[ANNOUNCE] Release v4.19.249-cip76 and v5.10.125-cip10


Nobuhiro Iwamatsu
 

Hi,

CIP kernel team has released Linux kernel v4.19.249-cip76 and v5.10.125-cip10.
The linux-4.19.y-cip tree has been updated base version from v4.19.246 to v4.19.249,
and the linux-5.10.y-cip tree has been updated base version from v5.10.121 to v5.10.125.

You can get this release via the git tree at:

v4.19.249-cip76:
repository:
https://git.kernel.org/pub/scm/linux/kernel/git/cip/linux-cip.git
branch:
linux-4.19.y-cip
commit hash:
c293ac909598851c30308172c5f11a445c7c2d1f
Fixed CVEs:
- CVE-2022-32250: netfilter: nf_tables: disallow non-stateful expression in sets earlier
- CVE-2022-1184: ext4: verify dir block before splitting it
- CVE-2022-1966: netfilter: nf_tables: disallow non-stateful expression in sets earlier
- CVE-2022-32981: powerpc/32: Fix overread/overwrite of thread_struct via ptrace
- CVE-2022-32296: tcp: increase source port perturb table to 2^16
- CVE-2022-0812: xprtrdma: fix incorrect header size calculations
added commits:
CIP: Bump version suffix to -cip76 after merge from stable

v5.10.125-cip10:
repository:
https://git.kernel.org/pub/scm/linux/kernel/git/cip/linux-cip.git
branch:
linux-5.10.y-cip
commit hash:
93e5c28cd0bdd8a2d89059fe7218ce98dd7c81ce
Fixed CVEs:
- CVE-2022-32981: powerpc/32: Fix overread/overwrite of thread_struct via ptrace
- CVE-2022-32296: tcp: increase source port perturb table to 2^16
added commits:
CIP: Bump version suffix to -cip10 after merge from stable

Best regards,
Nobuhiro


--
Nobuhiro Iwamatsu


Pavel Machek
 

Hi!

v5.10.125-cip10:
repository:
https://git.kernel.org/pub/scm/linux/kernel/git/cip/linux-cip.git
5.10.125 was immediately followed up by 5.10.126 due to bug in
io_uring. If you use that functionality, you may want to speak up.

Best regards,
Pavel
--
DENX Software Engineering GmbH, Managing Director: Wolfgang Denk
HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany


Jan Kiszka
 

On 29.06.22 17:45, Pavel Machek wrote:
Hi!

v5.10.125-cip10:
repository:
https://git.kernel.org/pub/scm/linux/kernel/git/cip/linux-cip.git
5.10.125 was immediately followed up by 5.10.126 due to bug in
io_uring. If you use that functionality, you may want to speak up.
Given that this feature is default-on in kernels, is rather easily
accessible and may create "funny" results in the presence of this
regression (of 5.10.125), it feels like we should follow that update.

Jan

--
Siemens AG, Technology
Competence Center Embedded Linux


Nobuhiro Iwamatsu
 

Hi Pavel and Jan,

-----Original Message-----
From: cip-dev@... <cip-dev@...> On
Behalf Of Pavel Machek
Sent: Thursday, June 30, 2022 12:45 AM
To: iwamatsu nobuhiro(岩松 信洋 □SWC◯ACT)
<nobuhiro1.iwamatsu@...>
Cc: cip-dev@...; pavel@...; uli@...;
masami.ichikawa@...; jan.kiszka@...;
Chris.Paterson2@...
Subject: Re: [cip-dev] [ANNOUNCE] Release v4.19.249-cip76 and
v5.10.125-cip10

Hi!

v5.10.125-cip10:
repository:

https://git.kernel.org/pub/scm/linux/kernel/git/cip/linux-cip.git
5.10.125 was immediately followed up by 5.10.126 due to bug in io_uring. If you
use that functionality, you may want to speak up.
From: Jan Kiszka <jan.kiszka@...>
5.10.125 was immediately followed up by 5.10.126 due to bug in
io_uring. If you use that functionality, you may want to speak up.
Given that this feature is default-on in kernels, is rather easily accessible and
may create "funny" results in the presence of this regression (of 5.10.125), it
feels like we should follow that update.
Thanks for your notification.
I will prepare to update to the latest release, 5.10.127.

Best regards,
Nobuhiro