mga6::x86_64

Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
NVIDIA Corporation GF114 [GeForce GTX 555] 

Enabled updates testing and non free updates testing then installed these:

- cpupower-4.9.56-1.mga6.x86_64
- kernel-desktop-4.9.56-1.mga6-1-1.mga6.x86_64
- kernel-desktop-devel-4.9.56-1.mga6-1-1.mga6.x86_64
- kernel-desktop-devel-latest-4.9.56-1.mga6.x86_64
- kernel-desktop-latest-4.9.56-1.mga6.x86_64
- kernel-doc-4.9.56-1.mga6.noarch
- kernel-userspace-headers-4.9.56-1.mga6.x86_64
- ldetect-lst-0.3.7.2-1.mga6.x86_64
- ldetect-lst-devel-0.3.7.2-1.mga6.x86_64
- virtualbox-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.x86_64
- virtualbox-kernel-desktop-latest-5.1.26-6.mga6.x86_64

Also rans:
- perf
- kernel-source-4.9.56-1.mga6
- kernel-source-latest
- xtables-addons-kernel-4.9.56
- xtables-addons-kernel-desktop

nvidia module 384.59-1 built during the installation and virtualbox 5.1.26-1.

Rebooted to Mate desktop.
$ uname -r
4.9.56-desktop-1.mga6

$ stress -c 4 -t 30
$ stress -m 5 -t 30
$ stress -d 3 -t 30
$ stress -i 4 -t 30
$ glmark2

Common desktop applications running fine.  Network shares working.
Remote access to other machines on the LAN is OK.
vlc, pulseaudio, mplayer, gqview, urpmi, gwenview, LO, firefox, thunderbird,
mcc, harddrake2, virtualbox, emacs - all working fine.

CC: (none) => tarazed25

In a Vbox client, M6, Plasma, 64bit

Testing: kernel-desktop-latest vboxadditions-kernel-desktop-latest

[root@localhost wilcal]# uname -a
Linux localhost 4.9.50-desktop-1.mga6 #1 SMP Wed Sep 13 23:14:20 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-4.9.50-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-5.1.26-4.mga6.x86_64 is already installed

Boots to a working desktop. Screen resolution is correct. Common apps work.

Installed kernel-desktop-latest vboxadditions-kernel-desktop-latest from updates testing

Reboot client

[root@localhost wilcal]# uname -a
Linux localhost 4.9.56-desktop-1.mga6 #1 SMP Thu Oct 12 22:55:31 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-4.9.56-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-5.1.26-6.mga6.x86_64 is already installed

Boots to a working desktop. Screen resolution is correct. Common apps work.

CC: (none) => wilcal.int

In a Vbox client, M6, Plasma, 32bit

Testing: kernel-desktop-latest vboxadditions-kernel-desktop-latest

[root@localhost wilcal]# uname -a
Linux localhost 4.9.50-desktop-1.mga6 #1 SMP Wed Sep 13 23:15:15 UTC 2017 i686 i686 i686 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-4.9.50-1.mga6.i586 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-5.1.26-4.mga6.i586 is already installed

Boots to a working desktop. Screen resolution is correct. Common apps work.

Installed kernel-desktop-latest vboxadditions-kernel-desktop-latest from updates testing

Reboot client

[root@localhost wilcal]# uname -a
Linux localhost 4.9.56-desktop-1.mga6 #1 SMP Thu Oct 12 22:53:48 UTC 2017 i686 i686 i686 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-4.9.56-1.mga6.i586 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-5.1.26-6.mga6.i586 is already installed

Boots to a working desktop. Screen resolution is correct. Common apps work.

Hi.

System: MGA6 x86_64

Have installed this kernel on 2 systems, one laptop (kernel-desktop) and one workstation (kernel-server).

The laptop (Alienware M17 R2) is my HTPC and is running great.

The workstation has 16GB ram, AMD Phenom II x4 965, Radeon GPU.
I focus on having vmware running and this kernel proved to work without any issues. The modules compiled without errors and the VM's are running great.

