UbuntuUpdates.org

Package "linux-lts-trusty"

This package belongs to a PPA: Canonical Kernel Team




Name: linux-lts-trusty

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

Latest version: *DELETED*
Release: precise (12.04)
Level: base
Repository: main

Links

All versions of this package
Bug fixes

Repository home page

Other versions of "linux-lts-trusty" in Precise

Repository Area Version
security main 3.13.0-185.236~12.04.1
updates main 3.13.0-185.236~12.04.1

Changelog

Version: *DELETED* 2018-05-09 14:09:15 UTC
No changelog for deleted or moved packages.

Version: 3.13.0-148.197~precise1 2018-05-09 13:09:14 UTC

 linux-lts-trusty (3.13.0-148.197~precise1) precise; urgency=medium
 .
   * linux-lts-trusty: 3.13.0-148.197~precise1 -proposed tracker (LP: #1769080)
 .
   * linux: 3.13.0-148.197 -proposed tracker (LP: #1769077)
 .
   * CVE-2017-18208
     - mm/madvise.c: fix madvise() infinite loop under special circumstances
 .
   * CVE-2018-8822
     - staging: ncpfs: memory corruption in ncp_read_kernel()
 .
   * CVE-2017-18221
     - mlock: fix mlock count can not decrease in race condition
 .
   * CVE-2017-12134
     - xen: fix bio vec merging
 .
   * CVE-2017-18203
     - dm: fix race between dm_get_from_kobject() and __dm_destroy()
 .
   * CVE-2017-17449
     - netlink: Add netns check on taps
 .
   * CVE-2017-13220
     - Bluetooth: hidp_connection_add() unsafe use of l2cap_pi()
 .
   * CVE-2017-18204
     - ocfs2: should wait dio before inode lock in ocfs2_setattr()
 .
   * CVE-2017-13305
     - KEYS: encrypted: fix buffer overread in valid_master_desc()
 .
   * CVE-2017-18079
     - Input: i8042 - fix crash at boot time
 .
   * "ip a" command on a guest VM shows UNKNOWN status (LP: #1761534)
     - virtio-net: Fix operstate for virtio when no VIRTIO_NET_F_STATUS
 .
   * ibrs/ibpb fixes result in excessive kernel logging (LP: #1755627)
     - SAUCE: remove ibrs_dump sysctl interface

1761534 \
1755627 ibrs/ibpb fixes result in excessive kernel logging
CVE-2017-18208 The madvise_willneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service (infinite loop) by tr
CVE-2018-8822 Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c in the Linux kernel through 4.15.11, and in drivers/stag
CVE-2017-18221 The __munlock_pagevec function in mm/mlock.c in the Linux kernel before 4.11.4 allows local users to cause a denial of service (NR_MLOCK accounting c
CVE-2017-12134 The xen_biovec_phys_mergeable function in drivers/xen/biomerge.c in Xen might allow local OS guest users to corrupt block device data streams and con
CVE-2017-18203 The dm_get_from_kobject function in drivers/md/dm.c in the Linux kernel before 4.14.3 allow local users to cause a denial of service (BUG) by leverag
CVE-2017-17449 The __netlink_deliver_tap_skb function in net/netlink/af_netlink.c in the Linux kernel through 4.14.4, when CONFIG_NLMON is enabled, does not restric
CVE-2017-13220 An elevation of privilege vulnerability in the Upstream kernel bluez. Product: Android. Versions: Android kernel. Android ID: A-63527053.
CVE-2017-18204 The ocfs2_setattr function in fs/ocfs2/file.c in the Linux kernel before 4.14.2 allows local users to cause a denial of service (deadlock) via DIO re
CVE-2017-13305 A information disclosure vulnerability in the Upstream kernel encrypted-keys. Product: Android. Versions: Android kernel. Android ID: A-70526974.
CVE-2017-18079 drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows attackers to cause a denial of service (NULL pointer dereference and system cras

Version: *DELETED* 2017-06-28 14:07:59 UTC
No changelog for deleted or moved packages.

Version: 3.13.0-122.171~precise1 2017-06-20 21:08:09 UTC

 linux-lts-trusty (3.13.0-122.171~precise1) precise; urgency=low
 .
   * linux-lts-trusty: 3.13.0-122.171~precise1 -proposed tracker (LP: #1699048)
 .
   * linux: 3.13.0-122.171 -proposed tracker (LP: #1699047)
 .
   * CVE-2017-1000364
     - SAUCE: mm: Only expand stack if guard area is hit
 .
   * CVE-2014-9940
     - regulator: core: Fix regualtor_ena_gpio_free not to access pin after freeing
 .
   * CVE-2017-100363
     - char: lp: fix possible integer overflow in lp_setup()
 .
   * CVE-2017-9242
     - ipv6: fix out of bound writes in __ip6_append_data()
 .
   * CVE-2017-9075
     - sctp: do not inherit ipv6_{mc|ac|fl}_list from parent
 .
   * CVE-2017-9074
     - ipv6: Prevent overrun when parsing v6 header options
 .
   * CVE-2017-9076
     - ipv6/dccp: do not inherit ipv6_mc_list from parent
 .
   * CVE-2017-9077
     - ipv6/dccp: do not inherit ipv6_mc_list from parent
 .
   * CVE-2017-8890
     - dccp/tcp: do not inherit mc_list from parent
 .
   * CVE-2017-0605
     - tracing: Use strlcpy() instead of strcpy() in __trace_find_cmdline()
 .
   * CVE-2017-7294
     - drm/vmwgfx: fix integer overflow in vmw_surface_define_ioctl()

