UbuntuUpdates.org

Package "linux-bluefield"

Name: linux-bluefield

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Header files related to Linux kernel version 5.4.0
  • Header files related to Linux kernel version 5.4.0
  • Header files related to Linux kernel version 5.4.0
  • Header files related to Linux kernel version 5.4.0

Latest version: 5.4.0-1018.21
Release: focal (20.04)
Level: proposed
Repository: main

Links



Other versions of "linux-bluefield" in Focal

Repository Area Version
security main 5.4.0-1016.19
updates main 5.4.0-1016.19
PPA: Canonical Kernel Team 5.4.0-1019.22

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.4.0-1018.21 2021-09-02 22:06:18 UTC

  linux-bluefield (5.4.0-1018.21) focal; urgency=medium

  * focal/linux-bluefield: 5.4.0-1018.21 -proposed tracker (LP: #1939776)

  * Focal update: v5.4.129 upstream stable release (LP: #1936242)
    - [Config] bluefield: enable CONFIG_SYSTEM_REVOCATION_LIST

  * Add support for packet-per-second policing (LP: #1938818)
    - net: qos: add tc police offloading action with max frame size limit
    - net: qos: police action add index for tc flower offloading
    - net: sched: refactor police action helpers to require tcf_lock
    - net:qos: police action offloading parameter 'burst' change to the original
      value
    - flow_offload: add support for packet-per-second policing
    - flow_offload: reject configuration of packet-per-second policing in offload
      drivers
    - net/sched: act_police: add support for packet-per-second policing

  * Sync up mlxbf-gige driver with upstreamed version (LP: #1934923)
    - Revert "UBUNTU: SAUCE: mlxbf_gige: syncup with v1.23 content"
    - Revert "UBUNTU: SAUCE: mlxbf_gige: syncup with v1.21 content"
    - Revert "UBUNTU: SAUCE: Automate soft reset of BlueField ARM via GPIO7"
    - Revert "UBUNTU: SAUCE: Syncup with the latest gpio-mlxbf2 and mlxbf-gige
      drivers"
    - Revert "Revert "UBUNTU: SAUCE: Fix intermittent OOB link up issue""
    - Revert "UBUNTU: SAUCE: Fix intermittent OOB link up issue"
    - Revert "UBUNTU: SAUCE: mlxbf_gige_mdio.c: Support PHY interrupt on
      Bluesphere"
    - Revert "UBUNTU: SAUCE: mlxbf_gige_main.c: Fix OOB PHY interrupt"
    - Revert "UBUNTU: SAUCE: mlxbf_gige: use streaming DMA mapping for packet
      buffers"
    - Revert "UBUNTU: SAUCE: mlxbf_gige: address upstream comments on RX and TX"
    - Revert "UBUNTU: SAUCE: mlxbf-gige: remove gpio interrupt coalesce resources"
    - Revert "UBUNTU: SAUCE: mlxbf_gige: add support for ndo_get_stats64"
    - Revert "UBUNTU: SAUCE: mlxbf_gige: address some general upstream comments"
    - Revert "UBUNTU: SAUCE: Address upstream comments from patch v6 for PHY
      driver"
    - Revert "UBUNTU: SAUCE: mlxbf-gige: cleanups from review"
    - Revert "UBUNTU: SAUCE: mlxbf-gige: v5 patch cleanup and napi_schedule"
    - Revert "UBUNTU: SAUCE: mlxbf_gige_main.c: Fix OOB's ethtool command"
    - Revert "UBUNTU: SAUCE: mlxbf_gige_main.c: Support ethtool options"
    - Revert "UBUNTU: SAUCE: mlxbf-gige: multiple fixes for stability"
    - Revert "UBUNTU: SAUCE: Remove built-in tests from mlxbf_gige driver"
    - Revert "UBUNTU: SAUCE: Add Mellanox BlueField Gigabit Ethernet driver"
    - Add Mellanox BlueField Gigabit Ethernet driver
    - SAUCE: mlxbf-gige: add driver version
    - SAUCE: mlxbf-gige: add ethtool mlxbf_gige_set_ringparam
    - SAUCE: gpio-mlxbf2: Cleanup and use generic gpio_irq_chip struct
    - SAUCE: gpio-mlxbf2.c: remove phy interrupt
    - SAUCE: gpio-mlxbf2.c: Fix setting the gpio direction to output

