Package "linux-kvm"
Name: |
linux-kvm
|
Description: |
This package is just an umbrella for a group of other packages,
it has no description. Description samples from packages in group:
- Header files related to Linux kernel version 4.15.0
- Header files related to Linux kernel version 4.15.0
- Header files related to Linux kernel version 4.15.0
- Header files related to Linux kernel version 4.15.0
|
Latest version: |
4.15.0-1117.120 |
Release: |
bionic (18.04) |
Level: |
proposed |
Repository: |
main |
Links
Other versions of "linux-kvm" in Bionic
Packages in group
Deleted packages are displayed in grey.
Changelog
linux-kvm (4.15.0-1117.120) bionic; urgency=medium
* bionic/linux-kvm: 4.15.0-1117.120 -proposed tracker (LP: #1974418)
[ Ubuntu: 4.15.0-182.191 ]
* CVE-2022-21499
- SAUCE: debug: Lock down kgdb
[ Ubuntu: 4.15.0-181.190 ]
* bionic/linux: 4.15.0-181.190 -proposed tracker (LP: #1974426)
* Bionic update: upstream stable patchset 2022-05-06 (LP: #1972006)
- [Config] updateconfigs for ARM64_ERRATUM_1188873
- arm64: arch_timer: Add workaround for ARM erratum 1188873
- arm64: arch_timer: avoid unused function warning
- arm64: Add silicon-errata.txt entry for ARM erratum 1188873
- arm64: Make ARM64_ERRATUM_1188873 depend on COMPAT
- arm64: Add part number for Neoverse N1
- arm64: Add part number for Arm Cortex-A77
- arm64: Add Neoverse-N2, Cortex-A710 CPU part definition
- arm64: Add Cortex-X2 CPU part definition
- arm64: entry.S: Add ventry overflow sanity checks
- arm64: entry: Make the trampoline cleanup optional
- arm64: entry: Free up another register on kpti's tramp_exit path
- arm64: entry: Move the trampoline data page before the text page
- arm64: entry: Allow tramp_alias to access symbols after the 4K boundary
- arm64: entry: Don't assume tramp_vectors is the start of the vectors
- arm64: entry: Move trampoline macros out of ifdef'd section
- arm64: entry: Make the kpti trampoline's kpti sequence optional
- Revert "arm64: mmu: add the entry trampolines start/end section markers into
sections.h"
- arm64: entry: Allow the trampoline text to occupy multiple pages
- arm64: entry: Add non-kpti __bp_harden_el1_vectors for mitigations
- [Config] updateconfigs for MITIGATE_SPECTRE_BRANCH_HISTORY
- arm64: entry: Add vectors that have the bhb mitigation sequences
- arm64: entry: Add macro for reading symbol addresses from the trampoline
- arm64: Add percpu vectors for EL1
- arm64: proton-pack: Report Spectre-BHB vulnerabilities as part of Spectre-v2
- KVM: arm64: Add templates for BHB mitigation sequences
- arm64: Mitigate spectre style branch history side channels
- KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered and migrated
- arm64: add ID_AA64ISAR2_EL1 sys register
- arm64: Use the clearbhb instruction in mitigations
* issuing invalid ioctl to /dev/vsock may spam dmesg (LP: #1971480)
- vsock: remove ratelimit unknown ioctl message
* ubuntu_ltp_controllers:cpuset_sched_domains: tests 3,9,11,17,19,25 report
incorrect sched domain for cpu#32 (LP: #1951289)
- sched/topology: Make sched_init_numa() use a set for the deduplicating sort
- sched/topology: Fix sched_domain_topology_level alloc in sched_init_numa()
- ia64: ensure proper NUMA distance and possible map initialization
* CVE-2022-1419
- drm/vgem: Reclassify buffer creation debug message
- drm/vgem: Close use-after-free race in vgem_gem_create
* CVE-2022-28390
- can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path
* Bionic update: upstream stable patchset 2022-04-26 (LP: #1970479)
- net: qlogic: check the return value of dma_alloc_coherent() in
qed_vf_hw_prepare()
- qed: return status of qed_iov_get_link
- ethernet: Fix error handling in xemaclite_of_probe
- net: ethernet: ti: cpts: Handle error for clk_enable
