UbuntuUpdates.org

Package "linux-hwe-5.13-tools-host"

Name: linux-hwe-5.13-tools-host

Description:

Linux kernel VM host tools

Latest version: 5.13.0-52.59~20.04.1
Release: focal (20.04)
Level: security
Repository: main
Head package: linux-hwe-5.13

Links


Download "linux-hwe-5.13-tools-host"


Other versions of "linux-hwe-5.13-tools-host" in Focal

Repository Area Version
updates main 5.13.0-52.59~20.04.1
proposed main 5.13.0-44.49~20.04.1
PPA: Canonical Kernel Team 5.13.0-52.59~20.04.1

Changelog

Version: 5.13.0-40.45~20.04.1 2022-04-19 21:06:22 UTC

  linux-hwe-5.13 (5.13.0-40.45~20.04.1) focal; urgency=medium

  * focal/linux-hwe-5.13: 5.13.0-40.45~20.04.1 -proposed tracker (LP: #1967356)

  [ Ubuntu: 5.13.0-40.45 ]

  * impish/linux: 5.13.0-40.45 -proposed tracker (LP: #1966701)
  * CVE-2022-1016
    - netfilter: nf_tables: initialize registers in nft_do_chain()
  * CVE-2022-1015
    - netfilter: nf_tables: validate registers coming from userspace.
  * audit: improve audit queue handling when "audit=1" on cmdline
    (LP: #1965723) // Impish update: upstream stable patchset 2022-03-22
    (LP: #1966021)
    - audit: improve audit queue handling when "audit=1" on cmdline
  * PS/2 Keyboard wakeup from s2idle not functioning on AMD Yellow Carp platform
    (LP: #1961739)
    - PM: s2idle: ACPI: Fix wakeup interrupts handling
  * Low RX performance for 40G Solarflare NICs (LP: #1964512)
    - SAUCE: sfc: The size of the RX recycle ring should be more flexible
  * [UBUNTU 20.04] Fix SIGP processing on KVM/s390 (LP: #1962578)
    - KVM: s390: Simplify SIGP Set Arch handling
    - KVM: s390: Add a routine for setting userspace CPU state
  * Move virtual graphics drivers from linux-modules-extra to linux-modules
    (LP: #1960633)
    - [Packaging] Move VM DRM drivers into modules
  * Impish update: upstream stable patchset 2022-03-09 (LP: #1964422)
    - bnx2x: Utilize firmware 7.13.21.0
    - bnx2x: Invalidate fastpath HSI version for VFs
    - rcu: Tighten rcu_advance_cbs_nowake() checks
    - select: Fix indefinitely sleeping task in poll_schedule_timeout()
    - drm/amdgpu: Use correct VIEWPORT_DIMENSION for DCN2
    - arm64/bpf: Remove 128MB limit for BPF JIT programs
    - Bluetooth: refactor malicious adv data check
    - net: sfp: ignore disabled SFP node
    - net: stmmac: skip only stmmac_ptp_register when resume from suspend
    - s390/hypfs: include z/VM guests with access control group set
    - bpf: Guard against accessing NULL pt_regs in bpf_get_task_stack()
    - scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP
      devices
    - udf: Restore i_lenAlloc when inode expansion fails
    - udf: Fix NULL ptr deref when converting from inline format
    - efi: runtime: avoid EFIv2 runtime services on Apple x86 machines
    - PM: wakeup: simplify the output logic of pm_show_wakelocks()
    - tracing/histogram: Fix a potential memory leak for kstrdup()
    - tracing: Don't inc err_log entry count if entry allocation fails
    - ceph: properly put ceph_string reference after async create attempt
    - ceph: set pool_ns in new inode layout for async creates
    - fsnotify: fix fsnotify hooks in pseudo filesystems
    - Revert "KVM: SVM: avoid infinite loop on NPF from bad address"
    - perf/x86/intel/uncore: Fix CAS_COUNT_WRITE issue for ICX
    - drm/etnaviv: relax submit size limits
    - KVM: x86: Update vCPU's runtime CPUID on write to MSR_IA32_XSS
    - netfilter: nft_payload: do not update layer 4 checksum when mangling
      fragments
    - serial: 8250: of: Fix mapped region size when using reg-offset property
    - serial: stm32: fix software flow control transfer
    - tty: n_gsm: fix SW flow control encoding/handling
    - tty: Add support for Brainboxes UC cards.
    - usb-storage: Add unusual-devs entry for VL817 USB-SATA bridge
    - usb: xhci-plat: fix crash when suspend if remote wake enable
    - usb: common: ulpi: Fix crash in ulpi_match()
    - usb: gadget: f_sourcesink: Fix isoc transfer for USB_SPEED_SUPER_PLUS
    - USB: core: Fix hang in usb_kill_urb by adding memory barriers
    - usb: typec: tcpm: Do not disconnect while receiving VBUS off
    - ucsi_ccg: Check DEV_INT bit only when starting CCG4
    - jbd2: export jbd2_journal_[grab|put]_journal_head
    - ocfs2: fix a deadlock when commit trans
    - sched/membarrier: Fix membarrier-rseq fence command missing from query
      bitmask
    - x86/MCE/AMD: Allow thresholding interface updates after init
    - powerpc/32s: Allocate one 256k IBAT instead of two consecutives 128k IBATs
    - powerpc/32s: Fix kasan_init_region() for KASAN
    - powerpc/32: Fix boot failure with GCC latent entropy plugin
    - i40e: Increase delay to 1 s after global EMP reset
    - i40e: Fix issue when maximum queues is exceeded
    - i40e: Fix queues reservation for XDP
    - i40e: Fix for failed to init adminq while VF reset
    - i40e: fix unsigned stat widths
    - usb: roles: fix include/linux/usb/role.h compile issue
    - rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev
    - rpmsg: char: Fix race between the release of rpmsg_eptdev and cdev
    - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put()
    - ipv6_tunnel: Rate limit warning messages
    - net: fix information leakage in /proc/net/ptype
    - hwmon: (lm90) Mark alert as broken for MAX6646/6647/6649
    - hwmon: (lm90) Mark alert as broken for MAX6680
    - ping: fix the sk_bound_dev_if match in ping_lookup
    - ipv4: avoid using shared IP generator for connected sockets
    - hwmon: (lm90) Reduce maximum conversion rate for G781
    - NFSv4: Handle case where the lookup of a directory fails
    - NFSv4: nfs_atomic_open() can race when looking up a non-regular file
    - net-procfs: show net devices bound packet types
    - drm/msm: Fix wrong size calculation
    - drm/msm/dsi: Fix missing put_device() call in dsi_get_phy
    - drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable
    - ipv6: annotate accesses to fn->fn_sernum
    - NFS: Ensure the server has an up to date ctime before hardlinking
    - NFS: Ensure the server has an up to date ctime before renaming
    - powerpc64/bpf: Limit 'ldbrx' to processors compliant with ISA v2.06
    - netfilter: conntrack: don't increment invalid counter on NF_REPEAT
    - perf: Fix perf_event_read_local() time
    - sched/pelt: Relax the sync of util_sum with util_avg
    - net: phy: broadcom: hook up soft_reset for BCM54616S
    - phylib: fix potential use-after-free
    - octeontx2-pf: Forward