  [ Ubuntu: 5.4.0-84.94 ]

  * focal/linux: 5.4.0-84.94 -proposed tracker (LP: #1941767)
  * Server boot failure after adding checks for ACPI IRQ override (LP: #1941657)
    - Revert "ACPI: resources: Add checks for ACPI IRQ override"

  [ Ubuntu: 5.4.0-83.93 ]

  * focal/linux: 5.4.0-83.93 -proposed tracker (LP: #1940159)
  * fails to launch linux L2 guests on AMD (LP: #1940134) // CVE-2021-3653
    - KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl
      (CVE-2021-3653)
  * fails to launch linux L2 guests on AMD (LP: #1940134)
    - SAUCE: Revert "UBUNTU: SAUCE: KVM: nSVM: avoid picking up unsupported bits
      from L2 in int_ctl"

  [ Ubuntu: 5.4.0-82.92 ]

  * focal/linux: 5.4.0-82.92 -proposed tracker (LP: #1939799)
  * Packaging resync (LP: #1786013)
    - debian/dkms-versions -- update from kernel-versions (main/2021.08.16)
  * CVE-2021-3656
    - SAUCE: KVM: nSVM: always intercept VMLOAD/VMSAVE when nested
  * CVE-2021-3653
    - SAUCE: KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl
  * [regression] USB device is not detected during boot (LP: #1939638)
    - SAUCE: Revert "usb: core: reduce power-on-good delay time of root hub"
  * dev_forward_skb: do not scrub skb mark within the same name space
    (LP: #1935040)
    - dev_forward_skb: do not scrub skb mark within the same name space
  * XPS 9510 (TGL) Screen Brightness could not be changed (LP: #1933566)
    - SAUCE: drm/i915: Force DPCD backlight mode for Dell XPS 9510(TGL)
  * Acer Aspire 5 sound driver issues (LP: #1930188)
    - ALSA: hda/realtek: headphone and mic don't work on an Acer laptop
  * Sony Dualshock 4 usb dongle crashes the whole system (LP: #1935846)
    - HID: sony: Workaround for DS4 dongle hotplug kernel crash.
  * [21.10 FEAT] KVM: Provide a secure guest indication (LP: #1933173)
    - s390/uv: add prot virt guest/host indication files
    - s390/uv: fix prot virt host indication compilation
  * Skip rtcpie test in kselftests/timers if the default RTC device does not
    exist (LP: #1937991)
    - selftests: timers: rtcpie: skip test if default RTC device does not exist
  * Focal update: v5.4.133 upstream stable release (LP: #1938713)
    - drm/mxsfb: Don't select DRM_KMS_FB_HELPER
    - drm/zte: Don't select DRM_KMS_FB_HELPER
    - drm/amd/amdgpu/sriov disable all ip hw status by default
    - drm/vc4: fix argument ordering in vc4_crtc_get_margins()
    - net: pch_gbe: Use proper accessors to BE data in pch_ptp_match()
    - drm/amd/display: fix use_max_lb flag for 420 pixel formats
    - hugetlb: clear huge pte during flush function on mips platform
    - atm: iphase: fix possible use-after-free in ia_module_exit()
    - mISDN: fix possible use-after-free in HFC_cleanup()
    - atm: nicstar: Fix possible use-after-free in nicstar_cleanup()
    - net: Treat __napi_schedule_irqoff() as __napi_schedule() on PREEMPT_RT
    - drm/mediatek: Fix PM reference leak in mtk_crtc_ddp_hw_init()
    - reiserfs: add check for invalid 1st journal block
    - drm/virtio: Fix double free on probe failure
    - drm/sched: Avoid data corruptions
    

Source diff to previous version
1936242 Focal update: v5.4.129 upstream stable release
1938818 Add support for packet-per-second policing
1934923 Sync up mlxbf-gige driver with upstreamed version
1941657 Server boot failure after adding checks for ACPI IRQ override
1940134 fails to launch linux L2 guests on AMD
1786013 Packaging resync
1939638 [regression] USB device is not detected during boot
1935040 dev_forward_skb: do not scrub skb mark within the same name space
1933566 XPS 9510 (TGL) Screen Brightness could not be changed
1930188 Acer Aspire 5 sound driver issues
1935846 Sony Dualshock 4 usb dongle crashes the whole system
1933173 [21.10 FEAT] KVM: Provide a secure guest indication
1937991 Skip rtcpie test in kselftests/timers if the default RTC device does not exist
1938713 Focal update: v5.4.133 upstream stable release
1938199 Focal update: v5.4.132 upstream stable release
1909814 Keyboard not working
1936245 Focal update: v5.4.131 upstream stable release
1936244 Focal update: v5.4.130 upstream stable release
1931497 Patch To Fix Bug in the Linux Block Layer Responsible For Merging BIOs
CVE-2021-3653 KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl
CVE-2021-3656 KVM: nSVM: always intercept VMLOAD/VMSAVE when nested

