UbuntuUpdates.org

Package "linux-riscv-headers-6.8.0-48"

Name: linux-riscv-headers-6.8.0-48

Description:

Header files related to Linux kernel version 6.8.0

Latest version: 6.8.0-48.48.1
Release: noble (24.04)
Level: updates
Repository: main
Head package: linux-riscv

Links


Download "linux-riscv-headers-6.8.0-48"


Other versions of "linux-riscv-headers-6.8.0-48" in Noble

Repository Area Version
security main 6.8.0-48.48.1
PPA: Canonical Kernel Team 6.8.0-48.48.1

Changelog

Version: 6.8.0-39.39.1 2024-07-25 00:07:42 UTC

  linux-riscv (6.8.0-39.39.1) noble; urgency=medium

  * noble/linux-riscv: 6.8.0-39.39.1 -proposed tracker (LP: #2071979)

  [ Ubuntu: 6.8.0-39.39 ]

  * noble/linux: 6.8.0-39.39 -proposed tracker (LP: #2071983)
  * CVE-2024-25742
    - x86/sev: Harden #VC instruction emulation somewhat
    - x86/sev: Check for MWAITX and MONITORX opcodes in the #VC handler
  * Noble update: v6.8.9 upstream stable release (LP: #2070337) //
    CVE-2024-35984
    - i2c: smbus: fix NULL function pointer dereference
  * Noble update: v6.8.9 upstream stable release (LP: #2070337) //
    CVE-2024-35990
    - dma: xilinx_dpdma: Fix locking
  * Noble update: v6.8.9 upstream stable release (LP: #2070337) //
    CVE-2024-35997
    - HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up
  * CVE-2024-36016
    - tty: n_gsm: fix possible out-of-bounds in gsm0_receive()
  * CVE-2024-36008
    - ipv4: check for NULL idev in ip_route_use_hint()
  * CVE-2024-35992
    - phy: marvell: a3700-comphy: Fix out of bounds read

 -- Hannah Peuckmann <email address hidden> Thu, 18 Jul 2024 09:08:46 +0200

Source diff to previous version
2070337 Noble update: v6.8.9 upstream stable release
CVE-2024-25742 In the Linux kernel before 6.9, an untrusted hypervisor can inject virtual interrupt 29 (#VC) at any point in time and can trigger its handler. This
CVE-2024-35984 In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when
CVE-2024-35990 In the Linux kernel, the following vulnerability has been resolved: dma: xilinx_dpdma: Fix locking There are several places where either chan->lock
CVE-2024-35997 In the Linux kernel, the following vulnerability has been resolved: HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up The flag I2C_
CVE-2024-36016 In the Linux kernel, the following vulnerability has been resolved: tty: n_gsm: fix possible out-of-bounds in gsm0_receive() Assuming the following
CVE-2024-36008 In the Linux kernel, the following vulnerability has been resolved: ipv4: check for NULL idev in ip_route_use_hint() syzbot was able to trigger a N
CVE-2024-35992 In the Linux kernel, the following vulnerability has been resolved: phy: marvell: a3700-comphy: Fix out of bounds read There is an out of bounds re

Version: 6.8.0-38.38.1 2024-07-18 13:07:08 UTC

  linux-riscv (6.8.0-38.38.1) noble; urgency=medium

  * noble/linux-riscv: 6.8.0-38.38.1 -proposed tracker (LP: #2068316)

  [ Ubuntu: 6.8.0-38.38 ]

