UbuntuUpdates.org

Package "linux-aws"

Name: linux-aws

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Linux kernel version specific cloud tools for version 4.4.0
  • Header files related to Linux kernel version 4.4.0
  • Header files related to Linux kernel version 4.4.0
  • Header files related to Linux kernel version 4.4.0

Latest version: 4.4.0-1128.142
Release: xenial (16.04)
Level: security
Repository: main

Links



Other versions of "linux-aws" in Xenial

Repository Area Version
security universe 4.4.0-1012.21
updates universe 4.4.0-1012.21
updates main 4.4.0-1128.142
proposed main 4.4.0-1128.142

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 4.4.0-1128.142 2021-04-20 12:06:45 UTC

  linux-aws (4.4.0-1128.142) xenial; urgency=medium

  * xenial/linux-aws: 4.4.0-1128.142 -proposed tracker (LP: #1924632)

  [ Ubuntu: 4.4.0-210.242 ]

  * xenial/linux: 4.4.0-210.242 -proposed tracker (LP: #1924644)
  * setting extended attribute may cause memory leak (LP: #1924611)
    - SAUCE: vfs_setxattr: free converted value if xattr_permission returns error

 -- Stefan Bader <email address hidden> Fri, 16 Apr 2021 14:22:41 +0200

Source diff to previous version

Version: 4.4.0-1127.141 2021-04-15 22:06:22 UTC

  linux-aws (4.4.0-1127.141) xenial; urgency=medium

  [ Ubuntu: 4.4.0-209.241 ]

  * overlayfs calls vfs_setxattr without cap_convert_nscap
    - vfs: move cap_convert_nscap() call into vfs_setxattr()
  * CVE-2021-29154
    - SAUCE: bpf, x86: Validate computation of branch displacements for x86-64

 -- Marcelo Henrique Cerri <email address hidden> Tue, 13 Apr 2021 09:49:10 -0300

Source diff to previous version
CVE-2021-29154 BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect c ...

Version: 4.4.0-1126.140 2021-04-13 16:06:24 UTC

  linux-aws (4.4.0-1126.140) xenial; urgency=medium

  * xenial/linux-aws: 4.4.0-1126.140 -proposed tracker (LP: #1922058)

  [ Ubuntu: 4.4.0-208.240 ]

  * xenial/linux: 4.4.0-208.240 -proposed tracker (LP: #1922069)
  * linux ADT test failure with linux/4.4.0-207.239 -
    ubuntu_qrt_kernel_security.test-kernel-security.py (LP: #1922200) //
    CVE-2018-5953 // CVE-2018-5995 // CVE-2018-7754
    - SAUCE: Revert "printk: hash addresses printed with %p"
  * lxd 2.0.11-0ubuntu1~16.04.4 ADT test failure with linux 4.4.0-207.239
    (LP: #1921969)
    - SAUCE: Fix fuse regression in 4.4.0-207.239

 -- Tim Gardner <email address hidden> Thu, 01 Apr 2021 12:51:34 -0600

Source diff to previous version
1922200 linux ADT test failure with linux/4.4.0-207.239 - ubuntu_qrt_kernel_security.test-kernel-security.py
1921969 lxd 2.0.11-0ubuntu1~16.04.4 ADT test failure with linux 4.4.0-207.239
CVE-2018-5953 The swiotlb_print_info function in lib/swiotlb.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by re
CVE-2018-5995 The pcpu_embed_first_chunk function in mm/percpu.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by
CVE-2018-7754 The aoedisk_debugfs_show function in drivers/block/aoe/aoeblk.c in the Linux kernel through 4.16.4rc4 allows local users to obtain sensitive address

Version: 4.4.0-1124.138 2021-03-19 20:06:18 UTC

  linux-aws (4.4.0-1124.138) xenial; urgency=medium

  * xenial/linux-aws: 4.4.0-1124.138 -proposed tracker (LP: #1919231)

  [ Ubuntu: 4.4.0-206.238 ]

