UbuntuUpdates.org

Package "linux-bluefield"

This package belongs to a PPA: Canonical Kernel Team

Name: linux-bluefield

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Header files related to Linux kernel version 5.4.0
  • Header files related to Linux kernel version 5.4.0

Latest version: 5.4.0-1090.97
Release: focal (20.04)
Level: base
Repository: main

Links



Other versions of "linux-bluefield" in Focal

Repository Area Version
security main 5.4.0-1089.96
updates main 5.4.0-1089.96
proposed main 5.4.0-1090.97

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.4.0-1090.97 2024-07-16 17:11:36 UTC

 linux-bluefield (5.4.0-1090.97) focal; urgency=medium
 .
   * focal/linux-bluefield: 5.4.0-1090.97 -proposed tracker (LP: #2072264)
 .
   [ Ubuntu: 5.4.0-192.212 ]
 .
   * focal/linux: 5.4.0-192.212 -proposed tracker (LP: #2072305)
   * Focal update: v5.4.278 upstream stable release (LP: #2071668)
     - x86/tsc: Trust initial offset in architectural TSC-adjust MSRs
     - speakup: Fix sizeof() vs ARRAY_SIZE() bug
     - ring-buffer: Fix a race between readers and resize checks
     - net: smc91x: Fix m68k kernel compilation for ColdFire CPU
     - nilfs2: fix unexpected freezing of nilfs_segctor_sync()
     - nilfs2: fix potential hang in nilfs_detach_log_writer()
     - wifi: cfg80211: fix the order of arguments for trace events of the tx_rx_evt
       class
     - net: usb: qmi_wwan: add Telit FN920C04 compositions
     - drm/amd/display: Set color_mgmt_changed to true on unsuspend
     - ASoC: rt5645: Fix the electric noise due to the CBJ contacts floating
     - ASoC: dt-bindings: rt5645: add cbj sleeve gpio property
     - ASoC: da7219-aad: fix usage of device_get_named_child_node()
     - drm/amdkfd: Flush the process wq before creating a kfd_process
     - nvme: find numa distance only if controller has valid numa id
     - openpromfs: finish conversion to the new mount API
     - crypto: bcm - Fix pointer arithmetic
     - firmware: raspberrypi: Use correct device for DMA mappings
     - ecryptfs: Fix buffer size for tag 66 packet
     - nilfs2: fix out-of-range warning
     - parisc: add missing export of __cmpxchg_u8()
     - crypto: ccp - drop platform ifdef checks
     - s390/cio: fix tracepoint subchannel type field
     - jffs2: prevent xattr node from overflowing the eraseblock
     - null_blk: Fix missing mutex_destroy() at module removal
     - md: fix resync softlockup when bitmap size is less than array size
     - wifi: ath10k: poll service ready message before failing
     - x86/boot: Ignore relocations in .notes sections in walk_relocs() too
     - qed: avoid truncating work queue length
     - scsi: ufs: qcom: Perform read back after writing reset bit
     - scsi: ufs: cdns-pltfrm: Perform read back after writing HCLKDIV
     - scsi: ufs: core: Perform read back after disabling interrupts
     - scsi: ufs: core: Perform read back after disabling UIC_COMMAND_COMPL
     - irqchip/alpine-msi: Fix off-by-one in allocation error path
     - ACPI: disable -Wstringop-truncation
     - cpufreq: Reorganize checks in cpufreq_offline()
     - cpufreq: Split cpufreq_offline()
     - cpufreq: Rearrange locking in cpufreq_remove_dev()
     - cpufreq: exit() callback is optional
     - scsi: libsas: Fix the failure of adding phy with zero-address to port
     - scsi: hpsa: Fix allocation size for Scsi_Host private data
     - x86/purgatory: Switch to the position-independent small code model
     - wifi: ath10k: Fix an error code problem in
       ath10k_dbg_sta_write_peer_debug_trigger()
     - wifi: ath10k: populate board data for WCN3990
     - tcp: minor optimization in tcp_add_backlog()
     - tcp: fix a signed-integer-overflow bug in tcp_add_backlog()
     - tcp: avoid premature drops in tcp_add_backlog()
     - macintosh/via-macii: Fix "BUG: sleeping function called from invalid
       context"
     - wifi: carl9170: add a proper sanity check for endpoints
     - wifi: ar5523: enable proper endpoint verification
     - sh: kprobes: Merge arch_copy_kprobe() into arch_prepare_kprobe()
     - Revert "sh: Handle calling csum_partial with misaligned data"
     - HID: intel-ish-hid: ipc: Add check for pci_alloc_irq_vectors
     - scsi: bfa: Ensure the copied buf is NUL terminated
     - scsi: qedf: Ensure the copied buf is NUL terminated
     - wifi: mwl8k: initialize cmd->addr[] properly
     - usb: aqc111: stop lying about skb->truesize
     - net: usb: sr9700: stop lying about skb->truesize
     - m68k: Fix spinlock race in kernel thread creation
     - m68k: mac: Fix reboot hang on Mac IIci
     - net: ethernet: cortina: Locking fixes
     - af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg
     - net: usb: smsc95xx: stop lying about skb->truesize
     - net: openvswitch: fix overwriting ct original tuple for ICMPv6
     - ipv6: sr: add missing seg6_local_exit
     - ipv6: sr: fix incorrect unregister order
     - ipv6: sr: fix invalid unregister error path
     - drm/amd/display: Fix potential index out of bounds in color transformation
       function
     - mtd: rawnand: hynix: fixed typo
     - fbdev: shmobile: fix snprintf truncation
     - drm/mediatek: Add 0 size check to mtk_drm_gem_obj
     - powerpc/fsl-soc: hide unused const variable
     - fbdev: sisfb: hide unused variables
     - media: ngene: Add dvb_ca_en50221_init return value check
     - media: radio-shark2: Avoid led_names truncations
     - platform/x86: wmi: Make two functions static
     - fbdev: sh7760fb: allow modular build
     - drm/arm/malidp: fix a possible null pointer dereference
     - ASoC: tracing: Export SND_SOC_DAPM_DIR_OUT to its value
     - drm/panel: simple: Add missing Innolux G121X1-L03 format, flags, connector
     - RDMA/hns: Use complete parentheses in macros
     - x86/insn: Fix PUSH instruction in x86 instruction decoder opcode map
     - ext4: avoid excessive credit estimate in ext4_tmpfile()
     - sunrpc: removed redundant procp check
     - SUNRPC: Fix gss_free_in_token_pages()
     - selftests/kcmp: Make the test output consistent and clear
     - selftests/kcmp: remove unused open mode
     - RDMA/IPoIB: Fix format truncation compilation errors
     - netrom: fix possible dead-lock in nr_rt_ioctl()
     - af_packet: do not call packet_read_pending() from tpacket_destruct_skb()
     - sched/topology: Don't set SD_BALANCE_WAKE on cpuset domain relax
     - sched/fair: Allow disabling sched_balance_newidle with
       sched_relax_domain_level
     - greybus: lights: check return of get_channel_from_mode
     - soundwire: cadence/intel: simplify PD

