_chunk_put from fail_mark err path in
            sctp_ulpevent_make_rcvmsg
          - sctp: use the old asoc when making the cookie-ack chunk in dupcook_d
          - tcp_bbr: fix to zero idle_restart only upon S/ACKed data
          - tcp: ignore Fast Open on repair mode
          - tg3: Fix vunmap() BUG_ON() triggered from tg3_free_consistent().
          - bonding: do not allow rlb updates to invalid mac
          - bonding: send learning packets for vlans on slave
          - net: sched: fix error path in tcf_proto_create() when modules are not
            configured
          - net/mlx5e: TX, Use correct counter in dma_map error flow
          - net/mlx5: Avoid cleaning flow steering table twice during error flow
          - [x86] hv_netvsc: set master device
          - ipv6: fix uninit-value in ip6_multipath_l3_keys()
          - net/mlx5e: Allow offloading ipv4 header re-write for icmp
          - udp: fix SO_BINDTODEVICE
          - net/mlx5e: DCBNL fix min inline header size for dscp
          - sctp: clear the new asoc's stream outcnt in sctp_stream_update
          - tcp: restore autocorking
          - tipc: fix one byte leak in tipc_sk_set_orig_addr()
          - [x86] hv_netvsc: Fix net device attach on older Windows hosts
          - ipv4: reset fnhe_mtu_locked after cache route flushed
          - net/mlx5: Fix mlx5_get_vector_affinity function
          - net: phy: sfp: fix the BR,min computation
          - net/smc: keep clcsock reference in smc_tcp_listen_work()
          - scsi: aacraid: Correct hba_send to include iu_type
          - proc: do not access cmdline nor environ from file-backed areas
            (CVE-2018-1120)
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.11
          - xhci: Fix USB3 NULL pointer dereference at logical disconnect.
          - usbip: usbip_host: refine probe and disconnect debug msgs to be useful
          - usbip: usbip_host: delete device from busid_table after rebind
          - usbip: usbip_host: run rebind from exit when module is removed
          - usbip: usbip_host: fix NULL-ptr deref and use-after-free errors
          - usbip: usbip_host: fix bad unlock balance during stub_probe()
          - ALSA: usb: mixer: volume quirk for CM102-A+/102S+
          - ALSA: hda/realtek - Clevo P950ER ALC1220 Fixup
          - ALSA: hda: Add Lenovo C50 All in one to the power_save blacklist
          - ALSA: control: fix a redundant-copy issue
          - [amd64] spi: pxa2xx: Allow 64-bit DMA
          - KVM: vmx: update sec exec controls for UMIP iff emulating UMIP
          - [armhf,arm64] KVM: Properly protect VGIC locks from IRQs
          - [armhf,arm64] KVM: VGIC/ITS: Promote irq_lock() in update_affinity
          - [armhf,arm64] KVM: VGIC/ITS save/restore: protect kvm_read_guest() calls
          - [armhf,arm64] KVM: VGIC/ITS: protect kvm_read_guest() calls with SRCU
            lock
          - hwmon: (k10temp) Fix reading critical temperature register
          - hwmon: (k10temp) Use API function to access System Management Network
          - [s390x] vfio: ccw: fix cleanup if cp_prefetch fails
          - tracing/x86/xen: Remove zero data size trace events
            trace_xen_mmu_flush_tlb{_all}
          - vsprintf: Replace memory barrier with static_key for random_ptr_key
            update
          - [x86] amd_nb: Add support for Raven Ridge CPUs
          - [arm64] tee: shm: fix use-after-free via temporarily dropped reference
          - netfilter: nf_tables: free set name in error path
          - netfilter: nf_tables: can't fail after linking rule into active rule
            list
          - netfilter: nf_tables: nf_tables_obj_lookup_byhandle() can be static
          - [arm64] dts: marvell: armada-cp110: Add clocks for the xmdio node
          - [arm64] dts: marvell: armada-cp110: Add mg_core_clk for ethernet node
          - i2c: designware: fix poll-after-enable regression
          - mtd: rawnand: marvell: Fix read logic for layouts with ->nchunks > 2
          - [powerpc*] powerpc/powernv: Fix NVRAM sleep in invalid context when
            crashing
          - drm: Match sysfs name in link removal to link creation
          - radix tree: fix multi-order iteration race
          - mm: don't allow deferred pages with NEED_PER_CPU_KM
          - [x86] drm/i915/gen9: Add WaClearHIZ_WM_CHICKEN3 for bxt and glk
          - [s390x] qdio: fix access to uninitialized qdio_q fields
          - [s390x] cpum_sf: ensure sample frequency of perf event attributes is
            non-zero
          - [s390x] qdio: don't release memory in qdio_setup_irq()
          - [s390x] remove indirect branch from do_softirq_own_stack
          - bcache: return 0 from bch_debug_init() if CONFIG_DEBUG_FS=n
          - [x86] pkeys: Override pkey when moving away from PROT_EXEC
          - [x86] pkeys: Do not special case protection key 0
          - efi: Avoid potential crashes, fix the 'struct efi_pci_io_protocol_32'
            definition for mixed mode
          - [arm*] 8771/1: kprobes: Prohibit kprobes on do_undefinstr
          - [x86] apic/x2apic: Initialize cluster ID properly
          - [x86] mm: Drop TS_COMPAT on 64-bit exec() syscall
          - tick/broadcast: Use for_each_cpu() specially on UP kernels
          - [arm*] 8769/1: kprobes: Fix to use get_kprobe_ctlblk after irq-disabed
          - [arm*] 8770/1: kprobes: Prohibit probing on optimized_callback
          - [arm*] 8772/1: kprobes: Prohibit kprobes on get_user functions
          - Btrfs: fix xattr loss after power failure
          - Btrfs: send, fix invalid access to commit roots due to concurrent
            snapshotting
          - btrfs: property: Set incompat flag if lzo/zstd compression is set
          - btrfs: fix crash when trying to resume balance without the resume flag
          - btrfs: Split btrfs_del_delalloc_inode into 2 functions
          - btrfs: Fix delalloc inodes invalidation during transaction abort
          - btrfs: fix reading stale metadata blocks after degraded raid1 mounts
          - x86/nospec: Simplify alternative_msr_write()
          - x86/bugs: Concentrate bug detection into a separate function
          - x86/bugs: Concentrate bug reporting into a separate function
          - x86/bugs: Read SPEC_CTRL MSR during boot and re-use reserved bits
          - x86/bugs, KVM: Support the combination of guest and host IBRS
          - x86/bugs: Expose /sys/../spec_store_bypass
          - x86/cpufeatures: Add X86_FEATURE_RDS
          - x86/bugs: Provide boot parameters for the spec_store_bypass_disable
            mitigation
          - x86/bugs/intel: Set proper CPU features and setup RDS
          - x86/bugs: Whitelist allowed SPEC_CTRL MSR values
          - x86/bugs/AMD: Add support to disable RDS on Fam[15,16,17]h if requested
          - x86/KVM/VMX: Expose SPEC_CTRL Bit(2) to the guest
          - x86/speculation: Create spec-ctrl.h to avoid include hell
          - prctl: Add speculation control prctls
          - x86/process: Allow runtime control of Speculative Store Bypass
          - x86/speculation: Add prctl for Speculative Store Bypass mitigation
          - nospec: Allow getting/setting on non-current task
          - proc: Provide details on speculation flaw mitigations
          - seccomp: Enable speculation flaw mitigations
          - x86/bugs: Make boot modes __ro_after_init
          - prctl: Add force disable speculation
          - seccomp: Use PR_SPEC_FORCE_DISABLE
          - seccomp: Add filter flag to opt-out of SSB mitigation
          - seccomp: Move speculation migitation control to arch code
          - x86/speculation: Make "seccomp" the default mode for Speculative Store
            Bypass
          - x86/bugs: Rename _RDS to _SSBD
          - proc: Use underscores for SSBD in 'status'
          - Documentation/spec_ctrl: Do some minor cleanups
          - x86/bugs: Fix __ssb_select_mitigation() return type
          - x86/bugs: Make cpu_show_common() static
          - x86/bugs: Fix the parameters alignment and missing void
          - x86/cpu: Make alternative_msr_write work for 32-bit code
          - KVM: SVM: Move spec control call after restore of GS
          - x86/speculation: Use synthetic bits for IBRS/IBPB/STIBP
          - x86/cpufeatures: Disentangle MSR_SPEC_CTRL enumeration from IBRS
          - x86/cpufeatures: Disentangle SSBD enumeration
          - x86/cpufeatures: Add FEATURE_ZEN
          - x86/speculation: Handle HT correctly on AMD
          - x86/bugs, KVM: Extend speculation control for VIRT_SPEC_CTRL
          - x86/speculation: Add virtualized speculative store bypass disable
            support
          - x86/speculation: Rework speculative_store_bypass_update()
          - x86/bugs: Unify x86_spec_ctrl_{set_guest,restore_host}
          - x86/bugs: Expose x86_spec_ctrl_base directly
          - x86/bugs: Remove x86_spec_ctrl_set()
          - x86/bugs: Rework spec_ctrl base and mask logic
          - x86/speculation, KVM: Implement support for VIRT_SPEC_CTRL/LS_CFG
          - KVM: SVM: Implement VIRT_SPEC_CTRL support for SSBD
          - x86/bugs: Rename SSBD_NO to SSB_NO
          - bpf: Prevent memory disambiguation attack
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.12
          - net/mlx5: Fix build break when CONFIG_SMP=n
          - net: Fix a bug in removing queues from XPS map
          - net/mlx4_core: Fix error handling in mlx4_init_port_info.
          - net/sched: fix refcnt leak in the error path of tcf_vlan_init()
          - net: sched: red: avoid hashing NULL child
          - net/smc: check for missing nlattrs in SMC_PNETID messages
          - net: test tailroom before appending to linear skb
          - packet: in packet_snd start writing at link layer allocation
          - sock_diag: fix use-after-free read in __sk_free
          - tcp: purge write queue in tcp_connect_init()
          - tun: fix use after free for ptr_ring
          - tuntap: fix use after free during release
          - cxgb4: Correct ntuple mask validation for hash filters
          - [armhf] net: dsa: bcm_sf2: Fix RX_CLS_LOC_ANY overwrite for last rule
          - net: dsa: Do not register devlink for unused ports
          - [armhf] net: dsa: bcm_sf2: Fix IPv6 rules and chain ID
          - [armhf] net: dsa: bcm_sf2: Fix IPv6 rule half deletion
          - 3c59x: convert to generic DMA API
          - cxgb4: fix offset in collecting TX rate limit info
          - vmxnet3: set the DMA mask before the first DMA map operation
          - vmxnet3: use DMA memory barriers where required
          - net: ip6_gre: Request headroom in __gre6_xmit()
          - net: ip6_gre: Fix headroom request in ip6erspan_tunnel_xmit()
          - net: ip6_gre: Split up ip6gre_tnl_link_config()
          - net: ip6_gre: Split up ip6gre_tnl_change()
          - net: ip6_gre: Split up ip6gre_newlink()
          - net: ip6_gre: Split up ip6gre_changelink()
          - net: ip6_gre: Fix ip6erspan hlen calculation
          - net: ip6_gre: fix tunnel metadata device sharing.
          - [sparc*]: vio: use put_device() instead of kfree()
          - ext2: fix a block leak
          - [powerpc*] rfi-flush: Always enable fallback flush on pseries
          - [powerpc*] Add security feature flags for Spectre/Meltdown
          - [powerpc*] pseries: Add new H_GET_CPU_CHARACTERISTICS flags
          - [powerpc*] pseries: Set or clear security feature flags
          - [powerpc*] powerpc/powernv: Set or clear security feature flags
          - [powerpc*] powerpc/64s: Move cpu_show_meltdown()
          - [powerpc*] powerpc/64s: Enhance the information in cpu_show_meltdown()
          - [powerpc*] powerpc/powernv: Use the security flags in
            pnv_setup_rfi_flush()
          - [powerpc*] powerpc/pseries: Use the security flags in
            pseries_setup_rfi_flush()
          - [powerpc*] powerpc/64s: Wire up cpu_show_spectre_v1()
          - [powerpc*] powerpc/64s: Wire up cpu_show_spectre_v2()
          - [powerpc*] powerpc/pseries: Fix clearing of security feature flags
          - [powerpc*] powerpc: Move default security feature flags
          - [powerpc*] powerpc/64s: Add support for a store forwarding barrier at
            kernel entry/exit
          - [s390x] move nobp parameter functions to nospec-branch.c
          - [s390x] add automatic detection of the spectre defense
          - [s390x] report spectre mitigation via syslog
          - [s390x] add sysfs attributes for spectre
          - [s390x] add assembler macros for CPU alternatives
          - [s390x] correct nospec auto detection init order
          - [s390x] correct module section names for expoline code revert
          - [s390x] move expoline assembler macros to a header
          - [s390x] crc32-vx: use expoline for indirect branches
          - [s390x] lib: use expoline for indirect branches
          - [s390x] ftrace: use expoline for indirect branches
          - [s390x] kernel: use expoline for indirect branches
          - [s390x] move spectre sysfs attribute code
          - [s390x] extend expoline to BC instructions
          - [s390x] use expoline thunks in the BPF JIT
          - scsi: sg: allocate with __GFP_ZERO in sg_build_indirect()
          - [s390x] scsi: zfcp: fix infinite iteration on ERP ready list
          - Bluetooth: btusb: Add USB ID 7392:a611 for Edimax EW-7611ULB
          - ALSA: usb-audio: Add native DSD support for Luxman DA-06
          - [arm64,armhf] usb: dwc3: Add SoftReset PHY synchonization delay
          - [arm64,armhf] usb: dwc3: Update DWC_usb31 GTXFIFOSIZ reg fields
          - [arm64,armhf] usb: dwc3: Makefile: fix link error on randconfig
          - xhci: zero usb device slot_id member when disabling and freeing a xhci slot
          - [arm64,armhf] usb: dwc2: Fix interval type issue
          - [arm64,armhf] usb: dwc2: hcd: Fix host channel halt flow
          - [arm64,armhf] usb: dwc2: host: Fix transaction errors in host mode
          - usbip: Correct maximum value of CONFIG_USBIP_VHCI_HC_PORTS
          - media: em28xx: USB bulk packet size fix
          - Bluetooth: btusb: Add device ID for RTL8822BE
          - Bluetooth: btusb: Add support for Intel Bluetooth device 22560
            [8087:0026]
          - xhci: Show what USB release number the xHC supports from protocol
            capablity
          - loop: don't call into filesystem while holding lo_ctl_mutex
          - loop: fix LOOP_GET_STATUS lock imbalance
          - cfg80211: limit wiphy names to 128 bytes
          - hfsplus: stop workqueue when fill_super() failed
          - [x86] kexec: Avoid double free_page() upon do_kexec_load() failure
          - staging: bcm2835-audio: Release resources on module_exit()
          - staging: lustre: fix bug in osc_enter_cache_try
          - [x86] staging: rtl8192u: return -ENOMEM on failed allocation of
            priv->oldaddr
          - staging: lustre: lmv: correctly iput lmo_root
          - [arm64] crypto: inside-secure - move the digest to the request context
          - [arm64] crypto: inside-secure - wait for the request to complete if in
            the backlog
          - [x86] crypto: ccp - don't disable interrupts while setting up debugfs
          - [arm64] crypto: inside-secure - do not process request if no command was
            issued
          - [arm64] crypto: inside-secure - fix the cache_len computation
          - [arm64] crypto: inside-secure - fix the extra cache computation
          - [arm64] crypto: inside-secure - do not overwrite the threshold value
          - [armhf] crypto: sunxi-ss - Add MODULE_ALIAS to sun4i-ss
          - [arm64] crypto: inside-secure - fix the invalidation step during
            cra_exit
          - scsi: aacraid: Insure command thread is not recursively stopped
          - scsi: devinfo: add HP DISK-SUBSYSTEM device, for HP XP arrays
          - scsi: lpfc: Fix NVME Initiator FirstBurst
          - scsi: core: Make SCSI Status CONDITION MET equivalent to GOOD
          - scsi: mvsas: fix wrong endianness of sgpio api
          - scsi: lpfc: Fix issue_lip if link is disabled
          - scsi: lpfc: Fix nonrecovery of NVME controller after cable swap.
          - scsi: lpfc: Fix soft lockup in lpfc worker thread during LIP testing
          - scsi: lpfc: Fix IO failure during hba reset testing with nvme io.
          - scsi: lpfc: Fix frequency of Release WQE CQEs
          - [armhf] clk: rockchip: Fix wrong parent for SDMMC phase clock for rk3228
          - clk: Don't show the incorrect clock phase
          - clk: hisilicon: mark wdt_mux_p[] as const
          - [arm64,armhf] clk: tegra: Fix pll_u rate configuration
          - [armhf] clk: rockchip: Prevent calculating mmc phase if clock rate is
            zero
          - [armhf] clk: samsung: s3c2410: Fix PLL rates
          - [armhf] clk: samsung: exynos7: Fix PLL rates
          - [armhf] clk: samsung: exynos5260: Fix PLL rates
          - [armhf] clk: samsung: exynos5433: Fix PLL rates
          - [armhf] clk: samsung: exynos5250: Fix PLL rates
          - [armhf] clk: samsung: exynos3250: Fix PLL rates
          - clk: meson: axg: fix the od shift of the sys_pll
          - clk: meson: axg: add the fractional part of the fixed_pll
          - media: cx23885: Override 888 ImpactVCBe crystal frequency
          - media: cx23885: Set subdev host data to clk_freq pointer
          - media: em28xx: Add Hauppauge SoloHD/DualHD bulk models
          - media: v4l: vsp1: Fix display stalls when requesting too many inputs
          - media: i2c: adv748x: fix HDMI field heights
          - media: vb2: Fix videobuf2 to map correct area
          - media: vivid: fix incorrect capabilities for radio
          - media: cx25821: prevent out-of-bounds read on array card
          - [arm64] serial: mvebu-uart: fix tx lost characters
          - [sh4] serial: sh-sci: Fix out-of-bounds access through DT alias
          - [armhf] serial: samsung: Fix out-of-bounds access through serial port
            index
          - [armhf] serial: imx: Fix out-of-bounds access through serial port index
          - [armhf] serial: arc_uart: Fix out-of-bounds access through DT alias
          - [arm*] serial: 8250: Don't service RX FIFO if interrupts are disabled
          - [armhf] rtc: snvs: Fix usage of snvs_rtc_enable
          - rtc: hctosys: Ensure system time doesn't overflow time_t
          - [arm64,armhf] rtc: rk808: fix possible race condition
          - [armel/marvell] rtc: m41t80: fix race conditions
          - [m68k] rtc: rp5c01: fix possible race condition
      
        [ Romain Perier ]
        * [armhf] DRM: Enable DW_HDMI_AHB_AUDIO and DW_HDMI_CEC (Closes: #897204)
        * [armhf] MFD: Enable MFD_TPS65217 (Closes: #897590)
      
        [ Ben Hutchings ]
        * kbuild: use -fmacro-prefix-map to make __FILE__ a relative path
        * Bump ABI to 2
        * [rt] Update to 4.16.8-rt3
        * [x86] KVM: VMX: Expose SSBD properly to guests.
      
        [ Salvatore Bonaccorso ]
        * [rt] Update to 4.16.7-rt1 and reenable
        * [rt] certs: Reference certificate for test key used in Debian signing
          service
      3c5af882
    • Lorenzo "Palinuro" Faletra's avatar
      f34edc87
  2. 03 May, 2018 2 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.16.5-1parrot5 · 44a45543
      Lorenzo "Palinuro" Faletra authored
      linux (4.16.5-1parrot5) testing; urgency=medium
      
        * Import new Debian release.
        * Import Parrot patches.
      
      linux (4.16.5-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.1
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.2
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.3
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.4
          - ext4: limit xattr size to INT_MAX (CVE-2018-1095)
          - random: fix crng_ready() test (CVE-2018-1108)
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.5
      
        [ Ben Hutchings ]
        * aufs: gen-patch: Fix Subject generation to skip SPDX-License-Identifier
        * aufs: Update support patchset to aufs4.16-20180409 (no functional change)
        * wireless: Add Debian wireless-regdb certificates (see #892229)
        * Add support for compilers installed outside the default PATH
        * linux-headers: Change linux-kbuild dependency to be versioned
        * Set ABI to 1
        * [x86,arm64] Disable code signing for upload to unstable
        * debian/lib/python/debian_linux/debian.py: Fix binNMU changelog parsing
        * debian/lib/python/debian_linux/debian.py: Fix binNMU revision parsing
        * xfs: enhance dinode verifier (CVE-2018-10322)
        * xfs: set format back to extents if xfs_bmap_extents_to_btree
          (CVE-2018-10323)
        * udeb: Add algif_skcipher to crypto-modules (Closes: #896968)
        * ext4: fix bitmap position validation (fixes regression in 4.15.17-1)
        * debian/lib/python/debian_linux/gencontrol.py: Allow uploads to *-security
          with a simple revision
      
        [ Vagrant Cascadian ]
        * [arm64] Add patches to support SATA on Tegra210/Jetson-TX1.
      
        [ James Clarke ]
        * [ia64] Drop nic-modules Depends overrides (fixes FTBFS)
      
        [ Vagrant Cascadian ]
        * [arm64] Enable features to support Pinebook and other A64 systems:
          CONFIG_USB_MUSB_HDRC, CONFIG_USB_MUSB_SUNXI, CONFIG_SUN8I_DE2_CCU,
          CONFIG_DMA_SUN6I
        * [arm64] Add patch enabling simplefb LCD on A64.
      
        [ Roger Shimizu ]
        * [armel] Add dependency of udeb modules (fixes FTBFS):
          - Add lzo_decompress to lzo-modules.
          - Add cmdlinepart to mtd-modules.
        * [armel] Add dependency of udeb packages (fixes FTBFS):
          - Add package dependency of mtd-modules to jffs2-modules.
          - Add package dependency of lzo-modules to squashfs-modules.
      
        [ Helge Deller ]
        * [hppa] Switch to self-decompressing kernel to save disk space in /boot
      
        [ Uwe Kleine-König ]
        * [amd64] enable AMD 10GbE Ethernet driver (CONFIG_AMD_XGBE=m)
      
      linux (4.16-1~exp1) experimental; urgency=medium
      
        * New upstream release: https://kernelnewbies.org/Linux_4.16
      
        [ Jeremy Stanley ]
        * [x86] Power management support for GPD Pocket UMPC systems
          (Closes: #895164)
          - Enable CONFIG_PWM_LPSS_PLATFORM as a module (provides support for the
            low-level power subsystem handling backlight control) along with its
            dependency CONFIG_PWM=y
          - Enable CONFIG_INTEL_INT0002_VGPIO as a module (provides support for the
            Bay Trail/Cherry Trail virtual GPIO controller to handle power events)
          - Enable CONFIG_REGULATOR (needed to build the already enabled
            CONFIG_INTEL_CHT_INT33FE module which provides support for the ACPI
            interface)
          - Enable CONFIG_TYPEC_FUSB302 as a module (provides support for the USB
            type-C interface) along with its dependencies CONFIG_TYPEC=m and
            CONFIG_TYPEC_TCPM=m
          - Enable CONFIG_BATTERY_MAX17042 as a module (provides support for the
            battery level monitor)
          - Enable CONFIG_CHARGER_BQ24190 as a module (provides support for the
            battery charger) along with its dependencies CONFIG_EXTCON=m,
            CONFIG_EXTCON_INTEL_CHT_WC=m, CONFIG_I2C_CHT_WC=m and
            CONFIG_INTEL_SOC_PMIC_CHTWC=y
      
        [ Roger Shimizu ]
        * [armel] Bring back armel build by reverting two commits that disabled
          armel previously:
          - [2ed70eb] "Add empty featuresets for armel to help abiupdate script"
          - [5f62872] "(Temporarily) disable armel kernel image build"
        * [armel] Reduce armel image size by:
          - Set CONFIG_CRYPTO_MANAGER_DISABLE_TESTS=y
          - Change MTD, MTD_CMDLINE_PARTS, RTC_DRV_MV, and SPI_ORION from
            built-in to module.
          - Disable VT, ZSWAP, RD_BZIP2, and RD_LZMA.
          Thanks to Leigh Brown <leigh@solinno.co.uk> for his idea to disable VT.
      
        [ Riku Voipio ]
        * [armhf] Add dove cubox support, thanks to Josua Mayer (Closes: #876774)
      
        [ Sjoerd Simons ]
        * Enable DRM_DP_AUX_CHARDEV (Closes: #890235)
      
        [ Ben Hutchings ]
        * Set ABI name to trunk
        * debian/config: Rename [build]signed-modules setting to signed-code
        * debian/lib/python/debian_linux/gencontrol.py: Allow overriding output
          filenames
        * debian/lib/python/debian_linux/debian.py: Close changelog after parsing
        * debian/lib/python/debian_linux/debian.py: Allow parsing any file as
          changelog
        * debian/rules.d/tools/lib/lockdep/Makefile: Fix repeated 'make install'
        * Add template source package to support code signing
        * Use a dummy build profile for udebs that we test-build before signing
        * debian/lib/python/debian_linux/debian.py: Parse bottom lines of changelog
          entries
        * debian/bin/gencontrol_signed.py: Copy maintainer and date into template's
          changelog
        * [x86,arm64] Enable code signing again
        * certs: Add certificate for test key used in Debian signing service
        * integrity: Disable IMA until it works properly with lockdown
      
      linux (4.16~rc6-1~exp1) experimental; urgency=medium
      
        * New upstream release candidate
      
        [ Jeremy Stanley ]
        * [x86] Enable CONFIG_GPD_POCKET_FAN as a module (provides fan control on
          GPD Pocket UMPC systems) (Closes: #893451)
      
        [ Uwe Kleine-König ]
        * [arm64] enable various drivers as module for teres-i OSHW laptop
          (Closes: #892786)
      
        [ Helge Deller ]
        * [hppa] Re-enable 32-bit SMP kernel build. Qemu now supports it.
      
        [ Ben Hutchings ]
        * udeb: Add dependency from nic-modules to zlib-modules (fixes FTBFS on
          some architectures)
        * i40e: Add kconfig dependency to ensure cmpxchg64() is available
          (fixes FTBFS on some architectures)
        * [ia64] Re-add configuration for kernel and udebs:
          - Revert "Remove all support for ia64" (Closes: #886693)
          - Disable IRDA, consistent with other architectures
          - linux-image: Don't suggest fdutils
          - Compile with gcc-7
          - linux-image: Improve flavour descriptions
          - udeb: Combine core-modules/kernel-image and scsi{,-common,-extra}-modules
          - udeb: Add i2c-modules
      
        [ Vagrant Cascadian ]
        * [armhf] Enable ARCH_MESON and related drivers.
        * [armhf] Add device-tree patches from linux-next to support USB and
          Ethernet on meson8b.
      
      linux (4.16~rc5-1~exp1) experimental; urgency=medium
      
        * New upstream release candidate
      
        [ Uwe Kleine-König ]
        * netfilter: enable NFT_FIB_NETDEV as module
      
        [ Thadeu Lima de Souza Cascardo ]
        * [powerpc,ppc64el,ppc64] Enable CRASH_DUMP (Closes: #883432)
      
        [ Bastian Blank ]
        * Drop note about Xen from long descriptions.
      
        [ Vagrant Cascadian ]
        * [arm64] Enable ROCKCHIP_IODOMAIN as a module, to enable PCIe reset.
        * [arm64] Enable REGULATOR_FAN53555 as a module, enabling cpufreq to
          work on rk3399 A72 cores.
        * [arm64] Apply patch from linux-next to fix eMMC corruption on
          Odroid-C2 (Closes: #879072).
      
        [ Ben Hutchings ]
        * debian/control: Update profile qualification for build-deps on bison
          and flex, which are now used to build kconfig
        * debian/rules.d/tools/kconfig/Makefile: Use bison and flex to build kconfig
      
      linux (4.15.17-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.12
          - [i386] vm86: Fix POPF emulation
          - [i386] speculation, objtool: Annotate indirect calls/jumps for objtool on
            32-bit kernels
          - [x86] speculation: Remove Skylake C2 from Speculation Control microcode
            blacklist
          - [x86] KVM: Fix device passthrough when SME is active
          - [x86] mm: Fix vmalloc_fault to use pXd_large
          - [hppa] Handle case where flush_cache_range is called with no context
          - ALSA: pcm: Fix UAF in snd_pcm_oss_get_formats()
          - ALSA: hda - Revert power_save option default value
          - ALSA: seq: Fix possible UAF in snd_seq_check_queue()
          - ALSA: seq: Clear client entry before deleting else at closing
          - drm/nouveau/bl: Fix oops on driver unbind
          - drm/nouveau/mmu: ALIGN_DOWN correct variable (Closes: #895750)
          - drm/amdgpu: fix prime teardown order
          - drm/radeon: fix prime teardown order
          - drm/amdgpu/dce: Don't turn off DP sink when disconnected
          - fs: Teach path_connected to handle nfs filesystems with multiple roots.
          - [armhf,arm64] KVM: Reduce verbosity of KVM init log
          - [armhf,arm64] KVM: Reset mapped IRQs on VM reset
          - [armhf,arm64] kvm: vgic-v3: Tighten synchronization for guests using v2
            on v3
          - [armhf.arm64] KVM: vgic: Don't populate multiple LRs with the same vintid
          - lock_parent() needs to recheck if dentry got __dentry_kill'ed under it
          - fs/aio: Add explicit RCU grace period when freeing kioctx
          - fs/aio: Use RCU accessors for kioctx_table->table[]
          - RDMAVT: Fix synchronization around percpu_ref
          - [armhf.arm64] irqchip/gic-v3-its: Ensure nr_ites >= nr_lpis
          - nvme: fix subsystem multiple controllers support check
          - xfs: preserve i_rdev when recycling a reclaimable inode
          - btrfs: Fix NULL pointer exception in find_bio_stripe
          - btrfs: add missing initialization in btrfs_check_shared
          - btrfs: alloc_chunk: fix DUP stripe size handling
          - btrfs: Fix use-after-free when cleaning up fs_devs with a single stale
            device
          - btrfs: remove spurious WARN_ON(ref->count < 0) in find_parent_nodes
          - btrfs: Fix memory barriers usage with device stats counters
          - scsi: qla2xxx: Fix smatch warning in qla25xx_delete_{rsp|req}_que
          - scsi: qla2xxx: Fix NULL pointer access for fcport structure
          - scsi: qla2xxx: Fix logo flag for qlt_free_session_done()
          - scsi: qla2xxx: Fix crashes in qla2x00_probe_one on probe failure
          - usb: dwc2: fix STM32F7 USB OTG HS compatible
          - USB: gadget: udc: Add missing platform_device_put() on error in
            bdc_pci_probe()
          - usb: dwc3: Fix GDBGFIFOSPACE_TYPE values
          - usb: dwc3: core: Power-off core/PHYs on system_suspend in host mode
          - usb: dwc3: of-simple: fix oops by unbalanced clk disable call
          - usb: gadget: udc: renesas_usb3: fix oops in renesas_usb3_remove()
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.13
          - scsi: megaraid_sas: Do not use 32-bit atomic request descriptor for
            Ventura controllers
          - drm/amdgpu: use polling mem to set SDMA3 wptr for VF
          - Bluetooth: hci_qca: Avoid setup failure on missing rampatch
          - [arm64] Bluetooth: btqcomsmd: Fix skb double free corruption
          - [x86] cpufreq: longhaul: Revert transition_delay_us to 200 ms
          - [arm64] drm/msm: fix leak in failed get_pages
          - IB/ipoib: Warn when one port fails to initialize
          - RDMA/iwpm: Fix uninitialized error code in iwpm_send_mapinfo()
          - [x86] hv_netvsc: Fix the receive buffer size limit
          - [x86] hv_netvsc: Fix the TX/RX buffer default sizes
          - tcp: allow TLP in ECN CWR
          - libbpf: prefer global symbols as bpf program name source
          - rtlwifi: rtl_pci: Fix the bug when inactiveps is enabled.
          - rtlwifi: always initialize variables given to RT_TRACE()
          - media: bt8xx: Fix err 'bt878_probe()'
          - ath10k: handling qos at STA side based on AP WMM enable/disable
          - media: dvb-frontends: Add delay to Si2168 restart
          - qmi_wwan: set FLAG_SEND_ZLP to avoid network initiated disconnect
          - serial: 8250_dw: Disable clock on error
          - [armhf,arm64] cros_ec: fix nul-termination for firmware build info
          - watchdog: Fix potential kref imbalance when opening watchdog
          - watchdog: Fix kref imbalance seen if handle_boot_enabled=0
          - platform/chrome: Use proper protocol transfer function
          - [armhf] drm/tilcdc: ensure nonatomic iowrite64 is not used
          - mmc: avoid removing non-removable hosts during suspend
          - mmc: block: fix logical error to avoid memory leak
          - /dev/mem: Add bounce buffer for copy-out
          - [arm64] net: phy: meson-gxl: check phy_write return value
          - IB/ipoib: Avoid memory leak if the SA returns a different DGID
          - RDMA/cma: Use correct size when writing netlink stats
          - IB/umem: Fix use of npages/nmap fields
          - iser-target: avoid reinitializing rdma contexts for isert commands
          - bpf/cgroup: fix a verification error for a CGROUP_DEVICE type prog
          - PCI/ASPM: Calculate LTR_L1.2_THRESHOLD from device characteristics
          - vgacon: Set VGA struct resource types
          - [armhf] omapdrm: panel: fix compatible vendor string for td028ttec1
          - [arm64] mmc: sdhci-xenon: wait 5ms after set 1.8V signal enable
          - [armhf] drm/omap: DMM: Check for DMM readiness after successful
            transaction commit
          - pty: cancel pty slave port buf's work in tty_release
          - clk: check ops pointer on clock register
          - clk: use round rate to bail out early in set_rate
          - pinctrl: Really force states during suspend/resume
          - [armhf,arm64] pinctrl: rockchip: enable clock when reading pin direction
            register
          - [x86] iommu/vt-d: clean up pr_irq if request_threaded_irq fails
          - ip6_vti: adjust vti mtu according to mtu of lower device
          - ip_gre: fix error path when erspan_rcv failed
          - ip_gre: fix potential memory leak in erspan_rcv
          - [arm64] soc: qcom: smsm: fix child-node lookup
          - scsi: lpfc: Fix SCSI LUN discovery when SCSI and NVME enabled
          - scsi: lpfc: Fix issues connecting with nvme initiator
          - RDMA/ocrdma: Fix permissions for OCRDMA_RESET_STATS
          - nfsd4: permit layoutget of executable-only files
          - clk: Don't touch hardware when reparenting during registration
          - hwrng: core - Clean up RNG list when last hwrng is unregistered
          - [armhf] dmaengine: ti-dma-crossbar: Fix event mapping for
            TPCC_EVT_MUX_60_63
          - IB/mlx5: Fix integer overflows in mlx5_ib_create_srq
          - IB/mlx5: Fix out-of-bounds read in create_raw_packet_qp_rq
          - [x86] RDMA/vmw_pvrdma: Fix usage of user response structures in ABI file
          - serial: 8250_pci: Don't fail on multiport card class
          - RDMA/core: Do not use invalid destination in determining port reuse
          - clk: migrate the count of orphaned clocks at init
          - RDMA/ucma: Fix access to non-initialized CM_ID object
          - RDMA/ucma: Don't allow join attempts for unsupported AF family
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.14
          - [armhf] iio: st_pressure: st_accel: pass correct platform data to init
          - [arm64] iio: adc: meson-saradc: unlock on error in meson_sar_adc_lock()
          - ALSA: usb-audio: Fix parsing descriptor of UAC2 processing unit
          - ALSA: aloop: Sync stale timer before release
          - ALSA: aloop: Fix access to not-yet-ready substream via cable
          - ALSA: hda - Force polling mode on CFL for fixing codec communication
          - ALSA: hda/realtek - Fix speaker no sound after system resume
          - ALSA: hda/realtek - Fix Dell headset Mic can't record
          - ALSA: hda/realtek - Always immediately update mute LED with pin VREF
          - mmc: core: Fix tracepoint print of blk_addr and blksz
          - mmc: core: Disable HPI for certain Micron (Numonyx) eMMC cards
          - mmc: block: fix updating ext_csd caches on ioctl call
          - [armhf] mmc: dw_mmc: Fix the DTO/CTO timeout overflow calculation for
            32-bit systems
          - [armhf] mmc: dw_mmc: exynos: fix the suspend/resume issue for exynos5433
          - [armhf,arm64] mmc: dw_mmc: fix falling from idmac to PIO mode when
            dw_mci_reset occurs
          - PCI: Add function 1 DMA alias quirk for Highpoint RocketRAID 644L
          - lockdep: fix fs_reclaim warning
          - [armhf,arm64] clk: bcm2835: Fix ana->maskX definitions
          - [armhf,arm64] clk: bcm2835: Protect sections updating shared registers
          - [armhf,arm64] clk: sunxi-ng: a31: Fix CLK_OUT_* clock ops
          - RDMA/mlx5: Fix crash while accessing garbage pointer and freed memory
          - [x86] Drivers: hv: vmbus: Fix ring buffer signaling
          - [armhf] pinctrl: samsung: Validate alias coming from DT
          - Bluetooth: btusb: Remove Yoga 920 from the btusb_needs_reset_resume_table
          - Bluetooth: btusb: Add Dell OptiPlex 3060 to btusb_needs_reset_resume_table
          - Bluetooth: btusb: Fix quirk for Atheros 1525/QCA6174
          - libata: fix length validation of ATAPI-relayed SCSI commands
          - libata: remove WARN() for DMA or PIO command without data
          - libata: don't try to pass through NCQ commands to non-NCQ devices
          - libata: Apply NOLPM quirk to Crucial MX100 512GB SSDs
          - libata: disable LPM for Crucial BX100 SSD 500GB drive
          - libata: Enable queued TRIM for Samsung SSD 860
          - libata: Apply NOLPM quirk to Crucial M500 480 and 960GB SSDs
          - libata: Make Crucial BX100 500GB LPM quirk apply to all firmware versions
          - libata: Modify quirks for MX100 to limit NCQ_TRIM quirk to MU01 version
          - sched, cgroup: Don't reject lower cpu.max on ancestors
          - cgroup: fix rule checking for threaded mode switching
          - nfsd: remove blocked locks on client teardown
          - hugetlbfs: check for pgoff value overflow (CVE-2018-7740)
          - [x86] mm: implement free pmd/pte page interfaces
          - mm/khugepaged.c: convert VM_BUG_ON() to collapse fail
          - mm/thp: do not wait for lock_page() in deferred_split_scan()
          - mm/shmem: do not wait for lock_page() in shmem_unused_huge_shrink()
          - Revert "mm: page_alloc: skip over regions of invalid pfns where possible"
          - [x86] drm/vmwgfx: Fix black screen and device errors when running without
            fbdev
          - [x86] drm/vmwgfx: Fix a destoy-while-held mutex problem.
          - drm/radeon: Don't turn off DP sink when disconnected
          - drm/amd/display: We shouldn't set format_default on plane as atomic driver
          - drm/amd/display: Add one to EDID's audio channel count when passing to DC
          - drm: Reject getfb for multi-plane framebuffers
          - drm: udl: Properly check framebuffer mmap offsets
          - mm/vmscan: wake up flushers for legacy cgroups too
          - module: propagate error in modules_open()
          - acpi, numa: fix pxm to online numa node associations
          - ACPI / watchdog: Fix off-by-one error at resource assignment
          - libnvdimm, {btt, blk}: do integrity setup before add_disk()
          - brcmfmac: fix P2P_DEVICE ethernet address generation
          - rtlwifi: rtl8723be: Fix loss of signal
          - tracing: probeevent: Fix to support minus offset from symbol
          - mtdchar: fix usage of mtd_ooblayout_ecc()
          - staging: ncpfs: memory corruption in ncp_read_kernel() (CVE-2018-8822)
          - [i386] can: cc770: Fix stalls on rt-linux, remove redundant IRQ ack
          - [i386] can: cc770: Fix queue stall & dropped RTR reply
          - [i386] can: cc770: Fix use after free in cc770_tx_interrupt()
          - tty: vt: fix up tabstops properly
          - [amd64] entry: Don't use IST entry for #BP stack
          - [amd64] vsyscall: Use proper accessor to update P4D entry
          - [x86] efi: Free efi_pgd with free_pages()
          - posix-timers: Protect posix clock array access against speculation
          - [x86] kvm: fix icebp instruction handling
          - [amd64] build: Force the linker to use 2MB page size
          - [amd64] boot: Verify alignment of the LOAD segment
          - [x86] hwmon: (k10temp) Only apply temperature offset if result is positive
          - [x86] hwmon: (k10temp) Add temperature offset for Ryzen 1900X
          - [x86] perf/intel/uncore: Fix Skylake UPI event format
          - perf stat: Fix CVS output format for non-supported counters
          - perf/core: Fix ctx_event_type in ctx_resched()
          - trace/bpf: remove helper bpf_perf_prog_read_value from tracepoint type
            programs
          - [x86] perf/intel: Don't accidentally clear high bits in bdw_limit_period()
          - [x86] perf/intel/uncore: Fix multi-domain PCI CHA enumeration bug on
            Skylake servers
          - iio: ABI: Fix name of timestamp sysfs file
          - bpf: skip unnecessary capability check
          - [amd64] bpf: increase number of passes
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.15
          - net: dsa: Fix dsa_is_user_port() test inversion
          - openvswitch: meter: fix the incorrect calculation of max delta_t
          - qed: Fix MPA unalign flow in case header is split across two packets.
          - tcp: purge write queue upon aborting the connection
          - qed: Fix non TCP packets should be dropped on iWARP ll2 connection
          - net: phy: relax error checking when creating sysfs link netdev->phydev
          - devlink: Remove redundant free on error path
          - macvlan: filter out unsupported feature flags
          - net: ipv6: keep sk status consistent after datagram connect failure
          - ipv6: old_dport should be a __be16 in __ip6_datagram_connect()
          - ipv6: sr: fix NULL pointer dereference when setting encap source address
          - ipv6: sr: fix scheduling in RCU when creating seg6 lwtunnel state
          - net: phy: Tell caller result of phy_change()
          - ipv6: Reflect MTU changes on PMTU of exceptions for MTU-less routes
          - net sched actions: return explicit error when tunnel_key mode is not
            specified
          - ppp: avoid loop in xmit recursion detection code
          - rhashtable: Fix rhlist duplicates insertion
          - sch_netem: fix skb leak in netem_enqueue()
          - ieee802154: 6lowpan: fix possible NULL deref in lowpan_device_event()
          - net: use skb_to_full_sk() in skb_update_prio()
          - net: Fix hlist corruptions in inet_evict_bucket()
          - [s390x] qeth: free netdevice when removing a card
          - [s390x] qeth: when thread completes, wake up all waiters
          - [s390x] qeth: lock read device while queueing next buffer
          - [s390x] qeth: on channel error, reject further cmd requests
          - dccp: check sk for closed state in dccp_sendmsg()
          - ipv6: fix access to non-linear packet in ndisc_fill_redirect_hdr_option()
          - l2tp: do not accept arbitrary sockets
          - [armhf] net: ethernet: ti: cpsw: add check for in-band mode setting with
            RGMII PHY interface
          - [armhf] net: fec: Fix unbalanced PM runtime calls
          - [s390x] net/iucv: Free memory obtained by kzalloc
          - netlink: avoid a double skb free in genlmsg_mcast()
          - net: Only honor ifindex in IP_PKTINFO if non-0
          - net: systemport: Rewrite __bcm_sysport_tx_reclaim()
          - qede: Fix qedr link update
          - skbuff: Fix not waking applications when errors are enqueued
          - team: Fix double free in error path
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.16
          - [armhf] OMAP: Fix SRAM W+X mapping
          - [armhf] 8746/1: vfp: Go back to clearing vfp_current_hw_state[]
          - [armhf] dts: sun6i: a31s: bpi-m2: improve pmic properties
          - [armhf] dts: sun6i: a31s: bpi-m2: add missing regulators
          - mtd: jedec_probe: Fix crash in jedec_read_mfr()
          - ALSA: usb-audio: Add native DSD support for TEAC UD-301
          - ALSA: pcm: Use dma_bytes as size parameter in dma_mmap_coherent()
          - ALSA: pcm: potential uninitialized return values
          - perf/hwbp: Simplify the perf-hwbp code, fix documentation
          - ceph: only dirty ITER_IOVEC pages for direct read
          - ipc/shm.c: add split function to shm_vm_ops
          - [powerpc*] mm: Add tracking of the number of coprocessors using a context
          - [powerpc*] mm: Workaround Nest MMU bug with TLB invalidations
          - [powerpc*] 64s: Fix lost pending interrupt due to race causing lost
            update to irq_happened
          - [powerpc*] 64s: Fix i-side SLB miss bad address handler saving
            nonvolatile GPRs
          - partitions/msdos: Unable to mount UFS 44bsd partitions
          - xfrm_user: uncoditionally validate esn replay attribute struct
          - RDMA/ucma: Check AF family prior resolving address
          - RDMA/ucma: Fix use-after-free access in ucma_close
          - RDMA/ucma: Ensure that CM_ID exists prior to access it
          - RDMA/rdma_cm: Fix use after free race with process_one_req
          - RDMA/ucma: Check that device is connected prior to access it
          - RDMA/ucma: Check that device exists prior to accessing it
          - RDMA/ucma: Introduce safer rdma_addr_size() variants
          - ipv6: fix possible deadlock in rt6_age_examine_exception()
          - net: xfrm: use preempt-safe this_cpu_read() in ipcomp_alloc_tfms()
          - xfrm: Refuse to insert 32 bit userspace socket policies on 64 bit systems
          - percpu: add __GFP_NORETRY semantics to the percpu balancing path
          - netfilter: x_tables: make allocation less aggressive
          - netfilter: bridge: ebt_among: add more missing match size checks
          - l2tp: fix races with ipv4-mapped ipv6 addresses
          - netfilter: drop template ct when conntrack is skipped.
          - netfilter: x_tables: add and use xt_check_proc_name
          - [arm64] phy: qcom-ufs: add MODULE_LICENSE tag
          - Bluetooth: Fix missing encryption refresh on Security Request
          - [x86] drm/i915/dp: Write to SET_POWER dpcd to enable MST hub.
          - bitmap: fix memset optimization on big-endian systems
          - [x86] mei: remove dev_err message on an unsupported ioctl
          - /dev/mem: Avoid overwriting "err" in read_mem()
          - media: usbtv: prevent double free in error case (CVE-2017-17975)
          - crypto: lrw - Free rctx->ext with kzfree
          - [arm64] crypto: inside-secure - fix clock management
          - crypto: testmgr - Fix incorrect values in PKCS#1 test vector
          - crypto: ahash - Fix early termination in hash walk
          - [x86] crypto: ccp - return an actual key size from RSA max_size callback
          - [arm*] crypto - Fix random regeneration of S_shipped
          - [x86] crypto: cast5-avx - fix ECB encryption when long sg follows short
            one
          - Btrfs: fix unexpected cow in run_delalloc_nocow
          - [x86] staging: comedi: ni_mio_common: ack ai fifo error interrupts.
          - Revert "base: arch_topology: fix section mismatch build warnings"
          - [x86] Input: ALPS - fix TrackStick detection on Thinkpad L570 and
            Latitude 7370
          - [x86] Input: i8042 - add Lenovo ThinkPad L460 to i8042 reset list
          - [x86] Input: i8042 - enable MUX on Sony VAIO VGN-CS series to fix touchpad
          - vt: change SGR 21 to follow the standards
          - [arm64] net: hns: Fix ethtool private flags (CVE-2017-18222)
          - Fix slab name "biovec-(1<<(21-12))"
          - [armhf] Revert "ARM: dts: am335x-pepper: Fix the audio CODEC's reset pin"
          - [armhf] Revert "ARM: dts: omap3-n900: Fix the audio CODEC's reset pin"
          - Revert "cpufreq: Fix governor module removal race"
          - Revert "ip6_vti: adjust vti mtu according to mtu of lower device"
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.17
          - i40iw: Fix sequence number for the first partial FPDU
          - i40iw: Correct Q1/XF object count equation
          - i40iw: Validate correct IRD/ORD connection parameters
          - [arm64] clk: meson: mpll: use 64-bit maths in params_from_rate
          - ipv6: Reinject IPv6 packets if IPsec policy matches after SNAT
          - thermal: power_allocator: fix one race condition issue for
            thermal_instances list
          - perf probe: Find versioned symbols from map
          - perf probe: Add warning message if there is unexpected event name
          - perf evsel: Fix swap for samples with raw data
          - perf evsel: Enable ignore_missing_thread for pid option
          - l2tp: fix missing print session offset info
          - rds; Reset rs->rs_bound_addr in rds_add_bound() failure path
          - [x86] ACPI / video: Default lcd_only to true on Win8-ready and newer
            machines
          - net/mlx4_en: Change default QoS settings
          - IB/mlx5: Report inner RSS capability
          - VFS: close race between getcwd() and d_move()
          - [armhf,arm64] watchdog: dw_wdt: add stop watchdog operation
          - clk: divider: fix incorrect usage of container_of
          - PM / devfreq: Fix potential NULL pointer dereference in governor_store
          - gpiolib: don't dereference a desc before validation
          - net_sch: red: Fix the new offload indication
          - [arm64] thermal/drivers/hisi: Remove bogus const from function return type
          - RDMA/cma: Mark end of CMA ID messages
          - f2fs: fix lock dependency in between dio_rwsem & i_mmap_sem
          - [armhf] clk: sunxi-ng: a83t: Add M divider to TCON1 clock
          - media: videobuf2-core: don't go out of the buffer range
          - [x86] ASoC: Intel: Skylake: Disable clock gating during firmware and
            library download
          - [x86] ASoC: Intel: cht_bsw_rt5645: Analog Mic support
          - [arm64] drm/msm: Fix NULL deref in adreno_load_gpu
          - IB/ipoib: Fix for notify send CQ failure messages
          - scsi: libiscsi: Allow sd_shutdown on bad transport
          - scsi: mpt3sas: Proper handling of set/clear of "ATA command pending" flag.
          - [armhf,arm64] irqchip/gic-v3: Fix the driver probe() fail due to disabled
            GICC entry
          - ACPI: EC: Fix debugfs_create_*() usage
          - mac80211: Fix setting TX power on monitor interfaces
          - vfb: fix video mode and line_length being set when loaded
          - gpio: label descriptors using the device name
          - [arm64] asid: Do not replace active_asids if already 0
          - [powerpc*] powernv-cpufreq: Add helper to extract pstate from PMSR
          - IB/rdmavt: Allocate CQ memory on the correct node
          - blk-mq: avoid to map CPU into stale hw queue
          - blk-mq: fix race between updating nr_hw_queues and switching io sched
          - nvme-fabrics: protect against module unload during create_ctrl
          - nvme-fabrics: don't check for non-NULL module in nvmf_register_transport
          - [x86] pinctrl: baytrail: Enable glitch filter for GPIOs used as interrupts
          - nvme_fcloop: disassocate local port structs
          - nvme_fcloop: fix abort race condition
          - tpm: return a TPM_RC_COMMAND_CODE response if command is not implemented
          - perf report: Fix a no annotate browser displayed issue
          - [x86] staging: lustre: disable preempt while sampling processor id.
          - [x86] ASoC: Intel: sst: Fix the return value o
            'sst_send_byte_stream_mrfld()'
          - [armhf] power: supply: axp288_charger: Properly stop work on probe-error
            / remove
          - rt2x00: do not pause queue unconditionally on error path
          - wl1251: check return from call to wl1251_acx_arp_ip_filter
          - net/mlx5: Fix race for multiple RoCE enable
          - bcache: ret IOERR when read meets metadata error
          - bcache: stop writeback thread after detaching
          - bcache: segregate flash only volume write streams
          - scsi: libsas: Use dynamic alloced work to avoid sas event lost
          - net: Fix netdev_WARN_ONCE macro
          - scsi: libsas: fix memory leak in sas_smp_get_phy_events() (CVE-2018-7757)
          - scsi: libsas: fix error when getting phy events
          - scsi: libsas: initialize sas_phy status according to response of DISCOVER
          - net/mlx5e: IPoIB, Use correct timestamp in child receive flow
          - blk-mq: fix kernel oops in blk_mq_tag_idle()
          - tty: n_gsm: Allow ADM response in addition to UA for control dlci
          - block, bfq: put async queues for root bfq groups too
          - serdev: Fix serdev_uevent failure on ACPI enumerated serdev-controllers
          - i40evf: don't rely on netif_running() outside rtnl_lock()
          - drm/amd/powerplay: fix memory leakage when reload (v2)
          - cxgb4vf: Fix SGE FL buffer initialization logic for 64K pages
          - PM / domains: Don't skip driver's ->suspend|resume_noirq() callbacks
          - scsi: megaraid_sas: Error handling for invalid ldcount provided by
            firmware in RAID map
          - scsi: megaraid_sas: unload flag should be set after scsi_remove_host is
            called
          - RDMA/cma: Fix rdma_cm path querying for RoCE
          - [x86] gart: Exclude GART aperture from vmcore
          - sdhci: Advertise 2.0v supply on SDIO host controller
          - Input: goodix - disable IRQs while suspended
          - mtd: mtd_oobtest: Handle bitflips during reads
          - crypto: aes-generic - build with -Os on gcc-7+
          - perf tools: Fix copyfile_offset update of output offset
          - tcmu: release blocks for partially setup cmds
          - [x86] thermal: int3400_thermal: fix error handling in
            int3400_thermal_probe()
          - [x86] drm/i915/cnp: Ignore VBT request for know invalid DDC pin.
          - [x86] drm/i915/cnp: Properly handle VBT ddc pin out of bounds.
          - [x86] microcode: Propagate return value from updating functions
          - [x86] CPU: Add a microcode loader callback
          - [x86] CPU: Check CPU feature bits after microcode upgrade
          - [x86] microcode: Get rid of struct apply_microcode_ctx
          - [x86] microcode/intel: Check microcode revision before updating sibling
            threads
          - [x86] microcode/intel: Writeback and invalidate caches before updating
            microcode
          - [x86] microcode: Do not upload microcode if CPUs are offline
          - [x86] microcode/intel: Look into the patch cache first
          - [x86] microcode: Request microcode on the BSP
          - [x86] microcode: Synchronize late microcode loading
          - [x86] microcode: Attempt late loading only when new microcode is present
          - [x86] microcode: Fix CPU synchronization routine
          - arp: fix arp_filter on l3slave devices
          - ipv6: the entire IPv6 header chain must fit the first fragment
          - lan78xx: Crash in lan78xx_writ_reg (Workqueue: events
            lan78xx_deferred_multicast_write)
          - net: dsa: Discard frames from unused ports
          - net: fix possible out-of-bound read in skb_network_protocol()
          - net/ipv6: Fix route leaking between VRFs
          - net/ipv6: Increment OUTxxx counters after netfilter hook
          - netlink: make sure nladdr has correct size in netlink_connect()
          - net/mlx5e: Verify coalescing parameters in range
          - net sched actions: fix dumping which requires several messages to user
            space
          - net/sched: fix NULL dereference in the error path of tcf_bpf_init()
          - pptp: remove a buggy dst release in pptp_connect()
          - r8169: fix setting driver_data after register_netdev
          - sctp: do not leak kernel memory to user space
          - sctp: sctp_sockaddr_af must check minimal addr length for AF_INET6
          - sky2: Increase D3 delay to sky2 stops working after suspend
          - vhost: correctly remove wait queue during poll failure
          - vlan: also check phy_driver ts_info for vlan's real device
          - vrf: Fix use after free and double free in vrf_finish_output
          - bonding: fix the err path for dev hwaddr sync in bond_enslave
          - bonding: move dev_mc_sync after master_upper_dev_link in bond_enslave
          - bonding: process the err returned by dev_set_allmulti properly in
            bond_enslave
          - net: fool proof dev_valid_name()
          - ip_tunnel: better validate user provided tunnel names
          - ipv6: sit: better validate user provided tunnel names
          - ip6_gre: better validate user provided tunnel names
          - ip6_tunnel: better validate user provided tunnel names
          - vti6: better validate user provided tunnel names
          - net/mlx5e: Set EQE based as default TX interrupt moderation mode
          - net_sched: fix a missing idr_remove() in u32_delete_key()
          - net/sched: fix NULL dereference in the error path of tcf_vlan_init()
          - net/mlx5e: Avoid using the ipv6 stub in the TC offload neigh update path
          - net/mlx5e: Fix memory usage issues in offloading TC flows
          - net/sched: fix NULL dereference in the error path of tcf_sample_init()
          - nfp: use full 40 bits of the NSP buffer address
          - ipv6: sr: fix seg6 encap performances with TSO enabled
          - net/mlx5e: Don't override vport admin link state in switchdev mode
          - net/mlx5e: Sync netdev vxlan ports at open
          - net/sched: fix NULL dereference in the error path of tunnel_key_init()
          - net/sched: fix NULL dereference on the error path of tcf_skbmod_init()
          - strparser: Fix sign of err codes
          - net/mlx4_en: Fix mixed PFC and Global pause user control requests
          - net/mlx5e: Fix traffic being dropped on VF representor
          - vhost: validate log when IOTLB is enabled
          - route: check sysctl_fib_multipath_use_neigh earlier than hash
          - team: move dev_mc_sync after master_upper_dev_link in team_port_add
          - vhost_net: add missing lock nesting notation
          - net/mlx4_core: Fix memory leak while delete slave's resources
      