Cheers,
Stig

CC: (none) => smelror

(In reply to Stig-Ørjan Smelror from comment #4)
> Hi.
> 
...
> The workstation has 16GB ram, AMD Phenom II x4 965, Radeon GPU.
> I focus on having vmware running and this kernel proved to work without any
> issues. The modules compiled without errors and the VM's are running great.
> 
> Cheers,
> Stig

Same here with KVM/Qemu. Both host and client run kernel-desktop, amd64. Radeon GPU (driver:Radeon) and driver Virtio.

Ulrich

CC: (none) => bequimao.de

mga6::x86_64

Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
NVIDIA Corporation GM204 [GeForce GTX 970] 
NVIDIA Driver Version: 375.66
Mobo: MSI model: Z97-G43 (MS-7816)
UEFI: American Megatrends v: V17.8

Ran the updates:
- cpupower-4.9.56-1.mga6.x86_64
- cpupower-devel-4.9.56-1.mga6.x86_64
- kernel-desktop-4.9.56-1.mga6-1-1.mga6.x86_64
- kernel-desktop-devel-4.9.56-1.mga6-1-1.mga6.x86_64
- kernel-desktop-devel-latest-4.9.56-1.mga6.x86_64
- kernel-desktop-latest-4.9.56-1.mga6.x86_64
- kernel-doc-4.9.56-1.mga6.noarch
- kernel-source-4.9.56-1.mga6-1-1.mga6.noarch
- kernel-source-latest-4.9.56-1.mga6.noarch
- kernel-userspace-headers-4.9.56-1.mga6.x86_64
- perf-4.9.56-1.mga6.x86_64
- virtualbox-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.x86_64
- virtualbox-kernel-desktop-latest-5.1.26-6.mga6.x86_64
- xtables-addons-kernel-4.9.56-desktop-1.mga6-2.12-46.mga6.x86_64
- xtables-addons-kernel-desktop-latest-2.12-46.mga6.x86_64

$ sudo drakboot --boot

Rebooted to Mate desktop.  Checked common desktop applications, networking, network shares, local ruby applications and updates including nvidia current.

Rebooted again
$ uname -r
4.9.56-desktop-1.mga6

nvidia driver 384.59
Installed stellarium and invoked it from the menus.  Worked fine, sun centre stage.
Ran stress tests and glmark2.  glmark2 was very slow - about a quarter of the speed registered on a neighbouring machine with weaker resources (mga5 with 4.4.92 and a pirate copy of glmark2).

kernel-desktop on mga6-64

packages installed cleanly:

- cpupower-4.9.56-1.mga6.x86_64
- kernel-desktop-4.9.56-1.mga6-1-1.mga6.x86_64
- kernel-desktop-latest-4.9.56-1.mga6.x86_64
- kernel-userspace-headers-4.9.56-1.mga6.x86_64
- virtualbox-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.x86_64
- virtualbox-kernel-desktop-latest-5.1.26-6.mga6.x86_64

system re-booted normally:

$ uname -r
4.9.56-desktop-1.mga6

no regressions noted

virtualbox and client launched normally

OK for mga6-64 on this system

Dell product: Precision Tower 3620
Mobo: Dell model: 09WH54 
Card: Intel HD Graphics 530
CPU: Quad core Intel Core i7-6700 (-HT-MCP-)
PC-BIOS (legacy) boot
GPT partitions

CC: (none) => jim

kernel-desktop on mga6-32 in a vbox VM

packages installed cleanly:

- cpupower-4.9.56-1.mga6.i586
- kernel-desktop-4.9.56-1.mga6-1-1.mga6.i586
- kernel-desktop-latest-4.9.56-1.mga6.i586
- kernel-userspace-headers-4.9.56-1.mga6.i586
- vboxadditions-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.i586
- vboxadditions-kernel-desktop-latest-5.1.26-6.mga6.i586

VM re-booted normally
[jim@mga6-32-vm ~]$ uname -r
4.9.56-desktop-1.mga6

no regressions noted

OK for mga6-32 in a vbox VM

On real hardware, M6, Plasma, 64-bit

initial install:
kernel-desktop-latest
virtualbox vboxadditions-kernel-desktop-latest dkms-virtualbox
virtualbox-guest-additions virtualbox-kernel-desktop-latest x11-driver-video-vboxvideo
kernel-desktop-devel-latest dkms-nvidia-current

