Show patches with: Submitter = Tyler Hicks       |    State = Action Required       |    Archived = No       |   182 patches
« 1 2 »
Patch Series A/F/R/T S/W/F Date Submitter Delegate State
[2/2,T/X/B/C/D] mount: Don't allow copying MNT_UNBINDABLE|MNT_LOCKED mounts Bypass of mount visibility through userns + mount propagation (LP: #1789161) - 1 - - 0 0 0 2018-11-13 Tyler Hicks New
[1/2,T/X/B/C/D] mount: Retest MNT_LOCKED in do_umount Bypass of mount visibility through userns + mount propagation (LP: #1789161) - 1 - - 0 0 0 2018-11-13 Tyler Hicks New
[1/1,B/C/D] userns: also map extents in the reverse map to kernel IDs CVE-2018-18955 - Privilege escalation within a nested user namespace - 1 1 1 0 0 0 2018-11-13 Tyler Hicks New
[9/9] sysfs: Fix regression when adding a file to an existing group Make /sys/class/net per net namespace objects belong to container - 1 - 1 0 0 0 2018-10-31 Tyler Hicks New
[8/9] bridge: make sure objects belong to container's owner Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-10-31 Tyler Hicks New
[7/9] net: create reusable function for getting ownership info of sysfs inodes Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-10-31 Tyler Hicks New
[6/9] net-sysfs: make sure objects belong to container's owner Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-10-31 Tyler Hicks New
[5/9] net-sysfs: require net admin in the init ns for setting tx_maxrate Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-10-31 Tyler Hicks New
[4/9] driver core: set up ownership of class devices in sysfs Make /sys/class/net per net namespace objects belong to container - - 1 - 0 0 0 2018-10-31 Tyler Hicks New
[3/9] kobject: kset_create_and_add() - fetch ownership info from parent Make /sys/class/net per net namespace objects belong to container - - 1 - 0 0 0 2018-10-31 Tyler Hicks New
[2/9] sysfs, kobject: allow creating kobject belonging to arbitrary users Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-10-31 Tyler Hicks New
[1/9] kernfs: allow creating kernfs objects with arbitrary uid/gid Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-10-31 Tyler Hicks New
[2/2,X] x86/speculation: Support Enhanced IBRS on future CPUs Enhanced IBRS (LP: #1786139) - - - - 0 0 0 2018-10-19 Tyler Hicks New
[1/2,X] x86/speculation: Remove SPECTRE_V2_IBRS in enum spectre_v2_mitigation Enhanced IBRS (LP: #1786139) - - - - 0 0 0 2018-10-19 Tyler Hicks New
[2/2,B] x86/speculation: Support Enhanced IBRS on future CPUs Enhanced IBRS (LP: #1786139) - - - - 0 0 0 2018-10-19 Tyler Hicks New
[1/2,B] x86/speculation: Remove SPECTRE_V2_IBRS in enum spectre_v2_mitigation Enhanced IBRS (LP: #1786139) - - - - 0 0 0 2018-10-19 Tyler Hicks New
[2/2,C/D] x86/speculation: Support Enhanced IBRS on future CPUs Enhanced IBRS (LP: #1786139) - - - - 0 0 0 2018-10-19 Tyler Hicks New
[1/2,C/D] x86/speculation: Remove SPECTRE_V2_IBRS in enum spectre_v2_mitigation Enhanced IBRS (LP: #1786139) - - - - 0 0 0 2018-10-19 Tyler Hicks New
[3/3] mm/tlb, x86/mm: Support invalidating TLB caches for RCU_TABLE_FREE [1/3] mm: move tlb_table_flush to tlb_flush_mmu_free 1 1 - - 0 0 0 2018-10-19 Tyler Hicks New
