lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <20180117094417.GA18242@kroah.com>
Date:   Wed, 17 Jan 2018 10:44:17 +0100
From:   Greg KH <gregkh@...uxfoundation.org>
To:     linux-kernel@...r.kernel.org,
        Andrew Morton <akpm@...ux-foundation.org>,
        torvalds@...ux-foundation.org, stable@...r.kernel.org
Cc:     lwn@....net, Jiri Slaby <jslaby@...e.cz>
Subject: Linux 4.14.14

I'm announcing the release of the 4.14.14 kernel.

All users of the 4.14 kernel series must upgrade.

The updated 4.14.y git tree can be found at:
	git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.14.y
and can be browsed at the normal kernel.org git web browser:
	http://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary

thanks,

greg k-h

------------

 Documentation/ABI/testing/sysfs-devices-system-cpu       |   16 
 Documentation/admin-guide/kernel-parameters.txt          |   49 +
 Documentation/x86/pti.txt                                |  186 +++++
 Makefile                                                 |    2 
 arch/mips/kernel/process.c                               |   12 
 arch/mips/kernel/ptrace.c                                |  147 +++-
 arch/powerpc/kvm/book3s_64_mmu.c                         |    1 
 arch/powerpc/kvm/book3s_64_mmu_hv.c                      |   90 +-
 arch/powerpc/kvm/book3s_pr.c                             |    2 
 arch/x86/Kconfig                                         |   14 
 arch/x86/Makefile                                        |    8 
 arch/x86/crypto/aesni-intel_asm.S                        |    5 
 arch/x86/crypto/camellia-aesni-avx-asm_64.S              |    3 
 arch/x86/crypto/camellia-aesni-avx2-asm_64.S             |    3 
 arch/x86/crypto/crc32c-pcl-intel-asm_64.S                |    3 
 arch/x86/entry/calling.h                                 |   36 -
 arch/x86/entry/entry_32.S                                |    5 
 arch/x86/entry/entry_64.S                                |   12 
 arch/x86/events/intel/bts.c                              |   18 
 arch/x86/include/asm/asm-prototypes.h                    |   25 
 arch/x86/include/asm/cpufeatures.h                       |    4 
 arch/x86/include/asm/mshyperv.h                          |   18 
 arch/x86/include/asm/msr-index.h                         |    3 
 arch/x86/include/asm/nospec-branch.h                     |  214 ++++++
 arch/x86/include/asm/processor-flags.h                   |    2 
 arch/x86/include/asm/tlbflush.h                          |    6 
 arch/x86/include/asm/xen/hypercall.h                     |    5 
 arch/x86/kernel/acpi/boot.c                              |   61 +
 arch/x86/kernel/alternative.c                            |    7 
 arch/x86/kernel/cpu/amd.c                                |   28 
 arch/x86/kernel/cpu/bugs.c                               |  185 +++++
 arch/x86/kernel/cpu/common.c                             |    3 
 arch/x86/kernel/cpu/microcode/intel.c                    |   13 
 arch/x86/kernel/ftrace_32.S                              |    6 
 arch/x86/kernel/ftrace_64.S                              |    8 
 arch/x86/kernel/irq_32.c                                 |    9 
 arch/x86/kernel/tboot.c                                  |   11 
 arch/x86/kvm/svm.c                                       |   23 
 arch/x86/kvm/vmx.c                                       |   30 
 arch/x86/kvm/x86.c                                       |    8 
 arch/x86/lib/Makefile                                    |    1 
 arch/x86/lib/checksum_32.S                               |    7 
 arch/x86/lib/retpoline.S                                 |   48 +
 arch/x86/mm/pti.c                                        |   32 
 arch/x86/platform/efi/efi_64.c                           |    2 
 crypto/algapi.c                                          |   12 
 drivers/base/Kconfig                                     |    3 
 drivers/base/cpu.c                                       |   48 +
 drivers/block/rbd.c                                      |   18 
 drivers/gpu/drm/i915/gvt/gtt.c                           |    5 
 drivers/gpu/drm/i915/i915_drv.c                          |    1 
 drivers/gpu/drm/i915/i915_reg.h                          |    2 
 drivers/gpu/drm/i915/intel_display.c                     |   14 
 drivers/gpu/drm/i915/intel_engine_cs.c                   |    5 
 drivers/gpu/drm/i915/intel_pm.c                          |   44 -
 drivers/gpu/drm/vmwgfx/vmwgfx_execbuf.c                  |    2 
 drivers/gpu/drm/vmwgfx/vmwgfx_kms.c                      |    6 
 drivers/gpu/drm/vmwgfx/vmwgfx_kms.h                      |    2 
 drivers/gpu/drm/vmwgfx/vmwgfx_stdu.c                     |   41 -
 drivers/infiniband/hw/cxgb4/cq.c                         |    7 