Version: 5.4.0-1017.20 2021-07-28 05:06:18 UTC

  linux-bluefield (5.4.0-1017.20) focal; urgency=medium

  * focal/linux-bluefield: 5.4.0-1017.20 -proposed tracker (LP: #1936516)

  * Update mlx-bootctl to access new fields in EEPROM MFG (LP: #1931843)
    - SAUCE: mlx-bootctl: Fix exclusion issues around arm_smccc_smc
    - SAUCE: mlx-bootctl: Fix potential buffer overflow
    - SAUCE: mlx-bootctl: Support VPD info in EEPROM MFG
    - SAUCE: mlx-bootctl: Update license and version info

  * Fix err check for nf_conntrack_confirm (LP: #1934819)
    - net/sched: act_ct: fix err check for nf_conntrack_confirm

  * Possible memory leak of flow_block_cb (LP: #1934822)
    - net/sched: act_ct: remove and free nf_table callbacks

  * Fix host to pod traffic with ovn cluster using ovs internal port and tc
    offload (LP: #1935584)
    - SAUCE: net/sched: act_mirred: Reset ct when reinserting skb back into queue

  * Control netfilter flow table timeouts via sysctl (LP: #1934401)
    - Revert "UBUNTU: SAUCE: net/sched: Add module parameter to set CT age out
      time"
    - Revert "UBUNTU: SAUCE: netfilter: flowtable: Control flow timeout interval"
    - netfilter: conntrack: Introduce tcp offload timeout configuration
    - netfilter: conntrack: Introduce udp offload timeout configuration
    - netfilter: flowtable: Set offload timeouts according to proto values

  * i2c-mlxbf.c: prevent stack overflow in mlxbf_i2c_smbus_start_transaction
    (LP: #1934304)
    - SAUCE: i2c-mlxbf.c: prevent stack overflow in
      mlxbf_i2c_smbus_start_transaction()

  * New BPF helpers to query conntrack and to generate/validate SYN cookies
    (LP: #1934499)
    - xdp: Add frame size to xdp_buff
    - net: XDP-generic determining XDP frame size
    - xdp: Xdp_frame add member frame_sz and handle in convert_to_xdp_frame
    - xdp: Cpumap redirect use frame_sz and increase skb_tailroom
    - veth: Xdp using frame_sz in veth driver
    - tun: Add XDP frame size
    - vhost_net: Also populate XDP frame size
    - virtio_net: Add XDP frame size in two code paths
    - xdp: For Intel AF_XDP drivers add XDP frame_sz
    - mlx5: Rx queue setup time determine frame_sz for XDP
    - xdp: Allow bpf_xdp_adjust_tail() to grow packet size
    - xdp: Clear grow memory in bpf_xdp_adjust_tail()
    - bpf: Add xdp.frame_sz in bpf_prog_test_run_xdp().
    - xdp: Handle frame_sz in xdp_convert_zc_to_xdp_frame()
    - xsk: Fix xsk_umem_xdp_frame_sz()
    - bpf: Fix too large copy from user in bpf_test_init
    - SAUCE: bpf: Add a helper to query TCP conntrack information in XDP
    - SAUCE: bpf: Add helpers to issue and check SYN cookies in XDP
    - SAUCE: bpf: Add a helper to issue timestamp cookies in XDP

  [ Ubuntu: 5.4.0-81.91 ]

