Bug 28781

Mga 7 rpms:

SRPMS:
kernel-linus-5.10.30-1.mga7.src.rpm


i586:
kernel-linus-5.10.30-1.mga7-1-1.mga7.i586.rpm
kernel-linus-devel-5.10.30-1.mga7-1-1.mga7.i586.rpm
kernel-linus-devel-latest-5.10.30-1.mga7.i586.rpm
kernel-linus-doc-5.10.30-1.mga7.noarch.rpm
kernel-linus-latest-5.10.30-1.mga7.i586.rpm
kernel-linus-source-5.10.30-1.mga7-1-1.mga7.noarch.rpm
kernel-linus-source-latest-5.10.30-1.mga7.noarch.rpm


x86_64:
kernel-linus-5.10.30-1.mga7-1-1.mga7.x86_64.rpm
kernel-linus-devel-5.10.30-1.mga7-1-1.mga7.x86_64.rpm
kernel-linus-devel-latest-5.10.30-1.mga7.x86_64.rpm
kernel-linus-doc-5.10.30-1.mga7.noarch.rpm
kernel-linus-latest-5.10.30-1.mga7.x86_64.rpm
kernel-linus-source-5.10.30-1.mga7-1-1.mga7.noarch.rpm
kernel-linus-source-latest-5.10.30-1.mga7.noarch.rpm

Summary: Update request: kernel-linus-5.10.30-1.mga8 => Update request: kernel-linus-5.10.30-1.mga8/7
Whiteboard: (none) => MGA7TOO

No problems updating from desktop kernel and rebooting with the nvidia driver.
Ran `drakboot --boot` before rebooting.

Kernel: 5.10.30-1.mga8 x86_64
Mobo: MSI model: Z97-G43 (MS-7816)
Quad Core Intel Core i7-4790 [MT MCP]
NVIDIA GM204 [GeForce GTX 970] driver: nvidia 460.67
Display: x11 server: Mageia X.org 1.20.10 driver: nvidia,v4l 
  resolution: 3840x2160~30H
Realtek RTL8111/8168/8411 PCI Express Gigabit Ethernet, driver: r8169

Ran stress tests, glmark2, teapot.  Mate, video, audio, NFS shares, common desktop applications all work.  Installed virtualbox + dkms-virtualbox and ran virtualbox client.

CC: (none) => tarazed25

MGA 8 - 64 bit, nvidia 390 Desktop (Mate)


- cpupower-5.10.30-1.mga8.x86_64
- kernel-desktop-5.10.30-1.mga8-1-1.mga8.x86_64
- kernel-desktop-devel-5.10.30-1.mga8-1-1.mga8.x86_64
- kernel-desktop-devel-latest-5.10.30-1.mga8.x86_64
- kernel-desktop-latest-5.10.30-1.mga8.x86_64


I've been living with this for a day now.  Seems to be working as designed.  Even sleep/suspend worked correctly.

$ uname -a
Linux localhost.localdomain 5.10.30-desktop-1.mga8 #1 SMP Wed Apr 14 09:10:47 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux

CC: (none) => brtians1

Advisory, added to svn

type: security
subject: Updated kernel-linus packages fix security vulnerabilities
CVE:
 - CVE-2020-25670
 - CVE-2020-25671
 - CVE-2020-25672
 - CVE-2021-3483
 - CVE-2021-29154
 - CVE-2021-29657
src:
  8:
   core:
     - kernel-linus-5.10.30-1.mga8
  7:
   core:
     - kernel-linus-5.10.30-1.mga7
description: |
  This kernel-linus update is based on upstream 5.10.30 and fixes atleast
  the following security issues:

  nfc: fix refcount leak in llcp_sock_bind() (CVE-2020-25670)

  nfc: fix refcount leak in llcp_sock_connect() (CVE-2020-25671)

  nfc: fix memory leak in llcp_sock_connect() (CVE-2020-25672)

  firewire: nosy: Fix a use-after-free bug in nosy_ioctl() (CVE-2021-3483)

  BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect
  computation of branch displacements, allowing them to execute arbitrary
  code within the kernel context (CVE-2021-29154).

  KVM: SVM: load control fields from VMCB12 before checking them
  (CVE-2021-29657).

  For other upstream fixes, see the referenced changelogs.
references:
 - https://bugs.mageia.org/show_bug.cgi?id=28781
 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.28
 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.29
 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.30

Keywords: (none) => advisory

Flushing out as more fixes are coming...

Keywords: (none) => validated_update
Whiteboard: MGA7TOO => MGA7TOO, MGA7-64-OK, MGA8-64-OK
CC: (none) => sysadmin-bugs

Installed and tested without issues.


System: Mageia 7, x86_64, Plasma DE, LXQt DE, Intel CPU, nVidia Geforce GT 1030 using nvidia-current proprietary driver.


Tested for two days of workstation usage and more specific testing.
Tested: 
- boot, reboot and poweroff.
- Wireguard VPN.
- OpenGL, OpenCL, CUDA, glmark2, vdpau video GPU decouding.
- QEMU/KVM guests: Windows 7, Windows 10, various GNU/Linux including Mageia 7/8/cauldron.
- proprietary programs like skypeforlinux, teamviewer, chrome, steam, steam games.