 drivers/infiniband/hw/cxgb4/ev.c                         |    8 
 drivers/infiniband/hw/cxgb4/iw_cxgb4.h                   |    2 
 drivers/infiniband/hw/cxgb4/qp.c                         |  119 ++-
 drivers/infiniband/hw/cxgb4/t4.h                         |    6 
 drivers/infiniband/ulp/srpt/ib_srpt.c                    |    5 
 drivers/md/dm-bufio.c                                    |    8 
 drivers/mmc/host/renesas_sdhi_core.c                     |    3 
 drivers/mux/core.c                                       |    4 
 drivers/net/can/usb/gs_usb.c                             |    2 
 drivers/net/can/vxcan.c                                  |    2 
 drivers/net/ethernet/freescale/fec_main.c                |    7 
 drivers/net/ethernet/intel/e1000e/ich8lan.c              |   11 
 drivers/net/ethernet/mellanox/mlxsw/spectrum.c           |   11 
 drivers/net/ethernet/mellanox/mlxsw/spectrum.h           |    2 
 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c    |    2 
 drivers/net/ethernet/mellanox/mlxsw/spectrum_switchdev.c |    6 
 drivers/net/ethernet/renesas/sh_eth.c                    |   29 
 drivers/net/ethernet/stmicro/stmmac/stmmac_main.c        |    6 
 drivers/net/phy/phylink.c                                |    3 
 drivers/net/phy/sfp-bus.c                                |    6 
 drivers/net/wireless/intel/iwlwifi/pcie/internal.h       |   10 
 drivers/net/wireless/intel/iwlwifi/pcie/tx-gen2.c        |   11 
 drivers/net/wireless/intel/iwlwifi/pcie/tx.c             |    8 
 drivers/platform/x86/wmi.c                               |    2 
 drivers/staging/android/ashmem.c                         |    2 
 drivers/usb/gadget/udc/core.c                            |   28 
 drivers/usb/misc/usb3503.c                               |    2 
 drivers/usb/mon/mon_bin.c                                |    8 
 drivers/usb/serial/cp210x.c                              |    2 
 drivers/usb/storage/unusual_uas.h                        |    7 
 drivers/usb/usbip/usbip_common.c                         |   17 
 drivers/usb/usbip/vudc_rx.c                              |   19 
 drivers/usb/usbip/vudc_tx.c                              |   11 
 include/linux/bpf.h                                      |    2 
 include/linux/cpu.h                                      |    7 
 include/linux/crash_core.h                               |    2 
 include/linux/sh_eth.h                                   |    1 
 include/net/sctp/structs.h                               |    2 
 include/trace/events/kvm.h                               |    7 
 kernel/bpf/arraymap.c                                    |   61 +
 kernel/bpf/verifier.c                                    |   41 +
 kernel/cgroup/cgroup.c                                   |   14 
 kernel/crash_core.c                                      |    2 
 kernel/sched/membarrier.c                                |    2 
 net/8021q/vlan.c                                         |    7 
 net/bluetooth/l2cap_core.c                               |   20 
 net/core/ethtool.c                                       |   15 
 net/core/sock_diag.c                                     |    2 
 net/ipv6/exthdrs.c                                       |    9 
 net/ipv6/ip6_output.c                                    |    5 
 net/ipv6/ip6_tunnel.c                                    |    9 
 net/rds/rdma.c                                           |    4 
 net/sched/act_gact.c                                     |    2 
 net/sched/act_mirred.c                                   |    2 
 net/sctp/input.c                                         |   28 
 net/sctp/transport.c                                     |   29 
 security/Kconfig                                         |    2 
 security/apparmor/include/perms.h                        |    3 
 security/apparmor/ipc.c                                  |   53 -
 sound/core/oss/pcm_oss.c                                 |   41 -
 sound/core/oss/pcm_plugin.c                              |   14 
 sound/core/pcm_lib.c                                     |    4 
 sound/core/pcm_native.c                                  |    9 
 sound/drivers/aloop.c                                    |   98 +-
 tools/objtool/check.c                                    |   69 +-
 tools/objtool/check.h                                    |    2 
 tools/testing/selftests/bpf/test_verifier.c              |   40 +
 tools/testing/selftests/x86/Makefile                     |    2 
 tools/testing/selftests/x86/test_vsyscall.c              |  500 +++++++++++++++
 virt/kvm/arm/mmio.c                                      |    6 
 130 files changed, 2524 insertions(+), 542 deletions(-)

