UbuntuUpdates.org

Package "linux-oem-5.17"

Name: linux-oem-5.17

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Linux kernel buildinfo for version 5.17.0 on 64 bit x86 SMP
  • Linux kernel buildinfo for version 5.17.0 on 64 bit x86 SMP
  • Linux kernel buildinfo for version 5.17.0 on 64 bit x86 SMP
  • Linux kernel buildinfo for version 5.17.0 on 64 bit x86 SMP

Latest version: 5.17.0-1015.16
Release: jammy (22.04)
Level: security
Repository: main

Links



Other versions of "linux-oem-5.17" in Jammy

Repository Area Version
updates main 5.17.0-1015.16
proposed main 5.17.0-1005.5
PPA: Canonical Kernel Team 5.17.0-1014.15

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.17.0-1015.16 2022-08-10 11:06:40 UTC

  linux-oem-5.17 (5.17.0-1015.16) jammy; urgency=medium

  [ Ubuntu: 5.17.0-8.8~22.04.7 ]

  * Packaging resync (LP: #1786013)
    - [Packaging] Update etc/getabis
    - [Config]: annotate CONFIG_NET_DSA_REALTEK_SMI as '-' on amd64
    - [Config]: Remove CONFIG_IMA_TEMPLATE from annotations
    - [Packaging] update update.conf
  * CVE-2022-2585
    - SAUCE: posix-cpu-timers: Cleanup CPU timers before freeing them during exec
  * CVE-2022-2586
    - SAUCE: netfilter: nf_tables: do not allow SET_ID to refer to another table
    - SAUCE: netfilter: nf_tables: do not allow CHAIN_ID to refer to another table
    - SAUCE: netfilter: nf_tables: do not allow RULE_ID to refer to another chain
  * CVE-2022-2588
    - SAUCE: net_sched: cls_route: remove from list when handle is 0
  * CVE-2022-1679
    - SAUCE: ath9k: fix use-after-free in ath9k_hif_usb_rx_cb
  * CVE-2022-34918
    - netfilter: nf_tables: stricter validation of element data

 -- Luke Nowakowski-Krijger <email address hidden> Mon, 08 Aug 2022 11:34:07 -0700

Source diff to previous version
1786013 Packaging resync
CVE-2022-1679 A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function
CVE-2022-34918 An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by

Version: 5.17.0-1014.15 2022-08-01 18:07:16 UTC

  linux-oem-5.17 (5.17.0-1014.15) jammy; urgency=medium

  * jammy/linux-oem-5.17: 5.17.0-1014.15 -proposed tracker (LP: #1981244)

  * Clear PCI errors left from BIOS (LP: #1981173)
    - PCI: Clear PCI_STATUS when setting up device

  * intel_iommu: Fix enable intel_iommu, Ubuntu 22.04 installation crashes
    (LP: #1982104)
    - iommu/vt-d: Fix RID2PASID setup/teardown failure

  * Failed to resume from S3 blocked by atlantic driver[1d6a:94c0]
    (LP: #1981950)
    - net: atlantic: remove deep parameter on suspend/resume functions
    - net: atlantic: remove aq_nic_deinit() when resume

  * Make cm32181 sensor work after system suspend (LP: #1981773)
    - iio: light: cm32181: Add PM support

  * alsa: asoc: amd: the internal mic can't be dedected on yellow carp machines
    (LP: #1980700)
    - ASoC: amd: Add support for enabling DMIC on acp6x via _DSD

  * CVE-2022-34918
    - netfilter: nf_tables: stricter validation of element data

  * System freeze after resuming from suspend due to PCI ASPM settings
    (LP: #1980829)
    - PCI/ASPM: Save/restore L1SS Capability for suspend/resume
    - PCI:ASPM: Remove pcie_aspm_pm_state_change()

 -- Chia-Lin Kao (AceLan) <email address hidden> Tue, 19 Jul 2022 22:07:45 +0800

Source diff to previous version
CVE-2022-34918 An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by