  * noble/linux: 6.8.0-38.38 -proposed tracker (LP: #2068318)
  * race_sched in ubuntu_stress_smoke_test will cause kernel panic on 6.8 with
    Azure Standard_A2_v2 instance (LP: #2068024)
    - sched/eevdf: Prevent vlag from going out of bounds in reweight_eevdf()
  * Noble: btrfs: re-introduce 'norecovery' mount option (LP: #2068591)
    - btrfs: re-introduce 'norecovery' mount option
  * Fix system hang while entering suspend with AMD Navi3x graphics
    (LP: #2063417)
    - drm/amdgpu/mes: fix use-after-free issue
  * Noble update: v6.8.8 upstream stable release (LP: #2068087)
    - io_uring: Fix io_cqring_wait() not restoring sigmask on get_timespec64()
      failure
    - drm/i915/cdclk: Fix voltage_level programming edge case
    - Revert "vmgenid: emit uevent when VMGENID updates"
    - SUNRPC: Fix rpcgss_context trace event acceptor field
    - selftests/ftrace: Limit length in subsystem-enable tests
    - random: handle creditable entropy from atomic process context
    - scsi: core: Fix handling of SCMD_FAIL_IF_RECOVERING
    - net: usb: ax88179_178a: avoid writing the mac address before first reading
    - btrfs: do not wait for short bulk allocation
    - btrfs: zoned: do not flag ZEROOUT on non-dirty extent buffer
    - r8169: fix LED-related deadlock on module removal
    - r8169: add missing conditional compiling for call to r8169_remove_leds
    - scsi: ufs: qcom: Add missing interconnect bandwidth values for Gear 5
    - netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()
    - netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()
    - netfilter: br_netfilter: skip conntrack input hook for promisc packets
    - netfilter: nft_set_pipapo: constify lookup fn args where possible
    - netfilter: nft_set_pipapo: walk over current view on netlink dump
    - netfilter: flowtable: validate pppoe header
    - netfilter: flowtable: incorrect pppoe tuple
    - af_unix: Call manage_oob() for every skb in unix_stream_read_generic().
    - af_unix: Don't peek OOB data without MSG_OOB.
    - net: sparx5: flower: fix fragment flags handling
    - net/mlx5: Lag, restore buckets number to default after hash LAG deactivation
    - net/mlx5: Restore mistakenly dropped parts in register devlink flow
    - net/mlx5e: Prevent deadlock while disabling aRFS
    - net: change maximum number of UDP segments to 128
    - octeontx2-pf: fix FLOW_DIS_IS_FRAGMENT implementation
    - selftests/tcp_ao: Make RST tests less flaky
    - selftests/tcp_ao: Zero-init tcp_ao_info_opt
    - selftests/tcp_ao: Fix fscanf() call for format-security
    - selftests/tcp_ao: Printing fixes to confirm with format-security
    - net: stmmac: Apply half-duplex-less constraint for DW QoS Eth only
    - net: stmmac: Fix max-speed being ignored on queue re-init
    - net: stmmac: Fix IP-cores specific MAC capabilities
    - ice: tc: check src_vsi in case of traffic from VF
    - ice: tc: allow zero flags in parsing tc flower
    - ice: Fix checking for unsupported keys on non-tunnel device
    - tun: limit printing rate when illegal packet received by tun dev
    - net: dsa: mt7530: fix mirroring frames received on local port
    - net: dsa: mt7530: fix port mirroring for MT7988 SoC switch
    - s390/ism: Properly fix receive message buffer allocation
    - netfilter: nf_tables: missing iterator type in lookup walk
    - netfilter: nf_tables: restore set elements when delete set fails
    - gpiolib: swnode: Remove wrong header inclusion
    - netfilter: nf_tables: fix memleak in map from abort path
    - net/sched: Fix mirred deadlock on device recursion
    - net: ethernet: mtk_eth_soc: fix WED + wifi reset
    - ravb: Group descriptor types used in Rx ring
    - net: ravb: Count packets instead of descriptors in R-Car RX path
    - net: ravb: Allow RX loop to move past DMA mapping errors
    - net: ethernet: ti: am65-cpsw-nuss: cleanup DMA Channels before using them
    - NFSD: fix endianness issue in nfsd4_encode_fattr4
    - RDMA/rxe: Fix the problem "mutex_destroy missing"
    - RDMA/cm: Print the old state when cm_destroy_id gets timeout
    - RDMA/mlx5: Fix port number for counter query in multi-port configuration
    - perf annotate: Make sure to call symbol__annotate2() in TUI
    - perf lock contention: Add a missing NULL check
    - s390/qdio: handle deferred cc1
    - s390/cio: fix race condition during online processing
    - iommufd: Add missing IOMMUFD_DRIVER kconfig for the selftest
    - iommufd: Add config needed for iommufd_fail_nth
    - drm: nv04: Fix out of bounds access
    - drm/v3d: Don't increment `enabled_ns` twice
    - userfaultfd: change src_folio after ensuring it's unpinned in UFFDIO_MOVE
    - thunderbolt: Introduce tb_port_reset()
    - thunderbolt: Introduce tb_path_deactivate_hop()
    - thunderbolt: Make tb_switch_reset() support Thunderbolt 2, 3 and USB4
      routers
    - thunderbolt: Reset topology created by the boot firmware
    - drm/panel: visionox-rm69299: don't unregister DSI device
    - drm/radeon: make -fstrict-flex-arrays=3 happy
    - ALSA: hda/realtek: Fix volumn control of ThinkBook 16P Gen4
    - thermal/debugfs: Add missing count increment to thermal_debug_tz_trip_up()
    - platform/x86/amd/pmc: Extend Framework 13 quirk to more BIOSes
    - interconnect: qcom: x1e80100: Remove inexistent ACV_PERF BCM
    - interconnect: Don't access req_list while it's being manipulated
    - clk: Remove prepare_lock hold assertion in __clk_release()
    - clk: Initialize struct clk_core kref earlier
    - clk: Get runtime PM before walking tree during disable_unused
    - clk: Get runtime PM before walking tree for clk_summary
    - clk: mediatek: Do a runtime PM get on controllers during probe
    - clk: mediatek: mt7988-infracfg: fix clocks for 2nd PCIe port
    - selftests/powerpc/papr-vpd: F

