UbuntuUpdates.org

Package "linux-kvm"

This package belongs to a PPA: Canonical Kernel Team

Name: linux-kvm

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Header files related to Linux kernel version 4.15.0
  • Header files related to Linux kernel version 4.15.0

Latest version: 4.15.0-1123.128
Release: bionic (18.04)
Level: base
Repository: main

Links



Other versions of "linux-kvm" in Bionic

Repository Area Version
base main 4.15.0-1008.8
security main 4.15.0-1122.127
updates main 4.15.0-1122.127
proposed main 4.15.0-1123.128

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 4.15.0-1123.128 2022-06-23 00:07:55 UTC

 linux-kvm (4.15.0-1123.128) bionic; urgency=medium
 .
   * bionic/linux-kvm: 4.15.0-1123.128 -proposed tracker (LP: #1979517)
 .
   [ Ubuntu: 4.15.0-189.200 ]
 .
   * bionic/linux: 4.15.0-189.200 -proposed tracker (LP: #1979525)
   * linux-image-4.15.0-177-generic freezes on the welcome screen (LP: #1973167)
     - mfd: intel-lpss: Use MODULE_SOFTDEP() instead of implicit request
   * Bionic update: upstream stable patchset 2022-06-03 (LP: #1977622)
     - etherdevice: Adjust ether_addr* prototypes to silence -Wstringop-overead
     - mm: page_alloc: fix building error on -Werror=array-compare
     - tracing: Dump stacktrace trigger to the corresponding instance
     - gfs2: assign rgrp glock before compute_bitstructs
     - ALSA: usb-audio: Clear MIDI port active flag after draining
     - tcp: fix race condition when creating child sockets from syncookies
     - tcp: Fix potential use-after-free due to double kfree()
     - dmaengine: imx-sdma: Fix error checking in sdma_event_remap
     - net/packet: fix packet_sock xmit return value checking
     - netlink: reset network and mac headers in netlink_dump()
     - ARM: vexpress/spc: Avoid negative array index when !SMP
     - platform/x86: samsung-laptop: Fix an unsigned comparison which can never be
       negative
     - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the
       constant
     - vxlan: fix error return code in vxlan_fdb_append
     - cifs: Check the IOCB_DIRECT flag, not O_DIRECT
     - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the constant
     - drm/msm/mdp5: check the return of kzalloc()
     - net: macb: Restart tx only if queue pointer is lagging
     - stat: fix inconsistency between struct stat and struct compat_stat
     - ata: pata_marvell: Check the 'bmdma_addr' beforing reading
     - dma: at_xdmac: fix a missing check on list iterator
     - powerpc/perf: Fix power9 event alternatives
     - openvswitch: fix OOB access in reserve_sfa_size()
     - ASoC: soc-dapm: fix two incorrect uses of list iterator
     - e1000e: Fix possible overflow in LTR decoding
     - ARC: entry: fix syscall_trace_exit argument
     - ext4: fix symlink file size not match to file content
     - ext4: fix overhead calculation to account for the reserved gdt blocks
     - ext4: force overhead calculation if the s_overhead_cluster makes no sense
     - staging: ion: Prevent incorrect reference counting behavour
     - block/compat_ioctl: fix range check in BLKGETSIZE
     - ax25: add refcount in ax25_dev to avoid UAF bugs
     - ax25: fix reference count leaks of ax25_dev
     - ax25: fix UAF bugs of net_device caused by rebinding operation