Source diff to previous version
2071668 Focal update: v5.4.278 upstream stable release
2070179 Focal update: v5.4.277 upstream stable release
2069758 Focal update: v5.4.276 upstream stable release
2061091 Freezing user space processes failed after 20.008 seconds (1 tasks refusing to freeze, wq_busy=0)
CVE-2024-27019 In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() nft_unreg
CVE-2024-26886 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: af_bluetooth: Fix deadlock Attemting to do sock_lock on .recvmsg may
CVE-2023-52752 In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() Skip SMB ses
CVE-2022-48674 In the Linux kernel, the following vulnerability has been resolved: erofs: fix pcluster use-after-free on UP platforms During stress testing with C
CVE-2024-36016 In the Linux kernel, the following vulnerability has been resolved: tty: n_gsm: fix possible out-of-bounds in gsm0_receive() Assuming the following
CVE-2022-48655 In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Harden accesses to the reset domains Accessing reset domain
CVE-2024-26907 In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix fortify source warning while accessing Eth segment ------------
CVE-2024-26585 In the Linux kernel, the following vulnerability has been resolved: tls: fix race between tx work scheduling and socket close Similarly to previous
CVE-2024-26584 In the Linux kernel, the following vulnerability has been resolved: net: tls: handle backlogging of crypto requests Since we're setting the CRYPTO_
CVE-2024-26583 In the Linux kernel, the following vulnerability has been resolved: tls: fix race between async notify and socket close The submitting thread (one