  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * large_dir in ext4 broken (LP: #1933074)
    - SAUCE: ext4: fix directory index node split corruption
  * Some test in kselftest/net on focal source tree were not tested at all
    (LP: #1934282)
    - selftests/net: add missing tests to Makefile
  * curtin: install flash-kernel in arm64 UEFI unexpected (LP: #1918427)
    - [Packaging] Allow grub-efi-arm* to satisfy recommends on ARM
  * Add l2tp.sh in net from ubuntu_kernel_selftests back (LP: #1934293)
    - Revert "UBUNTU: SAUCE: selftests/net -- disable l2tp.sh test"
  * icmp_redirect.sh in net from ubuntu_kernel_selftests failed on F-OEM-5.6 /
    F-OEM-5.10 / F-OEM-5.13 / F / G / H (LP: #1880645)
    - selftests: icmp_redirect: support expected failures
  * Focal update: v5.4.128 upstream stable release (LP: #1934179)
    - dmaengine: ALTERA_MSGDMA depends on HAS_IOMEM
    - dmaengine: QCOM_HIDMA_MGMT depends on HAS_IOMEM
    - dmaengine: stedma40: add missing iounmap() on error in d40_probe()
    - afs: Fix an IS_ERR() vs NULL check
    - mm/memory-failure: make sure wait for page writeback in memory_failure
    - kvm: LAPIC: Restore guard to prevent illegal APIC register access
    - batman-adv: Avoid WARN_ON timing related checks
    - net: ipv4: fix memory leak in netlbl_cipsov4_add_std
    - vrf: fix maximum MTU
    - net: rds: fix memory leak in rds_recvmsg
    - net: lantiq: disable interrupt before sheduling NAPI
    - udp: fix race between close() and udp_abort()
    - rtnetlink: Fix regression in bridge VLAN configuration
    - net/sched: act_ct: handle DNAT tuple collision
    - net/mlx5e: Remove dependency in IPsec initialization flows
    - net/mlx5e: Fix page reclaim for dead peer hairpin
    - net/mlx5: Consider RoCE cap before init RDMA resources
    - net/mlx5e: allow TSO on VXLAN over VLAN topologies
    - net/mlx5e: Block offload of outer header csum for UDP tunnels
    - netfilter: synproxy: Fix out of bounds when parsing TCP options
    - sch_cake: Fix out of bounds when parsing TCP options and header
    - alx: Fix an error handling path in 'alx_probe()'
    - net: stmmac: dwmac1000: Fix extended MAC address registers definition
    - net: make get_net_ns return error if NET_NS is disabled
    - qlcnic: Fix an error handling path in 'qlcnic_probe()'
    - netxen_nic: Fix an error handling path in 'netxen_nic_probe()'
    - net: qrtr: fix OOB Read in qrtr_endpoint_post
    - ptp: improve max_adj check against unreasonable values
    - net: cdc_ncm: switch to eth%d interface naming
    - lantiq: net: fix duplicated skb in rx descriptor ring
    - net: usb: fix possible use-after-free in smsc75xx_bind
    - net: fec_ptp: fix issue caused by refactor the fec_devtype
    - net: ipv4: fix memory leak in ip_mc_add1_src
    - net/af_unix: fix a data-race in unix_dgram_sendmsg / unix_release_sock
    - be2net: Fix an error handling path in 'be_probe()'
    - net: hamradio: fix memory leak in mkiss_close
    - net: cdc_eem: fix tx fixup skb leak
    - cxgb4: fix wrong shift.
    - bnxt_en: Rediscover PHY capabilities after firmware reset
    - bnxt_en: Call bnxt_ethtool_free() in bnxt_init_one() error path
    - icmp: don't send out ICMP messages with a source address of 0.0.0.0
    - net: ethernet: fix

Source diff to previous version
1931843 Update mlx-bootctl to access new fields in EEPROM MFG
1934819 Fix err check for nf_conntrack_confirm
1934822 Possible memory leak of flow_block_cb
1935584 Fix host to pod traffic with ovn cluster using ovs internal port and tc offload
1934401 Control netfilter flow table timeouts via sysctl
1934304 i2c-mlxbf.c: prevent stack overflow in mlxbf_i2c_smbus_start_transaction
1934499 New BPF helpers to query conntrack and to generate/validate SYN cookies
1786013 Packaging resync
1933074 large_dir in ext4 broken
1934282 Some test in kselftest/net on focal source tree were not tested at all
1918427 curtin: install flash-kernel in arm64 UEFI unexpected
1934179 Focal update: v5.4.128 upstream stable release
1935833 linux-azure CIFS DFS oops
1929831 cifs: On cifs_reconnect, resolve the hostname again
1932367 Pixel format change broken for Elgato Cam Link 4K
1933851 Focal update: v5.4.127 upstream stable release
1933369 Focal update: v5.4.126 upstream stable release
1932957 Focal update: v5.4.125 upstream stable release