        [ Roger Shimizu ]
        * [armel] Bring back armel build by reverting two commits that disabled
          armel previously:
          - [2ed70eb] "Add empty featuresets for armel to help abiupdate script"
          - [5f62872] "(Temporarily) disable armel kernel image build"
        * [armel] Reduce armel image size by:
          - Set CONFIG_CRYPTO_MANAGER_DISABLE_TESTS=y
          - Change MTD, MTD_CMDLINE_PARTS, RTC_DRV_MV, and SPI_ORION from
            built-in to module.
          - Disable VT, ZSWAP, RD_BZIP2, and RD_LZMA.
          Thanks to Leigh Brown <leigh@solinno.co.uk> for his idea to disable VT.
        * [armel] Add dependency of udeb modules (fixes FTBFS):
          - Add lzo_decompress to lzo-modules.
          - Add cmdlinepart to mtd-modules.
        * [armel] Add dependency of udeb packages (fixes FTBFS):
          - Add package dependency of mtd-modules to jffs2-modules.
          - Add package dependency of lzo-modules to squashfs-modules.
      
        [ Ben Hutchings ]
        * wireless: Disable regulatory.db direct loading (see #892229)
        * Bump ABI to 3
        * scsi: libsas: direct call probe and destruct (CVE-2017-18232)
        * ext4: fail ext4_iget for root directory if unallocated (CVE-2018-1092)
        * ext4: add validity checks for bitmap block numbers (CVE-2018-1093)
        * ext4: always initialize the crc32c checksum driver (CVE-2018-1094)
        * scsi: libsas: defer ata device eh commands to libata (CVE-2018-10021)
        * [armel/marvell] linux-image: Replace supported model list with wiki link
        * [armhf] udeb: Add i2c-exynos5 to i2c-modules (Closes: #895976)
        * [arm*] iio: Enable DHT11 as module (Closes: #873176)
        * udeb: Move arc4 and ecb from nic-wireless-modules to crypto-modules
          (Closes: #895362)
        * SCSI: Enable SCSI_SYM53C8XX_2 as module on all architectures
          (Closes: #895532)
        * [x86] Enable MFD_AXP20X_I2C, AXP288_FUEL_GAUGE as modules (Closes: #895129)
        * w1: Enable all "slave" device drivers (Closes: #895340)
        * [arm64] net/phy: Enable MDIO_BUS_MUX_MMIOREG as module (Closes: #894336)
        * [x86] net: Enable THUNDERBOLT_NET as module (Closes: #894310)
        * [x86] platform: Enable DELL_SMBIOS_SMM, DELL_SMBIOS_WMI as modules
          (closes: #893976)
        * ath9k_htc: Fix regression in 4.15, thanks to Ben Caradoc-Davies
          (Closes: #891060)
          - mac80211: add ieee80211_hw flag for QoS NDP support
          - ath9k_htc: use non-QoS NDP for AP probing
        * squashfs: Enable SQUASHFS_ZSTD (Closes: #883410)
        * block: Enable BLK_SED_OPAL (except on armel)
        * [arm64] Enable ARCH_SYNQUACER and related driver modules (Closes: #891787)
        * [arm64] PCI: Enable PCI_TEGRA (Closes: #888817)
        * [amd64] net: Enable AQTION as module
        * udeb: Rename lzo-modules to compress-modules
        * udeb: Add zstd_decompress to compress-modules and make squashfs-modules
          depend on it
      
        [ Vagrant Cascadian ]
        * [armhf] Add patch to fix loading of imx6q-cpufreq module.
      44a45543
    • Lorenzo "Palinuro" Faletra's avatar
      71f9d50b
  3. 05 Apr, 2018 2 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.15.11-1parrot11 · f7163094
      Lorenzo "Palinuro" Faletra authored
      linux (4.15.11-1parrot11) testing; urgency=medium
      
        * Import new Debian release.
        * Import Parrot Patches.
      
      linux (4.15.11-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.5
          - IB/umad: Fix use of unprotected device pointer
          - IB/qib: Fix comparison error with qperf compare/swap test
          - IB/mlx4: Fix incorrectly releasing steerable UD QPs when have only ETH
            ports
          - IB/core: Fix two kernel warnings triggered by rxe registration
          - IB/core: Fix ib_wc structure size to remain in 64 bytes boundary
          - IB/core: Avoid a potential OOPs for an unused optional parameter
          - RDMA/rxe: Fix a race condition related to the QP error state
          - RDMA/rxe: Fix a race condition in rxe_requester()
          - RDMA/rxe: Fix rxe_qp_cleanup()
          - [powerpc*] cpufreq: powernv: Dont assume distinct pstate values for
            nominal and pmin
          - swiotlb: suppress warning when __GFP_NOWARN is set
          - PM / devfreq: Propagate error from devfreq_add_device()
          - mwifiex: resolve reset vs. remove()/shutdown() deadlocks
          - ocfs2: try a blocking lock before return AOP_TRUNCATED_PAGE
          - trace_uprobe: Display correct offset in uprobe_events
          - [powerpc*] radix: Remove trace_tlbie call from radix__flush_tlb_all
          - [powerpc*] kernel: Block interrupts when updating TIDR
          - [powerpc*] vas: Don't set uses_vas for kernel windows
          - [powerpc*] numa: Invalidate numa_cpu_lookup_table on cpu remove
          - [powerpc*] mm: Flush radix process translations when setting MMU type
          - [powerpc*] xive: Use hw CPU ids when configuring the CPU queues
          - dma-buf: fix reservation_object_wait_timeout_rcu once more v2
          - [s390x] fix handling of -1 in set{,fs}[gu]id16 syscalls
          - [arm64] dts: msm8916: Correct ipc references for smsm
          - [x86] gpu: add CFL to early quirks
          - [x86] kexec: Make kexec (mostly) work in 5-level paging mode
          - [x86] xen: init %gs very early to avoid page faults with stack protector
          - [x86] PM: Make APM idle driver initialize polling state
          - mm, memory_hotplug: fix memmap initialization
          - [amd64] entry: Clear extra registers beyond syscall arguments, to reduce
            speculation attack surface
          - [amd64] entry/compat: Clear registers for compat syscalls, to reduce
            speculation attack surface
          - [armhf] crypto: sun4i_ss_prng - fix return value of sun4i_ss_prng_generate
          - [armhf] crypto: sun4i_ss_prng - convert lock to _bh in
            sun4i_ss_prng_generate
          - [powerpc*] mm/radix: Split linear mapping on hot-unplug
          - [x86] speculation: Update Speculation Control microcode blacklist
          - [x86] speculation: Correct Speculation Control microcode blacklist again
          - [x86] Revert "x86/speculation: Simplify
            indirect_branch_prediction_barrier()"
          - [x86] KVM: Reduce retpoline performance impact in
            slot_handle_level_range(), by always inlining iterator helper methods
          - [X86] nVMX: Properly set spec_ctrl and pred_cmd before merging MSRs
          - [x86] KVM/nVMX: Set the CPU_BASED_USE_MSR_BITMAPS if we have a valid L02
            MSR bitmap
          - [x86] speculation: Clean up various Spectre related details
          - PM / runtime: Update links_count also if !CONFIG_SRCU
          - PM: cpuidle: Fix cpuidle_poll_state_init() prototype
          - [x86] platform: wmi: fix off-by-one write in wmi_dev_probe()
          - [amd64] entry: Clear registers for exceptions/interrupts, to reduce
            speculation attack surface
          - [amd64] entry: Merge SAVE_C_REGS and SAVE_EXTRA_REGS, remove unused
            extensions
          - [amd64] entry: Merge the POP_C_REGS and POP_EXTRA_REGS macros into a
            single POP_REGS macro
          - [amd64] entry: Interleave XOR register clearing with PUSH instructions
          - [amd64] entry: Introduce the PUSH_AND_CLEAN_REGS macro
          - [amd64] entry: Use PUSH_AND_CLEAN_REGS in more cases
          - [amd64] entry: Get rid of the ALLOC_PT_GPREGS_ON_STACK and
            SAVE_AND_CLEAR_REGS macros
          - [amd64] entry: Indent PUSH_AND_CLEAR_REGS and POP_REGS properly
          - [amd64] entry: Fix paranoid_entry() frame pointer warning
          - [amd64] entry: Remove the unused 'icebp' macro
          - gfs2: Fixes to "Implement iomap for block_map"
          - objtool: Fix segfault in ignore_unreachable_insn()
          - [x86] debug, objtool: Annotate WARN()-related UD2 as reachable
          - [x86] debug: Use UD2 for WARN()
          - [x86] speculation: Fix up array_index_nospec_mask() asm constraint
          - nospec: Move array_index_nospec() parameter checking into separate macro
          - [x86] speculation: Add <asm/msr-index.h> dependency
          - [x86] mm: Rename flush_tlb_single() and flush_tlb_one() to
            __flush_tlb_one_[user|kernel]()
          - [x86] cpu: Rename cpu_data.x86_mask to cpu_data.x86_stepping
          - [x86] spectre: Fix an error message
          - [x86] cpu: Change type of x86_cache_size variable to unsigned int
          - [amd64] entry: Fix CR3 restore in paranoid_exit()
          - drm/ttm: Don't add swapped BOs to swap-LRU list
          - drm/ttm: Fix 'buf' pointer update in ttm_bo_vm_access_kmap() (v2)
          - drm/qxl: unref cursor bo when finished with it
          - drm/qxl: reapply cursor after resetting primary
          - drm/amd/powerplay: Fix smu_table_entry.handle type
          - drm/ast: Load lut in crtc_commit
          - drm: Check for lessee in DROP_MASTER ioctl
          - [arm64] Add missing Falkor part number for branch predictor hardening
          - drm/radeon: Add dpm quirk for Jet PRO (v2)
          - drm/radeon: adjust tested variable
          - [x86] smpboot: Fix uncore_pci_remove() indexing bug when hot-removing a
            physical CPU
          - [powerpc*] rtc-opal: Fix handling of firmware error codes, prevent busy
            loops
          - mbcache: initialize entry->e_referenced in mb_cache_entry_create()
          - mmc: sdhci: Implement an SDHCI-specific bounce buffer
          - [armhf,arm64] mmc: bcm2835: Don't overwrite max frequency unconditionally
          - [arm64] Revert "mmc: meson-gx: include tx phase in the tuning process"
          - mlx5: fix mlx5_get_vector_affinity to start from completion vector 0
          - [x86] Revert "apple-gmux: lock iGP IO to protect from vgaarb changes"
          - ext4: fix a race in the ext4 shutdown path
          - ext4: save error to disk in __ext4_grp_locked_error()
          - ext4: correct documentation for grpid mount option
          - mm: Fix memory size alignment in devm_memremap_pages_release()
          - [mips*] Fix typo BIG_ENDIAN to CPU_BIG_ENDIAN
          - [mips*] CPS: Fix MIPS_ISA_LEVEL_RAW fallout
          - [mips*] Fix incorrect mem=X@Y handling
          - [arm64] PCI: Disable MSI for HiSilicon Hip06/Hip07 only in Root Port mode
          - [armhf,arm64] PCI: iproc: Fix NULL pointer dereference for BCMA
          - [x86] PCI: pciehp: Assume NoCompl+ for Thunderbolt ports
          - console/dummy: leave .con_font_get set to NULL
          - rbd: whitelist RBD_FEATURE_OPERATIONS feature bit
          - xen: Fix {set,clear}_foreign_p2m_mapping on autotranslating guests
          - xenbus: track caller request id
          - seq_file: fix incomplete reset on read from zero offset
          - tracing: Fix parsing of globs with a wildcard at the beginning
          - mpls, nospec: Sanitize array index in mpls_label_ok() (CVE-2017-5753)
          - rtlwifi: rtl8821ae: Fix connection lost problem correctly
          - [arm64] proc: Set PTE_NG for table entries to avoid traversing them twice
          - xprtrdma: Fix calculation of ri_max_send_sges
          - xprtrdma: Fix BUG after a device removal
          - blk-wbt: account flush requests correctly
          - target/iscsi: avoid NULL dereference in CHAP auth error path
          - iscsi-target: make sure to wake up sleeping login worker
          - dm: correctly handle chained bios in dec_pending()
          - Btrfs: fix deadlock in run_delalloc_nocow
          - Btrfs: fix crash due to not cleaning up tree log block's dirty bits
          - Btrfs: fix extent state leak from tree log
          - Btrfs: fix btrfs_evict_inode to handle abnormal inodes correctly
          - Btrfs: fix use-after-free on root->orphan_block_rsv
          - Btrfs: fix unexpected -EEXIST when creating new inode
          - 9p/trans_virtio: discard zero-length reply
          - mtd: nand: vf610: set correct ooblayout
          - ALSA: hda - Fix headset mic detection problem for two Dell machines
          - ALSA: usb-audio: Fix UAC2 get_ctl request with a RANGE attribute
          - ALSA: hda/realtek - Add headset mode support for Dell laptop
          - ALSA: hda/realtek - Enable Thinkpad Dock device for ALC298 platform
          - ALSA: hda/realtek: PCI quirk for Fujitsu U7x7
          - ALSA: usb-audio: add implicit fb quirk for Behringer UFX1204
          - ALSA: usb: add more device quirks for USB DSD devices
          - ALSA: seq: Fix racy pool initializations (CVE-2018-7566)
          - [armhf,arm64] mvpp2: fix multicast address filter
          - usb: Move USB_UHCI_BIG_ENDIAN_* out of USB_SUPPORT
          - [x86] mm, mm/hwpoison: Don't unconditionally unmap kernel 1:1 pages
          - [armhf] dts: exynos: fix RTC interrupt for exynos5410
          - [arm64] dts: msm8916: Add missing #phy-cells
           https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.6
          - tun: fix tun_napi_alloc_frags() frag allocator
          - ptr_ring: fail early if queue occupies more than KMALLOC_MAX_SIZE
          - ptr_ring: try vmalloc() when kmalloc() fails
          - selinux: ensure the context is NUL terminated in
            security_context_to_sid_core()
          - selinux: skip bounded transition processing if the policy isn't loaded
          - media: pvrusb2: properly check endpoint types
          - [x86] crypto: twofish-3way - Fix %rbp usage
          - blk_rq_map_user_iov: fix error override
          - [x86] KVM: fix escape of guest dr6 to the host
          - kcov: detect double association with a single task
          - netfilter: x_tables: fix int overflow in xt_alloc_table_info()
          - netfilter: x_tables: avoid out-of-bounds reads in
            xt_request_find_{match|target}
          - netfilter: ipt_CLUSTERIP: fix out-of-bounds accesses in
            clusterip_tg_check()
          - netfilter: on sockopt() acquire sock lock only in the required scope
          - netfilter: xt_cgroup: initialize info->priv in cgroup_mt_check_v1()
          - netfilter: xt_RATEEST: acquire xt_rateest_mutex for hash insert
          - rds: tcp: correctly sequence cleanup on netns deletion.
          - rds: tcp: atomically purge entries from rds_tcp_conn_list during netns
            delete
          - net: avoid skb_warn_bad_offload on IS_ERR
          - net_sched: gen_estimator: fix lockdep splat
          - [arm64] dts: add #cooling-cells to CPU nodes
          - dn_getsockoptdecnet: move nf_{get/set}sockopt outside sock lock
          - xhci: Fix NULL pointer in xhci debugfs
          - xhci: Fix xhci debugfs devices node disappearance after hibernation
          - xhci: xhci debugfs device nodes weren't removed after device plugged out
          - xhci: fix xhci debugfs errors in xhci_stop
          - usbip: keep usbip_device sockfd state in sync with tcp_socket
          - [x86] mei: me: add cannon point device ids
          - [x86] mei: me: add cannon point device ids for 4th device
          - vmalloc: fix __GFP_HIGHMEM usage for vmalloc_32 on 32b systems
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.7
          - netfilter: drop outermost socket lock in getsockopt()
          - [arm64] mm: don't write garbage into TTBR1_EL1 register
          - kconfig.h: Include compiler types to avoid missed struct attributes
          - scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info
          - [mips*] Drop spurious __unused in struct compat_flock
          - cfg80211: fix cfg80211_beacon_dup
          - i2c: designware: must wait for enable
          - [armhf,arm64] i2c: bcm2835: Set up the rising/falling edge delays
          - X.509: fix BUG_ON() when hash algorithm is unsupported
          - X.509: fix NULL dereference when restricting key with unsupported_sig
          - PKCS#7: fix certificate chain verification
          - PKCS#7: fix certificate blacklisting
          - [x86] genirq/matrix: Handle CPU offlining proper
          - RDMA/uverbs: Protect from races between lookup and destroy of uobjects
          - RDMA/uverbs: Protect from command mask overflow
          - RDMA/uverbs: Fix bad unlock balance in ib_uverbs_close_xrcd
          - RDMA/uverbs: Fix circular locking dependency
          - RDMA/uverbs: Sanitize user entered port numbers prior to access it
          - iio: buffer: check if a buffer has been set up when poll is called
          - Kbuild: always define endianess in kconfig.h
          - [x86] apic/vector: Handle vector release on CPU unplug correctly
          - mm, swap, frontswap: fix THP swap if frontswap enabled
          - mm: don't defer struct page initialization for Xen pv guests
          - uapi/if_ether.h: move __UAPI_DEF_ETHHDR libc define
          - [armhf,arm64] irqchip/gic-v3: Use wmb() instead of smb_wmb() in
            gic_raise_softirq()
          - [mips*] irqchip/mips-gic: Avoid spuriously handling masked interrupts
          - PCI/cxgb4: Extend T3 PCI quirk to T4+ devices
          - [x86] net: thunderbolt: Tear down connection properly on suspend
          - [x86] net: thunderbolt: Run disconnect flow asynchronously when logout is
            received
          - ohci-hcd: Fix race condition caused by ohci_urb_enqueue() and
            io_watchdog_func()
          - usb: ohci: Proper handling of ed_rm_list to handle race condition between
            usb_kill_urb() and finish_unlinks()
          - [arm64] Remove unimplemented syscall log message
          - [arm64] Disable unhandled signal log messages by default
          - [arm64] cpufeature: Fix CTR_EL0 field definitions
          - USB: Add delay-init quirk for Corsair K70 RGB keyboards
          - drm/edid: Add 6 bpc quirk for CPT panel in Asus UX303LA
          - usb: host: ehci: use correct device pointer for dma ops
          - usb: dwc3: gadget: Set maxpacket size for ep0 IN
          - usb: dwc3: ep0: Reset TRB counter for ep0 IN
          - usb: ldusb: add PIDs for new CASSY devices supported by this driver
          - Revert "usb: musb: host: don't start next rx urb if current one failed"
          - usb: gadget: f_fs: Process all descriptors during bind
          - usb: gadget: f_fs: Use config_ep_by_speed()
          - drm/cirrus: Load lut in crtc_commit
          - drm/atomic: Fix memleak on ERESTARTSYS during non-blocking commits
          - drm: Handle unexpected holes in color-eviction
          - drm/amdgpu: disable MMHUB power gating on raven
          - drm/amdgpu: fix VA hole handling on Vega10 v3
          - drm/amdgpu: Add dpm quirk for Jet PRO (v2)
          - drm/amdgpu: only check mmBIF_IOV_FUNC_IDENTIFIER on tonga/fiji
          - drm/amdgpu: add atpx quirk handling (v2)
          - drm/amdgpu: Avoid leaking PM domain on driver unbind (v2)
          - drm/amdgpu: add new device to use atpx quirk
          - [arm64] __show_regs: Only resolve kernel symbols when running at EL1
          - [x86] drm/i915/breadcrumbs: Ignore unsubmitted signalers
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.8
          - vsprintf: avoid misleading "(null)" for %px
          - hrtimer: Ensure POSIX compliance (relative CLOCK_REALTIME hrtimers)
          - ipmi_si: Fix error handling of platform device
          - [x86] platform: dell-laptop: Allocate buffer on heap rather than globally
          - [powerpc*] pseries: Enable RAS hotplug events later
          - Bluetooth: btusb: Use DMI matching for QCA reset_resume quirking
          - ixgbe: fix crash in build_skb Rx code path
          - [x86] tpm: st33zp24: fix potential buffer overruns caused by bit glitches
            on the bus
          - tpm: fix potential buffer overruns caused by bit glitches on the bus
          - [x86] tpm_i2c_infineon: fix potential buffer overruns caused by bit
            glitches on the bus
          - [x86] tpm_i2c_nuvoton: fix potential buffer overruns caused by bit
            glitches on the bus
          - [x86] tpm_tis: fix potential buffer overruns caused by bit glitches on
            the bus
          - ALSA: usb-audio: Add a quirck for B&W PX headphones
          - ALSA: control: Fix memory corruption risk in snd_ctl_elem_read
          - [x86] ALSA: x86: Fix missing spinlock and mutex initializations
          - ALSA: hda: Add a power_save blacklist
          - ALSA: hda - Fix pincfg at resume on Lenovo T470 dock
          - mmc: sdhci-pci: Fix S0i3 for Intel BYT-based controllers
          - [armhf,arm64] mmc: dw_mmc-k3: Fix out-of-bounds access through DT alias
          - [armhf,arm64] mmc: dw_mmc: Avoid accessing registers in runtime suspended
            state
          - [armhf,arm64] mmc: dw_mmc: Factor out dw_mci_init_slot_caps
          - [armhf,arm64] mmc: dw_mmc: Fix out-of-bounds access for slot's caps
          - timers: Forward timer base before migrating timers
          - [hppa] Use cr16 interval timers unconditionally on qemu
          - [hppa] Reduce irq overhead when run in qemu
          - [hppa] Fix ordering of cache and TLB flushes
          - [hppa] Hide virtual kernel memory layout
          - btrfs: use proper endianness accessors for super_copy
          - block: fix the count of PGPGOUT for WRITE_SAME
          - block: kyber: fix domain token leak during requeue
          - block: pass inclusive 'lend' parameter to truncate_inode_pages_range
          - vfio: disable filesystem-dax page pinning
          - dax: fix vma_is_fsdax() helper
          - direct-io: Fix sleep in atomic due to sync AIO
          - [x86] xen: Zero MSR_IA32_SPEC_CTRL before suspend
          - [x86] cpu_entry_area: Sync cpu_entry_area to initial_page_table
          - bridge: check brport attr show in brport_show
          - fib_semantics: Don't match route with mismatching tclassid
          - hdlc_ppp: carrier detect ok, don't turn off negotiation
          - [arm64] net: amd-xgbe: fix comparison to bitshift when dealing with a mask
          - [armhf] net: ethernet: ti: cpsw: fix net watchdog timeout
          - net: fix race on decreasing number of TX queues
          - net: ipv4: don't allow setting net.ipv4.route.min_pmtu below 68
          - netlink: ensure to loop over all netns in genlmsg_multicast_allns()
          - net: sched: report if filter is too large to dump
          - ppp: prevent unregistered channels from connecting to PPP units
          - sctp: verify size of a new chunk in _sctp_make_chunk() (CVE-2018-5803)
          - udplite: fix partial checksum initialization
          - net/mlx5e: Fix TCP checksum in LRO buffers
          - sctp: fix dst refcnt leak in sctp_v4_get_dst
          - net/mlx5e: Specify numa node when allocating drop rq
          - net: phy: fix phy_start to consider PHY_IGNORE_INTERRUPT
          - tcp: Honor the eor bit in tcp_mtu_probe
          - rxrpc: Fix send in rxrpc_send_data_packet()
          - tcp_bbr: better deal with suboptimal GSO
          - doc: Change the min default value of tcp_wmem/tcp_rmem.
          - net/mlx5e: Fix loopback self test when GRO is off
          - net_sched: gen_estimator: fix broken estimators based on percpu stats
          - net/sched: cls_u32: fix cls_u32 on filter replace
          - sctp: do not pr_err for the duplicated node in transport rhlist
          - net: ipv4: Set addr_type in hash_keys for forwarded case
          - sctp: fix dst refcnt leak in sctp_v6_get_dst()
          - bridge: Fix VLAN reference count problem
          - net/mlx5e: Verify inline header size do not exceed SKB linear size
          - tls: Use correct sk->sk_prot for IPV6
          - [arm64] amd-xgbe: Restore PCI interrupt enablement setting on resume
          - cls_u32: fix use after free in u32_destroy_key()
          - netlink: put module reference if dump start fails
          - tcp: purge write queue upon RST
          - tuntap: correctly add the missing XDP flush
          - tuntap: disable preemption during XDP processing
          - virtio-net: disable NAPI only when enabled during XDP set
          - cxgb4: fix trailing zero in CIM LA dump
          - net/mlx5: Fix error handling when adding flow rules
          - net: phy: Restore phy_resume() locking assumption
          - tcp: tracepoint: only call trace_tcp_send_reset with full socket
          - l2tp: don't use inet_shutdown on tunnel destroy
          - l2tp: don't use inet_shutdown on ppp session destroy
          - l2tp: fix races with tunnel socket close
          - l2tp: fix race in pppol2tp_release with session object destroy
          - l2tp: fix tunnel lookup use-after-free race
          - [s390x] qeth: fix underestimated count of buffer elements
          - [s390x] qeth: fix SETIP command handling
          - [s390x] qeth: fix overestimated count of buffer elements
          - [s390x] qeth: fix IP removal on offline cards
          - [s390x] qeth: fix double-free on IP add/remove race
          - [s390x] Revert "s390/qeth: fix using of ref counter for rxip addresses"
          - [s390x] qeth: fix IP address lookup for L3 devices
          - [s390x] qeth: fix IPA command submission race
          - tcp: revert F-RTO middle-box workaround
          - tcp: revert F-RTO extension to detect more spurious timeouts
          - blk-mq: don't call io sched's .requeue_request when requeueing rq to
            ->dispatch
          - media: m88ds3103: don't call a non-initalized function
          - [x86] EDAC, sb_edac: Fix out of bound writes during DIMM configuration on
            KNL
          - [s390x] KVM: take care of clock-comparator sign control
          - [s390x] KVM: provide only a single function for setting the tod (fix SCK)
          - [s390x] KVM: consider epoch index on hotplugged CPUs
          - [s390x] KVM: consider epoch index on TOD clock syncs
          - nospec: Allow index argument to have const-qualified type
          - [x86] mm: Fix {pmd,pud}_{set,clear}_flags()
          - [armhf] orion: fix orion_ge00_switch_board_info initialization
          - [armhf] dts: rockchip: Remove 1.8 GHz operation point from phycore som
          - [armhf] mvebu: Fix broken PL310_ERRATA_753970 selects
          - [x86] KVM: Fix SMRAM accessing even if VM is shutdown
          - KVM: mmu: Fix overlap between public and private memslots
          - [x86] KVM: Remove indirect MSR op calls from SPEC_CTRL
          - [x86] KVM: move LAPIC initialization after VMCS creation
          - [x86] KVM/VMX: Optimize vmx_vcpu_run() and svm_vcpu_run() by marking the
            RDMSR path as unlikely()
          - [x86] KVM: fix vcpu initialization with userspace lapic
          - [x86] KVM: remove WARN_ON() for when vm_munmap() fails
          - [x86] ACPI / bus: Parse tables as term_list for Dell XPS 9570 and
            Precision M5530
          - [armhf] dts: LogicPD SOM-LV: Fix I2C1 pinmux
          - [armhf] dts: LogicPD Torpedo: Fix I2C1 pinmux
          - [powerpc*] 64s/radix: Boot-time NULL pointer protection using a guard-PID
          - md: only allow remove_and_add_spares when no sync_thread running.
          - [x86] platform: dell-laptop: fix kbd_get_state's request value
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.9
          - bpf: fix mlock precharge on arraymaps
          - bpf: fix memory leak in lpm_trie map_free callback function
          - bpf: fix rcu lockdep warning for lpm_trie map_free callback
          - [amd64] bpf: implement retpoline for tail call (CVE-2017-5715)
          - [arm64] bpf: fix out of bounds access in tail call
          - bpf: add schedule points in percpu arrays management
          - bpf: allow xadd only on aligned memory
          - [powerpc*] bpf, ppc64: fix out of bounds access in tail call
          - scsi: mpt3sas: fix oops in error handlers after shutdown/unload
          - scsi: mpt3sas: wait for and flush running commands on shutdown/unload
          - [x86] KVM: fix backward migration with async_PF
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.10
          - RDMA/ucma: Limit possible option size
          - RDMA/ucma: Check that user doesn't overflow QP state
          - RDMA/mlx5: Fix integer overflow while resizing CQ
          - bpf: cpumap: use GFP_KERNEL instead of GFP_ATOMIC in
            __cpu_map_entry_alloc()
          - IB/uverbs: Improve lockdep_check
          - mac80211_hwsim: don't use WQ_MEM_RECLAIM
          - [x86] drm/i915: Check for fused or unused pipes
          - [x86] drm/i915/audio: fix check for av_enc_map overflow
          - [x86] drm/i915: Fix rsvd2 mask when out-fence is returned
          - [x86] drm/i915: Clear the in-use marker on execbuf failure
          - [x86] drm/i915: Disable DC states around GMBUS on GLK
          - [x86] drm/i915: Update watermark state correctly in sanitize_watermarks
          - [x86] drm/i915: Try EDID bitbanging on HDMI after failed read
          - [x86] drm/i915/perf: fix perf stream opening lock
          - scsi: core: Avoid that ATA error handling can trigger a kernel hang or
            oops (Closes: #891467)
          - scsi: qla2xxx: Fix NULL pointer crash due to active timer for ABTS
          - [x86] drm/i915: Always call to intel_display_set_init_power() in
            resume_early.
          - workqueue: Allow retrieval of current task's work struct
          - drm: Allow determining if current task is output poll worker
          - drm/nouveau: Fix deadlock on runtime suspend
          - drm/radeon: Fix deadlock on runtime suspend
          - drm/amdgpu: Fix deadlock on runtime suspend
          - drm/nouveau: prefer XBGR2101010 for addfb ioctl
          - drm/amd/powerplay/smu7: allow mclk switching with no displays
          - drm/amd/powerplay/vega10: allow mclk switching with no displays
          - Revert "drm/radeon/pm: autoswitch power state when in balanced mode"
          - drm/amd/display: check for ipp before calling cursor operations
          - drm/radeon: insist on 32-bit DMA for Cedar on PPC64/PPC64LE
          - drm/amd/powerplay: fix power over limit on Fiji
          - drm/amd/display: Default HDMI6G support to true. Log VBIOS table error.
          - drm/amdgpu: used cached pcie gen info for SI (v2)
          - drm/amdgpu: Notify sbios device ready before send request
          - drm/radeon: fix KV harvesting
          - drm/amdgpu: fix KV harvesting
          - drm/amdgpu:Correct max uvd handles
          - drm/amdgpu:Always save uvd vcpu_bo in VM Mode
          - ovl: redirect_dir=nofollow should not follow redirect for opaque lower
          - [mips*/octeon] irq: Check for null return on kzalloc allocation
          - PCI: dwc: Fix enumeration end when reaching root subordinate
          - Revert "Input: synaptics - Lenovo Thinkpad T460p devices should use RMI"
          - bug: use %pB in BUG and stack protector failure
          - lib/bug.c: exclude non-BUG/WARN exceptions from report_bug()
          - mm/memblock.c: hardcode the end_pfn being -1
          - Documentation/sphinx: Fix Directive import error
          - loop: Fix lost writes caused by missing flag
          - virtio_ring: fix num_free handling in error case
          - [x390x] KVM: fix memory overwrites when not using SCA entries
          - [arm64] mm: fix thinko in non-global page table attribute check
          - IB/core: Fix missing RDMA cgroups release in case of failure to register
            device
          - Revert "nvme: create 'slaves' and 'holders' entries for hidden
            controllers"
          - kbuild: Handle builtin dtb file names containing hyphens
          - dm bufio: avoid false-positive Wmaybe-uninitialized warning
          - IB/mlx5: Fix incorrect size of klms in the memory region
          - bcache: fix crashes in duplicate cache device register
          - bcache: don't attach backing with duplicate UUID
          - [x86] MCE: Save microcode revision in machine check records
          - [x86] MCE: Serialize sysfs changes (CVE-2018-7995)
          - perf tools: Fix trigger class trigger_on()
          - [x86] spectre_v2: Don't check microcode versions when running under
            hypervisors
          - ALSA: hda/realtek - Add support headset mode for DELL WYSE
          - ALSA: hda/realtek - Add headset mode support for Dell laptop
          - ALSA: hda/realtek: Limit mic boost on T480
          - ALSA: hda/realtek - Fix dock line-out volume on Dell Precision 7520
          - ALSA: hda/realtek - Make dock sound work on ThinkPad L570
          - ALSA: seq: Don't allow resizing pool in use
          - ALSA: seq: More protection for concurrent write and ioctl races
          - ALSA: hda - Fix a wrong FIXUP for alc289 on Dell machines
          - ALSA: hda: add dock and led support for HP EliteBook 820 G3
          - ALSA: hda: add dock and led support for HP ProBook 640 G2
          - scsi: qla2xxx: Fix NULL pointer crash due to probe failure
          - scsi: qla2xxx: Fix recursion while sending terminate exchange
          - dt-bindings: Document mti,mips-cpc binding
          - nospec: Kill array_index_nospec_mask_check()
          - nospec: Include <asm/barrier.h> dependency
          - [x86] entry: Reduce the code footprint of the 'idtentry' macro
          - [x86] entry/64: Use 'xorl' for faster register clearing
          - [x86] mm: Remove stale comment about KMEMCHECK
          - [x86] asm: Improve how GEN_*_SUFFIXED_RMWcc() specify clobbers
          - [x86] IO-APIC: Avoid warning in 32-bit builds
          - [x86] LDT: Avoid warning in 32-bit builds with older gcc
          - x86-64/realmode: Add instruction suffix
          - Revert "x86/retpoline: Simplify vmexit_fill_RSB()"
          - [x86] speculation: Use IBRS if available before calling into firmware
          - [x86] retpoline: Support retpoline builds with Clang
          - [x86] speculation, objtool: Annotate indirect calls/jumps for objtool
          - [x86] speculation: Move firmware_restrict_branch_speculation_*() from C
            to CPP
          - [x86] paravirt, objtool: Annotate indirect calls
          - [x86] boot, objtool: Annotate indirect jump in secondary_startup_64()
          - [x86] mm/sme, objtool: Annotate indirect call in sme_encrypt_execute()
          - objtool: Use existing global variables for options
          - objtool: Add retpoline validation
          - objtool: Add module specific retpoline rules
          - objtool, retpolines: Integrate objtool with retpoline support more
            closely
          - objtool: Fix another switch table detection issue
          - objtool: Fix 32-bit build
          - [x86] kprobes: Fix kernel crash when probing .entry_trampoline code
          - watchdog: hpwdt: SMBIOS check
          - watchdog: hpwdt: Check source of NMI
          - watchdog: hpwdt: fix unused variable warning
          - watchdog: hpwdt: Remove legacy NMI sourcing.
          - netfilter: add back stackpointer size checks (CVE-2018-1065)
          - netfilter: ipt_CLUSTERIP: fix a race condition of proc file creation
          - netfilter: xt_hashlimit: fix lock imbalance
          - netfilter: x_tables: fix missing timer initialization in xt_LED
          - netfilter: nat: cope with negative port range
          - netfilter: IDLETIMER: be syzkaller friendly
          - netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
            (CVE-2018-1068)
          - netfilter: bridge: ebt_among: add missing match size checks
          - netfilter: ipv6: fix use-after-free Write in nf_nat_ipv6_manip_pkt
          - netfilter: use skb_to_full_sk in ip6_route_me_harder
          - tpm_tis: Move ilb_base_addr to tpm_tis_data
          - tpm: Keep CLKRUN enabled throughout the duration of transmit_cmd()
          - tpm: delete the TPM_TIS_CLK_ENABLE flag
          - tpm: remove unused variables
          - tpm: only attempt to disable the LPC CLKRUN if is already enabled
          - [x86] xen: Calculate __max_logical_packages on PV domains
          - scsi: qla2xxx: Fix system crash for Notify ack timeout handling
          - scsi: qla2xxx: Fix gpnid error processing
          - scsi: qla2xxx: Move session delete to driver work queue
          - scsi: qla2xxx: Skip IRQ affinity for Target QPairs
          - scsi: qla2xxx: Fix re-login for Nport Handle in use
          - scsi: qla2xxx: Retry switch command on time out
          - scsi: qla2xxx: Serialize GPNID for multiple RSCN
          - scsi: qla2xxx: Fix login state machine stuck at GPDB
          - scsi: qla2xxx: Fix NPIV host cleanup in target mode
          - scsi: qla2xxx: Relogin to target port on a cable swap
          - scsi: qla2xxx: Fix Relogin being triggered too fast
          - scsi: qla2xxx: Fix PRLI state check
          - scsi: qla2xxx: Fix abort command deadlock due to spinlock
          - scsi: qla2xxx: Replace fcport alloc with qla2x00_alloc_fcport
          - scsi: qla2xxx: Fix scan state field for fcport
          - scsi: qla2xxx: Clear loop id after delete
          - scsi: qla2xxx: Defer processing of GS IOCB calls
          - scsi: qla2xxx: Remove aborting ELS IOCB call issued as part of timeout.
          - scsi: qla2xxx: Fix system crash in qlt_plogi_ack_unref
          - scsi: qla2xxx: Fix memory leak in dual/target mode
          - NFS: Fix an incorrect type in struct nfs_direct_req
          - pNFS: Prevent the layout header refcount going to zero in pnfs_roc()
          - NFS: Fix unstable write completion
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.11
          - [x86] Treat R_X86_64_PLT32 as R_X86_64_PC32
          - usb: host: xhci-rcar: add support for r8a77965
          - xhci: Fix front USB ports on ASUS PRIME B350M-A
          - xhci: fix endpoint context tracer output
          - [sh4] serial: sh-sci: prevent lockup on full TTY buffers
          - tty/serial: atmel: add new version check for usart
          - uas: fix comparison for error code
          - [x86] staging: comedi: fix comedi_nsamples_left.
          - USB: storage: Add JMicron bridge 152d:2567 to unusual_devs.h
          - usbip: vudc: fix null pointer dereference on udc->lock
          - usb: quirks: add control message delay for 1b1c:1b20
          - usb: usbmon: Read text within supplied buffer size
          - usb: gadget: f_fs: Fix use-after-free in ffs_fs_kill_sb()
          - [arm64,armhf] usb: dwc3: Fix lock-up on ID change during system
            suspend/resume
          - serial: 8250_pci: Add Brainboxes UC-260 4 port serial device
          - serial: core: mark port as initialized in autoconfig
          - earlycon: add reg-offset to physical address before mapping
          - dm mpath: fix passing integrity data
          - Revert "btrfs: use proper endianness accessors for super_copy"
          - gfs2: Clean up {lookup,fillup}_metapath
          - gfs2: Fixes to "Implement iomap for block_map" (2)
          - [armhf] spi: imx: Fix failure path leak on GPIO request error correctly
          - HID: multitouch: Only look at non touch fields in first packet of a
            frame
          - [powerpc*] KVM: Book3S HV: Avoid shifts by negative amounts
          - drm/edid: set ELD connector type in drm_edid_to_eld()
          - dma-buf/fence: Fix lock inversion within dma-fence-array
          - video/hdmi: Allow "empty" HDMI infoframes
          - [powerpc*] KVM: Book3S HV: Fix typo in kvmppc_hv_get_dirty_log_radix()
          - HID: elo: clear BTN_LEFT mapping
          - iwlwifi: mvm: rs: don't override the rate history in the search cycle
          - [armhf] dts: exynos: Correct Trats2 panel reset line
          - drm/amdgpu: fix get_max_engine_clock_in_mhz
          - USB: ledtrig-usbport: fix of-node leak
          - dt-bindings: serial: Add common rs485 binding for RTS polarity
          - sched: Stop switched_to_rt() from sending IPIs to offline CPUs
          - sched: Stop resched_cpu() from sending IPIs to offline CPUs
          - crypto: chelsio - Fix an error code in chcr_hash_dma_map()
          - crypto: keywrap - Add missing ULL suffixes for 64-bit constants
          - crypto: cavium - fix memory leak on info
          - test_firmware: fix setting old custom fw path back on exit
          - drm/vblank: Fix vblank timestamp debugs
          - net: ieee802154: adf7242: Fix bug if defined DEBUG
          - perf report: Fix -D output for user metadata events
          - net: xfrm: allow clearing socket xfrm policies.
          - gpiolib: don't allow OPEN_DRAIN & OPEN_SOURCE flags simultaneously
          - mtd: nand: fix interpretation of NAND_CMD_NONE in nand_command[_lp]()
          - [arm64] net: thunderx: Set max queue count taking XDP_TX into account
          - [armhf] dts: am335x-pepper: Fix the audio CODEC's reset pin
          - [armhf] dts: omap3-n900: Fix the audio CODEC's reset pin
          - mtd: nand: ifc: update bufnum mask for ver >= 2.0.0
          - userns: Don't fail follow_automount based on s_user_ns
          - xfrm: Fix xfrm_replay_overflow_offload_esn
          - leds: pm8058: Silence pointer to integer size warning
          - bpf: fix stack state printing in verifier log
          - [armhf] drm/etnaviv: make THERMAL selectable
          - ath10k: update tdls teardown state to target
          - cpufreq: Fix governor module removal race
          - [x86] KVM: Restart the guest when insn_len is zero and SEV is enabled
          - drm/amdgpu:fix random missing of FLR NOTIFY
          - scsi: lpfc: Fix crash during driver unload with running nvme traffic
          - scsi: ses: don't ask for diagnostic pages repeatedly during probe
          - [armhf] drm/sun4i: Fix format mask in DE2 driver
          - [s390x] perf annotate: Fix unnecessary memory allocation for s390x
          - perf annotate: Fix objdump comment parsing for Intel mov dissassembly
          - iwlwifi: mvm: avoid dumping assert log when device is stopped
          - drm/amdgpu:fix virtual dce bug
          - drm/amdgpu: fix amdgpu_sync_resv v2
          - bnxt_en: Uninitialized variable in bnxt_tc_parse_actions()
          - [arm64] clk: qcom: msm8916: fix mnd_width for codec_digcodec
          - mwifiex: cfg80211: do not change virtual interface during scan
            processing
          - ath10k: fix invalid STS_CAP_OFFSET_MASK
          - tools/usbip: fixes build with musl libc toolchain
          - [armhf] spi: sun6i: disable/unprepare clocks on remove
          - bnxt_en: Don't print "Link speed -1 no longer supported" messages.
          - scsi: core: scsi_get_device_flags_keyed(): Always return device flags
          - scsi: devinfo: apply to HP XP the same flags as Hitachi VSP
          - scsi: dh: add new rdac devices
          - media: vsp1: Prevent suspending and resuming DRM pipelines
          - dm raid: fix raid set size revalidation
          - media: cpia2: Fix a couple off by one bugs
          - [arm*] media: davinci: vpif_capture: add NULL check on devm_kzalloc
            return value
          - virtio_net: Disable interrupts if napi_complete_done rescheduled napi
          - net: sched: drop qdisc_reset from dev_graft_qdisc
          - veth: set peer GSO values
          - [x86] drm/amdkfd: Fix memory leaks in kfd topology
          - [powerpc*] modules: Don't try to restore r2 after a sibling call
          - [powerpc/powerpc64,ppc64*] Don't trace irqs-off at interrupt return to
            soft-disabled context
          - [arm64] dts: renesas: salvator-common: Add EthernetAVB PHY reset
          - agp/intel: Flush all chipset writes after updating the GGTT
          - mac80211_hwsim: enforce PS_MANUAL_POLL to be set after PS_ENABLED
          - mac80211: remove BUG() when interface type is invalid
          - crypto: caam/qi - use correct print specifier for size_t
          - mmc: mmc_test: Ensure command queue is disabled for testing
          - Fix misannotated out-of-line _copy_to_user()
          - ipvlan: add L2 check for packets arriving via virtual devices
          - locking/locktorture: Fix num reader/writer corner cases
          - ima: relax requiring a file signature for new files with zero length
          - IB/mlx5: revisit -Wmaybe-uninitialized warning
          - [arm64] dmaengine: qcom_hidma: check pending interrupts
          - [x86] drm/i915/glk: Disable Guc and HuC on GLK
      
