lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date:   Fri, 27 Apr 2018 15:58:02 +0200
From:   Greg Kroah-Hartman <gregkh@...uxfoundation.org>
To:     linux-kernel@...r.kernel.org
Cc:     Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
        torvalds@...ux-foundation.org, akpm@...ux-foundation.org,
        linux@...ck-us.net, shuah@...nel.org, patches@...nelci.org,
        ben.hutchings@...ethink.co.uk, lkft-triage@...ts.linaro.org,
        stable@...r.kernel.org
Subject: [PATCH 4.4 00/50] 4.4.130-stable review

This is the start of the stable review cycle for the 4.4.130 release.
There are 50 patches in this series, all will be posted as a response
to this one.  If anyone has any issues with these being applied, please
let me know.

Responses should be made by Sun Apr 29 13:56:42 UTC 2018.
Anything received after that time might be too late.

The whole patch series can be found in one patch at:
	https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.4.130-rc1.gz
or in the git tree and branch at:
	git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.4.y
and the diffstat can be found below.

thanks,

greg k-h

-------------
Pseudo-Shortlog of commits:

Greg Kroah-Hartman <gregkh@...uxfoundation.org>
    Linux 4.4.130-rc1

Heiko Carstens <heiko.carstens@...ibm.com>
    s390/uprobes: implement arch_uretprobe_is_alive()

Sebastian Ott <sebott@...ux.ibm.com>
    s390/cio: update chpid descriptor after resource accessibility event

Dan Carpenter <dan.carpenter@...cle.com>
    cdrom: information leak in cdrom_ioctl_media_changed()

Martin K. Petersen <martin.petersen@...cle.com>
    scsi: mptsas: Disable WRITE SAME

Eric Dumazet <edumazet@...gle.com>
    ipv6: add RTA_TABLE and RTA_PREFSRC to rtm_ipv6_policy

Eric Dumazet <edumazet@...gle.com>
    net: af_packet: fix race in PACKET_{R|T}X_RING

Eric Dumazet <edumazet@...gle.com>
    tcp: md5: reject TCP_MD5SIG or TCP_MD5SIG_EXT on established sockets

Wolfgang Bumiller <w.bumiller@...xmox.com>
    net: fix deadlock while clearing neighbor proxy table

Eric Dumazet <edumazet@...gle.com>
    tipc: add policy for TIPC_NLA_NET_ADDR

Cong Wang <xiyou.wangcong@...il.com>
    llc: fix NULL pointer deref for SOCK_ZAPPED

Cong Wang <xiyou.wangcong@...il.com>
    llc: hold llc_sap before release_sock()

Xin Long <lucien.xin@...il.com>
    sctp: do not check port in sctp_inet6_cmp_addr

Toshiaki Makita <makita.toshiaki@....ntt.co.jp>
    vlan: Fix reading memory beyond skb->tail in skb_vlan_tagged_multi

Guillaume Nault <g.nault@...halink.fr>
    pppoe: check sockaddr length in pppoe_connect()

Willem de Bruijn <willemb@...gle.com>
    packet: fix bitfield update race

Xin Long <lucien.xin@...il.com>
    team: fix netconsole setup over team

Paolo Abeni <pabeni@...hat.com>
    team: avoid adding twice the same option to the event list

Jann Horn <jannh@...gle.com>
    tcp: don't read out-of-bounds opsize

Cong Wang <xiyou.wangcong@...il.com>
    llc: delete timers synchronously in llc_sk_free()

Eric Dumazet <edumazet@...gle.com>
    net: validate attribute sizes in neigh_dump_table()

Guillaume Nault <g.nault@...halink.fr>
    l2tp: check sockaddr length in pppol2tp_connect()

Eric Biggers <ebiggers@...gle.com>
    KEYS: DNS: limit the length of option strings

Xin Long <lucien.xin@...il.com>
    bonding: do not set slave_dev npinfo before slave_enable_netpoll in bond_enslave

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: correct module section names for expoline code revert

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: correct nospec auto detection init order

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: add sysfs attributes for spectre

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: report spectre mitigation via syslog

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: add automatic detection of the spectre defense

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: move nobp parameter functions to nospec-branch.c

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390/entry.S: fix spurious zeroing of r0

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: do not bypass BPENTER for interrupt system calls

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: Replace IS_ENABLED(EXPOLINE_*) with IS_ENABLED(CONFIG_EXPOLINE_*)

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: introduce execute-trampolines for branches

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: run user space and KVM guests with modified branch prediction

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: add options to change branch prediction behaviour for the kernel

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390/alternative: use a copy of the facility bit mask

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: add optimized array_index_mask_nospec

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: scrub registers on kernel entry and KVM exit

Martin Schwidefsky <schwidefsky@...ibm.com>
    KVM: s390: wire up bpb feature

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: enable CPU alternatives unconditionally