Version: 5.4.0-1015.18 2021-07-02 23:06:20 UTC

  linux-bluefield (5.4.0-1015.18) focal; urgency=medium

  * focal/linux-bluefield: 5.4.0-1015.18 -proposed tracker (LP: #1934322)

  [ Ubuntu: 5.4.0-79.88 ]

  * focal/linux: 5.4.0-79.88 -proposed tracker (LP: #1934343)
  * lxd exec fails (LP: #1934187)
    - SAUCE: Revert "proc: Check /proc/$pid/attr/ writes against file opener"

Source diff to previous version
1934187 lxd exec fails

Version: 5.4.0-1014.17 2021-06-25 09:06:25 UTC

  linux-bluefield (5.4.0-1014.17) focal; urgency=medium

  * focal/linux-bluefield: 5.4.0-1014.17 -proposed tracker (LP: #1932457)

  * Change CONFIG_NF_CONNTRACK to y (LP: #1932042)
    - [Config] CONFIG_NF_CONNTRACK=y

  * Enable features for supporting PXE installer (LP: #1932035)
    - [Config] enable ISO9660, bcache, and zfs support

  * PKA: Fix NULL pointer kfree() issue (LP: #1931584)
    - pka: Fix NULL pointer kfree() issue

  [ Ubuntu: 5.4.0-78.87 ]