     - ax25: Fix refcount leaks caused by ax25_cb_del()
     - ax25: fix UAF bug in ax25_send_control()
     - ax25: fix NPD bug in ax25_disconnect
     - ax25: Fix NULL pointer dereferences in ax25 timers
     - ax25: Fix UAF bugs in ax25 timers
     - ASoC: atmel: Remove system clock tree configuration for at91sam9g20ek
     - net/sched: cls_u32: fix possible leak in u32_init_knode()
     - drm/panel/raspberrypi-touchscreen: Avoid NULL deref if not initialised
     - drm/panel/raspberrypi-touchscreen: Initialise the bridge in prepare
   * Bionic update: upstream stable patchset 2022-05-17 (LP: #1973831)
     - USB: serial: pl2303: add IBM device IDs
     - USB: serial: simple: add Nokia phone driver
     - netdevice: add the case if dev is NULL
     - virtio_console: break out of buf poll on remove
     - ethernet: sun: Free the coherent when failing in probing
     - spi: Fix invalid sgs value
     - spi: Fix erroneous sgs value with min_t()
     - af_key: add __GFP_ZERO flag for compose_sadb_supported in function
       pfkey_register
     - fuse: fix pipe buffer lifetime for direct_io
     - tpm: fix reference counting for struct tpm_chip
     - block: Add a helper to validate the block size
     - virtio-blk: Use blk_validate_block_size() to validate block size
     - USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c
     - coresight: Fix TRCCONFIGR.QE sysfs interface
     - iio: inkern: apply consumer scale on IIO_VAL_INT cases
     - iio: inkern: apply consumer scale when no channel scale is available
     - iio: inkern: make a best effort on offset calculation
     - clk: uniphier: Fix fixed-rate initialization
     - Documentation: add link to stable release candidate tree
     - Documentation: update stable tree link
     - SUNRPC: avoid race between mod_timer() and del_timer_sync()
     - NFSD: prevent underflow in nfssvc_decode_writeargs()
     - pinctrl: samsung: drop pin banks references on error paths
     - jffs2: fix use-after-free in jffs2_clear_xattr_subsystem
     - jffs2: fix memory leak in jffs2_do_mount_fs
     - jffs2: fix memory leak in jffs2_scan_medium
     - mm/pages_alloc.c: don't create ZONE_MOVABLE beyond the end of a node
     - mempolicy: mbind_range() set_policy() after vma_merge()
     - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands
     - qed: display VF trust config
     - qed: validate and restrict untrusted VFs vlan promisc mode
     - Revert "Input: clear BTN_RIGHT/MIDDLE on buttonpads"
     - ALSA: cs4236: fix an incorrect NULL check on list iterator
     - drbd: fix potential silent data corruption
     - ACPI: properties: Consistently return -ENOENT if there are no more
       references
     - drivers: hamradio: 6pack: fix UAF bug caused by mod_timer()
     - video: fbdev: sm712fb: Fix crash in smtcfb_read()
     - video: fbdev: atari: Atari 2 bpp (STe) palette bugfix
     - ARM: dts: at91: sama5d2: Fix PMERRLOC resource size
     - ARM: dts: exynos: fix UART3 pins configuration in Exynos5250
     - ARM: dts: exynos: add missing HDMI supplies on SMDK5250
     - ARM: dts: exynos: add missing HDMI supplies on SMDK5420
     - carl9170: fix missing bit-wise or operator for tx_params
     - thermal: int340x: Increase bitmap size
     - lib/raid6/test: fix multiple definit

