Security and bugfixes, lncluding fixes for: https://bugs.mageia.org/show_bug.cgi?id=29952 (broken RTL8814AU support) https://bugs.mageia.org/show_bug.cgi?id=29957 (cifs failing to load) https://bugs.mageia.org/show_bug.cgi?id=29925 (broken plymouth scaling) SRPMS: kernel-5.15.18-1.mga8.src.rpm kmod-virtualbox-6.1.32-1.2.mga8.src.rpm kmod-xtables-addons-3.18-1.50.mga8.src.rpm i586: bpftool-5.15.18-1.mga8.i586.rpm cpupower-5.15.18-1.mga8.i586.rpm cpupower-devel-5.15.18-1.mga8.i586.rpm kernel-desktop-5.15.18-1.mga8-1-1.mga8.i586.rpm kernel-desktop586-5.15.18-1.mga8-1-1.mga8.i586.rpm kernel-desktop586-devel-5.15.18-1.mga8-1-1.mga8.i586.rpm kernel-desktop586-devel-latest-5.15.18-1.mga8.i586.rpm kernel-desktop586-latest-5.15.18-1.mga8.i586.rpm kernel-desktop-devel-5.15.18-1.mga8-1-1.mga8.i586.rpm kernel-desktop-devel-latest-5.15.18-1.mga8.i586.rpm kernel-desktop-latest-5.15.18-1.mga8.i586.rpm kernel-doc-5.15.18-1.mga8.noarch.rpm kernel-server-5.15.18-1.mga8-1-1.mga8.i586.rpm kernel-server-devel-5.15.18-1.mga8-1-1.mga8.i586.rpm kernel-server-devel-latest-5.15.18-1.mga8.i586.rpm kernel-server-latest-5.15.18-1.mga8.i586.rpm kernel-source-5.15.18-1.mga8-1-1.mga8.noarch.rpm kernel-source-latest-5.15.18-1.mga8.noarch.rpm kernel-userspace-headers-5.15.18-1.mga8.i586.rpm libbpf0-5.15.18-1.mga8.i586.rpm libbpf-devel-5.15.18-1.mga8.i586.rpm perf-5.15.18-1.mga8.i586.rpm xtables-addons-kernel-5.15.18-desktop-1.mga8-3.18-1.50.mga8.i586.rpm xtables-addons-kernel-5.15.18-desktop586-1.mga8-3.18-1.50.mga8.i586.rpm xtables-addons-kernel-5.15.18-server-1.mga8-3.18-1.50.mga8.i586.rpm xtables-addons-kernel-desktop586-latest-3.18-1.50.mga8.i586.rpm xtables-addons-kernel-desktop-latest-3.18-1.50.mga8.i586.rpm xtables-addons-kernel-server-latest-3.18-1.50.mga8.i586.rpm x86_64: bpftool-5.15.18-1.mga8.x86_64.rpm cpupower-5.15.18-1.mga8.x86_64.rpm cpupower-devel-5.15.18-1.mga8.x86_64.rpm kernel-desktop-5.15.18-1.mga8-1-1.mga8.x86_64.rpm kernel-desktop-devel-5.15.18-1.mga8-1-1.mga8.x86_64.rpm kernel-desktop-devel-latest-5.15.18-1.mga8.x86_64.rpm kernel-desktop-latest-5.15.18-1.mga8.x86_64.rpm kernel-doc-5.15.18-1.mga8.noarch.rpm kernel-server-5.15.18-1.mga8-1-1.mga8.x86_64.rpm kernel-server-devel-5.15.18-1.mga8-1-1.mga8.x86_64.rpm kernel-server-devel-latest-5.15.18-1.mga8.x86_64.rpm kernel-server-latest-5.15.18-1.mga8.x86_64.rpm kernel-source-5.15.18-1.mga8-1-1.mga8.noarch.rpm kernel-source-latest-5.15.18-1.mga8.noarch.rpm kernel-userspace-headers-5.15.18-1.mga8.x86_64.rpm lib64bpf0-5.15.18-1.mga8.x86_64.rpm lib64bpf-devel-5.15.18-1.mga8.x86_64.rpm perf-5.15.18-1.mga8.x86_64.rpm virtualbox-kernel-5.15.18-desktop-1.mga8-6.1.32-1.2.mga8.x86_64.rpm virtualbox-kernel-5.15.18-server-1.mga8-6.1.32-1.2.mga8.x86_64.rpm virtualbox-kernel-desktop-latest-6.1.32-1.2.mga8.x86_64.rpm virtualbox-kernel-server-latest-6.1.32-1.2.mga8.x86_64.rpm xtables-addons-kernel-5.15.18-desktop-1.mga8-3.18-1.50.mga8.x86_64.rpm xtables-addons-kernel-5.15.18-server-1.mga8-3.18-1.50.mga8.x86_64.rpm xtables-addons-kernel-desktop-latest-3.18-1.50.mga8.x86_64.rpm xtables-addons-kernel-server-latest-3.18-1.50.mga8.x86_64.rpm
Blocks: (none) => 29925, 29952, 29957
Server kernel running on Quad Core Intel Core i7 with nvidia GeForce GTX 970. Mate desktop using NFS shares and NAS. Video and bluetooth audio working fine together. No issues with other common desktop applications. Virtualbox launched a 32-bit client - bluetooth audio working there also.