- net: ethernet: lpc_eth: Handle error for clk_enable
- ax25: Fix NULL pointer dereference in ax25_kill_by_device
- net/mlx5: Fix size field in bufferx_reg struct
- NFC: port100: fix use-after-free in port100_send_complete
- gpio: ts4900: Do not set DAT and OE together
- sctp: fix kernel-infoleak for SCTP sockets
- net-sysfs: add check for netdevice being present to speed_show
- Revert "xen-netback: remove 'hotplug-status' once it has served its purpose"
- Revert "xen-netback: Check for hotplug-status existence before watching"
- tracing: Ensure trace buffer is at least 4096 bytes large
- selftests/memfd: clean up mapping in mfd_fail_write
- ARM: Spectre-BHB: provide empty stub for non-config
- staging: gdm724x: fix use after free in gdm_lte_rx()
- virtio: unexport virtio_finalize_features
- virtio: acknowledge all features before access
- ARM: fix Thumb2 regression with Spectre BHB
- ext4: add check to prevent attempting to resize an fs with sparse_super2
- btrfs: unlock newly allocated extent buffer after error
- net: phy: DP83822: clear MISR2 register to disable interrupts
- sctp: fix the processing for INIT chunk
- sctp: fix the processing for INIT_ACK chunk
- xfrm: Fix xfrm migrate issues when address family changes
- arm64: dts: rockchip: fix rk3399-puma eMMC HS400 signal integrity
- ARM: dts: rockchip: fix a typo on rk3288 crypto-controller
- MIPS: smp: fill in sibling and core maps earlier
- ARM: 9178/1: fix unmet dependency on BITREVERSE for HAVE_ARCH_BITREVERSE
- can: rcar_canfd: rcar_canfd_channel_probe(): register the CAN device when
fully ready
- atm: firestream: check the return value of ioremap() in fs_init()
- nl80211: Update bss channel on channel switch for P2P_CLIENT
- tcp: make tcp_read_sock() more robust
- sfc: extend the locking on mcdi->seqno
- kselftest/vm: fix tests build with old libc
- fs: sysfs_emit: Remove PAGE_SIZE alignment check
- efi: fix return value of __setup handlers
- net/packet: fix slab-out-of-bounds access in packet_recvmsg()
- atm: eni: Add check for dma_map_single
- net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit()
- usb: gadget: rndis: prevent integer overflow in rndis_set_response()
- usb: gadget: Fix use-after-free bug by not setting udc->dev.driver
- Input: aiptek - properly check endpoint type
- perf symbols: Fix symbol size calculation condition
- net: dsa: Add missing of_node_put() in dsa_port_parse_of
- net: ipv6: fix skb_over_panic in __ip6_append_data
|
Source diff to previous version |
1972006 |
Bionic update: upstream stable patchset 2022-05-06 |
1971480 |
issuing invalid ioctl to /dev/vsock may spam dmesg |
1970479 |
Bionic update: upstream stable patchset 2022-04-26 |
CVE-2022-21499 |
RESERVED |
CVE-2022-28390 |
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free. |
|
linux-kvm (4.15.0-1116.119) bionic; urgency=medium
* bionic/linux-kvm: 4.15.0-1116.119 -proposed tracker (LP: #1974005)
[ Ubuntu: 4.15.0-180.189 ]
* bionic/linux: 4.15.0-180.189 -proposed tracker (LP: #1974013)
* CVE-2022-29581
- net/sched: cls_u32: fix netns refcount changes in u32_change()
* Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP
option (LP: #1972740)
- ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE
* ext4: limit length to bitmap_maxbytes (LP: #1972281)
- ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
-- Luke Nowakowski-Krijger <email address hidden> Wed, 18 May 2022 16:33:24 -0700
|
Source diff to previous version |
1972740 |
Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option |
1972281 |
ext4: limit length to bitmap_maxbytes |
CVE-2022-29581 |
Improper Update of Reference Count vulnerability in net/sched of Linux ... |
|
linux-kvm (4.15.0-1115.118) bionic; urgency=medium
* bionic/linux-kvm: 4.15.0-1115.118 -proposed tracker (LP: #1971791)