[2/3] mm/tlb: Remove tlb_remove_table() non-concurrent condition [1/3] mm: move tlb_table_flush to tlb_flush_mmu_free 2 1 - - 0 0 0 2018-10-19 Tyler Hicks New
[1/3] mm: move tlb_table_flush to tlb_flush_mmu_free [1/3] mm: move tlb_table_flush to tlb_flush_mmu_free 1 - - - 0 0 0 2018-10-19 Tyler Hicks New
[1/1,B] UBUNTU: SAUCE: overlayfs: ensure mounter privileges when reading directories CVE-2018-6559 - Filename information disclosure in overlayfs 2 - - - 0 0 0 2018-10-19 Tyler Hicks New
[1/1,C/D] UBUNTU: SAUCE: overlayfs: ensure mounter privileges when reading directories CVE-2018-6559 - Filename information disclosure in overlayfs 2 - - - 0 0 0 2018-10-19 Tyler Hicks New
[1/1] UBUNTU: SAUCE: Revert "net: increase fragment memory usage limits" CVE-2018-5391 - Mitigation for FragmentSmack - - - - 0 0 0 2018-10-02 Tyler Hicks New
[3/3] scsi: sg: recheck MMAP_IO request length with lock held CVE-2017-0794 - Privilege escalation in the SCSI driver 1 - - - 0 0 0 2018-09-28 Tyler Hicks New
[2/3] scsi: sg: reset 'res_in_use' after unlinking reserved array CVE-2017-0794 - Privilege escalation in the SCSI driver - 1 2 - 0 0 0 2018-09-28 Tyler Hicks New
[1/3] scsi: sg: protect accesses to 'reserved' page array CVE-2017-0794 - Privilege escalation in the SCSI driver - - 2 1 0 0 0 2018-09-28 Tyler Hicks New
[v2,1/1] UBUNTU: SAUCE: tcp: Correct the backport of the CVE-2018-5390 fix CVE-2018-5390 - Fix incorrect patch backport 1 1 - - 0 0 0 2018-09-14 Tyler Hicks New
[4/4] ALSA: seq: More protection for concurrent write and ioctl races CVE-2018-7566, CVE-2018-1000004: Multiple issues in ALSA - 1 - - 0 0 0 2018-09-14 Tyler Hicks New
[3/4] ALSA: seq: Don't allow resizing pool in use CVE-2018-7566, CVE-2018-1000004: Multiple issues in ALSA - 1 - - 0 0 0 2018-09-14 Tyler Hicks New
[2/4] ALSA: seq: Fix racy pool initializations CVE-2018-7566, CVE-2018-1000004: Multiple issues in ALSA - - - - 0 0 0 2018-09-14 Tyler Hicks New
[1/4] ALSA: seq: Make ioctls race-free CVE-2018-7566, CVE-2018-1000004: Multiple issues in ALSA - - 2 - 0 0 0 2018-09-14 Tyler Hicks New
[1/1] NFC: llcp: Limit size of SDP URI CVE-2018-9518 - Buffer overflow in NFC - 1 - - 0 0 0 2018-09-14 Tyler Hicks New
[1/1] ocfs2: subsystem.su_mutex is required while accessing the item->ci_parent CVE-2017-18216 - DoS in ocfs2 2 - 2 - 0 0 0 2018-09-14 Tyler Hicks New
[2/2] KEYS: don't let add_key() update an uninstantiated key CVE-2015-8539, CVE-2017-15299 - Multiple issues in the kernel keyring - - - - 0 0 0 2018-09-14 Tyler Hicks New
[1/2] KEYS: Fix handling of stored error in a negatively instantiated user key CVE-2015-8539, CVE-2017-15299 - Multiple issues in the kernel keyring 1 - - - 0 0 0 2018-09-14 Tyler Hicks New
[3/3] scsi: sg: recheck MMAP_IO request length with lock held CVE-2016-9576 - Arbitrary kernel memory reads/writes in the SCSI driver 1 - - - 0 0 0 2018-09-14 Tyler Hicks New
[2/3] scsi: sg: reset 'res_in_use' after unlinking reserved array CVE-2016-9576 - Arbitrary kernel memory reads/writes in the SCSI driver - 1 2 - 0 0 0 2018-09-14 Tyler Hicks New
[1/3] scsi: sg: protect accesses to 'reserved' page array CVE-2016-9576 - Arbitrary kernel memory reads/writes in the SCSI driver - - 2 1 0 0 0 2018-09-14 Tyler Hicks New
