UbuntuUpdates.org

Package "linux-lts-utopic"

Name: linux-lts-utopic

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Linux kernel version specific cloud tools for version 3.16.0-62
  • Linux kernel version specific cloud tools for version 3.16.0-62
  • Linux kernel version specific cloud tools for version 3.16.0-67
  • Linux kernel version specific cloud tools for version 3.16.0-67

Latest version: 3.16.0-77.99~14.04.1
Release: trusty (14.04)
Level: updates
Repository: main

Links



Other versions of "linux-lts-utopic" in Trusty

Repository Area Version
security main 3.16.0-77.99~14.04.1
PPA: Canonical Kernel Team 3.16.0-76.98~14.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 3.16.0-77.99~14.04.1 2016-07-14 19:07:02 UTC

  linux-lts-utopic (3.16.0-77.99~14.04.1) trusty; urgency=low

  [ Kamal Mostafa ]

  * Release Tracking Bug
    - LP: #1597047

  [ Josh Boyer ]

  * SAUCE: UEFI: acpi: Ignore acpi_rsdp kernel parameter when module
    loading is restricted
    - LP: #1566221
  * SAUCE: UEFI: efi: Make EFI_SECURE_BOOT_SIG_ENFORCE depend on EFI
    - LP: #1566221
  * SAUCE: UEFI MODSIGN: Import certificates from UEFI Secure Boot
    - LP: #1571691
  * SAUCE: UEFI: efi: Disable secure boot if shim is in insecure mode
    - LP: #1571691

  [ Matthew Garrett ]

  * SAUCE: UEFI: Add secure_modules() call
    - LP: #1566221
  * SAUCE: UEFI: PCI: Lock down BAR access when module security is enabled
    - LP: #1566221
  * SAUCE: UEFI: x86: Lock down IO port access when module security is
    enabled
    - LP: #1566221
  * SAUCE: UEFI: ACPI: Limit access to custom_method
    - LP: #1566221
  * SAUCE: UEFI: asus-wmi: Restrict debugfs interface when module loading
    is restricted
    - LP: #1566221
  * SAUCE: UEFI: Restrict /dev/mem and /dev/kmem when module loading is
    restricted
    - LP: #1566221
  * SAUCE: UEFI: kexec: Disable at runtime if the kernel enforces module
    loading restrictions
    - LP: #1566221
  * SAUCE: UEFI: x86: Restrict MSR access when module loading is restricted
    - LP: #1566221
  * SAUCE: UEFI: Add option to automatically enforce module signatures when
    in Secure Boot mode
    - LP: #1566221

  [ Stefan Bader ]

  * [Config] Add pm80xx scsi driver to d-i
    - LP: #1595628

  [ Tim Gardner ]

  * [Config] CONFIG_EFI_SECURE_BOOT_SIG_ENFORCE=y
  * SAUCE: UEFI: Display MOKSBState when disabled
    - LP: #1571691
  * SAUCE: UEFI: Add secure boot and MOK SB State disabled sysctl
    - LP: #1593075

  [ Upstream Kernel Changes ]

  * HID: core: prevent out-of-bound readings
    - LP: #1579190
  * mm: migrate dirty page without clear_page_dirty_for_io etc
    - LP: #1581865
    - CVE-2016-3070
  * virtio_balloon: return the amount of freed memory from leak_balloon()
    - LP: #1587087
  * virtio_balloon: free some memory from balloon on OOM
    - LP: #1587087

 -- Kamal Mostafa <email address hidden> Tue, 28 Jun 2016 11:43:10 -0700

Source diff to previous version
1566221 linux: Enforce signed module loading when UEFI secure boot
1571691 linux: MokSBState is ignored
1595628 scsi-modules udeb should include pm80xx
1593075 linux: Implement secure boot state variables
1579190 Key 5 automatically pressed on some Logitech wireless keyboards
1587087 OOM in guest Ubuntu with inflated balloon
CVE-2016-3070 Null pointer dereference in trace_writeback_dirty_page()

Version: 3.16.0-76.98~14.04.1 2016-06-27 21:06:42 UTC

  linux-lts-utopic (3.16.0-76.98~14.04.1) trusty; urgency=low

  [ Luis Henriques ]

  * Release Tracking Bug
    - LP: #1596019

  [ Upstream Kernel Changes ]