[ Ubuntu: 4.15.0-179.188 ]
* bionic/linux: 4.15.0-179.188 -proposed tracker (LP: #1972673)
* Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP
option (LP: #1972740)
- ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE
* ext4: limit length to bitmap_maxbytes (LP: #1972281)
- ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
[ Ubuntu: 4.15.0-178.187 ]
* bionic/linux: 4.15.0-178.187 -proposed tracker (LP: #1971799)
* Bionic update: upstream stable patchset 2022-05-06 (LP: #1972006)
- [Config] updateconfigs for ARM64_ERRATUM_1188873
- arm64: arch_timer: Add workaround for ARM erratum 1188873
- arm64: arch_timer: avoid unused function warning
- arm64: Add silicon-errata.txt entry for ARM erratum 1188873
- arm64: Make ARM64_ERRATUM_1188873 depend on COMPAT
- arm64: Add part number for Neoverse N1
- arm64: Add part number for Arm Cortex-A77
- arm64: Add Neoverse-N2, Cortex-A710 CPU part definition
- arm64: Add Cortex-X2 CPU part definition
- arm64: entry.S: Add ventry overflow sanity checks
- arm64: entry: Make the trampoline cleanup optional
- arm64: entry: Free up another register on kpti's tramp_exit path
- arm64: entry: Move the trampoline data page before the text page
- arm64: entry: Allow tramp_alias to access symbols after the 4K boundary
- arm64: entry: Don't assume tramp_vectors is the start of the vectors
- arm64: entry: Move trampoline macros out of ifdef'd section
- arm64: entry: Make the kpti trampoline's kpti sequence optional
- Revert "arm64: mmu: add the entry trampolines start/end section markers into
sections.h"
- arm64: entry: Allow the trampoline text to occupy multiple pages
- arm64: entry: Add non-kpti __bp_harden_el1_vectors for mitigations
- [Config] updateconfigs for MITIGATE_SPECTRE_BRANCH_HISTORY
- arm64: entry: Add vectors that have the bhb mitigation sequences
- arm64: entry: Add macro for reading symbol addresses from the trampoline
- arm64: Add percpu vectors for EL1
- arm64: proton-pack: Report Spectre-BHB vulnerabilities as part of Spectre-v2
- KVM: arm64: Add templates for BHB mitigation sequences
- arm64: Mitigate spectre style branch history side channels
- KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered and migrated
- arm64: add ID_AA64ISAR2_EL1 sys register
- arm64: Use the clearbhb instruction in mitigations
* issuing invalid ioctl to /dev/vsock may spam dmesg (LP: #1971480)
- vsock: remove ratelimit unknown ioctl message
* ubuntu_ltp_controllers:cpuset_sched_domains: tests 3,9,11,17,19,25 report
incorrect sched domain for cpu#32 (LP: #1951289)
- sched/topology: Make sched_init_numa() use a set for the deduplicating sort
- sched/topology: Fix sched_domain_topology_level alloc in sched_init_numa()
- ia64: ensure proper NUMA distance and possible map initialization
* CVE-2022-1419
- drm/vgem: Reclassify buffer creation debug message
- drm/vgem: Close use-after-free race in vgem_gem_create
* CVE-2022-28390
- can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path
* Bionic update: upstream stable patchset 2022-04-26 (LP: #1970479)
- net: qlogic: check the return value of dma_alloc_coherent() in
qed_vf_hw_prepare()
- qed: return status of qed_iov_get_link
- ethernet: Fix error handling in xemaclite_of_probe
- net: ethernet: ti: cpts: Handle error for clk_enable
- net: ethernet: lpc_eth: Handle error for clk_enable
- ax25: Fix NULL pointer dereference in ax25_kill_by_device
- net/mlx5: Fix size field in bufferx_reg struct
- NFC: port100: fix use-after-free in port100_send_complete
- gpio: ts4900: Do not set DAT and OE together
- sctp: fix kernel-infoleak for SCTP sockets
- net-sysfs: add check for netdevice being present to speed_show
- Revert "xen-netback: remove 'hotplug-status' once it has served its purpose"
- Revert "xen-netback: Check for hotplug-status existence before watching"