Source diff to previous version
CVE-2017-1000 RESERVED
CVE-2014-9940 The regulator_ena_gpio_free function in drivers/regulator/core.c in the Linux kernel before 3.19 allows local users to gain privileges or cause a den
CVE-2017-1003 RESERVED
CVE-2017-9242 The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel through 4.11.3 is too late in checking whether an overwrite of an skb dat
CVE-2017-9075 The sctp_v6_create_accept_sk function in net/sctp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause
CVE-2017-9074 The IPv6 fragmentation implementation in the Linux kernel through 4.11.1 does not consider that the nexthdr field may be associated with an invalid o
CVE-2017-9076 The dccp_v6_request_recv_sock function in net/dccp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to caus
CVE-2017-9077 The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause
CVE-2017-8890 The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel through 4.10.15 allows attackers to cause a denial of service
CVE-2017-0605 An elevation of privilege vulnerability in the kernel trace subsystem could enable a local malicious application to execute arbitrary code within the
CVE-2017-7294 The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.6 does not validate addition of cer

Version: 3.13.0-117.164~precise1 2017-04-13 11:08:00 UTC

 linux-lts-trusty (3.13.0-117.164~precise1) precise; urgency=low
 .
   * linux-lts-trusty: 3.13.0-117.164~precise1 -proposed tracker (LP: #1680735)
 .
   * linux: 3.13.0-117.164 -proposed tracker (LP: #1680733)
 .
   * CVE-2017-6353
     - sctp: deny peeloff operation on asocs with threads sleeping on it
 .
   * CVE-2017-5986
     - sctp: avoid BUG_ON on sctp_wait_for_sndbuf
 .
   * Update ENA driver to 1.1.2 from net-next (LP: #1664312)
     - net: ena: Remove unnecessary pci_set_drvdata()
     - net: ena: Fix error return code in ena_device_init()
     - net: ena: change the return type of ena_set_push_mode() to be void.
     - net: ena: use setup_timer() and mod_timer()
     - net/ena: remove ntuple filter support from device feature list
     - net/ena: fix queues number calculation
     - net/ena: fix ethtool RSS flow configuration
     - net/ena: fix RSS default hash configuration
     - net/ena: fix NULL dereference when removing the driver after device reset
       failed
     - net/ena: refactor ena_get_stats64 to be atomic context safe
     - net/ena: fix potential access to freed memory during device reset
     - net/ena: use READ_ONCE to access completion descriptors
     - net/ena: reduce the severity of ena printouts
     - net/ena: change driver's default timeouts
     - net/ena: change condition for host attribute configuration
     - net/ena: update driver version to 1.1.2
 .
   * [Xenial - 16.04 ]Bonding driver - stack corruption when trying to copy 20
     bytes to a sockaddr (LP: #1668042)
     - net/bonding: Enforce active-backup policy for IPoIB bonds
 .
   * stress_smoke_test passing and exiting rc=9 (linux 4.9.0-12.13 ADT test
     failure with linux 4.9.0-12.13) (LP: #1658633)
     - ext4: lock the xattr block before checksuming it
 .
   * vmxnet3 LRO IPv6 performance issues (stalling TCP) (LP: #1605494)
     - Driver: Vmxnet3: set CHECKSUM_UNNECESSARY for IPv6 packets
 .
   * move aufs.ko from -extra to linux-image package (LP: #1673498)
     - [config] aufs.ko moved to linux-image package
 .
   * lsattr 32bit does not work on 64bit kernel (Inappropriate ioctl error)
     (LP: #1619918)
     - btrfs: fix btrfs_compat_ioctl failures on non-compat ioctls

1664312 Update ENA driver to 1.1.2 from net-next
1668042 [Xenial - 16.04 ]Bonding driver - stack corruption when trying to copy 20 bytes to a sockaddr
1658633 stress_smoke_test passing and exiting rc=9 (linux 4.9.0-12.13 ADT test failure with linux 4.9.0-12.13)
1605494 vmxnet3 LRO IPv6 performance issues (stalling TCP)
1619918 lsattr 32bit does not work on 64bit kernel (Inappropriate ioctl error)
CVE-2017-6353 net/sctp/socket.c in the Linux kernel through 4.10.1 does not properly restrict association peel-off operations during certain wait states, which all
CVE-2017-5986 Race condition in the sctp_wait_for_sndbuf function in net/sctp/socket.c in the Linux kernel before 4.9.11 allows local users to cause a denial of se


About   -   Send Feedback to @ubuntu_updates