Source diff to previous version
1973167 linux-image-4.15.0-177-generic freezes on the welcome screen
1977622 Bionic update: upstream stable patchset 2022-06-03
1973831 Bionic update: upstream stable patchset 2022-05-17
CVE-2022-28388 usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free.

Version: 4.15.0-1117.120 2022-05-27 14:08:03 UTC

 linux-kvm (4.15.0-1117.120) bionic; urgency=medium
 .
   * bionic/linux-kvm: 4.15.0-1117.120 -proposed tracker (LP: #1974418)
 .
   [ Ubuntu: 4.15.0-182.191 ]
 .
   * CVE-2022-21499
     - SAUCE: debug: Lock down kgdb
 .
   [ Ubuntu: 4.15.0-181.190 ]
 .
   * bionic/linux: 4.15.0-181.190 -proposed tracker (LP: #1974426)
   * Bionic update: upstream stable patchset 2022-05-06 (LP: #1972006)
     - [Config] updateconfigs for ARM64_ERRATUM_1188873
     - arm64: arch_timer: Add workaround for ARM erratum 1188873
     - arm64: arch_timer: avoid unused function warning
     - arm64: Add silicon-errata.txt entry for ARM erratum 1188873
     - arm64: Make ARM64_ERRATUM_1188873 depend on COMPAT
     - arm64: Add part number for Neoverse N1
     - arm64: Add part number for Arm Cortex-A77
     - arm64: Add Neoverse-N2, Cortex-A710 CPU part definition
     - arm64: Add Cortex-X2 CPU part definition
     - arm64: entry.S: Add ventry overflow sanity checks
     - arm64: entry: Make the trampoline cleanup optional
     - arm64: entry: Free up another register on kpti's tramp_exit path
     - arm64: entry: Move the trampoline data page before the text page
     - arm64: entry: Allow tramp_alias to access symbols after the 4K boundary
     - arm64: entry: Don't assume tramp_vectors is the start of the vectors
     - arm64: entry: Move trampoline macros out of ifdef'd section
     - arm64: entry: Make the kpti trampoline's kpti sequence optional
     - Revert "arm64: mmu: add the entry trampolines start/end section markers into
       sections.h"
     - arm64: entry: Allow the trampoline text to occupy multiple pages
     - arm64: entry: Add non-kpti __bp_harden_el1_vectors for mitigations
     - [Config] updateconfigs for MITIGATE_SPECTRE_BRANCH_HISTORY
     - arm64: entry: Add vectors that have the bhb mitigation sequences
     - arm64: entry: Add macro for reading symbol addresses from the trampoline
     - arm64: Add percpu vectors for EL1
     - arm64: proton-pack: Report Spectre-BHB vulnerabilities as part of Spectre-v2
     - KVM: arm64: Add templates for BHB mitigation sequences
     - arm64: Mitigate spectre style branch history side channels
     - KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered and migrated
     - arm64: add ID_AA64ISAR2_EL1 sys register
     - arm64: Use the clearbhb instruction in mitigations
   * issuing invalid ioctl to /dev/vsock may spam dmesg (LP: #1971480)
     - vsock: remove ratelimit unknown ioctl message
   * ubuntu_ltp_controllers:cpuset_sched_domains: tests 3,9,11,17,19,25 report
     incorrect sched domain for cpu#32 (LP: #1951289)
     - sched/topology: Make sched_init_numa() use a set for the deduplicating sort
     - sched/topology: Fix sched_domain_topology_level alloc in sched_init_numa()
     - ia64: ensure proper NUMA distance and possible map initialization
   * CVE-2022-1419
     - drm/vgem: Reclassify buffer creation debug message
     - drm/vgem: Close use-after-free race in vgem_gem_create
   * CVE-2022-28390
     - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path
   * Bionic update: upstream stable patchset 2022-04-26 (LP: #1970479)
     - net: qlogic: check the return value of dma_alloc_coherent() in
       qed_vf_hw_prepare()
     - qed: return status of qed_iov_get_link
     - ethernet: Fix error handling in xemaclite_of_probe
     - net: ethernet: ti: cpts: Handle error for clk_enable
     - net: ethernet: lpc_eth: Handle error for clk_enable
     - ax25: Fix NULL pointer dereference in ax25_kill_by_device
     - net/mlx5: Fix size field in bufferx_reg struct
     - NFC: port100: fix use-after-free in port100_send_complete
     - gpio: ts4900: Do not set DAT and OE together
     - sctp: fix kernel-infoleak for SCTP sockets
     - net-sysfs: add check for netdevice being present to speed_show
     - Revert "xen-netback: remove 'hotplug-status' once it has served its purpose"
     - Revert "xen-netback: Check for hotplug-status existence before watching"
     - tracing: Ensure trace buffer is at least 4096 bytes large
     - selftests/memfd: clean up mapping in mfd_fail_write
     - ARM: Spectre-BHB: provide empty stub for non-config
     - staging: gdm724x: fix use after free in gdm_lte_rx()
     - virtio: unexport virtio_finalize_features
     - virtio: acknowledge all features before access
     - ARM: fix Thumb2 regression with Spectre BHB
     - ext4: add check to prevent attempting to resize an fs with sparse_super2
     - btrfs: unlock newly allocated extent buffer after error
     - net: phy: DP83822: clear MISR2 register to disable interrupts
     - sctp: fix the processing for INIT chunk
     - sctp: fix the processing for INIT_ACK chunk
     - xfrm: Fix xfrm migrate issues when address family changes
     - arm64: dts: rockchip: fix rk3399-puma eMMC HS400 signal integrity
     - ARM: dts: rockchip: fix a typo on rk3288 crypto-controller
     - MIPS: smp: fill in sibling and core maps earlier
     - ARM: 9178/1: fix unmet dependency on BITREVERSE for HAVE_ARCH_BITREVERSE
     - can: rcar_canfd: rcar_canfd_channel_probe(): register the CAN device when
       fully ready
     - atm: firestream: check the return value of ioremap() in fs_init()
     - nl80211: Update bss channel on channel switch for P2P_CLIENT
     - tcp: make tcp_read_sock() more robust
     - sfc: extend the locking on mcdi->seqno
     - kselftest/vm: fix tests build with old libc
     - fs: sysfs_emit: Remove PAGE_SIZE alignment check
     - efi: fix return value of __setup handlers
     - net/packet: fix slab-out-of-bounds access in packet_recvmsg()
     - atm: eni: Add check for dma_map_single
     - net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit()
     - usb: gadget: rndis: prevent integer overflow in rndis_set_response()
     - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver
     - Input: aiptek - properly check endpoint type
     - perf symbols: Fix symbol size calculation condition
     - net: dsa

