Security and bugfixes, advisory will follow... SRPMS: kernel-5.15.46-1.mga8.src.rpm kmod-virtualbox-6.1.34-1.14.mga8.src.rpm kmod-xtables-addons-3.20-1.12.mga8.src.rpm i586: bpftool-5.15.46-1.mga8.i586.rpm cpupower-5.15.46-1.mga8.i586.rpm cpupower-devel-5.15.46-1.mga8.i586.rpm kernel-desktop-5.15.46-1.mga8-1-1.mga8.i586.rpm kernel-desktop586-5.15.46-1.mga8-1-1.mga8.i586.rpm kernel-desktop586-devel-5.15.46-1.mga8-1-1.mga8.i586.rpm kernel-desktop586-devel-latest-5.15.46-1.mga8.i586.rpm kernel-desktop586-latest-5.15.46-1.mga8.i586.rpm kernel-desktop-devel-5.15.46-1.mga8-1-1.mga8.i586.rpm kernel-desktop-devel-latest-5.15.46-1.mga8.i586.rpm kernel-desktop-latest-5.15.46-1.mga8.i586.rpm kernel-doc-5.15.46-1.mga8.noarch.rpm kernel-server-5.15.46-1.mga8-1-1.mga8.i586.rpm kernel-server-devel-5.15.46-1.mga8-1-1.mga8.i586.rpm kernel-server-devel-latest-5.15.46-1.mga8.i586.rpm kernel-server-latest-5.15.46-1.mga8.i586.rpm kernel-source-5.15.46-1.mga8-1-1.mga8.noarch.rpm kernel-source-latest-5.15.46-1.mga8.noarch.rpm kernel-userspace-headers-5.15.46-1.mga8.i586.rpm libbpf0-5.15.46-1.mga8.i586.rpm libbpf-devel-5.15.46-1.mga8.i586.rpm perf-5.15.46-1.mga8.i586.rpm xtables-addons-kernel-5.15.46-desktop-1.mga8-3.20-1.12.mga8.i586.rpm xtables-addons-kernel-5.15.46-desktop586-1.mga8-3.20-1.12.mga8.i586.rpm xtables-addons-kernel-5.15.46-server-1.mga8-3.20-1.12.mga8.i586.rpm xtables-addons-kernel-desktop586-latest-3.20-1.12.mga8.i586.rpm xtables-addons-kernel-desktop-latest-3.20-1.12.mga8.i586.rpm xtables-addons-kernel-server-latest-3.20-1.12.mga8.i586.rpm x86_64: bpftool-5.15.46-1.mga8.x86_64.rpm cpupower-5.15.46-1.mga8.x86_64.rpm cpupower-devel-5.15.46-1.mga8.x86_64.rpm kernel-desktop-5.15.46-1.mga8-1-1.mga8.x86_64.rpm kernel-desktop-devel-5.15.46-1.mga8-1-1.mga8.x86_64.rpm kernel-desktop-devel-latest-5.15.46-1.mga8.x86_64.rpm kernel-desktop-latest-5.15.46-1.mga8.x86_64.rpm kernel-doc-5.15.46-1.mga8.noarch.rpm kernel-server-5.15.46-1.mga8-1-1.mga8.x86_64.rpm kernel-server-devel-5.15.46-1.mga8-1-1.mga8.x86_64.rpm kernel-server-devel-latest-5.15.46-1.mga8.x86_64.rpm kernel-server-latest-5.15.46-1.mga8.x86_64.rpm kernel-source-5.15.46-1.mga8-1-1.mga8.noarch.rpm kernel-source-latest-5.15.46-1.mga8.noarch.rpm kernel-userspace-headers-5.15.46-1.mga8.x86_64.rpm lib64bpf0-5.15.46-1.mga8.x86_64.rpm lib64bpf-devel-5.15.46-1.mga8.x86_64.rpm perf-5.15.46-1.mga8.x86_64.rpm virtualbox-kernel-5.15.46-desktop-1.mga8-6.1.34-1.14.mga8.x86_64.rpm virtualbox-kernel-5.15.46-server-1.mga8-6.1.34-1.14.mga8.x86_64.rpm virtualbox-kernel-desktop-latest-6.1.34-1.14.mga8.x86_64.rpm virtualbox-kernel-server-latest-6.1.34-1.14.mga8.x86_64.rpm xtables-addons-kernel-5.15.46-desktop-1.mga8-3.20-1.12.mga8.x86_64.rpm xtables-addons-kernel-5.15.46-server-1.mga8-3.20-1.12.mga8.x86_64.rpm xtables-addons-kernel-desktop-latest-3.20-1.12.mga8.x86_64.rpm xtables-addons-kernel-server-latest-3.20-1.12.mga8.x86_64.rpm