Source diff to previous version
2068024 race_sched in ubuntu_stress_smoke_test will cause kernel panic on 6.8 with Azure Standard_A2_v2 instance
2068591 Noble: btrfs: re-introduce 'norecovery' mount option
2068087 Noble update: v6.8.8 upstream stable release
2064689 Fix inaudible HDMI/DP audio on USB-C MST dock
2066332 net:fib_rule_tests.sh in ubuntu_kselftests_net fails on Noble
2037688 Pull-request to address TPM bypass issue
2064508 re-enable Ubuntu FAN in the Noble kernel
1470091 update for V3 kernel bits and improved multiple fan slice support
2045560 TCP memory leak, slow network (arm64)
2046315 oem-6.5: disable psr2 for some panels according to edid
2061040 I2C HID device sometimes fails to initialize causing touchpad to not work
2065376 [X13s] Fingerprint reader is not working
2065912 Noble update: v6.8.7 upstream stable release
2065899 Noble update: v6.8.6 upstream stable release
2065400 Noble update: v6.8.5 upstream stable release
CVE-2024-26926 In the Linux kernel, the following vulnerability has been resolved: binder: check offset alignment in binder_get_object() Commit 6d98eb95b450 ("bin
CVE-2024-26922 In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate the parameters of bo mapping operations more clearly Verif
CVE-2024-26924 In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: do not free live element Pablo reports a crash with

Version: 6.8.0-36.36.1 2024-06-26 20:07:16 UTC

  linux-riscv (6.8.0-36.36.1) noble; urgency=medium

  * noble/linux-riscv: 6.8.0-36.36.1 -proposed tracker (LP: #2068149)

  [ Ubuntu: 6.8.0-36.36 ]

  * noble/linux: 6.8.0-36.36 -proposed tracker (LP: #2068150)
  * CVE-2024-26924
    - netfilter: nft_set_pipapo: do not free live element

 -- Hannah Peuckmann <email address hidden> Wed, 19 Jun 2024 10:02:39 +0200

Source diff to previous version
CVE-2024-26924 In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: do not free live element Pablo reports a crash with

Version: 6.8.0-35.35.1 2024-06-06 12:07:27 UTC

  linux-riscv (6.8.0-35.35.1) noble; urgency=medium

  * noble/linux-riscv: 6.8.0-35.35.1 -proposed tracker (LP: #2064343)

  * Add Real-time Linux Analysis tool (rtla) to linux-tools (LP: #2059080)
    - [Packaging] riscv: add Real-time Linux Analysis tool (rtla) to linux-tools

