Package "linux"

 linux (4.15.0-208.219) bionic; urgency=medium
 .
   * bionic/linux: 4.15.0-208.219 -proposed tracker (LP: #2012097)
 .
   * NFS deathlock with last Kernel 5.4.0-144.161 and 5.15.0-67.74 (LP: #2009325)
     - NFS: Correct timing for assigning access cache timestamp
 .

 linux (4.15.0-207.218) bionic; urgency=medium
 .
   * bionic/linux: 4.15.0-207.218 -proposed tracker (LP: #2008419)
 .
   * rtcpie in timers from ubuntu_kernel_selftests randomly failing
     (LP: #1814234)
     - SAUCE: selftest: rtctest: Force passing unreliable subtest
 .
   * btrfs/154: rename fails with EOVERFLOW when calculating item size during
     item key collision (LP: #2004132)
     - btrfs: correctly calculate item size used when item key collision happens
 .
   * CVE-2021-3669
     - ipc: replace costly bailout check in sysvipc_find_ipc()
 .
   * Bionic update: upstream stable patchset 2023-02-06 (LP: #2006403)
     - libtraceevent: Fix build with binutils 2.35
     - once: Fix panic when module unload
     - once: add DO_ONCE_SLOW() for sleepable contexts
     - mm/khugepaged: fix GUP-fast interaction by sending IPI
     - mm/khugepaged: invoke MMU notifiers in shmem/file collapse paths
     - block: unhash blkdev part inode when the part is deleted
     - ASoC: ops: Check bounds for second channel in snd_soc_put_volsw_sx()
     - can: sja1000: fix size of OCR_MODE_MASK define
     - can: mcba_usb: Fix termination command argument
     - ASoC: ops: Correct bounds check for second channel on SX controls
     - perf script python: Remove explicit shebang from tests/attr.c
     - udf: Discard preallocation before extending file with a hole
     - udf: Drop unused arguments of udf_delete_aext()
     - udf: Fix preallocation discarding at indirect extent boundary
     - udf: Do not bother looking for prealloc extents if i_lenExtents matches
       i_size
     - udf: Fix extending file within last block
     - usb: gadget: uvc: Prevent buffer overflow in setup handler
     - USB: serial: option: add Quectel EM05-G modem
     - USB: serial: cp210x: add Kamstrup RF sniffer PIDs
     - igb: Initialize mailbox message for VF reset
     - net: loopback: use NET_NAME_PREDICTABLE for name_assign_type
     - usb: musb: remove extra check in musb_gadget_vbus_draw
     - ARM: dts: qcom: apq8064: fix coresight compatible
     - drivers: soc: ti: knav_qmss_queue: Mark knav_acc_firmwares as static
     - arm: dts: spear600: Fix clcd interrupt
     - soc: ti: smartreflex: Fix PM disable depth imbalance in omap_sr_probe
     - arm64: dts: mediatek: mt6797: Fix 26M oscillator unit name
     - ARM: dts: dove: Fix assigned-addresses for every PCIe Root Port
     - ARM: dts: armada-370: Fix assigned-addresses for every PCIe Root Port
     - ARM: dts: armada-xp: Fix assigned-addresses for every PCIe Root Port
     - ARM: dts: armada-375: Fix assigned-addresses for every PCIe Root Port
     - ARM: dts: armada-38x: Fix assigned-addresses for every PCIe Root Port
     - ARM: dts: armada-39x: Fix assigned-addresses for every PCIe Root Port
     - ARM: dts: turris-omnia: Add ethernet aliases
     - ARM: dts: turris-omnia: Add switch port 6 node
