UbuntuUpdates.org

Package "linux-lts-vivid"

Name: linux-lts-vivid

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Linux kernel version specific cloud tools for version 3.19.0-80
  • Linux kernel version specific cloud tools for version 3.19.0-80
  • Header files related to Linux kernel version 3.19.0
  • Linux kernel headers for version 3.19.0 on 32 bit x86 SMP
Latest version: 3.19.0-80.88~14.04.1
Release: trusty (14.04)
Level: security
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "linux-lts-vivid" in Trusty

Repository Area Version
updates main 3.19.0-80.88~14.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 3.19.0-74.82~14.04.1 2016-11-09 22:06:40 UTC

  linux-lts-vivid (3.19.0-74.82~14.04.1) trusty; urgency=low

  [ Seth Forshee ]

  * Release Tracking Bug
    - LP: #1635428

  * proc_keys_show crash when reading /proc/keys (LP: #1634496)
    - SAUCE: KEYS: ensure xbuf is large enough to fix buffer overflow in
      proc_keys_show (LP: #1634496)

  * CVE-2015-7833
    - usbvision: revert commit 588afcc1

  * CVE-2015-7837
    - SAUCE: (no-up) kexec/uefi: copy secure_boot flag in boot params across kexec
      reboot

 -- Seth Forshee <email address hidden> Fri, 21 Oct 2016 10:02:02 -0500
Source diff to previous version
1634496 proc_keys_show crash when reading /proc/keys
CVE-2015-7833 The usbvision driver in the Linux kernel package 3.10.0-123.20.1.el7 through 3.10.0-229.14.1.el7 in Red Hat Enterprise Linux (RHEL) 7.1 allows physic

Version: 3.19.0-73.81~14.04.1 2016-10-20 04:06:47 UTC

  linux-lts-vivid (3.19.0-73.81~14.04.1) trusty; urgency=low

  * CVE-2016-5195
    - SAUCE: mm: remove gup_flags FOLL_WRITE games from __get_user_pages()

 -- Seth Forshee <email address hidden> Tue, 18 Oct 2016 16:06:08 -0500
Source diff to previous version

Version: 3.19.0-71.79~14.04.1 2016-10-10 19:06:48 UTC

  linux-lts-vivid (3.19.0-71.79~14.04.1) trusty; urgency=low

  * Fix GRO recursion overflow for tunneling protocols (LP: #1631287)
    - tunnels: Don't apply GRO to multiple layers of encapsulation.
    - gro: Allow tunnel stacking in the case of FOU/GUE

  * CVE-2016-7039
    - SAUCE: net: add recursion limit to GRO

linux (3.19.0-70.78) vivid; urgency=low

  [ Joseph Salisbury ]

  * Release Tracking Bug
    - LP: #1625788

  * CVE-2016-6136
    - audit: fix a double fetch in audit_log_single_execve_arg()

  * CVE-2016-6480
    - aacraid: Check size values after double-fetch from user

  * CVE-2016-6828
    - tcp: fix use after free in tcp_xmit_retransmit_queue()

  * lsattr 32bit does not work on 64bit kernel (Inappropriate ioctl error)
    (LP: #1619918)
    - btrfs: bugfix: handle FS_IOC32_{GETFLAGS, SETFLAGS, GETVERSION} in
      btrfs_ioctl

 -- Seth Forshee <email address hidden> Fri, 07 Oct 2016 20:11:52 -0500
Source diff to previous version
CVE-2016-7039 RESERVED
CVE-2016-6136 Race condition in the audit_log_single_execve_arg function in kernel/auditsc.c in the Linux kernel through 4.7 allows local users to bypass intended
CVE-2016-6480 Race condition in the ioctl_send_fib function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial
CVE-2016-6828 Linux tcp_xmit_retransmit_queue use after free

Version: 3.19.0-69.77~14.04.1 2016-09-19 19:06:46 UTC

  linux-lts-vivid (3.19.0-69.77~14.04.1) trusty; urgency=low

  [ Tim Gardner ]

  * Release Tracking Bug
    - LP: #1618251

  * MacBookPro11,4 fails to poweroff or suspend (LP: #1587714)
    - SAUCE: PCI: Workaround to enable poweroff on Mac Pro 11

  * xfrm: ipsec crash when updating spd thresholds (LP: #1613787)
    - xfrm: Ignore socket policies when rebuilding hash tables

  * CVE-2016-3841
    - ipv6: add complete rcu protection around np->opt

linux (3.19.0-68.76) vivid; urgency=low

  [ Stefan Bader ]

  * Release Tracking Bug
    - LP: #1612550

  * CVE-2016-5696
    - tcp: make challenge acks less predictable

 -- Kamal Mostafa <email address hidden> Tue, 16 Aug 2016 10:19:30 -0700
Source diff to previous version
1587714 MacBookPro11,4 fails to poweroff or suspend
1613787 xfrm: ipsec crash when updating spd thresholds
CVE-2016-3841 The IPv6 stack in the Linux kernel before 4.3.3 mishandles options data, which allows local users to gain privileges or cause a denial of service (us
CVE-2016-5696 net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for man-in-

Version: 3.19.0-68.76~14.04.1 2016-08-29 16:06:39 UTC

  linux-lts-vivid (3.19.0-68.76~14.04.1) trusty; urgency=low

  [ Stefan Bader ]

  * Release Tracking Bug
    - LP: #1612564

  * CVE-2016-5696
    - tcp: make challenge acks less predictable

linux (3.19.0-67.75) vivid; urgency=low

  [ Stefan Bader ]

  * Release Tracking Bug
    - LP: #1611250

  * CVE-2016-5828
    - powerpc/tm: Always reclaim in start_thread() for exec() class syscalls

  * CVE-2016-5829
    - HID: hiddev: validate num_values for HIDIOCGUSAGES, HIDIOCSUSAGES commands

  * CVE-2016-5400
    - media: fix airspy usb probe error path

  * changelog: add CVEs as first class citizens (LP: #1604344)
    - avoid duplicate CVE numbers in changelog

  * CVE-2016-5728
    - misc: mic: Fix for double fetch security bug in VOP driver

  * CVE-2016-5244 (LP: #1589041)
    - rds: fix an infoleak in rds_inc_info_copy

 -- Stefan Bader <email address hidden> Fri, 12 Aug 2016 12:10:44 +0200
1604344 changelog: add CVEs as first class citizens
CVE-2016-5696 net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for man-in-
CVE-2016-5828 The start_thread function in arch/powerpc/kernel/process.c in the Linux kernel through 4.6.3 on powerpc platforms mishandles transactional state, whi
CVE-2016-5829 Multiple heap-based buffer overflows in the hiddev_ioctl_usage function in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local
CVE-2016-5400 Memory leak in the airspy_probe function in drivers/media/usb/airspy/airspy.c in the airspy USB driver in the Linux kernel before 4.7 allows local us
CVE-2016-5728 Race condition in the vop_ioctl function in drivers/misc/mic/vop/vop_vringh.c in the MIC VOP driver in the Linux kernel before 4.6.1 allows local use
CVE-2016-5244 The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structure member, which allows remot


About   -   Send Feedback to @ubuntu_updates