  * focal/linux: 5.4.0-78.87 -proposed tracker (LP: #1932478)
  * Packaging resync (LP: #1786013)
    - [Packaging] resync getabis
    - [Packaging] update helper scripts
    - update dkms package versions
  * Disable hv-kvp-daemon.service on certain instance types (LP: #1932081)
    - [Packaging]: Add kernel command line condition to hv-kvp-daemon service
  * QLogic Direct-Connect host can't discover SCSI-FC or NVMe/FC devices
    (LP: #1860724)
    - scsi: qla2xxx: Serialize fc_port alloc in N2N
    - scsi: qla2xxx: Set Nport ID for N2N
    - scsi: qla2xxx: Fix point-to-point (N2N) device discovery issue
    - scsi: qla2xxx: Fix N2N and NVMe connect retry failure
  * [SRU] Add support for E810 NIC to Ice Driver in Focal (LP: #1912511)
    - ice: add additional E810 device id
  * Focal update: v5.4.124 upstream stable release (LP: #1931166)
    - ALSA: hda/realtek: Headphone volume is controlled by Front mixer
    - ALSA: usb-audio: scarlett2: Fix device hang with ehci-pci
    - ALSA: usb-audio: scarlett2: Improve driver startup messages
    - cifs: set server->cipher_type to AES-128-CCM for SMB3.0
    - NFSv4: Fix a NULL pointer dereference in pnfs_mark_matching_lsegs_return()
    - iommu/vt-d: Fix sysfs leak in alloc_iommu()
    - perf intel-pt: Fix sample instruction bytes
    - perf intel-pt: Fix transaction abort handling
    - perf scripts python: exported-sql-viewer.py: Fix copy to clipboard from Top
      Calls by elapsed Time report
    - perf scripts python: exported-sql-viewer.py: Fix Array TypeError
    - perf scripts python: exported-sql-viewer.py: Fix warning display
    - proc: Check /proc/$pid/attr/ writes against file opener
    - net: hso: fix control-request directions
    - ath10k: Validate first subframe of A-MSDU before processing the list
    - dm snapshot: properly fix a crash when an origin has no snapshots
    - drm/amdgpu/vcn1: add cancel_delayed_work_sync before power gate
    - drm/amdgpu/vcn2.0: add cancel_delayed_work_sync before power gate
    - drm/amdgpu/vcn2.5: add cancel_delayed_work_sync before power gate
    - selftests/gpio: Use TEST_GEN_PROGS_EXTENDED
    - selftests/gpio: Move include of lib.mk up
    - selftests/gpio: Fix build when source tree is read only
    - kgdb: fix gcc-11 warnings harder
    - Documentation: seccomp: Fix user notification documentation
    - serial: core: fix suspicious security_locked_down() call
    - misc/uss720: fix memory leak in uss720_probe
    - thunderbolt: dma_port: Fix NVM read buffer bounds and offset issue
    - mei: request autosuspend after sending rx flow control
    - staging: iio: cdc: ad7746: avoid overwrite of num_channels
    - iio: gyro: fxas21002c: balance runtime power in error path
    - iio: adc: ad7768-1: Fix too small buffer passed to
      iio_push_to_buffers_with_timestamp()
    - iio: adc: ad7124: Fix missbalanced regulator enable / disable on error.
    - iio: adc: ad7124: Fix potential overflow due to non sequential channel
      numbers
    - iio: adc: ad7793: Add missing error code in ad7793_setup()
    - serial: 8250_pci: Add support for new HPE serial device
    - serial: 8250_pci: handle FL_NOIRQ board flag
    - USB: trancevibrator: fix control-request direction
    - USB: usbfs: Don't WARN about excessively large memory allocations
    - serial: tegra: Fix a mask operation that is always true
    - serial: sh-sci: Fix off-by-one error in FIFO threshold register setting
    - serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait'
    - USB: serial: ti_usb_3410_5052: add startech.com device id
    - USB: serial: option: add Telit LE910-S1 compositions 0x7010, 0x7011
    - USB: serial: ftdi_sio: add IDs for IDS GmbH Products
    - USB: serial: pl2303: add device id for ADLINK ND-6530 GC
    - thermal/drivers/intel: Initialize RW trip to THERMAL_TEMP_INVALID
    - usb: dwc3: gadget: Properly track pending and queued SG
    - usb: gadget: udc: renesas_usb3: Fix a race in usb3_start_pipen()
    - net: usb: fix memory leak in smsc75xx_bind
    - spi: spi-geni-qcom: Fix use-after-free on unbind
    - Bluetooth: cmtp: fix file refcount when cmtp_attach_device fails
    - fs/nfs: Use fatal_signal_pending instead of signal_pending
    - NFS: fix an incorrect limit in filelayout_decode_layout()
    - NFS: Fix an Oopsable condition in __nfs_pageio_add_request()
    - NFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()
    - NFSv4: Fix v4.0/v4.1 SEEK_DATA return -ENOTSUPP when set NFS_V4_2 config
    - drm/meson: fix shutdown crash when component not probed
    - net/mlx5e: Fix multipath lag activation
    - net/mlx5e: Fix nullptr in add_vlan_push_action()
    - net/mlx4: Fix EEPROM dump support
    - Revert "net:tipc: Fix a double free in tipc_sk_mcast_rcv"
    - tipc: wait and exit until all work queues are done
    - tipc: skb_linearize the head skb when reassembling msgs
    - spi: spi-fsl-dspi: Fix a resource leak in an error handling path
    - net: dsa: mt7530: fix VLAN traffic leaks
    - net: dsa: fix a crash if ->get_sset_count() fails
    - net: dsa: sja1105: error out on unsupported PHY mode
    - i2c: s3c2410: fix possible NULL pointer deref on read message after write
    - i2c: i801: Don't generate an interrupt on bus reset
    - i2c: sh_mobile: Use new clock calculation formulas for RZ/G2E
    - perf jevents: Fix getting maximum number of fds
    - platform/x86: hp_accel: Avoid invoking _INI to speed up resume
    - gpio: cadence: Add missing MODULE_DEVICE_TABLE
    - Revert "med

Source diff to previous version
1932042 Change CONFIG_NF_CONNTRACK to y
1932035 Enable features for supporting PXE installer
1931584 PKA: Fix NULL pointer kfree() issue
1786013 Packaging resync
1932081 Disable hv-kvp-daemon.service on certain instance types
1860724 QLogic Direct-Connect host can't discover SCSI-FC or NVMe/FC devices
1912511 [SRU] Add support for E810 NIC to Ice Driver in Focal
1931166 Focal update: v5.4.124 upstream stable release
1931160 Focal update: v5.4.123 upstream stable release
1931159 Focal update: v5.4.122 upstream stable release
1931158 Focal update: v5.4.121 upstream stable release
1930474 Focal update: v5.4.120 upstream stable release
1932209 UAF on CAN J1939 j1939_can_recv
1931855 UAF on CAN BCM bcm_rx_handler
1932065 Upstream v5.9 introduced 'module' patches that removed exported symbols

