Package "linux-azure-4.15"

This package belongs to a PPA: Canonical Kernel Team

Name: linux-azure-4.15


This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Header files related to Linux kernel version 4.15.0

Latest version: 4.15.0-1154.169
Release: bionic (18.04)
Level: base
Repository: main


Other versions of "linux-azure-4.15" in Bionic

Repository Area Version
security main 4.15.0-1153.168
updates main 4.15.0-1153.168
proposed main 4.15.0-1154.169

Packages in group

Deleted packages are displayed in grey.


Version: 4.15.0-1154.169 2022-10-28 14:08:32 UTC

 linux-azure-4.15 (4.15.0-1154.169) bionic; urgency=medium
   * bionic/linux-azure-4.15: 4.15.0-1154.169 -proposed tracker (LP: #1992077)
   * Bionic update: upstream stable patchset 2022-09-21 (LP: #1990434)
     - [Config] updateconfigs for IMA_TEMPLATE
   [ Ubuntu: 4.15.0-195.206 ]
   * bionic/linux: 4.15.0-195.206 -proposed tracker (LP: #1992097)
   * Memory leak while using NFQUEUE to delegate the decision on TCP packets to
     userspace processes (LP: #1991774)
     - SAUCE: netfilter: nf_queue: Fix memory leak in nf_queue_entry_get_refs
   * Bionic update: upstream stable patchset 2022-09-23 (LP: #1990698)
     - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put
     - ntfs: fix use-after-free in ntfs_ucsncmp()
     - ARM: crypto: comment out gcc warning that breaks clang builds
     - mt7601u: add USB device ID for some versions of XiaoDu WiFi Dongle.
     - ACPI: video: Force backlight native for some TongFang devices
     - macintosh/adb: fix oob read in do_adb_query() function
     - Makefile: link with -z noexecstack --no-warn-rwx-segments
     - x86: link vdso and boot with -z noexecstack --no-warn-rwx-segments
     - ALSA: bcd2000: Fix a UAF bug on the error path of probing
     - add barriers to buffer_uptodate and set_buffer_uptodate
     - HID: wacom: Don't register pad_input for touch switch
     - KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0
     - KVM: x86: Mark TSS busy during LTR emulation _after_ all fault checks
     - KVM: x86: Set error code to segment selector on LLDT/LTR non-canonical #GP
     - ALSA: hda/conexant: Add quirk for LENOVO 20149 Notebook model
     - ALSA: hda/cirrus - support for iMac 12,1 model
     - vfs: Check the truncate maximum size in inode_newsize_ok()
     - fs: Add missing umask strip in vfs_tmpfile
     - usbnet: Fix linkwatch use-after-free on disconnect
     - parisc: Fix device names in /proc/iomem
     - drm/nouveau: fix another off-by-one in nvbios_addr
     - drm/amdgpu: Check BO's requested pinning domains against its
     - iio: light: isl29028: Fix the warning in isl29028_remove()
     - fuse: limit nsec
     - md-raid10: fix KASAN warning
     - ia64, processor: fix -Wincompatible-pointer-types in ia64_get_irr()
     - PCI: Add defines for normal and subtractive PCI bridges
     - powerpc/fsl-pci: Fix Class Code of PCIe Root Port
     - powerpc/powernv: Avoid crashing if rng is NULL
     - MIPS: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK
     - USB: HCD: Fix URB giveback issue in tasklet function
     - netfilter: nf_tables: fix null deref due to zeroed list head
     - arm64: Do not forget syscall when starting a new thread.
     - arm64: fix oops in concurrently setting insn_emulation sysctls
     - ext2: Add more validity checks for inode counts
     - ARM: dts: imx6ul: add missing properties for sram
     - ARM: dts: imx6ul: fix qspi node compatible
     - ARM: OMAP2+: display: Fix refcount leak bug
     - ACPI: PM: save NVS memory for Lenovo G40-45
     - ACPI: LPSS: Fix missing check in register_device_clock()
     - PM: hibernate: defer device probing when resuming from hibernation
     - selinux: Add boundary check in put_entry()
     - ARM: findbit: fix overflowing offset
     - ARM: bcm: Fix refcount leak in bcm_kona_smc_init
     - x86/pmem: Fix platform-device leak in error path
     - ARM: dts: ast2500-evb: fix board compatible
     - soc: fsl: guts: machine variable might be unset
     - cpufreq: zynq: Fix refcount leak in zynq_get_revision
     - ARM: dts: qcom: pm8841: add required thermal-sensor-cells
     - arm64: dts: qcom: msm8916: Fix typo in pronto remoteproc node
     - regulator: of: Fix refcount leak bug in of_get_regulation_constraints()
     - thermal/tools/tmon: Include pthread and time headers in tmon.h
     - dm: return early from dm_pr_call() if DM device is suspended
     - drm/radeon: fix potential buffer overflow in ni_set_mc_special_registers()
     - drm/mediatek: Add pull-down MIPI operation in mtk_dsi_poweroff function
     - i2c: Fix a potential use after free
     - wifi: iwlegacy: 4965: fix potential off-by-one overflow in
     - drm: bridge: adv7511: Add check for mipi_dsi_driver_register
     - media: hdpvr: fix error value returns in hdpvr_read
     - drm/vc4: dsi: Correct DSI divider calculations
     - drm/rockchip: vop: Don't crash for invalid duplicate_state()
     - drm/mediatek: dpi: Remove output format of YUV
     - drm: bridge: sii8620: fix possible off-by-one
     - media: platform: mtk-mdp: Fix mdp_ipi_comm structure alignment
     - tcp: make retransmitted SKB fit into the send window
     - selftests: timers: valid-adjtimex: build fix for newer toolchains
     - selftests: timers: clocksource-switch: fix passing errors from child
     - fs: check FMODE_LSEEK to control internal pipe splicing
     - wifi: wil6210: debugfs: fix info leak in wil_write_file_wmi()
     - wifi: p54: Fix an error handling path in p54spi_probe()
     - wifi: p54: add missing parentheses in p54_flush()
     - can: pch_can: do not report txerr and rxerr during bus-off
     - can: rcar_can: do not report txerr and rxerr during bus-off
     - can: sja1000: do not report txerr and rxerr during bus-off
     - can: hi311x: do not report txerr and rxerr during bus-off
     - can: sun4i_can: do not report txerr and rxerr during bus-off
     - can: usb_8dev: do not report txerr and rxerr during bus-off
     - can: error: specify the values of data[5..7] of CAN error frames
     - can: pch_can: pch_can_error(): initialize errc before using it
     - Bluetooth: hci_intel: Add check for platform_driver_register
     - i2c: cadence: Support PEC for SMBus block read
     - i2c: mux-gpmux: Add of_node_put() when breaking out of loop
     - wifi: wil6210: debugfs: fix uninitialized variable use in
     - wifi: libertas: Fix possible refcount leak in if_usb_probe()
     - n