        [ Ben Hutchings ]
        * aufs: gen-patch: Fix Subject generation to skip SPDX-License-Identifier
        * aufs: Update support patchset to aufs4.15-20180219 (no functional change)
        * debian/control: Point Vcs URLs to Salsa
        * [x86] sound/soc/intel: Enable SND_SOC_INTEL_SST_TOPLEVEL,
          SND_SOC_INTEL_HASWELL, SND_SOC_INTEL_BAYTRAIL, SND_SST_ATOM_HIFI2_PLATFORM,
          SND_SOC_INTEL_SKYLAKE as modules; re-enable dependent board drivers
          (Closes: #892629)
        * firmware_class: Refer to Debian wiki page when logging missing firmware
          (Closes: #888405)
        * amdgpu: Abort probing if firmware is not installed, as we do in radeon
        * Bump ABI to 2
        * [amd64] udeb: Add vmd to scsi-modules, required for NVMe on some systems
          (Closes: #891482)
        * udeb: Update patterns for PHY modules included in usb-modules
          (Closes: #893154)
      
        [ Uwe Kleine-König ]
        * netfilter: enable NFT_FIB_NETDEV as module
      
        [ Thadeu Lima de Souza Cascardo ]
        * [powerpc,ppc64el,ppc64] Enable CRASH_DUMP (Closes: #883432)
      
        [ Bastian Blank ]
        * Drop note about Xen from long descriptions.
      
        [ Vagrant Cascadian ]
        * [arm64] Enable ROCKCHIP_IODOMAIN as a module, to enable PCIe reset.
        * [arm64] Enable REGULATOR_FAN53555 as a module, enabling cpufreq to
          work on rk3399 A72 cores.
        * [arm64] Apply patch from linux-next to fix eMMC corruption on
          Odroid-C2 (Closes: #879072).
      
        [ Salvatore Bonaccorso ]
        * mac80211_hwsim: fix possible memory leak in hwsim_new_radio_nl()
          (CVE-2018-8087)
      
      linux (4.15.4-1) unstable; urgency=medium
      
        * New upstream release: https://kernelnewbies.org/Linux_4.15
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.1
          - Bluetooth: hci_serdev: Init hci_uart proto_lock to avoid oops
          - tools/gpio: Fix build error with musl libc
          - gpio: stmpe: i2c transfer are forbiden in atomic context
          - gpio: Fix kernel stack leak to userspace
          - scsi: storvsc: missing error code in storvsc_probe()
          - staging: lustre: separate a connection destroy from free struct kib_conn
          - staging: ccree: NULLify backup_info when unused
          - staging: ccree: fix fips event irq handling build
          - usb: option: Add support for FS040U modem
          - serial: 8250_dw: Revert "Improve clock rate setting"
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.2
          - [x86] KVM: Make indirect calls in emulator speculation safe
          - [x86] KVM: VMX: Make indirect call speculation safe
          - module/retpoline: Warn about missing retpoline in module
          - [x86] cpufeatures: Add CPUID_7_EDX CPUID leaf
          - [x86] cpufeatures: Add Intel feature bits for Speculation Control
          - [x86] cpufeatures: Add AMD feature bits for Speculation Control
          - [x86] msr: Add definitions for new speculation control MSRs
          - [x86] pti: Do not enable PTI on CPUs which are not vulnerable to
            Meltdown
          - [x86] cpufeature: Blacklist SPEC_CTRL/PRED_CMD on early Spectre v2
            microcodes
          - [x86] speculation: Add basic IBPB (Indirect Branch Prediction Barrier)
            support
          - [x86] alternative: Print unadorned pointers
          - [x86] nospec: Fix header guards names
          - [x86] bugs: Drop one "mitigation" from dmesg
          - [x86] cpu/bugs: Make retpoline module warning conditional
          - [x86] cpufeatures: Clean up Spectre v2 related CPUID flags
          - [x86] retpoline: Simplify vmexit_fill_RSB()
          - [x86] speculation: Simplify indirect_branch_prediction_barrier()
          - [x86] KVM: nVMX: Eliminate vmcs02 pool
          - [x86] KVM: VMX: introduce alloc_loaded_vmcs
          - objtool: Improve retpoline alternative handling
          - objtool: Add support for alternatives at the end of a section
          - objtool: Warn on stripped section symbol
          - [x86] mm: Fix overlap of i386 CPU_ENTRY_AREA with FIX_BTMAP
          - [x86] spectre: Check CONFIG_RETPOLINE in command line parser
          - [x86] entry/64: Remove the SYSCALL64 fast path
          - [x86] entry/64: Push extra regs right away
          - [x86] asm: Move 'status' from thread_struct to thread_info
          - Documentation: Document array_index_nospec
          - array_index_nospec: Sanitize speculative array de-references
          - [x86] Implement array_index_mask_nospec
          - [x86] Introduce barrier_nospec
          - [x86] Introduce __uaccess_begin_nospec() and uaccess_try_nospec
          - [x86] usercopy: Replace open coded stac/clac with __uaccess_{begin, end}
          - [x86] uaccess: Use __uaccess_begin_nospec() and uaccess_try_nospec
          - [x86] get_user: Use pointer masking to limit speculation
          - [x86] syscall: Sanitize syscall table de-references under speculation
          - vfs, fdtable: Prevent bounds-check bypass via speculative execution
          - nl80211: Sanitize array index in parse_txq_params
          - [x86] spectre: Report get_user mitigation for spectre_v1
          - [x86] spectre: Fix spelling mistake: "vunerable"-> "vulnerable"
          - [x86] cpuid: Fix up "virtual" IBRS/IBPB/STIBP feature bits on Intel
          - [x86] speculation: Use Indirect Branch Prediction Barrier in context
            switch
          - [x86] paravirt: Remove 'noreplace-paravirt' cmdline option
          - [x86] KVM: VMX: make MSR bitmaps per-VCPU
          - [x86] kvm: Update spectre-v1 mitigation
          - [x86] retpoline: Avoid retpolines for built-in __init functions
          - [x86] spectre: Simplify spectre_v2 command line parsing
          - [x86] pti: Mark constant arrays as __initconst
          - [x86] speculation: Fix typo IBRS_ATT, which should be IBRS_ALL
          - [x86] KVM: Update the reverse_cpuid list to include CPUID_7_EDX
          - [x86] KVM: Add IBPB support
          - [x86] KVM/VMX: Emulate MSR_IA32_ARCH_CAPABILITIES
          - [x86] KVM/VMX: Allow direct access to MSR_IA32_SPEC_CTRL
          - [x86] KVM/SVM: Allow direct access to MSR_IA32_SPEC_CTRL
          - serial: core: mark port as initialized after successful IRQ change
          - fpga: region: release of_parse_phandle nodes after use
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.3
          - ip6mr: fix stale iterator
          - net: igmp: add a missing rcu locking section
          - qlcnic: fix deadlock bug
          - qmi_wwan: Add support for Quectel EP06
          - r8169: fix RTL8168EP take too long to complete driver initialization.
          - tcp: release sk_frag.page in tcp_disconnect
          - vhost_net: stop device during reset owner
          - ipv6: addrconf: break critical section in addrconf_verify_rtnl()
          - ipv6: change route cache aging logic
          - Revert "defer call to mem_cgroup_sk_alloc()"
          - net: ipv6: send unsolicited NA after DAD
          - rocker: fix possible null pointer dereference in
            rocker_router_fib_event_work
          - tcp_bbr: fix pacing_gain to always be unity when using lt_bw
          - cls_u32: add missing RCU annotation.
          - ipv6: Fix SO_REUSEPORT UDP socket with implicit sk_ipv6only
          - soreuseport: fix mem leak in reuseport_add_sock()
          - net_sched: get rid of rcu_barrier() in tcf_block_put_ext()
          - net: sched: fix use-after-free in tcf_block_put_ext
          - crypto: tcrypt - fix S/G table for test_aead_speed()
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.4
          - cifs: Fix missing put_xid in cifs_file_strict_mmap
          - cifs: Fix autonegotiate security settings mismatch
          - CIFS: zero sensitive data when freeing
          - cpufreq: mediatek: add mediatek related projects into blacklist
          - [arm64] watchdog: gpio_wdt: set WDOG_HW_RUNNING in gpio_wdt_stop
          - Revert "drm/i915: mark all device info struct with __initconst"
          - sched/rt: Use container_of() to get root domain in
            rto_push_irq_work_func()
          - sched/rt: Up the root domain ref count when passing it around via IPIs
          - [arm64] mm: Use non-global mappings for kernel space
          - [arm64] mm: Temporarily disable ARM64_SW_TTBR0_PAN
          - [arm64] mm: Move ASID from TTBR0 to TTBR1
          - [arm64] mm: Remove pre_ttbr0_update_workaround for Falkor erratum #E1003
          - [arm64] mm: Rename post_ttbr0_update_workaround
          - [arm64] mm: Fix and re-enable ARM64_SW_TTBR0_PAN
          - [arm64] mm: Allocate ASIDs in pairs
          - [arm64] mm: Add arm64_kernel_unmapped_at_el0 helper
          - [arm64] mm: Invalidate both kernel and user ASIDs when performing TLBI
          - [arm64] entry: Add exception trampoline page for exceptions from EL0
          - [arm64] mm: Map entry trampoline into trampoline and kernel page tables
          - [arm64] entry: Explicitly pass exception level to kernel_ventry macro
          - [arm64] entry: Hook up entry trampoline to exception vectors
          - [arm64] erratum: Work around Falkor erratum #E1003 in trampoline code
          - [arm64] cpu_errata: Add Kryo to Falkor 1003 errata
          - [arm64] tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks
          - [arm64] entry: Add fake CPU feature for unmapping the kernel at EL0
          - [arm64] kaslr: Put kernel vectors address in separate data page
          - [arm64] use RET instruction for exiting the trampoline
          - [arm64] Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0
          - [arm64] Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry
          - [arm64] Take into account ID_AA64PFR0_EL1.CSV3
          - [arm64] capabilities: Handle duplicate entries for a capability
          - [arm64] mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR
          - [arm64] kpti: Fix the interaction between ASID switching and software PAN
          - [arm64] cputype: Add MIDR values for Cavium ThunderX2 CPUs
          - [arm64] Turn on KPTI only on CPUs that need it
          - [arm64] kpti: Make use of nG dependent on arm64_kernel_unmapped_at_el0()
          - [arm64] mm: Permit transitioning from Global to Non-Global without BBM
          - [arm64] kpti: Add ->enable callback to remap swapper using nG mappings
          - [arm64] Force KPTI to be disabled on Cavium ThunderX
          - [arm64] entry: Reword comment about post_ttbr_update_workaround
          - [arm64] idmap: Use "awx" flags for .idmap.text .pushsection directives
          - [arm64] barrier: Add CSDB macros to control data-value prediction
          - [arm64] Implement array_index_mask_nospec()
          - [arm64] Make USER_DS an inclusive limit
          - [arm64] Use pointer masking to limit uaccess speculation
          - [arm64] entry: Ensure branch through syscall table is bounded under
            speculation
          - [arm64] uaccess: Prevent speculative use of the current addr_limit
          - [arm64] uaccess: Don't bother eliding access_ok checks in __{get,
            put}_user
          - [arm64] uaccess: Mask __user pointers for __arch_{clear, copy_*}_user
          - [arm64] futex: Mask __user pointers prior to dereference
          - [arm64] cpufeature: __this_cpu_has_cap() shouldn't stop early
          - [arm64] Run enable method for errata work arounds on late CPUs
          - [arm64] cpufeature: Pass capability structure to ->enable callback
          - drivers/firmware: Expose psci_get_version through psci_ops structure
          - [arm64] Move post_ttbr_update_workaround to C code
          - [arm64] Add skeleton to harden the branch predictor against aliasing
            attacks
          - [arm64] Move BP hardening to check_and_switch_context
          - [arm64] KVM: Use per-CPU vector when BP hardening is enabled
          - [arm64] entry: Apply BP hardening for high-priority synchronous
            exceptions
          - [arm64] entry: Apply BP hardening for suspicious interrupts from EL0
          - [arm64] cputype: Add missing MIDR values for Cortex-A72 and Cortex-A75
          - [arm64] Implement branch predictor hardening for affected Cortex-A CPUs
          - [arm64] Implement branch predictor hardening for Falkor
          - [arm64] Branch predictor hardening for Cavium ThunderX2
          - [arm64] KVM: Increment PC after handling an SMC trap
          - [armhf,arm64] KVM: Consolidate the PSCI include files
          - [armhf,arm64] KVM: Add PSCI_VERSION helper
          - [armhf,arm64] KVM: Add smccc accessors to PSCI code
          - [armhf,arm64] KVM: Implement PSCI 1.0 support
          - [armhf,arm64] KVM: Advertise SMCCC v1.1
          - [arm64] KVM: Make PSCI_VERSION a fast path
          - [armhf,arm64] KVM: Turn kvm_psci_version into a static inline
          - [arm64] KVM: Report SMCCC_ARCH_WORKAROUND_1 BP hardening support
          - [arm64] KVM: Add SMCCC_ARCH_WORKAROUND_1 fast handling
          - firmware/psci: Expose PSCI conduit
          - firmware/psci: Expose SMCCC version through psci_ops
          - arm/arm64: smccc: Make function identifiers an unsigned quantity
          - arm/arm64: smccc: Implement SMCCC v1.1 inline primitive
          - [arm64] Add ARM_SMCCC_ARCH_WORKAROUND_1 BP hardening support
          - [arm64] Kill PSCI_GET_VERSION as a variant-2 workaround
          - mtd: cfi: convert inline functions to macros
          - mtd: nand: brcmnand: Disable prefetch by default
          - mtd: nand: Fix nand_do_read_oob() return value
          - mtd: nand: sunxi: Fix ECC strength choice
          - ubi: Fix race condition between ubi volume creation and udev
          - ubi: fastmap: Erase outdated anchor PEBs during attach
          - ubi: block: Fix locking for idr_alloc/idr_remove
          - ubifs: free the encrypted symlink target
          - nfs/pnfs: fix nfs_direct_req ref leak when i/o falls back to the mds
          - nfs41: do not return ENOMEM on LAYOUTUNAVAILABLE
          - NFS: Add a cond_resched() to nfs_commit_release_pages()
          - NFS: Fix nfsstat breakage due to LOOKUPP
          - NFS: commit direct writes even if they fail partially
          - NFS: reject request for id_legacy key without auxdata
          - NFS: Fix a race between mmap() and O_DIRECT
          - nfsd: Detect unhashed stids in nfsd4_verify_open_stid()
          - kernfs: fix regression in kernfs_fop_write caused by wrong type
          - ahci: Annotate PCI ids for mobile Intel chipsets as such
          - ahci: Add PCI ids for Intel Bay Trail, Cherry Trail and Apollo Lake AHCI
          - ahci: Add Intel Cannon Lake PCH-H PCI ID
          - crypto: hash - introduce crypto_hash_alg_has_setkey()
          - crypto: cryptd - pass through absence of ->setkey()
          - crypto: mcryptd - pass through absence of ->setkey()
          - crypto: poly1305 - remove ->setkey() method
          - crypto: hash - annotate algorithms taking optional key
          - crypto: hash - prevent using keyed hashes without setting key
          - media: v4l2-ioctl.c: use check_fmt for enum/g/s/try_fmt
          - media: v4l2-ioctl.c: don't copy back the result for -ENOTTY
          - media: v4l2-compat-ioctl32.c: add missing VIDIOC_PREPARE_BUF
          - media: v4l2-compat-ioctl32.c: fix the indentation
          - media: v4l2-compat-ioctl32.c: move 'helper' functions to __get/put_v4l2_format32
          - media: v4l2-compat-ioctl32.c: avoid sizeof(type)
          - media: v4l2-compat-ioctl32.c: copy m.userptr in put_v4l2_plane32
          - media: v4l2-compat-ioctl32.c: fix ctrl_is_pointer
          - media: v4l2-compat-ioctl32.c: copy clip list in put_v4l2_window32
          - media: v4l2-compat-ioctl32.c: drop pr_info for unknown buffer type
          - media: v4l2-compat-ioctl32.c: don't copy back the result for certain errors
          - media: v4l2-compat-ioctl32.c: refactor compat ioctl32 logic
          - media: v4l2-compat-ioctl32.c: make ctrl_is_pointer work for subdevs
          - crypto: caam - fix endless loop when DECO acquire fails
          - crypto: sha512-mb - initialize pending lengths correctly
          - crypto: talitos - fix Kernel Oops on hashing an empty file
          - [armhf,arm64 KVM: Fix SMCCC handling of unimplemented SMC/HVC calls
          - [x86] KVM: nVMX: Fix races when sending nested PI while dest
            enters/leaves L2
          - [x86] KVM: nVMX: Fix bug of injecting L2 exception into L1
          - [powerpc*] KVM: PPC: Book3S HV: Make sure we don't re-enter guest
            without XIVE loaded
          - [powerpc*] KVM: PPC: Book3S HV: Drop locks before reading guest memory
          - [armhf,arm64] KVM: Handle CPU_PM_ENTER_FAILED
          - [powerpc*] KVM: PPC: Book3S PR: Fix broken select due to misspelling
          - watchdog: imx2_wdt: restore previous timeout after suspend+resume
          - afs: Add missing afs_put_cell()
          - afs: Need to clear responded flag in addr cursor
          - afs: Fix missing cursor clearance
          - afs: Fix server list handling
          - btrfs: Handle btrfs_set_extent_delalloc failure in fixup worker
          - Btrfs: raid56: iterate raid56 internal bio with bio_for_each_segment_all
          - kasan: don't emit builtin calls when sanitization is off
          - kasan: rework Kconfig settings
          - media: dvb_frontend: be sure to init dvb_frontend_handle_ioctl() return
            code
          - media: dvb-frontends: fix i2c access helpers for KASAN
          - media: dt-bindings/media/cec-gpio.txt: mention the CEC/HPD max voltages
          - media: ts2020: avoid integer overflows on 32 bit machines
          - media: vivid: fix module load error when enabling fb and no_error_inj=1
          - media: cxusb, dib0700: ignore XC2028_I2C_FLUSH
          - fs/proc/kcore.c: use probe_kernel_read() instead of memcpy()
          - kernel/async.c: revert "async: simplify lowest_in_progress()"
          - kernel/relay.c: revert "kernel/relay.c: fix potential memory leak"
          - pipe: actually allow root to exceed the pipe buffer limits
          - pipe: fix off-by-one error when checking buffer limits
          - HID: quirks: Fix keyboard + touchpad on Toshiba Click Mini not working
          - Bluetooth: btsdio: Do not bind to non-removable BCM43341
          - Revert "Bluetooth: btusb: fix QCA Rome suspend/resume"
          - Bluetooth: btusb: Restore QCA Rome suspend/resume fix with a "rewritten"
            version
          - ipmi: use dynamic memory for DMI driver override
          - signal/openrisc: Fix do_unaligned_access to send the proper signal
          - signal/sh: Ensure si_signo is initialized in do_divide_error
          - alpha: fix crash if pthread_create races with signal delivery
          - alpha: osf_sys.c: fix put_tv32 regression
          - alpha: Fix mixed up args in EXC macro in futex operations
          - alpha: fix reboot on Avanti platform
          - alpha: fix formating of stack content
          - xtensa: fix futex_atomic_cmpxchg_inatomic
          - EDAC, octeon: Fix an uninitialized variable warning
          - genirq: Make legacy autoprobing work again
          - pinctrl: intel: Initialize GPIO properly when used through irqchip
          - pinctrl: mcp23s08: fix irq setup order
          - pinctrl: sx150x: Unregister the pinctrl on release
          - pinctrl: sx150x: Register pinctrl before adding the gpiochip
          - pinctrl: sx150x: Add a static gpio/pinctrl pin range mapping
          - pktcdvd: Fix pkt_setup_dev() error path
          - pktcdvd: Fix a recently introduced NULL pointer dereference
          - blk-mq: quiesce queue before freeing queue
          - clocksource/drivers/stm32: Fix kernel panic with multiple timers
          - lib/ubsan.c: s/missaligned/misaligned/
          - lib/ubsan: add type mismatch handler for new GCC/Clang
          - objtool: Fix switch-table detection
          - [arm64] dts: marvell: add Ethernet aliases
          - drm/i915: Avoid PPS HW/SW state mismatch due to rounding
          - ACPI: sbshc: remove raw pointer from printk() message (CVE-2018-5750)
          - acpi, nfit: fix register dimm error handling
          - ovl: force r/o mount when index dir creation fails
          - ovl: fix failure to fsync lower dir
          - ovl: take mnt_want_write() for work/index dir setup
          - ovl: take mnt_want_write() for removing impure xattr
          - ovl: hash directory inodes for fsnotify
          - devpts: fix error handling in devpts_mntget()
          - ftrace: Remove incorrect setting of glob search field
          - scsi: core: Ensure that the SCSI error handler gets woken up
          - scsi: lpfc: Fix crash after bad bar setup on driver attachment
          - scsi: cxlflash: Reset command ioasc
          - rcu: Export init_rcu_head() and destroy_rcu_head() to GPL modules
      
        [ Bastian Blank ]
        * Add cloud-amd64 kernel flavour.
          - Support Microsoft Azure.
          - Support Amazon EC2.
          - Support Google Compute Engine.
        * Enable NUMA_BALANCING_DEFAULT_ENABLED, enabled by all others.
        * Enable INET_ESP_OFFLOAD, INET6_ESP_OFFLOAD, IPV6_SEG6_LWTUNNEL,
          IPV6_SEG6_HMAC, NF_LOG_NETDEV, IP_SET_HASH_IPMAC, NET_ACT_SAMPLE,
          IPVTAP, VIRTIO_MMIO, CRYPTO_RSA, CRYPTO_DH, CRYPTO_ECDH.
        * x86: Enable SCHED_MC_PRIO, HYPERV_VSOCKETS.
        * Enable NVME_MULTIPATH, NVME_FC, NVME_TARGET_FC, move nvme module into
          scsi-modules installer udeb.
        * Switch to SLUB as kernel allocator. (Closes: #862718)
          - Enable SLUB_DEBUG, SLAB_FREELIST_HARDENED except on armel/marvell.
            (Closes: #883069)
        * Fix building of liblockdep.
      
        [ Uwe Kleine-König ]
        * [arm64] enable I2C_PXA for espressobin (Closes: #886983)
      
        [ Ben Hutchings ]
        * Enable CGROUP_BPF (except for armel) (Closes: #872560)
        * usb: Enable USBIP_CORE, USBIP_VHCI_HCD, USBIP_HOST, USBIP_VUDC as
          modules on all architectures (Closes: #888042)
        * [x86] Rewrite "Make x32 syscall support conditional on a kernel parameter"
          to use a static key
      
        [ Salvatore Bonaccorso ]
        * (Temporarily) disable armel kernel image build.
          The armel/marvell kernel size is growing to large and the compressed
          image is over the limit.
          Given the armel architecture will most likely not be part of Buster,
          disable the image build.
          Cf. https://lists.debian.org/debian-kernel/2018/01/msg00278.html
        * Set ABI to 1
      
      linux (4.15~rc8-1~exp1) experimental; urgency=medium
      
        * New upstream release candidate
          - RDS: Heap OOB write in rds_message_alloc_sgs() (CVE-2018-5332)
          - RDS: null pointer dereference in rds_atomic_free_op (CVE-2018-5333)
          - loop: fix concurrent lo_open/lo_release (CVE-2018-5344)
      
        [ Ben Hutchings ]
        * [arm64] Update "add kernel config option to lock down when in Secure Boot
          mode" for 4.15
        * efi: Enable LOCK_DOWN_IN_EFI_SECURE_BOOT, replacing
          EFI_SECURE_BOOT_LOCK_DOWN
        * iio: Enable AD5446 as module, replacing TI_DAC7512
      
      linux (4.15~rc5-1~exp1) experimental; urgency=medium
      
        * New upstream release candidate
      
        [ Riku Voipio ]
        * [arm64] udeb: add multifunction devices
        * [arm64] udeb: add mvebu comphy for armada 8K
      
        [ Ben Hutchings ]
        * aufs: Update support patchset to aufs4.x-rcN-20171218
        * lockdown: Update patchset to 2017-11-10 version
        * lockdown: Update calls to kernel_is_locked_down() in "mtd: Disable slram and
          phram when locked down"
        * cpupower: Move library to multiarch directory
        * [rt] Disable until it is updated for 4.15 or later
        * linux-kbuild: Add objtool
      