  * netfilter: x_tables: validate e->target_offset early
    - LP: #1555338
    - CVE-2016-3134
  * netfilter: x_tables: make sure e->next_offset covers remaining blob
    size
    - LP: #1555338
    - CVE-2016-3134
  * netfilter: x_tables: fix unconditional helper
    - LP: #1555338
    - CVE-2016-3134
  * netfilter: x_tables: don't move to non-existent next rule
    - LP: #1595350
  * netfilter: x_tables: validate targets of jumps
    - LP: #1595350
  * netfilter: x_tables: add and use xt_check_entry_offsets
    - LP: #1595350
  * netfilter: x_tables: kill check_entry helper
    - LP: #1595350
  * netfilter: x_tables: assert minimum target size
    - LP: #1595350
  * netfilter: x_tables: add compat version of xt_check_entry_offsets
    - LP: #1595350
  * netfilter: x_tables: check standard target size too
    - LP: #1595350
  * netfilter: x_tables: check for bogus target offset
    - LP: #1595350
  * netfilter: x_tables: validate all offsets and sizes in a rule
    - LP: #1595350
  * netfilter: x_tables: don't reject valid target size on some
    architectures
    - LP: #1595350
  * netfilter: arp_tables: simplify translate_compat_table args
    - LP: #1595350
  * netfilter: ip_tables: simplify translate_compat_table args
    - LP: #1595350
  * netfilter: ip6_tables: simplify translate_compat_table args
    - LP: #1595350
  * netfilter: x_tables: xt_compat_match_from_user doesn't need a retval
    - LP: #1595350
  * netfilter: x_tables: do compat validation via translate_table
    - LP: #1595350
  * netfilter: x_tables: introduce and use xt_copy_counters_from_user
    - LP: #1595350

Source diff to previous version
1595350 Linux netfilter local privilege escalation issues
CVE-2016-3134 The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cau

Version: 3.16.0-73.95~14.04.1 2016-06-10 01:06:49 UTC

  linux-lts-utopic (3.16.0-73.95~14.04.1) trusty; urgency=low

  [ Kamal Mostafa ]

  * CVE-2016-1583 (LP: #1588871)
    - ecryptfs: fix handling of directory opening
    - SAUCE: proc: prevent stacking filesystems on top
    - SAUCE: ecryptfs: forbid opening files without mmap handler

 -- Andy Whitcroft <email address hidden> Thu, 09 Jun 2016 08:46:24 +0100

Source diff to previous version
CVE-2016-1583 RESERVED

Version: 3.16.0-71.92~14.04.1 2016-05-16 17:07:06 UTC

  linux-lts-utopic (3.16.0-71.92~14.04.1) trusty; urgency=low

  [ Kamal Mostafa ]

  * CVE-2016-0758 (LP: #1581202)
    - SAUCE: KEYS: Fix ASN.1 indefinite length object parsing

 -- Kamal Mostafa <email address hidden> Thu, 12 May 2016 15:31:12 -0700

Source diff to previous version
CVE-2016-0758 law in ASN.1 DER decoder for x509 certificate DER files

Version: 3.16.0-71.91~14.04.1 2016-05-09 22:06:38 UTC

  linux-lts-utopic (3.16.0-71.91~14.04.1) trusty; urgency=low

  [ Kamal Mostafa ]

  * Release Tracking Bug
    - LP: #1571796

  [ Kamal Mostafa ]

  * [debian] BugLink: close LP: bugs only for Launchpad urls

  [ Upstream Kernel Changes ]