Source diff to previous version
1965723 audit: improve audit queue handling when \
1966021 Impish update: upstream stable patchset 2022-03-22
1961739 PS/2 Keyboard wakeup from s2idle not functioning on AMD Yellow Carp platform
1964512 Low RX performance for 40G Solarflare NICs
1962578 [UBUNTU 20.04] Fix SIGP processing on KVM/s390
1960633 Move virtual graphics drivers from linux-modules-extra to linux-modules
1964422 Impish update: upstream stable patchset 2022-03-09
1962230 Impish update: upstream stable patchset 2022-02-24
1786013 Packaging resync

Version: 5.13.0-39.44~20.04.1 2022-03-30 11:06:29 UTC

  linux-hwe-5.13 (5.13.0-39.44~20.04.1) focal; urgency=medium

  * focal/linux-hwe-5.13: 5.13.0-39.44~20.04.1 -proposed tracker (LP: #1966235)

  [ Ubuntu: 5.13.0-39.44 ]

  * impish/linux: 5.13.0-39.44 -proposed tracker (LP: #1966236)
  * CVE-2022-27666
    - sock: remove one redundant SKB_FRAG_PAGE_ORDER macro
    - esp: Fix possible buffer overflow in ESP transformation
  * CVE-2022-1055
    - net: sched: fix use-after-free in tc_new_tfilter()

 -- Stefan Bader <email address hidden> Thu, 24 Mar 2022 17:27:20 +0100

Source diff to previous version
CVE-2022-27666 In the Linux kernel before 5.16.15, there is a buffer overflow in ESP transformation in net/ipv4/esp4.c and net/ipv6/esp6.c via a large message.
CVE-2022-1055 RESERVED

Version: 5.13.0-37.42~20.04.1 2022-03-22 00:07:13 UTC

  linux-hwe-5.13 (5.13.0-37.42~20.04.1) focal; urgency=medium

  * focal/linux-hwe-5.13: 5.13.0-37.42~20.04.1 -proposed tracker (LP: #1964958)

  [ Ubuntu: 5.13.0-37.42 ]

  * impish/linux: 5.13.0-37.42 -proposed tracker (LP: #1964959)
  * CVE-2022-0742
    - ipv6: fix skb drops in igmp6_event_query() and igmp6_event_report()

Source diff to previous version
CVE-2022-0742 ipv6: fix skb drops in igmp6_event_query() and igmp6_event_report()

Version: 5.13.0-35.40~20.04.1 2022-03-08 23:07:01 UTC

  linux-hwe-5.13 (5.13.0-35.40~20.04.1) focal; urgency=medium

  [ Ubuntu: 5.13.0-35.40 ]

  * CVE-2022-0847
    - lib/iov_iter: initialize "flags" in new pipe_buffer

Source diff to previous version
CVE-2022-0847 A flaw was found in the way the "flags" member of the new pipe buffer ...

Version: 5.13.0-30.33~20.04.1 2022-02-17 16:06:24 UTC

  linux-hwe-5.13 (5.13.0-30.33~20.04.1) focal; urgency=medium

  * focal/linux-hwe-5.13: 5.13.0-30.33~20.04.1 -proposed tracker (LP: #1960053)

  [ Ubuntu: 5.13.0-30.33 ]

  * impish/linux: 5.13.0-30.33 -proposed tracker (LP: #1960055)
  * systemd/248.3-1ubuntu8.2 ADT test failure with linux/5.13.0-29.32
    (LP: #1960034)
    - Revert "block: avoid to quiesce queue in elevator_init_mq"
    - Revert "blk-mq: cancel blk-mq dispatch work in both blk_cleanup_queue and
      disk_release()"

1960034 systemd/248.3-1ubuntu8.2 ADT test failure with linux/5.13.0-29.32



About   -   Send Feedback to @ubuntu_updates