UbuntuUpdates.org

Package "linux-kvm"


Moved to cosmic:main:security


Name: linux-kvm

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Header files related to Linux kernel version 4.18.0
  • Header files related to Linux kernel version 4.18.0
  • Header files related to Linux kernel version 4.18.0
  • Header files related to Linux kernel version 4.18.0

Latest version: *DELETED*
Release: cosmic (18.10)
Level: proposed
Repository: main

Links

Save this URL for the latest version of "linux-kvm": https://www.ubuntuupdates.org/linux-kvm



Other versions of "linux-kvm" in Cosmic

Repository Area Version
base main 4.18.0-1003.3
security main 4.18.0-1016.17
updates main 4.18.0-1016.17
PPA: Canonical Kernel Team 4.18.0-1017.18

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: *DELETED* 2019-07-01 11:07:14 UTC
Moved to cosmic:main:security
No changelog for deleted or moved packages.

Version: 4.18.0-1016.17 2019-06-25 18:06:51 UTC

  linux-kvm (4.18.0-1016.17) cosmic; urgency=medium

  * linux-kvm: 4.18.0-1016.17 -proposed tracker (LP: #1833949)

  [ Ubuntu: 4.18.0-25.26 ]

  * linux: 4.18.0-25.26 -proposed tracker (LP: #1833952)
  * CVE-2019-11479
    - SAUCE: tcp: add tcp_min_snd_mss sysctl
    - SAUCE: tcp: enforce tcp_min_snd_mss in tcp_mtu_probing()
  * Remote denial of service (resource exhaustion) caused by TCP SACK scoreboard
    manipulation (LP: #1831638) // CVE-2019-11478
    - tcp: refine memory limit test in tcp_fragment()

  [ Ubuntu: 4.18.0-24.25 ]

  * CVE-2019-12817
    - SAUCE: powerpc/mm/64s/hash: Reallocate context ids on fork

 -- Kleber Sacilotto de Souza <email address hidden> Tue, 25 Jun 2019 14:42:04 +0200

Source diff to previous version
1831638 Remote denial of service (resource exhaustion) caused by TCP SACK scoreboard manipulation
CVE-2019-11479 Jonathan Looney discovered that the Linux kernel default MSS is hard-c ...
CVE-2019-11478 Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling cer
CVE-2019-12817 RESERVED

Version: 4.18.0-1015.15 2019-06-18 14:06:18 UTC

  linux-kvm (4.18.0-1015.15) cosmic; urgency=medium

  * linux-kvm: 4.18.0-1015.15 -proposed tracker (LP: #1832506)

  * test_410_config_lock_down_kernel in ubuntu_kernel_security test failed on
    B/C/D KVM (LP: #1811981)
    - [Config]: enable CONFIG_LOCK_DOWN_KERNEL

  [ Ubuntu: 4.18.0-23.24 ]