     - pstore/ram: Fix error return code in ramoops_probe()
     - ARM: mmp: fix timer_read delay
     - pstore: Avoid kcore oops by vmap()ing with VM_IOREMAP
     - tpm/tpm_crb: Fix error message in __crb_relinquish_locality()
     - cpuidle: dt: Return the correct numbers of parsed idle states
     - alpha: fix syscall entry in !AUDUT_SYSCALL case
     - PM: hibernate: Fix mistake in kerneldoc comment
     - fs: don't audit the capability check in simple_xattr_list()
     - perf: Fix possible memleak in pmu_dev_alloc()
     - timerqueue: Use rb_entry_safe() in timerqueue_getnext()
     - ocfs2: fix memory leak in ocfs2_stack_glue_init()
     - MIPS: vpe-mt: fix possible memory leak while module exiting
     - MIPS: vpe-cmp: fix possible memory leak while module exiting
     - PNP: fix name memory leak in pnp_alloc_dev()
     - irqchip: gic-pm: Use pm_runtime_resume_and_get() in gic_probe()
     - libfs: add DEFINE_SIMPLE_ATTRIBUTE_SIGNED for signed value
     - lib/notifier-error-inject: fix error when writing -errno to debugfs file
     - rapidio: fix possible name leaks when rio_add_device() fails
     - rapidio: rio: fix possible name leak in rio_register_mport()
     - ACPICA: Fix use-after-free in acpi_ut_copy_ipackage_to_ipackage()
     - uprobes/x86: Allow to probe a NOP instruction with 0x66 prefix
     - x86/xen: Fix memory leak in xen_init_lock_cpu()
     - platform/x86: mxm-wmi: fix memleak in mxm_wmi_call_mx[ds|mx]()
     - MIPS: BCM63xx: Add check for NULL for clk in clk_enable
     - fs: sysv: Fix sysv_nblocks() returns wrong value
     - rapidio: fix possible UAF when kfifo_alloc() fails
     - eventfd: change int to __u64 in eventfd_signal() ifndef CONFIG_EVENTFD
     - hfs: Fix OOB Write in hfs_asc2mac
     - rapidio: devices: fix missing put_device in mport_cdev_open
     - wifi: ath9k: hif_usb: fix memory leak of urbs in
       ath9k_hif_usb_dealloc_tx_urbs()
     - wifi: ath9k: hif_usb: Fix use-after-free in ath9k_hif_usb_reg_in_cb()
     - media: i2c: ad5820: Fix error path
     - spi: Update reference to struct spi_controller
     - media: vivid: fix compose size exceed boundary
     - mtd: Fix device name leak when register device failed in add_mtd_device()
     - media: camss: Clean up received buffers on failed start of streaming
     - drm/radeon: Add the missed acpi_put_table() to fix memory leak
     - ASoC: pxa: fix null-pointer dereference in filter()
     - regulator: core: fix unbalanced of node refcount in regulator_dev_lookup()
     - ima: Fix misuse of dereference of pointer in template_desc_init_fields()
     - wifi: ath10k: Fix return value in ath10k_pci_init()
     - mtd: lpddr2_nvm: Fix possible null-ptr-deref
     - Input: elants_i2c - properly handle the reset GPIO when power is off
     - media: solo6x10: fix possible memory leak in solo_sysfs_init()
     - media: platform: exynos4-is: Fix error handling in fimc_md_init()
     - HID: hid-sensor-custom: set fixed size for custom attributes
     - ALSA: seq: fix undefined behavior in bit shift for
       SNDRV_SEQ_FILTER_USE_EVENT
     - clk: rockchip: Fix memory leak in