Source diff to previous version
1990434 Bionic update: upstream stable patchset 2022-09-21
1991774 Memory leak while using NFQUEUE to delegate the decision on TCP packets to userspace processes
1990698 Bionic update: upstream stable patchset 2022-09-23
1989144 unprivileged users may trigger page cache invalidation WARN
1990690 Users belonging to video group may trigger a deadlock WARN
1990985 ACPI: processor idle: Practically limit \
CVE-2022-3028 A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurr
CVE-2022-2978 A flaw use after free in the Linux kernel NILFS file system was found in the way user triggers function security_inode_alloc to fail with following c
CVE-2022-40768 drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive information from kernel memory because stex_queuecomman

Version: 4.15.0-1153.168 2022-10-05 18:09:08 UTC

 linux-azure-4.15 (4.15.0-1153.168) bionic; urgency=medium
   * bionic/linux-azure-4.15: 4.15.0-1153.168 -proposed tracker (LP: #1991818)
   * Users belonging to video group may trigger a deadlock WARN (LP: #1990690)
     - SAUCE: fbdev: remove redundant lock_fb_info

Source diff to previous version
1990690 Users belonging to video group may trigger a deadlock WARN

Version: 4.15.0-1152.167 2022-09-28 22:09:33 UTC

 linux-azure-4.15 (4.15.0-1152.167) bionic; urgency=medium
   * bionic/linux-azure-4.15: 4.15.0-1152.167 -proposed tracker (LP: #1989915)
   * Bionic update: upstream stable patchset 2022-09-12 (LP: #1989374)
     - [Config] updateconfigs for RANDOM_TRUST_CPU, RANDOM_TRUST_BOOTLOADER
     - SAUCE: Update add_interrupt_randomness() calls due to upstream stable
   [ Ubuntu: 4.15.0-194.205 ]
   * bionic/linux: 4.15.0-194.205 -proposed tracker (LP: #1989935)
   * Bionic update: upstream stable patchset 2022-09-14 (LP: #1989625)
     - random: schedule mix_interrupt_randomness() less often
     - ata: libata: add qc->flags in ata_qc_complete_template tracepoint
     - dm era: commit metadata in postsuspend after worker stops
     - random: quiet urandom warning ratelimit suppression message
     - USB: serial: option: add Telit LE910Cx 0x1250 composition
     - USB: serial: option: add Quectel EM05-G modem
     - USB: serial: option: add Quectel RM500K module support
     - bonding: ARP monitor spams NETDEV_NOTIFY_PEERS notifiers
     - x86/xen: Remove undefined behavior in setup_features()
     - MIPS: Remove repetitive increase irq_err_count
     - igb: Make DMA faster when CPU is active on the PCIe link
     - iio: adc: vf610: fix conversion mode sysfs node name
     - usb: chipidea: udc: check request status before setting device address
     - iio:accel:bma180: rearrange iio trigger get and register
     - iio: accel: mma8452: ignore the return value of reset operation
     - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up()
     - iio: trigger: sysfs: fix use-after-free on remove
     - iio: adc: axp288: Override TS pin bias current for some models
     - xtensa: xtfpga: Fix refcount leak bug in setup
     - xtensa: Fix refcount leak bug in time.c
     - powerpc: Enable execve syscall exit tracepoint
     - powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address
     - powerpc/powernv: wire up rng during setup_arch
     - ARM: dts: imx6qdl: correct PU regulator ramp delay
     - ARM: exynos: Fix refcount leak in exynos_map_pmu
     - ARM: Fix refcount leak in axxia_boot_secondary
     - ARM: cns3xxx: Fix refcount leak in cns3xxx_init
     - modpost: fix section mismatch check for exported init/exit sections
     - powerpc/pseries: wire up rng during setup_arch()
