** Description changed: + [Impact] + + wireguard contains an uninitialised netlink member which could lead to + unreliable operation. wireguard-linux-compat is maintained to match the + upstream version which is under security review and cleanup keeping in + sync with the maintainers backport provides the highest reliability and + security for wireguard users. + + Separately, the previous update was not built for -security but includes + kernel compatibility which requires it be promoted to -security. This + update has been built in the kernel security PPA and is valid for + -security. + + [Regression Potential] + + Low. This is the version in continuous and active use in the + development release, it is also the version applied upstream. + + [Other Info] + + The upstream maintainer of this feature is only committed to support of + the upstream version of the compatibility code that is contained in + Ubuntu. + + === + Resync our backports of wireguard and wireguard-linux-compat in eoan. wireguard userspace passes an uninitialised netlink field to the kernel which could lead to unpredictable behaviour. wireguard-linux-compat update fixes source nat handling amongst other fixes. Note these will also want to go via the security PPA so they can be released to eoan-security. This is to ensure the previous update is available to -security only users.
** No longer affects: wireguard-linux-compat (Ubuntu) ** No longer affects: wireguard (Ubuntu) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1870293 Title: Resync wireguard/wireguard-linux-compat with development To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/eoan/+source/wireguard/+bug/1870293/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