      linux (4.14.17-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.14
          - dm bufio: fix shrinker scans when (nr_to_scan < retain_target)
          - can: gs_usb: fix return value of the "set_bittiming" callback
          - IB/srpt: Disable RDMA access by the initiator
          - IB/srpt: Fix ACL lookup during login
          - [mips*] Validate PR_SET_FP_MODE prctl(2) requests against the ABI of the
            task
          - [mips*] Factor out NT_PRFPREG regset access helpers
          - [mips*] Guard against any partial write attempt with PTRACE_SETREGSET
          - [mips*] Consistently handle buffer counter with PTRACE_SETREGSET
          - [mips*] Fix an FCSR access API regression with NT_PRFPREG and MSA
          - [mips*] Also verify sizeof `elf_fpreg_t' with PTRACE_SETREGSET
          - [mips*] Disallow outsized PTRACE_SETREGSET NT_PRFPREG regset accesses
          - cgroup: fix css_task_iter crash on CSS_TASK_ITER_PROC (Closes: #888954)
          - [x86] kvm: vmx: Scrub hardware GPRs at VM-exit (partial mitigation of
            CVE-2017-5715, CVE-2017-5753)
          - [x86] platform: wmi: Call acpi_wmi_init() later
          - iw_cxgb4: only call the cq comp_handler when the cq is armed
          - iw_cxgb4: atomically flush the qp
          - iw_cxgb4: only clear the ARMED bit if a notification is needed
          - iw_cxgb4: reflect the original WR opcode in drain cqes
          - iw_cxgb4: when flushing, complete all wrs in a chain
          - [x86] acpi: Handle SCI interrupts above legacy space gracefully
          - ALSA: pcm: Remove incorrect snd_BUG_ON() usages
          - ALSA: pcm: Workaround for weird PulseAudio behavior on rewind error
          - ALSA: pcm: Add missing error checks in OSS emulation plugin builder
          - ALSA: pcm: Abort properly at pending signal in OSS read/write loops
          - ALSA: pcm: Allow aborting mutex lock at OSS read/write loops
          - ALSA: aloop: Release cable upon open error path
          - ALSA: aloop: Fix inconsistent format due to incomplete rule
          - ALSA: aloop: Fix racy hw constraints adjustment
          - [x86] acpi: Reduce code duplication in mp_override_legacy_irq()
          - 8021q: fix a memory leak for VLAN 0 device
          - ip6_tunnel: disable dst caching if tunnel is dual-stack
          - net: core: fix module type in sock_diag_bind
          - RDS: Heap OOB write in rds_message_alloc_sgs() (CVE-2018-5332)
          - RDS: null pointer dereference in rds_atomic_free_op (CVE-2018-5333)
          - net: fec: restore dev_id in the cases of probe error
          - net: fec: defer probe if regulator is not ready
          - net: fec: free/restore resource in related probe error pathes
          - sctp: do not retransmit upon FragNeeded if PMTU discovery is disabled
          - sctp: fix the handling of ICMP Frag Needed for too small MTUs
          - [arm64, armhf] net: stmmac: enable EEE in MII, GMII or RGMII only
          - ipv6: fix possible mem leaks in ipv6_make_skb()
          - net/sched: Fix update of lastuse in act modules implementing
            stats_update
          - ipv6: sr: fix TLVs not being copied using setsockopt
          - sfp: fix sfp-bus oops when removing socket/upstream
          - membarrier: Disable preemption when calling smp_call_function_many()
          - crypto: algapi - fix NULL dereference in crypto_remove_spawns()
          - rbd: reacquire lock should update lock owner client id
          - rbd: set max_segments to USHRT_MAX
          - iwlwifi: pcie: fix DMA memory mapping / unmapping
          - [x86] microcode/intel: Extend BDW late-loading with a revision check
          - [x86] KVM: Add memory barrier on vmcs field lookup
          - [powerpc*] KVM: Book3S PR: Fix WIMG handling under pHyp
          - [powerpc*] KVM: Book3S HV: Drop prepare_done from struct kvm_resize_hpt
          - [powerpc*] KVM: Book3S HV: Fix use after free in case of multiple resize
            requests
          - [powerpc*] KVM: Book3S HV: Always flush TLB in kvmppc_alloc_reset_hpt()
          - [x86] drm/vmwgfx: Don't cache framebuffer maps
          - [x86] drm/vmwgfx: Potential off by one in vmw_view_add()
          - [x86] drm/i915/gvt: Clear the shadow page table entry after post-sync
          - [x86] drm/i915: Whitelist SLICE_COMMON_ECO_CHICKEN1 on Geminilake.
          - [x86] drm/i915: Move init_clock_gating() back to where it was
          - [x86] drm/i915: Fix init_clock_gating for resume
          - bpf: prevent out-of-bounds speculation (partial mitigation of
            CVE-2017-5753)
          - bpf, array: fix overflow in max_entries and undefined behavior in
            index_mask
          - bpf: arsh is not supported in 32 bit alu thus reject it
          - [arm64, armhf] usb: misc: usb3503: make sure reset is low for at least
            100us
          - USB: fix usbmon BUG trigger
          - USB: UDC core: fix double-free in usb_add_gadget_udc_release
          - usbip: remove kernel addresses from usb device and urb debug msgs
          - usbip: fix vudc_rx: harden CMD_SUBMIT path to handle malicious input
          - usbip: vudc_tx: fix v_send_ret_submit() vulnerability to null xfer
            buffer
          - staging: android: ashmem: fix a race condition in ASHMEM_SET_SIZE ioctl
            (CVE-2017-13216)
          - mux: core: fix double get_device()
          - kdump: write correct address of mem_section into vmcoreinfo
          - apparmor: fix ptrace label match when matching stacked labels
          - [x86] pti: Unbreak EFI old_memmap
          - [x86] Documentation: Add PTI description
          - [x86] cpufeatures: Add X86_BUG_SPECTRE_V[12]
          - sysfs/cpu: Add vulnerability folder
          - [x86] cpu: Implement CPU vulnerabilites sysfs functions
          - [x86] tboot: Unbreak tboot with PTI enabled
          - [x86] mm/pti: Remove dead logic in pti_user_pagetable_walk*()
          - [x86] cpu/AMD: Make LFENCE a serializing instruction
          - [x86] cpu/AMD: Use LFENCE_RDTSC in preference to MFENCE_RDTSC
          - [x86] alternatives: Fix optimize_nops() checking
          - [x86] pti: Make unpoison of pgd for trusted boot work for real
          - [x86] retpoline: Add initial retpoline support (partial mitigation of
            CVE-2017-5715)
          - [x86] spectre: Add boot time option to select Spectre v2 mitigation
          - [x86] retpoline/crypto: Convert crypto assembler indirect jumps
          - [x86] retpoline/entry: Convert entry assembler indirect jumps
          - [x86] retpoline/ftrace: Convert ftrace assembler indirect jumps
          - [x86] retpoline/hyperv: Convert assembler indirect jumps
          - [x86] retpoline/xen: Convert Xen hypercall indirect jumps
          - [x86] retpoline/checksum32: Convert assembler indirect jumps
          - [x86] retpoline/irq32: Convert assembler indirect jumps
          - [x86] retpoline: Fill return stack buffer on vmexit
          - [x86] pti: Fix !PCID and sanitize defines
          - [x86] perf: Disable intel_bts when PTI
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.15
          - tools/objtool/Makefile: don't assume sync-check.sh is executable
          - objtool: Fix seg fault with clang-compiled objects
          - objtool: Fix Clang enum conversion warning
          - objtool: Fix seg fault caused by missing parameter
          - [powerpc*] pseries: Add H_GET_CPU_CHARACTERISTICS flags & wrapper
          - [powerpc*] 64: Add macros for annotating the destination of rfid/hrfid
          - [powerpc*] 64s: Simple RFI macro conversions
          - [powerpc*] 64: Convert the syscall exit path to use RFI_TO_USER/KERNEL
          - [powerpc*] 64: Convert fast_exception_return to use RFI_TO_USER/KERNEL
          - [powerpc*] 64s: Convert slb_miss_common to use RFI_TO_USER/KERNEL
          - [powerpc*] 64s: Add support for RFI flush of L1-D cache
          - [powerpc*] 64s: Support disabling RFI flush with no_rfi_flush and nopti
          - [powerpc*] pseries: Query hypervisor for RFI flush settings
          - [powerpc*] powernv: Check device-tree for RFI flush settings
          - futex: Avoid violating the 10th rule of futex
          - futex: Prevent overflow by strengthen input validation (CVE-2018-6927)
          - ALSA: seq: Make ioctls race-free (CVE-2018-1000004)
          - ALSA: pcm: Remove yet superfluous WARN_ON()
          - ALSA: hda - Apply headphone noise quirk for another Dell XPS 13 variant
          - ALSA: hda - Apply the existing quirk to iMac 14,1
          - IB/hfi1: Prevent a NULL dereference
          - RDMA/mlx5: Fix out-of-bound access while querying AH
          - timers: Unconditionally check deferrable base
          - af_key: fix buffer overread in verify_address_len()
          - af_key: fix buffer overread in parse_exthdrs()
          - iser-target: Fix possible use-after-free in connection establishment
            error
          - delayacct: Account blkio completion on the correct task
          - objtool: Fix seg fault with gold linker
          - [armhf] mmc: sdhci-esdhc-imx: Fix i.MX53 eSDHCv3 clock
          - [x86] kasan: Panic if there is not enough memory to boot
          - [x86] retpoline: Fill RSB on context switch for affected CPUs
          - [x86] retpoline: Add LFENCE to the retpoline/RSB filling RSB macros
          - objtool: Improve error message for bad file argument
          - [x86] cpufeature: Move processor tracing out of scattered features
          - [x86] intel_rdt/cqm: Prevent use after free
          - [x86] mm/pkeys: Fix fill_sig_info_pkey
          - [x86] idt: Mark IDT tables __initconst
          - [x86] tsc: Future-proof native_calibrate_tsc()
          - [x86] tsc: Fix erroneous TSC rate on Skylake Xeon
          - pipe: avoid round_pipe_size() nr_pages overflow on 32-bit
          - [x86] apic/vector: Fix off by one in error path
          - [x86] mm: Clean up register saving in the __enc_copy() assembly code
          - [x86] mm: Use a struct to reduce parameters for SME PGD mapping
          - [x86] mm: Centralize PMD flags in sme_encrypt_kernel()
          - [x86] mm: Prepare sme_encrypt_kernel() for PAGE aligned encryption
          - [armhf] OMAP3: hwmod_data: add missing module_offs for MMC3
          - [x86] mm: Encrypt the initrd earlier for BSP microcode update
          - Input: ALPS - fix multi-touch decoding on SS4 plus touchpads
          - Input: synaptics-rmi4 - prevent UAF reported by KASAN
          - [armhf] Input: twl6040-vibra - fix child-node lookup
          - [armhf] Input: twl4030-vibra - fix sibling-node lookup
          - tracing: Fix converting enum's from the map in trace_event_eval_update()
          - phy: work around 'phys' references to usb-nop-xceiv devices
          - [arm64] dts: marvell: armada-cp110: Fix clock resources for various node
          - [armhf] sunxi_defconfig: Enable CMA
          - [armel] dts: kirkwood: fix pin-muxing of MPP7 on OpenBlocks A7
          - can: peak: fix potential bug in packet fragmentation
          - can: af_can: can_rcv(): replace WARN_ONCE by pr_warn_once
          - can: af_can: canfd_rcv(): replace WARN_ONCE by pr_warn_once
          - i2c: core-smbus: prevent stack corruption on read I2C_BLOCK_DATA
          - proc: fix coredump vs read /proc/*/stat race
          - libata: apply MAX_SEC_1024 to all LITEON EP1 series devices
          - workqueue: avoid hard lockups in show_workqueue_state()
          - [x86] drm/vmwgfx: fix memory corruption with legacy/sou connectors
          - dm btree: fix serious bug in btree_split_beneath()
          - dm thin metadata: THIN_MAX_CONCURRENT_LOCKS should be 6
          - dm integrity: don't store cipher request on the stack
          - dm crypt: fix crash by adding missing check for auth key size
          - dm crypt: wipe kernel key copy after IV initialization
          - dm crypt: fix error return code in crypt_ctr()
          - [x86] x86: Use __nostackprotect for sme_encrypt_kernel
          - [alpha] PCI: Fix noname IRQ level detection
          - [mips*] CM: Drop WARN_ON(vp != 0)
          - [arm*] KVM: Check pagesize when allocating a hugepage at Stage 2
          - [arm64] KVM: Fix SMCCC handling of unimplemented SMC/HVC calls
          - [x86] mce: Make machine check speculation protected
          - retpoline: Introduce start/end markers of indirect thunk
          - [x86] kprobes: Blacklist indirect thunk functions for kprobes
          - [x86] kprobes: Disable optimizing on the function jumps to indirect
            thunk
          - [x86] retpoline: Optimize inline assembler for vmexit_fill_RSB
          - [x86] mm: Rework wbinvd, hlt operation in stop_this_cpu()
          - mm, page_vma_mapped: Drop faulty pointer arithmetics in check_pte()
          - [arm64, armhf] net: mvpp2: do not disable GMAC padding
          - [mips]: AR7: ensure the port type's FCR value is used
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.16
          - mm, page_alloc: fix potential false positive in __zone_watermark_ok
          - xfrm: Fix a race in the xdst pcpu cache.
          - Input: xpad - add support for PDP Xbox One controllers
          - Input: trackpoint - force 3 buttons if 0 button is reported
          - Input: trackpoint - only expose supported controls for Elan, ALPS and
            NXP
          - Btrfs: fix stale entries in readdir
          - [s390x] KVM: add proper locking for CMMA migration bitmap
          - [arm*] net: bpf: avoid 'bx' instruction on non-Thumb capable CPUs
          - [arm*] net: bpf: fix tail call jumps
          - [arm*] net: bpf: fix stack alignment
          - [arm*] net: bpf: move stack documentation
          - [arm*] net: bpf: correct stack layout documentation
          - [arm*] net: bpf: fix register saving
          - [arm*] net: bpf: fix LDX instructions
          - [arm*] net: bpf: clarify tail_call index
          - [arm64,armhf] drm/vc4: Fix NULL pointer dereference in
            vc4_save_hang_state()
          - net: Allow neigh contructor functions ability to modify the primary_key
          - ipv4: Make neigh lookup keys for loopback/point-to-point devices be
            INADDR_ANY
          - dccp: don't restart ccid2_hc_tx_rto_expire() if sk in closed state
          - ipv6: Fix getsockopt() for sockets with default IPV6_AUTOFLOWLABEL
          - ipv6: fix udpv6 sendmsg crash caused by too small MTU
          - ipv6: ip6_make_skb() needs to clear cork.base.dst
          - lan78xx: Fix failure in USB Full Speed
          - net: igmp: fix source address check for IGMPv3 reports
          - net: qdisc_pkt_len_init() should be more robust
          - net: tcp: close sock if net namespace is exiting
          - net/tls: Fix inverted error codes to avoid endless loop
          - net: vrf: Add support for sends to local broadcast address
          - pppoe: take ->needed_headroom of lower device into account on xmit
          - r8169: fix memory corruption on retrieval of hardware statistics.
          - sctp: do not allow the v4 socket to bind a v4mapped v6 address
          - sctp: return error if the asoc has been peeled off in
            sctp_wait_for_sndbuf
          - tipc: fix a memory leak in tipc_nl_node_get_link()
          - {net,ib}/mlx5: Don't disable local loopback multicast traffic when
            needed
          - net/mlx5: Fix get vector affinity helper function
          - ppp: unlock all_ppp_mutex before registering device
          - be2net: restore properly promisc mode after queues reconfiguration
          - ip6_gre: init dev->mtu and dev->hard_header_len correctly
          - gso: validate gso_type in GSO handlers
          - tun: fix a memory leak for tfile->tx_array
          - flow_dissector: properly cap thoff field
          - sctp: reinit stream if stream outcnt has been change by sinit in sendmsg
          - netlink: extack needs to be reset each time through loop
          - net/mlx5e: Fix fixpoint divide exception in mlx5e_am_stats_compare
          - nfp: use the correct index for link speed table
          - netlink: reset extack earlier in netlink_rcv_skb
          - net/tls: Only attach to sockets in ESTABLISHED state
          - tls: fix sw_ctx leak
          - tls: return -EBUSY if crypto_info is already set
          - tls: reset crypto_info when do_tls_setsockopt_tx fails
          - net: ipv4: Make "ip route get" match iif lo rules again.
          - vmxnet3: repair memory leak
          - perf/x86/amd/power: Do not load AMD power module on !AMD platforms
          - [x86] microcode/intel: Extend BDW late-loading further with LLC size
            check
          - [x86] microcode: Fix again accessing initrd after having been freed
          - [x86] mm/64: Fix vmapped stack syncing on very-large-memory 4-level
            systems
          - hrtimer: Reset hrtimer cpu base proper on CPU hotplug
          - bpf: introduce BPF_JIT_ALWAYS_ON config
          - bpf: fix divides by zero
          - bpf: fix 32-bit divide by zero
          - bpf: reject stores into ctx via st and xadd
          - [arm64] bpf: fix stack_depth tracking in combination with tail calls
          - cpufreq: governor: Ensure sufficiently large sampling intervals
          - nfsd: auth: Fix gid sorting when rootsquash enabled (CVE-2018-1000028)
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.17
          - futex: Fix OWNER_DEAD fixup
          - loop: fix concurrent lo_open/lo_release (CVE-2018-5344)
          - [x86] KVM: Fix CPUID function for word 6 (80000001_ECX)
          - gpio: Fix kernel stack leak to userspace
          - ALSA: hda - Reduce the suspend time consumption for ALC256
          - crypto: ecdh - fix typo in KPP dependency of CRYPTO_ECDH
          - [x86] crypto: aesni - handle zero length dst buffer
          - [x86] crypto: aesni - fix typo in generic_gcmaes_decrypt
          - crypto: gcm - add GCM IV size constant
          - [x86] crypto: aesni - Use GCM IV size constant
          - [x86] crypto: aesni - add wrapper for generic gcm(aes)
          - [x86] crypto: aesni - Fix out-of-bounds access of the data buffer in
            generic-gcm-aesni
          - [x86] crypto: aesni - Fix out-of-bounds access of the AAD buffer in
            generic-gcm-aesni
          - [arm64] crypto: inside-secure - fix hash when length is a multiple of a
            block
          - [arm64] crypto: inside-secure - avoid unmapping DMA memory that was not
            mapped
          - crypto: sha3-generic - fixes for alignment and big endian operation
          - crypto: af_alg - whitelist mask and type
          - HID: wacom: EKR: ensure devres groups at higher indexes are released
          - HID: wacom: Fix reporting of touch toggle (WACOM_HID_WD_MUTE_DEVICE)
            events
          - igb: Free IRQs when device is hotplugged
          - ima/policy: fix parsing of fsuuid
          - scsi: aacraid: Fix udev inquiry race condition
          - scsi: aacraid: Fix hang in kdump
          - VFS: Handle lazytime in do_mount()
          - [arm64,armhf] drm/vc4: Account for interrupts in flight
          - btrfs: Fix transaction abort during failure in btrfs_rm_dev_item
          - Btrfs: bail out gracefully rather than BUG_ON
          - cpupowerutils: bench - Fix cpu online check
          - cpupower : Fix cpupower working when cpu0 is offline
          - [x86] KVM: nVMX/nSVM: Don't intercept #UD when running L2
          - [x86] KVM: emulator: Return to user-mode on L1 CPL=0 emulation failure
          - [x86] KVM: Don't re-execute instruction when not passing CR2 value
          - [x86] KVM: Fix operand/address-size during instruction decoding
          - [x86] KVM: nVMX: Fix mmu context after VMLAUNCH/VMRESUME failure
          - [x86] KVM: fix em_fxstor() sleeping while in atomic
          - [x86] KVM: ioapic: Fix level-triggered EOI and IOAPIC reconfigure race
          - [x86] KVM: ioapic: Clear Remote IRR when entry is switched to
            edge-triggered
          - [x86] KVM: ioapic: Preserve read-only values in the redirection table
          - [x86] KVM: nVMX: Fix vmx_check_nested_events() return value in case an
            event was reinjected to L2
          - nvme-fabrics: introduce init command check for a queue that is not alive
          - nvme-fc: check if queue is ready in queue_rq
          - nvme-loop: check if queue is ready in queue_rq
          - nvme-pci: disable APST on Samsung SSD 960 EVO + ASUS PRIME B350M-A
          - nvme-pci: avoid hmb desc array idx out-of-bound when hmmaxd set.
          - nvmet-fc: correct ref counting error when deferred rcv used
          - [s390x] topology: fix compile error in file arch/s390/kernel/smp.c
          - [s390x] zcrypt: Fix wrong comparison leading to strange load balancing
          - ACPI / bus: Leave modalias empty for devices which are not present
          - null_blk: fix dev->badblocks leak
          - [s390x] fix alloc_pgste check in init_new_context again
          - rxrpc: The mutex lock returned by rxrpc_accept_call() needs releasing
          - rxrpc: Provide a different lockdep key for call->user_mutex for kernel
            calls
          - rxrpc: Fix service endpoint expiry
          - bcache: check return value of register_shrinker
          - drm/amdgpu: Fix SDMA load/unload sequence on HWS disabled mode
          - [x86] drm/amdkfd: Fix SDMA ring buffer size calculation
          - [x86] drm/amdkfd: Fix SDMA oversubsription handling
          - uapi: fix linux/kfd_ioctl.h userspace compilation errors
          - nvme-rdma: don't complete requests before a send work request has
            completed
          - openvswitch: fix the incorrect flow action alloc size
          - [armhf] drm/rockchip: dw-mipi-dsi: fix possible un-balanced runtime PM
            enable
          - mac80211: use QoS NDP for AP probing
          - mac80211: fix the update of path metric for RANN frame
          - btrfs: fix deadlock when writing out space cache
          - sctp: only allow the asoc reset when the asoc outq is empty
          - sctp: avoid flushing unsent queue when doing asoc reset
          - sctp: set sender next_tsn for the old result with ctsn_ack_point plus 1
          - reiserfs: remove unneeded i_version bump
          - [x86] KVM: Fix softlockup when get the current kvmclock
          - [x86] KVM: VMX: Fix rflags cache during vCPU reset
          - Btrfs: fix list_add corruption and soft lockups in fsync
          - KVM: Let KVM_SET_SIGNAL_MASK work as advertised
          - xfs: always free inline data before resetting inode fork during ifree
          - xfs: log recovery should replay deferred ops in order
          - xen-netfront: remove warning when unloading module
          - nfsd: CLOSE SHOULD return the invalid special stateid for NFSv4.x (x>0)
          - nfsd: Ensure we check stateid validity in the seqid operation checks
          - grace: replace BUG_ON by WARN_ONCE in exit_net hook
          - nfsd: check for use of the closed special stateid
          - race of lockd inetaddr notifiers vs nlmsvc_rqst change
          - lockd: fix "list_add double add" caused by legacy signal interface
          - quota: propagate error from __dquot_initialize
          - [arm64,armhf] net: mvpp2: fix the txq_init error path
          - [arm64] net: phy: marvell10g: fix the PHY id mask
          - bnxt_en: Fix an error handling path in 'bnxt_get_module_eeprom()'
          - Btrfs: incremental send, fix wrong unlink path after renaming file
          - nvme-pci: fix NULL pointer dereference in nvme_free_host_mem()
          - xfs: fortify xfs_alloc_buftarg error handling
          - drm/amdgpu: don't try to move pinned BOs
          - quota: Check for register_shrinker() failure.
          - SUNRPC: Allow connect to return EHOSTUNREACH
          - kmemleak: add scheduling point to kmemleak_scan()
          - [armhf] drm/omap: Fix error handling path in 'omap_dmm_probe()'
          - [armhf] drm/omap: displays: panel-dpi: add backlight dependency
          - xfs: ubsan fixes
          - xfs: Properly retry failed dquot items in case of error during buffer
            writeback
          - perf/core: Fix memory leak triggered by perf --namespace
          - scsi: aacraid: Prevent crash in case of free interrupt during scsi EH
            path
          - scsi: ufs: ufshcd: fix potential NULL pointer dereference in
            ufshcd_config_vreg
          - iwlwifi: mvm: fix the TX queue hang timeout for MONITOR vif type
          - iwlwifi: fix access to prph when transport is stopped
          - [arm*] dts: NSP: Disable AHCI controller for HR NSP boards
          - [arm*] ARM: dts: NSP: Fix PPI interrupt types
          - media: usbtv: add a new usbid
          - [x86] xen: Support early interrupts in xen pv guests
          - usb: gadget: don't dereference g until after it has been null checked
          - staging: rtl8188eu: Fix incorrect response to SIOCGIWESSID
          - [arm64,armhf] drm/vc4: Move IRQ enable to PM path
          - [x86] KVM: emulate #UD while in guest mode
          - [x86] staging: lustre: separate a connection destroy from free struct
            kib_conn
          - tty: fix data race between tty_init_dev and flush of buf
          - USB: serial: pl2303: new device id for Chilitag
          - USB: cdc-acm: Do not log urb submission errors on disconnect
          - CDC-ACM: apply quirk for card reader
          - USB: serial: io_edgeport: fix possible sleep-in-atomic
          - usbip: prevent bind loops on devices attached to vhci_hcd
          - usbip: list: don't list devices attached to vhci_hcd
          - USB: serial: simple: add Motorola Tetra driver
          - usb: f_fs: Prevent gadget unbind if it is already unbound
          - usb: uas: unconditionally bring back host after reset
          - usb/gadget: Fix "high bandwidth" check in usb_gadget_ep_match_desc()
          - [x86] mei: me: allow runtime pm for platform with D0i3
          - serial: 8250_of: fix return code when probe function fails to get reset
          - serial: 8250_uniphier: fix error return code in uniphier_uart_probe()
          - [armhf] serial: imx: Only wakeup via RTSDEN bit if the system has
            RTS/CTS
          - [armhf] spi: imx: do not access registers while clocks disabled
          - iio: adc: stm32: fix scan of multiple channels with DMA
          - iio: chemical: ccs811: Fix output of IIO_CONCENTRATION channels
          - test_firmware: fix missing unlock on error in
            config_num_requests_store()
          - Input: synaptics-rmi4 - unmask F03 interrupts when port is opened
          - Input: synaptics-rmi4 - do not delete interrupt memory too early
          - [x86] efi: Clarify that reset attack mitigation needs appropriate
            userspace
      
        [ Salvatore Bonaccorso ]
        * [rt] Update to 4.14.15-rt11
        * [rt] Update to 4.14.15-rt13
        * crypto: ecc - Fix NULL pointer deref. on no default_rng (Closes: #886556)
        * mac80211: Avoid ABI change in 4.14.17
        * rxrpc: Avoid ABI change in 4.14.17
      
        [ Ben Hutchings ]
        * bpf: Avoid ABI change in 4.14.14
        * usbip: Reduce USBIP_VHCI_HC_PORTS to 15, the maximum allowed for SuperSpeed
          hubs (Closes: #878866)
        * [x86] Add versioned build-dependency on gcc-7 for retpoline support
        * [x86] linux-compiler-gcc-7-x86: Add versioned dependency on gcc-7 for
          retpoline support
        * linux-compiler-gcc-7-{arm,s390,x86}: Remove specific (and wrong) compiler
          version from description (Closes: #883363)
        * [x86] linux-headers: Depend on updated linux-compiler-gcc-7-x86
      
        [ Riku Voipio ]
        * [arm64] build in reset drivers
        * [arm64] enable COMMON_CLK_HI655X so wifi and bluetooth work on Hikey
      f7163094
    • Lorenzo "Palinuro" Faletra's avatar
      fa1fc888
  4. 21 Jan, 2018 3 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.14.13-1parrot13 · 30c67243
      Lorenzo "Palinuro" Faletra authored
      linux (4.14.13-1parrot13) testing; urgency=medium
      
        * Import new Debian release.
        * Re-include parrot-specific patches.
        * Add libelf-dev as a recommended package of linux-image-* packages.
      30c67243
    • Ben Hutchings's avatar
      Import Debian changes 4.14.13-1 · c764d2ff
      Ben Hutchings authored and Lorenzo "Palinuro" Faletra's avatar Lorenzo "Palinuro" Faletra committed
      linux (4.14.13-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.13
          - [x86] mm: Set MODULES_END to 0xffffffffff000000
          - [x86] mm: Map cpu_entry_area at the same place on 4/5 level
          - [x86] kaslr: Fix the vaddr_end mess
          - [x86] events/intel/ds: Use the proper cache flush method for mapping ds
            buffers
          - [x86] alternatives: Add missing '\n' at end of ALTERNATIVE inline asm
          - [x86] pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN
          - kernel/acct.c: fix the acct->needcheck check in check_free_space()
          - mm/mprotect: add a cond_resched() inside change_pmd_range()
          - mm/sparse.c: wrong allocation for mem_section
          - userfaultfd: clear the vma->vm_userfaultfd_ctx if UFFD_EVENT_FORK fails
          - btrfs: fix refcount_t usage when deleting btrfs_delayed_nodes
          - efi/capsule-loader: Reinstate virtual capsule mapping
          - [sparc*] crypto: n2 - cure use after free
          - crypto: chacha20poly1305 - validate the digest size
          - crypto: pcrypt - fix freeing pcrypt instances
          - crypto: chelsio - select CRYPTO_GF128MUL
          - [x86] drm/i915: Disable DC states around GMBUS on GLK
          - [x86] drm/i915: Apply Display WA #1183 on skl, kbl, and cfl
          - fscache: Fix the default for fscache_maybe_release_page()
          - [x86] CPU: Avoid unnecessary IPIs in arch_freq_get_on_cpu()
          - [x86] CPU: Always show current CPU frequency in /proc/cpuinfo
          - kernel/signal.c: protect the traced SIGNAL_UNKILLABLE tasks from SIGKILL
          - kernel/signal.c: protect the SIGNAL_UNKILLABLE tasks from
            !sig_kernel_only() signals
          - kernel/signal.c: remove the no longer needed SIGNAL_UNKILLABLE check in
            complete_signal()
          - [arm64] iommu/arm-smmu-v3: Don't free page table ops twice
          - [arm64] iommu/arm-smmu-v3: Cope with duplicated Stream IDs
          - [powerpc* ]mm: Fix SEGV on mapped region to return SEGV_ACCERR
          - Input: elantech - add new icbody type 15
          - [x86] microcode/AMD: Add support for fam17h microcode loading
          - apparmor: fix regression in mount mediation when feature set is pinned
          - [hppa/parisc] Fix alignment of pa_tlb_lock in assembly on 32-bit SMP
            kernel
          - [hppa/parisc] qemu idle sleep support
          - mtd: nand: pxa3xx: Fix READOOB implementation
          - [s390x] KVM: fix cmma migration for multiple memory slots
          - [s390x] KVM: prevent buffer overrun on memory hotplug during migration
      
        [ Salvatore Bonaccorso ]
        * libsas: Disable asynchronous aborts for SATA devices
        * drm/nouveau/disp/gf119: add missing drive vfunc ptr (Closes: #880660)
      
        [ Riku Voipio ]
        * [arm64] disable CONFIG_HW_RANDOM_OMAP until the IRQ storm bug is fixed
      
        [ Ben Hutchings ]
        * abiupdate.py: Add support for security mirrors
        * Fix dependencies related to objtool (Closes: #886474):
          - linux-headers: Add versioned dependency on linux-kbuild
          - Revert "objtool: Fix CONFIG_STACK_VALIDATION=y warning for out-of-tree
            modules"
      c764d2ff
    • Lorenzo "Palinuro" Faletra's avatar
      f0b500ea
  5. 07 Jan, 2018 4 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.14.12-2parrot12 · f78617d9
      Lorenzo "Palinuro" Faletra authored
      linux (4.14.12-2parrot12) testing; urgency=medium
      
        * Import new Debian release.
        * Update Parrot patches.
      
      linux (4.14.12-2) unstable; urgency=medium
      
        [ Ben Hutchings ]
        * linux-kbuild: Add objtool
        * linux-headers: Add symlink to linux-kbuild tools directory for objtool
      
        [ Salvatore Bonaccorso ]
        * linux-headers: Add symlink to linux-kbuild tools directory for objtool in
          architecture-specific headers package.
          Thanks to Luca Boccassi (Closes: #886366)
      
      linux (4.14.12-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.8
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.9
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.10
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.11
          - x86/cpufeatures: Add X86_BUG_CPU_INSECURE
          - x86/mm/pti: Disable global pages if PAGE_TABLE_ISOLATION=y
          - x86/mm/pti: Prepare the x86/entry assembly code for entry/exit CR3
            switching
          - x86/mm/pti: Add infrastructure for page table isolation
          - x86/pti: Add the pti= cmdline option and documentation
          - x86/mm/pti: Add mapping helper functions
          - x86/mm/pti: Allow NX poison to be set in p4d/pgd
          - x86/mm/pti: Allocate a separate user PGD
          - x86/mm/pti: Populate user PGD
          - x86/mm/pti: Add functions to clone kernel PMDs
          - x86/mm/pti: Force entry through trampoline when PTI active
          - x86/mm/pti: Share cpu_entry_area with user space page tables
          - x86/entry: Align entry text section to PMD boundary
          - x86/mm/pti: Share entry text PMD
          - x86/mm/pti: Map ESPFIX into user space
          - x86/cpu_entry_area: Add debugstore entries to cpu_entry_area
          - x86/events/intel/ds: Map debug buffers in cpu_entry_area
          - x86/mm/64: Make a full PGD-entry size hole in the memory map
          - x86/pti: Put the LDT in its own PGD if PTI is on
          - x86/pti: Map the vsyscall page if needed
          - x86/mm: Allow flushing for future ASID switches
          - x86/mm: Abstract switching CR3
          - x86/mm: Use/Fix PCID to optimize user/kernel switches
          - x86/mm: Optimize RESTORE_CR3
          - x86/mm: Use INVPCID for __native_flush_tlb_single()
          - x86/mm: Clarify the whole ASID/kernel PCID/user PCID naming
          - x86/dumpstack: Indicate in Oops whether PTI is configured and enabled
          - x86/mm/pti: Add Kconfig
          - net: Fix double free and memory corruption in get_net_ns_by_id()
            (CVE-2017-15129)
        * [amd64] Implement Kernel Page Table Isolation (KPTI, aka KAISER)
          (CVE-2017-5754)
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.12
          - exec: Weaken dumpability for secureexec
          - capabilities: fix buffer overread on very short xattr
          - x86/cpu, x86/pti: Do not enable PTI on AMD processors
          - x86/pti: Make sure the user/kernel PTEs match
          - x86/dumpstack: Fix partial register dumps
          - x86/dumpstack: Print registers for first stack frame
          - x86/pti: Switch to kernel CR3 at early in entry_SYSCALL_compat()
          - x86/process: Define cpu_tss_rw in same section as declaration
      
      
        [ Ben Hutchings ]
        * e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
          (Closes: #885348)
      
        [ Vagrant Cascadian ]
        * [arm64] Backport patch from linux-next to support SMP on tegra210
          systems.
      
        [ Salvatore Bonaccorso ]
        * [rt] Update to 4.14.8-rt9
        * Bump ABI to 3
        * Revert "scsi: libsas: allow async aborts"
          Fixes "Oops: NULL pointer dereference - RIP:
          isci_task_abort_task+0x30/0x3e0 [isci]" (Closes: #882414)
        * x86/tlb: Drop the _GPL from the cpu_tlbstate export
      f78617d9
    • Lorenzo "Palinuro" Faletra's avatar
      2dcbc7be
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.14.7-1parrot7 · f2b62eb2
      Lorenzo "Palinuro" Faletra authored
      linux (4.14.7-1parrot7) testing; urgency=medium
      
        * Import new Debian release.
        * Re-include parrot patches.
      
      linux (4.14.7-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.3
          - [s390x] fix transactional execution control register handling
          - [s390x] noexec: execute kexec datamover without DAT
          - [s390x] runtime instrumention: fix possible memory corruption
          - [s390x] guarded storage: fix possible memory corruption
          - [s390x] disassembler: add missing end marker for e7 table
          - [s390x] disassembler: increase show_code buffer size
          - ACPI / PM: Fix acpi_pm_notifier_lock vs flush_workqueue() deadlock
          - ACPI / EC: Fix regression related to triggering source of EC event
            handling
          - cpufreq: schedutil: Reset cached_raw_freq when not in sync with next_freq
          - serdev: fix registration of second slave
          - sched: Make resched_cpu() unconditional
          - lib/mpi: call cond_resched() from mpi_powm() loop
          - [x86] boot: Fix boot failure when SMP MP-table is based at 0
          - [x86] decoder: Add new TEST instruction pattern
          - [amd64] entry: Fix entry_SYSCALL_64_after_hwframe() IRQ tracing
          - [x86] perf: intel: Hide TSX events when RTM is not supported
          - [arm64] Implement arch-specific pte_access_permitted()
          - [armhf/armmp-lpae] 8722/1: mm: make STRICT_KERNEL_RWX effective for LPAE
          - [armhf/armmp-lpae] 8721/1: mm: dump: check hardware RO bit for LPAE
          - uapi: fix linux/tls.h userspace compilation error
          - uapi: fix linux/rxrpc.h userspace compilation errors
          - [mips*/4kc-malta] cmpxchg64() and HAVE_VIRT_CPU_ACCOUNTING_GEN don't work
            for 32-bit SMP
          - [armhf,arm64] net: mvneta: fix handling of the Tx descriptor counter
          - nbd: wait uninterruptible for the dead timeout
          - nbd: don't start req until after the dead connection logic
          - PM / OPP: Add missing of_node_put(np)
          - PCI/ASPM: Account for downstream device's Port Common_Mode_Restore_Time
          - PCI/ASPM: Use correct capability pointer to program LTR_L1.2_THRESHOLD
          - [x86] PCI: hv: Use effective affinity mask
          - [arm64] PCI: Set Cavium ACS capability quirk flags to assert RR/CR/SV/UF
          - [arm64] PCI: Apply Cavium ThunderX ACS quirk to more Root Ports
          - dm integrity: allow unaligned bv_offset
          - dm cache: fix race condition in the writeback mode overwrite_bio
            optimisation
          - dm crypt: allow unaligned bv_offset
          - dm zoned: ignore last smaller runt zone
          - dm mpath: remove annoying message of 'blk_get_request() returned -11'
          - dm bufio: fix integer overflow when limiting maximum cache size
          - ovl: Put upperdentry if ovl_check_origin() fails
          - dm: allocate struct mapped_device with kvzalloc
          - sched/rt: Simplify the IPI based RT balancing logic
          - dm: fix race between dm_get_from_kobject() and __dm_destroy()
          - dm: discard support requires all targets in a table support discards
          - [mips*] Fix odd fp register warnings with MIPS64r2
          - [mips*/4kc-malta] Fix MIPS64 FP save/restore on 32-bit kernels
          - [mips*] dts: remove bogus bcm96358nb4ser.dtb from dtb-y entry
          - [mips*] Fix an n32 core file generation regset support regression
          - [mips*] math-emu: Fix final emulation phase for certain instructions
          - rt2x00usb: mark device removed when get ENOENT usb error
          - mm/z3fold.c: use kref to prevent page free/compact race
          - autofs: don't fail mount for transient error
          - nilfs2: fix race condition that causes file system corruption
          - fscrypt: lock mutex before checking for bounce page pool
          - eCryptfs: use after free in ecryptfs_release_messaging()
          - libceph: don't WARN() if user tries to add invalid key
          - bcache: check ca->alloc_thread initialized before wake up it
          - fs: guard_bio_eod() needs to consider partitions
          - fanotify: fix fsnotify_prepare_user_wait() failure
          - isofs: fix timestamps beyond 2027
          - btrfs: change how we decide to commit transactions during flushing
          - f2fs: expose some sectors to user in inline data or dentry case
          - NFS: Fix typo in nomigration mount option
          - NFS: Revert "NFS: Move the flock open mode check into nfs_flock()"
          - nfs: Fix ugly referral attributes
          - NFS: Avoid RCU usage in tracepoints
          - NFS: revalidate "." etc correctly on "open".
          - nfsd: deal with revoked delegations appropriately
          - rtlwifi: rtl8192ee: Fix memory leak when loading firmware
          - rtlwifi: fix uninitialized rtlhal->last_suspend_sec time
          - iwlwifi: fix firmware names for 9000 and A000 series hw
          - md: fix deadlock error in recent patch.
          - md: don't check MD_SB_CHANGE_CLEAN in md_allow_write
          - Bluetooth: btqcomsmd: Add support for BD address setup
          - md/bitmap: revert a patch
          - fsnotify: clean up fsnotify_prepare/finish_user_wait()
          - fsnotify: pin both inode and vfsmount mark
          - fsnotify: fix pinning group in fsnotify_prepare_user_wait()
          - ata: fixes kernel crash while tracing ata_eh_link_autopsy event
          - ext4: fix interaction between i_size, fallocate, and delalloc after a
            crash
          - ext4: prevent data corruption with inline data + DAX
          - ext4: prevent data corruption with journaling + DAX
          - ALSA: pcm: update tstamp only if audio_tstamp changed
          - ALSA: usb-audio: Add sanity checks to FE parser
          - ALSA: usb-audio: Fix potential out-of-bound access at parsing SU
          - ALSA: usb-audio: Add sanity checks in v2 clock parsers
          - ALSA: timer: Remove kernel warning at compat ioctl error paths
          - ALSA: hda/realtek - Fix ALC275 no sound issue
          - ALSA: hda: Fix too short HDMI/DP chmap reporting
          - ALSA: hda - Fix yet remaining issue with vmaster 0dB initialization
          - ALSA: hda/realtek - Fix ALC700 family no sound issue
          - [x86] mfd: lpc_ich: Avoton/Rangeley uses SPI_BYT method
          - fix a page leak in vhost_scsi_iov_to_sgl() error recovery
          - 9p: Fix missing commas in mount options
          - fs/9p: Compare qid.path in v9fs_test_inode
          - net/9p: Switch to wait_event_killable()
          - scsi: qla2xxx: Suppress a kernel complaint in qla_init_base_qpair()
          - scsi: sd_zbc: Fix sd_zbc_read_zoned_characteristics()
          - scsi: lpfc: fix pci hot plug crash in timer management routines
          - scsi: lpfc: fix pci hot plug crash in list_add call
          - scsi: lpfc: Fix crash receiving ELS while detaching driver
          - scsi: lpfc: Fix FCP hba_wqidx assignment
          - scsi: lpfc: Fix oops if nvmet_fc_register_targetport fails
          - iscsi-target: Make TASK_REASSIGN use proper se_cmd->cmd_kref
          - iscsi-target: Fix non-immediate TMR reference leak
          - target: fix null pointer regression in core_tmr_drain_tmr_list
          - target: fix buffer offset in core_scsi3_pri_read_full_status
          - target: Fix QUEUE_FULL + SCSI task attribute handling
          - target: Fix caw_sem leak in transport_generic_request_failure
          - target: Fix quiese during transport_write_pending_qf endless loop
          - target: Avoid early CMD_T_PRE_EXECUTE failures during ABORT_TASK
          - mtd: Avoid probe failures when mtd->dbg.dfs_dir is invalid
          - mtd: nand: atmel: Actually use the PM ops
          - mtd: nand: omap2: Fix subpage write
          - mtd: nand: Fix writing mtdoops to nand flash.
          - mtd: nand: mtk: fix infinite ECC decode IRQ issue
          - p54: don't unregister leds when they are not initialized
          - block: Fix a race between blk_cleanup_queue() and timeout handling
          - raid1: prevent freeze_array/wait_all_barriers deadlock
          - genirq: Track whether the trigger type has been set
          - [armhf,arm64] irqchip/gic-v3: Fix ppi-partitions lookup
          - lockd: double unregister of inetaddr notifiers
          - [powerpc*] KVM: Book3S HV: Don't call real-mode XICS hypercall handlers
            if not enabled
          - [x86] KVM: nVMX: set IDTR and GDTR limits when loading L1 host state
          - [x86] KVM: SVM: obey guest PAT
          - [x86] kvm: vmx: Reinstate support for CPUs without virtual NMI
            (Closes: #884482)
          - dax: fix PMD faults on zero-length files
          - dax: fix general protection fault in dax_alloc_inode
          - SUNRPC: Fix tracepoint storage issues with svc_recv and svc_rqst_status
          - [armhf] clk: ti: dra7-atl-clock: fix child-node lookups
          - libnvdimm, dimm: clear 'locked' status on successful DIMM enable
          - libnvdimm, pfn: make 'resource' attribute only readable by root
          - libnvdimm, namespace: fix label initialization to use valid seq numbers
          - libnvdimm, region : make 'resource' attribute only readable by root
          - libnvdimm, namespace: make 'resource' attribute only readable by root
          - svcrdma: Preserve CB send buffer across retransmits
          - IB/srpt: Do not accept invalid initiator port names
          - IB/cm: Fix memory corruption in handling CM request
          - IB/hfi1: Fix incorrect available receive user context count
          - IB/srp: Avoid that a cable pull can trigger a kernel crash
          - IB/core: Avoid crash on pkey enforcement failed in received MADs
          - IB/core: Only maintain real QPs in the security lists
          - NFC: fix device-allocation error return
          - spi-nor: intel-spi: Fix broken software sequencing codes
          - fm10k,i40e,i40evf,igb,igbvf,ixgbe,ixgbevf: Use smp_rmb rather than
            read_barrier_depends
          - [hppa] Fix validity check of pointer size argument in new CAS
            implementation
          - [powerpc*] Fix boot on BOOK3S_32 with CONFIG_STRICT_KERNEL_RWX
          - [powerpc*] mm/radix: Fix crashes on Power9 DD1 with radix MMU and
            STRICT_RWX
          - [powerpc*] perf/imc: Use cpu_to_node() not topology_physical_package_id()
          - [powerpc*] signal: Properly handle return value from uprobe_deny_signal()
          - [powerpc*] 64s: Fix masking of SRR1 bits on instruction fault
          - [powerpc*] 64s/radix: Fix 128TB-512TB virtual address boundary case
            allocation
          - [powerpc*] 64s/hash: Fix 512T hint detection to use >= 128T
          - [powerpc*] 64s/hash: Fix 128TB-512TB virtual address boundary case
            allocation
          - [powerpc*] 64s/hash: Fix fork() with 512TB process address space
          - [powerpc*] 64s/hash: Allow MAP_FIXED allocations to cross 128TB boundary
          - media: Don't do DMA on stack for firmware upload in the AS102 driver
          - media: rc: check for integer overflow
          - media: rc: nec decoder should not send both repeat and keycode
          - media: v4l2-ctrl: Fix flags field on Control events
          - [arm64] media: venus: fix wrong size on dma_free
          - [arm64] media: venus: venc: fix bytesused v4l2_plane field
          - [arm64] media: venus: reimplement decoder stop command
          - [arm64] dts: meson-gxl: Add alternate ARM Trusted Firmware reserved
            memory zone
          - iwlwifi: fix wrong struct for a000 device
          - iwlwifi: fix PCI IDs and configuration mapping for 9000 series
          - iwlwifi: mvm: support version 7 of the SCAN_REQ_UMAC FW command
          - e1000e: Fix error path in link detection
          - e1000e: Fix return value test
          - e1000e: Separate signaling for link check/link up
          - e1000e: Avoid receiver overrun interrupt bursts
          - e1000e: fix buffer overrun while the I219 is processing DMA transactions
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.4
          - [x86]: platform: hp-wmi: Fix tablet mode detection for convertibles
          - mm, memory_hotplug: do not back off draining pcp free pages from kworker
            context
          - mm, oom_reaper: gather each vma to prevent leaking TLB entry
          - [armhf,arm64] mm/cma: fix alloc_contig_range ret code/potential leak
          - mm: fix device-dax pud write-faults triggered by get_user_pages()
          - mm, hugetlbfs: introduce ->split() to vm_operations_struct
          - device-dax: implement ->split() to catch invalid munmap attempts
          - mm: introduce get_user_pages_longterm
          - mm: fail get_vaddr_frames() for filesystem-dax mappings
          - v4l2: disable filesystem-dax mapping support
          - IB/core: disable memory registration of filesystem-dax vmas
          - exec: avoid RLIMIT_STACK races with prlimit()
          - mm/madvise.c: fix madvise() infinite loop under special circumstances
          - mm: migrate: fix an incorrect call of prep_transhuge_page()
          - mm, memcg: fix mem_cgroup_swapout() for THPs
          - fs/fat/inode.c: fix sb_rdonly() change
          - autofs: revert "autofs: take more care to not update last_used on path
            walk"
          - autofs: revert "autofs: fix AT_NO_AUTOMOUNT not being honored"
          - mm/hugetlb: fix NULL-pointer dereference on 5-level paging machine
          - btrfs: clear space cache inode generation always
          - nfsd: Fix stateid races between OPEN and CLOSE
          - nfsd: Fix another OPEN stateid race
          - nfsd: fix panic in posix_unblock_lock called from nfs4_laundromat
          - crypto: algif_aead - skip SGL entries with NULL page
          - crypto: af_alg - remove locking in async callback
          - crypto: skcipher - Fix skcipher_walk_aead_common
          - lockd: lost rollback of set_grace_period() in lockd_down_net()
          - [s390x] revert ELF_ET_DYN_BASE base changes
          - [armhf] drm: omapdrm: Fix DPI on platforms using the DSI VDDS
          - [armhf] omapdrm: hdmi4: Correct the SoC revision matching
          - [arm64] module-plts: factor out PLT generation code for ftrace
          - [arm64] ftrace: emit ftrace-mod.o contents through code
          - [powerpc*] powernv: Fix kexec crashes caused by tlbie tracing
          - [powerpc*] kexec: Fix kexec/kdump in P9 guest kernels
          - [x86] KVM: pvclock: Handle first-time write to pvclock-page contains
            random junk
          - [x86] KVM: Exit to user-mode on #UD intercept when emulator requires
          - [x86] KVM: inject exceptions produced by x86_decode_insn
          - [x86] KVM: lapic: Split out x2apic ldr calculation
          - [x86] KVM: lapic: Fixup LDR on load in x2apic
          - mmc: sdhci: Avoid swiotlb buffer being full
          - mmc: block: Fix missing blk_put_request()
          - mmc: block: Check return value of blk_get_request()
          - mmc: core: Do not leave the block driver in a suspended state
          - mmc: block: Ensure that debugfs files are removed
          - mmc: core: prepend 0x to pre_eol_info entry in sysfs
          - mmc: core: prepend 0x to OCR entry in sysfs
          - ACPI / EC: Fix regression related to PM ops support in ECDT device
          - eeprom: at24: fix reading from 24MAC402/24MAC602
          - eeprom: at24: correctly set the size for at24mac402
          - eeprom: at24: check at24_read/write arguments
          - [alpha,x86] i2c: i801: Fix Failed to allocate irq -2147483648 error
          - bcache: Fix building error on MIPS
          - bcache: only permit to recovery read error when cache device is clean
          - bcache: recover data from backing when data is clean
          - hwmon: (jc42) optionally try to disable the SMBUS timeout
          - nvme-pci: add quirk for delay before CHK RDY for WDC SN200
          - Revert "drm/radeon: dont switch vt on suspend"
          - drm/amdgpu: potential uninitialized variable in amdgpu_vce_ring_parse_cs()
          - drm/amdgpu: Potential uninitialized variable in
            amdgpu_vm_update_directories()
          - drm/amdgpu: correct reference clock value on vega10
          - drm/amdgpu: fix error handling in amdgpu_bo_do_create
          - drm/amdgpu: Properly allocate VM invalidate eng v2
          - drm/amdgpu: Remove check which is not valid for certain VBIOS
          - drm/ttm: fix ttm_bo_cleanup_refs_or_queue once more
          - dma-buf: make reservation_object_copy_fences rcu save
          - drm/amdgpu: reserve root PD while releasing it
          - drm/ttm: Always and only destroy bo->ttm_resv in ttm_bo_release_list
          - drm/vblank: Fix flip event vblank count
          - drm/vblank: Tune drm_crtc_accurate_vblank_count() WARN down to a debug
          - drm/tilcdc: Precalculate total frametime in tilcdc_crtc_set_mode()
          - drm/radeon: fix atombios on big endian
          - drm/panel: simple: Add missing panel_simple_unprepare() calls
          - [arm64] drm/hisilicon: Ensure LDI regs are properly configured.
          - drm/ttm: once more fix ttm_buffer_object_transfer
          - drm/amd/pp: fix typecast error in powerplay.
          - drm/fb_helper: Disable all crtc's when initial setup fails.
          - drm/edid: Don't send non-zero YQ in AVI infoframe for HDMI 1.x sinks
          - drm/amdgpu: move UVD/VCE and VCN structure out from union
          - drm/amdgpu: Set adev->vcn.irq.num_types for VCN
          - IB/core: Do not warn on lid conversions for OPA
          - IB/hfi1: Do not warn on lid conversions for OPA
          - e1000e: fix the use of magic numbers for buffer overrun issue
          - md: forbid a RAID5 from having both a bitmap and a journal.
          - [x86] drm/i915: Fix false-positive assert_rpm_wakelock_held in
            i915_pmic_bus_access_notifier v2
          - [x86] drm/i915: Re-register PMIC bus access notifier on runtime resume
          - [x86] drm/i915/fbdev: Serialise early hotplug events with async fbdev
            config
          - [x86] drm/i915/gvt: Correct ADDR_4K/2M/1G_MASK definition
          - [x86] drm/i915: Don't try indexed reads to alternate slave addresses
          - [x86] drm/i915: Prevent zero length "index" write
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.5
          - drm/amdgpu: Use unsigned ring indices in amdgpu_queue_mgr_map
          - [s390x] runtime instrumentation: simplify task exit handling
          - usbip: fix usbip attach to find a port that matches the requested speed
          - usbip: Fix USB device hang due to wrong enabling of scatter-gather
          - uas: Always apply US_FL_NO_ATA_1X quirk to Seagate devices
          - usb: quirks: Add no-lpm quirk for KY-688 USB 3.1 Type-C Hub
          - serial: 8250_early: Only set divisor if valid clk & baud
          - [mips*] Add custom serial.h with BASE_BAUD override for generic kernel
          - ima: fix hash algorithm initialization
          - [s390x] vfio-ccw: Do not attempt to free no-op, test and tic cda.
          - PM / Domains: Fix genpd to deal with drivers returning 1 from ->prepare()
          - [s390x] pci: do not require AIS facility
          - serial: 8250_fintek: Fix rs485 disablement on invalid ioctl()
          - staging: rtl8188eu: avoid a null dereference on pmlmepriv
          - [arm64] mmc: sdhci-msm: fix issue with power irq
          - hwmon: (pmbus/core) Prevent unintentional setting of page to 0xFF
          - perf/core: Fix __perf_read_group_add() locking
          - [armhf] PCI: dra7xx: Create functional dependency between PCIe and PHY
          - [x86] intel_rdt: Initialize bitmask of shareable resource if CDP enabled
          - [x86] intel_rdt: Fix potential deadlock during resctrl mount
          - serial: 8250: Preserve DLD[7:4] for PORT_XR17V35X
          - kprobes: Use synchronize_rcu_tasks() for optprobe with CONFIG_PREEMPT=y
          - [x86] entry: Use SYSCALL_DEFINE() macros for sys_modify_ldt()
          - [armhf,arm64] clocksource/drivers/arm_arch_timer: Validate CNTFRQ after
            enabling frame
          - [x86] EDAC, sb_edac: Fix missing break in switch
          - [arm64] cpuidle: Correct driver unregistration if init fails
          - usb: xhci: Return error when host is dead in xhci_disable_slot()
          - [armel,armhf] sysrq : fix Show Regs call trace on ARM
          - [sh4] serial: sh-sci: suppress warning for ports without dma channels
          - [armhf] serial: imx: Update cached mctrl value when changing RTS
          - [x86] kprobes: Disable preemption in ftrace-based jprobes
          - [x86] locking/refcounts, asm: Use unique .text section for refcount
            exceptions
          - [s390x] ptrace: fix guarded storage regset handling
          - perf tools: Fix leaking rec_argv in error cases
          - mm, x86/mm: Fix performance regression in get_user_pages_fast()
          - iio: adc: ti-ads1015: add 10% to conversion wait time
          - iio: multiplexer: add NULL check on devm_kzalloc() and devm_kmemdup()
            return values
          - [x86] locking/refcounts, asm: Enable CONFIG_ARCH_HAS_REFCOUNT
          - [powerpc*] jprobes: Disable preemption when triggered through ftrace
          - [powerpc*] kprobes: Disable preemption before invoking probe handler for
            optprobes
          - usb: hub: Cycle HUB power when initialization fails
          - [armhf,arm64] USB: ulpi: fix bus-node lookup
          - xhci: Don't show incorrect WARN message about events for empty rings
          - usb: xhci: fix panic in xhci_free_virt_devices_depth_first
          - USB: core: Add type-specific length check of BOS descriptors
          - USB: usbfs: Filter flags passed in from user space
          - usb: host: fix incorrect updating of offset
          - locking/refcounts: Do not force refcount_t usage as GPL-only export
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.6
          - usb: gadget: core: Fix ->udc_set_speed() speed handling
          - serdev: ttyport: add missing receive_buf sanity checks
          - serdev: ttyport: fix NULL-deref on hangup
          - serdev: ttyport: fix tty locking in close
          - usb: f_fs: Force Reserved1=1 in OS_DESC_EXT_COMPAT
          - can: peak/pci: fix potential bug when probe() fails
          - can: kvaser_usb: free buf in error paths
          - can: kvaser_usb: Fix comparison bug in kvaser_usb_read_bulk_callback()
          - can: kvaser_usb: ratelimit errors if incomplete messages are received
          - can: kvaser_usb: cancel urb on -EPIPE and -EPROTO
          - can: ems_usb: cancel urb on -EPIPE and -EPROTO
          - can: esd_usb2: cancel urb on -EPIPE and -EPROTO
          - can: usb_8dev: cancel urb on -EPIPE and -EPROTO
          - can: peak/pcie_fd: fix potential bug in restarting tx queue
          - virtio: release virtio index when fail to device_register
          - [arm64] pinctrl: armada-37xx: Fix direction_output() callback behavior
          - [x86] Drivers: hv: vmbus: Fix a rescind issue
          - [x86] hv: kvp: Avoid reading past allocated blocks from KVP file
          - firmware: vpd: Destroy vpd sections in remove function
          - firmware: vpd: Tie firmware kobject to device lifetime
          - firmware: vpd: Fix platform driver and device registration/unregistration
          - scsi: dma-mapping: always provide dma_get_cache_alignment
          - scsi: use dma_get_cache_alignment() as minimum DMA alignment
          - scsi: libsas: align sata_device's rps_resp on a cacheline
          - efi: Move some sysfs files to be read-only by root
          - efi/esrt: Use memunmap() instead of kfree() to free the remapping
          - ASN.1: fix out-of-bounds read when parsing indefinite length item
          - ASN.1: check for error from ASN1_OP_END__ACT actions
          - KEYS: add missing permission check for request_key() destination
            (CVE-2017-17807)
          - KEYS: reject NULL restriction string when type is specified
          - X.509: reject invalid BIT STRING for subjectPublicKey
          - X.509: fix comparisons of ->pkey_algo
          - [x86] idt: Load idt early in start_secondary
          - [x86] PCI: Make broadcom_postcore_init() check acpi_disabled
          - [x86] KVM: fix APIC page invalidation
          - btrfs: fix missing error return in btrfs_drop_snapshot
          - btrfs: handle errors while updating refcounts in update_ref_for_cow
          - ALSA: pcm: prevent UAF in snd_pcm_info
          - ALSA: seq: Remove spurious WARN_ON() at timer check
          - ALSA: usb-audio: Fix out-of-bound error
          - ALSA: usb-audio: Add check return value for usb_string()
          - [x86] iommu/vt-d: Fix scatterlist offset handling
          - smp/hotplug: Move step CPUHP_AP_SMPCFD_DYING to the correct place
          - [s390x] always save and restore all registers on context switch
          - [s390x] mm: fix off-by-one bug in 5-level page table handling
          - [s390x] fix compat system call table
          - [s390x] KVM: Fix skey emulation permission check
          - [powerpc*] Revert "powerpc: Do not call ppc_md.panic in fadump panic
            notifier"
          - [powerpc*] 64s: Initialize ISAv3 MMU registers before setting partition
            table
          - iwlwifi: mvm: mark MIC stripped MPDUs
          - iwlwifi: mvm: don't use transmit queue hang detection when it is not
            possible
          - iwlwifi: mvm: flush queue before deleting ROC
          - iwlwifi: mvm: fix packet injection
          - iwlwifi: mvm: enable RX offloading with TKIP and WEP
          - brcmfmac: change driver unbind order of the sdio function devices
          - md/r5cache: move mddev_lock() out of r5c_journal_mode_set()
          - [armhf] drm/bridge: analogix dp: Fix runtime PM state in get_modes()
            callback
          - [armhf] drm/exynos: gem: Drop NONCONTIG flag for buffers allocated
            without IOMMU
          - [x86] drm/i915: Fix vblank timestamp/frame counter jumps on gen2
          - media: dvb: i2c transfers over usb cannot be done from stack
          - media: rc: sir_ir: detect presence of port
          - media: rc: partial revert of "media: rc: per-protocol repeat period"
          - [arm64] KVM: fix VTTBR_BADDR_MASK BUG_ON off-by-one
          - [armhf] KVM: Fix VTTBR_BADDR_MASK BUG_ON off-by-one
          - [x86] KVM: VMX: remove I/O port 0x80 bypass on Intel hosts
            (CVE-2017-1000407)
          - [armhf,arm64] KVM: Fix broken GICH_ELRSR big endian conversion
          - [armhf,arm64] KVM: vgic-irqfd: Fix MSI entry allocation
          - [armhf,arm64] KVM: vgic: Preserve the revious read from the pending table
          - [armhf,arm64] KVM: vgic-its: Check result of allocation before use
          - [arm64] fpsimd: Prevent registers leaking from dead tasks
          - [arm64] SW PAN: Point saved ttbr0 at the zero page when switching to
            init_mm
          - [arm64] SW PAN: Update saved ttbr0 value on enter_lazy_tlb
          - [armhf] Revert "ARM: dts: imx53: add srtc node"
          - [armhf] bus: arm-cci: Fix use of smp_processor_id() in preemptible context
          - IB/core: Only enforce security for InfiniBand
          - [armel,armhf] BUG if jumping to usermode address in kernel mode
          - [armel,armhf] avoid faulting on qemu
          - [arm64] irqchip/qcom: Fix u32 comparison with value less than zero
          - [powerpc*] perf: Fix pmu_count to count only nest imc pmus
          - apparmor: fix leak of null profile name if profile allocation fails
          - mac80211_hwsim: Fix memory leak in hwsim_new_radio_nl()
          - gre6: use log_ecn_error module parameter in ip6_tnl_rcv()
          - route: also update fnhe_genid when updating a route cache
          - route: update fnhe_expires for redirect when the fnhe exists
          - rsi: fix memory leak on buf and usb_reg_buf
          - pipe: match pipe_max_size data type with procfs
          - lib/genalloc.c: make the avail variable an atomic_long_t
          - NFS: Fix a typo in nfs_rename()
          - sunrpc: Fix rpc_task_begin trace point
          - nfp: inherit the max_mtu from the PF netdev
          - nfp: fix flower offload metadata flag usage
          - xfs: fix forgotten rcu read unlock when skipping inode reclaim
          - block: wake up all tasks blocked in get_request()
          - [sparc64] mm: set fields in deferred pages
          - zsmalloc: calling zs_map_object() from irq is a bug
          - slub: fix sysfs duplicate filename creation when slub_debug=O
          - sctp: do not free asoc when it is already dead in sctp_sendmsg
          - sctp: use the right sk after waking up from wait_buf sleep
          - fcntl: don't leak fd reference when fixup_compat_flock fails
          - geneve: fix fill_info when link down
          - bpf: fix lockdep splat
          - [arm64] clk: qcom: common: fix legacy board-clock registration
          - [arm64] clk: hi3660: fix incorrect uart3 clock freqency
          - atm: horizon: Fix irq release error
          - xfrm: Copy policy family in clone_policy
          - f2fs: fix to clear FI_NO_PREALLOC
          - bnxt_re: changing the ip address shouldn't affect new connections
          - IB/mlx4: Increase maximal message size under UD QP
          - IB/mlx5: Assign send CQ and recv CQ of UMR QP
          - afs: Fix total-length calculation for multiple-page send
          - afs: Connect up the CB.ProbeUuid
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.7
          - net: realtek: r8169: implement set_link_ksettings()
          - [s390x] qeth: fix early exit from error path
          - tipc: fix memory leak in tipc_accept_from_sock()
          - vhost: fix skb leak in handle_rx()
          - rds: Fix NULL pointer dereference in __rds_rdma_map
          - sit: update frag_off info
          - tcp: add tcp_v4_fill_cb()/tcp_v4_restore_cb()
          - packet: fix crash in fanout_demux_rollover()
          - net/packet: fix a race in packet_bind() and packet_notifier()
          - tcp: remove buggy call to tcp_v6_restore_cb()
          - usbnet: fix alignment for frames with no ethernet header
          - net: remove hlist_nulls_add_tail_rcu()
          - stmmac: reset last TSO segment size after device open
          - tcp/dccp: block bh before arming time_wait timer
          - [s390x] qeth: build max size GSO skbs on L2 devices
          - [s390x] qeth: fix thinko in IPv4 multicast address tracking
          - [s390x] qeth: fix GSO throughput regression
          - tcp: use IPCB instead of TCP_SKB_CB in inet_exact_dif_match()
          - tipc: call tipc_rcv() only if bearer is up in tipc_udp_recv()
          - tcp: use current time in tcp_rcv_space_adjust()
          - net: sched: cbq: create block for q->link.block
          - tap: free skb if flags error
          - tcp: when scheduling TLP, time of RTO should account for current ACK
          - tun: free skb in early errors
          - net: ipv6: Fixup device for anycast routes during copy
          - tun: fix rcu_read_lock imbalance in tun_build_skb
          - net: accept UFO datagrams from tuntap and packet
          - net: openvswitch: datapath: fix data type in queue_gso_packets
          - cls_bpf: don't decrement net's refcount when offload fails
          - sctp: use right member as the param of list_for_each_entry
          - ipmi: Stop timers before cleaning up the module
          - usb: gadget: ffs: Forbid usb_ep_alloc_request from sleeping
          - fcntl: don't cap l_start and l_end values for F_GETLK64 in compat syscall
          - fix kcm_clone()
          - [armhf,arm64] KVM: vgic-its: Preserve the revious read from the pending
            table
          - kbuild: do not call cc-option before KBUILD_CFLAGS initialization
          - [powerpc*] powernv/idle: Round up latency and residency values
          - ipvlan: fix ipv6 outbound device
          - blk-mq: Avoid that request queue removal can trigger list corruption
          - nvmet-rdma: update queue list during ib_device removal
          - audit: Allow auditd to set pid to 0 to end auditing
          - audit: ensure that 'audit=1' actually enables audit for PID 1
          - dm raid: fix panic when attempting to force a raid to sync
          - md: free unused memory after bitmap resize
          - RDMA/cxgb4: Annotate r2 and stag as __be32
          - [x86] intel_rdt: Fix potential deadlock during resctrl unmount
      