     - drm: remove drm_fb_helper_modinit
     - xen: unexport __init-annotated xen_xlate_map_ballooned_pages()
     - fdt: Update CRC check for rng-seed
     - kexec_file: drop weak attribute from arch_kexec_apply_relocations[_add]
     - swiotlb: skip swiotlb_bounce when orig_addr is zero
     - net/sched: sch_netem: Fix arithmetic in netem_dump() for 32-bit platforms
     - afs: Fix dynamic root getattr
     - iio:chemical:ccs811: rearrange iio trigger get and register
     - soc: bcm: brcmstb: pm: pm-arm: Fix refcount leak in brcmstb_pm_probe
     - nvdimm: Fix badblocks clear off-by-one error
     - dm raid: fix accesses beyond end of raid member array
     - dm raid: fix KASAN warning in raid5_add_disks
     - s390/archrandom: simplify back to earlier design and initialize earlier
     - SUNRPC: Fix READ_PLUS crasher
     - net: rose: fix UAF bugs caused by timer handler
     - net: usb: ax88179_178a: Fix packet receiving
     - RDMA/qedr: Fix reporting QP timeout attribute
     - usbnet: fix memory allocation in helpers
     - net: ipv6: unexport __init-annotated seg6_hmac_net_init()
     - caif_virtio: fix race between virtio_device_ready() and ndo_open()
     - netfilter: nft_dynset: restore set element counter when failing to update
     - net: bonding: fix possible NULL deref in rlb code
     - net: bonding: fix use-after-free after 802.3ad slave unbind
     - nfc: nfcmrvl: Fix irq_of_parse_and_map() return value
     - NFC: nxp-nci: Don't issue a zero length i2c_master_read()
     - xen/gntdev: Avoid blocking in unmap_grant_pages()
     - hwmon: (ibmaem) don't call platform_device_del() if platform_device_add()
     - sit: use min
     - ipv6/sit: fix ipip6_tunnel_get_prl return value
     - net: Rename and export copy_skb_header
     - xen/blkfront: fix leaking data in shared pages
     - xen/netfront: fix leaking data in shared pages
     - xen/netfront: force data bouncing when backend is untrusted
     - xen/blkfront: force data bouncing when backend is untrusted
     - xen/arm: Fix race in RB-tree based P2M accounting
     - net: usb: qmi_wwan: add Telit 0x1060 composition
     - net: usb: qmi_wwan: add Telit 0x1070 composition
     - virtio-net: fix race between ndo_open() and virtio_device_ready()
     - net: tun: unlink NAPI from device on destruction
     - net: tun: stop NAPI when detaching queues
     - esp: limit skb_page_frag_refill use to a single page
     - mm/slub: add missing TID updates on slab deactivation
     - can: grcan: grcan_probe(): remove extra of_node_get()
     - can: gs_usb: gs_usb_open/close(): fix memory leak
     - usbnet: fix memory leak in error case
     - net: rose: fix UAF bug caused by rose_t0timer_expiry
     - iommu/vt-d: Fix PCI bus rescan device hot add
     - video: of_display_timing.h: include errno.h
     - powerpc/powernv: delay rng platform device creation until later in boot
     - xfs: remove incorrect ASSERT in xfs_rename
     - pinctrl: sunxi: a83t: Fix NAND function name for some pins
     - i2c: cadence: Unregister the clk notifier in error path
     - ida: don't use BUG_ON() for debugging
     - dmaengine: at_xdma: handle errors of at_xdmac_alloc_desc() correctly
     - dmaengine: ti: Fix refcount leak in ti_dra7_xbar_route_allocate
     - dmaengine: ti: Add missing put_device in ti_dra7_xbar_route_allocate
     - ARM: meson: Fix refcount leak in meson_smp_prepare_cpus
     - dmaengine: pl330: Fix lockdep warning about non-static key
     - ALSA: hda - Add fixup for Dell Latitidue E5430
     - ALSA: hda/conexant: Apply quirk for another HP ProDesk 600 G3 model
     - xen/netback: avoid ent