Alan Stern (1):
      USB: UDC core: fix double-free in usb_add_gadget_udc_release

Alexei Starovoitov (1):
      bpf: prevent out-of-bounds speculation

Alexey Kardashevskiy (1):
      KVM: PPC: Book3S PR: Fix WIMG handling under pHyp

Andi Kleen (1):
      x86/retpoline/irq32: Convert assembler indirect jumps

Andrew Honig (1):
      KVM: x86: Add memory barrier on vmcs field lookup

Andrii Vladyka (1):
      net: core: fix module type in sock_diag_bind

Andy Lutomirski (1):
      selftests/x86: Add test_vsyscall

Bart Van Assche (2):
      IB/srpt: Disable RDMA access by the initiator
      IB/srpt: Fix ACL lookup during login

Ben Seri (1):
      Bluetooth: Prevent stack info leak from the EFS element.

Benjamin Poirier (1):
      e1000e: Fix e1000_check_for_copper_link_ich8lan return value.

Borislav Petkov (1):
      x86/alternatives: Fix optimize_nops() checking

Christian Holl (1):
      USB: serial: cp210x: add new device ID ELV ALC 8xxx

Cong Wang (1):
      8021q: fix a memory leak for VLAN 0 device

Dan Carpenter (1):
      drm/vmwgfx: Potential off by one in vmw_view_add()

Daniel Borkmann (2):
      bpf, array: fix overflow in max_entries and undefined behavior in index_mask
      bpf: arsh is not supported in 32 bit alu thus reject it

Dave Hansen (3):
      x86/Documentation: Add PTI description
      x86/tboot: Unbreak tboot with PTI enabled
      x86/pti: Make unpoison of pgd for trusted boot work for real

David Gibson (1):
      KVM: PPC: Book3S HV: Always flush TLB in kvmppc_alloc_reset_hpt()

David Woodhouse (11):
      x86/cpufeatures: Add X86_BUG_SPECTRE_V[12]
      sysfs/cpu: Fix typos in vulnerability documentation
      x86/retpoline: Add initial retpoline support
      x86/spectre: Add boot time option to select Spectre v2 mitigation
      x86/retpoline/crypto: Convert crypto assembler indirect jumps
      x86/retpoline/entry: Convert entry assembler indirect jumps
      x86/retpoline/ftrace: Convert ftrace assembler indirect jumps
      x86/retpoline/hyperv: Convert assembler indirect jumps
      x86/retpoline/xen: Convert Xen hypercall indirect jumps
      x86/retpoline/checksum32: Convert assembler indirect jumps
      x86/retpoline: Fill return stack buffer on vmexit