  * Provide python perf module (LP: #2051560)
    - [Packaging] riscv: enable perf python module

  * Autopkgtest failures on amd64 (LP: #2048768)
    - [Packaging] riscv: update to clang-18

  [ Ubuntu: 6.8.0-35.35 ]

  * noble/linux: 6.8.0-35.35 -proposed tracker (LP: #2065886)
  * CVE-2024-21823
    - VFIO: Add the SPR_DSA and SPR_IAX devices to the denylist
    - dmaengine: idxd: add a new security check to deal with a hardware erratum
    - dmaengine: idxd: add a write() method for applications to submit work

  [ Ubuntu: 6.8.0-34.34 ]

  * noble/linux: 6.8.0-34.34 -proposed tracker (LP: #2065167)
  * Packaging resync (LP: #1786013)
    - [Packaging] debian.master/dkms-versions -- update from kernel-versions
      (main/2024.04.29)

  [ Ubuntu: 6.8.0-32.32 ]

  * noble/linux: 6.8.0-32.32 -proposed tracker (LP: #2064344)
  * Packaging resync (LP: #1786013)
    - [Packaging] drop getabis data
    - [Packaging] update variants
    - [Packaging] update annotations scripts
    - [Packaging] debian.master/dkms-versions -- update from kernel-versions
      (main/2024.04.29)
  * Enable Nezha board (LP: #1975592)
    - [Config] Enable CONFIG_REGULATOR_FIXED_VOLTAGE on riscv64
  * Enable Nezha board (LP: #1975592) // Enable StarFive VisionFive 2 board
    (LP: #2013232)
    - [Config] Enable CONFIG_SERIAL_8250_DW on riscv64
  * RISC-V kernel config is out of sync with other archs (LP: #1981437)
    - [Config] Sync riscv64 config with other architectures
  * obsolete out-of-tree ivsc dkms in favor of in-tree one (LP: #2061747)
    - ACPI: scan: Defer enumeration of devices with a _DEP pointing to IVSC device
    - Revert "mei: vsc: Call wake_up() in the threaded IRQ handler"
    - mei: vsc: Unregister interrupt handler for system suspend
    - media: ipu-bridge: Add ov01a10 in Dell XPS 9315
    - SAUCE: media: ipu-bridge: Support more sensors
  * Fix after-suspend-mediacard/sdhc-insert test failed (LP: #2042500)
    - PCI/ASPM: Move pci_configure_ltr() to aspm.c
    - PCI/ASPM: Always build aspm.c
    - PCI/ASPM: Move pci_save_ltr_state() to aspm.c
    - PCI/ASPM: Save L1 PM Substates Capability for suspend/resume
    - PCI/ASPM: Call pci_save_ltr_state() from pci_save_pcie_state()
    - PCI/ASPM: Disable L1 before configuring L1 Substates
    - PCI/ASPM: Update save_state when configuration changes
  * RTL8852BE fw security fail then lost WIFI function during suspend/resume
    cycle (LP: #2063096)
    - wifi: rtw89: download firmware with five times retry
  * intel_rapl_common: Add support for ARL and LNL (LP: #2061953)
    - powercap: intel_rapl: Add support for Lunar Lake-M paltform
    - powercap: intel_rapl: Add support for Arrow Lake
  * Kernel panic during checkbox stress_ng_test on Grace running noble 6.8
    (arm64+largemem) kernel (LP: #2058557)
    - aio: Fix null ptr deref in aio_complete() wakeup
  * Avoid creating non-working backlight sysfs knob from ASUS board
    (LP: #2060422)
    - platform/x86: asus-wmi: Consider device is absent when the read is ~0
  * Include cifs.ko in linux-modules package (LP: #2042546)
    - [Packaging] Replace fs/cifs with fs/smb/client in inclusion list
  * Add Real-time Linux Analysis tool (rtla) to linux-tools (LP: #2059080)
    - SAUCE: rtla: fix deb build
    - [Packaging] add Real-time Linux Analysis tool (rtla) to linux-tools
    - [Packaging] update dependencies for rtla
  * Noble update: v6.8.4 upstream stable release (LP: #2060533)
    - Revert "workqueue: Shorten events_freezable_power_efficient name"
    - Revert "workqueue: Don't call cpumask_test_cpu() with -1 CPU in
      wq_update_node_max_active()"
    - Revert "workqueue: Implement system-wide nr_active enforcement for unbound
      workqueues"
    - Revert "workqueue: Introduce struct wq_node_nr_active"
    - Revert "workqueue: RCU protect wq->dfl_pwq and implement accessors for it"
    - Revert "workqueue: Make wq_adjust_max_active() round-robin pwqs while
      activating"
    - Revert "workqueue: Move nr_active handling into helpers"
    - Revert "workqueue: Replace pwq_activate_inactive_work() with
      [__]pwq_activate_work()"
    - Revert "workqueue: Factor out pwq_is_empty()"
    - Revert "workqueue: Move pwq->max_active to wq->max_active"
    - Revert "workqueue.c: Increase workqueue name length"
    - Linux 6.8.4
  * Noble update: v6.8.3 upstream stable release (LP: #2060531)
    - drm/vmwgfx: Unmap the surface before resetting it on a plane state
    - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach
    - wifi: brcmfmac: avoid invalid list operation when vendor attach fails
    - media: staging: ipu3-imgu: Set fields before media_entity_pads_init()
    - arm64: dts: qcom: sc7280: Add additional MSI interrupts
    - remoteproc: virtio: Fix wdg cannot recovery remote processor
    - clk: qcom: gcc-sdm845: Add soft dependency on rpmhpd
    - smack: Set SMACK64TRANSMUTE only for dirs in smack_inode_setxattr()
    - smack: Handle SMACK64TRANSMUTE in smack_inode_setsecurity()
    - arm: dts: marvell: Fix maxium->maxim typo in brownstone dts
    - drm/vmwgfx: Fix possible null pointer derefence with invalid contexts
    - arm64: dts: qcom: sm8450-hdk: correct AMIC4 and AMIC5 microphones
    - serial: max310x: fix NULL pointer dereference in I2C instantiation
    - drm/vmwgfx: Fix the lifetime of the bo cursor memory
    - pci_iounmap(): Fix MMIO mapping leak
    - media: xc4000: Fix atomicity violation in xc4000_get_frequency
    - media: mc: Add local pad to pipeline regardless of the link state
    - media: mc: Fix flags handling when creating pad links
    - media: nxp: imx8-isi: Check whether crossbar pad is non-NULL before access
    - media: mc: Add num_links flag to