[root@localhost wilcal]# uname -a
Linux localhost 4.9.50-desktop-1.mga6 #1 SMP Wed Sep 13 23:14:20 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-4.9.50-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi virtualbox
Package virtualbox-5.1.26-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-5.1.26-4.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi dkms-virtualbox
Package dkms-virtualbox-5.1.26-1.mga6.noarch is already installed
[root@localhost wilcal]# urpmi virtualbox-guest-additions
Package virtualbox-guest-additions-5.1.26-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi virtualbox-kernel-desktop-latest
Package virtualbox-kernel-desktop-latest-5.1.26-4.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi x11-driver-video-vboxvideo
Package x11-driver-video-vboxvideo-5.1.26-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi kernel-desktop-devel-latest
Package kernel-desktop-devel-latest-4.9.50-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi x11-driver-video-vboxvideo
Package x11-driver-video-vboxvideo-5.1.26-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi kernel-desktop-devel-latest
Package kernel-desktop-devel-latest-4.9.50-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi dkms-nvidia-current
[wilcal@localhost ~]$ lspci -k
01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1)
        Subsystem: Gigabyte Technology Co., Ltd Device 3518
        Kernel driver in use: nvidia
        Kernel modules: nvidiafb, nouveau, nvidia_drm, nvidia_current

M5.1 i586 Gnome Live-DVD runs as a Vbox client.
Boots to a working desktop. Common apps work.
Screen sizes are correct.

update:
kernel-desktop-latest
virtualbox vboxadditions-kernel-desktop-latest dkms-virtualbox
virtualbox-guest-additions virtualbox-kernel-desktop-latest x11-driver-video-vboxvideo
kernel-desktop-devel-latest dkms-nvidia-current
from updates_testing

[root@localhost wilcal]# uname -a
Linux localhost 4.9.56-desktop-1.mga6 #1 SMP Thu Oct 12 22:55:31 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-4.9.56-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi virtualbox
Package virtualbox-5.1.26-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-5.1.26-6.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi dkms-virtualbox
Package dkms-virtualbox-5.1.26-1.mga6.noarch is already installed
[root@localhost wilcal]# urpmi virtualbox-guest-additions
Package virtualbox-guest-additions-5.1.26-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi virtualbox-kernel-desktop-latest
Package virtualbox-kernel-desktop-latest-5.1.26-6.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi x11-driver-video-vboxvideo
Package x11-driver-video-vboxvideo-5.1.26-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi kernel-desktop-devel-latest
Package kernel-desktop-devel-latest-4.9.56-1.mga6.x86_64 is already installed
[root@localhost wilcal]# urpmi dkms-nvidia-current
Package dkms-nvidia-current-384.90-2.mga6.nonfree.x86_64 is already installed
[wilcal@localhost ~]$ lspci -k
01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1)
        Subsystem: Gigabyte Technology Co., Ltd Device 3518
        Kernel driver in use: nvidia
        Kernel modules: nvidiafb, nouveau, nvidia_drm, nvidia_current

M5.1 i586 Gnome LiveDVD still runs as a Vbox client.

M6 x86_64 Plasma Live-DVD Boots as a Vbox client.
Common apps work. Screen sizes are correct.

M6 x86_64 Plasma CI installs and runs as a Vbox client.
Updates then reboots back to a working desktop.
Screen sizes are correct.

Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
Looks good

mga6::x86_64

4.9.51-desktop-1.mga6
Intel(R) Core(TM) i7-5700HQ CPU @ 2.70GHz
NVIDIA Corporation GM204M [GeForce GTX 965M] 
nvidia 384.59
Mobo: GIGABYTE model: X5

Updates:
- cpupower-4.9.56-1.mga6.x86_64
- cpupower-devel-4.9.56-1.mga6.x86_64
- kernel-desktop-4.9.56-1.mga6-1-1.mga6.x86_64
- kernel-desktop-devel-4.9.56-1.mga6-1-1.mga6.x86_64
- kernel-desktop-devel-latest-4.9.56-1.mga6.x86_64
- kernel-desktop-latest-4.9.56-1.mga6.x86_64
- kernel-doc-4.9.56-1.mga6.noarch
- kernel-source-4.9.56-1.mga6-1-1.mga6.noarch
- kernel-source-latest-4.9.56-1.mga6.noarch
- kernel-userspace-headers-4.9.56-1.mga6.x86_64
- perf-4.9.56-1.mga6.x86_64
- virtualbox-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.x86_64
- virtualbox-kernel-desktop-latest-5.1.26-6.mga6.x86_64
- xtables-addons-kernel-4.9.56-desktop-1.mga6-2.12-46.mga6.x86_64
- xtables-addons-kernel-desktop-latest-2.12-46.mga6.x86_64