- tracing: Ensure trace buffer is at least 4096 bytes large
- selftests/memfd: clean up mapping in mfd_fail_write
- ARM: Spectre-BHB: provide empty stub for non-config
- staging: gdm724x: fix use after free in gdm_lte_rx()
- virtio: unexport virtio_finalize_features
- virtio: acknowledge all features before access
- ARM: fix Thumb2 regression with Spectre BHB
- ext4: add check to prevent attempting to resize an fs with sparse_super2
- btrfs: unlock newly allocated extent buffer after error
- net: phy: DP83822: clear MISR2 register to disable interrupts
- sctp: fix the processing for INIT chunk
- sctp: fix the processing for INIT_ACK chunk
- xfrm: Fix xfrm migrate issues when address family changes
- arm64: dts: rockchip: fix rk3399-puma eMMC HS400 signal integrity
- ARM: dts: rockchip: fix a typo on rk3288 crypto-controller
- MIPS: smp: fill in sibling and core maps earlier
- ARM: 9178/1: fix unmet dependency on BITREVERSE for HAVE_ARCH_BITREVERSE
- can: rcar_canfd: rcar_canfd_channel_probe(): register the CAN device when
fully ready
- atm: firestream: check the return value of ioremap() in fs_init()
- nl80211: Update bss channel on channel switch for P2P_CLIENT
- tcp: make tcp_read_sock() more robust
- sfc: extend the locking on mcdi->seqno
- kselftest/vm: fix tests build with old libc
- fs: sysfs_emit: Remove PAGE_SIZE alignment check
- efi: fix return value of __setup handlers
- net/packet: fix slab-out-of-bounds access in packet_recvmsg()
- atm: eni: Add check for dma_map_single
- net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit()
- usb: gadget: rndis: prevent integer overflow in rndis_set_respo
|
Source diff to previous version |
1972740 |
Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option |
1972281 |
ext4: limit length to bitmap_maxbytes |
1972006 |
Bionic update: upstream stable patchset 2022-05-06 |
1971480 |
issuing invalid ioctl to /dev/vsock may spam dmesg |
1970479 |
Bionic update: upstream stable patchset 2022-04-26 |
CVE-2022-28390 |
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free. |
|
linux-kvm (4.15.0-1114.117) bionic; urgency=medium
* bionic/linux-kvm: 4.15.0-1114.117 -proposed tracker (LP: #1969075)
[ Ubuntu: 4.15.0-177.186 ]
* bionic/linux: 4.15.0-177.186 -proposed tracker (LP: #1969083)
* Bionic update: upstream stable patchset 2022-04-13 (LP: #1968932)
- cgroup/cpuset: Fix a race between cpuset_attach() and cpu hotplug
- vhost/vsock: don't check owner in vhost_vsock_stop() while releasing
- parisc/unaligned: Fix fldd and fstd unaligned handlers on 32-bit kernel
- parisc/unaligned: Fix ldw() and stw() unalignment handlers
- sr9700: sanity check for packet length
- USB: zaurus: support another broken Zaurus
- ping: remove pr_err from ping_lookup
- net: __pskb_pull_tail() & pskb_carve_frag_list() drop_monitor friends
- gso: do not skip outer ip header in case of ipip and net_failover
- openvswitch: Fix setting ipv6 fields causing hw csum failure
- drm/edid: Always set RGB444
- net/mlx5e: Fix wrong return value on ioctl EEPROM query failure
- configfs: fix a race in configfs_{,un}register_subsystem()
- RDMA/ib_srp: Fix a deadlock
- iio: adc: men_z188_adc: Fix a resource leak in an error handling path
- ata: pata_hpt37x: disable primary channel on HPT371
- Revert "USB: serial: ch341: add new Product ID for CH341A"
- usb: gadget: rndis: add spinlock for rndis response list
- tracefs: Set the group ownership in apply_options() not parse_options()
- USB: serial: option: add support for DW5829e
- USB: serial: option: add Telit LE910R1 compositions
- usb: dwc3: gadget: Let the interrupt handler disable bottom halves.
- xhci: re-initialize the HC during resume if HCE was set
- xhci: Prevent futile URB re-submissions due to incorrect return value.