mga8-64 In short: main system OK, but it's VirtualBox guests experience problems. ==== Tests as VirtualBox Host: Extpack 6.1.34 is from upstream. Windows guest additions fetched by VB GUI, and installed earlier. Guest 1: my usual MSW7pro-64: Firefox crashes occasionally when playing video and resizing it. And after leaving the guest machine while i was starting making this report in another Plasma desktop, and switched back, Windows had rebooted, and after logging in, message: "Windows has recovered after unexpected shutdown". Pressed the dialogues button to investigate, but no result, the dialogue just vanished. The log event just say power was cut, unclean shutdown. The log events when firefox crashes (several times tried, all the same: Faulting application name: firefox.exe, version: 101.0.1.8194, time stamp: 0x62a0e752 Faulting module name: xul.dll, version: 101.0.1.8194, time stamp: 0x62a0e899 Exception code: 0xc0000005 - Something that xul.ddl do is not supported? Guest 2: BOINC LHC@home ATLAS simulation virtual machine. Trued a few workunits set to use 3CPU: they finished unusually quickly. Changed to 5CPU: and it went 7 hours and not using more than a few percent of one CPU, aborted. Next three tries finished in 20 minutes without ever using more than one CPU. No error messages. Expected run time 5 hours. I dont know much about this, just trying to help out... I cant say for sure this is a regression: I think I did see this rarely also with kernel 5.15.43, but it mostly worked OK = using the set number of CPU after some ten-twenty minutes of startup where it was mostly idle and occasionally downloaded something, then run for approximately the estimated time. ---- Main system Tested OK: Plasma desktop; using Thunderbird, LibreOffice, Ktorrent, Nextcloud client, Syncthing, Firefox ESR with video, flatpak Firefox (slow as usual), java program FriBOK, ... I keep using this kernel. ---- Hardware: My workstation "svarten": Mainboard: Sabertooth P67, CPU: i7-3770, RAM 16G, GM107 [GeForce GTX 750] using nvidia-current; GeForce 635 series and later, 4k display. Disk&Filesystem: SSD with /boot/EFI and ext4 /boot, LUKS{LVM {swap, ext4 /home & / } and a spinner at /mnt/spinner ---- I spot nothing interesting in host journal $ rpm -qa|grep 5.15.46 kernel-desktop-5.15.46-1.mga8-1-1.mga8 virtualbox-kernel-5.15.46-desktop-1.mga8-6.1.34-1.14.mga8 kernel-userspace-headers-5.15.46-1.mga8 kernel-desktop-latest-5.15.46-1.mga8 kernel-desktop-devel-latest-5.15.46-1.mga8 lib64bpf0-5.15.46-1.mga8 cpupower-5.15.46-1.mga8 kernel-desktop-devel-5.15.46-1.mga8-1-1.mga8 $ uname -a Linux svarten.tribun 5.15.46-desktop-1.mga8 #1 SMP Thu Jun 9 15:59:31 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux $ dkms status|grep 5.15.46 virtualbox, 6.1.34-1.5.mga8, 5.15.46-desktop-1.mga8, x86_64: installed nvidia-current, 470.129.06-1.mga8.nonfree, 5.15.46-desktop-1.mga8, x86_64: installed virtualbox, 6.1.34-1.5.mga8, 5.15.46-desktop-1.mga8, x86_64: installed-binary from 5.15.46-desktop-1.mga8 BOINC detects CUDA and OpenCL. I have no work to try.
CC: (none) => fri
10-Core Intel Core i9-7900X NVIDIA GP102 [GeForce GTX 1080 Ti] Intel Ethernet I219-V driver: e1000e Installed all three flavours - kernel linus ran for several hours without any problems. Tried the desktop kernel and that seems to function as well as ever including bluetooth audio. Virtualbox works to some extent but there were problems: i686 kernel in a Mageia 7 guest. Ran scheduled updates. OK Installed Guest additions from the attached image. NFS shares work and drag-and-drop work both ways. Clipboard does not work. USB device is registered with a default filter but will not connect via the Devices tab.
