[Kernel-packages] [Bug 1971205] Re: CVE-2022-25258 and CVE-2022-25375

[Luís Cunha dos Reis Infante da Câmara]

** Changed in: linux-riscv (Ubuntu)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux-aws in Ubuntu.
https://bugs.launchpad.net/bugs/1971205

Title:
  CVE-2022-25258 and CVE-2022-25375

Status in linux-aws package in Ubuntu:
  Fix Released
Status in linux-aws-5.13 package in Ubuntu:
  Fix Released
Status in linux-aws-5.4 package in Ubuntu:
  Fix Committed
Status in linux-azure package in Ubuntu:
  Fix Released
Status in linux-azure-4.15 package in Ubuntu:
  Fix Released
Status in linux-azure-5.13 package in Ubuntu:
  Fix Released
Status in linux-azure-5.4 package in Ubuntu:
  Fix Released
Status in linux-bluefield package in Ubuntu:
  Confirmed
Status in linux-dell300x package in Ubuntu:
  Fix Released
Status in linux-gcp package in Ubuntu:
  Fix Released
Status in linux-gcp-4.15 package in Ubuntu:
  Fix Released
Status in linux-gcp-5.13 package in Ubuntu:
  Fix Released
Status in linux-gcp-5.4 package in Ubuntu:
  Fix Released
Status in linux-gke package in Ubuntu:
  Fix Released
Status in linux-gke-5.4 package in Ubuntu:
  Fix Committed
Status in linux-gkeop package in Ubuntu:
  Fix Released
Status in linux-gkeop-5.4 package in Ubuntu:
  Fix Released
Status in linux-hwe-5.13 package in Ubuntu:
  Fix Released
Status in linux-hwe-5.4 package in Ubuntu:
  Fix Released
Status in linux-ibm package in Ubuntu:
  Fix Released
Status in linux-ibm-5.4 package in Ubuntu:
  Fix Released
Status in linux-kvm package in Ubuntu:
  Fix Released
Status in linux-oracle package in Ubuntu:
  Fix Released
Status in linux-oracle-5.13 package in Ubuntu:
  Fix Committed
Status in linux-oracle-5.4 package in Ubuntu:
  Fix Released
Status in linux-raspi package in Ubuntu:
  Fix Released
Status in linux-raspi-5.4 package in Ubuntu:
  Fix Released
Status in linux-raspi2 package in Ubuntu:
  Fix Committed
Status in linux-riscv package in Ubuntu:
  Fix Released
Status in linux-snapdragon package in Ubuntu:
  Fix Released

Bug description:
  These packages are vulnerable to CVE-2022-25258 and CVE-2022-25375 in
  at least one Ubuntu release, as stated in the Ubuntu CVE Tracker.

  Please release fixed packages.

  Debian released an advisory on March 7.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux-aws/+bug/1971205/+subscriptions


-- 
Mailing list: https://launchpad.net/~kernel-packages
Post to     : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help   : https://help.launchpad.net/ListHelp