Version: 5.4.0-1088.95 2024-06-27 10:11:35 UTC

 linux-bluefield (5.4.0-1088.95) focal; urgency=medium
 .
   * focal/linux-bluefield: 5.4.0-1088.95 -proposed tracker (LP: #2068404)
 .
   [ Ubuntu: 5.4.0-189.209 ]
 .
   * focal/linux: 5.4.0-189.209 -proposed tracker (LP: #2068454)
   * Focal update: v5.4.275 upstream stable release (LP: #2067865)
     - batman-adv: Avoid infinite loop trying to resize local TT
     - Bluetooth: Fix memory leak in hci_req_sync_complete()
     - nouveau: fix function cast warning
     - net: openvswitch: fix unwanted error log on timeout policy probing
     - u64_stats: fix u64_stats_init() for lockdep when used repeatedly in one file
     - geneve: fix header validation in geneve[6]_xmit_skb
     - ipv6: fib: hide unused 'pn' variable
     - ipv4/route: avoid unused-but-set-variable warning
     - ipv6: fix race condition between ipv6_get_ifaddr and ipv6_del_addr
     - net/mlx5: Properly link new fs rules into the tree
     - net: ena: Fix potential sign extension issue
     - btrfs: qgroup: correctly model root qgroup rsv in convert
     - drm/client: Fully protect modes[] with dev->mode_config.mutex
     - vhost: Add smp_rmb() in vhost_vq_avail_empty()
     - selftests: timers: Fix abs() warning in posix_timers test
     - x86/apic: Force native_apic_mem_read() to use the MOV instruction
     - btrfs: record delayed inode root in transaction
     - selftests/ftrace: Limit length in subsystem-enable tests
     - kprobes: Fix possible use-after-free issue on kprobe registration
     - Revert "tracing/trigger: Fix to return error if failed to alloc snapshot"
     - netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()
     - tun: limit printing rate when illegal packet received by tun dev
     - RDMA/rxe: Fix the problem "mutex_destroy missing"
     - RDMA/mlx5: Fix port number for counter query in multi-port configuration
     - drm: nv04: Fix out of bounds access
     - clk: Remove prepare_lock hold assertion in __clk_release()
     - clk: Mark 'all_lists' as const
     - clk: remove extra empty line
     - clk: Print an info line before disabling unused clocks
     - clk: Initialize struct clk_core kref earlier
     - clk: Get runtime PM before walking tree during disable_unused
     - x86/cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ
     - comedi: vmk80xx: fix incomplete endpoint checking
     - serial/pmac_zilog: Remove flawed mitigation for rx irq flood
     - USB: serial: option: add Fibocom FM135-GL variants
     - USB: serial: option: add support for Fibocom FM650/FG650
     - USB: serial: option: add Lonsung U8300/U9300 product
     - USB: serial: option: support Quectel EM060K sub-models
     - USB: serial: option: add Rolling RW101-GL and RW135-GL support
     - USB: serial: option: add Telit FN920C04 rmnet compositions
     - usb: dwc2: host: Fix dereference issue in DDMA completion flow.
     - speakup: Avoid crash on very long word
     - fs: sysfs: Fix reference leak in sysfs_break_active_protection()
     - nouveau: fix instmem race condition around ptr stores
     - nilfs2: fix OOB in nilfs_set_de_type
     - KVM: async_pf: Cleanup kvm_setup_async_pf()
     - arm64: dts: rockchip: fix alphabetical ordering RK3399 puma
     - arm64: dts: rockchip: enable internal pull-up on PCIE_WAKE# for RK3399 Puma
     - arm64: dts: mediatek: mt7622: fix IR nodename
     - arm64: dts: mediatek: mt7622: fix ethernet controller "compatible"
     - arm64: dts: mediatek: mt7622: drop "reset-names" from thermal block
     - arm64: dts: mt2712: add ethernet device node
     - arm64: dts: mediatek: mt2712: fix validation errors
     - ARC: [plat-hsdk]: Remove misplaced interrupt-cells property
     - vxlan: drop packets from invalid src-address
     - mlxsw: core: Unregister EMAD trap using FORWARD action
     - NFC: trf7970a: disable all regulators on removal
     - net: usb: ax88179_178a: stop lying about skb->truesize
     - net: gtp: Fix Use-After-Free in gtp_dellink
     - ipvs: Fix checksumming on GSO of SCTP packets
     - net: openvswitch: Fix Use-After-Free in ovs_ct_exit
     - mlxsw: spectrum_acl_tcam: Fix race during rehash delayed work
     - mlxsw: spectrum_acl_tcam: Fix possible use-after-free during activity update
     - mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash
     - mlxsw: spectrum_acl_tcam: Rate limit error message
     - mlxsw: spectrum_acl_tcam: Fix memory leak during rehash
     - mlxsw: spectrum_acl_tcam: Fix warning during rehash
     - mlxsw: spectrum_acl_tcam: Fix incorrect list API usage
     - mlxsw: spectrum_acl_tcam: Fix memory leak when canceling rehash work
     - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue
     - iavf: Fix TC config comparison with existing adapter TC config
     - af_unix: Suppress false-positive lockdep splat for spin_lock() in
       __unix_gc().
     - serial: core: Provide port lock wrappers
     - serial: mxs-auart: add spinlock around changing cts state
     - Revert "crypto: api - Disallow identical driver names"
     - net/mlx5e: Fix a race in command alloc flow
     - tracing: Show size of requested perf buffer
     - tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker
       together
     - Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853
     - btrfs: fix information leak in btrfs_ioctl_logical_to_ino()
     - arm64: dts: rockchip: enable internal pull-up for Q7_THRM# on RK3399 Puma
     - drm/amdgpu: Fix leak when GPU memory allocation fails
     - irqchip/gic-v3-its: Prevent double free on error
     - ethernet: Add helper for assigning packet type when dest address does not
       match device address
     - net: b44: set pause params only when interface is up
     - stackdepot: respect __GFP_NOLOCKDEP allocation flag
     - mtd: diskonchip: work around ubsan link failure
     - tcp: Clean up kernel listener's reqsk in inet_twsk_purge()
     - tcp: Fix NEW_SYN_RECV han

Source diff to previous version
2067865 Focal update: v5.4.275 upstream stable release
2067857 Focal update: v5.4.274 upstream stable release
2064561 Focal update: v5.4.273 upstream stable release
2064555 Focal update: v5.4.272 upstream stable release
CVE-2024-26586 In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_tcam: Fix stack corruption When tc filters are first added
CVE-2024-26923 In the Linux kernel, the following vulnerability has been resolved: af_unix: Fix garbage collector racing against connect() Garbage collector does
CVE-2024-23307 Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (md, raid, raid5 modules) allows Forced Integer Overflow
CVE-2024-26889 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_core: Fix possible buffer overflow struct hci_dev_info has a fix
CVE-2024-26828 In the Linux kernel, the following vulnerability has been resolved: cifs: fix underflow in parse_server_interfaces() In this loop, we step through
CVE-2024-24861 A race condition was found in the Linux kernel's media/xc4000 device driver in xc4000 xc4000_get_frequency() function. This can result in return valu
CVE-2023-6270 A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct n
CVE-2024-26642 In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: disallow anonymous set with timeout flag Anonymous sets a
CVE-2024-26926 In the Linux kernel, the following vulnerability has been resolved: binder: check offset alignment in binder_get_object() Commit 6d98eb95b450 ("bin
CVE-2024-26922 In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate the parameters of bo mapping operations more clearly Verif
CVE-2024-26925 In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path The co
CVE-2024-26643 In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeout
CVE-2024-2201 Native Branch History Injection

Version: 5.4.0-1086.93 2024-06-03 15:11:26 UTC

 linux-bluefield (5.4.0-1086.93) focal; urgency=medium
 .
   * focal/linux-bluefield: 5.4.0-1086.93 -proposed tracker (LP: #2063770)
 .
   * mlxbf-gige: Vitesse PHY stuck in a bad state during reboot test
     (LP: #2064163)
     - SAUCE: mlxbf-gige: OOB PHY stuck in a bad state during reboot test
 .
   * mlxbf-gige: autonegotiation fails to complete on BF2 (LP: #2062384)
     - SAUCE: mlxbf-gige: autonegotiation fails to complete on BF2
 .
   [ Ubuntu: 5.4.0-186.206 ]
 .
   * focal/linux: 5.4.0-186.206 -proposed tracker (LP: #2063812)
   * Mount CIFS fails with Permission denied (LP: #2061986)
     - cifs: fix ntlmssp auth when there is no key exchange
   * USB stick can't be detected (LP: #2040948)
     - usb: Disable USB3 LPM at shutdown
   * CVE-2024-26733
     - net: dev: Convert sa_data to flexible array in struct sockaddr
     - arp: Prevent overflow in arp_req_get().
     - stddef: Introduce DECLARE_FLEX_ARRAY() helper
   * CVE-2024-26712
     - powerpc/kasan: Fix addr error caused by page alignment
   * CVE-2023-52530
     - wifi: mac80211: fix potential key use-after-free
   * CVE-2021-47063
     - drm: bridge/panel: Cleanup connector on bridge detach
   * [Ubuntu 22.04.4/linux-image-6.5.0-26-generic] Kernel output "UBSAN: array-
     index-out-of-bounds in /build/linux-hwe-6.5-34pCLi/linux-
     hwe-6.5-6.5.0/drivers/net/hyperv/netvsc.c:1445:41" multiple times,
     especially during boot. (LP: #2058477)
     - hv: hyperv.h: Replace one-element array with flexible-array member
   * CVE-2024-26614
     - tcp: make sure init the accept_queue's spinlocks once
     - ipv6: init the accept_queue's spinlocks in inet6_create
   * Focal update: v5.4.271 upstream stable release (LP: #2060216)
     - netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter
     - net: ip_tunnel: prevent perpetual headroom growth
     - tun: Fix xdp_rxq_info's queue_index when detaching
     - ipv6: fix potential "struct net" leak in inet6_rtm_getaddr()
     - lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is
       detected
     - net: usb: dm9601: fix wrong return value in dm9601_mdio_read
     - Bluetooth: Avoid potential use-after-free in hci_error_reset
     - Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST
     - Bluetooth: Enforce validation on max value of connection interval
     - netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate()
     - rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back
     - efi/capsule-loader: fix incorrect allocation size
     - power: supply: bq27xxx-i2c: Do not free non existing IRQ
     - ALSA: Drop leftover snd-rtctimer stuff from Makefile
     - afs: Fix endless loop in directory parsing
     - gtp: fix use-after-free and null-ptr-deref in gtp_newlink()
     - wifi: nl80211: reject iftype change with mesh ID change
     - btrfs: dev-replace: properly validate device names
     - dmaengine: fsl-qdma: fix SoC may hang on 16 byte unaligned read
     - dmaengine: fsl-qdma: init irq after reg initialization
     - mmc: core: Fix eMMC initialization with 1-bit bus connection
     - x86/cpu/intel: Detect TME keyid bits before setting MTRR mask registers
     - cachefiles: fix memory leak in cachefiles_add_cache()
     - fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super
     - gpio: 74x164: Enable output pins after registers are reset
     - Linux 5.4.271
   * Focal update: v5.4.270 upstream stable release (LP: #2060019)
     - KVM: arm64: vgic-its: Test for valid IRQ in its_sync_lpi_pending_table()
     - KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler
     - net/sched: Retire CBQ qdisc
     - [Config] updateconfigs for NET_SCH_CBQ
     - net/sched: Retire ATM qdisc
     - [Config] updateconfigs for NET_SCH_ATM
     - net/sched: Retire dsmark qdisc
     - [Config] updateconfigs for NET_SCH_DSMARK
     - sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset
     - memcg: add refcnt for pcpu stock to avoid UAF problem in drain_all_stock()
     - nilfs2: replace WARN_ONs for invalid DAT metadata block requests
     - userfaultfd: fix mmap_changing checking in mfill_atomic_hugetlb
     - sched/rt: Fix sysctl_sched_rr_timeslice intial value
     - sched/rt: Disallow writing invalid values to sched_rt_period_us
     - scsi: target: core: Add TMF to tmr_list handling
     - dmaengine: shdma: increase size of 'dev_id'
     - dmaengine: fsl-qdma: increase size of 'irq_name'
     - wifi: cfg80211: fix missing interfaces when dumping
     - wifi: mac80211: fix race condition on enabling fast-xmit
     - fbdev: savage: Error out if pixclock equals zero
     - fbdev: sis: Error out if pixclock equals zero
     - ahci: asm1166: correct count of reported ports
     - ahci: add 43-bit DMA address quirk for ASMedia ASM1061 controllers
     - ext4: avoid allocating blocks from corrupted group in
       ext4_mb_try_best_found()
     - ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal()
     - regulator: pwm-regulator: Add validity checks in continuous .get_voltage
     - nvmet-tcp: fix nvme tcp ida memory leak
     - ASoC: sunxi: sun4i-spdif: Add support for Allwinner H616
     - netfilter: conntrack: check SCTP_CID_SHUTDOWN_ACK for vtag setting in
       sctp_new
     - nvmet-fc: abort command when there is no binding
     - hwmon: (coretemp) Enlarge per package core count limit
     - scsi: lpfc: Use unsigned type for num_sge
     - firewire: core: send bus reset promptly on gap count error
     - virtio-blk: Ensure no requests in virtqueues before deleting vqs.
     - s390/qeth: Fix potential loss of L3-IP@ in case of network issues
     - pmdomain: renesas: r8a77980-sysc: CR7 must be always on
     - tcp: factor out __tcp_close() helper
     - tcp: return EPOLLOUT from tcp_poll only when notsent_bytes is half the limit
     - tcp: add annotations around sk->sk_shutdown accesses
     - pinctrl: pinctrl-rockchip: Fix a bunch of kerneldoc misdemeanours
 

Source diff to previous version
2064163 mlxbf-gige: Vitesse PHY stuck in a bad state during reboot test
2062384 mlxbf-gige: autonegotiation fails to complete on BF2
2061986 Mount CIFS fails with Permission denied
2058477 [Ubuntu 22.04.4/linux-image-6.5.0-26-generic] Kernel output \
2060216 Focal update: v5.4.271 upstream stable release
2060019 Focal update: v5.4.270 upstream stable release
CVE-2024-26733 In the Linux kernel, the following vulnerability has been resolved: arp: Prevent overflow in arp_req_get(). syzkaller reported an overflown write i
CVE-2024-26712 In the Linux kernel, the following vulnerability has been resolved: powerpc/kasan: Fix addr error caused by page alignment In kasan_init_region, wh
CVE-2023-52530 In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix potential key use-after-free When ieee80211_key_link() is c
CVE-2021-47063 In the Linux kernel, the following vulnerability has been resolved: drm: bridge/panel: Cleanup connector on bridge detach If we don't call drm_conn
CVE-2024-26614 In the Linux kernel, the following vulnerability has been resolved: tcp: make sure init the accept_queue's spinlocks once When I run syz's reproduc
CVE-2023-47233 The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by
CVE-2021-47070 In the Linux kernel, the following vulnerability has been resolved: uio_hv_generic: Fix another memory leak in error handling paths Memory allocate
CVE-2024-26622 In the Linux kernel, the following vulnerability has been resolved: tomoyo: fix UAF write bug in tomoyo_write_control() Since tomoyo_write_control(

Version: 5.4.0-1084.91 2024-04-12 17:08:42 UTC

 linux-bluefield (5.4.0-1084.91) focal; urgency=medium
 .
   * focal/linux-bluefield: 5.4.0-1084.91 -proposed tracker (LP: #2059507)
 .
   * Focal update: v5.4.269 upstream stable release (LP: #2058948)
     - [Config] bluefield: updateconfigs for MFD_TI_AM335X_TSCADC
 .
   [ Ubuntu: 5.4.0-181.201 ]
 .
   * focal/linux: 5.4.0-181.201 -proposed tracker (LP: #2059549)
   * Packaging resync (LP: #1786013)
     - [Packaging] drop getabis data
   * Drop fips-checks script from trees (LP: #2055083)
     - [Packaging] Remove fips-checks script
   * Remove getabis scripts (LP: #2059143)
     - [Packaging] Remove getabis
   * Focal update: v5.4.269 upstream stable release (LP: #2058948)
     - PCI: mediatek: Clear interrupt status before dispatching handler
     - include/linux/units.h: add helpers for kelvin to/from Celsius conversion
     - units: Add Watt units
     - units: change from 'L' to 'UL'
     - units: add the HZ macros
     - serial: sc16is7xx: set safe default SPI clock frequency
     - spi: introduce SPI_MODE_X_MASK macro
     - serial: sc16is7xx: add check for unsupported SPI modes during probe
     - ext4: allow for the last group to be marked as trimmed
     - crypto: api - Disallow identical driver names
     - PM: hibernate: Enforce ordering during image compression/decompression
     - hwrng: core - Fix page fault dead lock on mmap-ed hwrng
     - rpmsg: virtio: Free driver_override when rpmsg_remove()
     - parisc/firmware: Fix F-extend for PDC addresses
     - arm64: dts: qcom: sdm845: fix USB wakeup interrupt types
     - mmc: core: Use mrq.sbc in close-ended ffu
     - nouveau/vmm: don't set addr on the fail path to avoid warning
     - ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path
     - rename(): fix the locking of subdirectories
     - block: Remove special-casing of compound pages
     - mtd: spinand: macronix: Fix MX35LFxGE4AD page size
     - fs: add mode_strip_sgid() helper
     - fs: move S_ISGID stripping into the vfs_*() helpers
     - powerpc: Use always instead of always-y in for crtsavres.o
     - x86/CPU/AMD: Fix disabling XSAVES on AMD family 0x17 due to erratum
     - net/smc: fix illegal rmb_desc access in SMC-D connection dump
     - vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING
     - llc: make llc_ui_sendmsg() more robust against bonding changes
     - llc: Drop support for ETH_P_TR_802_2.
     - net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv
     - tracing: Ensure visibility when inserting an element into tracing_map
     - afs: Hide silly-rename files from userspace
     - tcp: Add memory barrier to tcp_push()
     - netlink: fix potential sleeping issue in mqueue_flush_file
     - net/mlx5: DR, Use the right GVMI number for drop action
     - net/mlx5: Use kfree(ft->g) in arfs_create_groups()
     - net/mlx5e: fix a double-free in arfs_create_groups
     - netfilter: nf_tables: restrict anonymous set and map names to 16 bytes
     - netfilter: nf_tables: validate NFPROTO_* family
     - fjes: fix memleaks in fjes_hw_setup
     - net: fec: fix the unhandled context fault from smmu
     - btrfs: ref-verify: free ref cache before clearing mount opt
     - btrfs: tree-checker: fix inline ref size in error messages
     - btrfs: don't warn if discard range is not aligned to sector
     - btrfs: defrag: reject unknown flags of btrfs_ioctl_defrag_range_args
     - rbd: don't move requests to the running list on errors
     - gpiolib: acpi: Ignore touchpad wakeup on GPD G1619-04
     - drm: Don't unref the same fb many times by mistake due to deadlock handling
     - drm/bridge: nxp-ptn3460: fix i2c_master_send() error checking
     - drm/bridge: nxp-ptn3460: simplify some error checking
     - drm/exynos: fix accidental on-stack copy of exynos_drm_plane
     - drm/exynos: gsc: minor fix for loop iteration in gsc_runtime_resume
     - gpio: eic-sprd: Clear interrupt after set the interrupt type
     - spi: bcm-qspi: fix SFDP BFPT read by usig mspi read
     - mips: Call lose_fpu(0) before initializing fcr31 in mips_set_personality_nan
     - tick/sched: Preserve number of idle sleeps across CPU hotplug events
     - x86/entry/ia32: Ensure s32 is sign extended to s64
     - powerpc/mm: Fix null-pointer dereference in pgtable_cache_add
     - powerpc: Fix build error due to is_valid_bugaddr()
     - powerpc/mm: Fix build failures due to arch_reserved_kernel_pages()
     - powerpc: pmd_move_must_withdraw() is only needed for
       CONFIG_TRANSPARENT_HUGEPAGE
     - powerpc/lib: Validate size for vector operations
     - x86/mce: Mark fatal MCE's page as poison to avoid panic in the kdump kernel
     - perf/core: Fix narrow startup race when creating the perf nr_addr_filters
       sysfs file
     - regulator: core: Only increment use_count when enable_count changes
     - audit: Send netlink ACK before setting connection in auditd_set
     - ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop
     - PNP: ACPI: fix fortify warning
     - ACPI: extlog: fix NULL pointer dereference check
     - FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree
     - jfs: fix slab-out-of-bounds Read in dtSearch
     - jfs: fix array-index-out-of-bounds in dbAdjTree
     - pstore/ram: Fix crash when setting number of cpus to an odd number
     - crypto: stm32/crc32 - fix parsing list of devices
     - afs: fix the usage of read_seqbegin_or_lock() in afs_find_server*()
     - rxrpc_find_service_conn_rcu: fix the usage of read_seqbegin_or_lock()
     - jfs: fix array-index-out-of-bounds in diNewExt
     - s390/ptrace: handle setting of fpc register correctly
     - KVM: s390: fix setting of fpc register
     - SUNRPC: Fix a suspicious RCU usage warning
     - ecryptfs: Reject casefold directory inodes
     - ext4: fix inconsistent between segment fstrim and full fstrim
     - ext4: unify the type of flexbg_size to unsigned int
     - ext4: remove unnecessary check from alloc_flex_gd()
     - ext4: avoid online resizing fa

Source diff to previous version
2058948 Focal update: v5.4.269 upstream stable release
1786013 Packaging resync
2055083 Drop fips-checks script from trees
2059143 Remove getabis scripts
CVE-2023-52603 In the Linux kernel, the following vulnerability has been resolved: UBSAN: array-index-out-of-bounds in dtSplitRoot Syzkaller reported the followin
CVE-2023-52600 In the Linux kernel, the following vulnerability has been resolved: jfs: fix uaf in jfs_evict_inode When the execution of diMount(ipimap) fails, th
CVE-2023-24023 Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-
CVE-2024-26581 In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_rbtree: skip end interval element from gc rbtree lazy gc on
CVE-2024-26589 In the Linux kernel, the following vulnerability has been resolved: bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS For PTR_TO_FLOW_KEYS, check

Version: 5.4.0-1082.89 2024-03-25 13:09:09 UTC

 linux-bluefield (5.4.0-1082.89) focal; urgency=medium
 .
   * focal/linux-bluefield: 5.4.0-1082.89 -proposed tracker (LP: #2055643)
 .
   * Focal update: v5.4.268 upstream stable release (LP: #2055075)
     - [Config] bluefield: update annotations for CONFIG_MMC_SDHCI_OMAP
 .
   * Focal update: v5.4.267 upstream stable release (LP: #2054406)
     - [Config] bluefield: Update annotations for CONFIG_SND_MESON_CODEC_GLUE
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] drop ABI data
     - debian.bluefield/dkms-versions -- update from kernel-versions
       (main/2024.03.04)
 .
   [ Ubuntu: 5.4.0-175.195 ]
 .
   * focal/linux: 5.4.0-175.195 -proposed tracker (LP: #2055684)
   * Packaging resync (LP: #1786013)
     - [Packaging] drop ABI data
     - [Packaging] update annotations scripts
     - debian.master/dkms-versions -- update from kernel-versions (main/2024.03.04)
   * Drop ABI checks from kernel build (LP: #2055686)
     - [Packaging] Remove in-tree abi checks
     - [Packaging] Bring back install- prerequisite for checks-
     - [Packaging] Remove abi-check from final-checks
   * Cranky update-dkms-versions rollout (LP: #2055685)
     - [Packaging] remove update-dkms-versions
     - Move debian/dkms-versions to debian.master/dkms-versions
     - [Packaging] Replace debian/dkms-versions with $(DEBIAN)/dkms-versions
     - [Packaging] remove update-version-dkms
   * linux-tools-common: man page of usbip[d] is misplaced (LP: #2054094)
     - [Packaging] rules: Put usbip manpages in the correct directory
   * CVE-2024-23851
     - dm ioctl: log an error if the ioctl structure is corrupted
     - dm: limit the number of targets and parameter size area
   * Focal update: v5.4.268 upstream stable release (LP: #2055075)
     - f2fs: explicitly null-terminate the xattr list
     - pinctrl: lochnagar: Don't build on MIPS
     - ALSA: hda - Fix speaker and headset mic pin config for CHUWI CoreBook XPro
     - ASoC: Intel: Skylake: Fix mem leak in few functions
     - ASoC: nau8822: Fix incorrect type in assignment and cast to restricted
       __be16
     - ASoC: Intel: Skylake: mem leak in skl register function
     - ASoC: cs43130: Fix the position of const qualifier
     - ASoC: cs43130: Fix incorrect frame delay configuration
     - ASoC: rt5650: add mutex to avoid the jack detection failure
     - nouveau/tu102: flush all pdbs on vmm flush
     - net/tg3: fix race condition in tg3_reset_task()
     - ASoC: da7219: Support low DC impedance headset
     - nvme: introduce helper function to get ctrl state
     - drm/exynos: fix a potential error pointer dereference
     - drm/exynos: fix a wrong error checking
     - clk: rockchip: rk3128: Fix HCLK_OTG gate register
     - jbd2: correct the printing of write_flags in jbd2_write_superblock()
     - drm/crtc: Fix uninit-value bug in drm_mode_setcrtc
     - neighbour: Don't let neigh_forced_gc() disable preemption for long
     - tracing: Have large events show up as '[LINE TOO BIG]' instead of nothing
     - tracing: Add size check when printing trace_marker output
     - ring-buffer: Do not record in NMI if the arch does not support cmpxchg in
       NMI
     - reset: hisilicon: hi6220: fix Wvoid-pointer-to-enum-cast warning
     - Input: atkbd - skip ATKBD_CMD_GETID in translated mode
     - Input: i8042 - add nomux quirk for Acer P459-G2-M
     - s390/scm: fix virtual vs physical address confusion
     - ARC: fix spare error
     - Input: xpad - add Razer Wolverine V2 support
     - ARM: sun9i: smp: fix return code check of of_property_match_string
     - drm/crtc: fix uninitialized variable use
     - ACPI: resource: Add another DMI match for the TongFang GMxXGxx
     - binder: use EPOLLERR from eventpoll.h
     - binder: fix trivial typo of binder_free_buf_locked()
     - binder: fix comment on binder_alloc_new_buf() return value
     - uio: Fix use-after-free in uio_open
     - parport: parport_serial: Add Brainboxes BAR details
     - parport: parport_serial: Add Brainboxes device IDs and geometry
     - coresight: etm4x: Fix width of CCITMIN field
     - x86/lib: Fix overflow when counting digits
     - EDAC/thunderx: Fix possible out-of-bounds string access
     - powerpc: add crtsavres.o to always-y instead of extra-y
     - powerpc/44x: select I2C for CURRITUCK
     - powerpc/pseries/memhotplug: Quieten some DLPAR operations
     - powerpc/pseries/memhp: Fix access beyond end of drmem array
     - selftests/powerpc: Fix error handling in FPU/VMX preemption tests
     - powerpc/powernv: Add a null pointer check to scom_debug_init_one()
     - powerpc/powernv: Add a null pointer check in opal_event_init()
     - powerpc/powernv: Add a null pointer check in opal_powercap_init()
     - powerpc/imc-pmu: Add a null pointer check in update_events_in_group()
     - mtd: rawnand: Increment IFC_TIMEOUT_MSECS for nand controller response
     - ACPI: video: check for error while searching for backlight device parent
     - ACPI: LPIT: Avoid u32 multiplication overflow
     - net: netlabel: Fix kerneldoc warnings
     - netlabel: remove unused parameter in netlbl_netlink_auditinfo()
     - calipso: fix memory leak in netlbl_calipso_add_pass()
     - spi: sh-msiof: Enforce fixed DTDL for R-Car H3
     - mtd: Fix gluebi NULL pointer dereference caused by ftl notifier
     - selinux: Fix error priority for bind with AF_UNSPEC on PF_INET6 socket
     - crypto: virtio - Handle dataq logic with tasklet
     - crypto: virtio - don't use 'default m'
     - virtio_crypto: Introduce VIRTIO_CRYPTO_NOSPC
     - crypto: ccp - fix memleak in ccp_init_dm_workarea
     - crypto: af_alg - Disallow multiple in-flight AIO requests
     - crypto: sahara - remove FLAGS_NEW_KEY logic
     - crypto: sahara - fix ahash selftest failure
     - crypto: sahara - fix processing requests with cryptlen < sg->length
     - crypto: sahara - fix error handling in sahara_hw_descriptor_create()
     - pstore: ram_core: fix possible overflow in persistent_ram_init

2055075 Focal update: v5.4.268 upstream stable release
2054406 Focal update: v5.4.267 upstream stable release
1786013 Packaging resync
2055686 Drop ABI checks from kernel build
2055685 Cranky update-dkms-versions rollout
2054094 linux-tools-common: man page of usbip[d] is misplaced
2051655 Focal update: v5.4.266 upstream stable release
CVE-2024-23851 copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes, and crash, because of a missi
CVE-2024-24855 A race condition was found in the Linux kernel's scsi device driver in lpfc_unregister_fcf_rescan() function. This can result in a null pointer deref
CVE-2023-23000 In the Linux kernel before 5.17, drivers/phy/tegra/xusb.c mishandles the tegra_xusb_find_port_node return value. Callers expect NULL in the error cas
CVE-2023-23004 In the Linux kernel before 5.19, drivers/gpu/drm/arm/malidp_planes.c misinterprets the get_sg_table return value (expects it to be NULL in the error
CVE-2023-46838 Transmit requests in Xen's virtual network protocol can consist of multiple parts. While not really useful, except for the initial part any of them
CVE-2024-1086 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_
CVE-2024-0607 A flaw was found in the Netfilter subsystem in the Linux kernel. The issue is in the nft_byteorder_eval() function, where the code iterates through a



About   -   Send Feedback to @ubuntu_updates