        [ Salvatore Bonaccorso ]
        * Add ABI reference for 4.14.0-1
        * xen/time: do not decrease steal time after live migration on xen
          (Closes: #871608)
        * crypto: salsa20 - fix blkcipher_walk API usage (CVE-2017-17805)
        * crypto: hmac - require that the underlying hash algorithm is unkeyed
          (CVE-2017-17806)
      
        [ Vagrant Cascadian ]
        * [armhf, arm64] Backport patches from 4.15.x to support dwmac-sun8i.
      
        [ Ben Hutchings ]
        * [rt] Update to 4.14.6-rt7:
          - hrtimer: account for migrated timers
          - crypto: mcryptd: protect the per-CPU queue with a lock
          - tracing: Update inter-event hist trigger support to v7:
            + Rename virtual "$common_timestamp" field to "common_timestamp"
            + Fix use-after-free in trigger removal
          - mm/slub: close possible memory-leak in kmem_cache_alloc_bulk()
          - crypto: limit more FPU-enabled sections
        * dccp: CVE-2017-8824: use-after-free in DCCP code
        * netfilter: nfnetlink_cthelper: Add missing permission checks
          (CVE-2017-17448)
        * netlink: Add netns check on taps (CVE-2017-17449)
        * netfilter: xt_osf: Add missing permission checks (CVE-2017-17450)
        * USB: core: prevent malicious bNumInterfaces overflow (CVE-2017-17558)
        * net: ipv4: fix for a race condition in raw_sendmsg (CVE-2017-17712)
        * media: dvb-usb-v2: lmedm04: Improve logic checking of warm start
          (CVE-2017-16538)
        * media: dvb-usb-v2: lmedm04: move ts2020 attach to dm04_lme2510_tuner
          (CVE-2017-16538)
        * media: hdpvr: Fix an error handling path in hdpvr_probe() (CVE-2017-16644)
        * [armhf,arm64,x86] KVM: Fix stack-out-of-bounds read in write_mmio
          (CVE-2017-17741)
        * bluetooth: Prevent stack info leak from the EFS element.
          (CVE-2017-1000410)
        * bpf/verifier: Fix multiple security issues (Closes: #883558):
          - encapsulate verifier log state into a structure
          - move global verifier log into verifier environment
          - fix branch pruning logic
          - fix bounds calculation on BPF_RSH
          - fix incorrect sign extension in check_alu_op() (CVE-2017-16995)
          - fix incorrect tracking of register size truncation (CVE-2017-16996)
          - fix 32-bit ALU op verification
          - fix missing error return in check_stack_boundary()
          - force strict alignment checks for stack pointers
          - don't prune branches when a scalar is replaced with a pointer
          - fix integer overflows
        * Bump ABI to 2
      f2b62eb2
    • Lorenzo "Palinuro" Faletra's avatar
      90e307ca
  6. 05 Dec, 2017 2 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.14.2-1parrot2 · 6823e253
      Lorenzo "Palinuro" Faletra authored
      linux (4.14.2-1parrot2) testing; urgency=medium
      
        * Import new Debian release.
      
      linux (4.14.2-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.1
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.2
          - mm/pagewalk.c: report holes in hugetlb ranges (CVE-2017-16994)
      
        [ Ben Hutchings ]
        * [rt] Update to 4.14-rt1 and reenable (Closes: #882192)
        * i40e: Build for 32-bit targets again
          - i40e/i40evf: organize and re-number feature flags
          - i40e: fix flags declaration
          - Revert "i40e: Build for 64-bit targets only"
        * aufs: Update support patchset to aufs4.14-20171120
        * [armel] Change configuration to reduce image size (fixes FTBFS):
          - Change CONNECTOR from built-in to module, and disable PROC_EVENTS
          - Disable INTEGRITY and dependent options
          - video: Disable USB_APPLEDISPLAY, BACKLIGHT_CLASS_DEVICE
        * apparmor: fix oops in audit_signal_cb hook (regression in 4.14)
        * leds: Enable LEDS_BRIGHTNESS_HW_CHANGED (Closes: #872862)
        * [rt] Add new signing subkey for Steven Rostedt
        * [rt] Update to 4.14.1-rt3
        * Set ABI to 1
        * mmap: Remember the MAP_FIXED flag as VM_FIXED
        * [x86] mmap: Add an exception to the stack gap for Hotspot JVM compatibility
          (Closes: #865303)
      
        [ Salvatore Bonaccorso ]
        * mm, thp: Do not make page table dirty unconditionally in touch_p[mu]d()
          (CVE-2017-1000405)
      
      linux (4.14-1~exp1) experimental; urgency=medium
      
        * New upstream release: https://kernelnewbies.org/Linux_4.14
      
        [ Ben Hutchings ]
        * debian/control: Set Rules-Requires-Root to no
        * [armhf] drm: Enable DRM_SUN4I, DRM_SUN4I_HDMI, DRM_SUN4I_BACKEND,
          DRM_SUN8I_MIXER as modules; and DRM_SUN4I_HDMI_CEC (Closes: #881570)
        * media: dvb-core: always call invoke_release() in fe_free()
        * dvb_frontend: don't use-after-free the frontend struct (CVE-2017-16648)
        * Set ABI name to trunk
      
        [ Bastian Blank ]
        * Enable CRYPTO_SHA3.
      
        [ Riku Voipio ]
        * [arm64] enable generic server options.
          - NUMA, ACPI_NUMA, CRASH_DUMP, VFIO, HOTPLUG_PCI, ACPI_CPPC_CPUFREQ,
            MMC_SDHCI_ACPI, PL330_DMA
        * [arm64] enable various server platform drivers
          - NET_XGENE_V2, EDAC_THUNDERX, MMC_CAVIUM_THUNDER,
            GPIO_XLP, I2C_XLP9XX, SPI_XLP, DRM_HISI_HIBMC, HISI_SAS_PCI,
            GPIO_WATCHDOG, ARM_SP805_WATCHDOG, ARM_SBSA_WATCHDOG, DW_WATCHDOG
        * [arm64] enable support for Marvell arm64 boards
          - CRYPTO_DEV_MARVELL_CESA, MARVELL_PHY, MARVELL_10G_PHY,
            PHY_MVEBU_CP110_COMPHY, RTC_DRV_MV, RTC_DRV_ARMADA38X, SPI_ARMADA_3700
            ARMADA_THERMAL, HW_RANDOM_OMAP, CRYPTO_DEV_SAFEXCE
        * [arm64] 96boards Hikey and Dragonboard support
          - PCIE_KIRIN, TEE, OPTEE, SND_I2S_HI6210_I2S, DRM_I2C_ADV7511_AUDIO,
            CMA, USB_ISP176, USB_CHIPIDEA_ULPI, USB_DWC3_ULPI, NOP_USB_XCEIV
            USB_ULPI, RPMSG_QCOM*, PHY_QCOM*, QCOM_IOMMU, QCOM_CLK*, etc
          - SERIAL_DEV_BUS for HiKey bluetooth
        * All options as modules when possible
      
      linux (4.14~rc7-1~exp1) experimental; urgency=medium
      
        * New upstream release candidate
      
        [ Ben Hutchings ]
        * [mips*] Increase RELOCATION_TABLE_SIZE to 0x00120000 (fixes FTBFS)
        * debian/bin/gencontrol.py: Set encoding to UTF-8 globally
        * [alpha] udeb: Remove empty fb-modules package (fixes FTBFS)
        * [armel] udeb: Remove fbcon from fb-modules package
      
        [ Uwe Kleine-König ]
        * [arm64] add BRCMFMAC_SDIO for wifi on Raspberry Pi 3 (Closes: #877911)
      
        [ Vagrant Cascadian ]
        * Enable SQUASHFS_LZ4 in default config.
      
      linux (4.14~rc5-1~exp1) experimental; urgency=medium
      
        * New upstream release candidate
      
        [ Ben Hutchings ]
        * Update kconfig for 4.14:
          - [alpha] fbdev: Re-enable FRAMEBUFFER_CONSOLE as built-in
          - [armel] fbdev: Explicitly disable FRAMEBUFFER_CONSOLE, as it can no
            longer be a module
          - [arm64] Re-enable MMC_QCOM_DML
          - Change RC_CORE back to being a module
          - power/supply: Enable BATTERY_BQ27XXX and BATTERY_BQ27XXX_HDQ as modules,
            replacing W1_SLAVE_BQ27000
        * net: Disable IRDA, which will soon be deleted upstream
        * [mips*] Increase RELOCATION_TABLE_SIZE to 0x00110000 for all flavours
          (fixes FTBFS)
        * i40e: Build for 64-bit targets only (fixes FTBFS on hppa)
        * Compile with gcc-7 on all architectures
      
        [ John Paul Adrian Glaubitz ]
        * [m68k] udeb: Build ata-modules package, include libata
        * [m68k] udeb: Add ide-cd_mod to cdrom-core-modules
        * [m68k] udeb: Build ide-core-modules package, include ide-core
        * [m68k] udeb: Build ide-modules package, include ide-gd_mod
        * [m68k] udeb: Move old IDE drivers from pata-modules to ide-modules:
          - buddha, falconide, gayle, macide, q40ide
        * [m68k] udeb: Add missing SCSI drivers to scsi-modules:
          - a2091, a3000, a4000t, bvme6000_scsi, gvp11, mvme16x_scsi, zorro7xx
        * [m68k] Build uncompressed kernel image by default.
      
        [ Uwe Kleine-König ]
        * media: drop explicit setting of DVB_MAX_ADAPTERS to follow upstream default
          (Closes: #878846)
      
      linux (4.14~rc3-1~exp1) experimental; urgency=medium
      
        * New upstream release candidate
      
        [ Ben Hutchings ]
        * aufs: Update support patchset to aufs4.x-rcN-20171002
      6823e253
    • Lorenzo "Palinuro" Faletra's avatar
      3f5c81f7
  7. 27 Nov, 2017 4 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.13.13-1parrot13 · f570d1be
      Lorenzo "Palinuro" Faletra authored
      linux (4.13.13-1parrot13) testing; urgency=medium
      
        * Import new Debian version.
      f570d1be
    • Lorenzo "Palinuro" Faletra's avatar
      953da513
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.13.13-1parrot13 · 7e4806a8
      Lorenzo "Palinuro" Faletra authored
      linux (4.13.13-1parrot13) testing; urgency=medium
      
        * Import new Debian version.
      
      linux (4.13.13-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11
          - workqueue: replace pool->manager_arb mutex with a flag
          - [x86] ALSA: hda/realtek - Add support for ALC236/ALC3204
          - [x86] ALSA: hda - fix headset mic problem for Dell machines with alc236
          - ceph: unlock dangling spinlock in try_flush_caps()
          - [powerpc*] KVM: PPC: Fix oops when checking KVM_CAP_PPC_HTM
            (CVE-2017-15306)
          - [powerpc*] KVM: PPC: Book3S HV: POWER9 more doorbell fixes
          - [powerpc*] KVM: PPC: Book3S: Protect kvmppc_gpa_to_ua() with SRCU
          - [s390x] kvm: fix detection of guest machine checks
          - nbd: handle interrupted sendmsg with a sndtimeo set
          - spi: uapi: spidev: add missing ioctl header
          - spi: a3700: Return correct value on timeout detection
          - spi: bcm-qspi: Fix use after free in bcm_qspi_probe() in error path
          - spi: armada-3700: Fix failing commands with quad-SPI
          - ovl: add NULL check in ovl_alloc_inode
          - ovl: fix EIO from lookup of non-indexed upper
          - ovl: handle ENOENT on index lookup
          - ovl: do not cleanup unsupported index entries
          - fuse: fix READDIRPLUS skipping an entry
          - xen/gntdev: avoid out of bounds access in case of partial gntdev_mmap()
          - xen: fix booting ballooned down hvm guest
          - cifs: Select all required crypto modules
          - CIFS: Fix NULL pointer deref on SMB2_tcon() failure
          - Input: elan_i2c - add ELAN0611 to the ACPI table
          - Input: gtco - fix potential out-of-bound access (CVE-2017-16643)
          - Fix encryption labels and lengths for SMB3.1.1
          - SMB3: Validate negotiate request must always be signed
          - assoc_array: Fix a buggy node-splitting case (CVE-2017-12193)
          - [s390x] scsi: zfcp: fix erp_action use-before-initialize in REC action
            trace
          - scsi: aacraid: Fix controller initialization failure
          - scsi: qla2xxx: Initialize Work element before requesting IRQs
          - scsi: sg: Re-fix off by one in sg_fill_request_table()
          - [x86] cpu/AMD: Apply the Erratum 688 fix when the BIOS doesn't
          - [x86] drm/amd/powerplay: fix uninitialized variable
          - [x86] drm/i915/perf: fix perf enable/disable ioctls with 32bits
            userspace
          - [armhf] can: sun4i: fix loopback mode
          - can: kvaser_usb: Correct return value in printout
          - can: kvaser_usb: Ignore CMD_FLUSH_QUEUE_REPLY messages
          - cfg80211: fix connect/disconnect edge cases
          - ipsec: Fix aborted xfrm policy dump crash
          - [armhf] regulator: fan53555: fix I2C device ids (Closes: #879768)
          - [powerpc*] xive: Fix the size of the cpumask used in
            xive_find_target_in_mask()
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.12
          - ALSA: timer: Add missing mutex lock for compat ioctls
          - ALSA: seq: Fix nested rwsem annotation for lockdep splat
          - cifs: check MaxPathNameComponentLength != 0 before using it
            (Closes: #880504)
          - KEYS: return full count in keyring_read() if buffer is too small
          - KEYS: trusted: fix writing past end of buffer in trusted_read()
          - KEYS: fix out-of-bounds read during ASN.1 parsing
          - ASoC: adau17x1: Workaround for noise bug in ADC
          - virtio_blk: Fix an SG_IO regression
          - [arm64] ensure __dump_instr() checks addr_limit
          - [arm64] KVM: its: Fix missing dynamic allocation check in scan_its_table
          - [armhf, arm64] KVM: set right LR register value for 32 bit guest when
            inject abort
          - [armhf,arm64] kvm: Disable branch profiling in HYP code
          - [armhf] dts: mvebu: pl310-cache disable double-linefill
          - drm/amdgpu: return -ENOENT from uvd 6.0 early init for harvesting
          - drm/amdgpu: allow harvesting check for Polaris VCE
          - userfaultfd: hugetlbfs: prevent UFFDIO_COPY to fill beyond the end of
            i_size
          - ocfs2: fstrim: Fix start offset of first cluster group during fstrim
          - fs/hugetlbfs/inode.c: fix hwpoison reserve accounting
          - mm, swap: fix race between swap count continuation operations
          - [x86] drm/i915: Do not rely on wm preservation for ILK watermarks
          - [x86] drm/i915/edp: read edp display control registers unconditionally
          - [mips*] bpf: Fix a typo in build_one_insn()
          - [mips*] smp-cmp: Use right include for task_struct
          - [mips*] SMP: Fix deadlock & online race
          - Revert "x86: do not use cpufreq_quick_get() for /proc/cpuinfo "cpu MHz""
          - [powerpc*] kprobes: Dereference function pointers only if the address
            does not belong to kernel text
          - futex: Fix more put_pi_state() vs. exit_pi_state_list() races
          - perf/cgroup: Fix perf cgroup hierarchy support
          - [x86] mcelog: Get rid of RCU remnants
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.13
          - netfilter: nat: Revert "netfilter: nat: convert nat bysrc hash to
            rhashtable"
          - netfilter: nft_set_hash: disable fast_ops for 2-len keys (Closes: #880145)
          - workqueue: Fix NULL pointer dereference
          - crypto: ccm - preserve the IV buffer
          - [x86] crypto: sha1-mb - fix panic due to unaligned access
          - [x86] crypto: sha256-mb - fix panic due to unaligned access
          - KEYS: fix NULL pointer dereference during ASN.1 parsing [ver #2]
          - [x86] ACPI / PM: Blacklist Low Power S0 Idle _DSM for Dell XPS13 9360
          - ACPICA: Dispatch active GPEs at init time
          - ACPICA: Make it possible to enable runtime GPEs earlier
          - ACPI / scan: Enable GPEs before scanning the namespace
          - [armel,armhf] 8720/1: ensure dump_instr() checks addr_limit
          - ALSA: timer: Limit max instances per timer
          - ALSA: usb-audio: support new Amanero Combo384 firmware version
          - [x86] ALSA: hda - fix headset mic problem for Dell machines with alc274
          - ALSA: seq: Fix OSS sysex delivery in OSS emulation
          - ALSA: seq: Avoid invalid lockdep class warning
          - [mips*] Fix CM region target definitions
          - [powerpc*] KVM: Book3S HV: Fix exclusion between HPT resizing and other
            HPT updates
          - Input: elan_i2c - add ELAN060C to the ACPI table
          - rbd: use GFP_NOIO for parent stat and data requests
          - [x86] drm/vmwgfx: Fix Ubuntu 17.10 Wayland black screen issue
          - [armhf] can: sun4i: handle overrun in RX FIFO
          - can: peak: Add support for new PCIe/M2 CAN FD interfaces
          - [x86] debug: Handle warnings before the notifier chain, to fix KGDB crash
          - [x86] smpboot: Make optimization of delay calibration work correctly
          - [x86] oprofile/ppro: Do not use __this_cpu*() in preemptible context
      
        [ Salvatore Bonaccorso ]
        * mac80211: accept key reinstall without changing anything (CVE-2017-13080)
        * sctp: do not peel off an assoc from one netns to another one
          (CVE-2017-15115)
      
        [ Ben Hutchings ]
        * linux-image: Recommend apparmor, as systemd units with an AppArmor
          profile will fail without it (Closes: #880441)
        * [powerpc*] kvm: Ignore ABI change in 4.13.6 (fixes FTBFS)
        * swap: Avoid ABI change in 4.13.12
        * mac80211: use constant time comparison with keys
        * mac80211: don't compare TKIP TX MIC key in reinstall prevention
        * usb: usbtest: fix NULL pointer dereference (CVE-2017-16532)
        * media: cx231xx-cards: fix NULL-deref on missing association descriptor
          (CVE-2017-16536)
        * media: imon: Fix null-ptr-deref in imon_probe (CVE-2017-16537)
        * media: dib0700: fix invalid dvb_detach argument (CVE-2017-16646)
        * net: usb: asix: fill null-ptr-deref in asix_suspend (CVE-2017-16647)
        * net: cdc_ether: fix divide by 0 on bad descriptors (CVE-2017-16649)
        * net: qmi_wwan: fix divide by 0 on bad descriptors (CVE-2017-16650)
        * nftables: Enable NFT_RT, NFT_SET_BITMAP, NFT_OBJREF as modules
          (Closes: #881931)
        * [powerpc*/*64*] drm: Enable DRM_AMDGPU as module (Closes: #881593)
        * amdgpu: Enable DRM_AMDGPU_USERPTR on all architectures
        * amdgpu: Enable DRM_AMDGPU_SI, CONFIG_DRM_AMDGPU_CIK (Closes: #847570)
        * [arm64,x86] net/wireless: Enable RTL8723BS as module (Closes: #881568)
        * [arm64] nvmem: Enable NVMEM_SUNXI_SID as module (Closes: #881567)
        * [x86] rmi4: Disable RMI4_SMB (Closes: #880471)
        * ALSA: timer: Avoid ABI change in 4.13.13
        * netfilter: nat: Avoid ABI change in 4.13.13
      7e4806a8
    • Lorenzo "Palinuro" Faletra's avatar
      3c9e35af
  8. 08 Nov, 2017 3 commits
    • Lorenzo "Palinuro" Faletra's avatar
      5cd08b9b
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.13.10-1parrot10 · bce8d83f
      Lorenzo "Palinuro" Faletra authored
      linux (4.13.10-1parrot10) testing; urgency=medium
      
        * Import new Debian version.
      