$ uname -a
Linux marte 5.10.30-desktop-1.mga7 #1 SMP Wed Apr 14 22:52:45 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux
$ /sbin/dkms status | grep 5.10.30
nvidia-current, 460.67-1.mga7.nonfree, 5.10.30-desktop-1.mga7, x86_64: installed 
$ rpm -qa | egrep '(nvidia|kernel.*5\.10\.24|dkms)' | sort
dkms-2.0.19-40.mga7
dkms-minimal-2.0.19-40.mga7
dkms-nvidia-current-460.67-1.mga7.nonfree
nvidia-current-cuda-opencl-460.67-1.mga7.nonfree
nvidia-current-doc-html-460.67-1.mga7.nonfree
nvidia-current-utils-460.67-1.mga7.nonfree
x11-driver-video-nvidia-current-460.67-1.mga7.nonfree
$ lspcidrake
ehci_pci        : Intel Corporation|NM10/ICH7 Family USB2 EHCI Controller [SERIAL_USB] (rev: 01)
Card:NVIDIA GeForce 635 series and later: NVIDIA Corporation|GP108 [GeForce GT 1030] [DISPLAY_VGA] (rev: a1)
uhci_hcd        : Intel Corporation|NM10/ICH7 Family USB UHCI Controller #1 [SERIAL_USB] (rev: 01)
uhci_hcd        : Intel Corporation|NM10/ICH7 Family USB UHCI Controller #3 [SERIAL_USB] (rev: 01)
ata_piix        : Intel Corporation|82801G (ICH7 Family) IDE Controller [STORAGE_IDE] (rev: 01)
unknown         : Intel Corporation|NM10/ICH7 Family PCI Express Port 2 [BRIDGE_PCI] (rev: 01)
unknown         : Intel Corporation|4 Series Chipset DRAM Controller [BRIDGE_HOST] (rev: 03)
i2c_i801        : Intel Corporation|NM10/ICH7 Family SMBus Controller [SERIAL_SMBUS] (rev: 01)
unknown         : Intel Corporation|82801 PCI Bridge [BRIDGE_PCI] (rev: e1)
snd_hda_intel   : Intel Corporation|NM10/ICH7 Family High Definition Audio Controller [MULTIMEDIA_AUDIO_DEV] (rev: 01)
r8169           : Realtek Semiconductor Co., Ltd.|RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller [NETWORK_ETHERNET] (rev: 11)
snd_hda_intel   : NVIDIA Corporation|GP108 High Definition Audio Controller [MULTIMEDIA_AUDIO_DEV] (rev: a1)
uhci_hcd        : Intel Corporation|NM10/ICH7 Family USB UHCI Controller #2 [SERIAL_USB] (rev: 01)
unknown         : Intel Corporation|4 Series Chipset PCI Express Root Port [BRIDGE_PCI] (rev: 03)
intel_rng       : Intel Corporation|82801GB/GR (ICH7 Family) LPC Interface Bridge [BRIDGE_ISA] (rev: 01)
uhci_hcd        : Intel Corporation|NM10/ICH7 Family USB UHCI Controller #4 [SERIAL_USB] (rev: 01)
unknown         : Intel Corporation|NM10/ICH7 Family PCI Express Port 1 [BRIDGE_PCI] (rev: 01)
ata_piix        : Intel Corporation|NM10/ICH7 Family SATA Controller [IDE mode] [STORAGE_IDE] (rev: 01)
hub             : Linux 5.10.30-desktop-1.mga7 ehci_hcd|EHCI Host Controller [Hub|Unused|Full speed (or root) hub]
hub             : Genesys Logic, Inc.|USB2.0 Hub [Hub|Unused|Full speed (or root) hub]
usbhid          : USB|USB Keyboard [Human Interface Device|Boot Interface Subclass|Keyboard]
usbhid          : Sunplus Technology Co., Ltd|USB Laser Wheel Mouse [Human Interface Device|Boot Interface Subclass|Mouse]
uvcvideo        : GENERAL|GENERAL WEBCAM [Video|Video Control]
usb_storage     : Generic|Mass Storage Device [Mass Storage|SCSI|Bulk-Only]
hub             : Linux 5.10.30-desktop-1.mga7 uhci_hcd|UHCI Host Controller [Hub|Unused|Full speed (or root) hub]
Mouse:evdev     : Logitech|USB Receiver [Human Interface Device|Boot Interface Subclass|Keyboard]
hub             : Linux 5.10.30-desktop-1.mga7 uhci_hcd|UHCI Host Controller [Hub|Unused|Full speed (or root) hub]
hub             : Linux 5.10.30-desktop-1.mga7 uhci_hcd|UHCI Host Controller [Hub|Unused|Full speed (or root) hub]
hub             : Linux 5.10.30-desktop-1.mga7 uhci_hcd|UHCI Host Controller [Hub|Unused|Full speed (or root) hub]
hid_generic     : USB USB Keyboard
hid_generic     : Logitech USB Receiver
hid_generic     : Logitech Wireless Keyboard PID:0055
hid_generic     : USB Laser Wheel Mouse
hid_generic     : USB USB Keyboard
hid_generic     : Logitech USB Receiver
hid_generic     : Logitech Wireless Mouse PID:003f

An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2021-0191.html

Resolution: (none) => FIXED
Status: NEW => RESOLVED