2059080 Add Real-time Linux Analysis tool (rtla) to linux-tools
2051560 Provide python perf module
1786013 Packaging resync
1975592 Enable Nezha board
2013232 Enable StarFive VisionFive 2 board
1981437 RISC-V kernel config is out of sync with other archs
2063096 RTL8852BE fw security fail then lost WIFI function during suspend/resume cycle
2061953 intel_rapl_common: Add support for ARL and LNL
2058557 Kernel panic during checkbox stress_ng_test on Grace running noble 6.8 (arm64+largemem) kernel
2060422 Avoid creating non-working backlight sysfs knob from ASUS board
2042546 Include cifs.ko in linux-modules package
2060533 Noble update: v6.8.4 upstream stable release
2060531 Noble update: v6.8.3 upstream stable release
2062556 [Ubuntu-24.04] Hugepage memory is not getting released even after destroying the guest!
2060130 [SPR][EMR][GNR] TDX: efi: TD Measurement support for kernel cmdline/initrd sections from EFI stub
2059263 Fix acpi_power_meter accessing IPMI region before it's ready
2055083 Drop fips-checks script from trees
2058573 alsa/realtek: adjust max output valume for headphone on 2 LG machines
2060097 Noble update: v6.8.2 upstream stable release
2056716 To support AMD Adaptive Backlight Management (ABM) for power profiles daemon \u003e= 2.0
CVE-2024-21823 Hardware logic with insecure de-synchronization in Intel(R) DSA and Intel(R) IAA for some Intel(R) 4th or 5th generation Xeon(R) processors may allow



About   -   Send Feedback to @ubuntu_updates