Version: 5.17.0-1013.14 2022-07-18 16:06:28 UTC

  linux-oem-5.17 (5.17.0-1013.14) jammy; urgency=medium

  * jammy/linux-oem-5.17: 5.17.0-1013.14 -proposed tracker (LP: #1979417)

  * Fix AMDGPU probe failure (LP: #1980374)
    - drm/amdgpu: enable amdgpu_dc module parameter

  * Enable WiFi hotspot feature for MediaTek MT7921 (LP: #1979173)
    - mt76: mt7921: Add AP mode support
    - SAUCE: mt76: mt7921: not support beacon offload disable command
    - SAUCE: mt76: mt7921: fix command timeout in AP stop period

  * Suppress harmless warning from hp-wmi (LP: #1980307)
    - platform/x86: hp-wmi: Ignore Sanitization Mode event

  * CVE-2022-1679
    - SAUCE: ath9k: fix use-after-free in ath9k_hif_usb_rx_cb

  * Fix WD22TB4 suspend and resume, two external monitor can not output
    (LP: #1979267)
    - drm/dp/mst: Read the extended DPCD capabilities during system resume

  * Intel iwlwifi AX211: WRT: Failed to set DRAM buffer for alloc id 1, ret=-1
    (LP: #1979182)
    - iwlwifi: yoyo: fix DBGC allocation flow
    - iwlwifi: dbg-tlv: clean up iwl_dbg_tlv_update_drams()

  * CVE-2022-21123 // CVE-2022-21125 // CVE-2022-21166
    - Documentation: Add documentation for Processor MMIO Stale Data
    - x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug
    - x86/speculation: Add a common function for MD_CLEAR mitigation update
    - x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data
    - x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations
    - x86/speculation/mmio: Enable CPU Fill buffer clearing on idle
    - x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data
    - x86/speculation/srbds: Update SRBDS mitigation selection
    - x86/speculation/mmio: Reuse SRBDS mitigation for SBDS
    - KVM: x86/speculation: Disable Fill buffer clear within guests
    - x86/speculation/mmio: Print SMT warning

  * Add support for Raptor Lake (LP: #1978794)
    - x86/cpu: Add new Alderlake and Raptorlake CPU model numbers
    - powercap: intel_rapl: add support for RaptorLake
    - perf/x86: Add new Alder Lake and Raptor Lake support
    - perf/x86/msr: Add new Alder Lake and Raptor Lake support
    - perf/x86/cstate: Add new Alder Lake and Raptor Lake support
    - perf/x86/uncore: Clean up uncore_pci_ids[]
    - perf/x86/uncore: Add new Alder Lake and Raptor Lake support
    - i2c: i801: Add support for Intel Raptor Lake PCH-S
    - spi: pxa2xx: Add support for Intel Raptor Lake PCH-S
    - pinctrl: alderlake: Add Raptor Lake-S ACPI ID
    - mfd: intel-lpss: Add Intel Raptor Lake PCH-S PCI IDs
    - HID: intel-ish-hid: ipc: add ADL and RPL device id
    - spi: intel: Add support for Raptor Lake-S SPI serial flash

  * Miscellaneous Ubuntu changes
    - [Config] Adjust annotation
    - [Config] Update config after rebase

  [ Ubuntu: 5.17.0-8.8~22.04.6 ]