Source diff to previous version
1972006 Bionic update: upstream stable patchset 2022-05-06
1971480 issuing invalid ioctl to /dev/vsock may spam dmesg
1970479 Bionic update: upstream stable patchset 2022-04-26
CVE-2022-21499 RESERVED
CVE-2022-28390 ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.

Version: 4.15.0-1116.119 2022-05-19 01:08:06 UTC

 linux-kvm (4.15.0-1116.119) bionic; urgency=medium
 .
   * bionic/linux-kvm: 4.15.0-1116.119 -proposed tracker (LP: #1974005)
 .
   [ Ubuntu: 4.15.0-180.189 ]
 .
   * bionic/linux: 4.15.0-180.189 -proposed tracker (LP: #1974013)
   * CVE-2022-29581
     - net/sched: cls_u32: fix netns refcount changes in u32_change()
   * Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP
     option (LP: #1972740)
     - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE
   * ext4: limit length to bitmap_maxbytes (LP: #1972281)
     - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole

Source diff to previous version
1972740 Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option
1972281 ext4: limit length to bitmap_maxbytes
CVE-2022-29581 Improper Update of Reference Count vulnerability in net/sched of Linux ...

Version: 4.15.0-1115.118 2022-05-12 22:08:01 UTC

 linux-kvm (4.15.0-1115.118) bionic; urgency=medium
 .
   * bionic/linux-kvm: 4.15.0-1115.118 -proposed tracker (LP: #1971791)
 .
   [ Ubuntu: 4.15.0-179.188 ]
 .
   * bionic/linux: 4.15.0-179.188 -proposed tracker (LP: #1972673)
   * Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP
     option (LP: #1972740)
     - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE
   * ext4: limit length to bitmap_maxbytes (LP: #1972281)
     - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
 .
   [ Ubuntu: 4.15.0-178.187 ]
 .
   * bionic/linux: 4.15.0-178.187 -proposed tracker (LP: #1971799)
   * Bionic update: upstream stable patchset 2022-05-06 (LP: #1972006)
     - [Config] updateconfigs for ARM64_ERRATUM_1188873
     - arm64: arch_timer: Add workaround for ARM erratum 1188873
     - arm64: arch_timer: avoid unused function warning
     - arm64: Add silicon-errata.txt entry for ARM erratum 1188873
     - arm64: Make ARM64_ERRATUM_1188873 depend on COMPAT
     - arm64: Add part number for Neoverse N1
     - arm64: Add part number for Arm Cortex-A77
     - arm64: Add Neoverse-N2, Cortex-A710 CPU part definition
     - arm64: Add Cortex-X2 CPU part definition
     - arm64: entry.S: Add ventry overflow sanity checks
     - arm64: entry: Make the trampoline cleanup optional
     - arm64: entry: Free up another register on kpti's tramp_exit path
     - arm64: entry: Move the trampoline data page before the text page
     - arm64: entry: Allow tramp_alias to access symbols after the 4K boundary
     - arm64: entry: Don't assume tramp_vectors is the start of the vectors
     - arm64: entry: Move trampoline macros out of ifdef'd section
     - arm64: entry: Make the kpti trampoline's kpti sequence optional
     - Revert "arm64: mmu: add the entry trampolines start/end section markers into
       sections.h"
     - arm64: entry: Allow the trampoline text to occupy multiple pages
     - arm64: entry: Add non-kpti __bp_harden_el1_vectors for mitigations
     - [Config] updateconfigs for MITIGATE_SPECTRE_BRANCH_HISTORY
     - arm64: entry: Add vectors that have the bhb mitigation sequences
     - arm64: entry: Add macro for reading symbol addresses from the trampoline
     - arm64: Add percpu vectors for EL1
     - arm64: proton-pack: Report Spectre-BHB vulnerabilities as part of Spectre-v2
     - KVM: arm64: Add templates for BHB mitigation sequences