CC: (none) => tarazed25
Switched seamlessly to the desktop kernel on the system referred to in comment 1. Virtualbox working for 64-bit and 32-bit guests. Installed virtualbox guest additions. LibreOffice writer working, CUPS wifi printing.
OK here mga8-64, i7, nvidia-current Installed: - cpupower-5.15.18-1.mga8.x86_64 - kernel-desktop-5.15.18-1.mga8-1-1.mga8.x86_64 - kernel-desktop-devel-5.15.18-1.mga8-1-1.mga8.x86_64 - kernel-desktop-devel-latest-5.15.18-1.mga8.x86_64 - kernel-desktop-latest-5.15.18-1.mga8.x86_64 - kernel-userspace-headers-5.15.18-1.mga8.x86_64 - lib64bpf0-5.15.18-1.mga8.x86_64 - virtualbox-kernel-5.15.18-desktop-1.mga8-6.1.32-1.2.mga8.x86_64 - virtualbox-kernel-desktop-latest-6.1.32-1.2.mga8.x86_64 Rebooted, $ uname -a Linux svarten.tribun 5.15.18-desktop-1.mga8 #1 SMP Sat Jan 29 12:26:53 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux $ dkms status showing OK BOINC detects CUDA and OpenCL Hardware: My workstation "svarten": Mainboard: Sabertooth P67, CPU: i7-3770, RAM 16G, GM107 [GeForce GTX 750] using nvidia-current; GeForce 635 series and later, 4k display. Disk&Filesystem: SSD with /boot/EFI and ext4 /boot, LUKS{LVM {swap, ext4 /home & / } and a spinner at /mnt/spinner Tested: Plasma desktop; using Thunderbird, LibreOffice, Ktorrent, Nextcloud client, Firefox ESR, flatpak Firefox, flatpak Spotify, java program FriBOK, ... Stress test: While working with other things BOINC use all cores to 100%, videos do not stutter in Chromium, nor Firefox ESR but do in flatpak version VirtualBox: Launched my usual MSW7pro-64, tests OK: bidirectional clipboard, shared folders write protected and not, USB2 memory stick read&write (using upstream extension pack), drag file from Dolphin to Windows Explorer, Windows update (antivirus def), video playing in Firefox and Chrome while CPU is heavily loaded.
CC: (none) => fri
Desktop kernel running on 10-Core Intel Core i9 with GTX 1080 Ti. 31GB RAM. Mate. Installed mga8 on virtualbox 64-bit client. That booted OK. Video and audio and bluetooth all good.