  * xenial/linux: 4.4.0-206.238 -proposed tracker (LP: #1919242)
  * CVE-2021-27365
    - sysfs: Add sysfs_emit and sysfs_emit_at to format sysfs output
    - scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE
    - scsi: iscsi: Verify lengths on passthrough PDUs
  * CVE-2021-27363 // CVE-2021-27364
    - scsi: iscsi: Restrict sessions and handles to admin capabilities

 -- Marcelo Henrique Cerri <email address hidden> Tue, 16 Mar 2021 17:05:08 -0300

Source diff to previous version
CVE-2021-27365 An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and c
CVE-2021-27363 An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsi_transport structu
CVE-2021-27364 An issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/scsi_transport_iscsi.c is adversely affected by the ability of an unprivileg

Version: 4.4.0-1123.137 2021-03-15 20:06:18 UTC

  linux-aws (4.4.0-1123.137) xenial; urgency=medium

  * xenial/linux-aws: 4.4.0-1123.137 -proposed tracker (LP: #1916211)

  * Xenial update: v4.4.254 upstream stable release (LP: #1914648)
    - [Config] aws: updateconfigs for USB_BDC_PCI
    - [Config] aws: updateconfigs for USB_BDC_PCI

  [ Ubuntu: 4.4.0-204.236 ]