     - arm64: Mitigate spectre style branch history side channels
     - KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered and migrated
     - arm64: add ID_AA64ISAR2_EL1 sys register
     - arm64: Use the clearbhb instruction in mitigations
   * issuing invalid ioctl to /dev/vsock may spam dmesg (LP: #1971480)
     - vsock: remove ratelimit unknown ioctl message
   * ubuntu_ltp_controllers:cpuset_sched_domains: tests 3,9,11,17,19,25 report
     incorrect sched domain for cpu#32 (LP: #1951289)
     - sched/topology: Make sched_init_numa() use a set for the deduplicating sort
     - sched/topology: Fix sched_domain_topology_level alloc in sched_init_numa()
     - ia64: ensure proper NUMA distance and possible map initialization
   * CVE-2022-1419
     - drm/vgem: Reclassify buffer creation debug message
     - drm/vgem: Close use-after-free race in vgem_gem_create
   * CVE-2022-28390
     - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path
   * Bionic update: upstream stable patchset 2022-04-26 (LP: #1970479)
     - net: qlogic: check the return value of dma_alloc_coherent() in
       qed_vf_hw_prepare()
     - qed: return status of qed_iov_get_link
     - ethernet: Fix error handling in xemaclite_of_probe
     - net: ethernet: ti: cpts: Handle error for clk_enable
     - net: ethernet: lpc_eth: Handle error for clk_enable
     - ax25: Fix NULL pointer dereference in ax25_kill_by_device
     - net/mlx5: Fix size field in bufferx_reg struct
     - NFC: port100: fix use-after-free in port100_send_complete
     - gpio: ts4900: Do not set DAT and OE together
     - sctp: fix kernel-infoleak for SCTP sockets
     - net-sysfs: add check for netdevice being present to speed_show
     - Revert "xen-netback: remove 'hotplug-status' once it has served its purpose"
     - Revert "xen-netback: Check for hotplug-status existence before watching"
     - tracing: Ensure trace buffer is at least 4096 bytes large
     - selftests/memfd: clean up mapping in mfd_fail_write
     - ARM: Spectre-BHB: provide empty stub for non-config
     - staging: gdm724x: fix use after free in gdm_lte_rx()
     - virtio: unexport virtio_finalize_features
     - virtio: acknowledge all features before access
     - ARM: fix Thumb2 regression with Spectre BHB
     - ext4: add check to prevent attempting to resize an fs with sparse_super2
     - btrfs: unlock newly allocated extent buffer after error
     - net: phy: DP83822: clear MISR2 register to disable interrupts
     - sctp: fix the processing for INIT chunk
     - sctp: fix the processing for INIT_ACK chunk
     - xfrm: Fix xfrm migrate issues when address family changes
     - arm64: dts: rockchip: fix rk3399-puma eMMC HS400 signal integrity
     - ARM: dts: rockchip: fix a typo on rk3288 crypto-controller
     - MIPS: smp: fill in sibling and core maps earlier
     - ARM: 9178/1: fix unmet dependency on BITREVERSE for HAVE_ARCH_BITREVERSE
     - can: rcar_canfd: rcar_canfd_channel_probe(): register the CAN device when
       fully ready
     - atm: firestream: check the return value of ioremap() in fs_init()
     - nl80211: Update bss channel on channel switch for P2P_CLIENT
     - tcp: make tcp_read_sock() more robust
     - sfc: extend the locking on mcdi->seqno
     - kselftest/vm: fix tests build with old libc
     - fs: sysfs_emit: Remove PAGE_SIZE alignment check
     - efi: fix return value of __setup handlers
     - net/packet: fix slab-out-of-bounds access in packet_recvmsg()
     - atm: eni: Add check for dma_map_single
     - net: handle ARPH

