[Group.of.nepali.translators] [Bug 1745338] Re: upload urgency should be medium by default
This bug was fixed in the package linux - 3.2.0-150.197 --- linux (3.2.0-150.197) precise; urgency=medium * precise/linux: 3.2.0-150.197 -proposed tracker (LP: #1919172) * CVE-2021-27365 - scsi: iscsi: Verify lengths on passthrough PDUs - sysfs: Add sysfs_emit and sysfs_emit_at to format sysfs output - scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE * CVE-2021-27363 // CVE-2021-27364 - scsi: iscsi: Restrict sessions and handles to admin capabilities * CVE-2021-27364 - scsi: iscsi: respond to netlink with unicast when appropriate - Add file_ns_capable() helper function for open-time capability checking - net: Add variants of capable for use on on sockets - netlink: Make the sending netlink socket availabe in NETLINK_CB -- Thadeu Lima de Souza Cascardo Mon, 05 Apr 2021 14:23:29 -0300 ** Changed in: linux (Ubuntu Precise) Status: Fix Committed => Fix Released ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-27363 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-27364 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-27365 -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1745338 Title: upload urgency should be medium by default Status in linux package in Ubuntu: Fix Released Status in linux source package in Precise: Fix Released Status in linux source package in Trusty: Fix Released Status in linux source package in Xenial: Fix Released Status in linux source package in Artful: Fix Released Bug description: The default urgency has changed (long long long ago) to be medium. Our "bespoke" (read crap) version creator is selecting an urgency=low which puts our builds in PPAs at a disadvantage. This is dumb. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1745338/+subscriptions ___ Mailing list: https://launchpad.net/~group.of.nepali.translators Post to : group.of.nepali.translators@lists.launchpad.net Unsubscribe : https://launchpad.net/~group.of.nepali.translators More help : https://help.launchpad.net/ListHelp
[Group.of.nepali.translators] [Bug 1745338] Re: upload urgency should be medium by default
This bug was fixed in the package linux - 4.15.0-10.11 --- linux (4.15.0-10.11) bionic; urgency=medium * linux: 4.15.0-10.11 -proposed tracker (LP: #1749250) * "swiotlb: coherent allocation failed" dmesg spam with linux 4.15.0-9.10 (LP: #1749202) - swiotlb: suppress warning when __GFP_NOWARN is set - drm/ttm: specify DMA_ATTR_NO_WARN for huge page pools * linux-tools: perf incorrectly linking libbfd (LP: #1748922) - SAUCE: tools -- add ability to disable libbfd - [Packaging] correct disablement of libbfd * [Artful] Realtek ALC225: 2 secs noise when a headset plugged in (LP: #1744058) - ALSA: hda/realtek - update ALC225 depop optimize * [Artful] Support headset mode for DELL WYSE (LP: #1723913) - SAUCE: ALSA: hda/realtek - Add support headset mode for DELL WYSE * headset mic can't be detected on two Dell machines (LP: #1748807) - ALSA: hda/realtek - Support headset mode for ALC215/ALC285/ALC289 - ALSA: hda - Fix headset mic detection problem for two Dell machines * Bionic update to v4.15.3 stable release (LP: #1749191) - ip6mr: fix stale iterator - net: igmp: add a missing rcu locking section - qlcnic: fix deadlock bug - qmi_wwan: Add support for Quectel EP06 - r8169: fix RTL8168EP take too long to complete driver initialization. - tcp: release sk_frag.page in tcp_disconnect - vhost_net: stop device during reset owner - ipv6: addrconf: break critical section in addrconf_verify_rtnl() - ipv6: change route cache aging logic - Revert "defer call to mem_cgroup_sk_alloc()" - net: ipv6: send unsolicited NA after DAD - rocker: fix possible null pointer dereference in rocker_router_fib_event_work - tcp_bbr: fix pacing_gain to always be unity when using lt_bw - cls_u32: add missing RCU annotation. - ipv6: Fix SO_REUSEPORT UDP socket with implicit sk_ipv6only - soreuseport: fix mem leak in reuseport_add_sock() - net_sched: get rid of rcu_barrier() in tcf_block_put_ext() - net: sched: fix use-after-free in tcf_block_put_ext - media: mtk-vcodec: add missing MODULE_LICENSE/DESCRIPTION - media: soc_camera: soc_scale_crop: add missing MODULE_DESCRIPTION/AUTHOR/LICENSE - media: tegra-cec: add missing MODULE_DESCRIPTION/AUTHOR/LICENSE - gpio: uniphier: fix mismatch between license text and MODULE_LICENSE - crypto: tcrypt - fix S/G table for test_aead_speed() - Linux 4.15.3 * bnx2x_attn_int_deasserted3:4323 MC assert! (LP: #1715519) // CVE-2018-126 - net: create skb_gso_validate_mac_len() - bnx2x: disable GSO where gso_size is too big for hardware * ethtool -p fails to light NIC LED on HiSilicon D05 systems (LP: #1748567) - net: hns: add ACPI mode support for ethtool -p * CVE-2017-5715 (Spectre v2 Intel) - [Packaging] retpoline files must be sorted - [Packaging] pull in retpoline files * [Feature] PXE boot with Intel Omni-Path (LP: #1712031) - d-i: Add hfi1 to nic-modules * CVE-2017-5715 (Spectre v2 retpoline) - [Packaging] retpoline -- add call site validation - [Config] disable retpoline checks for first upload * Do not duplicate changelog entries assigned to more than one bug or CVE (LP: #1743383) - [Packaging] git-ubuntu-log -- handle multiple bugs/cves better -- Seth Forshee Tue, 13 Feb 2018 11:33:58 -0600 ** Changed in: linux (Ubuntu) Status: Fix Committed => Fix Released ** CVE added: https://cve.mitre.org/cgi- bin/cvename.cgi?name=2018-126 -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1745338 Title: upload urgency should be medium by default Status in linux package in Ubuntu: Fix Released Status in linux source package in Precise: Fix Committed Status in linux source package in Trusty: Fix Released Status in linux source package in Xenial: Fix Released Status in linux source package in Artful: Fix Released Bug description: The default urgency has changed (long long long ago) to be medium. Our "bespoke" (read crap) version creator is selecting an urgency=low which puts our builds in PPAs at a disadvantage. This is dumb. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1745338/+subscriptions ___ Mailing list: https://launchpad.net/~group.of.nepali.translators Post to : group.of.nepali.translators@lists.launchpad.net Unsubscribe : https://launchpad.net/~group.of.nepali.translators More help : https://help.launchpad.net/ListHelp
[Group.of.nepali.translators] [Bug 1745338] Re: upload urgency should be medium by default
This bug was fixed in the package linux - 3.13.0-142.191 --- linux (3.13.0-142.191) trusty; urgency=medium * linux: 3.13.0-142.191 -proposed tracker (LP: #1746900) * CVE-2017-17806 - crypto: hmac - require that the underlying hash algorithm is unkeyed * CVE-2017-18017 - netfilter: xt_TCPMSS: add more sanity tests on tcph->doff * CVE-2017-17450 - netfilter: xt_osf: Add missing permission checks * CVE-2018-5344 - loop: fix concurrent lo_open/lo_release * CVE-2017-5715 (Spectre v2 embargoed) // CVE-2017-5753 (Spectre v1 embargoed) - x86/asm/msr: Make wrmsrl_safe() a function * CVE-2017-1000407 - KVM: VMX: remove I/O port 0x80 bypass on Intel hosts * CVE-2017-0861 - ALSA: pcm: prevent UAF in snd_pcm_info * CVE-2017-14051 - scsi: qla2xxx: Fix an integer overflow in sysfs code * CVE-2017-15868 - Bluetooth: bnep: bnep_add_connection() should verify that it's dealing with l2cap socket * CVE-2018-5333 - RDS: null pointer dereference in rds_atomic_free_op * powerpc: flush L1D on return to use (LP: #1742772) // CVE-2017-5754 (Meltdown) - SAUCE: powerpc: Prevent Meltdown attack with L1-D$ flush - SAUCE: powerpc: Remove dead code in sycall entry - SAUCE: rfi-flush: Add barriers to the fallback L1D flushing - SAUCE: rfi-flush: Fallback flush add load dependency - SAUCE: rfi-flush: Fix the 32-bit KVM build - SAUCE: rfi-flush: Fix some RFI conversions in the KVM code - SAUCE: rfi-flush: Make the fallback robust