Martin Schwidefsky <schwidefsky@...ibm.com>
    s390: introduce CPU alternatives

Karthikeyan Periyasamy <periyasa@...eaurora.org>
    Revert "ath10k: send (re)assoc peer command when NSS changed"

Sahitya Tummala <stummala@...eaurora.org>
    jbd2: fix use after free in kjournald2()

Felix Fietkau <nbd@....name>
    ath9k_hw: check if the chip failed to wake up

Dmitry Torokhov <dmitry.torokhov@...il.com>
    Input: drv260x - fix initializing overdrive voltage

Grant Grundler <grundler@...omium.org>
    r8152: add Linksys USB3GIGV1 id

Chen Feng <puck.chen@...ilicon.com>
    staging: ion : Donnot wakeup kswapd in ion system alloc

Jiri Olsa <jolsa@...nel.org>
    perf: Return proper values for user stack errors

Xiaoming Gao <gxm.linux.kernel@...il.com>
    x86/tsc: Prevent 32bit truncation in calc_hpet_ref()

Steve French <smfrench@...il.com>
    cifs: do not allow creating sockets except with SMB1 posix exensions


-------------

Diffstat:

 Documentation/kernel-parameters.txt           |   3 +
 Makefile                                      |   4 +-
 arch/s390/Kconfig                             |  47 +++++
 arch/s390/Makefile                            |  10 ++
 arch/s390/include/asm/alternative.h           | 149 +++++++++++++++
 arch/s390/include/asm/barrier.h               |  24 +++
 arch/s390/include/asm/facility.h              |  18 ++
 arch/s390/include/asm/kvm_host.h              |   3 +-
 arch/s390/include/asm/lowcore.h               |   7 +-
 arch/s390/include/asm/nospec-branch.h         |  17 ++
 arch/s390/include/asm/processor.h             |   4 +
 arch/s390/include/asm/thread_info.h           |   4 +
 arch/s390/include/uapi/asm/kvm.h              |   3 +
 arch/s390/kernel/Makefile                     |   5 +-
 arch/s390/kernel/alternative.c                | 112 ++++++++++++
 arch/s390/kernel/early.c                      |   5 +
 arch/s390/kernel/entry.S                      | 250 +++++++++++++++++++++++---
 arch/s390/kernel/ipl.c                        |   1 +
 arch/s390/kernel/module.c                     |  65 ++++++-
 arch/s390/kernel/nospec-branch.c              | 169 +++++++++++++++++
 arch/s390/kernel/processor.c                  |  18 ++
 arch/s390/kernel/setup.c                      |  14 +-
 arch/s390/kernel/smp.c                        |   7 +-
 arch/s390/kernel/uprobes.c                    |   9 +
 arch/s390/kernel/vmlinux.lds.S                |  37 ++++
 arch/s390/kvm/kvm-s390.c                      |  13 +-
 arch/x86/kernel/tsc.c                         |   2 +-
 drivers/cdrom/cdrom.c                         |   2 +-
 drivers/input/misc/drv260x.c                  |   2 +-
 drivers/message/fusion/mptsas.c               |   1 +
 drivers/net/bonding/bond_main.c               |   3 +-
 drivers/net/ppp/pppoe.c                       |   4 +
 drivers/net/team/team.c                       |  38 +++-
 drivers/net/usb/cdc_ether.c                   |  10 ++
 drivers/net/usb/r8152.c                       |   2 +
 drivers/net/wireless/ath/ath10k/mac.c         |   5 +-
 drivers/net/wireless/ath/ath9k/hw.c           |   4 +
 drivers/s390/char/Makefile                    |   2 +
 drivers/s390/cio/chsc.c                       |  14 +-
 drivers/staging/android/ion/ion_system_heap.c |   2 +-
 fs/cifs/dir.c                                 |   9 +-
 fs/jbd2/journal.c                             |   2 +-
 include/linux/if_vlan.h                       |   7 +-
 include/net/llc_conn.h                        |   1 +
 include/uapi/linux/kvm.h                      |   1 +
 kernel/events/core.c                          |   4 +-
 net/core/dev.c                                |   2 +-
 net/core/neighbour.c                          |  40 +++--
 net/dns_resolver/dns_key.c                    |  13 +-
 net/ipv4/tcp.c                                |   6 +-
 net/ipv4/tcp_input.c                          |   7 +-
 net/ipv6/route.c                              |   2 +
 net/l2tp/l2tp_ppp.c                           |   7 +
 net/llc/af_llc.c                              |  14 +-
 net/llc/llc_c_ac.c                            |   9 +-
 net/llc/llc_conn.c                            |  22 ++-
 net/packet/af_packet.c                        |  88 ++++++---
 net/packet/internal.h                         |  10 +-
 net/sctp/ipv6.c                               |  60 +++----
 net/tipc/net.c                                |   3 +-
 60 files changed, 1228 insertions(+), 168 deletions(-)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