Source diff to previous version
1972740 Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option
1972281 ext4: limit length to bitmap_maxbytes
1972006 Bionic update: upstream stable patchset 2022-05-06
1971480 issuing invalid ioctl to /dev/vsock may spam dmesg
1970479 Bionic update: upstream stable patchset 2022-04-26
CVE-2022-28390 ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.

Version: 4.15.0-1114.117 2022-04-20 22:07:51 UTC

 linux-kvm (4.15.0-1114.117) bionic; urgency=medium
 .
   * bionic/linux-kvm: 4.15.0-1114.117 -proposed tracker (LP: #1969075)
 .
   [ Ubuntu: 4.15.0-177.186 ]
 .
   * bionic/linux: 4.15.0-177.186 -proposed tracker (LP: #1969083)
   * Bionic update: upstream stable patchset 2022-04-13 (LP: #1968932)
     - cgroup/cpuset: Fix a race between cpuset_attach() and cpu hotplug
     - vhost/vsock: don't check owner in vhost_vsock_stop() while releasing
     - parisc/unaligned: Fix fldd and fstd unaligned handlers on 32-bit kernel
     - parisc/unaligned: Fix ldw() and stw() unalignment handlers
     - sr9700: sanity check for packet length
     - USB: zaurus: support another broken Zaurus
     - ping: remove pr_err from ping_lookup
     - net: __pskb_pull_tail() & pskb_carve_frag_list() drop_monitor friends
     - gso: do not skip outer ip header in case of ipip and net_failover
     - openvswitch: Fix setting ipv6 fields causing hw csum failure
     - drm/edid: Always set RGB444
     - net/mlx5e: Fix wrong return value on ioctl EEPROM query failure
     - configfs: fix a race in configfs_{,un}register_subsystem()
     - RDMA/ib_srp: Fix a deadlock
     - iio: adc: men_z188_adc: Fix a resource leak in an error handling path
     - ata: pata_hpt37x: disable primary channel on HPT371
     - Revert "USB: serial: ch341: add new Product ID for CH341A"
     - usb: gadget: rndis: add spinlock for rndis response list
     - tracefs: Set the group ownership in apply_options() not parse_options()
     - USB: serial: option: add support for DW5829e
     - USB: serial: option: add Telit LE910R1 compositions
     - usb: dwc3: gadget: Let the interrupt handler disable bottom halves.
     - xhci: re-initialize the HC during resume if HCE was set
     - xhci: Prevent futile URB re-submissions due to incorrect return value.
     - tty: n_gsm: fix encoding of control signal octet bit DV
     - tty: n_gsm: fix proper link termination after failed open
     - Revert "drm/nouveau/pmu/gm200-: avoid touching PMU outside of
       DEVINIT/PREOS/ACR"
     - memblock: use kfree() to release kmalloced memblock regions
     - fget: clarify and improve __fget_files() implementation
     - gpio: tegra186: Fix chip_data type confusion
     - tracing: Have traceon and traceoff trigger honor the instance
     - mac80211_hwsim: report NOACK frames in tx_status
     - mac80211_hwsim: initialize ieee80211_tx_info at hw_scan_work
     - i2c: bcm2835: Avoid clock stretching timeouts
     - Input: clear BTN_RIGHT/MIDDLE on buttonpads
     - cifs: fix double free race when mount fails in cifs_get_root()
     - dmaengine: shdma: Fix runtime PM imbalance on error
     - i2c: cadence: allow COMPILE_TEST
     - i2c: qup: allow COMPILE_TEST
     - net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990
     - usb: gadget: don't release an existing dev->buf
     - usb: gadget: clear related members when goto fail
     - ata: pata_hpt37x: fix PCI clock detection
     - ALSA: intel_hdmi: Fix reference to PCM buffer address
     - ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min