  * jammy/linux-hwe-5.17: 5.17.0-8.8~22.04.6 -proposed tracker (LP: #1980479)
  * Jammy update: v5.17.15 upstream stable release (LP: #1980389)
    - pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards
    - staging: greybus: codecs: fix type confusion of list iterator variable
    - iio: adc: ad7124: Remove shift from scan_type
    - lkdtm/bugs: Check for the NULL pointer after calling kmalloc
    - lkdtm/bugs: Don't expect thread termination without CONFIG_UBSAN_TRAP
    - tty: goldfish: Use tty_port_destroy() to destroy port
    - tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe
    - tty: n_tty: Restore EOF push handling behavior
    - serial: 8250_aspeed_vuart: Fix potential NULL dereference in
      aspeed_vuart_probe
    - tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id
      and ida_simple_get
    - remoteproc: imx_rproc: Ignore create mem entry for resource table
    - phy: rockchip-inno-usb2: Fix muxed interrupt support
    - usb: usbip: fix a refcount leak in stub_probe()
    - usb: usbip: add missing device lock on tweak configuration cmd
    - USB: storage: karma: fix rio_karma_init return
    - usb: musb: Fix missing of_node_put() in omap2430_probe
    - staging: fieldbus: Fix the error handling path in
      anybuss_host_common_probe()
    - pwm: lp3943: Fix duty calculation in case period was clamped
    - pwm: raspberrypi-poe: Fix endianness in firmware struct
    - rpmsg: qcom_smd: Fix irq_of_parse_and_map() return value
    - usb: dwc3: gadget: Replace list_for_each_entry_safe() if using giveback
    - usb: dwc3: pci: Fix pm_runtime_get_sync() error checking
    - scripts/get_abi: Fix wrong script file name in the help message
    - misc: fastrpc: fix an incorrect NULL check on list iterator
    - firmware: stratix10-svc: fix a missing check on list iterator
    - usb: typec: mux: Check dev_set_name() return value
    - rpmsg: virtio: Fix possible double free in rpmsg_probe()
    - rpmsg: virtio: Fix possible double free in rpmsg_virtio_add_ctrl_dev()
    - rpmsg: virtio: Fix the unregistration of the device rpmsg_ctrl
    - iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check
    - iio: proximity: vl53l0x: Fix return value check of
      wait_for_completion_timeout
    - iio: adc: sc27xx: fix read big scale voltage not right
    - iio: adc: sc27xx: Fine tune the scale calibration values
    - rpmsg: qcom_smd: Fix returning 0 if irq_of_parse_and_map() fails
    - misc/pvpanic: Convert regular spinlock into trylock on panic path
    - phy: qcom-qmp: fix pipe-clock imbalance on power-on failure
    - power: supply: axp288_fuel_gauge: Drop BIOS version check from "T3 MRD" DMI
      quirk
    - power: supply: ab8500_fg: Allocate wq in probe
    - serial: sifive: Report actual baud base rather than fixed 115200
    - export: fix string handling of namespace in EXPORT_SYMBOL_NS
    - watchdog: rzg2l_wdt: Fix 32bit overflow issue
    - watchdog: rzg2l_wdt: Fix Runtime PM usage
    - watchdog: rzg2l_wdt: Fix 'BUG: Invalid wait context'
    - watchdog: rzg2l_wdt: Fix reset control imbalance
    - soundwire: intel: prevent pm_runtime resume prior to system suspe

Source diff to previous version
1980374 Fix AMDGPU probe failure
1979182 Intel iwlwifi AX211: WRT: Failed to set DRAM buffer for alloc id 1, ret=-1
1978794 Add support for Raptor Lake
1980389 Jammy update: v5.17.15 upstream stable release
1980388 Jammy update: v5.17.14 upstream stable release
1786013 Packaging resync
1977721 Jammy update: v5.17.13 upstream stable release
1976470 Jammy update: v5.17.12 upstream stable release
1975808 Jammy update: v5.17.11 upstream stable release
1975807 Jammy update: v5.17.10 upstream stable release
CVE-2022-1679 A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function
CVE-2022-21123 Incomplete cleanup of multi-core shared buffers for some Intel(R) Proc ...
CVE-2022-21125 Incomplete cleanup of microarchitectural fill buffers on some Intel(R) ...
CVE-2022-21166 Incomplete cleanup in specific special register write operations for s ...