      linux (4.13.10-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.5
          - cifs: check rsp for NULL before dereferencing in SMB2_open
          - cifs: release cifs root_cred after exit_cifs
          - cifs: release auth_key.response for reconnect.
          - nvme-pci: fix host memory buffer allocation fallback
          - nvme-pci: use appropriate initial chunk size for HMB allocation
          - nvme-pci: propagate (some) errors from host memory buffer setup
          - dax: remove the pmem_dax_ops->flush abstraction
          - dm integrity: do not check integrity for failed read operations
          - mmc: block: Fix incorrectly initialized requests
          - fs/proc: Report eip/esp in /prod/PID/stat for coredumping
          - scsi: scsi_transport_fc: fix NULL pointer dereference in
            fc_bsg_job_timeout
          - cifs: SMB3: Add support for multidialect negotiate (SMB2.1 and later)
          - mac80211: fix VLAN handling with TXQs
          - mac80211_hwsim: Use proper TX power
          - mac80211: flush hw_roc_start work before cancelling the ROC
          - genirq: Make sparse_irq_lock protect what it should protect
          - genirq/msi: Fix populating multiple interrupts
          - genirq: Fix cpumask check in __irq_startup_managed()
          - [powerpc*] KVM: Book3S HV: Hold kvm->lock around call to
            kvmppc_update_lpcr
          - [powerpc*] KVM: Book3S HV: Fix bug causing host SLB to be restored
            incorrectly
          - [powerpc*] KVM: PPC: Book3S HV: Don't access XIVE PIPR register using
            byte accesses
          - tracing: Fix trace_pipe behavior for instance traces
          - tracing: Erase irqsoff trace with empty write
          - tracing: Remove RCU work arounds from stack tracer
          - md/raid5: fix a race condition in stripe batch
          - md/raid5: preserve STRIPE_ON_UNPLUG_LIST in break_stripe_batch_list
          - scsi: aacraid: Fix 2T+ drives on SmartIOC-2000
          - scsi: aacraid: Add a small delay after IOP reset
          - [armhf] drm/exynos: Fix locking in the suspend/resume paths
          - [x86] drm/i915/gvt: Fix incorrect PCI BARs reporting
          - Revert "drm/i915/bxt: Disable device ready before shutdown command"
          - drm/amdgpu: revert tile table update for oland
          - drm/radeon: disable hard reset in hibernate for APUs
          - crypto: drbg - fix freeing of resources
          - security/keys: properly zero out sensitive key material in big_key
          - security/keys: rewrite all of big_key crypto
          - KEYS: fix writing past end of user-supplied buffer in keyring_read()
          - KEYS: prevent creating a different user's keyrings
          - [x86] libnvdimm, namespace: fix btt claim class crash
          - [powerpc*] eeh: Create PHB PEs after EEH is initialized
          - [powerpc*] pseries: Fix parent_dn reference leak in add_dt_node()
          - [powerpc*] tm: Flush TM only if CPU has TM feature
          - [mips*] Fix perf event init
          - [s390x] perf: fix bug when creating per-thread event
          - [s390x] mm: make pmdp_invalidate() do invalidation only
          - [s390x] mm: fix write access check in gup_huge_pmd()
          - PM: core: Fix device_pm_check_callbacks()
          - Revert "IB/ipoib: Update broadcast object if PKey value was changed in
            index 0"
          - cifs: Fix SMB3.1.1 guest authentication to Samba
          - cifs: SMB3: Fix endian warning
          - cifs: SMB3: Warn user if trying to sign connection that authenticated as
            guest
          - cifs: SMB: Validate negotiate (to protect against downgrade) even if
            signing off
          - cifs: SMB3: handle new statx fields
          - cifs: SMB3: Don't ignore O_SYNC/O_DSYNC and O_DIRECT flags
          - vfs: Return -ENXIO for negative SEEK_HOLE / SEEK_DATA offsets
          - libceph: don't allow bidirectional swap of pg-upmap-items
          - brd: fix overflow in __brd_direct_access
          - gfs2: Fix debugfs glocks dump
          - bsg-lib: don't free job in bsg_prepare_job
          - iw_cxgb4: drop listen destroy replies if no ep found
          - iw_cxgb4: remove the stid on listen create failure
          - iw_cxgb4: put ep reference in pass_accept_req()
          - rcu: Allow for page faults in NMI handlers
          - mmc: sdhci-pci: Fix voltage switch for some Intel host controllers
          - extable: Consolidate *kernel_text_address() functions
          - extable: Enable RCU if it is not watching in kernel_text_address()
          - seccomp: fix the usage of get/put_seccomp_filter() in seccomp_get_filter()
          - [arm64] Make sure SPsel is always set
          - [arm64] mm: Use READ_ONCE when dereferencing pointer to pte table
          - [arm64] fault: Route pte translation faults via do_translation_fault
          - [x86] KVM: VMX: extract __pi_post_block
          - [x86] KVM: VMX: avoid double list add with VT-d posted interrupts
          - [x86] KVM: VMX: simplify and fix vmx_vcpu_pi_load
          - [x86] KVM: nVMX: fix HOST_CR3/HOST_CR4 cache
          - [x86] kvm: Handle async PF in RCU read-side critical sections
          - xfs: validate bdev support for DAX inode flag
          - sched/sysctl: Check user input value of sysctl_sched_time_avg
          - irq/generic-chip: Don't replace domain's name
          - mtd: Fix partition alignment check on multi-erasesize devices
          - [armhf] etnaviv: fix submit error path
          - [armhf] etnaviv: fix gem object list corruption
          - futex: Fix pi_state->owner serialization
          - md: fix a race condition for flush request handling
          - md: separate request handling
          - PCI: Fix race condition with driver_override
          - btrfs: fix NULL pointer dereference from free_reloc_roots()
          - btrfs: clear ordered flag on cleaning up ordered extents
          - btrfs: finish ordered extent cleaning if no progress is found
          - btrfs: propagate error to btrfs_cmp_data_prepare caller
          - btrfs: prevent to set invalid default subvolid
          - [x86] platform: fujitsu-laptop: Don't oops when FUJ02E3 is not presnt
          - PM / OPP: Call notifier without holding opp_table->lock
          - [x86] mm: Fix fault error path using unsafe vma pointer
          - [x86] fpu: Don't let userspace set bogus xcomp_bv (CVE-2017-15537)
          - [x86] KVM: VMX: do not change SN bit in vmx_update_pi_irte()
          - [x86] KVM: VMX: remove WARN_ON_ONCE in kvm_vcpu_trigger_posted_interrupt
          - [x86] KVM: VMX: use cmpxchg64
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.6
          - [armhf,arm64] usb: dwc3: ep0: fix DMA starvation by assigning req->trb on
            ep0
          - mlxsw: spectrum: Fix EEPROM access in case of SFP/SFP+
          - net: bonding: Fix transmit load balancing in balance-alb mode if
            specified by sysfs
          - openvswitch: Fix an error handling path in
            'ovs_nla_init_match_and_action()'
          - net: bonding: fix tlb_dynamic_lb default value
          - net_sched: gen_estimator: fix scaling error in bytes/packets samples
          - net: sched: fix use-after-free in tcf_action_destroy and tcf_del_walker
          - sctp: potential read out of bounds in sctp_ulpevent_type_enabled()
          - tcp: update skb->skb_mstamp more carefully
          - bpf/verifier: reject BPF_ALU64|BPF_END
          - tcp: fix data delivery rate
          - udpv6: Fix the checksum computation when HW checksum does not apply
          - ip6_gre: skb_push ipv6hdr before packing the header in ip6gre_header
          - net: phy: Fix mask value write on gmii2rgmii converter speed register
          - ip6_tunnel: do not allow loading ip6_tunnel if ipv6 is disabled in cmdline
          - net/sched: cls_matchall: fix crash when used with classful qdisc
          - 8139too: revisit napi_complete_done() usage
          - bpf: do not disable/enable BH in bpf_map_free_id()
          - tcp: fastopen: fix on syn-data transmit failure
          - [powerpc*] net: emac: Fix napi poll list corruption
          - net: ipv6: fix regression of no RTM_DELADDR sent after DAD failure
          - packet: hold bind lock when rebinding to fanout hook (CVE-2017-15649)
          - net: change skb->mac_header when Generic XDP calls adjust_head
          - net_sched: always reset qdisc backlog in qdisc_reset()
          - [armhf,arm64] net: stmmac: Cocci spatch "of_table"
          - [arm64] net: qcom/emac: specify the correct size when mapping a DMA buffer
          - vti: fix use after free in vti_tunnel_xmit/vti6_tnl_xmit
          - l2tp: fix race condition in l2tp_tunnel_delete
          - tun: bail out from tun_get_user() if the skb is empty
          - [armhf,arm64] net: dsa: mv88e6xxx: Allow dsa and cpu ports in multiple
            vlans
          - [armhf,arm64] net: dsa: Fix network device registration order
          - packet: in packet_do_bind, test fanout with bind_lock held (CVE-2017-15649)
          - packet: only test po->has_vnet_hdr once in packet_snd
          - [armhf,arm64] net: dsa: mv88e6xxx: lock mutex when freeing IRQs
          - net: Set sk_prot_creator when cloning sockets to the right proto
          - net/mlx5e: IPoIB, Fix access to invalid memory address
          - netlink: do not proceed if dump's start() errs
          - ip6_gre: ip6gre_tap device should keep dst
          - ip6_tunnel: update mtu properly for ARPHRD_ETHER tunnel device in tx path
          - IPv4: early demux can return an error code
          - tipc: use only positive error codes in messages
          - l2tp: fix l2tp_eth module loading
          - socket, bpf: fix possible use after free
          - net: rtnetlink: fix info leak in RTM_GETSTATS call
          - [amd64] bpf: fix bpf_tail_call() x64 JIT
          - usb: gadget: core: fix ->udc_set_speed() logic
          - USB: gadgetfs: Fix crash caused by inadequate synchronization
          - USB: gadgetfs: fix copy_to_user while holding spinlock
          - usb: gadget: udc: atmel: set vbus irqflags explicitly
          - usb-storage: unusual_devs entry to fix write-access regression for
            Seagate external drives
          - usb-storage: fix bogus hardware error messages for ATA pass-thru devices
          - ALSA: usb-audio: Check out-of-bounds access by corrupted buffer descriptor
          - usb: pci-quirks.c: Corrected timeout values used in handshake
          - USB: cdc-wdm: ignore -EPIPE from GetEncapsulatedResponse
          - USB: dummy-hcd: fix connection failures (wrong speed)
          - USB: dummy-hcd: fix infinite-loop resubmission bug
          - USB: dummy-hcd: Fix erroneous synchronization change
          - USB: devio: Prevent integer overflow in proc_do_submiturb()
          - USB: g_mass_storage: Fix deadlock when driver is unbound
          - USB: uas: fix bug in handling of alternate settings
          - USB: core: harden cdc_parse_cdc_header
          - usb: Increase quirk delay for USB devices
          - USB: fix out-of-bounds in usb_set_configuration
          - usb: xhci: Free the right ring in xhci_add_endpoint()
          - xhci: fix finding correct bus_state structure for USB 3.1 hosts
          - xhci: fix wrong endpoint ESIT value shown in tracing
          - usb: host: xhci-plat: allow sysdev to inherit from ACPI
          - xhci: Fix sleeping with spin_lock_irq() held in ASmedia 1042A workaround
          - xhci: set missing SuperSpeedPlus Link Protocol bit in roothub descriptor
          - [x86] Revert "xhci: Limit USB2 port wake support for AMD Promontory hosts"
          - [armhf] iio: adc: twl4030: Fix an error handling path in
            'twl4030_madc_probe()'
          - [armhf] iio: adc: twl4030: Disable the vusb3v1 rugulator in the error
            handling path of 'twl4030_madc_probe()'
          - iio: core: Return error for failed read_reg
          - uwb: properly check kthread_run return value
          - uwb: ensure that endpoint is interrupt
          - ksm: fix unlocked iteration over vmas in cmp_and_merge_page()
          - mm, hugetlb, soft_offline: save compound page order before page migration
          - mm, oom_reaper: skip mm structs with mmu notifiers
          - mm: fix RODATA_TEST failure "rodata_test: test data was not read only"
          - mm: avoid marking swap cached page as lazyfree
          - mm: fix data corruption caused by lazyfree page
          - userfaultfd: non-cooperative: fix fork use after free
          - ALSA: compress: Remove unused variable
          - Revert "ALSA: echoaudio: purge contradictions between dimension matrix
            members and total number of members"
          - ALSA: usx2y: Suppress kernel warning at page allocation failures
          - [powerpc*] powernv: Increase memory block size to 1GB on radix
          - [powerpc*] Fix action argument for cpufeatures-based TLB flush
          - percpu: make this_cpu_generic_read() atomic w.r.t. interrupts
          - [x86] intel_th: pci: Add Lewisburg PCH support
          - driver core: platform: Don't read past the end of "driver_override" buffer
          - cgroup: Reinit cgroup_taskset structure before cgroup_migrate_execute()
            returns
          - [x86] Drivers: hv: fcopy: restore correct transfer length
          - [x86] vmbus: don't acquire the mutex in vmbus_hvsock_device_unregister()
          - ftrace: Fix kmemleak in unregister_ftrace_graph
          - ovl: fix error value printed in ovl_lookup_index()
          - ovl: fix dput() of ERR_PTR in ovl_cleanup_index()
          - ovl: fix dentry leak in ovl_indexdir_cleanup()
          - ovl: fix missing unlock_rename() in ovl_do_copy_up()
          - ovl: fix regression caused by exclusive upper/work dir protection
          - [arm64] dt marvell: Fix AP806 system controller size
          - [arm64] Ensure the instruction emulation is ready for userspace
          - HID: rmi: Make sure the HID device is opened on resume
          - HID: i2c-hid: allocate hid buffers for real worst case
          - HID: wacom: leds: Don't try to control the EKR's read-only LEDs
          - HID: wacom: Properly report negative values from Intuos Pro 2 Bluetooth
          - HID: wacom: Correct coordinate system of touchring and pen twist
          - HID: wacom: generic: Send MSC_SERIAL and ABS_MISC when leaving prox
          - HID: wacom: generic: Clear ABS_MISC when tool leaves proximity
          - HID: wacom: Always increment hdev refcount within wacom_get_hdev_data
          - HID: wacom: bits shifted too much for 9th and 10th buttons
          - btrfs: avoid overflow when sector_t is 32 bit
          - Btrfs: fix overlap of fs_info::flags values
          - dm crypt: reject sector_size feature if device length is not aligned to it
          - dm ioctl: fix alignment of event number in the device list
          - dm crypt: fix memory leak in crypt_ctr_cipher_old()
          - [powerpc*] KVM: Book3S: Fix server always zero from kvmppc_xive_get_xive()
          - [x86] kvm: Avoid async PF preempting the kernel incorrectly
          - iwlwifi: mvm: use IWL_HCMD_NOCOPY for MCAST_FILTER_CMD
          - scsi: sd: Implement blacklist option for WRITE SAME w/ UNMAP
          - scsi: sd: Do not override max_sectors_kb sysfs setting
          - brcmfmac: setup passive scan if requested by user-space
          - [x86] drm/i915: always update ELD connector type after get modes
          - [x86] drm/i915/bios: ignore HDMI on port A
          - bsg-lib: fix use-after-free under memory-pressure
          - nvme-pci: Use PCI bus address for data/queues in CMB
          - mmc: core: add driver strength selection when selecting hs400es
          - nl80211: Define policy for packet pattern attributes
          - [armhf] clk: samsung: exynos4: Enable VPLL and EPLL clocks for
            suspend/resume cycle
          - udp: perform source validation for mcast early demux
          - udp: fix bcast packet reception
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.7
          - watchdog: Revert "iTCO_wdt: all versions count down twice"
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.8
          - USB: dummy-hcd: Fix deadlock caused by disconnect detection
          - [mips*] math-emu: Remove pr_err() calls from fpu_emu()
          - [mips*] bpf: Fix uninitialised target compiler error
          - [x86] mei: always use domain runtime pm callbacks.
          - [armhf] dmaengine: edma: Align the memcpy acnt array size with the
            transfer
          - [armhf] dmaengine: ti-dma-crossbar: Fix possible race condition with
            dma_inuse
          - NFS: Fix uninitialized rpc_wait_queue
          - nfs/filelayout: fix oops when freeing filelayout segment
          - HID: usbhid: fix out-of-bounds bug
          - crypto: skcipher - Fix crash on zero-length input
          - crypto: shash - Fix zero-length shash ahash digest crash
          - [x86] KVM: nVMX: fix guest CR4 loading when emulating L2 to L1 exit
          - [x86] pinctrl/amd: Fix build dependency on pinmux code
          - [x86] iommu/amd: Finish TLB flush in amd_iommu_unmap()
          - device property: Track owner device of device property
          - Revert "vmalloc: back off when the current task is killed"
          - fs/mpage.c: fix mpage_writepage() for pages with buffers
          - ALSA: usb-audio: Kill stray URB at exiting
          - ALSA: seq: Fix copy_from_user() call inside lock
          - ALSA: caiaq: Fix stray URB at probe error path
          - ALSA: line6: Fix NULL dereference at podhd_disconnect()
          - ALSA: line6: Fix missing initialization before error path
          - ALSA: line6: Fix leftover URB at error-path during probe
          - drm/atomic: Unref duplicated drm_atomic_state in
            drm_atomic_helper_resume()
          - [x86] drm/i915/edp: Get the Panel Power Off timestamp after panel is off
          - [x86] drm/i915: Read timings from the correct transcoder in
            intel_crtc_mode_get()
          - [x86] drm/i915/bios: parse DDI ports also for CHV for HDMI DDC pin and DP
            AUX channel
          - [x86] drm/i915: Use crtc_state_is_legacy_gamma in intel_color_check
          - usb: gadget: configfs: Fix memory leak of interface directory data
          - usb: gadget: composite: Fix use-after-free in
            usb_composite_overwrite_options
          - [arm64] PCI: aardvark: Move to struct pci_host_bridge IRQ mapping
            functions
          - [armhf,armhf] Revert "PCI: tegra: Do not allocate MSI target memory"
          - direct-io: Prevent NULL pointer access in submit_page_section
          - fix unbalanced page refcounting in bio_map_user_iov (CVE-2017-12190)
          - more bio_map_user_iov() leak fixes
          - bio_copy_user_iov(): don't ignore ->iov_offset
          - perf script: Add missing separator for "-F ip,brstack" (and brstackoff)
          - genirq/cpuhotplug: Enforce affinity setting on startup of managed irqs
          - genirq/cpuhotplug: Add sanity check for effective affinity mask
          - USB: serial: cp210x: fix partnum regression
          - USB: serial: console: fix use-after-free on disconnect
          - USB: serial: console: fix use-after-free after failed setup
          - RAS/CEC: Use the right length for "cec_disable"
          - [x86] alternatives: Fix alt_max_short macro to really be a max()
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.9
          - [x86] apic: Silence "FW_BUG TSC_DEADLINE disabled due to Errata" on CPUs
            without the feature
          - [x86] apic: Silence "FW_BUG TSC_DEADLINE disabled due to Errata" on
            hypervisors
          - [armhf,arm64] perf pmu: Unbreak perf record for arm/arm64 with events
            with explicit PMU
          - mm: page_vma_mapped: ensure pmd is loaded with READ_ONCE outside of lock
          - HID: hid-elecom: extend to fix descriptor for HUGE trackball
          - [x86] Drivers: hv: vmbus: Fix rescind handling issues
          - [x86] Drivers: hv: vmbus: Fix bugs in rescind handling
          - [x86] vmbus: simplify hv_ringbuffer_read
          - [x86] vmbus: refactor hv_signal_on_read
          - [x86] vmbus: eliminate duplicate cached index
          - [x86] vmbus: more host signalling avoidance
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.10
          - USB: core: fix out-of-bounds access bug in usb_get_bos_descriptor()
          - usb: hub: Allow reset retry for USB2 devices on connect bounce
          - ALSA: usb-audio: Add native DSD support for Pro-Ject Pre Box S2 Digital
          - can: gs_usb: fix busy loop if no more TX context is available
          - scsi: qla2xxx: Fix uninitialized work element
          - nbd: don't set the device size until we're connected
          - [s390x] cputime: fix guest/irq/softirq times after CPU hotplug
          - [hppa/parisc] Fix double-word compare and exchange in LWS code on 32-bit
            kernels
          - [hppa] Fix detection of nonsynchronous cr16 cycle counters
          - iio: dummy: events: Add missing break
          - [armhf] usb: musb: sunxi: Explicitly release USB PHY on exit
          - [armhf] USB: musb: fix session-bit runtime-PM quirk
          - [armhf] USB: musb: fix late external abort on suspend
          - [armhf] usb: musb: musb_cppi41: Fix the address of teardown and autoreq
            registers
          - [armhf] usb: musb: musb_cppi41: Fix cppi41_set_dma_mode() for DA8xx
          - [armhf] usb: musb: musb_cppi41: Configure the number of channels for DA8xx
          - [armhf] usb: musb: Check for host-mode using is_host_active() on reset
            interrupt
          - xhci: Identify USB 3.1 capable hosts by their port protocol capability
          - xhci: Cleanup current_cmd in xhci_cleanup_command_queue()
          - usb: xhci: Reset halted endpoint if trb is noop
          - usb: xhci: Handle error condition in xhci_stop_device()
          - can: esd_usb2: Fix can_dlc value for received RTR, frames
          - can: af_can: can_pernet_init(): add missing error handling for kzalloc
            returning NULL
          - KEYS: encrypted: fix dereference of NULL user_key_payload
          - mmc: sdhci-pci: Fix default d3_retune for Intel host controllers
          - [x86] drm/i915: Use bdw_ddi_translations_fdi for Broadwell
          - drm/nouveau/kms/nv50: fix oops during DP IRQ handling on non-MST boards
          - drm/nouveau/bsp/g92: disable by default
          - drm/nouveau/mmu: flush tlbs before deleting page tables
          - media: cec: Respond to unregistered initiators, when applicable
          - media: dvb: i2c transfers over usb cannot be done from stack
          - ALSA: seq: Enable 'use' locking in all configurations
          - ALSA: hda: Remove superfluous '-' added by printk conversion
          - ALSA: hda: Abort capability probe at invalid register read
          - [x86] i2c: ismt: Separate I2C block read from SMBus block read
          - [x86] i2c: piix4: Fix SMBus port selection for AMD Family 17h chips
          - Revert "tools/power turbostat: stop migrating, unless '-m'"
          - brcmfmac: Add check for short event packets
          - brcmsmac: make some local variables 'static const' to reduce stack size
          - [armhf] dts: sun6i: Fix endpoint IDs in second display pipeline
          - [i386] clockevents/drivers/cs5535: Improve resilience to spurious
            interrupts
          - rtlwifi: rtl8821ae: Fix connection lost problem
          - [x86] microcode/intel: Disable late loading on model 79
          - lib/digsig: fix dereference of NULL user_key_payload
          - fscrypt: fix dereference of NULL user_key_payload
          - ecryptfs: fix dereference of NULL user_key_payload
          - KEYS: Fix race between updating and finding a negative key
            (CVE-2017-15951)
          - FS-Cache: fix dereference of NULL user_key_payload
          - KEYS: don't let add_key() update an uninstantiated key (CVE-2017-15299)
          - pkcs7: Prevent NULL pointer dereference, since sinfo is not always set.
          - [arm64] dts: rockchip: correct vqmmc voltage for rk3399 platforms
          - ALSA: hda - Fix incorrect TLV callback check introduced during set_fs()
            removal
          - iomap_dio_rw: Allocate AIO completion queue before submitting dio
          - xfs: don't unconditionally clear the reflink flag on zero-block files
          - xfs: evict CoW fork extents when performing finsert/fcollapse
          - fs/xfs: Use %pS printk format for direct addresses
          - xfs: report zeroed or not correctly in xfs_zero_range()
          - xfs: update i_size after unwritten conversion in dio completion
          - xfs: perag initialization should only touch m_ag_max_usable for AG 0
          - xfs: Capture state of the right inode in xfs_iflush_done
          - xfs: always swap the cow forks when swapping extents
          - xfs: handle racy AIO in xfs_reflink_end_cow
          - xfs: Don't log uninitialised fields in inode structures
          - xfs: move more RT specific code under CONFIG_XFS_RT
          - xfs: don't change inode mode if ACL update fails
          - xfs: reinit btree pointer on attr tree inactivation walk
          - xfs: handle error if xfs_btree_get_bufs fails
          - xfs: cancel dirty pages on invalidation
          - xfs: trim writepage mapping to within eof
          - xfs: move two more RT specific functions into CONFIG_XFS_RT
      
        [ Ben Hutchings ]
        * [arm64] brcmfmac: Enable BRCMFMAC_SDIO (Closes: #877911)
        * Update build dependencies on libbabeltrace[,-ctf}-dev
        * linux-kbuild: Include scripts/ld-version.sh, needed for powerpc 64-bit
          modules
        * dax: Avoid most ABI changes in 4.13.5
        * SCSI: Avoid ABI change in 4.13.6
        * [x86] kvm: Ignore ABI change in 4.13.6
        * inet, l2tp, snd-seq, usb/gadget: Ignore ABI changes
        * [armel,armhf] mbus: Ignore ABI change in 4.13.10
        * Revert "bpf: one perf event close won't free bpf program attached ..."
          to avoid an ABI change
        * [armel] security: Enable SECURITY_APPARMOR and disable SECURITY_SELINUX
        * security: Enable DEFAULT_SECURITY_APPARMOR
        * mac80211: Avoid ABI change in 4.13.5
        * [x86] rmi4: Enable RMI4_SMB as module (Closes: #875621)
        * KEYS: Limit ABI change in 4.13.10
      bce8d83f
    • Lorenzo "Palinuro" Faletra's avatar
      238a495f
  9. 17 Oct, 2017 2 commits
  10. 09 Oct, 2017 4 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.13.4-1parrot4 · d582437d
      Lorenzo "Palinuro" Faletra authored
      linux (4.13.4-1parrot4) testing; urgency=medium
      
        * Import new Debian version
      
      linux (4.13.4-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.3
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.4
      
        [ Ben Hutchings ]
        * [armhf,arm64] mmc: Enable MMC_BCM2835 (Closes: #845422)
        * [arm64ilp32] Build a linux-libc-dev package (Closes: #874536)
        * [mips*r6*] Re-enable these architectures, now that dak knows about them
          (Closes: #825024)
        * [x86] Enable INTEL_CHT_INT33FE as module (Closes: #873164)
        * [armhf] Enable AXP20X_ADC, CHARGER_AXP20X, BATTERY_AXP20X, GPIO_AXP209,
          AXP288_CHARGER, AXP288_FUEL_GAUGE, EXTCON_AXP288, AXP288_ADC as modules
          (Closes: #873038)
        * thp: Enable TRANSPARENT_HUGEPAGE_ALWAYS instead of
          TRANSPARENT_HUGEPAGE_MADVISE
        * ALSA: Enable SND_OSSEMUL, a new dependency of SND_{MIXER,PCM}_OSS
        * [armel] rtc: Disable RTC_NVMEM
        * [x86] hyperv-daemons: Use pid file name in init script status operation
        * Update policy version to 4.1.1:
          - linux-doc: Build an empty package when the nodoc profile is used
          - [x86] hyperv-daemons: Create pid files under /run, not /var/run
          - Change all binary packages with priority: extra to priority: optional
          - Install copyright file (and some other documentation) when the nodoc
            profile is used
        * debian/control: Move many build dependencies to Build-Depends-Arch field
        * debian/control: Remove obsolete workarounds and alternate build deps
        * usbip: Stop building broken libusbip-dev package
        * Rename lintian-overrides template files to be consistent
        * linux-image-dbg: Override lintian errors binary-from-other-architecture and
          shlib-without-PT_GNU_STACK-section for vDSOs
        * [armhf] dts: exynos: Add dwc3 SUSPHY quirk (Closes: #843448)
        * liblockdep: Make missing function declarations fatal errors, to catch use
          of missing kernel APIs
        * liblockdep: Define pr_cont()
        * Set ABI to 1
      
        [ Uwe Kleine-König ]
        * [arm64] really enable NET_DSA_MV88E6XXX for Espressobin
      
        [ John Paul Adrian Glaubitz ]
        * [m68k] Enable CONFIG_PATA_FALCON as module.
      
        [ Salvatore Bonaccorso ]
        * fix infoleak in waitid(2) (CVE-2017-14954)
      
      linux (4.13.2-1~exp1) experimental; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.2
      
        [ Uwe Kleine-König ]
        * USB/misc: reenable UCSI which got lost due to upstream changes
        * update kernel config templates for upstream changes
        * [amd64] enable CONFIG_SPI_PXA2XX for Apple MacBook Pro (Closes: #872004)
      
      linux (4.13.1-1~exp1) experimental; urgency=medium
      
        * New upstream release: https://kernelnewbies.org/Linux_4.13
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.1
      
        [ Roger Shimizu ]
        * debian/bin/buildcheck.py:
          Add check for uncompressed Image size, which is necessary for
          armel/marvell flavour currently.
      
        [ Ben Hutchings ]
        * [mips*/octeon] mmc: Enable MMC_CAVIUM_OCTEON as module (Closes: #800594)
      
        [ Uwe Kleine-König ]
        * [arm64] enable NET_DSA_MV88E6XXX for Espressobin.
      
      linux (4.13~rc7-1~exp1) experimental; urgency=medium
      
        * New upstream release candidate
      
        [ Ben Hutchings ]
        * [sh4] Do not use hyphen in exported variable names (fixes FTBFS)
        * aufs: Update support patchset to aufs4.x-rcN-20170828
      
        [ Roger Shimizu ]
        * [armel] Disable CONFIG_STRICT_KERNEL_RWX, which will save about 3MB
          on linux Image (before compression). (Closes: #870185)
        * [armel] Change MTD_OF_PARTS, MTD_BLOCK, and MTD_PHYSMAP_OF from
          built-in to modules.
          Also change all RTC related except RTC_DRV_MV, which includes
          RTC_DRV_DS1307, RTC_DRV_RS5C372, RTC_DRV_PCF8563, RTC_DRV_M41T80,
          and RTC_DRV_S35390A, to modules. Because most marvell boards use
          RTC_DRV_MV. (above two fix FTBFS)
      
      linux (4.13~rc5-1~exp1) experimental; urgency=medium
      
        * New upstream release candidate
      
        [ Ben Hutchings ]
        * cpupower: Add/update definition of MSRHEADER macro for turbostat and
          x86_energy_perf_policy
        * Remove support for upstream DocBook-based documentation, including the
          linux-manual package
        * liblockdep: Re-enable liblockdep packages following upstream fixes
      d582437d
    • Lorenzo "Palinuro" Faletra's avatar
      c69871ad
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.12.13-1parrot13 · 5b7e456f
      Lorenzo "Palinuro" Faletra authored
      linux (4.12.13-1parrot13) testing; urgency=medium
      
        * Import new upstream release.
      
      linux (4.12.13-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.13
          - mtd: nand: make Samsung SLC NAND usable again
          - mtd: nand: hynix: add support for 20nm NAND chips
          - [armhf] mtd: nand: mxc: Fix mxc_v1 ooblayout
          - nvme-fabrics: generate spec-compliant UUID NQNs
          - btrfs: resume qgroup rescan on rw remount
          - rtlwifi: btcoexist: Fix breakage of ant_sel for rtl8723be
          - radix-tree: must check __radix_tree_preload() return value
          - mm: kvfree the swap cluster info if the swap file is unsatisfactory
          - mm/swapfile.c: fix swapon frontswap_map memory leak on error
          - mm/memory.c: fix mem_cgroup_oom_disable() call missing
          - [i386] ALSA: msnd: Optimize / harden DSP and MIDI loops
          - [x86] KVM: SVM: Limit PFERR_NESTED_GUEST_PAGE error_code check to L1 guest
          - rt2800: fix TX_PIN_CFG setting for non MT7620 chips
          - Bluetooth: Properly check L2CAP config option output buffer length
            (CVE-2017-1000251) (Closes: #875881)
          - [arm64] dts: marvell: armada-37xx: Fix GIC maintenance interrupt
          - [armel,armhf] 8692/1: mm: abort uaccess retries upon fatal signal
          - NFS: Fix 2 use after free issues in the I/O code
          - NFS: Sync the correct byte range during synchronous writes
          - NFSv4: Fix up mirror allocation
          - xfs: XFS_IS_REALTIME_INODE() should be false if no rt device present
            (CVE-2017-14340)
      
        [ Salvatore Bonaccorso ]
        * sctp: Avoid out-of-bounds reads from address storage (CVE-2017-7558)
        * scsi: qla2xxx: Fix an integer overflow in sysfs code (CVE-2017-14051)
        * Add ABI reference for 4.12.0-2
      
        [ Ben Hutchings ]
        * nl80211: check for the required netlink attributes presence (CVE-2017-12153)
        * [x86] kvm: nVMX: Don't allow L2 to access the hardware CR8 (CVE-2017-12154)
        * video: fbdev: aty: do not leak uninitialized padding in clk to userspace
          (CVE-2017-14156)
        * scsi: fix the issue that iscsi_if_rx doesn't parse nlmsg properly
          (CVE-2017-14489)
        * packet: Don't write vnet header beyond end of buffer (CVE-2017-14497)
        * [x86] KVM: VMX: Do not BUG() on out-of-bounds guest IRQ (CVE-2017-1000252)
        * nfs: Ignore ABI change
      
      linux (4.12.12-2parrot12) testing; urgency=medium
      
        * Import new Debian version.
      
      linux (4.12.12-2) unstable; urgency=medium
      
      
      
      linux (4.12.12-2parrot12) testing; urgency=medium
      
        * Import new Debian version.
      
      linux (4.12.12-2) unstable; urgency=medium
      
        * debian/source/lintian-overrides: Override license-problem-gfdl-invariants
          error triggered by a ReSTified copy of the GFDL
      
      linux (4.12.12-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.7
          - ppp: Fix false xmit recursion detect with two ppp devices
          - ppp: fix xmit recursion detection on ppp channels
          - tcp: avoid setting cwnd to invalid ssthresh after cwnd reduction states
          - net: fix keepalive code vs TCP_FASTOPEN_CONNECT
          - ipv6: set rt6i_protocol properly in the route when it is installed
          - [s390x] bpf: fix jit branch offset related to ldimm64
          - net/mlx4_en: don't set CHECKSUM_COMPLETE on SCTP packets
          - net: sched: set xt_tgchk_param par.net properly in ipt_init_target
          - net: sched: set xt_tgchk_param par.nft_compat as 0 in ipt_init_target
          - tcp: fastopen: tcp_connect() must refresh the route
          - qmi_wwan: fix NULL deref on disconnect
          - net: avoid skb_warn_bad_offload false positives on UFO
          - igmp: Fix regression caused by igmp sysctl namespace code.
          - scsi: sg: only check for dxfer_len greater than 256M
          - btrfs: Remove false alert when fiemap range is smaller than on-disk
            extent
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.8
          - mm: ratelimit PFNs busy info message
          - mm: fix list corruptions on shmem shrinklist
          - futex: Remove unnecessary warning from get_futex_key
          - xfs: Fix leak of discard bio
          - [armhf] pinctrl: armada-37xx: Fix number of pin in south bridge
          - mtd: nand: Fix timing setup for NANDs that do not support SET FEATURES
          - mtd: nand: Declare tBERS, tR and tPROG as u64 to avoid integer overflow
          - iscsi-target: fix memory leak in iscsit_setup_text_cmd()
          - iscsi-target: Fix iscsi_np reset hung task during parallel delete
          - usb-storage: fix deadlock involving host lock and scsi_done
          - target: Fix node_acl demo-mode + uncached dynamic shutdown regression
          - fuse: initialize the flock flag in fuse_file on allocation
          - i2c: designware: Some broken DSTDs use 1MiHz instead of 1MHz
          - nand: fix wrong default oob layout for small pages using soft ecc
          - mmc: mmc: correct the logic for setting HS400ES signal voltage
          - nfs/flexfiles: fix leak of nfs4_ff_ds_version arrays
          - [armhf] drm/etnaviv: Fix off-by-one error in reloc checking
          - [x86] drm/i915: Fix out-of-bounds array access in bdw_load_gamma_lut
          - [armhf] usb: musb: fix tx fifo flush handling again
          - USB: hcd: Mark secondary HCD as dead if the primary one died
          - [armhf] iio: accel: st_accel: add SPI-3wire support
          - [x86] iio: accel: bmc150: Always restore device to normal mode after
            suspend-resume
          - iio: light: tsl2563: use correct event code
          - staging: comedi: comedi_fops: do not call blocking ops when !TASK_RUNNING
          - uas: Add US_FL_IGNORE_RESIDUE for Initio Corporation INIC-3069
          - firmware: fix batched requests - wake all waiters
          - firmware: fix batched requests - send wake up on failure on direct lookups
          - firmware: avoid invalid fallback aborts by using killable wait
          - block: Make blk_mq_delay_kick_requeue_list() rerun the queue at a quiet
            time
          - USB: Check for dropped connection before switching to full speed
          - usb: core: unlink urbs from the tail of the endpoint's urb_list
          - usb: quirks: Add no-lpm quirk for Moshi USB to Ethernet Adapter
          - usb:xhci:Add quirk for Certain failing HP keyboard on reset after resume
          - PCI: Protect pci_error_handlers->reset_notify() usage with device_lock()
          - xhci: Reset Renesas uPD72020x USB controller for 32-bit DMA issue
          - pnfs/blocklayout: require 64-bit sector_t
          - [x86] pinctrl: cherryview: Add Setzer models to the Chromebook DMI quirk
          - [armhf] pinctrl: sunxi: add a missing function of A10/A20 pinctrl driver
          - [x86] pinctrl: intel: merrifield: Correct UART pin lists
          - [armhf] pinctrl: samsung: Remove bogus irq_[un]mask from resource
            management
          - [arm64] pinctrl: meson-gxbb: Add missing GPIODV_18 pin entry
          - [arm64] pinctrl: meson-gxl: Add missing GPIODV_18 pin entry
          - [mips*] Revert "MIPS: Don't unnecessarily include kmalloc.h into
            <asm/cache.h>."
          - [mips*/octeon] Fix broken EDAC driver.
          - [ppc64el] Fix /proc/cpuinfo revision for POWER9 DD2
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.9
          - audit: Fix use after free in audit_remove_watch_rule()
          - [hppa] pci memory bar assignment fails with 64bit kernels on dino/cujo
          - [x86] crypto: sha1 - Fix reads beyond the number of blocks passed
          - [x86] drm/i915: Perform an invalidate prior to executing golden
            renderstate
          - drm/amdgpu: save list length when fence is signaled
          - md: fix test in md_write_start()
          - md: always clear ->safemode when md_check_recovery gets the mddev lock.
          - MD: not clear ->safemode for external metadata array
          - ALSA: seq: 2nd attempt at fixing race creating a queue
          - ALSA: usb-audio: Apply sample rate quirk to Sennheiser headset
          - ALSA: usb-audio: Add mute TLV for playback volumes on C-Media devices
          - ALSA: usb-audio: add DSD support for new Amanero PID
          - mm: discard memblock data later
          - slub: fix per memcg cache leak on css offline
          - mm: fix double mmap_sem unlock on MMF_UNSTABLE enforced SIGBUS
          - mm/cma_debug.c: fix stack corruption due to sprintf usage
          - mm/mempolicy: fix use after free when calling get_mempolicy
          - mm/vmalloc.c: don't unconditonally use __GFP_HIGHMEM
          - [amd64,arm64] mm: revert x86_64 and arm64 ELF_ET_DYN_BASE base changes
          - xen: fix bio vec merging (CVE-2017-12134) (Closes: #866511)
          - [armhf] ARM: dts: imx6qdl-nitrogen6_som2: fix PCIe reset
          - blk-mq-pci: add a fallback when pci_irq_get_affinity returns NULL
          - [powerpc*] Fix VSX enabling/flushing to also test MSR_FP and MSR_VEC
          - xen-blkfront: use a right index when checking requests
          - [x86] perf: Fix RDPMC vs. mm_struct tracking
          - [amd64] asm: Clear AC on NMI entries
          - [x86] Fix norandmaps/ADDR_NO_RANDOMIZE
          - [x86] elf: Remove the unnecessary ADDR_NO_RANDOMIZE checks
          - genirq: Restore trigger settings in irq_modify_status()
          - genirq/ipi: Fixup checks against nr_cpu_ids
          - kernel/watchdog: Prevent false positives with turbo modes
          - Sanitize 'move_pages()' permission checks (CVE-2017-14140)
          - pids: make task_tgid_nr_ns() safe
          - debug: Fix WARN_ON_ONCE() for modules
          - usb: optimize acpi companion search for usb port devices
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.10
          - [sparc64] remove unnecessary log message
          - bonding: require speed/duplex only for 802.3ad, alb and tlb
          - bonding: ratelimit failed speed/duplex update warning
          - af_key: do not use GFP_KERNEL in atomic contexts
          - dccp: purge write queue in dccp_destroy_sock()
          - dccp: defer ccid_hc_tx_delete() at dismantle time
          - ipv4: fix NULL dereference in free_fib_info_rcu()
          - net_sched/sfq: update hierarchical backlog when drop packet
          - net_sched: remove warning from qdisc_hash_add
          - bpf: fix bpf_trace_printk on 32 bit archs
          - net: igmp: Use ingress interface rather than vrf device
          - openvswitch: fix skb_panic due to the incorrect actions attrlen
          - ptr_ring: use kmalloc_array()
          - ipv4: better IP_MAX_MTU enforcement
          - nfp: fix infinite loop on umapping cleanup
          - tun: handle register_netdevice() failures properly
          - sctp: fully initialize the IPv6 address in sctp_v6_to_addr()
          - tipc: fix use-after-free
          - ipv6: reset fn->rr_ptr when replacing route
          - ipv6: repair fib6 tree in failure case
          - tcp: when rearming RTO, if RTO time is in past then fire RTO ASAP
          - net/mlx4_core: Enable 4K UAR if SRIOV module parameter is not enabled
          - irda: do not leak initialized list.dev to userspace
          - net: sched: fix NULL pointer dereference when action calls some targets
          - net_sched: fix order of queue length updates in qdisc_replace()
          - bpf, verifier: add additional patterns to evaluate_reg_imm_alu
          - bpf: fix mixed signed/unsigned derived min/max value bounds
          - bpf/verifier: fix min/max handling in BPF_SUB
          - Input: ALPS - fix two-finger scroll breakage in right side on ALPS
            touchpad
          - [s390x] KVM: sthyi: fix sthyi inline assembly
          - [s390x] KVM: sthyi: fix specification exception detection
          - [x86] KVM: simplify handling of PKRU
          - [x86] KVM, pkeys: do not use PKRU value in vcpu->arch.guest_fpu.state
          - [x86] KVM: block guest protection keys unless the host has them enabled
          - ALSA: core: Fix unexpected error at replacing user TLV
          - ALSA: firewire: fix NULL pointer dereference when releasing
            uninitialized data of iso-resource
          - ALSA: firewire-motu: destroy stream data surely at failure of card
            initialization
          - PM/hibernate: touch NMI watchdog when creating snapshot
          - mm, shmem: fix handling /sys/kernel/mm/transparent_hugepage/shmem_enabled
          - dax: fix deadlock due to misaligned PMD faults
          - i2c: designware: Fix system suspend
          - mm/madvise.c: fix freeing of locked page with MADV_FREE
          - fork: fix incorrect fput of ->exe_file causing use-after-free
          - mm/memblock.c: reversed logic in memblock_discard()
          - [arm64] fpsimd: Prevent registers leaking across exec
          - drm: Fix framebuffer leak
          - drm: Release driver tracking before making the object available again
          - [armhf] drm/sun4i: Implement drm_driver lastclose to restore fbdev
            console
          - drm/atomic: Handle -EDEADLK with out-fences correctly
          - drm/atomic: If the atomic check fails, return its value first
          - [x86] drm/i915/vbt: ignore extraneous child devices for a port
          - [x86] drm/i915/gvt: Fix the kernel null pointer error
          - Revert "drm/amdgpu: fix vblank_time when displays are off"
          - ACPI: device property: Fix node lookup in
            acpi_graph_get_child_prop_value()
          - tracing: Call clear_boot_tracer() at lateinit_sync
          - tracing: Missing error code in tracer_alloc_buffers()
          - tracing: Fix kmemleak in tracing_map_array_free()
          - tracing: Fix freeing of filter in create_filter() when set_str is false
          - RDMA/uverbs: Initialize cq_context appropriately
          - cifs: Fix df output for users with quota limits
          - cifs: return ENAMETOOLONG for overlong names in
            cifs_open()/cifs_lookup()
          - nfsd: Limit end of page list when decoding NFSv4 WRITE
          - ring-buffer: Have ring_buffer_alloc_read_page() return error on offline
            CPU
          - virtio_pci: fix cpu affinity support
          - ftrace: Check for null ret_stack on profile function graph entry
            function
          - perf/core: Fix group {cpu,task} validation
          - timers: Fix excessive granularity of new timers after a nohz idle
          - [x86] mm: Fix use-after-free of ldt_struct
          - net: sunrpc: svcsock: fix NULL-pointer exception
          - netfilter: expect: fix crash when putting uninited expectation
          - netfilter: nat: fix src map lookup
          - netfilter: nfnetlink: Improve input length sanitization in nfnetlink_rcv
          - Bluetooth: hidp: fix possible might sleep error in hidp_session_thread
          - Bluetooth: cmtp: fix possible might sleep error in cmtp_session
          - Bluetooth: bnep: fix possible might sleep error in bnep_session
          - iio: hid-sensor-trigger: Fix the race with user space powering up
            sensors
          - iommu: Fix wrong freeing of iommu_device->dev
          - Clarify (and fix) MAX_LFS_FILESIZE macros
          - ACPI: EC: Fix regression related to wrong ECDT initialization order
          - [powerpc*] mm: Ensure cpumask update is ordered
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.11
          - [arm64] mm: abort uaccess retries upon fatal signal
          - [x86] io: Add "memory" clobber to insb/insw/insl/outsb/outsw/outsl
          - [mips*] irqchip: mips-gic: SYNC after enabling GIC region
          - Input: synaptics - fix device info appearing different on reconnect
          - Input: xpad - fix PowerA init quirk for some gamepad models
          - crypto: chacha20 - fix handling of chunked input
          - [x86] i2c: ismt: Don't duplicate the receive length for block reads
          - [x86] i2c: ismt: Return EMSGSIZE for block reads with bogus length
          - crypto: algif_skcipher - only call put_page on referenced and used pages
          - mm, uprobes: fix multiple free of ->uprobes_state.xol_area
          - mm, madvise: ensure poisoned pages are removed from per-cpu lists
          - ceph: fix readpage from fscache
          - cpumask: fix spurious cpumask_of_node() on non-NUMA multi-node configs
          - cpuset: Fix incorrect memory_pressure control file mapping
          - CIFS: Fix maximum SMB2 header size
          - CIFS: remove endian related sparse warning
          - dm mpath: do not lock up a CPU with requeuing activity
          - [x86] drm/vmwgfx: Fix F26 Wayland screen update issue
          - [arm64, armhf] wl1251: add a missing spin_lock_init()
          - [arm64] mmc: sdhci-xenon: add set_power callback
          - lib/mpi: kunmap after finishing accessing buffer
          - xfrm: policy: check policy direction value
          - drm/ttm: Fix accounting error when fail to get pages for pool
          - nvme: fix the definition of the doorbell buffer config support bit
          - drm/nouveau/i2c/gf119-: add support for address-only transactions
          - epoll: fix race between ep_poll_callback(POLLFREE) and
            ep_free()/ep_remove()
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.12
          - usb: quirks: add delay init quirk for Corsair Strafe RGB keyboard
          - USB: serial: option: add support for D-Link DWM-157 C1
          - usb: Add device quirk for Logitech HD Pro Webcam C920-C
          - usb:xhci:Fix regression when ATI chipsets detected
          - [armhf] USB: musb: fix external abort on suspend
          - USB: core: Avoid race of async_completed() w/ usbdev_release()
          - [x86] staging/rts5208: fix incorrect shift to extract upper nybble
          - iio: adc: ti-ads1015: fix incorrect data rate setting update
          - iio: adc: ti-ads1015: fix scale information for ADS1115
          - iio: adc: ti-ads1015: enable conversion when CONFIG_PM is not set
          - iio: adc: ti-ads1015: avoid getting stale result after runtime resume
          - iio: adc: ti-ads1015: don't return invalid value from buffer setup
            callbacks
          - iio: adc: ti-ads1015: add adequate wait time to get correct conversion
          - driver core: bus: Fix a potential double free
          - HID: wacom: Do not completely map WACOM_HID_WD_TOUCHRINGSTATUS usage
          - [x86] intel_th: pci: Add Cannon Lake PCH-H support
          - [x86] intel_th: pci: Add Cannon Lake PCH-LP support
          - ath10k: fix memory leak in rx ring buffer allocation
          - Input: trackpoint - assume 3 buttons when buttons detection fails
          - rtlwifi: rtl_pci_probe: Fix fail path of _rtl_pci_find_adapter
          - Bluetooth: Add support of 13d3:3494 RTL8723BE device
          - iwlwifi: pci: add new PCI ID for 7265D
          - dlm: avoid double-free on error path in dlm_device_{register,unregister}
          - mwifiex: correct channel stat buffer overflows
          - [s390x] mm: avoid empty zero pages for KVM guests to avoid postcopy
            hangs
          - [s390x] mm: fix BUG_ON in crst_table_upgrade
          - drm/nouveau/pci/msi: disable MSI on big-endian platforms by default
          - drm/nouveau: Fix error handling in nv50_disp_atomic_commit
          - workqueue: Fix flag collision
          - ahci: don't use MSI for devices with the silly Intel NVMe remapping
            scheme
          - cs5536: add support for IDE controller variant
          - scsi: sg: protect against races between mmap() and SG_SET_RESERVED_SIZE
          - scsi: sg: recheck MMAP_IO request length with lock held
          - of/device: Prevent buffer overflow in of_device_modalias()
          - rtlwifi: Fix memory leak when firmware request fails
          - rtlwifi: Fix fallback firmware loading
      
        [ Ben Hutchings ]
        * [alpha] udeb: Add i2c-modules (fixes FTBFS)
        * cpupower: Add/update definition of MSRHEADER macro for turbostat and
          x86_energy_perf_policy (Closes: #872414)
        * Bump ABI to 2
      
        [ Roger Shimizu ]
        * [armel] Disable CONFIG_STRICT_KERNEL_RWX, which will save about 3MB
          on linux Image (before compression). (Closes: #870185)
      
        [ Uwe Kleine-König ]
        * mtd: nandsim: remove debugfs entries in error path
      5b7e456f
    • Lorenzo "Palinuro" Faletra's avatar
      dbbccdab
  11. 24 Aug, 2017 2 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.12.6-1parrot6 · d3d40ed6
      Lorenzo "Palinuro" Faletra authored
      linux (4.12.6-1parrot6) testing; urgency=medium
      
        * Import new Debian release.
      
      linux (4.12.6-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.3
          -  brcmfmac: fix possible buffer overflow in brcmf_cfg80211_mgmt_tx()
             (CVE-2017-7541)
          - [sparc64] Adding asm-prototypes.h for genksyms to generate crc
          - [sparc64] sed regex in Makefile.build requires line break between
            exported symbols
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.4
          - f2fs: sanity check checkpoint segno and blkoff (CVE-2017-10663)
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.5
          - dentry name snapshots (CVE-2017-7533)
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.6
          - saa7164: fix double fetch PCIe access condition (CVE-2017-8831)
          - ipv6: avoid overflow of offset in ip6_find_1stfragopt (CVE-2017-7542)
      
        [ Ben Hutchings ]
        * media: Enable USB_RAINSHADOW_CEC as module (see #868511)
        * Clean up symbol version fixes for symbols exported from asm
          (fixes FTBFS on sparc64):
          - [alpha] Un-revert "alpha: move exports to actual definitions"
          - [alpha] Restore symbol versions for symbols exported from assembly
          - [m68k] Un-revert "m68k: move exports to definitions"
          - [sparc64] Un-revert "sparc: move exports to definitions"
        * [mips*/octeon] Fix broken EDAC driver (fixes FTBFS)
        * [armhf] Revert "gpu: host1x: Add IOMMU support"
        * [armhf] udeb: Replace imx-ipuv3-crtc with imxdrm in fb-modules
        * [i386] perf tools: Fix unwind build (fixes FTBFS)
        * debian/control: Fix version in dependencies on arch-independent
          linux-headers-*-common* (Closes: #869511)
        * xfrm: policy: check policy direction value (CVE-2017-11600)
        * rtlwifi: Fix memory leak when firmware request fails
        * rtlwifi: Fix fallback firmware loading (Closes: #869084)
        * [arm64] video: Enable FRAMEBUFFER_CONSOLE (Closes: #870071)
        * integrity: Enable INTEGRITY_SIGNATURE, INTEGRITY_ASYMMETRIC_KEYS
          (Closes: #869565)
        * [x86] sound: Enable SND_X86; enable HDMI_LPE_AUDIO as module
          (Closes: #869372)
        * blk-mq: Change MQ_IOSCHED_KYBER from built-in to module
        * blk-mq: Enable IOSCHED_BFQ as module (Closes: #869028); enable
          BFQ_GROUP_IOSCHED
        * bfq: Enable auto-loading when built as a module
        * netfilter: Enable NFT_FIB_IPV4, NFT_FIB_IPV6, NFT_FIB_INET as modules
          (Closes: #868803)
        * [amd64,arm64] mm: Revert x86_64 and arm64 ELF_ET_DYN_BASE base
          (Closes: #869090)
      
        [ Salvatore Bonaccorso ]
        * packet: fix tp_reserve race in packet_set_ring (CVE-2017-1000111)
        * udp: consistently apply ufo or fragmentation (CVE-2017-1000112)
        * Set ABI to 1
      
        [ Uwe Kleine-König ]
        * [arm64] enable MMC_SDHCI_XENON and MVNETA for Espressobin and enable
          respective device in its device tree (Closes: #871049)
      
        [ Roger Shimizu ]
        * [armel] Change NAND related stuff to modules (fixes FTBFS)
      
      linux (4.12.2-1~exp1) experimental; urgency=medium
      
        * New upstream release: https://kernelnewbies.org/Linux_4.12
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.1
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.2
      