  * linux: 4.18.0-23.24 -proposed tracker (LP: #1832508)
  * CVE-2019-11479
    - SAUCE: tcp: add tcp_min_snd_mss sysctl
    - SAUCE: tcp: enforce tcp_min_snd_mss in tcp_mtu_probing()
  * CVE-2019-11884
    - Bluetooth: hidp: fix buffer overflow
  * af_alg06 test from crypto test suite in LTP failed with kernel oops on B/C
    (LP: #1829725)
    - crypto: authenc - fix parsing key with misaligned rta_len
  * Address performance issue w/ GICv4-based guests (LP: #1829942)
    - arm64: KVM: Always set ICH_HCR_EL2.EN if GICv4 is enabled
  * CVE-2018-12126 // CVE-2018-12127 // CVE-2018-12130 // CVE-2019-11091
    - SAUCE: Synchronize MDS mitigations with upstream
    - Documentation: Correct the possible MDS sysfs values
    - x86/speculation/mds: Fix documentation typo
  * CVE-2019-11091
    - x86/mds: Add MDSUM variant to the MDS documentation
  * CVE-2019-11085
    - drm/i915/gvt: Fix mmap range check
  * alignment test in powerpc from ubuntu_kernel_selftests failed on B/C Power9
    (LP: #1813118)
    - selftests/powerpc: Remove Power9 copy_unaligned test
  * TRACE_syscall.ptrace_syscall_dropped in seccomp from ubuntu_kernel_selftests
    failed on B/C PowerPC (LP: #1812796)
    - selftests/seccomp: Enhance per-arch ptrace syscall skip tests
  * Eletrical noise occurred when external headset enter powersaving mode on a
    DEll machine (LP: #1828798)
    - ALSA: hda/realtek - Reduce click noise on Dell Precision 5820 headphone
    - ALSA: hda/realtek - Fixup headphone noise via runtime suspend
  * [18.04/18.10] File libperf-jvmti.so is missing in linux-tools-common deb on
    Ubuntu (LP: #1761379)
    - [Packaging] Support building libperf-jvmti.so
  * TCP : race condition on socket ownership in tcp_close() (LP: #1830813)
    - tcp: do not release socket ownership in tcp_close()
  * ethtool identify command doesn't blink LED on Hi1620 NICs (LP: #1829306)
    - net: phy: marvell: add new default led configure for m88e151x
  * Add support to Comet Lake LPSS (LP: #1830175)
    - mfd: intel-lpss: Add Intel Comet Lake PCI IDs
  * Reduce NAPI weight in hns driver from 256 to 64 (LP: #1830587)
    - net: hns: Use NAPI_POLL_WEIGHT for hns driver

 -- Andrea Righi <email address hidden> Tue, 18 Jun 2019 10:40:13 +0200

Source diff to previous version
1811981 test_410_config_lock_down_kernel in ubuntu_kernel_security test failed on B/C/D KVM
1829725 af_alg06 test from crypto test suite in LTP failed with kernel oops on B/C
1829942 Address performance issue w/ GICv4-based guests
1813118 alignment test in powerpc from ubuntu_kernel_selftests failed on B/C Power9
1812796 TRACE_syscall.ptrace_syscall_dropped in seccomp from ubuntu_kernel_selftests failed on B/C PowerPC
1828798 Eletrical noise occurred when external headset enter powersaving mode on a DEll machine
1761379 [18.04/18.10] File libperf-jvmti.so is missing in linux-tools-common deb on Ubuntu
1830813 TCP : race condition on socket ownership in tcp_close()
1829306 ethtool identify command doesn't blink LED on Hi1620 NICs
1830175 Add support to Comet Lake LPSS
1830587 Reduce NAPI weight in hns driver from 256 to 64
CVE-2019-11884 The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive in
CVE-2018-12126 MSBDS Microarchitectural Store Buffer Data Sampling
CVE-2018-12127 MLPDS Microarchitectural Load Port Data Sampling
CVE-2018-12130 MFBDS Microarchitectural Fill Buffer Data Sampling
CVE-2019-11091 MDSUM Microarchitectural Data Sampling Uncacheable Memory
CVE-2019-11085 Insufficient input validation in Kernel Mode Driver in Intel(R) i915 Graphics for Linux before version 5.0 may allow an authenticated user to potenti

Version: 4.18.0-1014.14 2019-06-17 18:06:27 UTC

  linux-kvm (4.18.0-1014.14) cosmic; urgency=medium

  [ Ubuntu: 4.18.0-22.23 ]

  * Remote denial of service (resource exhaustion) caused by TCP SACK scoreboard
    manipulation (LP: #1831638)
    - SAUCE: tcp: tcp_fragment() should apply sane memory limits
  * Remote denial of service (system crash) caused by integer overflow in TCP
    SACK handling (LP: #1831637)
    - SAUCE: tcp: limit payload size of sacked skbs

 -- Marcelo Henrique Cerri <email address hidden> Wed, 05 Jun 2019 14:05:39 -0300


Version: *DELETED* 2019-06-06 13:09:01 UTC
Moved to cosmic:main:security
No changelog for deleted or moved packages.



About   -   Send Feedback to @ubuntu_updates