CC: (none) => tarazed25
Running one more into backport issue.......
CC: (none) => herman.viaene
@Herman yes stupid Bug 29830 I you now have the backport versions installed, downgrade using urpmi (while backport repo is disabled, update testing enabled) $ sudo urpmi --downgrade lib64bpf0 cpupower kernel-userspace-headers kernel-desktop-latest kernel-desktop-devel-latest virtualbox-kernel-desktop-latest (Detail: the "-latest" packages also each downgrade the versions of respective dependency, in total 9 packages got new versions by that urpmi command, and the backport kernel is still installed also (which i find weird).)
MGA8-64 Plasma on Lenovo B50 in Dutch I installed the update using urmpi (what a nuisance...) and rebooted. No obvious problems noted.
Kernel: 5.15.46-server-1.mga8 x86_64 Quad Core Intel Core i7-4790 NVIDIA GM204 [GeForce GTX 970] Realtek RTL8111/8168/8411 PCI Express Gigabit Ethernet driver: r8169 Installed the three kernels and tried out the server version. Immediate connection to bluetooth audio on demand. Quick look at virtualbox: mga8 i686 client launched with NAS and NFS shares set up. No guestbox additions installed so no usb connection. Drag and drop works both ways. Same machine, Kernel: 5.15.46-desktop-1.mga8 Mate desktop running fine. Graphics, sound, video, NFS shares and NAS, firefox, LO writer all working. No regressions apparent.
Kernel: 5.15.46-server-1.mga8 x86_64 Desktop System: XDO.AI product: Pantera Pico PC Quad Core Intel Celeron J4125 Intel GeminiLake [UHD Graphics 600] driver: i915 Intel Gemini Lake PCH CNVi WiFi driver: iwlwifi $ glmark2 -b refract GL_VENDOR: Intel GL_RENDERER: Mesa Intel(R) UHD Graphics 600 (GLK 2) GL_VERSION: 4.6 (Compatibility Profile) Mesa 21.3.8 ======================================================= [refract] <default>: FPS: 206 FrameTime: 4.854 ms ======================================================= glmark2 Score: 206 Bluetooth audio working - immediate connection to portable speaker. Desktop applications working: sound and video, ristretto, eom, gwenview, LO writer.... Not enough resources for virtualbox. Installed docker, started the service and added user to docker group. $ docker run hello-world Worked fine.
Kernel: 5.15.46-desktop-1.mga8 x86_64 Intel model: NUC10i7FNB v: K61360-302 6-Core Intel Core i7-10710U Intel Comet Lake UHD Graphics driver: i915 Intel Ethernet I219-V driver: e1000e Realtek RTL8153 Gigabit Ethernet Adapter type: USB driver: r8152 (Intel Comet Lake PCH-LP CNVi WiFi driver: iwlwifi) Server and desktop kernels installed. Still serving NFS shares folders. Bluetooth audio connects on demand. vlc video OK. Other desktop applications working as expected.
Advisory, added to svn: subject: Updated kernel packages fix security vulnerabilities CVE: - CVE-2022-1852 - CVE-2022-1966 - CVE-2022-1972 - CVE-2022-1973 src: 8: core: - kernel-5.15.46-1.mga8 - kmod-virtualbox-6.1.34-1.14.mga8 - kmod-xtables-addons-3.20-1.12.mga8 description: | This kernel update is based on upstream 5.15.46 and fixes at least the following security issues: KVM: x86: avoid calling x86 emulator without a decoded instruction (CVE-2022-1852). A use-after-free vulnerability was found in the Linux kernel's Netfilter subsystem in net/netfilter/nf_tables_api.c. This flaw allows a local attacker with user access to cause a privilege escalation issue (CVE-2022-1966). An out-of-bound write vulnerability was identified within the netfilter subsystem which can be exploited to achieve privilege escalation to root. In order to