- tty: n_gsm: fix encoding of control signal octet bit DV
- tty: n_gsm: fix proper link termination after failed open
- Revert "drm/nouveau/pmu/gm200-: avoid touching PMU outside of
DEVINIT/PREOS/ACR"
- memblock: use kfree() to release kmalloced memblock regions
- fget: clarify and improve __fget_files() implementation
- gpio: tegra186: Fix chip_data type confusion
- tracing: Have traceon and traceoff trigger honor the instance
- mac80211_hwsim: report NOACK frames in tx_status
- mac80211_hwsim: initialize ieee80211_tx_info at hw_scan_work
- i2c: bcm2835: Avoid clock stretching timeouts
- Input: clear BTN_RIGHT/MIDDLE on buttonpads
- cifs: fix double free race when mount fails in cifs_get_root()
- dmaengine: shdma: Fix runtime PM imbalance on error
- i2c: cadence: allow COMPILE_TEST
- i2c: qup: allow COMPILE_TEST
- net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990
- usb: gadget: don't release an existing dev->buf
- usb: gadget: clear related members when goto fail
- ata: pata_hpt37x: fix PCI clock detection
- ALSA: intel_hdmi: Fix reference to PCM buffer address
- ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min
- xfrm: fix MTU regression
- netfilter: fix use-after-free in __nf_register_net_hook()
- xfrm: enforce validity of offload input flags
- netfilter: nf_queue: don't assume sk is full socket
- netfilter: nf_queue: fix possible use-after-free
- batman-adv: Request iflink once in batadv-on-batadv check
- batman-adv: Request iflink once in batadv_get_real_netdevice
- batman-adv: Don't expect inter-netns unique iflink indices
- net: dcb: flush lingering app table entries for unregistered devices
- net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error generated by client
- net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error cause by server
- mac80211: fix forwarded mesh frames AC & queue selection
- net: stmmac: fix return value of __setup handler
- net: sxgbe: fix return value of __setup handler
- net: arcnet: com20020: Fix null-ptr-deref in com20020pci_probe()
- efivars: Respect "block" flag in efivar_entry_set_safe()
- can: gs_usb: change active_channels's type from atomic_t to u8
- ARM: 9182/1: mmu: fix returns from early_param() and __setup() functions
- soc: fsl: qe: Check of ioremap return value
- net: chelsio: cxgb3: check the return value of pci_find_capability()
- nl80211: Handle nla_memdup failures in handle_nan_filter
- Input: elan_i2c - move regulator_[en|dis]able() out of
elan_[en|dis]able_power()
- Input: elan_i2c - fix regulator enable count imbalance after suspend/resume
- HID: add mapping for KEY_ALL_APPLICATIONS
- memfd: fix F_SEAL_WRITE after shmem huge page allocated
- net: dcb: disable softirqs in dcbnl_flush_dev()
- hamradio: fix macro redefine warning
- arm/arm64: Provide a wrapper for SMCCC 1.1 calls
- arm/arm64: smccc/psci: add arm_smccc_1_1_get_conduit()
- ARM: report Spectre v2 status through sysfs
- ARM: early traps initialisation
- ARM: use LOADADDR() to get load address of sections
- [Config] updateconfigs for HARDEN_BRANCH_HISTORY
- ARM: Spectre-BHB workaround
- ARM: include unprivileged BPF status in Spectre V2 reporting
- ARM: fix build error when BPF_SYSCALL is disabled
- ARM: fix co-processor register typo
- ARM: Do not use NOCROSSREFS directive with ld.lld
- ARM: fix build warning in proc-v7-bugs.c
- xen/xenbus: don't let xenbus_grant_ring() remove grants in error case
- xen/grant-table: add gnttab_try_end_foreign_access()
- xen/blkfront: don't use gnttab_query_foreign_access() for mapped status
- xen/netfront: don't use gnttab_query_foreign_access() for mapped status
- xen/scsifront: don't use gnttab_query_foreign_access() for mapped status
- xen/gntalloc: don't use gnttab_query_foreign_access()
- xen: remove gnttab_query_foreign_access()
- xen/9p: use alloc/free_pages_exact()
- xen/gnttab: fix gnttab_end_foreign_access() without page specified
- xen/netfront: r
|
Source diff to previous version |
1968932 |
Bionic update: upstream stable patchset 2022-04-13 |
1968340 |
ip6gre driver does not hold device reference |
1968774 |
LRMv6: add multi-architecture support |
1967013 |
Bionic update: upstream stable patchset 2022-03-29 |
CVE-2022-27223 |
In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipulated by the host f |
CVE-2022-26490 |
st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of |
CVE-2021-26401 |
LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs. |
CVE-2022-0001 |
Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable |
|
linux-kvm (4.15.0-1113.116) bionic; urgency=medium
* bionic/linux-kvm: 4.15.0-1113.116 -proposed tracker (LP: #1967416)
[ Ubuntu: 4.15.0-176.185 ]
* bionic/linux: 4.15.0-176.185 -proposed tracker (LP: #1966771)
* Bionic update: upstream stable patchset 2022-03-04 (LP: #1963717)
- can: bcm: fix UAF of bcm op
- net: bridge: clear bridge's private skb space on xmit
- s390/hypfs: include z/VM guests with access control group set
- scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP
devices
- udf: Restore i_lenAlloc when inode expansion fails
- udf: Fix NULL ptr deref when converting from inline format
- PM: wakeup: simplify the output logic of pm_show_wakelocks()
- netfilter: nft_payload: do not update layer 4 checksum when mangling
fragments
- serial: stm32: fix software flow control transfer
- tty: n_gsm: fix SW flow control encoding/handling
- tty: Add support for Brainboxes UC cards.