[4/4] xc2028: Fix use-after-free bug properly CVE-2016-7913 - Use-after-free in XCeive xc2028 tuner driver - 1 - - 0 0 0 2018-09-14 Tyler Hicks New
[3/4,media] xc2028: unlock on error in xc2028_set_config() CVE-2016-7913 - Use-after-free in XCeive xc2028 tuner driver - 1 - - 0 0 0 2018-09-14 Tyler Hicks New
[2/4,media] xc2028: avoid use after free CVE-2016-7913 - Use-after-free in XCeive xc2028 tuner driver - - - - 0 0 0 2018-09-14 Tyler Hicks New
[1/4,media] tuner-xc2028: Don't try to sleep twice CVE-2016-7913 - Use-after-free in XCeive xc2028 tuner driver - - - - 0 0 0 2018-09-14 Tyler Hicks New
[1/1] UBUNTU: SAUCE: tcp: Correct the backport of the CVE-2018-5390 fix CVE-2018-5390 - Fix incorrect patch backport - 1 - - 0 0 0 2018-09-14 Tyler Hicks New
[3/3] Revert "bpf: prevent speculative execution in eBPF interpreter" Use upstream Spectre variant 1 BPF mitigations - - - - 0 0 0 2018-09-11 Tyler Hicks New
[2/3] Revert "UBUNTU: SAUCE: bpf: Use barrier_nospec() instead of osb()" Use upstream Spectre variant 1 BPF mitigations - - - - 0 0 0 2018-09-11 Tyler Hicks New
[1/3] bpf: properly enforce index mask to prevent out-of-bounds speculation Use upstream Spectre variant 1 BPF mitigations 1 1 - - 0 0 0 2018-09-11 Tyler Hicks New
[3/3] x86/speculation/l1tf: Increase l1tf memory limit for Nehalem+ Fixes for LP:1788563 - 1 - - 0 0 0 2018-09-10 Tyler Hicks New
[2/3] x86/speculation/l1tf: Fix off-by-one error when warning that system has too much RAM Fixes for LP:1788563 - 1 - - 0 0 0 2018-09-10 Tyler Hicks New
[1/3] x86/speculation/l1tf: Fix overflow in l1tf_pfn_limit() on 32bit Fixes for LP:1788563 2 2 - - 0 0 0 2018-09-10 Tyler Hicks New
[3/3] x86/speculation/l1tf: Increase l1tf memory limit for Nehalem+ Fixes for LP:1788563 - 1 - - 0 0 0 2018-09-10 Tyler Hicks New
[2/3] x86/speculation/l1tf: Fix off-by-one error when warning that system has too much RAM Fixes for LP:1788563 - 1 - - 0 0 0 2018-09-10 Tyler Hicks New
[1/3] x86/speculation/l1tf: Fix overflow in l1tf_pfn_limit() on 32bit Fixes for LP:1788563 2 2 - - 0 0 0 2018-09-10 Tyler Hicks New
[2/2] UBUNTU: SAUCE: irda: Only insert new objects into the global database via setsockopt irda fixes for CVE-2018-6554 and CVE-2018-6555 1 1 2 - 0 0 0 2018-09-04 Tyler Hicks New
[1/2] UBUNTU: SAUCE: irda: Fix memory leak caused by repeated binds of irda socket irda fixes for CVE-2018-6554 and CVE-2018-6555 1 1 2 - 0 0 0 2018-09-04 Tyler Hicks New
[2/2] UBUNTU: SAUCE: irda: Only insert new objects into the global database via setsockopt irda fixes for CVE-2018-6554 and CVE-2018-6555 1 1 2 - 0 0 0 2018-09-04 Tyler Hicks New
[1/2] UBUNTU: SAUCE: irda: Fix memory leak caused by repeated binds of irda socket irda fixes for CVE-2018-6554 and CVE-2018-6555 1 1 2 - 0 0 0 2018-09-04 Tyler Hicks New
[2/2] x86/speculation: Protect against userspace-userspace spectreRSB CVE-2017-5715 - SpectreRSB sub-variant of Spectre v2 1 - 1 - 0 0 0 2018-08-29 Tyler Hicks New
[1/2] x86/retpoline: Fill RSB on context switch for affected CPUs CVE-2017-5715 - SpectreRSB sub-variant of Spectre v2 1 - - - 0 0 0 2018-08-29 Tyler Hicks New
[1/1] x86/speculation: Protect against userspace-userspace spectreRSB CVE-2017-5715 - SpectreRSB sub-variant of Spectre v2 3 - 1 - 0 0 0 2018-08-29 Tyler Hicks New