trigger the issue it requires the ability to create user/net namespaces (CVE-2022-1972). fs/ntfs3: Fix invalid free in log_replay (CVE-2022-1973). Other fixes in this update: - x86/amd_nb: Add AMD Family 17h A0-AF IDs - x86/amd_nb: Add Family 19h model 70h-7Fh IDs - x86/amd_nb: Add Family 19h model 60h-6Fh IDs - hwmon: (k10temp): Add support for family 17h models A0h-AFh - hwmon: (k10temp): Add support for family 19h models 70h-7Fh - hwmon: (k10temp): Add support for family 19h models 60h-6Fh For other upstream fixes, see the referenced changelogs. references: - https://bugs.mageia.org/show_bug.cgi?id=30536 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.44 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.45 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.46
Keywords: (none) => advisoryPriority: Normal => HighSeverity: normal => major
The virtualbox kernel: How we install 6.1.34-1.14, but dkms then report 6.1.34-1.5 ? ( 1.14 versus 1.5 ) $ rpm -qa | grep virtualbox-kernel-5.15.46 virtualbox-kernel-5.15.46-desktop-1.mga8-6.1.34-1.14.mga8 $ dkms status | grep 5.15.46 | grep virtualbox virtualbox, 6.1.34-1.5.mga8, 5.15.46-desktop-1.mga8, x86_64: installed virtualbox, 6.1.34-1.5.mga8, 5.15.46-desktop-1.mga8, x86_64: installed-binary from 5.15.46-desktop-1.mga8 --- Tried uninstalling and then reinstalling virtualbox-kernel-5.15.46-desktop-1.mga8-6.1.34-1.14.mga8: $ LC_ALL=C sudo urpmi virtualbox-kernel-5.15.46-desktop-1.mga8-6.1.34-1.14.mga8 -snip- https://ftp.acc.umu.se/mirror/mageia/distrib/8/x86_64/media/core/updates_testing/virtualbox-kernel-5.15.46-desktop-1.mga8-6.1.34-1.14.mga8.x86_64.rpm -snip- DKMS: install Completed. virtualbox, 6.1.34-1.5.mga8, 5.15.46-desktop-1.mga8, x86_64: installed virtualbox, 6.1.34-1.5.mga8, 5.17.9-desktop-1.mga8, x86_64: built virtualbox, 6.1.34-1.5.mga8, 5.15.43-desktop-1.mga8, x86_64: installed-binary from 5.15.43-desktop-1.mga8 virtualbox, 6.1.34-1.5.mga8, 5.15.46-desktop-1.mga8, x86_64: installed-binary from 5.15.46-desktop-1.mga8
Whiteboard: (none) => MGA8-64-OK, MGA8-32-OKCC: (none) => sysadmin-bugsKeywords: (none) => validated_update
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0229.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED
On M8 hardware in a Vbox client, M8, Xfce, 32-bit clear uname -a urpmi kernel-desktop-latest urpmi kernel-userspace-headers urpmi cpupower urpmi virtualbox-guest-additions Linux localhost 5.15.43-desktop586-1.mga8 #1 SMP Wed May 25 20:10:04 UTC 2022 i686 i686 i386 GNU/Linux Package kernel-desktop-latest-5.15.43-1.mga8.i586 is already installed Package kernel-userspace-headers-5.15.43-1.mga8.i586 is already installed Package cpupower-5.15.43-1.mga8.i586 is already installed Package virtualbox-guest-additions-6.1.34-1.5.mga8.i586 is already installed Boots to a working desktop. Screen resolution is correct. Common apps work. install updates from from update_testing: clear uname -a urpmi --auto kernel-desktop-latest urpmi --auto kernel-userspace-headers urpmi --auto cpupower urpmi --auto virtualbox-guest-additions Reboot system. Linux localhost 5.15.46-desktop-1.mga8 #1 SMP Thu Jun 9 16:39:19 UTC 2022 i686 i686 i386 GNU/Linux Package kernel-desktop-latest-5.15.46-1.mga8.i586 is already installed Package kernel-userspace-headers-5.15.46-1.mga8.i586 is already installed Package cpupower-5.15.46-1.mga8.i586 is already installed Package virtualbox-guest-additions-6.1.34-1.5.mga8.i586 is already installed Boots to a working desktop. Screen resolution is correct. Common apps work.