- usb-storage: Add unusual-devs entry for VL817 USB-SATA bridge
- usb: common: ulpi: Fix crash in ulpi_match()
- usb: gadget: f_sourcesink: Fix isoc transfer for USB_SPEED_SUPER_PLUS
- USB: core: Fix hang in usb_kill_urb by adding memory barriers
- usb: typec: tcpm: Do not disconnect while receiving VBUS off
- net: sfp: ignore disabled SFP node
- powerpc/32: Fix boot failure with GCC latent entropy plugin
- lkdtm: Fix content of section containing lkdtm_rodata_do_nothing()
- i40e: Increase delay to 1 s after global EMP reset
- i40e: fix unsigned stat widths
- rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev
- rpmsg: char: Fix race between the release of rpmsg_eptdev and cdev
- scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put()
- ipv6_tunnel: Rate limit warning messages
- net: fix information leakage in /proc/net/ptype
- ping: fix the sk_bound_dev_if match in ping_lookup
- ipv4: avoid using shared IP generator for connected sockets
- hwmon: (lm90) Reduce maximum conversion rate for G781
- NFSv4: Handle case where the lookup of a directory fails
- NFSv4: nfs_atomic_open() can race when looking up a non-regular file
- net-procfs: show net devices bound packet types
- drm/msm: Fix wrong size calculation
- drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable
- ibmvnic: don't spin in tasklet
- yam: fix a memory leak in yam_siocdevprivate()
- ipv4: raw: lock the socket in raw_bind()
- ipv4: tcp: send zero IPID in SYNACK messages
- netfilter: nat: remove l4 protocol port rovers
- netfilter: nat: limit port clash resolution attempts
- ipheth: fix EOVERFLOW in ipheth_rcvbulk_callback
- net: amd-xgbe: ensure to reset the tx_timer_active flag
- net: amd-xgbe: Fix skb data length underflow
- rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink()
- af_packet: fix data-race in packet_setsockopt / packet_setsockopt
- ASoC: ops: Reject out of bounds values in snd_soc_put_volsw()
- ASoC: ops: Reject out of bounds values in snd_soc_put_volsw_sx()
- ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx()
- drm/nouveau: fix off by one in BIOS boundary checking
- block: bio-integrity: Advance seed correctly for larger interval sizes
- RDMA/mlx4: Don't continue event handler after memory allocation failure
- iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping()
- iommu/amd: Fix loop timeout issue in iommu_ga_log_enable()
- spi: bcm-qspi: check for valid cs before applying chip select
- spi: mediatek: Avoid NULL pointer crash in interrupt
- spi: meson-spicc: add IRQ check in meson_spicc_probe
- net: ieee802154: ca8210: Stop leaking skb's
- net: ieee802154: Return meaningful error codes from the netlink helpers
- net: macsec: Verify that send_sci is on when setting Tx sci explicitly
- drm/i915/overlay: Prevent divide by zero bugs in scaling
- ASoC: fsl: Add missing error handling in pcm030_fabric_probe
- scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe
- nfsd: nfsd4_setclientid_confirm mistakenly expires confirmed client.
- selftests: futex: Use variable MAKE instead of make
- rtc: cmos: Evaluate century appropriate
- EDAC/altera: Fix deferred probing
- EDAC/xgene: Fix deferred probing
- ext4: fix error handling in ext4_restore_inline_data()
- serial: 8250: of: Fix mapped region size when using reg-offset property
- i40e: Fix issue when maximum queues is exceeded
- i40e: Fix queues reservation for XDP
- ipv6: annotate accesses to fn->fn_sernum
- ibmvnic: init ->running_cap_crqs early
* Bionic update: upstream stable patchset 2022-03-04 (LP: #1963717) // audit:
improve audit queue handling when "audit=1" on cmdline (LP: #1965723)
- audit: improve audit queue handling when "audit=1" on cmdline
* CVE-2021-43975
- atlantic: Fix OOB read and write in hw_atl_utils_fw_rpc_wait
* Packaging resync (LP: #1786013)
- [Packaging] resync dkms-build{,--nvidia-N} from LRMv5
-- Luke Nowakowski-Krijger <email address hidden> Fri, 01 Apr 2022 15:53:12 -0700
|
1963717 |
Bionic update: upstream stable patchset 2022-03-04 |
1965723 |
audit: improve audit queue handling when \ |
1786013 |
Packaging resync |
CVE-2021-43975 |
In the Linux kernel through 5.15.2, hw_atl_utils_fw_rpc_wait in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c allows an attacker (who |
|
About
-
Send Feedback to @ubuntu_updates