lp:~kmously/ubuntu/+source/linux/+git/xenial

Author: Greg Kroah-Hartman
Author Date: 2020-08-21 08:53:08 UTC

Linux 4.4.233

BugLink: https://bugs.launchpad.net/bugs/1892822

Tested-by: Guenter Roeck <linux@roeck-us.net>
Tested-by: Shuah Khan <skhan@linuxfoundation.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2020-03-20 08:06:35 UTC

Linux 4.4.217

BugLink: https://bugs.launchpad.net/bugs/1868629

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2020-03-11 06:51:19 UTC

Linux 4.4.216

BugLink: https://bugs.launchpad.net/bugs/1868628

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2020-02-28 14:39:19 UTC

Linux 4.4.215

BugLink: https://bugs.launchpad.net/bugs/1868627

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2020-02-14 21:30:02 UTC

Linux 4.4.214

BugLink: https://bugs.launchpad.net/bugs/1864775

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2020-02-05 13:03:47 UTC

Linux 4.4.213

BugLink: https://bugs.launchpad.net/bugs/1864774

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2020-01-29 09:21:53 UTC

Linux 4.4.212

BugLink: https://bugs.launchpad.net/bugs/1864773

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Khaled El Mously
Author Date: 2019-09-29 22:01:59 UTC

UBUNTU: [config] Enable GVE driver

BugLink: https://bugs.launchpad.net/bugs/1855992

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2019-07-10 07:56:45 UTC

Linux 4.4.185

BugLink: https://bugs.launchpad.net/bugs/1836668

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2019-06-27 00:13:33 UTC

Linux 4.4.184

BugLink: https://bugs.launchpad.net/bugs/1836667

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2019-06-22 06:18:27 UTC

Linux 4.4.183

BugLink: https://bugs.launchpad.net/bugs/1836666

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2019-06-17 17:54:23 UTC

Linux 4.4.182

BugLink: https://bugs.launchpad.net/bugs/1836665

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2019-06-11 10:24:13 UTC

Linux 4.4.181

BugLink: https://bugs.launchpad.net/bugs/1832661

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Khaled El Mously
Author Date: 2019-01-16 06:42:21 UTC

UBUNTU: [CONFIG]: remove BCH_CONST_PARAMS=y

BugLink: https://bugs.launchpad.net/bugs/1810947

This option changed due to a change in xenial-master.

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Florian Westphal
Author Date: 2019-01-10 03:32:00 UTC

netfilter: nf_conncount: don't skip eviction when age is negative

BugLink: https://bugs.launchpad.net/bugs/1811094

age is signed integer, so result can be negative when the timestamps
have a large delta. In this case we want to discard the entry.

Instead of using age >= 2 || age < 0, just make it unsigned.

Fixes: b36e4523d4d56 ("netfilter: nf_conncount: fix garbage collection confirm race")
Reviewed-by: Shawn Bohrer <sbohrer@cloudflare.com>
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
(backported from commit 4cd273bb91b3001f623f516ec726c49754571b1a)
[mfo: backport: use older file name, nf_conncount.c -> xt_connlimit.c]
Signed-off-by: Mauricio Faria de Oliveira <mfo@canonical.com>
Acked-by: Khalid Elmously <khalid.elmously@canonical.com>
Acked-by: Stefan Bader <stefan.bader@canonical.com>
Signed-off-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>

Author: Khaled El Mously
Author Date: 2018-10-25 23:28:10 UTC

UBUNTU: Start new release

Ignore: yes
Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Khaled El Mously
Author Date: 2018-08-30 14:19:56 UTC

UBUNTU: Ubuntu-gcp-4.15.0-1019.20~16.04.1

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Kleber Sacilotto de Souza
Author Date: 2018-08-30 09:44:12 UTC

UBUNTU: Ubuntu-gcp-4.15.0-1019.20~16.04.1

Signed-off-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>

Author: Khaled El Mously
Author Date: 2018-07-31 05:16:39 UTC

UBUNTU: FIXME

BugLink: https://bugs.launchpad.net/bugs/1784543

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Eric Sandeen
Author Date: 2018-07-16 04:44:49 UTC

xfs: don't call xfs_da_shrink_inode with NULL bp

CVE-2018-13094

xfs_attr3_leaf_create may have errored out before instantiating a buffer,
for example if the blkno is out of range. In that case there is no work
to do to remove it, and in fact xfs_da_shrink_inode will lead to an oops
if we try.

This also seems to fix a flaw where the original error from
xfs_attr3_leaf_create gets overwritten in the cleanup case, and it
removes a pointless assignment to bp which isn't used after this.

Bugzilla: https://bugzilla.kernel.org/show_bug.cgi?id=199969
Reported-by: Xu, Wen <wen.xu@gatech.edu>
Tested-by: Xu, Wen <wen.xu@gatech.edu>
Signed-off-by: Eric Sandeen <sandeen@redhat.com>
Reviewed-by: Darrick J. Wong <darrick.wong@oracle.com>
Signed-off-by: Darrick J. Wong <darrick.wong@oracle.com>
(cherry picked from commit bb3d48dcf86a97dc25fe9fc2c11938e19cb4399a)
Signed-off-by: Po-Hsu Lin <po-hsu.lin@canonical.com>
Acked-by: Colin Ian King <colin.king@canonical.com>
Acked-by: Aaron Ma <aaron.ma@canonical.com>
Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Greg Kroah-Hartman
Author Date: 2018-05-26 06:49:01 UTC

Linux 4.4.133

BugLink: https://bugs.launchpad.net/bugs/1775477

Signed-off-by: Stefan Bader <stefan.bader@canonical.com>
Acked-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>
Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Khaled El Mously
Author Date: 2018-04-27 05:25:30 UTC

UBUNTU: Ubuntu-snapdragon-4.4.0-1091.96

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Khaled El Mously
Author Date: 2018-04-27 02:48:45 UTC

UBUNTU: Ubuntu-aws-4.4.0-1056.65

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Khaled El Mously
Author Date: 2018-04-26 04:49:14 UTC

UBUNTU: Ubuntu-kvm-4.4.0-1022.27

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Kevin Cernekee
Author Date: 2018-02-01 10:29:26 UTC

netfilter: nfnetlink_cthelper: Add missing permission checks

The capability check in nfnetlink_rcv() verifies that the caller
has CAP_NET_ADMIN in the namespace that "owns" the netlink socket.
However, nfnl_cthelper_list is shared by all net namespaces on the
system. An unprivileged user can create user and net namespaces
in which he holds CAP_NET_ADMIN to bypass the netlink_net_capable()
check:

    $ nfct helper list
    nfct v1.4.4: netlink error: Operation not permitted
    $ vpnns -- nfct helper list
    {
            .name = ftp,
            .queuenum = 0,
            .l3protonum = 2,
            .l4protonum = 6,
            .priv_data_len = 24,
            .status = enabled,
    };

Add capable() checks in nfnetlink_cthelper, as this is cleaner than
trying to generalize the solution.

Signed-off-by: Kevin Cernekee <cernekee@chromium.org>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

CVE-2017-17448
(backported from commit 4b380c42f7d00a395feede754f0bc2292eebe6e5)
Signed-off-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>
Acked-by: Marcelo Henrique Cerri <marcelo.cerri@canonical.com>
Acked-by: Seth Forshee <seth.forshee@canonical.com>
Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

Author: Khaled El Mously
Author Date: 2017-11-13 17:27:54 UTC

UBUNTU: Ubuntu-4.4.0-101.124

Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>