Diego Elio Pettenò (1):
      USB: serial: cp210x: add IDs for LifeScan OneTouch Verio IQ

Eli Cooper (1):
      ip6_tunnel: disable dst caching if tunnel is dual-stack

Emmanuel Grumbach (1):
      iwlwifi: pcie: fix DMA memory mapping / unmapping

Eric Biggers (1):
      crypto: algapi - fix NULL dereference in crypto_remove_spawns()

Eric Dumazet (1):
      ipv6: fix possible mem leaks in ipv6_make_skb()

Florian Margaine (1):
      rbd: reacquire lock should update lock owner client id

Fugang Duan (3):
      net: fec: restore dev_id in the cases of probe error
      net: fec: defer probe if regulator is not ready
      net: fec: free/restore resource in related probe error pathes

Greg Kroah-Hartman (1):
      Linux 4.14.14

Hans de Goede (1):
      mux: core: fix double get_device()

Icenowy Zheng (1):
      uas: ignore UAS for Norelsys NS1068(X) chips

Ido Schimmel (2):
      mlxsw: spectrum_router: Fix NULL pointer deref
      mlxsw: spectrum: Relax sanity checks during enslavement

Ilya Dryomov (1):
      rbd: set max_segments to USHRT_MAX

Jerome Brunet (1):
      net: stmmac: enable EEE in MII, GMII or RGMII only

Jia Zhang (1):
      x86/microcode/intel: Extend BDW late-loading with a revision check

Jike Song (1):
      x86/mm/pti: Remove dead logic in pti_user_pagetable_walk*()

Jim Mattson (1):
      kvm: vmx: Scrub hardware GPRs at VM-exit

Jiri Kosina (1):
      x86/pti: Unbreak EFI old_memmap

John Johansen (1):
      apparmor: fix ptrace label match when matching stacked labels

Josh Poimboeuf (2):
      objtool: Detect jumps to retpoline thunks
      objtool: Allow alternatives to be ignored

Kenneth Graunke (1):
      drm/i915: Whitelist SLICE_COMMON_ECO_CHICKEN1 on Geminilake.

Kirill A. Shutemov (1):
      kdump: write correct address of mem_section into vmcoreinfo

Maciej W. Rozycki (7):
      MIPS: Validate PR_SET_FP_MODE prctl(2) requests against the ABI of the task
      MIPS: Factor out NT_PRFPREG regset access helpers
      MIPS: Guard against any partial write attempt with PTRACE_SETREGSET
      MIPS: Consistently handle buffer counter with PTRACE_SETREGSET
      MIPS: Fix an FCSR access API regression with NT_PRFPREG and MSA
      MIPS: Also verify sizeof `elf_fpreg_t' with PTRACE_SETREGSET
      MIPS: Disallow outsized PTRACE_SETREGSET NT_PRFPREG regset accesses

Marcelo Ricardo Leitner (2):
      sctp: do not retransmit upon FragNeeded if PMTU discovery is disabled
      sctp: fix the handling of ICMP Frag Needed for too small MTUs

Masaharu Hayakawa (1):
      mmc: renesas_sdhi: Add MODULE_LICENSE

Mathieu Desnoyers (1):
      membarrier: Disable preemption when calling smp_call_function_many()

Mathieu Xhonneux (1):
      ipv6: sr: fix TLVs not being copied using setsockopt

Mohamed Ghannam (2):
      RDS: Heap OOB write in rds_message_alloc_sgs()
      RDS: null pointer dereference in rds_atomic_free_op

Oliver Hartkopp (1):
      can: vxcan: improve handling of missing peer name attribute