     - xfrm: fix MTU regression
     - netfilter: fix use-after-free in __nf_register_net_hook()
     - xfrm: enforce validity of offload input flags
     - netfilter: nf_queue: don't assume sk is full socket
     - netfilter: nf_queue: fix possible use-after-free
     - batman-adv: Request iflink once in batadv-on-batadv check
     - batman-adv: Request iflink once in batadv_get_real_netdevice
     - batman-adv: Don't expect inter-netns unique iflink indices
     - net: dcb: flush lingering app table entries for unregistered devices
     - net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error generated by client
     - net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error cause by server
     - mac80211: fix forwarded mesh frames AC & queue selection
     - net: stmmac: fix return value of __setup handler
     - net: sxgbe: fix return value of __setup handler
     - net: arcnet: com20020: Fix null-ptr-deref in com20020pci_probe()
     - efivars: Respect "block" flag in efivar_entry_set_safe()
     - can: gs_usb: change active_channels's type from atomic_t to u8
     - ARM: 9182/1: mmu: fix returns from early_param() and __setup() functions
     - soc: fsl: qe: Check of ioremap return value
     - net: chelsio: cxgb3: check the return value of pci_find_capability()
     - nl80211: Handle nla_memdup failures in handle_nan_filter
     - Input: elan_i2c - move regulator_[en|dis]able() out of
       elan_[en|dis]able_power()
     - Input: elan_i2c - fix regulator enable count imbalance after suspend/resume
     - HID: add mapping for KEY_ALL_APPLICATIONS
     - memfd: fix F_SEAL_WRITE after shmem huge page allocated
     - net: dcb: disable softirqs in dcbnl_flush_dev()
     - hamradio: fix macro redefine warning
     - arm/arm64: Provide a wrapper for SMCCC 1.1 calls
     - arm/arm64: smccc/psci: add arm_smccc_1_1_get_conduit()
     - ARM: report Spectre v2 status through sysfs
     - ARM: early traps initialisation
     - ARM: use LOADADDR() to get load address of sections
     - [Config] updateconfigs for HARDEN_BRANCH_HISTORY
     - ARM: Spectre-BHB workaround
     - ARM: include unprivileged BPF status in Spectre V2 reporting
     - ARM: fix build error when BPF_SYSCALL is disabled
     - ARM: fix co-processor register typo
     - ARM: Do not use NOCROSSREFS directive with ld.lld
     - ARM: fix build warning in proc-v7-bugs.c
     - xen/xenbus: don't let xenbus_grant_ring() remove grants in error case
     - xen/grant-table: add gnttab_try_end_foreign_access()
     - xen/blkfront: don't use gnttab_query_foreign_access() for mapped status
     - xen/netfront: don't use gnttab_query_foreign_access() for mapped status
     - xen/scsifront: don't use gnttab_query_foreign_access() for mapped status
     - xen/gntalloc: don't use gnttab_query_foreign_access()
     - xen: remove gnttab_query_foreign_access()
     - xen/9p: use alloc/free_pages

1968932 Bionic update: upstream stable patchset 2022-04-13
1968340 ip6gre driver does not hold device reference
1968774 LRMv6: add multi-architecture support
1967013 Bionic update: upstream stable patchset 2022-03-29
CVE-2022-27223 In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipulated by the host f
CVE-2022-26490 st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of
CVE-2021-26401 LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.
CVE-2022-0001 Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable



About   -   Send Feedback to @ubuntu_updates