against memory corruption - SAUCE: powerpc/kernel: Does not use sync - SAUCE: rfi-flush: Factor out init_fallback_flush() - SAUCE: rfi-flush: Make setup_rfi_flush() not __init - SAUCE: rfi-flush: Move the logic to avoid a redo into the sysfs code - SAUCE: rfi-flush: Make it possible to call setup_rfi_flush() again - SAUCE: rfi-flush: Call setup_rfi_flush() after LPM migration - SAUCE: rfi-flush: Fix fallback on distros using bootmem - SAUCE: rfi-flush: fix package build error (unused variable limit) - SAUCE: rfi-flush: Fix kernel package build using bootmem - SAUCE: rfi-flush: Move rfi_flush_fallback_area to end of paca - SAUCE: rfi-flush: Fix rename of pseries_setup_rfi_flush() - SAUCE: rfi-flush: Mark DEBUG_RFI as BROKEN - SAUCE: rfi-flush: Switch to new linear fallback flush - SAUCE: powerpc/kernel: Remove unused variable - SAUCE: powerpc/kernel: Fix typo on variable - SAUCE: powerpc/kernel: Fix instructions usage - SAUCE: powerpc/kernel: Define PACA_L1D_FLUSH_SIZE - SAUCE: rfi-flush: Fix for kernel crash. * upload urgency should be medium by default (LP: #1745338) - [Packaging] update urgency to medium by default * CVE-2017-12190 - fix unbalanced page refcounting in bio_map_user_iov - more bio_map_user_iov() leak fixes * CVE-2017-15274 - KEYS: fix dereferencing NULL payload with nonzero length * CVE-2017-14140 - Sanitize 'move_pages()' permission checks * CVE-2017-15115 - sctp: do not peel off an assoc from one netns to another one * CVE-2017-14489 - scsi: scsi_transport_iscsi: fix the issue that iscsi_if_rx doesn't parse nlmsg properly * CVE-2017-12153 - nl80211: check for the required netlink attributes presence * CVE-2017-16525 - USB: serial: console: fix use-after-free after failed setup - USB: serial: console: fix use-after-free on disconnect * CVE-2017-7542 - ipv6: avoid overflow of offset in ip6_find_1stfragopt - ipv6: accept 64k - 1 packet length in ip6_find_1stfragopt() * CVE-2017-15102 - usb: misc: legousbtower: Fix NULL pointer deference * CVE-2017-12192 - KEYS: prevent KEYCTL_READ on negative key * CVE-2017-14156 - video: fbdev: aty: do not leak uninitialized padding in clk to userspace * CVE-2017-5669 - ipc/shm: Fix shmat mmap nil-page protection * CVE-2017-0750 - f2fs: do more integrity verification for superblock * CVE-2017-7889 - mm: Tighten x86 /dev/mem with zeroing reads * CVE-2017-8824 - dccp: CVE-2017-8824: use-after-free in DCCP code -- Stefan Bader Fri, 02 Feb 2018 13:01:39 +0100 ** Changed in: linux (Ubuntu Trusty) Status: Fix Committed => Fix Released ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-0750 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-0861 ** CVE added: https://cve.mitre.org/cgi- bin/cvename.cgi?name=2017-1000407 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-12153 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-12192 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-14051 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-14140 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-14156 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-14489 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi
[Group.of.nepali.translators] [Bug 1745338] Re: upload urgency should be medium by default
This bug was fixed in the package linux - 4.13.0-36.40 --- linux (4.13.0-36.40) artful; urgency=medium * linux: 4.13.0-36.40 -proposed tracker (LP: #1750010) * Rebuild without "CVE-2017-5754 ARM64 KPTI fixes" patch set linux (4.13.0-35.39) artful; urgency=medium * linux: 4.13.0-35.39 -proposed tracker (LP: #1748743) * CVE-2017-5715 (Spectre v2 Intel) - Revert "UBUNTU: SAUCE: turn off IBPB when full retpoline is present" - SAUCE: turn off IBRS when full retpoline is present - [Packaging] retpoline files must be sorted - [Packaging] pull in retpoline files linux (4.13.0-34.37) artful; urgency=medium * linux: 4.13.0-34.37 -proposed tracker (LP: #1748475) * libata: apply MAX_SEC_1024 to all LITEON EP1 