Version: 5.17.0-1012.13 2022-06-30 22:06:24 UTC

  linux-oem-5.17 (5.17.0-1012.13) jammy; urgency=medium

  * jammy/linux-oem-5.17: 5.17.0-1012.13 -proposed tracker (LP: #1978578)

  * [SRU][OEM-5.14/OEM-5.17][PATCH 0/1] Fix oled brightness set above frame-
    average luminance on AMD (LP: #1978986)
    - SAUCE: drm/amd/display: Cap OLED brightness per max frame-average luminance

  * Fix headset mic no sound on an HP desktop (LP: #1978925)
    - ALSA: hda/realtek - ALC897 headset MIC no sound

  * [SRU][Jammy/OEM-5.17][PATCH 0/1] Fix calltrace in mac80211 (LP: #1978297)
    - mac80211: fix struct ieee80211_tx_info size

  * pl2303 serial adapter not recognized (LP: #1967493)
    - USB: serial: pl2303: fix type detection for odd device

  * Fix can't boot up after change to vmd (LP: #1976587)
    - PCI: vmd: Assign VMD IRQ domain before enumeration
    - PCI: vmd: Revert 2565e5b69c44 ("PCI: vmd: Do not disable MSI-X remapping if
      interrupt remapping is enabled by IOMMU.")

  * Power cycle USB ports on shutdown/reboot (LP: #1976503)
    - SAUCE: xhci: turn off port power in shutdown

  * Fix sub-optimal I210 network speed (LP: #1976438)
    - SAUCE: igb: Make DMA faster when CPU is active on the PCIe link

  * Remove SAUCE patches from test_vxlan_under_vrf.sh in net of
    ubuntu_kernel_selftests (LP: #1975691)
    - Revert "UBUNTU: SAUCE: selftests: net: Don't fail test_vxlan_under_vrf on
      xfail"
    - Revert "UBUNTU: SAUCE: selftests: net: Make test for VXLAN underlay in non-
      default VRF an expected failure"

  * [SRU][OEM-5.14/OEM-5.17/Jammy][PATCH 0/1] Fix i915 calltrace on new ADL BIOS
    (LP: #1976214)
    - drm/i915: update new TMDS clock setting defined by VBT

  * [SRU][OEM-5.14/OEM-5.17/J][PATCH 0/2] Fix system hangs after s2idle on AMD
    A+A GPU (LP: #1975804)
    - drm/amd: Don't reset dGPUs if the system is going to s2idle

  * [SRU][OEM-5.14/OEM-5.17/J][PATCH 0/1] Read the discovery registers for
    AMD_SFH (LP: #1975798)
    - HID: amd_sfh: Add support for sensor discovery

 -- Chia-Lin Kao (AceLan) <email address hidden> Fri, 17 Jun 2022 15:36:34 +0800

Source diff to previous version
1978986 [SRU][OEM-5.14/OEM-5.17][PATCH 0/1] Fix oled brightness set above frame-average luminance on AMD
1978297 [SRU][Jammy/OEM-5.17][PATCH 0/1] Fix calltrace in mac80211
1976214 [SRU][OEM-5.14/OEM-5.17/Jammy][PATCH 0/1] Fix i915 calltrace on new ADL BIOS
1975804 [SRU][OEM-5.14/OEM-5.17/J][PATCH 0/2] Fix system hangs after s2idle on AMD A+A GPU
1975798 [SRU][OEM-5.14/OEM-5.17/J][PATCH 0/1] Read the discovery registers for AMD_SFH

Version: 5.17.0-1011.12 2022-06-08 11:06:36 UTC

  linux-oem-5.17 (5.17.0-1011.12) jammy; urgency=medium

  * CVE-2022-1972
    - netfilter: nf_tables: sanitize nft_set_desc_concat_parse()

  * CVE-2022-1966
    - netfilter: nf_tables: disallow non-stateful expression in sets earlier

 -- Thadeu Lima de Souza Cascardo <email address hidden> Fri, 03 Jun 2022 14:17:23 -0300

CVE-2022-1966 A use-after-free vulnerability was found in the Linux kernel's Netfilt ...



About   -   Send Feedback to @ubuntu_updates