Pete Zaitcev (1):
      USB: fix usbmon BUG trigger

Peter Zijlstra (1):
      x86,perf: Disable intel_bts when PTI

Rafael J. Wysocki (1):
      platform/x86: wmi: Call acpi_wmi_init() later

Roi Dayan (1):
      net/sched: Fix update of lastuse in act modules implementing stats_update

Russell King (2):
      phylink: ensure we report link down when LOS asserted
      sfp: fix sfp-bus oops when removing socket/upstream

Sergei Shtylyov (2):
      sh_eth: fix TSU resource handling
      sh_eth: fix SH7757 GEther initialization

Serhii Popovych (2):
      KVM: PPC: Book3S HV: Drop prepare_done from struct kvm_resize_hpt
      KVM: PPC: Book3S HV: Fix use after free in case of multiple resize requests

Shuah Khan (3):
      usbip: remove kernel addresses from usb device and urb debug msgs
      usbip: fix vudc_rx: harden CMD_SUBMIT path to handle malicious input
      usbip: vudc_tx: fix v_send_ret_submit() vulnerability to null xfer buffer

Stefan Agner (1):
      usb: misc: usb3503: make sure reset is low for at least 100us

Stephen Hemminger (1):
      ethtool: do not print warning for applications using legacy API

Steve Wise (5):
      iw_cxgb4: only call the cq comp_handler when the cq is armed
      iw_cxgb4: atomically flush the qp
      iw_cxgb4: only clear the ARMED bit if a notification is needed
      iw_cxgb4: reflect the original WR opcode in drain cqes
      iw_cxgb4: when flushing, complete all wrs in a chain

Suren Baghdasaryan (1):
      dm bufio: fix shrinker scans when (nr_to_scan < retain_target)

Takashi Iwai (8):
      ALSA: pcm: Remove incorrect snd_BUG_ON() usages
      ALSA: pcm: Workaround for weird PulseAudio behavior on rewind error
      ALSA: pcm: Add missing error checks in OSS emulation plugin builder
      ALSA: pcm: Abort properly at pending signal in OSS read/write loops
      ALSA: pcm: Allow aborting mutex lock at OSS read/write loops
      ALSA: aloop: Release cable upon open error path
      ALSA: aloop: Fix inconsistent format due to incomplete rule
      ALSA: aloop: Fix racy hw constraints adjustment

Tejun Heo (1):
      cgroup: fix css_task_iter crash on CSS_TASK_ITER_PROC

Thomas Gleixner (4):
      sysfs/cpu: Add vulnerability folder
      x86/cpu: Implement CPU vulnerabilites sysfs functions
      x86/pti: Fix !PCID and sanitize defines
      x86/retpoline: Remove compile time warning

Thomas Hellstrom (1):
      drm/vmwgfx: Don't cache framebuffer maps

Tom Lendacky (2):
      x86/cpu/AMD: Make LFENCE a serializing instruction
      x86/cpu/AMD: Use LFENCE_RDTSC in preference to MFENCE_RDTSC

Vikas C Sajjan (2):
      x86/acpi: Handle SCI interrupts above legacy space gracefully
      x86/acpi: Reduce code duplication in mp_override_legacy_irq()

Viktor Slavkovic (1):
      staging: android: ashmem: fix a race condition in ASHMEM_SET_SIZE ioctl

Ville Syrjälä (2):
      drm/i915: Move init_clock_gating() back to where it was
      drm/i915: Fix init_clock_gating for resume

W. Trevor King (1):
      security/Kconfig: Correct the Documentation reference for PTI

Wanpeng Li (1):
      KVM: Fix stack-out-of-bounds read in write_mmio

Wolfgang Grandegger (1):
      can: gs_usb: fix return value of the "set_bittiming" callback

Zhi Wang (1):
      drm/i915/gvt: Clear the shadow page table entry after post-sync


Download attachment "signature.asc" of type "application/pgp-signature" (834 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