$ drakboot --boot
Rebooted into Mate.
$ uname -r
4.9.56-desktop-1.mga6
Ran stress tests and glmark2.  Common desktop applications work.
Desktop shares are mounted.  Home networking is fine.  Installed blueman and enabled bluetooth sound.  used mplayer.  Installed sox and played wav files.

(In reply to Thomas Backlund from comment #0)
> Advisory will follow...
OK.
In the meantime, I am validating this to get it off the main list. Thanks to the various testers.

Keywords: (none) => validated_update
CC: (none) => lewyssmith, sysadmin-bugs

Advisory (added to svn):

This kernel update is based on upstream 4.9.56 and fixes atleast the
following security issues:


A flaw was found in the way the Linux KVM module processed the trap flag(TF)
bit in EFLAGS during emulation of the syscall instruction, which leads to a
debug exception(#DB) being raised in the guest stack. A user/process inside
a guest could use this flaw to potentially escalate their privileges inside
the guest (CVE-2017-7518).

A kernel data leak due to an out-of-bound read was found in the Linux kernel
in inet_diag_msg_sctp{,l}addr_fill() and sctp_get_sctp_info() functions
present since version 4.7-rc1 through version 4.13. A data leak happens when
these functions fill in sockaddr data structures used to export socket's
diagnostic information. As a result, up to 100 bytes of the slab data could
be leaked to a userspace (CVE-2017-7558).

A security flaw was discovered in nl80211_set_rekey_data() function in the
Linux kernel since v3.1-rc1 through v4.13. This function does not check
whether the required attributes are present in a netlink request. This
request can be issued by a user with CAP_NET_ADMIN privilege and may result
in NULL dereference and a system crash (CVE-2017-12153).

Linux kernel built with the KVM visualization support (CONFIG_KVM), with
nested visualization (nVMX) feature enabled (nested=1), is vulnerable to a
crash due to disabled external interrupts. As L2 guest could acce s (r/w)
hardware CR8 register of the host(L0). In a nested visualization setup,
L2 guest user could use this flaw to potentially crash the host(L0)
resulting in DoS (CVE-2017-12154).

The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before
4.12 allows local users to cause a denial of service (__tcp_select_window
divide-by-zero error and system crash) by triggering a disconnect within a
certain tcp_recvmsg code path (CVE-2017-14106).

The atyfb_ioctl function in drivers/video/fbdev/aty/atyfb_base.c in the
Linux kernel through 4.12.10 does not initialize a certain data structure,
which allows local users to obtain sensitive information from kernel stack
memory by reading locations associated with padding bytes (CVE-2017-14156).

It was found that the iscsi_if_rx() function in scsi_transport_iscsi.c in
the Linux kernel since v2.6.24-rc1 through 4.13.2 allows local users to
cause a denial of service (a system panic) by making a number of certain
syscalls by leveraging incorrect length validation in the kernel code
(CVE-2017-14489).

The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel before 4.13.4
allows local users to obtain sensitive information from uninitialized kernel
heap-memory locations via an SG_GET_REQUEST_TABLE ioctl call for /dev/sg0
(CVE-2017-14991).

The tpacket_rcv() function in 'net/packet/af_packet.c' file in the Linux
kernel before 4.13 mishandles vnet headers, which might allow local users
to cause a denial of service (buffer overflow, and disk and memory
corruption) or possibly have unspecified other impact via crafted system
calls (CVE-2017-14497).

A reachable assertion failure flaw was found in the Linux kernel built with
KVM virtualisation(CONFIG_KVM) support with Virtual Function I/O feature
(CONFIG_VFIO) enabled. This failure could occur if a malicious guest device
sent a virtual interrupt (guest IRQ) with a larger (>1024) index value
(CVE-2017-1000252).

Keywords: (none) => advisory

An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2017-0381.html

Resolution: (none) => FIXED
Status: NEW => RESOLVED