Version: 5.4.0-1013.16 2021-06-04 22:06:28 UTC

  linux-bluefield (5.4.0-1013.16) focal; urgency=medium

  * focal/linux-bluefield: 5.4.0-1013.16 -proposed tracker (LP: #1930009)

  * Automate soft reset of BlueField ARM via GPIO7 (LP: #1929736)
    - SAUCE: Automate soft reset of BlueField ARM via GPIO7

  * Remove dependency between module and driver (LP: #1927246)
    - net/sched: act_ct: Make tcf_ct_flow_table_restore_skb inline
    - netfilter: flowtable: Make nf_flow_table_offload_add/del_cb inline

  * Increase flow insertion rate by using rw lock instead of mutex on the flow
    block. (LP: #1927251)
    - netfilter: flowtable: Use rw sem as flow block lock
    - netfilter: flowtable: Free block_cb when being deleted

  * oob_net0 file transfers can crash kernel (LP: #1928852)
    - SAUCE: mlxbf_gige: syncup with v1.23 content

  * CT: Fix CT template allocation for zone 0 (LP: #1929460)
    - SAUCE: net/sched: act_ct: Fix ct template allocation for zone 0

  * CT: Offload connections with commit action (LP: #1929459)
    - SAUCE: net/sched: act_ct: Offload connections with commit action

  * CT: check offload bit on table dump (LP: #1929458)
    - SAUCE: netfilter: conntrack: Check offload bit on table dump

  * Memleak on restore flow when offloading conntrack. (LP: #1929844)
    - SAUCE: skbuff: Release nfct refcount on napi stolen or re-used skbs

  [ Ubuntu: 5.4.0-75.84 ]

  * focal/linux: 5.4.0-75.84 -proposed tracker (LP: #1930032)
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * CVE-2021-33200
    - bpf: Wrap aux data inside bpf_sanitize_info container
    - bpf: Fix mask direction swap upon off reg sign change
    - bpf: No need to simulate speculative domain for immediates
  * Realtek USB hubs in Dell WD19SC/DC/TB fail to work after exiting s2idle
    (LP: #1928242)
    - USB: Verify the port status when timeout happens during port suspend
  * CVE-2020-26145
    - ath10k: drop fragments with multicast DA for SDIO
    - ath10k: add CCMP PN replay protection for fragmented frames for PCIe
    - ath10k: drop fragments with multicast DA for PCIe
  * CVE-2020-26141
    - ath10k: Fix TKIP Michael MIC verification for PCIe
  * CVE-2020-24588
    - mac80211: properly handle A-MSDUs that start with an RFC 1042 header
    - cfg80211: mitigate A-MSDU aggregation attacks
    - mac80211: drop A-MSDUs on old ciphers
    - ath10k: drop MPDU which has discard flag set by firmware for SDIO
  * CVE-2020-26139
    - mac80211: do not accept/forward invalid EAPOL frames
  * CVE-2020-24586 // CVE-2020-24587 // CVE-2020-24587 for such cases.
    - mac80211: extend protection against mixed key and fragment cache attacks
  * CVE-2020-24586 // CVE-2020-24587
    - mac80211: prevent mixed key and fragment cache attacks
    - mac80211: add fragment cache to sta_info
    - mac80211: check defrag PN against current frame
    - mac80211: prevent attacks on TKIP/WEP as well
  * CVE-2020-26147
    - mac80211: assure all fragments are encrypted
  * raid10: Block discard is very slow, causing severe delays for mkfs and
    fstrim operations (LP: #1896578)
    - md: add md_submit_discard_bio() for submitting discard bio
    - md/raid10: extend r10bio devs to raid disks
    - md/raid10: pull the code that wait for blocked dev into one function
    - md/raid10: improve raid10 discard request
    - md/raid10: improve discard request for far layout
    - dm raid: remove unnecessary discard limits for raid0 and raid10
  * [SRU] mpt3sas: only one vSES is handy even IOC has multi vSES (LP: #1926517)
    - scsi: mpt3sas: Only one vSES is present even when IOC has multi vSES
  * kvm: properly tear down PV features on hibernate (LP: #1920944)
    - x86/kvm: Fix pr_info() for async PF setup/teardown
    - x86/kvm: Teardown PV features on boot CPU as well
    - x86/kvm: Disable kvmclock on all CPUs on shutdown
    - x86/kvm: Disable all PV features on crash
    - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline()
  * Focal update: v5.4.119 upstream stable release (LP: #1929615)
    - Bluetooth: verify AMP hci_chan before amp_destroy
    - hsr: use netdev_err() instead of WARN_ONCE()
    - bluetooth: eliminate the potential race condition when removing the HCI
      controller
    - net/nfc: fix use-after-free llcp_sock_bind/connect
    - Revert "USB: cdc-acm: fix rounding error in TIOCSSERIAL"
    - tty: moxa: fix TIOCSSERIAL jiffies conversions
    - tty: amiserial: fix TIOCSSERIAL permission check
    - USB: serial: usb_wwan: fix TIOCSSERIAL jiffies conversions
    - staging: greybus: uart: fix TIOCSSERIAL jiffies conversions
    - USB: serial: ti_usb_3410_5052: fix TIOCSSERIAL permission check
    - staging: fwserial: fix TIOCSSERIAL jiffies conversions
    - tty: moxa: fix TIOCSSERIAL permission check
    - staging: fwserial: fix TIOCSSERIAL permission check
    - usb: typec: tcpm: Address incorrect values of tcpm psy for fixed supply
    - usb: typec: tcpm: Address incorrect values of tcpm psy for pps supply
    - usb: typec: tcpm: update power supply once partner accepts
    - usb: xhci-mtk: remove or operator for setting schedule parameters
    - usb: xhci-mtk: improve bandwidth scheduling with TT
    - ASoC: samsung: tm2_wm5110: check of of_parse return value
    - ASoC: Intel: kbl_da7219_max98927: Fix kabylake_ssp_fixup function
    - MIPS: pci-mt7620: fix PLL lock check
    - MIPS: pci-rt2880: fix slot 0 configuration
    - FDDI: defxx: Bail out gracefully with unassigned PCI resource for CSR
    - PCI: Allow VPD access for QLogic ISP2722
    - iio:accel:adis16201: Fix wrong axis assignment that prevents loading
    - misc: lis3lv02d: Fix false-positive WARN on various HP models
    - misc: vmw_vmci: explicitly initialize vmci_notify_bm_set_msg struct
    - misc: vmw_vmci: explicitly initialize vmci_datagram payload
    - md/bitmap: wait for external bitmap writes to complete during tear down
    - md-cluster: fix use-after-free issue when removing rdev
    - md: split mddev_find
    - md: factor out a mddev_f