        [ Ben Hutchings ]
        * Add script to regenerate lockdown patch series from git
        * [rt] Disable until it is updated for 4.12 or later
        * scripts/mod: Update modpost wrapper for 4.12
        * Set ABI name to trunk
      
      linux (4.11.11-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.7
          - fs: pass on flags in compat_writev
          - configfs: Fix race between create_link and configfs_rmdir
          - can: gs_usb: fix memory leak in gs_cmd_reset()
          - ila_xlat: add missing hash secret initialization
          - cpufreq: conservative: Allow down_threshold to take values from 1 to 10
          - vb2: Fix an off by one error in 'vb2_plane_vaddr'
          - cec: race fix: don't return -ENONET in cec_receive()
          - selinux: fix double free in selinux_parse_opts_str()
          - mac80211: don't look at the PM bit of BAR frames
          - mac80211/wpa: use constant time memory comparison for MACs
          - [x86] drm/amdgpu: Fix overflow of watermark calcs at > 4k resolutions.
          - [x86] drm/i915: Fix GVT-g PVINFO version compatibility check
          - [x86] drm/i915: Fix scaling check for 90/270 degree plane rotation
          - [x86] drm/i915: Do not sync RCU during shrinking
          - mac80211: fix IBSS presp allocation size
          - mac80211: strictly check mesh address extension mode
          - mac80211: fix dropped counter in multiqueue RX
          - mac80211: don't send SMPS action frame in AP mode when not needed
          - [arm64, armhf] drm/vc4: Fix OOPSes from trying to cache a partially
            constructed BO.
          - serial: 8250_lpss: Unconditionally set PCI master for Quark
          - [sh4] serial: sh-sci: Fix (AUTO)RTS in sci_init_pins()
          - [sh4] serial: sh-sci: Fix late enablement of AUTORTS
          - [x86] mm/32: Set the '__vmalloc_start_set' flag in initmem_init()
          - [armhf] mfd: axp20x: Add support for dts property "xpowers,master-mode"
          - [armhf] dt-bindings: mfd: axp20x: Add "xpowers,master-mode" property for
            AXP806 PMICs
          - [powerpc] mm: Add physical address to Linux page table dump
          - staging: rtl8188eu: prevent an underflow in rtw_check_beacon_data()
          - [armhf] iio: adc: ti_am335x_adc: allocating too much in probe
          - [x86] ALSA: hda: Add Geminilake id to SKL_PLUS
          - ALSA: usb-audio: fix Amanero Combo384 quirk on big-endian hosts
          - USB: hub: fix SS max number of ports
          - usb: core: fix potential memory leak in error path during hcd creation
          - [x86] USB: usbip: fix nonconforming hub descriptor
          - [arm64, armhf] usb: dwc3: gadget: Fix ISO transfer performance
          - pvrusb2: reduce stack usage pvr2_eeprom_analyze()
          - USB: gadget: dummy_hcd: fix hub-descriptor removable fields
          - coda: restore original firmware locations
          - usb: xhci: Fix USB 3.1 supported protocol parsing
          - usb: xhci: ASMedia ASM1042A chipset need shorts TX quirk
          - USB: gadget: fix GPF in gadgetfs
          - USB: gadgetfs, dummy-hcd, net2280: fix locking for callbacks
          - mm/memory-failure.c: use compound_head() flags for huge pages
          - swap: cond_resched in swap_cgroup_prepare()
          - mm: numa: avoid waiting on freed migrated pages
          - userfaultfd: shmem: handle coredumping in handle_userfault()
          - sched/core: Idle_task_exit() shouldn't use switch_mm_irqs_off()
          - genirq: Release resources in __setup_irq() error path
          - alarmtimer: Prevent overflow of relative timers
          - alarmtimer: Rate limit periodic intervals
          - virtio_balloon: disable VIOMMU support
          - [mips*] Fix bnezc/jialc return address calculation
          - [mips*] .its targets depend on vmlinux
          - [sparc*] crypto: Work around deallocated stack frame reference gcc bug
            on sparc.
          - [armhf] dts: am335x-sl50: Fix card detect pin for mmc1
          - [armhf] dts: am335x-sl50: Fix cannot claim requested pins for spi0
          - mm: larger stack guard gap, between vmas
          - Allow stack to grow up to address space limit
          - mm: fix new crash in unmapped_area_topdown()
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.8
          - [armhf] clk: sunxi-ng: a31: Correct lcd1-ch1 clock register offset
          - [armhf] clk: sunxi-ng: v3s: Fix usb otg device reset bit
          - [armhf] clk: sunxi-ng: sun5i: Fix ahb_bist_clk definition
          - xen/blkback: fix disconnect while I/Os in flight
          - xen-blkback: don't leak stack data via response ring (XSA-216,
            CVE-2017-10911)
          - ALSA: firewire-lib: Fix stall of process context at packet error
          - ALSA: pcm: Don't treat NULL chmap as a fatal error
          - ALSA: hda - Add Coffelake PCI ID
          - ALSA: hda - Apply quirks to Broxton-T, too
          - fs/exec.c: account for argv/envp pointers (CVE-2017-1000365)
          - [powerpc] perf: Fix oops when kthread execs user process
          - autofs: sanity check status reported with AUTOFS_DEV_IOCTL_FAIL
          - fs/dax.c: fix inefficiency in dax_writeback_mapping_range()
          - lib/cmdline.c: fix get_options() overflow while parsing ranges
          - [x86] perf/x86/intel: Add 1G DTLB load/store miss support for SKL
          - perf probe: Fix probe definition for inlined functions
          - [x86] KVM: fix singlestepping over syscall (CVE-2017-7518)
          - [s390x] KVM gaccess: fix real-space designation asce handling for gmap
            shadows
          - [powerpc*] KVM: Book3S HV: Cope with host using large decrementer mode
          - [powerpc*] KVM: Book3S HV: Preserve userspace HTM state properly
          - [powerpc*] KVM: Book3S HV: Ignore timebase offset on POWER9 DD1
          - [powerpc*] KVM: Book3S HV: Context-switch EBB registers properly
          - [powerpc*] KVM: Book3S HV: Restore critical SPRs to host values on guest
            exit
          - [powerpc*] KVM: Book3S HV: Save/restore host values of debug registers
          - CIFS: Improve readdir verbosity
          - CIFS: Fix some return values in case of error in 'crypt_message'
          - cxgb4: notify uP to route ctrlq compl to rdma rspq
          - HID: Add quirk for Dell PIXART OEM mouse
          - random: silence compiler warnings and fix race
          - signal: Only reschedule timers on signals timers have sent
          - [powerpc] kprobes: Pause function_graph tracing during jprobes handling
          - ]powerpc*] 64s: Handle data breakpoints in Radix mode
          - Input: i8042 - add Fujitsu Lifebook AH544 to notimeout list
          - brcmfmac: add parameter to pass error code in firmware callback
          - brcmfmac: use firmware callback upon failure to load
          - brcmfmac: unbind all devices upon failure in firmware callback
          - time: Fix clock->read(clock) race around clocksource changes
          - time: Fix CLOCK_MONOTONIC_RAW sub-nanosecond accounting
          - [arm64] vdso: Fix nsec handling for CLOCK_MONOTONIC_RAW
          - target: Fix kref->refcount underflow in transport_cmd_finish_abort
          - iscsi-target: Fix delayed logout processing greater than
            SECONDS_FOR_LOGOUT_COMP
          - iscsi-target: Reject immediate data underflow larger than SCSI transfer
            length
          - drm/radeon: add a PX quirk for another K53TK variant
          - drm/radeon: add a quirk for Toshiba Satellite L20-183
          - [x86] drm/amdgpu/atom: fix ps allocation size for EnableDispPowerGating
          - [x86] drm/amdgpu: adjust default display clock
          - [x86] drm/amdgpu: add Polaris12 DID
          - ACPI / scan: Apply default enumeration to devices with ACPI drivers
          - ACPI / scan: Fix enumeration for special SPI and I2C devices
          - rxrpc: Fix several cases where a padded len isn't checked in ticket
            decode (CVE-2017-7482)
          - drm: Fix GETCONNECTOR regression
          - usb: gadget: f_fs: avoid out of bounds access on comp_desc
          - spi: double time out tolerance
          - net: phy: fix marvell phy status reading
          - netfilter: xtables: zero padding in data_to_user
          - netfilter: xtables: fix build failure from COMPAT_XT_ALIGN outside
            CONFIG_COMPAT
          - brcmfmac: fix uninitialized warning in brcmf_usb_probe_phase2()
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.9
          - net: don't call strlen on non-terminated string in dev_set_alias()
          - net: Fix inconsistent teardown and release of private netdev state.
          - [s390x] net: fix up for "Fix inconsistent teardown and release of
            private netdev state"
          - mac80211: free netdev on dev_alloc_name() error
          - decnet: dn_rtmsg: Improve input length sanitization in
            dnrmg_receive_user_skb
          - net: Zero ifla_vf_info in rtnl_fill_vfinfo()
          - net: ipv6: Release route when device is unregistering
          - net: vrf: Make add_fib_rules per network namespace flag
          - af_unix: Add sockaddr length checks before accessing sa_family in bind
            and connect handlers
          - Fix an intermittent pr_emerg warning about lo becoming free.
          - sctp: disable BH in sctp_for_each_endpoint
          - net: caif: Fix a sleep-in-atomic bug in cfpkt_create_pfx
          - net: tipc: Fix a sleep-in-atomic bug in tipc_msg_reverse
          - net/mlx5: Remove several module events out of ethtool stats
          - net/mlx5e: Added BW check for DIM decision mechanism
          - net/mlx5e: Fix wrong indications in DIM due to counter wraparound
          - net/mlx5: Enable 4K UAR only when page size is bigger than 4K
          - proc: snmp6: Use correct type in memset
          - igmp: acquire pmc lock for ip_mc_clear_src()
          - igmp: add a missing spin_lock_init()
          - qmi_wwan: new Telewell and Sierra device IDs
          - net: don't global ICMP rate limit packets originating from loopback
          - ipv6: fix calling in6_ifa_hold incorrectly for dad work
          - sctp: return next obj by passing pos + 1 into sctp_transport_get_idx
          - net/mlx5e: Fix min inline value for VF rep SQs
          - net/mlx5e: Avoid doing a cleanup call if the profile doesn't have it
          - net/mlx5: Wait for FW readiness before initializing command interface
          - net/mlx5e: Fix timestamping capabilities reporting
          - decnet: always not take dst->__refcnt when inserting dst into hash table
          - net: 8021q: Fix one possible panic caused by BUG_ON in free_netdev
          - ipv6: Do not leak throw route references
          - rtnetlink: add IFLA_GROUP to ifla_policy
          - netfilter: synproxy: fix conntrackd interaction
          - NFSv4.x/callback: Create the callback service through svc_create_pooled
          - xen/blkback: don't use xen_blkif_get() in xen-blkback kthread
          - [mips*] head: Reorder instructions missing a delay slot
          - [mips*] Avoid accidental raw backtrace
          - [mips*] pm-cps: Drop manual cache-line alignment of ready_count
          - [mips*] Fix IRQ tracing & lockdep when rescheduling
          - ALSA: hda - Fix endless loop of codec configure
          - ALSA: hda - set input_path bitmap to zero after moving it to new place
          - NFSv4.2: Don't send mode again in post-EXCLUSIVE4_1 SETATTR with umask
          - NFSv4.1: Fix a race in nfs4_proc_layoutget
          - Revert "NFS: nfs_rename() handle -ERESTARTSYS dentry left behind"
          - ovl: copy-up: don't unlock between lookup and link
          - gpiolib: fix filtering out unwanted events
          - [x86] intel_rdt: Fix memory leak on mount failure
          - [x86] perf/x86/intel/uncore: Fix wrong box pointer check
          - [x86] drm/vmwgfx: Free hash table allocated by cmdbuf managed res mgr
          - dm thin: do not queue freed thin mapping for next stage processing
          - [x86] mm: Fix boot crash caused by incorrect loop count calculation in
            sync_global_pgds()
          - [arm64] pinctrl/amd: Use regular interrupt instead of chained
          - mm/vmalloc.c: huge-vmap: fail gracefully on unexpected huge vmap
            mappings
          - xen/blkback: don't free be structure too early
          - xfrm6: Fix IPv6 payload_len in xfrm6_transport_finish
          - xfrm: move xfrm_garbage_collect out of xfrm_policy_flush
          - xfrm: fix stack access out of bounds with CONFIG_XFRM_SUB_POLICY
          - xfrm: NULL dereference on allocation failure
          - xfrm: Oops on error in pfkey_msg2xfrm_state()
          - [arm64] PCI: Fix struct acpi_pci_root_ops allocation failure path
          - [arm64] ACPI: Fix BAD_MADT_GICC_ENTRY() macro implementation
          - [arm*] 8685/1: ensure memblock-limit is pmd-aligned
          - [arm*] davinci: PM: Free resources in error handling path in
            'davinci_pm_init'
          - [arm*] davinci: PM: Do not free useful resources in normal path in
            'davinci_pm_init'
          - Revert "x86/entry: Fix the end of the stack for newly forked tasks"
          - [x86] boot/KASLR: Fix kexec crash due to 'virt_addr' calculation bug
          - [x86] perf: Fix spurious NMI with PEBS Load Latency event
          - [x86] mpx: Correctly report do_mpx_bt_fault() failures to user-space
          - [x86] mm: Fix flush_tlb_page() on Xen
          - ocfs2: o2hb: revert hb threshold to keep compatible
          - ocfs2: fix deadlock caused by recursive locking in xattr
          - iommu/dma: Don't reserve PCI I/O windows
          - [amd64] iommu/amd: Fix incorrect error handling in
            amd_iommu_bind_pasid()
          - [amd64] iommu/amd: Fix interrupt remapping when disable guest_mode
          - mtd: nand: brcmnand: Check flash #WP pin status before nand
            erase/program
          - mtd: nand: fsmc: fix NAND width handling
          - [x86] KVM: fix emulation of RSM and IRET instructions
          - [x86] KVM: vPMU: fix undefined shift in intel_pmu_refresh()
          - [x86] KVM: zero base3 of unusable segments
          - KVM: nVMX: Fix exception injection
          - esp4: Fix udpencap for local TCP packets.
          - [armhf] hsi: Fix build regression due to netdev destructor fix.
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.10
          - fs: completely ignore unknown open flags
          - driver core: platform: fix race condition with driver_override
          - RDMA/uverbs: Check port number supplied by user verbs cmds
          - ceph: choose readdir frag based on previous readdir reply
          - tracing/kprobes: Allow to create probe with a module name starting with a
            digit
          - drm/virtio: don't leak bo on drm_gem_object_init failure (CVE-2017-10810)
          - usb: dwc3: replace %p with %pK
          - Add USB quirk for HVR-950q to avoid intermittent device resets
          - usb: usbip: set buffer pointers to NULL after free
          - usb: Fix typo in the definition of Endpoint[out]Request
          - USB: core: fix device node leak
          - [armhf] pinctrl: meson: meson8b: fix the NAND DQS pins
          - [armhf,arm64] pinctrl: sunxi: Fix SPDIF function name for A83T
          - pinctrl: core: Fix warning by removing bogus code
          - [x86] xhci: Limit USB2 port wake support for AMD Promontory hosts
          - gfs2: Fix glock rhashtable rcu bug
          - Add "shutdown" to "struct class".
          - tpm: Issue a TPM2_Shutdown for TPM2 devices.
          - tpm: fix a kernel memory leak in tpm-sysfs.c
          - [x86] uaccess: Optimize copy_user_enhanced_fast_string() for short strings
          - xen: avoid deadlock in xenbus driver
          - crypto: drbg - Fixes panic in wait_for_completion call
          - [x86] rt286: add Thinkpad Helix 2 to force_combo_jack_table
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.11
          - mqueue: fix a use-after-free in sys_mq_notify() (CVE-2017-11176)
          - proc: Fix proc_sys_prune_dcache to hold a sb reference
          - locking/rwsem-spinlock: Fix EINTR branch in __down_write_common()
          - [x86] staging: comedi: fix clean-up of comedi_class in comedi_init()
          - crypto: rsa-pkcs1pad - use constant time memory comparison for MACs
          - ext4: check return value of kstrtoull correctly in reserved_clusters_store
          - [x86] mm/pat: Don't report PAT on CPUs that don't support it
      
        [ Ben Hutchings ]
        * [m68k] udeb: Use only the common module list for nic-shared-modules
          (fixes FTBFS)
        * [sparc64] Update "Revert "sparc: move exports to definitions"" for the
          addition of __multi3 (fixes FTBFS)
        * binfmt_elf: use ELF_ET_DYN_BASE only for PIE (CVE-2017-1000370,
          CVE-2017-1000371)
        * [rt] Update to 4.11.9-rt7:
          - smp/hotplug: Move unparking of percpu threads to the control CPU
          - cpu_pm: replace raw_notifier to atomic_notifier
        * media: Enable MEDIA_CEC_SUPPORT, VIDEO_VIVID_CEC; USB_PULSE8_CEC as module
          (Closes: #868511)
        * [armhf] udeb: Add sunxi_wdt to kernel-image (Closes: #866130)
        * crypto: Enable CRYPTO_USER, CRYPTO_USER_API_RNG as modules (Closes: #868291)
        * udeb: Add dm-raid to md-modules (Closes: #868251)
        * [arm64] sound: Enable SND_HDA_INTEL as module (Closes: #867611)
        * aufs: Update support patchset to aufs4.11.7+-20170703 (Closes: #867257)
        * [x86] ideapad-laptop: Add various IdeaPad models to no_hw_rfkill list
          (Closes: #866706)
        * firmware: dmi: Add DMI_PRODUCT_FAMILY identification string
        * [x86] pinctrl: cherryview: Extend the Chromebook DMI quirk to Intel_Strago
          systems (Closes: #862723)
        * [armhf] Add ARM Mali Midgard device tree bindings and gpu node for rk3288
          (thanks to Guillaume Tucker) (Closes: #865646)
      
        [ Uwe Kleine-König ]
        * [arm64] enable FB_SIMPLE
      
        [ Vagrant Cascadian ]
        * [arm64] Enable support for Rockchip systems (Closes: #860976).
      
        [ Salvatore Bonaccorso ]
        * Bump ABI to 2
        * [rt] Update to 4.11.8-rt5
      
        [ Cyril Brulebois ]
        * [arm64,armhf] udeb: Ship usb3503 module in usb-modules, needed for
          e.g. Arndale development boards, thanks to Wei Liu (Closes: #865645).
      d3d40ed6
    • Lorenzo "Palinuro" Faletra's avatar
      9fcea490
  12. 28 Jun, 2017 3 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.11.6-1parrot6 · d50d1573
      Lorenzo "Palinuro" Faletra authored
      linux (4.11.6-1parrot6) testing; urgency=medium
      
        * Import new upstream release.
        * Re-include parrot patches.
      d50d1573
    • Ben Hutchings's avatar
      Import Debian changes 4.11.6-1 · 0ad26f6d
      Ben Hutchings authored and Lorenzo "Palinuro" Faletra's avatar Lorenzo "Palinuro" Faletra committed
      linux (4.11.6-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.4
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.5
          - [x86] drm/vmwgfx: limit the number of mip levels in
            vmw_gb_surface_define_ioctl() (CVE-2017-7346)
          - [x86] drm/vmwgfx: Make sure backup_handle is always valid (CVE-2017-9605)
          - ALSA: timer: Fix race between read and ioctl (CVE-2017-1000380)
          - ALSA: timer: Fix missing queue indices reset at SNDRV_TIMER_IOCTL_SELECT
            (CVE-2017-1000380)
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.6
      
        [ John Paul Adrian Glaubitz ]
        * [m68k] udeb: Build affs-modules package
        * [m68k] udeb: Build hfs-modules package
        * [m68k] udeb: Build nic-modules package
        * [m68k] udeb: Build pata-modules package
        * [m68k] udeb: Build scsi-core-modules package
        * [m68k] udeb: Move non-shared modules from nic-shared-modules to nic-modules
        * [m68k] udeb: Add buddha, falconide, gayle, macide, q40ide to pata-modules
        * [m68k] udeb: Add atari_scsi, mac_esp, mac_scsi to scsi-modules
      
        [ Ben Hutchings ]
        * [x86] Enable SERIAL_8250_MID as built-in (Closes: #864368)
        * Set ABI to 1
        * debian/rules.real: Include rules.defs before using architecture variables
          (Closes: #862842)
        * [rt] Update to 4.11.5-rt1 and reenable
        * fs: Reenable HPFS_FS as module (Closes: #864878)
        * USB: serial: option: add two Longcheer device ids (Closes: #864604)
        * [armhf] PCI: Enable PCI_HOST_GENERIC (Closes: #864726)
        * mm: larger stack guard gap, between vmas (CVE-2017-1000364)
      
      linux (4.11.3-1~exp1) experimental; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.1
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.2
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.3
      
        [ Ben Hutchings ]
        * [armel] udeb: Add af_packet. firmware_class, nls_base to kernel-image
          (fixes FTBFS)
        * [m68k] Update 'Revert "m68k: move exports to definitions"' for 4.11
          (fixes FTBFS) (Closes: #862393)
      
      linux (4.11-1~exp2) experimental; urgency=medium
      
        * [armel/marvell] Change MQ_IOSCHED_DEADLINE, FW_LOADER, HWMON,
          INPUT_MOUSEDEV, THERMAL, SERIAL_8250_PCI, SERIAL_8250_EXAR, NLS, PACKET
          from built-in to modules (fixes FTBFS)
        * usbip: Fix potential format overflow in userspace tools (fixes FTBFS on
          64-bit architectures with gcc-7)
        * [mips*/octeon] Increase RELOCATION_TABLE_SIZE to 0x00110000 (fixes FTBFS)
      
      linux (4.11-1~exp1) experimental; urgency=medium
      
        * New upstream release: https://kernelnewbies.org/Linux_4.11
          (thanks to Lukas Wunner for rebasing up to 4.11-rc6)
      
        [ Ben Hutchings ]
        * aufs: Update support patchset to aufs4.x-rcN-20170410
        * [arm64,x86] Replace securelevel patch set with lockdown patch set
        * [x86] Make hyperv-modules depends on nic-shared-modules, as hv_utils now
          implements PTP clock
        * [arm64] Enable ARCH_SUNXI, RTC_DRV_SUN6I as built-in,
          MMC_SUNXI and PHY_SUN4I_USB as modules (Closes: #860855)
        * [arm64] Enable REGULATOR_GPIO as module (Closes: #860222)
        * block: Enable BLK_WBT, BLK_WBT_MQ (Closes: #859570)
      
      linux (4.10.7-1~exp1) experimental; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.1
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.2
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.3
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.4
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.5
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.6
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.7
      
        [ Ben Hutchings ]
        * netfilter: Enable NF_SOCKET_IPV4, NF_SOCKET_IPV6 as modules
          (Closes: #858897)
        * [s390x] Set NR_CPUS=256 (Closes: #858731)
        * Enable BUG_ON_DATA_CORRUPTION
      
      linux (4.10-1~exp1) experimental; urgency=medium
      
        * New upstream release: https://kernelnewbies.org/Linux_4.10
      
        [ Ben Hutchings ]
        * aufs: Update support patchset to aufs4.x-rcN-20170206
        * Set ABI to trunk
      
        [ Roger Shimizu ]
        * debian/copyright & debian/README.source:
          - Prefer https URL than http for security merit.
      
      linux (4.10~rc6-1~exp2) experimental; urgency=medium
      
        * [s390x] Un-revert upstream change moving exports to assembly sources
          (fixes FTBFS)
        * [sparc64] topology_64.h: Fix condition for including cpudata.h
          (might fix FTBFS)
        * [powerpc*] Fix various build failures:
          - Revert the initial stack protector support
          - Fix missing CRC for _mcount
          - [ppc64el] udeb: Exclude ehea from nic-modules
        * debian/control: Fix compiler build-dependencies for cross-building
        * [armel] Adjust configuration to reduce image size (fixes FTBFS):
          - PCI: Disable PCIEAER, PCIEASPM
          - net: Disable LWTUNNEL, IPV6_ILA
          - trace: Disable UPROBE_EVENT
      
      linux (4.10~rc6-1~exp1) experimental; urgency=medium
      
        * New upstream release candidate
      
        [ Ben Hutchings ]
        * [rt] Disable until it is updated for 4.10 or later
        * [amd64] Enable LEGACY_VSYSCALL_NONE instead of LEGACY_VSYSCALL_EMULATE
          (Closes: #852620).  This breaks (e)glibc versions < 2.14 and dietlibc
          versions < 0.33.  It can be reverted using the kernel parameter:
          vsyscall=emulate
        * [arm64] Enable DRM_MESON, MMC_MESON_GX, DWMAC_MESON, MESON_GXL_PHY,
          PHY_MESON8B_USB2, MESON_WATCHDOG as modules
        * net: Enable SFC_FALCON as module; SFC_FALCON_MTD
        * cpupower: Fix compiler options for turbostat on 4.10
        * linux-doc: Update documentation file list for 4.10
        * linux-doc: Fix up symlinks to gzipped docs
        * debian/control: Add build-dependency on graphviz for documentation
        * linux-doc: Copy source to build directory, to avoid creating files in
          source directory
      
        [ Roger Shimizu ]
        * debian/copyright: Add GPL/X11 Dual License
      
      linux (4.9.30-2) unstable; urgency=high
      
        * [x86] Enable SERIAL_8250_MID as built-in (Closes: #864368)
        * Fix bugs introduced by original fix for CVE-2017-9074:
          - ipv6: Check ip6_find_1stfragopt() return value properly.
          - ipv6: xfrm: Handle errors reported by xfrm6_find_1stfragopt()
          - ipv6: Fix leak in ipv6_gso_segment().
        * Revert "uapi: fix linux/if.h userspace compilation errors" (see #864269)
        * [armhf] udeb: Add axp20x_usb_power to kernel-image; add i2c-modules
          package including i2c-mv64xxx and i2c-rk3x (thanks to Karsten Merker)
          (Closes: #856111)
        * NFSv4.x/callback: Create the callback service through svc_create_pooled
          (Closes: #862357)
      0ad26f6d
    • Lorenzo "Palinuro" Faletra's avatar
      70192aaf
  13. 13 Jun, 2017 2 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.9.30-1parrot30 · cc3c6eb2
      Lorenzo "Palinuro" Faletra authored
      linux (4.9.30-1parrot30) testing; urgency=medium
      
        * Import new upstream release.
      
      linux (4.9.30-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.26
          - [arm64] Revert "mmc: sdhci-msm: Enable few quirks"
          - ping: implement proper locking
          - [sparc64] kern_addr_valid regression
          - [sparc64] Fix kernel panic due to erroneous #ifdef surrounding
            pmd_write()
          - net: neigh: guard against NULL solicit() method
          - net: phy: handle state correctly in phy_stop_machine
          - bpf: improve verifier packet range checks
          - net/mlx5: Avoid dereferencing uninitialized pointer
          - l2tp: hold tunnel socket when handling control frames in l2tp_ip
            and l2tp_ip6
          - l2tp: purge socket queues in the .destruct() callback
          - net/packet: fix overflow in check for tp_frame_nr
          - net/packet: fix overflow in check for tp_reserve
          - l2tp: take reference on sessions being dumped
          - l2tp: fix PPP pseudo-wire auto-loading
          - net: ipv4: fix multipath RTM_GETROUTE behavior when iif is given
          - sctp: listen on the sock only when it's state is listening or
            closed
          - tcp: clear saved_syn in tcp_disconnect()
          - ipv6: Fix idev->addr_list corruption
          - net-timestamp: avoid use-after-free in ip_recv_error
          - net: vrf: Fix setting NLM_F_EXCL flag when adding l3mdev rule
          - dp83640: don't recieve time stamps twice
          - gso: Validate assumption of frag_list segementation
          - net: ipv6: RTF_PCPU should not be settable from userspace
          - netpoll: Check for skb->queue_mapping
          - ip6mr: fix notification device destruction
          - net/mlx5: Fix driver load bad flow when having fw
            initializing timeout
          - net/mlx5e: Fix small packet threshold
          - net/mlx5e: Fix ETHTOOL_GRXCLSRLALL handling
          - macvlan: Fix device ref leak when purging bc_queue
          - net: ipv6: regenerate host route if moved to gc list
          - net: phy: fix auto-negotiation stall due to unavailable interrupt
          - ipv6: check skb->protocol before lookup for nexthop
          - tcp: memset ca_priv data to 0 properly
          - ipv6: check raw payload size correctly in ioctl
          - ALSA: oxfw: fix regression to handle Stanton SCS.1m/1d
          - ALSA: firewire-lib: fix inappropriate assignment between
            signed/unsigned type
          - ALSA: seq: Don't break snd_use_lock_sync() loop by timeout
          - [mips*] KGDB: Use kernel context for sleeping threads
          - [mips*] Avoid BUG warning in arch_check_elf
          - p9_client_readdir() fix
          - [x86] ASoC: intel: Fix PM and non-atomic crash in bytcr drivers
          - Input: i8042 - add Clevo P650RS to the i8042 reset list
          - nfsd: check for oversized NFSv2/v3 arguments
          - nfsd4: minor NFSv2/v3 write decoding cleanup
          - nfsd: stricter decoding of write-like NFSv2/v3 ops
          - ceph: fix recursion between ceph_set_acl() and __ceph_setattr()
          - macsec: avoid heap overflow in skb_to_sgvec
          - net: can: usb: gs_usb: Fix buffer on stack
          - [x86] ftrace: Fix triple fault with graph tracing and suspend-to-ram
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.27
          - timerfd: Protect the might cancel mechanism proper
          - Handle mismatched open calls
          - [x86] tpm_tis: use default timeout value if chip reports it as zero
          - scsi: storvsc: Workaround for virtual DVD SCSI version
          - [powerpc, x86] hwmon: (it87) Avoid registering the same chip on both SIO
            addresses
          - 8250_pci: Fix potential use-after-free in error path
          - ceph: try getting buffer capability for readahead/fadvise
          - cpu/hotplug: Serialize callback invocations proper
          - dm ioctl: prevent stack leak in dm ioctl call
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.28
          - 9p: fix a potential acl leak
          - hwmon: (it87) Fix pwm4 detection for IT8620 and IT8628
          - [x86] tpm: fix RC value check in tpm2_seal_trusted
          - [x86] tmp: use pdev for parent device in tpm_chip_alloc
          - cpupower: Fix turbo frequency reporting for pre-Sandy Bridge cores
          - [powerpc*] mm: Fixup wrong LPCR_VRMASD value
          - [powerpc*] powernv: Fix opal_exit tracepoint opcode
          - [powerpc*] Correctly disable latent entropy GCC plugin on
            prom_init.o
          - [x86] perf/x86/intel/pt: Add format strings for PTWRITE and power
            event tracing
          - [arm64] dts: r8a7795: Mark EthernetAVB device node disabled
          - [arm64] dts: qcom: Fix ipq board clock rates
          - [arm64] Improve detection of user/non-user mappings in
            set_pte(_at)
          - [armhf] OMAP5 / DRA7: Fix HYP mode boot for thumb2 build
          - [armhf] dts: sun7i: lamobo-r1: Fix CPU port RGMII settings
          - mwifiex: debugfs: Fix (sometimes) off-by-1 SSID print
          - mwifiex: remove redundant dma padding in AMSDU
          - mwifiex: Avoid skipping WEP key deletion for AP
          - iwlwifi: fix MODULE_FIRMWARE for 6030
          - iwlwifi: mvm: don't restart HW if suspend fails with unified image
          - iwlwifi: mvm: overwrite skb info later
          - iwlwifi: pcie: don't increment / decrement a bool
          - iwlwifi: pcie: trans: Remove unused 'shift_param'
          - iwlwifi: pcie: fix the set of DMA memory mask
          - iwlwifi: mvm: fix reorder timer re-arming
          - iwlwifi: mvm: Use aux queue for offchannel frames in dqa
          - iwlwifi: mvm/pcie: adjust A-MSDU tx_cmd length in PCIe
          - iwlwifi: mvm: fix pending frame counter calculation
          - iwlwifi: mvm: fix references to first_agg_queue in DQA mode
          - iwlwifi: mvm: synchronize firmware DMA paging memory
          - iwlwifi: mvm: writing zero bytes to debugfs causes a crash
          - [x86] ioapic: Restore IO-APIC irq_chip retrigger callback
          - [amd64] x86/pci-calgary: Fix iommu_free() comparison of unsigned
            expression >= 0
          - [x86] kprobes/x86: Fix kernel panic when certain exception-
            handling addresses are probed
          - [x86] platform/intel-mid: Correct MSI IRQ line for watchdog device
          - [x86] KVM: nVMX: initialize PML fields in vmcs02
          - [x86] KVM: nVMX: do not leak PML full vmexit to L1
          - [arm64, armhf] usb: dwc2: host: use msleep() for long delay
          - [armhf] usb: host: ehci-exynos: Decrese node refcount on
            exynos_ehci_get_phy() error paths
          - [armhf] usb: host: ohci-exynos: Decrese node refcount on
            exynos_ehci_get_phy() error paths
          - [arm64, armhf] usb: chipidea: Only read/write OTGSC from one place
          - [arm64, armhf] usb: chipidea: Handle extcon events properly
          - USB: serial: keyspan_pda: fix receive sanity checks
          - USB: serial: digi_acceleport: fix incomplete rx sanity check
          - USB: serial: ssu100: fix control-message error handling
          - USB: serial: io_edgeport: fix epic-descriptor handling
          - USB: serial: ti_usb_3410_5052: fix control-message error handling
          - USB: serial: ark3116: fix open error handling
          - USB: serial: ftdi_sio: fix latency-timer error handling
          - USB: serial: quatech2: fix control-message error handling
          - USB: serial: mct_u232: fix modem-status error handling
          - USB: serial: io_edgeport: fix descriptor error handling
          - [armhf] clk: rockchip: add "," to
            mux_pll_src_apll_dpll_gpll_usb480m_p on rk3036
          - phy: qcom-usb-hs: Add depends on EXTCON
          - scsi: qla2xxx: Fix crash in qla2xxx_eh_abort on bad ptr
          - scsi: mac_scsi: Fix MAC_SCSI=m option when SCSI=m
          - scsi: smartpqi: fix time handling
          - [mips*] R2-on-R6 MULTU/MADDU/MSUBU emulation bugfix
          - brcmfmac: Ensure pointer correctly set if skb data location
            changes
          - brcmfmac: Make skb header writable before use
          - [x86] staging/lustre/llite: move root_squash from sysfs to debugfs
          - [x86] staging: wlan-ng: add missing byte order conversion
          - ALSA: hda - Fix deadlock of controller device lock at unbinding
          - [sparc64] fix fault handling in NGbzero.S and GENbzero.S
          - macsec: dynamically allocate space for sglist
          - tcp: do not underestimate skb->truesize in tcp_trim_head()
          - bpf: enhance verifier to understand stack pointer arithmetic
          - [arm64] bpf: fix jit branch offset related to ldimm64
          - tcp: fix wraparound issue in tcp_lp
          - net: ipv6: Do not duplicate DAD on link up
          - net: usb: qmi_wwan: add Telit ME910 support
          - tcp: do not inherit fastopen_req from parent
          - ipv4, ipv6: ensure raw socket message is big enough to hold
            an IP header
          - rtnetlink: NUL-terminate IFLA_PHYS_PORT_NAME string
          - ipv6: initialize route null entry in addrconf_init()
          - ipv6: reorder ip6_route_dev_notifier after ipv6_dev_notf
          - bnxt_en: allocate enough space for ->ntp_fltr_bmap
          - bpf: don't let ldimm64 leak map addresses on unprivileged
            (CVE-2017-9150)
          - f2fs: sanity check segment count
          - xen: Revert commits da72ff5bfcb0 and 72a9b186292d
          - [arm64, armhf] wlcore: Pass win_size taken from
            ieee80211_sta to FW
          - [arm64, armhf] wlcore: Add RX_BA_WIN_SIZE_CHANGE_EVENT event
          - drm/ttm: fix use-after-free races in vm fault handling
          - block: get rid of blk_integrity_revalidate()
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.29
          - [x86] xen: adjust early dom0 p2m handling to xen hypervisor behavior
          - target: Fix compare_and_write_callback handling for non GOOD status
          - target/fileio: Fix zero-length READ and WRITE handling
          - iscsi-target: Set session_fall_back_to_erl0 when forcing reinstatement
          - usb: xhci: bInterval quirk for TI TUSB73x0
          - usb: host: xhci: print correct command ring address
          - USB: Proper handling of Race Condition when two USB class drivers try to
            call init_usb_class simultaneously
          - USB: Revert "cdc-wdm: fix "out-of-sync" due to missing notifications"
          - [x86] staging: vt6656: use off stack for in buffer USB transfers.
          - [x86] staging: vt6656: use off stack for out buffer USB transfers.
          - [x86] staging: comedi: jr3_pci: fix possible null pointer dereference
          - [x86] staging: comedi: jr3_pci: cope with jiffies wraparound
          - usb: misc: add missing continue in switch
          - usb: gadget: legacy gadgets are optional
          - usb: Make sure usb/phy/of gets built-in
          - usb: hub: Fix error loop seen after hub communication errors
          - usb: hub: Do not attempt to autosuspend disconnected devices
          - [x86] boot: Fix BSS corruption/overwrite bug in early x86 kernel startup
          - [amd64] pmem: Fix cache flushing for iovec write < 8 bytes
          - [x86] perf: Fix Broadwell-EP DRAM RAPL events
          - [x86] KVM: fix user triggerable warning in kvm_apic_accept_events()
          - [armhf,arm64] KVM: fix races in kvm_psci_vcpu_on
          - [arm64] KVM: Fix decoding of Rt/Rt2 when trapping AArch32 CP accesses
          - block: fix blk_integrity_register to use template's interval_exp if not 0
          - crypto: algif_aead - Require setkey before accept(2)
          - [x86] crypto: ccp - Use only the relevant interrupt bits
          - [x86] crypto: ccp - Disable interrupts early on unload
          - [x86] crypto: ccp - Change ISR handler method for a v3 CCP
          - [x86] crypto: ccp - Change ISR handler method for a v5 CCP
          - dm era: save spacemap metadata root after the pre-commit
          - dm rq: check blk_mq_register_dev() return value in
            dm_mq_init_request_queue()
          - dm thin: fix a memory leak when passing discard bio down
          - vfio/type1: Remove locked page accounting workqueue
          - iov_iter: don't revert iov buffer if csum error
          - IB/core: Fix sysfs registration error flow
          - IB/core: For multicast functions, verify that LIDs are multicast LIDs
          - IB/IPoIB: ibX: failed to create mcg debug file
          - IB/mlx4: Fix ib device initialization error flow
          - IB/mlx4: Reduce SRIOV multicast cleanup warning message to debug level
          - IB/hfi1: Prevent kernel QP post send hard lockups
          - perf auxtrace: Fix no_size logic in addr_filter__resolve_kernel_syms()
          - ext4: evict inline data when writing to memory map
          - fs/xattr.c: zero out memory copied to userspace in getxattr
          - ceph: fix memory leak in __ceph_setxattr()
          - fs/block_dev: always invalidate cleancache in invalidate_bdev()
          - mm: prevent potential recursive reclaim due to clearing PF_MEMALLOC
          - Fix match_prepath()
          - Set unicode flag on cifs echo request to avoid Mac error
          - SMB3: Work around mount failure when using SMB3 dialect to Macs
          - CIFS: fix mapping of SFM_SPACE and SFM_PERIOD
          - cifs: fix leak in FSCTL_ENUM_SNAPS response handling
          - cifs: fix CIFS_ENUMERATE_SNAPSHOTS oops
          - CIFS: fix oplock break deadlocks
          - cifs: fix CIFS_IOC_GET_MNT_INFO oops
          - CIFS: add misssing SFM mapping for doublequote
          - padata: free correct variable
          - device-dax: fix cdev leak
          - fscrypt: fix context consistency check when key(s) unavailable
          - [armhf] serial: samsung: Use right device for DMA-mapping calls
          - [armhf] serial: omap: fix runtime-pm handling on unbind
          - [armhf] serial: omap: suspend device on probe errors
          - tty: pty: Fix ldisc flush after userspace become aware of the data already
          - Bluetooth: Fix user channel for 32bit userspace on 64bit kernel
          - Bluetooth: hci_bcm: add missing tty-device sanity check
          - Bluetooth: hci_intel: add missing tty-device sanity check
          - ipmi: Fix kernel panic at ipmi_ssif_thread()
          - libnvdimm, region: fix flush hint detection crash
          - libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify
          - libnvdimm, pfn: fix 'npfns' vs section alignment
          - [powerpc*/*64*] pstore: Fix flags to enable dumps on powerpc
          - pstore: Shut down worker when unregistering
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.30
          - usb: misc: legousbtower: Fix buffers on stack
          - usb: misc: legousbtower: Fix memory leak
          - USB: ene_usb6250: fix DMA to the stack
          - watchdog: pcwd_usb: fix NULL-deref at probe
          - char: lp: fix possible integer overflow in lp_setup() (CVE-2017-1000363)
          - USB: core: replace %p with %pK
          - tpm_tis_core: Choose appropriate timeout for reading burstcount
          - ALSA: hda: Fix cpu lockup when stopping the cmd dmas
          - [armhf] tegra: paz00: Mark panel regulator as enabled on boot
          - fanotify: don't expose EOPENSTALE to userspace
          - tpm_tis_spi: Use single function to transfer data
          - tpm_tis_spi: Abort transfer when too many wait states are signaled
          - tpm_tis_spi: Check correct byte for wait state indicator
          - tpm_tis_spi: Remove limitation of transfers to MAX_SPI_FRAMESIZE bytes
          - tpm_tis_spi: Add small delay after last transfer
          - tpm: msleep() delays - replace with usleep_range() in i2c nuvoton driver
          - tpm: add sleep only for retry in i2c_nuvoton_write_status()
          - tpm_crb: check for bad response size
          - mlx5: Fix mlx5_ib_map_mr_sg mr length
          - infiniband: call ipv6 route lookup via the stub interface
          - dm btree: fix for dm_btree_find_lowest_key()
          - dm raid: select the Kconfig option CONFIG_MD_RAID0
          - dm bufio: avoid a possible ABBA deadlock
          - dm bufio: check new buffer allocation watermark every 30 seconds
          - dm mpath: split and rename activate_path() to prepare for its expanded use
          - dm cache metadata: fail operations if fail_io mode has been established
          - dm bufio: make the parameter "retain_bytes" unsigned long
          - dm thin metadata: call precommit before saving the roots
          - dm space map disk: fix some book keeping in the disk space map
          - md: update slab_cache before releasing new stripes when stripes resizing
          - md: MD_CLOSING needs to be cleared after called md_set_readonly or
            do_md_stop
          - rtlwifi: rtl8821ae: setup 8812ae RFE according to device type
          - mwifiex: MAC randomization should not be persistent
          - mwifiex: pcie: fix cmd_buf use-after-free in remove/reset
          - ima: accept previously set IMA_NEW_FILE
          - [x86] KVM: Fix load damaged SSEx MXCSR register
          - [x86] KVM: Fix potential preemption when get the current kvmclock
            timestamp
          - [x86] KVM: Fix read out-of-bounds vulnerability in kvm pio emulation
          - [i386] fix 32-bit case of __get_user_asm_u64()
          - [armhf] regulator: rk808: Fix RK818 LDO2
          - [s390x] kdump: Add final note
          - [s390x] cputime: fix incorrect system time
          - ath9k_htc: Add support of AirTies 1eda:2315 AR9271 device
          - ath9k_htc: fix NULL-deref at probe
          - [x86] drm/amdgpu: Make display watermark calculations more accurate
          - [x86] drm/amdgpu: Avoid overflows/divide-by-zero in latency_watermark
            calculations.
          - [x86] drm/amdgpu: Add missing lb_vblank_lead_lines setup to DCE-6 path.
          - drm/nouveau/therm: remove ineffective workarounds for alarm bugs
          - drm/nouveau/tmr: ack interrupt before processing alarms
          - drm/nouveau/tmr: fix corruption of the pending list when rescheduling an
            alarm
          - drm/nouveau/tmr: avoid processing completed alarms when adding a new one
          - drm/nouveau/tmr: handle races with hw when updating the next alarm time
          - [armhf] gpio: omap: return error if requested debounce time is not
            possible
          - cdc-acm: fix possible invalid access when processing notification
          - ohci-pci: add qemu quirk
          - [powerpc*] cxl: Force context lock during EEH flow
          - [powerpc*] cxl: Route eeh events to all drivers in
            cxl_pci_error_detected()
          - proc: Fix unbalanced hard link numbers
          - of: fix sparse warning in of_pci_range_parser_one
          - of: fix "/cpus" reference leak in of_numa_parse_cpu_nodes()
          - of: fdt: add missing allocation-failure check
          - [powerpc*/*64*] ibmvscsis: Do not send aborted task response
          - [x86] IIO: bmp280-core.c: fix error in humidity calculation
          - IB/hfi1: Return an error on memory allocation failure
          - IB/hfi1: Fix a subcontext memory leak
          - pid_ns: Sleep in TASK_INTERRUPTIBLE in zap_pid_ns_processes
          - pid_ns: Fix race between setns'ed fork() and zap_pid_ns_processes()
          - USB: serial: ftdi_sio: fix setting latency for unprivileged users
          - USB: serial: ftdi_sio: add Olimex ARM-USB-TINY(H) PIDs
          - USB: chaoskey: fix Alea quirk on big-endian hosts
          - f2fs: check entire encrypted bigname when finding a dentry
          - fscrypt: avoid collisions when presenting long encrypted filenames
          - libnvdimm: fix clear length of nvdimm_forget_poison()
          - xhci: remove GFP_DMA flag from allocation
          - usb: host: xhci-plat: propagate return value of platform_get_irq()
          - xhci: apply PME_STUCK_QUIRK and MISSING_CAS quirk for Denverton
          - usb: host: xhci-mem: allocate zeroed Scratchpad Buffer
          - net: irda: irda-usb: fix firmware name on big-endian hosts
          - usbvision: fix NULL-deref at probe
          - mceusb: fix NULL-deref at probe
          - ttusb2: limit messages to buffer size
          - [armhf,arm64] usb: dwc3: gadget: Prevent losing events in event cache
          - [armhf] usb: musb: tusb6010_omap: Do not reset the other direction's
            packet size
          - [armhf] usb: musb: Fix trying to suspend while active for OTG
            configurations
          - USB: iowarrior: fix info ioctl on big-endian hosts
          - usb: serial: option: add Telit ME910 support
          - USB: serial: qcserial: add more Lenovo EM74xx device IDs
          - USB: serial: mct_u232: fix big-endian baud-rate handling
          - USB: serial: io_ti: fix div-by-zero in set_termios
          - USB: hub: fix SS hub-descriptor handling
          - USB: hub: fix non-SS hub-descriptor handling
          - ipx: call ipxitf_put() in ioctl error path (CVE-2017-7487)
          - iio: hid-sensor: Store restore poll and hysteresis on S3
          - gspca: konica: add missing endpoint sanity check
          - dib0700: fix NULL-deref at probe
          - zr364xx: enforce minimum size when reading header
          - dvb-frontends/cxd2841er: define symbol_rate_min/max in T/C fe-ops
          - digitv: limit messages to buffer size
          - dw2102: limit messages to buffer size
          - cx231xx-audio: fix init error path
          - cx231xx-audio: fix NULL-deref at probe
          - cx231xx-cards: fix NULL-deref at probe
          - [powerpc*] mm: Ensure IRQs are off in switch_mm()
          - [powerpc*] eeh: Avoid use after free in eeh_handle_special_event()
          - [powerpc*] book3s/mce: Move add_taint() later in virtual mode
          - [powerpc*] pseries: Fix of_node_put() underflow during DLPAR remove
          - [powerpc*] iommu: Do not call PageTransHuge() on tail pages
          - [powerpc*] tm: Fix FP and VMX register corruption
          - [arm64] KVM: Do not use stack-protector to compile EL2 code
          - [armhf] KVM: Do not use stack-protector to compile HYP code
          - [armhf] KVM: plug potential guest hardware debug leakage
          - [armel,armhf] 8662/1: module: split core and init PLT sections
          - [armhf] dts: imx6sx-sdb: Remove OPP override
          - [arm64] dts: hi6220: Reset the mmc hosts
          - [arm64] xchg: hazard against entire exchange variable
          - [arm64] ensure extension of smp_store_release value
          - [arm64] armv8_deprecated: ensure extension of addr
          - [arm64] uaccess: ensure extension of access_ok() addr
          - [arm64] documentation: document tagged pointer stack constraints
          - [x86] staging: rtl8192e: rtl92e_fill_tx_desc fix write to mapped out
            memory.
          - [x86] staging: rtl8192e: fix 2 byte alignment of register BSSIDR.
          - [x86] staging: rtl8192e: rtl92e_get_eeprom_size Fix read size of
            EPROM_CMD.
          - [x86] staging: rtl8192e: GetTs Fix invalid TID 7 warning.
          - [x86] iommu/vt-d: Flush the IOTLB to get rid of the initial kdump mappings
          - stackprotector: Increase the per-task stack canary's random range from 32
            bits to 64 bits on 64-bit platforms
          - uwb: fix device quirk on big-endian hosts
          - genirq: Fix chained interrupt data ordering
          - nvme: unmap CMB and remove sysfs file in reset path
          - [alpha] osf_wait4(): fix infoleak
          - tracing/kprobes: Enforce kprobes teardown after testing
          - [x86] PCI: hv: Allocate interrupt descriptors with GFP_ATOMIC
          - [x86] PCI: hv: Specify CPU_AFFINITY_ALL for MSI affinity when >= 32 CPUs
          - PCI: Fix pci_mmap_fits() for HAVE_PCI_RESOURCE_TO_USER platforms
          - PCI: Fix another sanity check bug in /proc/pci mmap
          - PCI: Only allow WC mmap on prefetchable resources
          - PCI: Freeze PME scan before suspending devices
          - [armel,armhf] mtd: nand: orion: fix clk handling
          - [armhf] mtd: nand: omap2: Fix partition creation via cmdline mtdparts
          - mtd: nand: add ooblayout for old hamming layout
          - [x86] drm/edid: Add 10 bpc quirk for LGD 764 panel in HP zBook 17 G2
          - NFSv4: Fix a hang in OPEN related to server reboot
          - NFS: Fix use after free in write error path
          - NFS: Use GFP_NOIO for two allocations in writeback
          - nfsd: fix undefined behavior in nfsd4_layout_verify
          - nfsd: encoders mustn't use unitialized values in error cases
          - drivers: char: mem: Check for address space wraparound with mmap()
          - [x86] drm/i915/gvt: Disable access to stolen memory as a guest
      
        [ Aurelien Jarno ]
        * [mips*/*-malta] Enable POWER_RESET and POWER_RESET_SYSCON.
      