[1/1] x86/speculation: Protect against userspace-userspace spectreRSB CVE-2017-5715 - SpectreRSB sub-variant of Spectre v2 3 - 1 - 0 0 0 2018-08-29 Tyler Hicks New
[Unstable] UBUNTU: [Config] Disable the Speck cipher [Unstable] UBUNTU: [Config] Disable the Speck cipher 1 - - - 0 0 0 2018-08-21 Tyler Hicks New
[Cosmic] UBUNTU: [Config] Disable the Speck cipher [Cosmic] UBUNTU: [Config] Disable the Speck cipher 1 - - - 0 0 0 2018-08-21 Tyler Hicks New
[Unstable] UBUNTU: [Config] Disable the Speck cipher [Unstable] UBUNTU: [Config] Disable the Speck cipher - - - - 0 0 0 2018-08-21 Tyler Hicks New
[1/1] x86/topology: Handle CPUID bogosity gracefully Fix boot regression in EC2 m3 instances - - - - 0 0 0 2018-08-16 Tyler Hicks New
posix-timer: Properly check sigevent->sigev_notify posix-timer: Properly check sigevent->sigev_notify 1 - - - 0 0 0 2018-08-03 Tyler Hicks New
[9/9] sysfs: Fix regression when adding a file to an existing group Make /sys/class/net per net namespace objects belong to container - 1 - 1 0 0 0 2018-07-30 Tyler Hicks New
[8/9] bridge: make sure objects belong to container's owner Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-07-30 Tyler Hicks New
[7/9] net: create reusable function for getting ownership info of sysfs inodes Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-07-30 Tyler Hicks New
[6/9] net-sysfs: make sure objects belong to container's owner Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-07-30 Tyler Hicks New
[5/9] net-sysfs: require net admin in the init ns for setting tx_maxrate Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-07-30 Tyler Hicks New
[4/9] driver core: set up ownership of class devices in sysfs Make /sys/class/net per net namespace objects belong to container - - 1 - 0 0 0 2018-07-30 Tyler Hicks New
[3/9] kobject: kset_create_and_add() - fetch ownership info from parent Make /sys/class/net per net namespace objects belong to container - - 1 - 0 0 0 2018-07-30 Tyler Hicks New
[2/9] sysfs, kobject: allow creating kobject belonging to arbitrary users Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-07-30 Tyler Hicks New
[1/9] kernfs: allow creating kernfs objects with arbitrary uid/gid Make /sys/class/net per net namespace objects belong to container - - - - 0 0 0 2018-07-30 Tyler Hicks New
[SRU,T/X/A/B/C] Fix up non-directory creation in SGID directories [SRU,T/X/A/B/C] Fix up non-directory creation in SGID directories 1 - - - 0 0 0 2018-07-16 Tyler Hicks New
[SRU,T,1/1] KVM: x86: fix singlestepping over syscall CVE-2017-7518 - Incorrect debug exception emulation 1 - - - 0 0 0 2018-07-09 Tyler Hicks New
kvm: nVMX: Enforce cpl=0 for VMX instructions kvm: nVMX: Enforce cpl=0 for VMX instructions 2 1 - - 0 0 0 2018-06-28 Tyler Hicks New
[SRU,T] x86/microcode/AMD: Add support for fam17h microcode loading [SRU,T] x86/microcode/AMD: Add support for fam17h microcode loading 2 - 1 - 0 0 0 2018-05-30 Tyler Hicks New
[SRU,X] UBUNTU: SAUCE: seccomp: Remove double newline sequence in /proc/PID/status [SRU,X] UBUNTU: SAUCE: seccomp: Remove double newline sequence in /proc/PID/status 2 - - - 0 0 0 2018-05-24 Tyler Hicks New