CC: (none) => wilcal.int
On M8 hardware in a Vbox client, M8, Plasma, 64-bit clear uname -a urpmi kernel-desktop-latest urpmi kernel-userspace-headers urpmi cpupower urpmi virtualbox-guest-additions Linux localhost 5.15.43-desktop-1.mga8 #1 SMP Wed May 25 20:17:13 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux Package kernel-desktop-latest-5.15.43-1.mga8.x86_64 is already installed Package kernel-userspace-headers-5.15.43-1.mga8.x86_64 is already installed Package cpupower-5.15.43-1.mga8.x86_64 is already installed Package virtualbox-guest-additions-6.1.34-1.5.mga8.x86_64 is already installed Boots to a working desktop. Screen resolution is correct. Common apps work. install updates from from update_testing: clear uname -a urpmi --auto kernel-desktop-latest urpmi --auto kernel-userspace-headers urpmi --auto cpupower urpmi --auto virtualbox-guest-additions Reboot system. Linux localhost 5.15.46-desktop-1.mga8 #1 SMP Thu Jun 9 15:59:31 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux Package kernel-desktop-latest-5.15.46-1.mga8.x86_64 is already installed Package kernel-userspace-headers-5.15.46-1.mga8.x86_64 is already installed Package cpupower-5.15.46-1.mga8.x86_64 is already installed Package virtualbox-guest-additions-6.1.34-1.5.mga8.x86_64 is already installed Boots to a working desktop. Screen resolution is correct. Common apps work.
On real hardware, M8, Plasma, 64-bit Packages checked: clear uname -a urpmi kernel-desktop-latest urpmi virtualbox urpmi x11-driver-video-vboxvideo urpmi kernel-desktop-devel-latest urpmi kernel-userspace-headers urpmi cpupower urpmi virtualbox-kernel-desktop-latest urpmi dkms-virtualbox Linux localhost 5.15.43-desktop-1.mga8 #1 SMP Wed May 25 20:17:13 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux Package kernel-desktop-latest-5.15.43-1.mga8.x86_64 is already installed Package virtualbox-6.1.34-1.5.mga8.x86_64 is already installed Package x11-driver-video-vboxvideo-1.0.0-6.mga8.x86_64 is already installed Package kernel-desktop-devel-latest-5.15.43-1.mga8.x86_64 is already installed Package kernel-userspace-headers-5.15.43-1.mga8.x86_64 is already installed Package cpupower-5.15.43-1.mga8.x86_64 is already installed Package virtualbox-kernel-desktop-latest-6.1.34-1.12.mga8.x86_64 is already installed Package dkms-virtualbox-6.1.34-1.5.mga8.x86_64 is already installed [root@localhost wilcal]# lspci -k 00:02.0 VGA compatible controller: Intel Corporation Iris Plus Graphics G1 (Ice Lake) (rev 07) DeviceName: To Be Filled by O.E.M. Subsystem: Dell Device 097c Kernel driver in use: i915 Kernel modules: i915 Boots to working desktop M8 i586 Vbox Xfce Client, boots to a working desktop - Screen size correct M8 x86_64 Vbox Plasma Client, boots to a working desktop - Screen size correct install updates from from update_testing: clear uname -a urpmi --auto kernel-desktop-latest urpmi --auto virtualbox urpmi --auto x11-driver-video-vboxvideo urpmi --auto kernel-desktop-devel-latest urpmi --auto kernel-userspace-headers urpmi --auto cpupower urpmi --auto virtualbox-kernel-desktop-latest urpmi --auto dkms-virtualbox reboot system Linux localhost 5.15.46-desktop-1.mga8 #1 SMP Thu Jun 9 15:59:31 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux Package kernel-desktop-latest-5.15.46-1.mga8.x86_64 is already installed Package virtualbox-6.1.34-1.5.mga8.x86_64 is already installed Package x11-driver-video-vboxvideo-1.0.0-6.mga8.x86_64 is already installed Package kernel-desktop-devel-latest-5.15.46-1.mga8.x86_64 is already installed Package kernel-userspace-headers-5.15.46-1.mga8.x86_64 is already installed Package cpupower-5.15.46-1.mga8.x86_64 is already installed Package virtualbox-kernel-desktop-latest-6.1.34-1.14.mga8.x86_64 is already installed Package dkms-virtualbox-6.1.34-1.5.mga8.x86_64 is already installed [root@localhost wilcal]# lspci -k 00:02.0 VGA compatible controller: Intel Corporation Iris Plus Graphics G1 (Ice Lake) (rev 07) DeviceName: To Be Filled by O.E.M. Subsystem: Dell Device 097c Kernel driver in use: i915 Kernel modules: i915 M8 i586 Vbox Xfce Client, boots to a working desktop - Screen size correct M8 x86_64 Vbox Plasma Client, boots to a working desktop - Screen size correct
Late to the party, but checking it on Foolishness, my 32-bit Dell Inspiron 5100, anyway. Updated kernel-desktop, with no issues noted.
CC: (none) => andrewsfarm