  * Revert "jffs2: Fix lock acquisition order bug in jffs2_write_begin"
    - LP: #1563345
  * iommu/vt-d: Fix 64-bit accesses to 32-bit DMAR_GSTS_REG
    - LP: #1563345
  * drm/i915/dsi: defend gpio table against out of bounds access
    - LP: #1563345
  * drm/i915/dsi: don't pass arbitrary data to sideband
    - LP: #1563345
  * powerpc: Fix dedotify for binutils >= 2.26
    - LP: #1563345
  * drm/i915: fix error path in intel_setup_gmbus()
    - LP: #1563345
  * cifs: fix erroneous return value
    - LP: #1563345
  * s390/dasd: prevent incorrect length error under z/VM after PAV changes
    - LP: #1563345
  * s390/dasd: fix refcount for PAV reassignment
    - LP: #1563345
  * scsi: fix soft lockup in scsi_remove_target() on module removal
    - LP: #1563345
  * ext4: fix potential integer overflow
    - LP: #1563345
  * ext4: don't read blocks from disk after extents being swapped
    - LP: #1563345
  * bio: return EINTR if copying to user space got interrupted
    - LP: #1563345
  * ALSA: seq: Drop superfluous error/debug messages after malloc failures
    - LP: #1563345
  * ALSA: seq: Fix leak of pool buffer at concurrent writes
    - LP: #1563345
  * dmaengine: dw: disable BLOCK IRQs for non-cyclic xfer
    - LP: #1563345
  * tracepoints: Do not trace when cpu is offline
    - LP: #1563345
  * tracing: Fix freak link error caused by branch tracer
    - LP: #1563345
  * ALSA: seq: Fix double port list deletion
    - LP: #1563345
  * drm/radeon: use post-decrement in error handling
    - LP: #1563345
  * drm/qxl: use kmalloc_array to alloc reloc_info in
    qxl_process_single_command
    - LP: #1563345
  * ext4: fix bh->b_state corruption
    - LP: #1563345
  * ext4: fix crashes in dioread_nolock mode
    - LP: #1563345
  * kernel/resource.c: fix muxed resource handling in __request_region()
    - LP: #1563345
  * x86/entry/compat: Add missing CLAC to entry_INT80_32
    - LP: #1563345
  * crypto: {blk,giv}cipher: Set has_setkey
    - LP: #1563345
  * nfs: fix nfs_size_to_loff_t
    - LP: #1563345
  * xen/pciback: Check PF instead of VF for PCI_COMMAND_MEMORY
    - LP: #1563345
  * xen/pciback: Save the number of MSI-X entries to be copied later.
    - LP: #1563345
  * xen/pcifront: Fix mysterious crashes when NUMA locality information was
    extracted.
    - LP: #1563345
  * usb: dwc3: Fix assignment of EP transfer resources
    - LP: #1563345
  * NFSv4: Fix a dentry leak on alias use
    - LP: #1563345
  * USB: option: add support for SIM7100E
    - LP: #1563345
  * USB: cp210x: add IDs for GE B650V3 and B850V3 boards
    - LP: #1563345
  * USB: option: add "4G LTE usb-modem U901"
    - LP: #1563345
  * hwmon: (ads1015) Handle negative conversion values correctly
    - LP: #1563345
  * drivers: android: correct the size of struct binder_uintptr_t for
    BC_DEAD_BINDER_DONE
    - LP: #1563345
  * can: ems_usb: Fix possible tx overflow
    - LP: #1563345
  * sunrpc/cache: fix off-by-one in qword_get()
    - LP: #1563345
  * KVM: async_pf: do not warn on page allocation failures
    - LP: #1563345
  * tracing: Fix showing function event in available_events
    - LP: #1563345
  * libceph: don't bail early from try_read() when skipping a message
    - LP: #1563345
  * ALSA: hda - Fixing background noise on Dell Inspiron 3162
    - LP: #1549620, #1563345
  * KVM: x86: MMU: fix ubsan index-out-of-range warning
    - LP: #1563345
  * ALSA: hda - Fix headset support and noise on HP EliteBook 755 G2
    - LP: #1563345
  * hpfs: don't truncate the file when delete fails
    - LP: #1563345
  * do_last(): don't let a bogus return value from ->open() et.al. to
    confuse us
    - LP: #1563345
  * ARM: dts: kirkwood: use unique machine name for ds112
    - LP: #1563345
  * bonding: Fix ARP monitor validation
    - LP: #1563345
  * af_unix: Don't set err in unix_stream_read_generic unless there was an
    error
    - LP: #1563345
  * af_unix: Guard against other == sk in unix_dgram_sendmsg
    - LP: #1563345
  * net: phy: bcm7xxx: Fix shadow mode 2 disabling
    - LP: #1563345
  * net/mlx4_en: Count HW buffer overrun only once
    - LP: #1563345
  * net/mlx4_en: Choose time-stamping shift value according to HW frequency
    - LP: #1563345
  * net/mlx4_en: Avoid changing dev->features directly in run-time
    - LP: #1563345
  * unix_diag: fix incorrect sign extension in unix_lookup_by_ino
    - LP: #1563345
  * af_iucv: Validate socket address length in iucv_sock_bind()
    - LP: #1563345
  * net: dp83640: Fix tx timestamp overflow handling.
    - LP: #1563345
  * tcp: fix NULL deref in tcp_v4_send_ack()
    - LP: #1563345
  * ipv6/udp: use sticky pktinfo egress ifindex on connect()
    - LP: #1563345
  * net/ipv6: add sysctl option accept_ra_min_hop_limit
    - LP: #1563345
  * net:Add sysctl_max_skb_frags
    - LP: #1563345
  * tg3: Fix for tg3 transmit queue 0 timed out when too many gso_segs
    - LP: #1563345
  * ipv4: fix memory leaks in ip_cmsg_send() callers
    - LP: #1563345
  * qmi_wwan: add "4G LTE usb-modem U901"
    - LP: #1563345
  * pppoe: fix reference counting in PPPoE proxy
    - LP: #1563345
  * route: check and remove route cache when we get route
    - LP: #1563345
  * rtnl: RTM_GETNETCONF: fix wrong return value
    - LP: #1563345
  * sctp: Fix port hash table size computation
    - LP: #1563345
  * target: Fix LUN_RESET active TMR descriptor handling
    - LP: #1563345
  * target: Fix LUN_RESET active I/O handling for ACK_KREF
    - LP: #1563345
  * target: Fix TAS handling for multi-session se_node_acls
    - LP: #1563345
  * target: Fix remote-port TMR ABORT + se_cmd fabric stop
    - LP: #1563345
  * target: Fix race with SCF_SEND_DELAYED_TAS handling
    - LP: #1563345
  * libata: fix HDIO_GET_32BIT ioctl
    - LP: #15

1563345 Trusty update to 3.16.7-ckt26 stable release
1549620 Background Noise on Dell Inspiron 3162.
1564950 Kernel panic when using CEPHFS (Hammer) /w kernel vivid-lts on Ubuntu 14.04
1570872 Trusty update to 3.16.7-ckt27 stable release



About   -   Send Feedback to @ubuntu_updates