 linux (4.15.0-206.217) bionic; urgency=medium
 .
   * bionic/linux: 4.15.0-206.217 -proposed tracker (LP: #2004655)
 .
   * CVE-2023-0461
     - SAUCE: Fix inet_csk_listen_start after CVE-2023-0461
 .

 linux (4.15.0-205.216) bionic; urgency=medium
 .
   * bionic/linux: 4.15.0-205.216 -proposed tracker (LP: #2004414)
 .
   * Bionic update: upstream stable patchset 2023-01-20 (LP: #2003596)
     - NFSv4.1: Handle RECLAIM_COMPLETE trunking errors
     - NFSv4.1: We must always send RECLAIM_COMPLETE after a reboot
     - nfs4: Fix kmemleak when allocate slot failed
     - net: dsa: Fix possible memory leaks in dsa_loop_init()
     - nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send()
     - nfc: nfcmrvl: Fix potential memory leak in nfcmrvl_i2c_nci_send()
     - net: fec: fix improper use of NETDEV_TX_BUSY
     - ata: pata_legacy: fix pdc20230_set_piomode()
     - net: sched: Fix use after free in red_enqueue()
     - ipvs: use explicitly signed chars
     - rose: Fix NULL pointer dereference in rose_send_frame()
     - mISDN: fix possible memory leak in mISDN_register_device()
     - isdn: mISDN: netjet: fix wrong check of device registration
     - btrfs: fix inode list leak during backref walking at resolve_indirect_refs()
     - btrfs: fix ulist leaks in error paths of qgroup self tests
     - Bluetooth: L2CAP: fix use-after-free in l2cap_conn_del()
     - net: mdio: fix undefined behavior in bit shift for __mdiobus_register
     - net, neigh: Fix null-ptr-deref in neigh_table_clear()
     - media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE
     - media: dvb-frontends/drxk: initialize err to 0
     - i2c: xiic: Add platform module alias
     - Bluetooth: L2CAP: Fix attempting to access uninitialized memory
     - block, bfq: protect 'bfqd->queued' by 'bfqd->lock'
     - btrfs: fix type of parameter generation in btrfs_get_dentry
     - tcp/udp: Make early_demux back namespacified.
     - capabilities: fix potential memleak on error path from vfs_getxattr_alloc()
     - ALSA: usb-audio: Add quirks for MacroSilicon MS2100/MS2106 devices
     - efi: random: reduce seed size to 32 bytes
     - parisc: Make 8250_gsc driver dependend on CONFIG_PARISC
     - parisc: Export iosapic_serial_irq() symbol for serial port driver
     - ext4: fix warning in 'ext4_da_release_space'
     - KVM: x86: Mask off reserved bits in CPUID.80000008H
     - KVM: x86: emulator: em_sysexit should update ctxt->mode
     - KVM: x86: emulator: introduce emulator_recalc_and_set_mode
     - KVM: x86: emulator: update the emulation mode after CR0 write
     - linux/const.h: prefix include guard of uapi/linux/const.h with _UAPI
     - linux/const.h: move UL() macro to include/linux/const.h
     - linux/bits.h: make BIT(), GENMASK(), and friends available in assembly
     - RDMA/qedr: clean up work queue on failure in qedr_alloc_resources()
     - net: tun: fix bugs for oversize packet when napi frags enabled
     - ipvs: fix WARNING in __ip_vs_cleanup_batch()
     - ipvs: fix WARNING in ip_vs_app_net_cleanup()
     - ipv6: fix WARNING in ip6_route_net_exit_late()
     - parisc: Avoid printing the hardware path twice
     - HID: hyperv: fix possible memory leak in mousevsc_probe()
     - net: gso: fix panic on frag_list with mixed head alloc types
     - bnxt_en: fix potentially incorrect return value for ndo_rx_flow_steer
     - net: fman: Unregister ethernet device on removal
     - capabilities: fix undefined behavior in bit shift for CAP_TO_MASK
     - net: lapbether: fix issue of dev reference count leakage in
       lapbeth_device_event()
     - hamradio: fix issue of dev reference count leakage in bpq_device_event()
     - drm/vc4: Fix missing platform_unregister_drivers() call in
       vc4_drm_register()
     - ipv6: addrlabel: fix infoleak when sending struct ifaddrlblmsg to network
     - tipc: fix the msg->req tlv len check in
       tipc_nl_compat_name_table_dump_header
     - dmaengine: mv_xor_v2: Fix a resource leak in mv_xor_v2_remove()
     - drivers: net: xgene: disable napi when register irq failed in
       xgene_enet_open()
     - net: cxgb3_main: disable napi when bind qsets failed in cxgb_up()
     - ethernet: s2io: disable napi when start nic failed in s2io_card_up()
     - net: mv643xx_eth: disable napi when init rxq or txq failed in
       mv643xx_eth_open()
     - net: macvlan: fix memory leaks of macvlan_common_newlink
     - arm64: efi: Fix handling of misaligned runtime regions and drop warning
     - ALSA: hda: fix potential memleak in 'add_widget_node'
     - ALSA: usb-audio: Add quirk entry for M-Audio Micro
     - nilfs2: fix deadlock in nilfs_count_free_blocks()
     - drm/i915/dmabuf: fix sg_table handling in map_dma_buf
     - platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi
     - btrfs: selftests: fix wrong error check in btrfs_free_dummy_root()
     - udf: Fix a slab-out-of-bounds write bug in udf_find_entry()
     - cert host tools: Stop complaining about deprecated OpenSSL functions
     - dmaengine: at_hdmac: Fix at_lli struct definition
     - dmaengine: at_hdmac: Don't start transactions at tx_submit level
     - dmaengine: at_hdmac: Fix completion of unissued descriptor in case of errors
     - dmaengine: at_hdmac: Don't allow CPU to reorder channel enable
     - dmaengine: at_hdmac: Fix impossible condition
     - dmaengine: at_hdmac: Check return code of dma_async_device_register
     - x86/cpu: Restore AMD's DE_CFG MSR after resume
     - selftests/futex: fix build for clang
     - drm/imx: imx-tve: Fix return type of imx_tve_connector_mode_valid
     - ASoC: core: Fix use-after-free in snd_soc_exit()
     - serial: 8250_omap: remove wait loop from Errata i202 workaround
     - serial: 8250: omap: Flush PM QOS work on remove
     - tty: n_gsm: fix sleep-in-atomic-context bug in gsm_control_send
     - ASoC: soc-utils: Remove __exit for snd_soc_util_exit()
     - block: sed-opal: kmalloc the cmd/resp buffers
     - parport_pc: Avoid FIFO port location truncation
     - pinctrl: devicetree: fix null pointer dereferencing in pinctrl_dt_to_map
     - net: bgmac: Drop free_netdev() from bgmac_enet_remove()
     - mISDN: fix possible memory leak

 linux (4.15.0-204.215) bionic; urgency=medium
 .
   * bionic/linux: 4.15.0-204.215 -proposed tracker (LP: #2003522)
 .
   * Revoke & rotate to new signing key (LP: #2002812)
     - [Packaging] Revoke and rotate to new signing key
 .