putting on hold, aother CVE fix need to be added
Keywords: (none) => feedback
CC: (none) => andrewsfarm
New set: SRPMS: kernel-5.15.18-2.mga8.src.rpm kmod-virtualbox-6.1.32-1.4.mga8.src.rpm kmod-xtables-addons-3.18-1.52.mga8.src.rpm i586: bpftool-5.15.18-2.mga8.i586.rpm cpupower-5.15.18-2.mga8.i586.rpm cpupower-devel-5.15.18-2.mga8.i586.rpm kernel-desktop-5.15.18-2.mga8-1-1.mga8.i586.rpm kernel-desktop586-5.15.18-2.mga8-1-1.mga8.i586.rpm kernel-desktop586-devel-5.15.18-2.mga8-1-1.mga8.i586.rpm kernel-desktop586-devel-latest-5.15.18-2.mga8.i586.rpm kernel-desktop586-latest-5.15.18-2.mga8.i586.rpm kernel-desktop-devel-5.15.18-2.mga8-1-1.mga8.i586.rpm kernel-desktop-devel-latest-5.15.18-2.mga8.i586.rpm kernel-desktop-latest-5.15.18-2.mga8.i586.rpm kernel-doc-5.15.18-2.mga8.noarch.rpm kernel-server-5.15.18-2.mga8-1-1.mga8.i586.rpm kernel-server-devel-5.15.18-2.mga8-1-1.mga8.i586.rpm kernel-server-devel-latest-5.15.18-2.mga8.i586.rpm kernel-server-latest-5.15.18-2.mga8.i586.rpm kernel-source-5.15.18-2.mga8-1-1.mga8.noarch.rpm kernel-source-latest-5.15.18-2.mga8.noarch.rpm kernel-userspace-headers-5.15.18-2.mga8.i586.rpm libbpf0-5.15.18-2.mga8.i586.rpm libbpf-devel-5.15.18-2.mga8.i586.rpm perf-5.15.18-2.mga8.i586.rpm xtables-addons-kernel-5.15.18-desktop-2.mga8-3.18-1.52.mga8.i586.rpm xtables-addons-kernel-5.15.18-desktop586-2.mga8-3.18-1.52.mga8.i586.rpm xtables-addons-kernel-5.15.18-server-2.mga8-3.18-1.52.mga8.i586.rpm xtables-addons-kernel-desktop586-latest-3.18-1.52.mga8.i586.rpm xtables-addons-kernel-desktop-latest-3.18-1.52.mga8.i586.rpm xtables-addons-kernel-server-latest-3.18-1.52.mga8.i586.rpm x86_64: bpftool-5.15.18-2.mga8.x86_64.rpm cpupower-5.15.18-2.mga8.x86_64.rpm cpupower-devel-5.15.18-2.mga8.x86_64.rpm kernel-desktop-5.15.18-2.mga8-1-1.mga8.x86_64.rpm kernel-desktop-devel-5.15.18-2.mga8-1-1.mga8.x86_64.rpm kernel-desktop-devel-latest-5.15.18-2.mga8.x86_64.rpm kernel-desktop-latest-5.15.18-2.mga8.x86_64.rpm kernel-doc-5.15.18-2.mga8.noarch.rpm kernel-server-5.15.18-2.mga8-1-1.mga8.x86_64.rpm kernel-server-devel-5.15.18-2.mga8-1-1.mga8.x86_64.rpm kernel-server-devel-latest-5.15.18-2.mga8.x86_64.rpm kernel-server-latest-5.15.18-2.mga8.x86_64.rpm kernel-source-5.15.18-2.mga8-1-1.mga8.noarch.rpm kernel-source-latest-5.15.18-2.mga8.noarch.rpm kernel-userspace-headers-5.15.18-2.mga8.x86_64.rpm lib64bpf0-5.15.18-2.mga8.x86_64.rpm lib64bpf-devel-5.15.18-2.mga8.x86_64.rpm perf-5.15.18-2.mga8.x86_64.rpm virtualbox-kernel-5.15.18-desktop-2.mga8-6.1.32-1.4.mga8.x86_64.rpm virtualbox-kernel-5.15.18-server-2.mga8-6.1.32-1.4.mga8.x86_64.rpm virtualbox-kernel-desktop-latest-6.1.32-1.4.mga8.x86_64.rpm virtualbox-kernel-server-latest-6.1.32-1.4.mga8.x86_64.rpm xtables-addons-kernel-5.15.18-desktop-2.mga8-3.18-1.52.mga8.x86_64.rpm xtables-addons-kernel-5.15.18-server-2.mga8-3.18-1.52.mga8.x86_64.rpm xtables-addons-kernel-desktop-latest-3.18-1.52.mga8.x86_64.rpm xtables-addons-kernel-server-latest-3.18-1.52.mga8.x86_64.rpm
Summary: Update request: kernel-5.15.18-1.mg8 => Update request: kernel-5.15.18-2.mg8Keywords: feedback => (none)
Blocks: 29952 => (none)
x86_64 No regression on Acer Aspire7 and Dell Dimension M6300. Suspend works, but hibernation fail in various ways on these and my other laptops. Are we giving up on hibernation? I am.
x86_64 all OK same tests as my comment 3
Desktop kernel running on 10-Core Intel Core i9 with GTX 1080 Ti. 5.15.18-desktop-2.mga8 No problems encountered.
MGA8-64, Gnome, Asus Laptop AMD A6-9225 RADEON R4 RTL8723BE Bluetooth The following 6 packages are going to be installed: - cpupower-5.15.18-2.mga8.x86_64 - glibc-2.32-24.mga8.x86_64 - glibc-devel-2.32-24.mga8.x86_64 - kernel-desktop-5.15.18-2.mga8-1-1.mga8.x86_64 - kernel-desktop-latest-5.15.18-2.mga8.x86_64 - kernel-userspace-headers-5.15.18-2.mga8.x86_64 ---- $ uname -a Linux localhost.localdomain 5.15.18-desktop-2.mga8 #1 SMP Sun Jan 30 12:55:11 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux - suspend is working - bluetooth/wifi work - libreoffice working - firefox working - chromium working works for me.