  * xenial/linux: 4.4.0-204.236 -proposed tracker (LP: #1916222)
  * Xenial update: v4.4.254 upstream stable release (LP: #1914648)
    - ALSA: seq: oss: Fix missing error check in snd_seq_oss_synth_make_info()
    - ALSA: hda/via: Add minimum mute flag
    - ACPI: scan: Make acpi_bus_get_device() clear return pointer on error
    - dm: avoid filesystem lookup in dm_get_dev_t()
    - ASoC: Intel: haswell: Add missing pm_ops
    - scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback
    - drm/nouveau/bios: fix issue shadowing expansion ROMs
    - drm/nouveau/i2c/gm200: increase width of aux semaphore owner fields
    - can: dev: can_restart: fix use after free bug
    - iio: ad5504: Fix setting power-down state
    - ehci: fix EHCI host controller initialization sequence
    - usb: bdc: Make bdc pci driver depend on BROKEN
    - [Config] updateconfigs for USB_BDC_PCI
    - xhci: make sure TRB is fully written before giving it to the controller
    - compiler.h: Raise minimum version of GCC to 5.1 for arm64
    - netfilter: rpfilter: mask ecn bits before fib lookup
    - sh: dma: fix kconfig dependency for G2_DMA
    - sh_eth: Fix power down vs. is_opened flag ordering
    - skbuff: back tiny skbs with kmalloc() in __netdev_alloc_skb() too
    - ipv6: create multicast route with RTPROT_KERNEL
    - net_sched: avoid shift-out-of-bounds in tcindex_set_parms()
    - Revert "mm/slub: fix a memory leak in sysfs_slab_add()"
    - tracing: Fix race in trace_open and buffer resize call
    - xen-blkback: set ring->xenblkd to NULL after kthread_stop()
    - x86/boot/compressed: Disable relocation relaxation
    - Linux 4.4.254
  * Xenial update: v4.4.253 upstream stable release (LP: #1914647)
    - ASoC: dapm: remove widget from dirty list on free
    - mm/hugetlb: fix potential missing huge page size info
    - ext4: fix bug for rename with RENAME_WHITEOUT
    - ARC: build: add boot_targets to PHONY
    - ethernet: ucc_geth: fix definition and size of ucc_geth_tx_global_pram
    - arch/arc: add copy_user_page() to <asm/page.h> to fix build error on ARC
    - misdn: dsp: select CONFIG_BITREVERSE
    - net: ethernet: fs_enet: Add missing MODULE_LICENSE
    - ACPI: scan: add stub acpi_create_platform_device() for !CONFIG_ACPI
    - ARM: picoxcell: fix missing interrupt-parent properties
    - Input: uinput - avoid FF flush when destroying device
    - dump_common_audit_data(): fix racy accesses to ->d_name
    - NFS: nfs_igrab_and_active must first reference the superblock
    - ext4: fix superblock checksum failure when setting password salt
    - RDMA/usnic: Fix memleak in find_free_vf_and_create_qp_grp
    - mm, slub: consider rest of partial list if acquire_slab() fails
    - net: sunrpc: interpret the return value of kstrtou32 correctly
    - usb: ohci: Make distrust_firmware param default to false
    - iio: buffer: Fix demux update
    - nfsd4: readdirplus shouldn't return parent of export
    - net: cdc_ncm: correct overhead in delayed_ndp_size
    - netxen_nic: fix MSI/MSI-x interrupts
    - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request
    - net: dcb: Validate netlink message in DCB handler
    - net: dcb: Accept RTM_GETDCB messages carrying set-like DCB commands
    - net: sit: unregister_netdevice on newlink's error path
    - rxrpc: Fix handling of an unsupported token type in rxrpc_read()
    - net: avoid 32 x truesize under-estimation for tiny skbs
    - spi: cadence: cache reference clock rate during probe
    - Linux 4.4.253
  * Xenial update: v4.4.252 upstream stable release (LP: #1913479)
    - Revert "UBUNTU: SAUCE: target: fix XCOPY NAA identifier lookup"
    - target: add XCOPY target/segment desc sense codes
    - target: bounds check XCOPY segment descriptor list
    - target: use XCOPY segment descriptor CSCD IDs
    - xcopy: loop over devices using idr helper
    - scsi: target: Fix XCOPY NAA identifier lookup
    - powerpc: Fix incorrect stw{, ux, u, x} instructions in __set_pte_at
    - net: ip: always refragment ip defragmented packets
    - net: fix pmtu check in nopmtudisc mode
    - vmlinux.lds.h: Add PGO and AutoFDO input sections
    - ubifs: wbuf: Don't leak kernel memory to flash
    - spi: pxa2xx: Fix use-after-free on unbind
    - cpufreq: powernow-k8: pass policy rather than use cpufreq_cpu_get()
    - wil6210: select CONFIG_CRC32
    - block: rsxx: select CONFIG_CRC32
    - iommu/intel: Fix memleak in intel_irq_remapping_alloc
    - block: fix use-after-free in disk_part_iter_next
    - net: drop bogus skb with CHECKSUM_PARTIAL and offset beyond end of trimmed
      packet
    - Linux 4.4.252
  * Xenial update: v4.4.251 upstream stable release (LP: #1913478)
    - kbuild: don't hardcode depmod path
    - workqueue: Kick a worker based on the actual activation of delayed works
    - lib/genalloc: fix the overflow when size is too big
    - depmod: handle the case of /sbin/depmod without /sbin in PATH
    - atm: idt77252: call pci_disable_device() on error path
    - ipv4: Ignore ECN bits for fib lookups in fib_compute_spec_dst()
    - net: hns: fix return value check in __lb_other_process()
    - net: hdlc_ppp: Fix issues when mod_timer is called while timer is running
    - CDC-NCM: remove "connected" log message
    - vhost_net: fix ubuf refcount incorrectly when sendmsg fails
    - net: sched: prevent invalid Scell_log shift count
    - virtio_net: Fix recursive call to cpus_read_lock()
    - ethernet: ucc_geth: fix use-after-free in ucc_geth_remove()
    - video: hyperv_fb: Fix the mmap() regression for v5.4.y and older
    - usb: gadget: enable super speed plus
    - USB: cdc-acm: blacklist

1914648 Xenial update: v4.4.254 upstream stable release
1914647 Xenial update: v4.4.253 upstream stable release
1913479 Xenial update: v4.4.252 upstream stable release
1913478 Xenial update: v4.4.251 upstream stable release
1912679 Xenial update: v4.4.250 upstream stable release



About   -   Send Feedback to @ubuntu_updates