Source diff to previous version
1989374 Bionic update: upstream stable patchset 2022-09-12
1989625 Bionic update: upstream stable patchset 2022-09-14

Version: 4.15.0-1151.166 2022-09-06 19:09:09 UTC

 linux-azure-4.15 (4.15.0-1151.166) bionic; urgency=medium
   * bionic/linux-azure-4.15: 4.15.0-1151.166 -proposed tracker (LP: #1987885)
   [ Ubuntu: 4.15.0-193.204 ]
   * bionic/linux: 4.15.0-193.204 -proposed tracker (LP: #1987905)
   * CVE-2022-36946
     - netfilter: nf_queue: do not allow packet truncation below transport header
   * CVE-2021-33655
     - fbcon: Disallow setting font bigger than screen size
     - fbcon: Prevent that screen size is smaller than font size
     - fbmem: Check virtual screen sizes in fb_set_var()

Source diff to previous version
CVE-2022-36946 nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) beca
CVE-2021-33655 When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds.

Version: 4.15.0-1150.165 2022-08-13 02:08:06 UTC

 linux-azure-4.15 (4.15.0-1150.165) bionic; urgency=medium
   * bionic/linux-azure-4.15: 4.15.0-1150.165 -proposed tracker (LP: #1983960)
   [ Ubuntu: 4.15.0-192.203 ]
   * bionic/linux: 4.15.0-192.203 -proposed tracker (LP: #1983980)
   * CVE-2021-33656
     - vt: drop old FONT ioctls
   * Bionic update: upstream stable patchset 2022-07-25 (LP: #1982782)
     - binfmt_flat: do not stop relocating GOT entries prematurely on riscv
     - USB: serial: option: add Quectel BG95 modem
     - USB: new quirk for Dell Gen 2 devices
     - ptrace/xtensa: Replace PT_SINGLESTEP with TIF_SINGLESTEP
     - ptrace: Reimplement PTRACE_KILL by always sending SIGKILL
     - btrfs: add "0x" prefix for unsupported optional features
     - btrfs: repair super block num_devices automatically
     - drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes
     - mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue
     - b43legacy: Fix assigning negative value to unsigned variable
     - b43: Fix assigning negative value to unsigned variable
     - ipw2x00: Fix potential NULL dereference in libipw_xmit()
     - ACPICA: Avoid cache flush inside virtual machines
     - ALSA: jack: Access input_dev under mutex
     - drm/amd/pm: fix double free in si_parse_power_table()
     - ath9k: fix QCA9561 PA bias level
     - media: venus: hfi: avoid null dereference in deinit
     - media: pci: cx23885: Fix the error handling in cx23885_initdev()
     - media: cx25821: Fix the warning when removing the module
     - scsi: megaraid: Fix error check return value of register_chrdev()
     - drm/amd/pm: fix the compile warning
     - ipv6: Don't send rs packets to the interface of ARPHRD_TUNNEL
     - ASoC: dapm: Don't fold register value changes into notifications
     - s390/preempt: disable __preempt_count_add() optimization for
     - dma-debug: change allocation mode from GFP_NOWAIT to GFP_ATIOMIC
     - ipmi:ssif: Check for NULL msg when handling events and messages
     - rtlwifi: Use pr_warn instead of WARN_ONCE
     - openrisc: start CPU timer early in boot
     - nvme-pci: fix a NULL pointer dereference in nvme_alloc_admin_tags
     - ASoC: rt5645: Fix errorenous cleanup order
     - net: phy: micrel: Allow probing without .driver_data
     - media: exynos4-is: Fix compile warning
     - rxrpc: Return an error to sendmsg if call failed
     - eth: tg3: silence the GCC 12 array-bounds warning
     - ARM: dts: ox820: align interrupt controller node name with dtschema