CC: (none) => brtians1
Advisory, added to svn: type: security subject: Updated kernel packages fix security vulnerabilities CVE: - CVE-2022-0330 - CVE-2022-22942 - CVE-2022-24122 src: 8: core: - kernel-5.15.18-2.mga8 - kmod-virtualbox-6.1.32-1.4.mga8 - kmod-xtables-addons-3.18-1.52.mga8 description: | This kernel update is based on upstream 5.15.18 and fixes atleast the following security issues: A random memory access flaw was found in the Linux kernels GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU. This flaw allows a local user to crash the system or escalate their privileges on the system (CVE-2022-0330). A use-after-free flaw was found in the Linux kernels vmw_execbuf_copy_fence_user function in drivers/gpu/drm/vmwgfx/ vmwgfx_execbuf.c in vmwgfx. This flaw allows a local attacker with user privileges to cause a privilege escalation problem (CVE-2022-22942). kernel/ucount.c in the Linux kernel 5.14 through 5.16.4, when unprivileged user namespaces are enabled, allows a use-after-free and privilege escalation because a ucounts object can outlive its namespace (CVE-2022-24122). Other fixes in this update: - fix broken RTL8814AU support (mga#29952) - fix cifs failing to load on server kernels (mga#29957) - fix broken plymouth scaling (mga#29925) - bpf: Guard against accessing NULL pt_regs in bpf_get_task_stack() - fs/exec: require argv[0] presence in do_execveat_common() For other upstream fixes, see the referenced changelogs. references: - https://bugs.mageia.org/show_bug.cgi?id=29960 - https://bugs.mageia.org/show_bug.cgi?id=29952 - https://bugs.mageia.org/show_bug.cgi?id=29957 - https://bugs.mageia.org/show_bug.cgi?id=29925 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.17 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.18
Blocks: (none) => 29952Keywords: (none) => advisory
MGA8-32 Xfce on a Dell Inspiron 5100, P4, Radeon RV200 graphics. No installation issues, and everything looks OK after the reboot.
*** Bug 29978 has been marked as a duplicate of this bug. ***
CC: (none) => 79625490833
Updated server and desktop kernels on Intel Core i7, nvidia GTX970. Booted to desktop kernel. No issues. Removed some stale kernels and rebooted to the server kernel, which has been running for a while without any hiccups.
6-Core Intel Core i7-10710U Intel Comet Lake UHD Graphics driver: i915 OpenGL: renderer: Mesa Intel UHD Graphics (CML GT2) Installed both server and desktop kernels. Surprised to see the nvidia driver being built in both cases. Smooth reboot to the desktop version. Made bluetooth connection to portable speaker OK. Mate desktop functioning as expected; LO writer, youtube on Firefox, gthumb and eom for images, vlc for videos. glmark2 ran fine with Mesa. NAS drive accessible. Switching to server kernel. No report unless there is a problem.
MGA8-64, AMD x3-450, Nvidia 730gt (Nvidia 390) The following 6 packages are going to be installed: - cpupower-5.15.18-2.mga8.x86_64 - kernel-desktop-5.15.18-2.mga8-1-1.mga8.x86_64 - kernel-desktop-devel-5.15.18-2.mga8-1-1.mga8.x86_64 - kernel-desktop-devel-latest-5.15.18-2.mga8.x86_64 - kernel-desktop-latest-5.15.18-2.mga8.x86_64 - kernel-userspace-headers-5.15.18-2.mga8.x86_64 126MB of additional disk space will be used. ----- # lsmod | grep nvidi nvidia_uvm 933888 0 nvidia_drm 53248 1 drm_kms_helper 307200 1 nvidia_drm nvidia_modeset 1060864 12 nvidia_drm nvidia 15888384 468 nvidia_uvm,nvidia_modeset ipmi_msghandler 69632 2 ipmi_devintf,nvidia drm 626688 4 drm_kms_helper,nvidia_drm - libreoffice - browser - network working as designed.
MGA8-64 Plasma on a Probook 6550b, i3, Intel graphics, Intel wifi. No installation issues. After reboot, tried this and that, seemed OK. One exception: I did not check hibernation, as this laptop is subject to Bug 22804, and potentially triggering that bug once more is a risk I'm not willing to take.
Thanks for the tests, flushing out
CC: (none) => sysadmin-bugsWhiteboard: (none) => MGA8-64-OK, MGA8-32-OKKeywords: (none) => validated_update
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0041.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED