[Kernel-packages] [Bug 2058948] Re: Focal update: v5.4.269 upstream stable release
This bug was fixed in the package linux - 5.4.0-177.197 --- linux (5.4.0-177.197) focal; urgency=medium * focal/linux: 5.4.0-177.197 -proposed tracker (LP: #2059633) * Packaging resync (LP: #1786013) - [Packaging] drop getabis data * Remove getabis scripts (LP: #2059143) - [Packaging] Remove getabis * CVE-2023-24023 - Bluetooth: Add more enc key size check * CVE-2023-52600 - jfs: fix uaf in jfs_evict_inode * Focal update: v5.4.269 upstream stable release (LP: #2058948) // CVE-2023-52603 - UBSAN: array-index-out-of-bounds in dtSplitRoot * CVE-2024-26581 - netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failure - netfilter: nft_set_rbtree: skip end interval element from gc * CVE-2024-26589 - bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS -- Manuel Diewald Thu, 28 Mar 2024 19:08:48 +0100 ** Changed in: linux (Ubuntu Focal) Status: Fix Committed => Fix Released ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-24023 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-52603 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-26581 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-26589 -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/2058948 Title: Focal update: v5.4.269 upstream stable release Status in linux package in Ubuntu: Invalid Status in linux source package in Focal: Fix Released Bug description: SRU Justification Impact: The upstream process for stable tree updates is quite similar in scope to the Ubuntu SRU process, e.g., each patch has to demonstrably fix a bug, and each patch is vetted by upstream by originating either directly from a mainline/stable Linux tree or a minimally backported form of that patch. The following upstream stable patches should be included in the Ubuntu kernel: v5.4.269 upstream stable release from git://git.kernel.org/ PCI: mediatek: Clear interrupt status before dispatching handler include/linux/units.h: add helpers for kelvin to/from Celsius conversion units: Add Watt units units: change from 'L' to 'UL' units: add the HZ macros serial: sc16is7xx: set safe default SPI clock frequency spi: introduce SPI_MODE_X_MASK macro serial: sc16is7xx: add check for unsupported SPI modes during probe ext4: allow for the last group to be marked as trimmed crypto: api - Disallow identical driver names PM: hibernate: Enforce ordering during image compression/decompression hwrng: core - Fix page fault dead lock on mmap-ed hwrng rpmsg: virtio: Free driver_override when rpmsg_remove() parisc/firmware: Fix F-extend for PDC addresses arm64: dts: qcom: sdm845: fix USB wakeup interrupt types mmc: core: Use mrq.sbc in close-ended ffu nouveau/vmm: don't set addr on the fail path to avoid warning ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path rename(): fix the locking of subdirectories block: Remove special-casing of compound pages mtd: spinand: macronix: Fix MX35LFxGE4AD page size fs: add mode_strip_sgid() helper fs: move S_ISGID stripping into the vfs_*() helpers powerpc: Use always instead of always-y in for crtsavres.o x86/CPU/AMD: Fix disabling XSAVES on AMD family 0x17 due to erratum net/smc: fix illegal rmb_desc access in SMC-D connection dump vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING llc: make llc_ui_sendmsg() more robust against bonding changes llc: Drop support for ETH_P_TR_802_2. net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv tracing: Ensure visibility when inserting an element into tracing_map afs: Hide silly-rename files from userspace tcp: Add memory barrier to tcp_push() netlink: fix potential sleeping issue in mqueue_flush_file net/mlx5: DR, Use the right GVMI number for drop action net/mlx5: Use kfree(ft->g) in arfs_create_groups() net/mlx5e: fix a double-free in arfs_create_groups netfilter: nf_tables: restrict anonymous set and map names to 16 bytes netfilter: nf_tables: validate NFPROTO_* family fjes: fix memleaks in fjes_hw_setup net: fec: fix the unhandled context fault from smmu btrfs: ref-verify: free ref cache before clearing mount opt btrfs: tree-checker: fix inline ref size in error messages btrfs: don't warn if discard range is not aligned to sector btrfs: defrag: reject unknown flags of btrfs_ioctl_defrag_range_args rbd: don't move requests to the running list on errors gpiolib: acpi: Ignore touchpad wakeup on GPD G1619-04 drm: Don't unref the same fb many times by mistake due to deadlock handling drm/bridge: nxp-ptn3460: fix i2c_master_send() error checking drm/bridge: nxp-ptn3460: simplify some error checking drm/exynos: fix accidental on-stack copy of
[Kernel-packages] [Bug 2058948] Re: Focal update: v5.4.269 upstream stable release
Skipped "jfs: fix uaf in jfs_evict_inode" because it is already applied as CVE-2023-52600. ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-52600 ** Changed in: linux (Ubuntu Focal) Status: In Progress => Fix Committed -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/2058948 Title: Focal update: v5.4.269 upstream stable release Status in linux package in Ubuntu: Invalid Status in linux source package in Focal: Fix Committed Bug description: SRU Justification Impact: The upstream process for stable tree updates is quite similar in scope to the Ubuntu SRU process, e.g., each patch has to demonstrably fix a bug, and each patch is vetted by upstream by originating either directly from a mainline/stable Linux tree or a minimally backported form of that patch. The following upstream stable patches should be included in the Ubuntu kernel: v5.4.269 upstream stable release from git://git.kernel.org/ PCI: mediatek: Clear interrupt status before dispatching handler include/linux/units.h: add helpers for kelvin to/from Celsius conversion units: Add Watt units units: change from 'L' to 'UL' units: add the HZ macros serial: sc16is7xx: set safe default SPI clock frequency spi: introduce SPI_MODE_X_MASK macro serial: sc16is7xx: add check for unsupported SPI modes during probe ext4: allow for the last group to be marked as trimmed crypto: api - Disallow identical driver names PM: hibernate: Enforce ordering during image compression/decompression hwrng: core - Fix page fault dead lock on mmap-ed hwrng rpmsg: virtio: Free driver_override when rpmsg_remove() parisc/firmware: Fix F-extend for PDC addresses arm64: dts: qcom: sdm845: fix USB wakeup interrupt types mmc: core: Use mrq.sbc in close-ended ffu nouveau/vmm: don't set addr on the fail path to avoid warning ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path rename(): fix the locking of subdirectories block: Remove special-casing of compound pages mtd: spinand: macronix: Fix MX35LFxGE4AD page size fs: add mode_strip_sgid() helper fs: move S_ISGID stripping into the vfs_*() helpers powerpc: Use always instead of always-y in for crtsavres.o x86/CPU/AMD: Fix disabling XSAVES on AMD family 0x17 due to erratum net/smc: fix illegal rmb_desc access in SMC-D connection dump vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING llc: make llc_ui_sendmsg() more robust against bonding changes llc: Drop support for ETH_P_TR_802_2. net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv tracing: Ensure visibility when inserting an element into tracing_map afs: Hide silly-rename files from userspace tcp: Add memory barrier to tcp_push() netlink: fix potential sleeping issue in mqueue_flush_file net/mlx5: DR, Use the right GVMI number for drop action net/mlx5: Use kfree(ft->g) in arfs_create_groups() net/mlx5e: fix a double-free in arfs_create_groups netfilter: nf_tables: restrict anonymous set and map names to 16 bytes netfilter: nf_tables: validate NFPROTO_* family fjes: fix memleaks in fjes_hw_setup net: fec: fix the unhandled context fault from smmu btrfs: ref-verify: free ref cache before clearing mount opt btrfs: tree-checker: fix inline ref size in error messages btrfs: don't warn if discard range is not aligned to sector btrfs: defrag: reject unknown flags of btrfs_ioctl_defrag_range_args rbd: don't move requests to the running list on errors gpiolib: acpi: Ignore touchpad wakeup on GPD G1619-04 drm: Don't unref the same fb many times by mistake due to deadlock handling drm/bridge: nxp-ptn3460: fix i2c_master_send() error checking drm/bridge: nxp-ptn3460: simplify some error checking drm/exynos: fix accidental on-stack copy of exynos_drm_plane drm/exynos: gsc: minor fix for loop iteration in gsc_runtime_resume gpio: eic-sprd: Clear interrupt after set the interrupt type spi: bcm-qspi: fix SFDP BFPT read by usig mspi read mips: Call lose_fpu(0) before initializing fcr31 in mips_set_personality_nan tick/sched: Preserve number of idle sleeps across CPU hotplug events x86/entry/ia32: Ensure s32 is sign extended to s64 powerpc/mm: Fix null-pointer dereference in pgtable_cache_add powerpc: Fix build error due to is_valid_bugaddr() powerpc/mm: Fix build failures due to arch_reserved_kernel_pages() powerpc: pmd_move_must_withdraw() is only needed for CONFIG_TRANSPARENT_HUGEPAGE powerpc/lib: Validate size for vector operations x86/mce: Mark fatal MCE's page as poison to avoid panic in the kdump kernel perf/core: Fix narrow startup race when creating the perf nr_addr_filters sysfs file regulator: core: Only increment use_count when enable_count changes audit: Send netlink ACK before setting connection in
[Kernel-packages] [Bug 2058948] Re: Focal update: v5.4.269 upstream stable release
** Changed in: linux (Ubuntu) Status: Confirmed => Invalid ** Changed in: linux (Ubuntu Focal) Importance: Undecided => Medium ** Changed in: linux (Ubuntu Focal) Status: New => In Progress ** Changed in: linux (Ubuntu Focal) Assignee: (unassigned) => Manuel Diewald (diewald) ** Description changed: SRU Justification Impact: The upstream process for stable tree updates is quite similar in scope to the Ubuntu SRU process, e.g., each patch has to demonstrably fix a bug, and each patch is vetted by upstream by originating either directly from a mainline/stable Linux tree or a minimally backported form of that patch. The following upstream stable patches should be included in the Ubuntu kernel: v5.4.269 upstream stable release from git://git.kernel.org/ - + PCI: mediatek: Clear interrupt status before dispatching handler + include/linux/units.h: add helpers for kelvin to/from Celsius conversion + units: Add Watt units + units: change from 'L' to 'UL' + units: add the HZ macros + serial: sc16is7xx: set safe default SPI clock frequency + spi: introduce SPI_MODE_X_MASK macro + serial: sc16is7xx: add check for unsupported SPI modes during probe + ext4: allow for the last group to be marked as trimmed + crypto: api - Disallow identical driver names + PM: hibernate: Enforce ordering during image compression/decompression + hwrng: core - Fix page fault dead lock on mmap-ed hwrng + rpmsg: virtio: Free driver_override when rpmsg_remove() + parisc/firmware: Fix F-extend for PDC addresses + arm64: dts: qcom: sdm845: fix USB wakeup interrupt types + mmc: core: Use mrq.sbc in close-ended ffu + nouveau/vmm: don't set addr on the fail path to avoid warning + ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path + rename(): fix the locking of subdirectories + block: Remove special-casing of compound pages + mtd: spinand: macronix: Fix MX35LFxGE4AD page size + fs: add mode_strip_sgid() helper + fs: move S_ISGID stripping into the vfs_*() helpers + powerpc: Use always instead of always-y in for crtsavres.o + x86/CPU/AMD: Fix disabling XSAVES on AMD family 0x17 due to erratum + net/smc: fix illegal rmb_desc access in SMC-D connection dump + vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING + llc: make llc_ui_sendmsg() more robust against bonding changes + llc: Drop support for ETH_P_TR_802_2. + net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv + tracing: Ensure visibility when inserting an element into tracing_map + afs: Hide silly-rename files from userspace + tcp: Add memory barrier to tcp_push() + netlink: fix potential sleeping issue in mqueue_flush_file + net/mlx5: DR, Use the right GVMI number for drop action + net/mlx5: Use kfree(ft->g) in arfs_create_groups() + net/mlx5e: fix a double-free in arfs_create_groups + netfilter: nf_tables: restrict anonymous set and map names to 16 bytes + netfilter: nf_tables: validate NFPROTO_* family + fjes: fix memleaks in fjes_hw_setup + net: fec: fix the unhandled context fault from smmu + btrfs: ref-verify: free ref cache before clearing mount opt + btrfs: tree-checker: fix inline ref size in error messages + btrfs: don't warn if discard range is not aligned to sector + btrfs: defrag: reject unknown flags of btrfs_ioctl_defrag_range_args + rbd: don't move requests to the running list on errors + gpiolib: acpi: Ignore touchpad wakeup on GPD G1619-04 + drm: Don't unref the same fb many times by mistake due to deadlock handling + drm/bridge: nxp-ptn3460: fix i2c_master_send() error checking + drm/bridge: nxp-ptn3460: simplify some error checking + drm/exynos: fix accidental on-stack copy of exynos_drm_plane + drm/exynos: gsc: minor fix for loop iteration in gsc_runtime_resume + gpio: eic-sprd: Clear interrupt after set the interrupt type + spi: bcm-qspi: fix SFDP BFPT read by usig mspi read + mips: Call lose_fpu(0) before initializing fcr31 in mips_set_personality_nan + tick/sched: Preserve number of idle sleeps across CPU hotplug events + x86/entry/ia32: Ensure s32 is sign extended to s64 + powerpc/mm: Fix null-pointer dereference in pgtable_cache_add + powerpc: Fix build error due to is_valid_bugaddr() + powerpc/mm: Fix build failures due to arch_reserved_kernel_pages() + powerpc: pmd_move_must_withdraw() is only needed for CONFIG_TRANSPARENT_HUGEPAGE + powerpc/lib: Validate size for vector operations + x86/mce: Mark fatal MCE's page as poison to avoid panic in the kdump kernel + perf/core: Fix narrow startup race when creating the perf nr_addr_filters sysfs file + regulator: core: Only increment use_count when enable_count changes + audit: Send netlink ACK before setting connection in auditd_set + ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop + PNP: ACPI: fix fortify warning + ACPI: extlog: fix NULL pointer dereference check + FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree + UBSAN: