UbuntuUpdates.org

Package "linux-azure-5.15"

This package belongs to a PPA: Canonical Kernel Team

Name: linux-azure-5.15

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Linux kernel version specific cloud tools for version 5.15.0-1072
  • Header files related to Linux kernel version 5.15.0
  • Linux kernel version specific tools for version 5.15.0-1072
  • Linux kernel buildinfo for version 5.15.0 on 64 bit x86 SMP

Latest version: 5.15.0-1072.81~20.04.1
Release: focal (20.04)
Level: base
Repository: main

Links



Other versions of "linux-azure-5.15" in Focal

Repository Area Version
security main 5.15.0-1073.82~20.04.1
updates main 5.15.0-1073.82~20.04.1
proposed main 5.15.0-1072.81~20.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.15.0-1060.69~20.04.1 2024-03-20 00:08:41 UTC

 linux-azure-5.15 (5.15.0-1060.69~20.04.1) focal; urgency=medium
 .
   * focal/linux-azure-5.15: 5.15.0-1060.69~20.04.1 -proposed tracker
     (LP: #2055591)
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] drop ABI data
     - debian.azure-5.15/dkms-versions -- update from kernel-versions
       (main/2024.03.04)
 .
   [ Ubuntu: 5.15.0-1060.69 ]
 .
   * jammy/linux-azure: 5.15.0-1060.69 -proposed tracker (LP: #2055592)
   * Packaging resync (LP: #1786013)
     - debian.azure/dkms-versions -- update from kernel-versions (main/s2024.02.05)
   * jammy/linux: 5.15.0-102.112 -proposed tracker (LP: #2055632)
   * Drop ABI checks from kernel build (LP: #2055686)
     - [Packaging] Remove in-tree abi checks
     - [Packaging] Drop abi checks from final-checks
   * Packaging resync (LP: #1786013)
     - [Packaging] drop ABI data
     - [Packaging] update annotations scripts
     - debian.master/dkms-versions -- update from kernel-versions (main/2024.03.04)
   * block/loop: No longer allows to create partitions (LP: #2056143)
     - block, loop: support partitions without scanning
   * Cranky update-dkms-versions rollout (LP: #2055685)
     - [Packaging] remove update-dkms-versions
     - Move debian/dkms-versions to debian.master/dkms-versions
     - [Packaging] Replace debian/dkms-versions with $(DEBIAN)/dkms-versions
     - [Packaging] remove update-version-dkms
   * linux: please move erofs.ko (CONFIG_EROFS for EROFS support) from linux-
     modules-extra to linux-modules (LP: #2054809)
     - UBUNTU [Packaging]: Include erofs in linux-modules instead of linux-modules-
       extra
   * linux-tools-common: man page of usbip[d] is misplaced (LP: #2054094)
     - [Packaging] rules: Put usbip manpages in the correct directory
   * CVE-2024-23851
     - dm ioctl: log an error if the ioctl structure is corrupted
     - dm: limit the number of targets and parameter size area
   * CVE-2024-23850
     - btrfs: do not ASSERT() if the newly created subvolume already got read
   * x86: performance: tsc: Extend watchdog check exemption to 4-Sockets platform
     (LP: #2054699)
     - x86/tsc: Extend watchdog check exemption to 4-Sockets platform
   * linux: please move dmi-sysfs.ko (CONFIG_DMI_SYSFS for SMBIOS support) from
     linux-modules-extra to linux-modules (LP: #2045561)
     - [Packaging] Move dmi-sysfs.ko into linux-modules
   * Fix bpf selftests build failure after v5.15.139 update (LP: #2054567)
     - Revert "selftests/bpf: Test tail call counting with bpf2bpf and data on
       stack"
   * Jammy update: v5.15.148 upstream stable release (LP: #2055145)
     - f2fs: explicitly null-terminate the xattr list
     - pinctrl: lochnagar: Don't build on MIPS
     - ALSA: hda - Fix speaker and headset mic pin config for CHUWI CoreBook XPro
     - mptcp: fix uninit-value in mptcp_incoming_options
     - wifi: cfg80211: lock wiphy mutex for rfkill poll
     - debugfs: fix automount d_fsdata usage
     - drm/amdgpu: Fix cat debugfs amdgpu_regs_didt causes kernel null pointer
     - nvme-core: check for too small lba shift
     - ASoC: wm8974: Correct boost mixer inputs
     - ASoC: Intel: Skylake: Fix mem leak in few functions
     - ASoC: nau8822: Fix incorrect type in assignment and cast to restricted
       __be16
     - ASoC: Intel: Skylake: mem leak in skl register function
     - ASoC: cs43130: Fix the position of const qualifier
     - ASoC: cs43130: Fix incorrect frame delay configuration
     - ASoC: rt5650: add mutex to avoid the jack detection failure
     - nouveau/tu102: flush all pdbs on vmm flush
     - net/tg3: fix race condition in tg3_reset_task()
     - ASoC: da7219: Support low DC impedance headset
     - ASoC: ops: add correct range check for limiting volume
     - nvme: introduce helper function to get ctrl state
     - drm/amdgpu: Add NULL checks for function pointers
     - drm/exynos: fix a potential error pointer dereference
     - drm/exynos: fix a wrong error checking
     - hwmon: (corsair-psu) Fix probe when built-in
     - clk: rockchip: rk3128: Fix HCLK_OTG gate register
     - jbd2: correct the printing of write_flags in jbd2_write_superblock()
     - drm/crtc: Fix uninit-value bug in drm_mode_setcrtc
     - neighbour: Don't let neigh_forced_gc() disable preemption for long
     - platform/x86: intel-vbtn: Fix missing tablet-mode-switch events
     - jbd2: fix soft lockup in journal_finish_inode_data_buffers()
     - tracing: Have large events show up as '[LINE TOO BIG]' instead of nothing
     - tracing: Add size check when printing trace_marker output
     - stmmac: dwmac-loongson: drop useless check for compatible fallback
     - MIPS: dts: loongson: drop incorrect dwmac fallback compatible
     - tracing: Fix uaf issue when open the hist or hist_debug file
     - ring-buffer: Do not record in NMI if the arch does not support cmpxchg in
       NMI
     - reset: hisilicon: hi6220: fix Wvoid-pointer-to-enum-cast warning
     - Input: atkbd - skip ATKBD_CMD_GETID in translated mode
     - Input: i8042 - add nomux quirk for Acer P459-G2-M
     - s390/scm: fix virtual vs physical address confusion
     - ARC: fix spare error
     - wifi: iwlwifi: pcie: avoid a NULL pointer dereference
     - Input: xpad - add Razer Wolverine V2 support
     - ASoC: Intel: bytcr_rt5640: Add quirk for the Medion Lifetab S10346
     - i2c: rk3x: fix potential spinlock recursion on poll
     - net: qrtr: ns: Return 0 if server port is not present
     - ARM: sun9i: smp: fix return code check of of_property_match_string
     - drm/crtc: fix uninitialized variable use
     - ACPI: resource: Add another DMI match for the TongFang GMxXGxx
     - Revert "ASoC: atmel: Remove system clock tree configuration for
       at91sam9g20ek"
     - bpf: Add --skip_encoding_btf_inconsistent_proto, --btf_gen_optimized to
       pahole flags for v1.25
     - kprobes: Fix to handle forcibly unoptimized kprobes on freeing_list
     - Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d"
     - bi

Source diff to previous version
1786013 Packaging resync
2055686 Drop ABI checks from kernel build
2056143 block/loop: No longer allows to create partitions
2055685 Cranky update-dkms-versions rollout
2054809 linux: please move erofs.ko (CONFIG_EROFS for EROFS support) from linux-modules-extra to linux-modules
2054094 linux-tools-common: man page of usbip[d] is misplaced
2054699 x86: performance: tsc: Extend watchdog check exemption to 4-Sockets platform
2045561 linux: please move dmi-sysfs.ko (CONFIG_DMI_SYSFS for SMBIOS support) from linux-modules-extra to linux-modules
2054567 Fix bpf selftests build failure after v5.15.139 update
2055145 Jammy update: v5.15.148 upstream stable release
2053251 performance: Scheduler: ratelimit updating of load_avg
2054411 Jammy update: v5.15.147 upstream stable release
2053152 performance: mm/percpu-internal.h: Re-layout pcpu_chunk to mitigate false sharing
2053069 performance: address_space: add padding for i_map and i_mmap_rwsem to mitigate a false sharing
2052817 cpufreq: intel_pstate: Enable HWP IO boost for all servers
2052827 performance: mm/memcontrol.c: remove the redundant updating of stats_flush_threshold
2053212 Jammy update: v5.15.146 upstream stable release
1971699 disable Intel DMA remapping by default
2052005 Validate connection interval to pass Bluetooth Test Suite
2052406 Jammy update: v5.15.145 upstream stable release
2052404 Jammy update: v5.15.144 upstream stable release
CVE-2024-23851 copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes, and crash, because of a missi
CVE-2024-23850 In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an assertion failure and crash because a subvolume can be
CVE-2024-24855 A race condition was found in the Linux kernel's scsi device driver in lpfc_unregister_fcf_rescan() function. This can result in a null pointer deref
CVE-2024-1085 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_
CVE-2023-23000 In the Linux kernel before 5.17, drivers/phy/tegra/xusb.c mishandles the tegra_xusb_find_port_node return value. Callers expect NULL in the error cas
CVE-2023-46838 Transmit requests in Xen's virtual network protocol can consist of multiple parts. While not really useful, except for the initial part any of them
CVE-2024-1086 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_
CVE-2023-32247 A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2_SESSION_S
CVE-2024-22705 An issue was discovered in ksmbd in the Linux kernel before 6.6.10. smb2_get_data_area_len in fs/smb/server/smb2misc.c can cause an smb_strndup_from_

Version: 5.15.0-1058.66~20.04.2 2024-02-28 15:09:11 UTC

 linux-azure-5.15 (5.15.0-1058.66~20.04.2) focal; urgency=medium
 .
   * focal/linux-azure-5.15: 5.15.0-1058.66~20.04.2 -proposed tracker
     (LP: #2052048)
 .
   * Packaging resync (LP: #1786013)
     - debian/dkms-versions -- update from kernel-versions (main/2024.02.05)
 .
   [ Ubuntu: 5.15.0-1058.66 ]
 .
   * jammy/linux-azure: 5.15.0-1058.66 -proposed tracker (LP: #2052049)
   * Azure: Enable CONFIG_TEST_LOCKUP (LP: #2052723)
     - [Config] CONFIG_TEST_LOCKUP=m
   * jammy/linux: 5.15.0-100.110 -proposed tracker (LP: #2052616)
   * i915 regression introduced with 5.5 kernel (LP: #2044131)
     - drm/i915: Skip some timing checks on BXT/GLK DSI transcoders
   * Audio balancing setting doesn't work with the cirrus codec (LP: #2051050)
     - ALSA: hda/cs8409: Suppress vmaster control for Dolphin models
   * partproke is broken on empty loopback device (LP: #2049689)
     - block: Move checking GENHD_FL_NO_PART to bdev_add_partition()
   * CVE-2023-0340
     - vhost: use kzalloc() instead of kmalloc() followed by memset()
   * CVE-2023-51780
     - atm: Fix Use-After-Free in do_vcc_ioctl
   * CVE-2023-6915
     - ida: Fix crash in ida_free when the bitmap is empty
   * CVE-2024-0646
     - net: tls, update curr on splice as well
   * CVE-2024-0565
     - smb: client: fix OOB in receive_encrypted_standard()
   * CVE-2023-51781
     - appletalk: Fix Use-After-Free in atalk_ioctl
   * Jammy update: v5.15.143 upstream stable release (LP: #2050858)
     - vdpa/mlx5: preserve CVQ vringh index
     - hrtimers: Push pending hrtimers away from outgoing CPU earlier
     - i2c: designware: Fix corrupted memory seen in the ISR
     - netfilter: ipset: fix race condition between swap/destroy and kernel side
       add/del/test
     - tg3: Move the [rt]x_dropped counters to tg3_napi
     - tg3: Increment tx_dropped in tg3_tso_bug()
     - kconfig: fix memory leak from range properties
     - drm/amdgpu: correct chunk_ptr to a pointer to chunk.
     - platform/x86: asus-wmi: Adjust tablet/lidflip handling to use enum
     - platform/x86: asus-wmi: Add support for ROG X13 tablet mode
     - platform/x86: asus-wmi: Simplify tablet-mode-switch probing
     - platform/x86: asus-wmi: Simplify tablet-mode-switch handling
     - platform/x86: asus-wmi: Move i8042 filter install to shared asus-wmi code
     - of: dynamic: Fix of_reconfig_get_state_change() return value documentation
     - platform/x86: wmi: Allow duplicate GUIDs for drivers that use struct
       wmi_driver
     - platform/x86: wmi: Skip blocks with zero instances
     - ipv6: fix potential NULL deref in fib6_add()
     - octeontx2-pf: Add missing mutex lock in otx2_get_pauseparam
     - octeontx2-af: Check return value of nix_get_nixlf before using nixlf
     - hv_netvsc: rndis_filter needs to select NLS
     - r8152: Rename RTL8152_UNPLUG to RTL8152_INACCESSIBLE
     - r8152: Add RTL8152_INACCESSIBLE checks to more loops
     - r8152: Add RTL8152_INACCESSIBLE to r8156b_wait_loading_flash()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_pre_firmware_1()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_aldps_en()
     - mlxbf-bootctl: correctly identify secure boot with development keys
     - platform/mellanox: Add null pointer checks for devm_kasprintf()
     - platform/mellanox: Check devm_hwmon_device_register_with_groups() return
       value
     - arcnet: restoring support for multiple Sohard Arcnet cards
     - net: stmmac: fix FPE events losing
     - octeontx2-af: fix a use-after-free in rvu_npa_register_reporters
     - i40e: Fix unexpected MFS warning message
     - net: bnxt: fix a potential use-after-free in bnxt_init_tc
     - ionic: fix snprintf format length warning
     - ionic: Fix dim work handling in split interrupt mode
     - ipv4: ip_gre: Avoid skb_pull() failure in ipgre_xmit()
     - net: hns: fix fake link up on xge port
     - octeontx2-af: Update Tx link register range
     - netfilter: nf_tables: validate family when identifying table via handle
     - netfilter: xt_owner: Fix for unsafe access of sk->sk_socket
     - tcp: do not accept ACK of bytes we never sent
     - bpf: sockmap, updating the sg structure should also update curr
     - psample: Require 'CAP_NET_ADMIN' when joining "packets" group
     - net: add missing kdoc for struct genl_multicast_group::flags
     - drop_monitor: Require 'CAP_SYS_ADMIN' when joining "events" group
     - tee: optee: Fix supplicant based device enumeration
     - RDMA/hns: Fix unnecessary err return when using invalid congest control
       algorithm
     - RDMA/irdma: Do not modify to SQD on error
     - RDMA/irdma: Add wait for suspend on SQD
     - arm64: dts: rockchip: Expand reg size of vdec node for RK3399
     - RDMA/rtrs-srv: Do not unconditionally enable irq
     - RDMA/rtrs-clt: Start hb after path_up
     - RDMA/rtrs-srv: Check return values while processing info request
     - RDMA/rtrs-srv: Free srv_mr iu only when always_invalidate is true
     - RDMA/rtrs-srv: Destroy path files after making sure no IOs in-flight
     - RDMA/rtrs-clt: Fix the max_send_wr setting
     - RDMA/rtrs-clt: Remove the warnings for req in_use check
     - RDMA/bnxt_re: Correct module description string
     - hwmon: (acpi_power_meter) Fix 4.29 MW bug
     - hwmon: (nzxt-kraken2) Fix error handling path in kraken2_probe()
     - ASoC: wm_adsp: fix memleak in wm_adsp_buffer_populate
     - RDMA/core: Fix umem iterator when PAGE_SIZE is greater then HCA pgsz
     - RDMA/irdma: Avoid free the non-cqp_request scratch
     - arm64: dts: imx8mq: drop usb3-resume-missing-cas from usb
     - arm64: dts: imx8mp: imx8mq: Add parkmode-disable-ss-quirk on DWC3
     - ARM: dts: imx6ul-pico: Describe the Ethernet PHY clock
     - tracing: Fix a warning when allocating buffered events fails
     - scsi: be2iscsi: Fix a memleak in beiscsi_init_wrb_handle()
     - ARM: imx: Check return value of devm_kasprintf in imx_mmdc_perf_init
     - ARM: dts: imx7: Declare timers compatible with fsl,imx6d

Source diff to previous version
1786013 Packaging resync
2052723 Azure: Enable CONFIG_TEST_LOCKUP
2049689 partproke is broken on empty loopback device
2050858 Jammy update: v5.15.143 upstream stable release
2036239 Intel E810-XXV - NETDEV WATCHDOG: (ice): transmit queue timed out
2048404 Don't WARN_ON_ONCE() for a broken discovery table
2047634 Reject connection when malformed L2CAP signal packet is received
2050849 Jammy update: v5.15.142 upstream stable release
2050044 Jammy update: v5.15.141 upstream stable release
2050038 Jammy update: v5.15.140 upstream stable release
2049432 Jammy update: v5.15.139 upstream stable release
2049417 Jammy update: v5.15.138 upstream stable release
2049350 Jammy update: v5.15.137 upstream stable release
CVE-2023-0340 The Custom Content Shortcode WordPress plugin through 4.0.2 does not validate one of its shortcode attribute, which could allow users with a contribu
CVE-2023-51780 An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race conditio
CVE-2023-6915 A Null pointer dereference problem was found in ida_free in lib/idr.c in the Linux Kernel. This issue may allow an attacker using this library to cau
CVE-2024-0646 An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with
CVE-2024-0565 An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Ker
CVE-2023-51781 An issue was discovered in the Linux kernel before 6.6.8. atalk_ioctl in net/appletalk/ddp.c has a use-after-free because of an atalk_recvmsg race co
CVE-2023-46862 An issue was discovered in the Linux kernel through 6.5.9. During a race with SQ thread exit, an io_uring/fdinfo.c io_uring_show_fdinfo NULL pointer
CVE-2023-51782 An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use-after-free because of a rose_accept race conditi
CVE-2023-51779 bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a bt_sock_ioctl race condition.
CVE-2023-22995 In the Linux kernel before 5.17, an error path in dwc3_qcom_acpi_register_core in drivers/usb/dwc3/dwc3-qcom.c lacks certain platform_device_put and
CVE-2023-4134 Input: cyttsp4_core - change del_timer_sync() to timer_shutdown_sync()

Version: 5.15.0-1058.66~20.04.1 2024-02-23 18:08:47 UTC

 linux-azure-5.15 (5.15.0-1058.66~20.04.1) focal; urgency=medium
 .
   * focal/linux-azure-5.15: 5.15.0-1058.66~20.04.1 -proposed tracker
     (LP: #2052048)
 .
   * Packaging resync (LP: #1786013)
     - debian/dkms-versions -- update from kernel-versions (main/2024.02.05)
 .
   [ Ubuntu: 5.15.0-1058.66 ]
 .
   * jammy/linux-azure: 5.15.0-1058.66 -proposed tracker (LP: #2052049)
   * Azure: Enable CONFIG_TEST_LOCKUP (LP: #2052723)
     - [Config] CONFIG_TEST_LOCKUP=m
   * jammy/linux: 5.15.0-100.110 -proposed tracker (LP: #2052616)
   * i915 regression introduced with 5.5 kernel (LP: #2044131)
     - drm/i915: Skip some timing checks on BXT/GLK DSI transcoders
   * Audio balancing setting doesn't work with the cirrus codec (LP: #2051050)
     - ALSA: hda/cs8409: Suppress vmaster control for Dolphin models
   * partproke is broken on empty loopback device (LP: #2049689)
     - block: Move checking GENHD_FL_NO_PART to bdev_add_partition()
   * CVE-2023-0340
     - vhost: use kzalloc() instead of kmalloc() followed by memset()
   * CVE-2023-51780
     - atm: Fix Use-After-Free in do_vcc_ioctl
   * CVE-2023-6915
     - ida: Fix crash in ida_free when the bitmap is empty
   * CVE-2024-0646
     - net: tls, update curr on splice as well
   * CVE-2024-0565
     - smb: client: fix OOB in receive_encrypted_standard()
   * CVE-2023-51781
     - appletalk: Fix Use-After-Free in atalk_ioctl
   * Jammy update: v5.15.143 upstream stable release (LP: #2050858)
     - vdpa/mlx5: preserve CVQ vringh index
     - hrtimers: Push pending hrtimers away from outgoing CPU earlier
     - i2c: designware: Fix corrupted memory seen in the ISR
     - netfilter: ipset: fix race condition between swap/destroy and kernel side
       add/del/test
     - tg3: Move the [rt]x_dropped counters to tg3_napi
     - tg3: Increment tx_dropped in tg3_tso_bug()
     - kconfig: fix memory leak from range properties
     - drm/amdgpu: correct chunk_ptr to a pointer to chunk.
     - platform/x86: asus-wmi: Adjust tablet/lidflip handling to use enum
     - platform/x86: asus-wmi: Add support for ROG X13 tablet mode
     - platform/x86: asus-wmi: Simplify tablet-mode-switch probing
     - platform/x86: asus-wmi: Simplify tablet-mode-switch handling
     - platform/x86: asus-wmi: Move i8042 filter install to shared asus-wmi code
     - of: dynamic: Fix of_reconfig_get_state_change() return value documentation
     - platform/x86: wmi: Allow duplicate GUIDs for drivers that use struct
       wmi_driver
     - platform/x86: wmi: Skip blocks with zero instances
     - ipv6: fix potential NULL deref in fib6_add()
     - octeontx2-pf: Add missing mutex lock in otx2_get_pauseparam
     - octeontx2-af: Check return value of nix_get_nixlf before using nixlf
     - hv_netvsc: rndis_filter needs to select NLS
     - r8152: Rename RTL8152_UNPLUG to RTL8152_INACCESSIBLE
     - r8152: Add RTL8152_INACCESSIBLE checks to more loops
     - r8152: Add RTL8152_INACCESSIBLE to r8156b_wait_loading_flash()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_pre_firmware_1()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_aldps_en()
     - mlxbf-bootctl: correctly identify secure boot with development keys
     - platform/mellanox: Add null pointer checks for devm_kasprintf()
     - platform/mellanox: Check devm_hwmon_device_register_with_groups() return
       value
     - arcnet: restoring support for multiple Sohard Arcnet cards
     - net: stmmac: fix FPE events losing
     - octeontx2-af: fix a use-after-free in rvu_npa_register_reporters
     - i40e: Fix unexpected MFS warning message
     - net: bnxt: fix a potential use-after-free in bnxt_init_tc
     - ionic: fix snprintf format length warning
     - ionic: Fix dim work handling in split interrupt mode
     - ipv4: ip_gre: Avoid skb_pull() failure in ipgre_xmit()
     - net: hns: fix fake link up on xge port
     - octeontx2-af: Update Tx link register range
     - netfilter: nf_tables: validate family when identifying table via handle
     - netfilter: xt_owner: Fix for unsafe access of sk->sk_socket
     - tcp: do not accept ACK of bytes we never sent
     - bpf: sockmap, updating the sg structure should also update curr
     - psample: Require 'CAP_NET_ADMIN' when joining "packets" group
     - net: add missing kdoc for struct genl_multicast_group::flags
     - drop_monitor: Require 'CAP_SYS_ADMIN' when joining "events" group
     - tee: optee: Fix supplicant based device enumeration
     - RDMA/hns: Fix unnecessary err return when using invalid congest control
       algorithm
     - RDMA/irdma: Do not modify to SQD on error
     - RDMA/irdma: Add wait for suspend on SQD
     - arm64: dts: rockchip: Expand reg size of vdec node for RK3399
     - RDMA/rtrs-srv: Do not unconditionally enable irq
     - RDMA/rtrs-clt: Start hb after path_up
     - RDMA/rtrs-srv: Check return values while processing info request
     - RDMA/rtrs-srv: Free srv_mr iu only when always_invalidate is true
     - RDMA/rtrs-srv: Destroy path files after making sure no IOs in-flight
     - RDMA/rtrs-clt: Fix the max_send_wr setting
     - RDMA/rtrs-clt: Remove the warnings for req in_use check
     - RDMA/bnxt_re: Correct module description string
     - hwmon: (acpi_power_meter) Fix 4.29 MW bug
     - hwmon: (nzxt-kraken2) Fix error handling path in kraken2_probe()
     - ASoC: wm_adsp: fix memleak in wm_adsp_buffer_populate
     - RDMA/core: Fix umem iterator when PAGE_SIZE is greater then HCA pgsz
     - RDMA/irdma: Avoid free the non-cqp_request scratch
     - arm64: dts: imx8mq: drop usb3-resume-missing-cas from usb
     - arm64: dts: imx8mp: imx8mq: Add parkmode-disable-ss-quirk on DWC3
     - ARM: dts: imx6ul-pico: Describe the Ethernet PHY clock
     - tracing: Fix a warning when allocating buffered events fails
     - scsi: be2iscsi: Fix a memleak in beiscsi_init_wrb_handle()
     - ARM: imx: Check return value of devm_kasprintf in imx_mmdc_perf_init
     - ARM: dts: imx7: Declare timers compatible with fsl,imx6d

Source diff to previous version
1786013 Packaging resync
2052723 Azure: Enable CONFIG_TEST_LOCKUP
2049689 partproke is broken on empty loopback device
2050858 Jammy update: v5.15.143 upstream stable release
2036239 Intel E810-XXV - NETDEV WATCHDOG: (ice): transmit queue timed out
2048404 Don't WARN_ON_ONCE() for a broken discovery table
2047634 Reject connection when malformed L2CAP signal packet is received
2050849 Jammy update: v5.15.142 upstream stable release
2050044 Jammy update: v5.15.141 upstream stable release
2050038 Jammy update: v5.15.140 upstream stable release
2049432 Jammy update: v5.15.139 upstream stable release
2049417 Jammy update: v5.15.138 upstream stable release
2049350 Jammy update: v5.15.137 upstream stable release
CVE-2023-0340 The Custom Content Shortcode WordPress plugin through 4.0.2 does not validate one of its shortcode attribute, which could allow users with a contribu
CVE-2023-51780 An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race conditio
CVE-2023-6915 A Null pointer dereference problem was found in ida_free in lib/idr.c in the Linux Kernel. This issue may allow an attacker using this library to cau
CVE-2024-0646 An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with
CVE-2024-0565 An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Ker
CVE-2023-51781 An issue was discovered in the Linux kernel before 6.6.8. atalk_ioctl in net/appletalk/ddp.c has a use-after-free because of an atalk_recvmsg race co
CVE-2023-46862 An issue was discovered in the Linux kernel through 6.5.9. During a race with SQ thread exit, an io_uring/fdinfo.c io_uring_show_fdinfo NULL pointer
CVE-2023-51782 An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use-after-free because of a rose_accept race conditi
CVE-2023-51779 bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a bt_sock_ioctl race condition.
CVE-2023-22995 In the Linux kernel before 5.17, an error path in dwc3_qcom_acpi_register_core in drivers/usb/dwc3/dwc3-qcom.c lacks certain platform_device_put and
CVE-2023-4134 Input: cyttsp4_core - change del_timer_sync() to timer_shutdown_sync()

Version: 5.15.0-1056.64~20.04.1 2024-02-07 19:09:07 UTC

 linux-azure-5.15 (5.15.0-1056.64~20.04.1) focal; urgency=medium
 .
   * focal/linux-azure-5.15: 5.15.0-1056.64~20.04.1 -proposed tracker
     (LP: #2052544)
 .
   [ Ubuntu: 5.15.0-1056.64 ]
 .
   * jammy/linux-azure: 5.15.0-1056.64 -proposed tracker (LP: #2052545)
   * Azure: Fix regression introduced in LP: #2045069 (LP: #2052453)
     - hv_netvsc: Fix race condition between netvsc_probe and netvsc_remove
     - hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed
 .

Source diff to previous version
2045069 Azure: Deprecate Netvsc and implement MANA direct
2052453 Azure: Fix regression introduced in LP: #2045069

Version: 5.15.0-1055.63~20.04.1 2024-01-18 18:08:53 UTC

 linux-azure-5.15 (5.15.0-1055.63~20.04.1) focal; urgency=medium
 .
   * focal/linux-azure-5.15: 5.15.0-1055.63~20.04.1 -proposed tracker
     (LP: #2048290)
 .
   [ Ubuntu: 5.15.0-1055.63 ]
 .
   * jammy/linux-azure: 5.15.0-1055.63 -proposed tracker (LP: #2048291)
   * Azure - Kernel crashes when removing gpu from pci (LP: #2042568)
     - Revert "PCI: hv: Use async probing to reduce boot time"
   * Azure: mlx5e: Add support for PCI relaxed ordering (RO) for better
     performance (LP: #2039208)
     - RDMA/mlx5: Reorder calls to pcie_relaxed_ordering_enabled()
     - RDMA/mlx5: Remove pcie_relaxed_ordering_enabled() check for RO write
   * Azure: Deprecate Netvsc and implement MANA direct (LP: #2045069)
     - hv_netvsc: fix race of netvsc and VF register_netdevice
     - hv_netvsc: Fix race of register_netdevice_notifier and VF register
     - hv_netvsc: Mark VF as slave before exposing it to user-mode
   * jammy/linux: 5.15.0-94.104 -proposed tracker (LP: #2048777)
   * [SRU] Duplicate Device_dax ids Created and hence Probing is Failing.
     (LP: #2028158)
     - device-dax: Fix duplicate 'hmem' device registration
   * Add ODM driver f81604 usb-can (LP: #2045387)
     - can: usb: f81604: add Fintek F81604 support
     - [Config] updateconfigs for ODM drivers CONFIG_CAN_F81604
   * Add ODM driver gpio-m058ssan (LP: #2045386)
     - SAUCE: ODM: gpio: add M058SSAN gpio driver
     - [Config] updateconfigs for ODM drivers CONFIG_GPIO_M058SSAN
   * Add ODM driver rtc-pcf85263 (LP: #2045385)
     - SAUCE: ODM: rtc: add PCF85263 RTC driver
     - [Config] updateconfigs for ODM drivers CONFIG_RTC_DRV_PCF85263
   * AppArmor patch for mq-posix interface is missing in jammy (LP: #2045384)
     - SAUCE: (no-up) apparmor: reserve mediation classes
     - SAUCE: (no-up) apparmor: Add fine grained mediation of posix mqueues
   * Packaging resync (LP: #1786013)
     - [Packaging] update annotations scripts
   * jammy/linux: 5.15.0-93.103 -proposed tracker (LP: #2048330)
   * Packaging resync (LP: #1786013)
     - [Packaging] resync git-ubuntu-log
     - [Packaging] resync update-dkms-versions helper
     - [Packaging] remove helper scripts
     - [Packaging] update annotations scripts
     - debian/dkms-versions -- update from kernel-versions (main/2024.01.08)
   * Hotplugging SCSI disk in QEMU VM fails (LP: #2047382)
     - Revert "PCI: acpiphp: Reassign resources on bridge if necessary"
   * CVE-2023-6622
     - netfilter: nf_tables: bail out on mismatching dynset and set expressions
   * CVE-2024-0193
     - netfilter: nf_tables: skip set commit for deleted/destroyed sets
   * CVE-2023-6040
     - netfilter: nf_tables: Reject tables of unsupported family
   * Patches needed for AmpereOne (arm64) (LP: #2044192)
     - clocksource/arm_arch_timer: Add build-time guards for unhandled register
       accesses
     - clocksource/drivers/arm_arch_timer: Drop CNT*_TVAL read accessors
     - clocksource/drivers/arm_arch_timer: Extend write side of timer register
       accessors to u64
     - clocksource/drivers/arm_arch_timer: Move system register timer programming
       over to CVAL
     - clocksource/drivers/arm_arch_timer: Move drop _tval from erratum function
       names
     - clocksource/drivers/arm_arch_timer: Fix MMIO base address vs callback
       ordering issue
     - clocksource/drivers/arm_arch_timer: Move MMIO timer programming over to CVAL
     - clocksource/drivers/arm_arch_timer: Advertise 56bit timer to the core code
     - clocksource/drivers/arm_arch_timer: Work around broken CVAL implementations
     - clocksource/drivers/arm_arch_timer: Remove any trace of the TVAL programming
       interface
     - clocksource/drivers/arm_arch_timer: Drop unnecessary ISB on CVAL programming
     - clocksource/drivers/arm_arch_timer: Fix masking for high freq counters
     - clocksource/drivers/arch_arm_timer: Move workaround synchronisation around
   * Add quirk to disable i915 fastboot on B&R PC (LP: #2047630)
     - SAUCE: i915: force disable fastboot quirk
   * Some machines can't pass the pm-graph test (LP: #2046217)
     - wifi: iwlwifi: pcie: rescan bus if no parent
   * Sound: Add rtl quirk of M90-Gen5 (LP: #2046105)
     - ALSA: hda/realtek: Enable headset on Lenovo M90 Gen5
   * linux tools packages for derived kernels refuse to install simultaneously
     due to libcpupower name collision (LP: #2035971)
     - [Packaging] Statically link libcpupower into cpupower tool
   * [Debian] autoreconstruct - Do not generate chmod -x for deleted files
     (LP: #2045562)
     - [Debian] autoreconstruct - Do not generate chmod -x for deleted files
   * CVE-2023-6931
     - perf/core: Add a new read format to get a number of lost samples
     - perf: Fix perf_event_validate_size()
     - perf: Fix perf_event_validate_size() lockdep splat
   * CVE-2023-6932
     - ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet
   * CVE-2023-6606
     - smb: client: fix OOB in smbCalcSize()
   * CVE-2023-6817
     - netfilter: nft_set_pipapo: skip inactive elements during set walk
   * Jammy update: v5.15.136 upstream stable release (LP: #2046008)
     - iommu/vt-d: Avoid memory allocation in iommu_suspend()
     - scsi: core: Use a structure member to track the SCSI command submitter
     - scsi: core: Rename scsi_mq_done() into scsi_done() and export it
     - scsi: ib_srp: Call scsi_done() directly
     - RDMA/srp: Do not call scsi_done() from srp_abort()
     - RDMA/cxgb4: Check skb value for failure to allocate
     - perf/arm-cmn: Fix the unhandled overflow status of counter 4 to 7
     - of: overlay: Reorder struct fragment fields kerneldoc
     - platform/x86: think-lmi: Fix reference leak
     - platform/x86: hp-wmi:: Mark driver struct with __refdata to prevent section
       mismatch warning
     - lib/test_meminit: fix off-by-one error in test_pages()
     - HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect
     - quota: Fix slow quotaoff
     - net: prevent addr

2042568 Azure - Kernel crashes when removing gpu from pci
2039208 Azure: mlx5e: Add support for PCI relaxed ordering (RO) for better performance
2045069 Azure: Deprecate Netvsc and implement MANA direct
2028158 [SRU] Duplicate Device_dax ids Created and hence Probing is Failing.
2045387 Add ODM driver f81604 usb-can
2045386 Add ODM driver gpio-m058ssan
2045385 Add ODM driver rtc-pcf85263
2045384 AppArmor patch for mq-posix interface is missing in jammy
1786013 Packaging resync
2047382 Hotplugging SCSI disk in QEMU VM fails
2044192 Patches needed for AmpereOne (arm64)
2047630 Add quirk to disable i915 fastboot on B\u0026R PC
2035971 linux tools packages for derived kernels refuse to install simultaneously due to libcpupower name collision
2045562 [Debian] autoreconstruct - Do not generate chmod -x for deleted files
2046008 Jammy update: v5.15.136 upstream stable release
2045809 Jammy update: v5.15.135 upstream stable release
2029405 Change in trace file leads to test timeout in ftrace tests on 5.15 ARM64
2041842 Kernel doesn't compile with CONFIG_IMA
2044023 Jammy update: v5.15.134 upstream stable release
2043422 Jammy update: v5.15.133 upstream stable release
2041702 Jammy update: v5.15.132 upstream stable release
CVE-2023-6622 A null pointer dereference vulnerability was found in nft_dynset_init() in net/netfilter/nft_dynset.c in nf_tables in the Linux kernel. This issue ma
CVE-2024-0193 A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is r
CVE-2023-6040 An out-of-bounds access vulnerability involving netfilter was reported and fixed as: f1082dd31fe4 (netfilter: nf_tables: Reject tables of unsupported
CVE-2023-6931 A heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component can be exploited to achieve local privilege escala
CVE-2023-6932 A use-after-free vulnerability in the Linux kernel's ipv4: igmp component can be exploited to achieve local privilege escalation. A race condition c
CVE-2023-6606 An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allow a local attacker
CVE-2023-6817 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The func
CVE-2023-46813 An issue was discovered in the Linux kernel before 6.5.9, exploitable by local users with userspace access to MMIO registers. Incorrect access checki
CVE-2023-6111 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The func
CVE-2023-32252 A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2_LOGOFF co
CVE-2023-6176 A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occurs when a
CVE-2023-6039 A use-after-free flaw was found in lan78xx_disconnect in drivers/net/usb/lan78xx.c in the network sub-component, net/usb/lan78xx in the Linux Kernel.



About   -   Send Feedback to @ubuntu_updates