[BIONIC,PULL] Additional spectre and meltdown patches for ppc64el [BIONIC,PULL] Additional spectre and meltdown patches for ppc64el 1 - - - 0 0 0 2018-04-06 Tyler Hicks New
[2/2] x86/speculation: Use Indirect Branch Prediction Barrier in context switch Fix deadlock on task switches with new microcode - - - - 0 0 0 2018-04-05 Tyler Hicks New
[1/2] Revert "UBUNTU: SAUCE: x86/mm: Only set IBPB when the new thread cannot ptrace current thread" Fix deadlock on task switches with new microcode - - - - 0 0 0 2018-04-05 Tyler Hicks New
[2/2] x86/speculation: Use Indirect Branch Prediction Barrier in context switch Fix deadlock on task switches with new microcode - - - - 0 0 0 2018-04-05 Tyler Hicks New
[1/2] Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current thread" Fix deadlock on task switches with new microcode - - - - 0 0 0 2018-04-05 Tyler Hicks New
[3/3] x86/mm: Reinitialize TLB state on hotplug and resume Fix deadlock on task switches with new microcode - 1 - - 0 0 0 2018-04-05 Tyler Hicks New
[2/3] x86/speculation: Use Indirect Branch Prediction Barrier in context switch Fix deadlock on task switches with new microcode - - - - 0 0 0 2018-04-05 Tyler Hicks New
[1/3] Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current thread" Fix deadlock on task switches with new microcode - - - - 0 0 0 2018-04-05 Tyler Hicks New
[SRU,ZESTY,8/8] seccomp: Action to log before allowing [SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" - - - - 0 0 0 2017-10-06 Tyler Hicks New
[SRU,ZESTY,7/8] seccomp: Filter flag to log all actions except SECCOMP_RET_ALLOW [SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" - - - - 0 0 0 2017-10-06 Tyler Hicks New
[SRU,ZESTY,6/8] seccomp: Selftest for detection of filter flag support [SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" - - - - 0 0 0 2017-10-06 Tyler Hicks New
[SRU,ZESTY,5/8] seccomp: Sysctl to configure actions that are allowed to be logged [SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" - - - - 0 0 0 2017-10-06 Tyler Hicks New
[SRU,ZESTY,4/8] seccomp: Operation for checking if an action is available [SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" - - - - 0 0 0 2017-10-06 Tyler Hicks New
[SRU,ZESTY,3/8] seccomp: Sysctl to display available actions [SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" - - - - 0 0 0 2017-10-06 Tyler Hicks New
[SRU,ZESTY,2/8] seccomp: Provide matching filter for introspection [SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" - - 1 - 0 0 0 2017-10-06 Tyler Hicks New
[SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" [SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" 1 - - - 0 0 0 2017-10-06 Tyler Hicks New
[SRU,XENIAL,7/7] seccomp: Action to log before allowing Untitled series #6747 - - - - 0 0 0 2017-10-06 Tyler Hicks New
[SRU,XENIAL,6/7] seccomp: Filter flag to log all actions except SECCOMP_RET_ALLOW Untitled series #6747 - - - - 0 0 0 2017-10-06 Tyler Hicks New
[SRU,XENIAL,5/7] seccomp: Selftest for detection of filter flag support Untitled series #6747 - - - - 0 0 0 2017-10-06 Tyler Hicks New
[SRU,XENIAL,4/7] seccomp: Sysctl to configure actions that are allowed to be logged Untitled series #6747 - - - - 0 0 0 2017-10-06 Tyler Hicks New
« 1 2 »