1929736 Automate soft reset of BlueField ARM via GPIO7
1927246 Remove dependency between module and driver
1927251 Increase flow insertion rate by using rw lock instead of mutex on the flow block.
1928852 oob_net0 file transfers can crash kernel
1929460 CT: Fix CT template allocation for zone 0
1929459 CT: Offload connections with commit action
1929458 CT: check offload bit on table dump
1929844 Memleak on restore flow when offloading conntrack.
1786013 Packaging resync
1896578 raid10: Block discard is very slow, causing severe delays for mkfs and fstrim operations
1926517 [SRU] mpt3sas: only one vSES is handy even IOC has multi vSES
1920944 kvm: properly tear down PV features on hibernate
1929615 Focal update: v5.4.119 upstream stable release
1928522 seccomp_bpf:syscall_faked from kselftests fail on s390x
1920180 Can't detect intel wifi 6235
1929527 Mark kprobe_args_user.tc in kselftest/ftrace as unsupported
1927672 alsa/sof: make sof driver work in the case of without i915 (focal kernel)
1922494 Ubuntu 20.04 - 'Support flow counters offset for bulk counters'
1928825 Focal update: v5.4.118 upstream stable release
1928823 Focal update: v5.4.117 upstream stable release
1922651 r8152 tx status -71
1928821 Focal update: v5.4.116 upstream stable release
1927997 Focal update: v5.4.115 upstream stable release
CVE-2021-33200 kernel/bpf/verifier.c in the Linux kernel through 5.12.7 enforces inco ...
CVE-2020-26145 An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcas
CVE-2020-26141 An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check
CVE-2020-24588 The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU fl
CVE-2020-26139 An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet s
CVE-2020-24586 The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received frag
CVE-2020-24587 The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments
CVE-2020-26147 An issue was discovered in the Linux kernel 5.8.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of them were se



About   -   Send Feedback to @ubuntu_updates