        [ Uwe Kleine-König ]
        * [arm64] Enable DRM modules (Closes: #863344)
        * Ignore ABI changes in chipidea driver
      
        [ Ben Hutchings ]
        * Ignore ABI changes in ccp and hid-sensors
        * [mips*el/loongson-3] Revert "MIPS: Loongson-3: Select
          MIPS_L1_CACHE_SHIFT_6" to avoid ABI change
        * SUNRPC: Refactor svc_set_num_threads()
        * NFSv4: Fix callback server shutdown (CVE-2017-9059) (Closes: #862357)
        * uapi: fix linux/if.h userspace compilation errors (see #822393, #824442)
        * debian/control: Fix compiler build-dependencies for cross-building
          (Closes: #863907)
        * Add Debian package version to "hung task" log messages
        * btrfs: warn about RAID5/6 being experimental at mount time (Closes: #863290)
        * [x86] pinctrl: cherryview: Add a quirk to make Acer Chromebook keyboard
          work again (Closes: #862723)
        * [arm64] serial: pl011: add console matching function (Closes: #861898)
        * [rt] Add new GPG subkeys for Sebastian Andrzej Siewior
        * [rt] Update to 4.9.30-rt20:
          - rtmutex: Deboost before waking up the top waiter
          - sched/rtmutex/deadline: Fix a PI crash for deadline tasks
          - sched/deadline/rtmutex: Dont miss the dl_runtime/dl_period update
          - rtmutex: Clean up
          - sched/rtmutex: Refactor rt_mutex_setprio()
          - sched,tracing: Update trace_sched_pi_setprio()
          - rtmutex: Fix PI chain order integrity
          - rtmutex: Fix more prio comparisons
          - rtmutex: Plug preempt count leak in rt_mutex_futex_unlock()
          - futex: Avoid freeing an active timer
          - futex: Fix small (and harmless looking) inconsistencies
          - futex,rt_mutex: Fix rt_mutex_cleanup_proxy_lock()
          - Revert "timers: Don't wake ktimersoftd on every tick"
          - futex/rtmutex: Cure RT double blocking issue
          - random: avoid preempt_disable()ed section
      
        [ Salvatore Bonaccorso ]
        * tracing: Use strlcpy() instead of strcpy() in __trace_find_cmdline()
          (CVE-2017-0605)
        * dccp/tcp: do not inherit mc_list from parent (CVE-2017-8890)
        * ipv6: Prevent overrun when parsing v6 header options (CVE-2017-9074)
        * sctp: do not inherit ipv6_{mc|ac|fl}_list from parent (CVE-2017-9075)
        * ipv6/dccp: do not inherit ipv6_mc_list from parent (CVE-2017-9076,
          CVE-2017-9077)
        * crypto: skcipher - Add missing API setkey checks (CVE-2017-9211)
        * ipv6: fix out of bound writes in __ip6_append_data() (CVE-2017-9242)
      
        [ Cyril Brulebois ]
        * udeb: Add efivarfs to efi-modules, which can be needed to retrieve
          firmware or configuration bits from d-i. (Closes: #862555)
      
        [ John Paul Adrian Glaubitz ]
        * [m68k] udeb: Build loop-modules package (Closes: #862813)
      cc3c6eb2
    • Lorenzo "Palinuro" Faletra's avatar
      ba8e2437
  14. 07 May, 2017 3 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.9.25-1parrot25 · 003df7dd
      Lorenzo "Palinuro" Faletra authored
      linux (4.9.25-1parrot25) testing; urgency=medium
      
        * Import new upstream release.
      003df7dd
    • Ben Hutchings's avatar
      Import Debian changes 4.9.25-1 · 2c08d751
      Ben Hutchings authored and Lorenzo "Palinuro" Faletra's avatar Lorenzo "Palinuro" Faletra committed
      linux (4.9.25-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.19
          - net/openvswitch: Set the ipv6 source tunnel key address attribute
            correctly
          - net: properly release sk_frag.page
          - [arm64] amd-xgbe: Fix jumbo MTU processing on newer hardware
          - openvswitch: Add missing case OVS_TUNNEL_KEY_ATTR_PAD
          - net: unix: properly re-increment inflight counter of GC discarded
            candidates
          - net: vrf: Reset rt6i_idev in local dst after put
          - net/mlx5: Add missing entries for set/query rate limit commands
          - net/mlx5e: Use the proper UAPI values when offloading TC vlan actions
          - net/mlx5: Increase number of max QPs in default profile
          - net/mlx5e: Count GSO/LRO packets correctly
          - ipv6: make sure to initialize sockc.tsflags before first use
          - ipv4: provide stronger user input validation in nl_fib_input()
          - socket, bpf: fix sk_filter use after free in sk_clone_lock
          - tcp: initialize icsk_ack.lrcvtime at session start time
          - Input: iforce,ims-pcu,hanwang,yealink,cm109,kbtab,sur40 - validate
            number of endpoints before using them
          - ALSA: seq: Fix racy cell insertions during snd_seq_pool_done()
          - ALSA: ctxfi: Fix the incorrect check of dma_set_mask() call
          - ALSA: hda - Adding a group of pin definition to fix headset problem
          - ACM gadget: fix endianness in notifications
          - usb: gadget: f_uvc: Fix SuperSpeed companion descriptor's
            wBytesPerInterval
          - USB: uss720,idmouse,wusbcore: fix NULL-deref at probe
          - usb: musb: cppi41: don't check early-TX-interrupt for Isoch transfer
          - usb: hub: Fix crash after failure to read BOS descriptor
          - USB: usbtmc: add missing endpoint sanity check
          - USB: usbtmc: fix probe error path
          - uwb: i1480-dfu: fix NULL-deref at probe
          - mmc: ushc: fix NULL-deref at probe
          - [armhf[ iio: adc: ti_am335x_adc: fix fifo overrun recovery
          - iio: sw-device: Fix config group initialization
          - iio: hid-sensor-trigger: Change get poll value function order to avoid
            sensor properties losing after resume from S3
          - parport: fix attempt to write duplicate procfiles
          - ext4: mark inode dirty after converting inline directory
          - ext4: lock the xattr block before checksuming it
          - [powerpc*/*64*] Fix idle wakeup potential to clobber registers
          - mmc: sdhci: Do not disable interrupts while waiting for clock
          - mmc: sdhci-pci: Do not disable interrupts in sdhci_intel_set_power
          - [x86] hwrng: amd - Revert managed API changes
          - [x86] hwrng: geode - Revert managed API changes
          - [armhf] clk: sunxi-ng: sun6i: Fix enable bit offset for hdmi-ddc module
            clock
          - [armhf] clk: sunxi-ng: mp: Adjust parent rate for pre-dividers
          - mwifiex: pcie: don't leak DMA buffers when removing
          - [x86] crypto: ccp - Assign DMA commands to the channel's CCP
          - xen/acpi: upload PM state from init-domain to Xen
          - [x86] iommu/vt-d: Fix NULL pointer dereference in device_to_iommu
          - [arm64] kaslr: Fix up the kernel image alignment
          - cpufreq: Restore policy min/max limits on CPU online
          - cgroup, net_cls: iterate the fds of only the tasks which are being
            migrated
          - blk-mq: don't complete un-started request in timeout handler
          - [x86] drm/amdgpu: reinstate oland workaround for sclk
          - jbd2: don't leak memory if setting up journal fails
          - [x86] intel_th: Don't leak module refcount on failure to activate
          - [x86] Drivers: hv: vmbus: Don't leak channel ids
          - [x86] Drivers: hv: vmbus: Don't leak memory when a channel is rescinded
          - libceph: don't set weight to IN when OSD is destroyed
          - [x86] device-dax: fix pmd/pte fault fallback handling
          - [armhf] drm/bridge: analogix dp: Fix runtime PM state on driver bind
          - nl80211: fix dumpit error path RTNL deadlocks
          - drm: reference count event->completion
          - fbcon: Fix vc attr at deinit
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.20
          - xfrm: policy: init locks early
          - [x86] KVM: cleanup the page tracking SRCU instance
          - virtio_balloon: init 1st buffer in stats vq
          - [mips*] ptrace: Preserve previous registers for short regset write
          - [sparc64] ptrace: Preserve previous registers for short regset write
          - fscrypt: remove broken support for detecting keyring key revocation
            (CVE-2017-7374)
          - sched/rt: Add a missing rescheduling point
          - [armhf] usb: musb: fix possible spinlock deadlock
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.21
          - libceph: force GFP_NOIO for socket allocations
          - xen/setup: Don't relocate p2m over existing one
          - xfs: only update mount/resv fields on success in __xfs_ag_resv_init
          - xfs: use per-AG reservations for the finobt
          - xfs: pull up iolock from xfs_free_eofblocks()
          - xfs: sync eofblocks scans under iolock are livelock prone
          - xfs: fix eofblocks race with file extending async dio writes
          - xfs: fix toctou race when locking an inode to access the data map
          - xfs: fail _dir_open when readahead fails
          - xfs: filter out obviously bad btree pointers
          - xfs: check for obviously bad level values in the bmbt root
          - xfs: verify free block header fields
          - xfs: allow unwritten extents in the CoW fork
          - xfs: mark speculative prealloc CoW fork extents unwritten
          - xfs: reset b_first_retry_time when clear the retry status of xfs_buf_t
          - xfs: update ctime and mtime on clone destinatation inodes
          - xfs: reject all unaligned direct writes to reflinked files
          - xfs: don't fail xfs_extent_busy allocation
          - xfs: handle indlen shortage on delalloc extent merge
          - xfs: split indlen reservations fairly when under reserved
          - xfs: fix uninitialized variable in _reflink_convert_cow
          - xfs: don't reserve blocks for right shift transactions
          - xfs: Use xfs_icluster_size_fsb() to calculate inode chunk alignment
          - xfs: tune down agno asserts in the bmap code
          - xfs: only reclaim unwritten COW extents periodically
          - xfs: fix and streamline error handling in xfs_end_io
          - xfs: Use xfs_icluster_size_fsb() to calculate inode alignment mask
          - xfs: use iomap new flag for newly allocated delalloc blocks
          - xfs: try any AG when allocating the first btree block when reflinking
          - scsi: libsas: fix ata xfer length
          - scsi: scsi_dh_alua: Check scsi_device_get() return value
          - scsi: scsi_dh_alua: Ensure that alua_activate() calls the completion
            function
          - ALSA: seq: Fix race during FIFO resize
          - ALSA: hda - fix a problem for lineout on a Dell AIO machine
          - [x86] ASoC: Intel: Skylake: fix invalid memory access due to wrong
            reference of pointer
          - HID: wacom: Don't add ghost interface as shared data
          - mmc: sdhci: Disable runtime pm when the sdio_irq is enabled
          - NFSv4.1 fix infinite loop on IO BAD_STATEID error
          - nfsd: map the ENOKEY to nfserr_perm for avoiding warning
          - [hppa] Clean up fixup routines for get_user()/put_user()
          - [hppa] Avoid stalled CPU warnings after system shutdown
          - [hppa] Fix access fault handling in pa_memcpy()
          - ACPI: Fix incompatibility with mcount-based function graph tracing
          - ACPI: Do not create a platform_device for IOAPIC/IOxAPIC
          - USB: fix linked-list corruption in rh_call_control()
          - [x86] KVM: clear bus pointer when destroyed
          - KVM: kvm_io_bus_unregister_dev() should never fail
          - drm/radeon: Override fpfn for all VRAM placements in radeon_evict_flags
          - [armhf,arm64] drm/vc4: Allocate the right amount of space for boot-time
            CRTC state.
          - [armhf] drm/etnaviv: (re-)protect fence allocation with GPU mutex
          - [x86] mm/KASLR: Exclude EFI region from KASLR VA space randomization
          - [x86] mce: Fix copy/paste error in exception table entries
          - lib/syscall: Clear return values when no stack
          - mm: rmap: fix huge file mmap accounting in the memcg stats
          - mm, hugetlb: use pte_present() instead of pmd_present() in
            follow_huge_pmd()
          - qla2xxx: Allow vref count to timeout on vport delete.
          - mm: workingset: fix premature shadow node shrinking with cgroups
          - blk: improve order of bio handling in generic_make_request()
          - blk: Ensure users for current->bio_list can see the full list.
          - padata: avoid race in reordering
          - nvme/core: Fix race kicking freed request_queue
          - nvme/pci: Disable on removal when disconnected
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.22
          - ppdev: check before attaching port
          - ppdev: fix registering same device name
          - [x86] drm/vmwgfx: Type-check lookups of fence objects
          - [x86] drm/vmwgfx: avoid calling vzalloc with a 0 size in
            vmw_get_cap_3d_ioctl()
          - drm/ttm, drm/vmwgfx: Relax permission checking when opening surfaces
          - [x86] drm/vmwgfx: Remove getparam error message
          - sysfs: be careful of error returns from ops->show()
          - [armhf,arm64] KVM: Take mmap_sem in stage2_unmap_vm
          - [armhf,arm64] KVM: Take mmap_sem in kvm_arch_prepare_memory_region
          - [armhf,arm64] kvm: Fix locking for kvm_free_stage2_pgd
          - [x86] iio: bmg160: reset chip when probing
          - [arm64] mm: unaligned access by user-land should be received as SIGBUS
          - cfg80211: check rdev resume callback only for registered wiphy
          - CIFS: Reset TreeId to zero on SMB2 TREE_CONNECT
          - mm/page_alloc.c: fix print order in show_free_areas()
          - ptrace: fix PTRACE_LISTEN race corrupting task->state
          - dm verity fec: limit error correction recursion
          - dm verity fec: fix bufio leaks
          - ACPI / gpio: do not fall back to parsing _CRS when we get a deferral
          - xfs: Honor FALLOC_FL_KEEP_SIZE when punching ends of files
          - ring-buffer: Fix return value check in test_ringbuffer()
          - mac80211: unconditionally start new netdev queues with iTXQ support
          - brcmfmac: use local iftype avoiding use-after-free of virtual interface
          - [powerpc*] Disable HFSCR[TM] if TM is not supported
          - [powerpc*] mm: Add missing global TLB invalidate if cxl is active
          - [powerpc*/*64*]: Fix flush_(d|i)cache_range() called from modules
          - [powerpc*] Don't try to fix up misaligned load-with-reservation
            instructions
          - [powerpc*] crypto/crc32c-vpmsum: Fix missing preempt_disable()
          - dm raid: fix NULL pointer dereference for raid1 without bitmap
          - [s390x] decompressor: fix initrd corruption caused by bss clear
          - [s390x] uaccess: get_user() should zero on failure (again)
          - [mips*el/loongson-3] Check TLB before handle_ri_rdhwr() for Loongson-3
          - [mips*el/loongson-3] Add MIPS_CPU_FTLB for Loongson-3A R2
          - [mips*el/loongson-3] Flush wrong invalid FTLB entry for huge page
          - [mips*el/loongson-3] c-r4k: Fix Loongson-3's vcache/scache waysize
            calculation
          - mm/mempolicy.c: fix error handling in set_mempolicy and mbind
            (CVE-2017-7616)
          - random: use chacha20 for get_random_int/long
          - [armhf] drm/sun4i: tcon: Move SoC specific quirks to a DT matched data
            structure
          - [armhf] drm/sun4i: Add compatible strings for A31/A31s display pipelines
          - [armhf] drm/sun4i: Add compatible string for A31/A31s TCON (timing
            controller)
          - HID: i2c-hid: add a simple quirk to fix device defects
          - usb: dwc3: gadget: delay unmap of bounced requests
          - [x86] ASoC: Intel: bytct_rt5640: change default capture settings
          - [armhf,arm64] clocksource/drivers/arm_arch_timer: Don't assume clock runs
            in suspend
          - scsi: ufs: introduce UFSHCD_QUIRK_PRDT_BYTE_GRAN quirk
          - HID: multitouch: do not retrieve all reports for all devices
          - [arm64] mmc: sdhci-msm: Enable few quirks
          - scsi: ufs: ensure that host pa_tactivate is higher than device
          - svcauth_gss: Close connection when dropping an incoming message
          - scsi: ufs: add quirk to increase host PA_SaveConfigTime
          - [x86] platform: acer-wmi: Only supports AMW0_GUID1 on acer family
          - nvme: simplify stripe quirk
          - ACPI / sysfs: Provide quirk mechanism to prevent GPE flooding
          - HID: usbhid: Add quirk for the Futaba TOSD-5711BB VFD
          - [x86] drm/i915: actually drive the BDW reserved IDs
          - scsi: ufs: issue link starup 2 times if device isn't active
          - [armhf] serial: 8250_omap: Add OMAP_DMA_TX_KICK quirk for AM437x
          - ACPI / button: Change default behavior to lid_init_state=open
          - [x86] ACPI: save NVS memory for Lenovo G50-45
          - HID: wacom: don't apply generic settings to old devices
          - [arm64] firmware: qcom: scm: Fix interrupted SCM calls
          - [armhf] watchdog: s3c2410: Fix infinite interrupt in soft mode
          - [x86] platform: asus-wmi: Set specified XUSB2PR value for X550LB
          - [x86] platform: asus-wmi: Detect quirk_no_rfkill from the DSDT
          - [x86] reboot/quirks: Add ASUS EeeBook X205TA reboot quirk
          - [x86] reboot/quirks: Add ASUS EeeBook X205TA/W reboot quirk
          - usb-storage: Add ignore-residue quirk for Initio INIC-3619
          - [x86] reboot/quirks: Fix typo in ASUS EeeBook X205TA reboot quirk
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.23
          - [x86] drm/i915/gen9: Increase PCODE request timeout to 50ms
          - [x86] drm/i915: Nuke debug messages from the pipe update critical section
          - [x86] drm/i915: Avoid tweaking evaluation thresholds on Baytrail v3
          - [x86] drm/i915: Only enable hotplug interrupts if the display interrupts
            are enabled
          - [x86] drm/i915: Drop support for I915_EXEC_CONSTANTS_* execbuf parameters.
          - [x86] drm/i915: Stop using RP_DOWN_EI on Baytrail
          - [x86] drm/i915: Avoid rcu_barrier() from reclaim paths (shrinker)
          - [armhf,arm64] i2c: bcm2835: Fix hang for writing messages larger than 16
            bytes
          - rt2x00usb: fix anchor initialization
          - rt2x00usb: do not anchor rx and tx urb's
          - [mips*] Introduce irq_stack
          - [mips*] Stack unwinding while on IRQ stack
          - [mips*] Only change $28 to thread_info if coming from user mode
          - [mips*] Switch to the irq_stack in interrupts
          - [mips*] Select HAVE_IRQ_EXIT_ON_IRQ_STACK
          - [mips*] IRQ Stack: Fix erroneous jal to plat_irq_dispatch
          - [x86] Revert "drm/i915/execlists: Reset RING registers upon resume"
          - blk-mq: Avoid memory reclaim when remapping queues
          - usb: hub: Wait for connection to be reestablished after port reset
          - net/mlx4_en: Fix bad WQE issue
          - net/mlx4_core: Fix racy CQ (Completion Queue) free
          - net/mlx4_core: Fix when to save some qp context flags for dynamic VST to
            VGT transitions
          - dma-buf: add support for compat ioctl
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.24
          - cgroup, kthread: close race window where new kthreads can be migrated to
            non-root cgroups
          - thp: fix MADV_DONTNEED vs. MADV_FREE race
          - thp: fix MADV_DONTNEED vs clear soft dirty race
          - zsmalloc: expand class bit
          - drm/nouveau/mpeg: mthd returns true on success now
          - drm/nouveau/mmu/nv4a: use nv04 mmu rather than the nv44 one
          - [armhf] drm/etnaviv: fix missing unlock on error in etnaviv_gpu_submit()
          - CIFS: reconnect thread reschedule itself
          - CIFS: store results of cifs_reopen_file to avoid infinite wait
          - Input: xpad - add support for Razer Wildcat gamepad
          - [x86] perf: Avoid exposing wrong/stale data in intel_pmu_lbr_read_32()
          - [x86] efi: Don't try to reserve runtime regions
          - [x86] signals: Fix lower/upper bound reporting in compat siginfo
          - [x86] pmem: fix broken __copy_user_nocache cache-bypass assumptions
          - [x86] vdso: Ensure vdso32_enabled gets set to valid values only
          - [x86] vdso: Plug race between mapping and ELF header setup
          - [x86] acpi, nfit, libnvdimm: fix interleave set cookie calculation
            (64-bit comparison)
          - ACPI / scan: Set the visited flag for all enumerated devices
          - [hppa] fix bugs in pa_memcpy
          - efi/libstub: Skip GOP with PIXEL_BLT_ONLY format
          - efi/fb: Avoid reconfiguration of BAR that covers the framebuffer
          - iscsi-target: Fix TMR reference leak during session shutdown
          - iscsi-target: Drop work-around for legacy GlobalSAN initiator
          - scsi: sr: Sanity check returned mode data
          - scsi: sd: Consider max_xfer_blocks if opt_xfer_blocks is unusable
          - scsi: qla2xxx: Add fix to read correct register value for ISP82xx.
          - scsi: sd: Fix capacity calculation with 32-bit sector_t
          - target: Avoid mappedlun symlink creation during lun shutdown
          - xen, fbfront: fix connecting to backend
          - new privimitive: iov_iter_revert()
          - make skb_copy_datagram_msg() et.al. preserve ->msg_iter on error
          - [x86] libnvdimm: fix blk free space accounting
          - [x86] libnvdimm: fix reconfig_mutex, mmap_sem, and jbd2_handle lockdep
            splat
          - [armhf] pwm: rockchip: State of PWM clock should synchronize with PWM
            enabled state
          - cpufreq: Bring CPUs up even if cpufreq_online() failed
          - [armhf] irqchip/irq-imx-gpcv2: Fix spinlock initialization
          - ftrace: Fix removing of second function probe
          - zram: do not use copy_page with non-page aligned address
          - ftrace: Fix function pid filter on instances
          - crypto: algif_aead - Fix bogus request dereference in completion function
          - crypto: ahash - Fix EINPROGRESS notification callback (CVE-2017-7618)
          - [hppa] Fix get_user() for 64-bit value on 32-bit kernel
          - dvb-usb-v2: avoid use-after-free (CVE-2017-8064)
          - drm/nouveau/disp/mcp7x: disable dptmds workaround (Closes: #850219)
          - [x86] mm: Tighten x86 /dev/mem with zeroing reads (CVE-2017-7889)
          - dvb-usb-firmware: don't do DMA on stack (CVE-2017-8061)
          - cxusb: Use a dma capable buffer also for reading (CVE-2017-8063)
          - virtio-console: avoid DMA from stack (CVE-2017-8067)
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.25
          - KEYS: Disallow keyrings beginning with '.' to be joined as session
            keyrings (CVE-2016-9604)
          - KEYS: Change the name of the dead type to ".dead" to prevent user access
            (CVE-2017-6951)
          - KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyrings
            (CVE-2017-7472)
          - tracing: Allocate the snapshot buffer before enabling probe
          - ring-buffer: Have ring_buffer_iter_empty() return true when empty
          - mm: prevent NR_ISOLATE_* stats from going negative
          - cifs: Do not send echoes before Negotiate is complete (Closes: #856843)
          - CIFS: remove bad_network_name flag
          - [s390x] mm: fix CMMA vs KSM vs others
          - Input: elantech - add Fujitsu Lifebook E547 to force crc_enabled
          - ACPI / power: Avoid maybe-uninitialized warning
          - [armhf] mmc: sdhci-esdhc-imx: increase the pad I/O drive strength for
            DDR50 card
          - ubifs: Fix RENAME_WHITEOUT support
          - ubifs: Fix O_TMPFILE corner case in ubifs_link()
          - mac80211: reject ToDS broadcast data frames
          - mac80211: fix MU-MIMO follow-MAC mode
          - ubi/upd: Always flush after prepared for an update
          - [powerpc*] kprobe: Fix oops when kprobed on 'stdu' instruction
          - [x86] mce/AMD: Give a name to MCA bank 3 when accessed with legacy MSRs
          - [x86] mce: Make the MCE notifier a blocking one
          - device-dax: switch to srcu, fix rcu_read_lock() vs pte allocation
      
        [ Ben Hutchings ]
        * w1: Really enable W1_MASTER_GPIO as module (Closes: #858975)
        * debian/rules.real: Undefine $LANGUAGE, which can break debug symbols for
          vDSOs (Closes: #859807)
        * Bump ABI to 3
        * [s390x] Set NR_CPUS=256 (Closes: #858731)
        * [x86] usbip: Increase USBIP_VHCI_NR_HCS to 8 and USBIP_VHCI_HC_PORTS to 31
          (Closes: #859641)
        * [powerpc/powerpc64,ppc64*] target: Enable SCSI_IBMVSCSIS as module
        * cpupower: Fix turbo frequency reporting for pre-Sandy Bridge cores
          (Closes: #859978)
        * udeb: Include all AHCI drivers in sata-modules (Closes: #860335)
        * [powerpc/powerpc64,ppc64] Set NR_CPUS=2048, matching ppc64el
        * [powerpc*/*64*] Enable CPUMASK_OFFSTACK to reduce stack usage
        * [mips*el/loongson-3] Set NR_CPUS=16 to allow for Loongson 3B2000
        * [mips*/octeon] Set NR_CPUS=64 to allow for Cavium CN7890
        * [arm64] Set NR_CPUS=256 to allow for multi-SoC systems (Closes: #861209)
        * [powerpc/powerpc-smp,powerpcspe] Explicitly set NR_CPUS=4
        * Move debug symbols back to the main archive, to avoid problems with the
          current handling in dak
        * linux-image: Disable signing until it's supported in dak
        * [rt] Update to 4.9.20-rt16:
          - rtmutex: Make lock_killable work
          - rtmutex: Provide rt_mutex_lock_state()
          - rtmutex: Provide locked slowpath
          - rwsem/rt: Lift single reader restriction
        * PCI: Enable PCIE_PTM (except on armel/marvell)
        * 6lowpan: Enable Generic Header Compression modules
        * net/sched: Enable NET_ACT_SKBMOD as module
        * ethernet: Enable NFP_NETVF as module
        * net/phy: Enable MICROSEMI_PHY as module
        * input/tablet: Enable TABLET_USB_PEGASUS as module
        * [x86] input/touchscreen: Enable TOUCHSCREEN_SURFACE3_SPI as module
        * serial/8250: Enable SERIAL_8250_MOXA as module
        * [x86] gpio: Enable GPIO_AMDPT as module
        * [x86] thermal: Enable INT3406_THERMAL as module
        * watchdog: Enable WATCHDOG_SYSFS
        * integrity: Enable IMA, IMA_DEFAULT_HASH_SHA256, IMA_APPRAISE,
          IMA_KEYRINGS_PERMIT_SIGNED_BY_BUILTIN_OR_SECONDARY, IMA_BLACKLIST_KEYRING
          (except on armel/marvell) (Closes: #788290)
        * media: Enable VIDEO_TW5864, VIDEO_TW686X as modules
        * [x86] amdgpu,sound/soc: Enable DRM_AMD_ACP; enable SND_SOC_AMD_ACP as module
        * hda: Set SND_HDA_PREALLOC_SIZE=2048 as recommended for PulseAudio
        * HID: Enable HID_SENSOR_CUSTOM_SENSOR as module
        * leds,USB: Enable USB_LEDS_TRIGGER_USBPORT as module
        * usbip: Enable USBIP_VUDC as module
        * USB/misc: Enable UCSI as module
        * leds: Enable LEDS_TRIGGER_DISK, LEDS_TRIGGER_MTD, LEDS_TRIGGER_PANIC
        * IB: Enable INFINIBAND_HFI1, INFINIBAND_I40IW, INFINIBAND_QEDR, RDMA_RXE
          as modules
        * [amd64] EDAC: Enable EDAC_SKX as module
        * [x86] comedi: Enable COMEDI_ADV_PCI1720, COMEDI_ADV_PCI1760 as modules
        * [x86] platform: Enable INTEL_HID_EVENT as module
        * [x86] hwtracing: Enable INTEL_TH, INTEL_TH_PCI, INTEL_TH_GTH, INTEL_TH_MSU,
          INTEL_TH_PTI as modules
        * [rt] tracing: Enable HWLAT_TRACER
        * [x86] crypto: Enable CRYPTO_DEV_QAT_C3XXX, CRYPTO_DEV_QAT_C62X,
          CRYPTO_DEV_QAT_C3XXXVF, CRYPTO_DEV_QAT_C62XVF as modules
        * crypto: Enable CRYPTO_DEV_CHELSIO as module
        * [arm64] Enable ARMV8_DEPRECATED, SWP_EMULATION, CP15_BARRIER_EMULATION,
          SETEND_EMULATION (Closes: #861384)
        * udeb: Add tifm_7xx1 to mmc-modules (Closes: #861195)
        * leds: Enable LEDS_GPIO as module for all configurations with GPIOs
          (Closes: #860569)
        * selinux: Set SECURITY_SELINUX_CHECKREQPROT_VALUE=0, per default.
          This may break some old applications if SELinux is enabled, and can be
          reverted using the kernel parameter: checkreqprot=1
        * udeb: Move mfd-core to kernel-image, as both input-modules and
          mmc-modules need it
        * crypto: Change CRYPTO_SHA256 from module to built-in, as required by IMA
      
        [ Salvatore Bonaccorso ]
        * ping: implement proper locking (CVE-2017-2671)
        * macsec: avoid heap overflow in skb_to_sgvec (CVE-2017-7477)
        * macsec: dynamically allocate space for sglist
        * nfsd: check for oversized NFSv2/v3 arguments (CVE-2017-7645)
        * nfsd4: minor NFSv2/v3 write decoding cleanup
        * nfsd: stricter decoding of write-like NFSv2/v3 ops (CVE-2017-7895)
      
        [ Aurelien Jarno ]
        * [mips*/octeon] Drop obsolete patch adding support for the UBNT E200
          board.
        * [mips*el/loongson-3] Disable PAGE_EXTENSION and PAGE_POISONING.
      
        [ John Paul Adrian Glaubitz ]
        * [m68k] udeb: Enable suffix for kernel-image (Closes: #859366)
      2c08d751
    • Lorenzo "Palinuro" Faletra's avatar
      cda83edc
  15. 23 Apr, 2017 2 commits
    • Lorenzo "Palinuro" Faletra's avatar
      Import Debian changes 4.9.18-1parrot18 · 1d73db37
      Lorenzo "Palinuro" Faletra authored
      linux (4.9.18-1parrot18) testing; urgency=medium
      
        * Import new upstream release.
      
      linux (4.9.18-1) unstable; urgency=medium
      
        * New upstream stable update:
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.17
          - net/mlx5e: Register/unregister vport representors on interface
            attach/detach
          - net/mlx5e: Do not reduce LRO WQE size when not using build_skb
          - net/mlx5e: Fix wrong CQE decompression
          - vxlan: correctly validate VXLAN ID against VXLAN_N_VID
          - vti6: return GRE_KEY for vti6
          - vxlan: don't allow overwrite of config src addr
          - ipv4: mask tos for input route
          - net sched actions: decrement module reference count after table flush.
          - l2tp: avoid use-after-free caused by l2tp_ip_backlog_recv
          - net: phy: Avoid deadlock during phy_error()
          - vxlan: lock RCU on TX path
          - geneve: lock RCU on TX path
          - tcp/dccp: block BH for SYN processing
          - net: bridge: allow IPv6 when multicast flood is disabled
          - net: don't call strlen() on the user buffer in packet_bind_spkt()
          - net: net_enable_timestamp() can be called from irq contexts
          - ipv6: orphan skbs in reassembly unit
          - dccp: Unlock sock before calling sk_free()
          - strparser: destroy workqueue on module exit
          - tcp: fix various issues for sockets morphing to listen state
          - net: fix socket refcounting in skb_complete_wifi_ack()
          - net: fix socket refcounting in skb_complete_tx_timestamp()
          - net/sched: act_skbmod: remove unneeded rcu_read_unlock in tcf_skbmod_dump
          - dccp: fix use-after-free in dccp_feat_activate_values
          - vrf: Fix use-after-free in vrf_xmit
          - net/tunnel: set inner protocol in network gro hooks
          - act_connmark: avoid crashing on malformed nlattrs with null parms
          - mpls: Send route delete notifications when router module is unloaded
          - mpls: Do not decrement alive counter for unregister events
          - ipv6: make ECMP route replacement less greedy
          - ipv6: avoid write to a possibly cloned skb
          - bridge: drop netfilter fake rtable unconditionally
          - dccp/tcp: fix routing redirect race
          - tun: fix premature POLLOUT notification on tun devices
          - dccp: fix memory leak during tear-down of unsuccessful connection request
          - bpf: Detect identical PTR_TO_MAP_VALUE_OR_NULL registers
          - bpf: fix state equivalence
          - bpf: fix regression on verifier pruning wrt map lookups
          - bpf: fix mark_reg_unknown_value for spilled regs on map value marking
          - dmaengine: iota: ioat_alloc_chan_resources should not perform sleeping
            allocations.
          - xen: do not re-use pirq number cached in pci device msi msg data
          - igb: Workaround for igb i210 firmware issue
          - igb: add i211 to i210 PHY workaround
          - [x86] hyperv: Handle unknown NMIs on one CPU when unknown_nmi_panic
          - PCI: Separate VF BAR updates from standard BAR updates
          - PCI: Remove pci_resource_bar() and pci_iov_resource_bar()
          - PCI: Decouple IORESOURCE_ROM_ENABLE and PCI_ROM_ADDRESS_ENABLE
          - PCI: Don't update VF BARs while VF memory space is enabled
          - PCI: Update BARs using property bits appropriate for type
          - PCI: Ignore BAR updates on virtual functions
          - PCI: Do any VF BAR updates before enabling the BARs
          - [powerpc*] ibmveth: calculate gso_segs for large packets
          - [x86] Drivers: hv: ring_buffer: count on wrap around mappings in
            get_next_pkt_raw() (v2)
          - vfio/spapr: Postpone allocation of userspace version of TCE table
          - [powerpc*] iommu: Stop using @current in mm_iommu_xxx
          - [powerpc*] vfio/spapr: Reference mm in tce_container
          - [powerpc*] mm/iommu, vfio/spapr: Put pages on VFIO container shutdown
          - [powerpc*] vfio/spapr: Add a helper to create default DMA window
          - [powerpc*] vfio/spapr: Postpone default window creation
          - drm/nouveau/disp/gp102: fix cursor/overlay immediate channel indices
          - drm/nouveau/disp/nv50-: split chid into chid.ctrl and chid.user
          - drm/nouveau/disp/nv50-: specify ctrl/user separately when constructing
            classes
          - block: allow WRITE_SAME commands with the SG_IO ioctl
          - [s390x] zcrypt: Introduce CEX6 toleration
          - uvcvideo: uvc_scan_fallback() for webcams with broken chain
          - [x86] ACPI / blacklist: add _REV quirks for Dell Precision 5520 and 3520
          - [x86] ACPI / blacklist: Make Dell Latitude 3350 ethernet work
          - serial: 8250_pci: Detach low-level driver during PCI error recovery
          - [armhf] clk: bcm2835: Fix ->fixed_divider of pllh_aux
          - [armhf] drm/vc4: Fix race between page flip completion event and clean-up
          - [armhf] drm/vc4: Fix ->clock_select setting for the VEC encoder
          - [arm64] KVM: VHE: Clear HCR_TGE when invalidating guest TLBs
          - [armhf,arm64] irqchip/gicv3-its: Add workaround for QDF2400 ITS erratum
            0065
          - [x86] tsc: Fix ART for TSC_KNOWN_FREQ
          - [x86] perf: Fix CR4.PCE propagation to use active_mm instead of mm
          - futex: Fix potential use-after-free in FUTEX_REQUEUE_PI
          - futex: Add missing error handling to FUTEX_REQUEUE_PI
          - locking/rwsem: Fix down_write_killable() for
            CONFIG_RWSEM_GENERIC_SPINLOCK=y
          - [powerpc*] crypto: Fix initialisation of crc32c context
          https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.18
          - [armhf] drm/vc4: Fix termination of the initial scan for branch targets.
          - [armhf] drm/vc4: Use runtime autosuspend to avoid thrashing V3D power
            state.
          - qla2xxx: Fix memory leak for abts processing
          - qla2xxx: Fix request queue corruption.
          - [hppa] Optimize flush_kernel_vmap_range and invalidate_kernel_vmap_range
          - [hppa] Fix system shutdown halt
          - perf/core: Fix use-after-free in perf_release()
          - perf/core: Fix event inheritance on fork()
          - NFS prevent double free in async nfs4_exchange_id
          - cpufreq: Fix and clean up show_cpuinfo_cur_freq()
          - [powerpc*] boot: Fix zImage TOC alignment
          - md/raid1/10: fix potential deadlock
          - target/pscsi: Fix TYPE_TAPE + TYPE_MEDIMUM_CHANGER export
          - scsi: lpfc: Add shutdown method for kexec
          - scsi: libiscsi: add lock around task lists to fix list corruption
            regression
          - target: Fix VERIFY_16 handling in sbc_parse_cdb
          - isdn/gigaset: fix NULL-deref at probe
          - gfs2: Avoid alignment hole in struct lm_lockname
          - percpu: acquire pcpu_lock when updating pcpu_nr_empty_pop_pages
          - cgroup/pids: remove spurious suspicious RCU usage warning
          - [x86] drm/amdgpu/si: add dpm quirk for Oland
          - ext4: fix fencepost in s_first_meta_bg validation (Closes: #856808)
      
        [ Ben Hutchings ]
        * [powerpc*] Ignore ABI changes in cxl (fixes FTBFS) (Closes: #858530)
          and IOMMU setup
        * Ignore ABI changes in bpf, dccp, libiscsi
        * [x86] Ignore ABI changes in kvm
        * [rt] Update to 4.9.18-rt14:
          - lockdep: Fix per-cpu static objects
          - futex: Cleanup variable names for futex_top_waiter()
          - futex: Use smp_store_release() in mark_wake_futex()
          - futex: Remove rt_mutex_deadlock_account_*()
          - futex,rt_mutex: Provide futex specific rt_mutex API
          - futex: Change locking rules
          - futex: Cleanup refcounting
          - futex: Rework inconsistent rt_mutex/futex_q state
          - futex: Pull rt_mutex_futex_unlock() out from under hb->lock
          - futex,rt_mutex: Introduce rt_mutex_init_waiter()
          - futex,rt_mutex: Restructure rt_mutex_finish_proxy_lock()
          - futex: Rework futex_lock_pi() to use rt_mutex_*_proxy_lock()
          - futex: Futex_unlock_pi() determinism
          - futex: Drop hb->lock before enqueueing on the rtmutex
          - futex: workaround migrate_disable/enable in different context
          - Revert "kernel/futex: don't deboost too early"
        * xfrm_user: validate XFRM_MSG_NEWAE XFRMA_REPLAY_ESN_VAL replay_window
          (CVE-2017-7184)
        * xfrm_user: validate XFRM_MSG_NEWAE incoming ESN size harder (CVE-2017-7184)
        * scsi: sg: check length passed to SG_NEXT_CMD_LEN (CVE-2017-7187)
        * [x86] vmwgfx: NULL pointer dereference in vmw_surface_define_ioctl()
          (CVE-2017-7261)
        * [x86] drm/vmwgfx: fix integer overflow in vmw_surface_define_ioctl()
          (CVE-2017-7294)
        * net/packet: Fix integer overflow in various range checks (CVE-2017-7308)
        * [arm64] rtc: tegra: Implement clock handling (Closes: #858514)
        * [armhf] sound/soc: Enable SND_SUN4I_SPDIF as module (Closes: #857410)
        * [arm64,x86] Enable CROS_KBD_LED_BACKLIGHT as module (Closes: #856906)
        * netfilter: nft_ct: add notrack support (Closes: #845500)
        * w1: Enable W1_MASTER_GPIO as module (Closes: #858975)
      
        [ James Clarke ]
        * [sparc64] udeb: Re-add ufs-modules (Closes: #858049)
      1d73db37
    • Lorenzo "Palinuro" Faletra's avatar
      e39996ed