series devices (LP: #1743053) - libata: apply MAX_SEC_1024 to all LITEON EP1 series devices * KVM patches for s390x to provide facility bits 81 (ppa15) and 82 (bpb) (LP: #1747090) - KVM: s390: wire up bpb feature * artful 4.13 i386 kernels crash after memory hotplug remove (LP: #1747069) - Revert "mm, memory_hotplug: do not associate hotadded memory to zones until online" * CVE-2017-5715 (Spectre v2 Intel) - x86/feature: Enable the x86 feature to control Speculation - x86/feature: Report presence of IBPB and IBRS control - x86/enter: MACROS to set/clear IBRS and set IBPB - x86/enter: Use IBRS on syscall and interrupts - x86/idle: Disable IBRS entering idle and enable it on wakeup - x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup - x86/mm: Set IBPB upon context switch - x86/mm: Only set IBPB when the new thread cannot ptrace current thread - x86/entry: Stuff RSB for entry to kernel for non-SMEP platform - x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm - x86/kvm: Set IBPB when switching VM - x86/kvm: Toggle IBRS on VM entry and exit - x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature - x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control - x86/cpu/AMD: Add speculative control support for AMD - x86/microcode: Extend post microcode reload to support IBPB feature - KVM: SVM: Do not intercept new speculative control MSRs - x86/svm: Set IBRS value on VM entry and exit - x86/svm: Set IBPB when running a different VCPU - KVM: x86: Add speculative control CPUID support for guests - SAUCE: turn off IBPB when full retpoline is present * Artful 4.13 fixes for tun (LP: #1748846) - tun: call dev_get_valid_name() before register_netdevice() - tun: allow positive return values on dev_get_valid_name() call - tun/tap: sanitize TUNSETSNDBUF input * boot failure on AMD Raven + WestonXT (LP: #1742759) - SAUCE: drm/amdgpu: add atpx quirk handling (v2) linux (4.13.0-33.36) artful; urgency=low * linux: 4.13.0-33.36 -proposed tracker (LP: #1746903) [ Stefan Bader ] * starting VMs causing retpoline4 to reboot (LP: #1747507) // CVE-2017-5715 (Spectre v2 retpoline) - x86/retpoline: Fill RSB on context switch for affected CPUs - x86/retpoline: Add LFENCE to the retpoline/RSB filling RSB macros - x86/retpoline: Optimize inline assembler for vmexit_fill_RSB - x86/retpoline: Remove the esp/rsp thunk - x86/retpoline: Simplify vmexit_fill_RSB() * Missing install-time driver for QLogic QED 25/40/100Gb Ethernet NIC (LP: #1743638) - [d-i] Add qede to nic-modules udeb * hisi_sas: driver robustness fixes (LP: #1739807) - scsi: hisi_sas: fix reset and port ID refresh issues - scsi: hisi_sas: avoid potential v2 hw interrupt issue - scsi: hisi_sas: fix v2 hw underflow residual value - scsi: hisi_sas: add v2 hw DFX feature - scsi: hisi_sas: add irq and tasklet cleanup in v2 hw - scsi: hisi_sas: service interrupt ITCT_CLR interrupt in v2 hw - scsi: hisi_sas: fix internal abort slot timeout bug - scsi: hisi_sas: us start_phy in PHY_FUNC_LINK_RESET - scsi: hisi_sas: fix NULL check in SMP abort task path - scsi: hisi_sas: fix the risk of freeing slot twice - scsi: hisi_sas: kill tasklet when destroying irq in v3 hw - scsi: hisi_sas: complete all tasklets prior to host reset * [Artful/Zesty] ACPI APEI error handling bug fixes (LP: #1732990) - ACPI: APEI: fix the wrong iteration of generic error status block - ACPI / APEI: clear error status before acknowledging the error * [Zesty/Artful] On ARM64 PCIE physical function passthrough guest fails to boot (LP: #1732804) - vfio/pci: Virtualize Maximum Payload Size - vfio/pci: Virtualize Maximum Read Request Size * hisi_sas: Add ATA command support for SMR disks (LP: #1739891) - scsi: hisi_sas: support zone management commands * thunderx2: i2c driver PEC and ACPI clock fixes (LP: #1738073) - ACPI / APD: Add clock frequency for ThunderX2 I2C controller - i2c: xlp9xx: Get clock frequency with clk API - i2c: xlp9xx: Handle I2C_M_RE