     - fs: jfs: fix possible NULL pointer dereference in dbFree()
     - ARM: OMAP1: clock: Fix UART rate reporting algorithm
     - fat: add ratelimit to fat*_ent_bread()
     - ARM: versatile: Add missing of_node_put in dcscb_init
     - ARM: dts: exynos: add atmel,24c128 fallback to Samsung EEPROM
     - ARM: hisi: Add missing of_node_put after of_find_compatible_node
     - PCI: Avoid pci_dev_lock() AB/BA deadlock with sriov_numvfs_store()
     - tracing: incorrect isolate_mote_t cast in mm_vmscan_lru_isolate
     - powerpc/xics: fix refcount leak in icp_opal_init()
     - macintosh/via-pmu: Fix build failure when CONFIG_INPUT is disabled
     - RDMA/hfi1: Prevent panic when SDMA is disabled
     - drm: fix EDID struct for old ARM OABI format
     - ath9k: fix ar9003_get_eepmisc
     - ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe
     - ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe
     - x86/delay: Fix the wrong asm constraint in delay_loop()
     - drm/mediatek: Fix mtk_cec_mask()
     - spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout
     - NFC: NULL out the dev->rfkill to prevent UAF
     - efi: Add missing prototype for efi_capsule_setup_info
     - HID: hid-led: fix maximum brightness for Dream Cheeky
     - spi: img-spfi: Fix pm_runtime_get_sync() error checking
     - ath9k_htc: fix potential out of bounds access with invalid
     - inotify: show inotify mask flags in proc fdinfo
     - fsnotify: fix wrong lockdep annotations
     - x86/pm: Fix false positive kmemleak report in msr_build_context()
     - drm/msm/dsi: fix error checks and return values for DSI xmit functions
     - drm/msm/hdmi: check return value after calling
     - drm/rockchip: vop: fix possible null-ptr-deref in vop_bind()
     - x86: Fix return value of __setup handlers
     - irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value
     - x86/mm: Cleanup the control_va_addr_alignment() __setup handler
     - drm/msm: return an error pointer in msm_gem_prime_get_sg_table()
     - media: uvcvideo: Fix missing check to determine if element is found in list
     - ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe
     - regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt
     - media: st-delta: Fix PM disable depth imbalance in delta_probe
     - media: exynos4-is: Change clk_disable to clk_disable_unprepare
     - media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init
     - Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout
     - m68k: math-emu: Fix dependencies of math emulation support
     - sctp: read sk->sk_bound_dev_if once in sctp_rcv()
     - ASoC: wm2000: fix missing clk_disable_unprepare() on error in
     - rxrpc: Fix listen() setting the bar too high for the prealloc rings
     - rxrpc: Don't try to resend the request if we're receiving the reply
     - soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc
     - soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc
     - ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT
     - ARM: dts: bcm2835-rpi-b: Fix GPIO line names
     - mfd: ipaq-micro: Fix error check return value of platform_get_irq()
     - scsi: fcoe: Fix Wstringop-overflow warnings in fcoe_wwn_from_mac()
     - pinctrl: mvebu:

1982782 Bionic update: upstream stable patchset 2022-07-25
CVE-2021-33656 When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds.

About   -   Send Feedback to @ubuntu_updates