UbuntuUpdates.org

Package "linux-bpf-dev"

This package belongs to a PPA: Canonical Kernel Team

Name: linux-bpf-dev

Description:

Headers for BPF development

Latest version: 6.8.0-80.80
Release: noble (24.04)
Level: base
Repository: main
Head package: linux

Links


Download "linux-bpf-dev"


Other versions of "linux-bpf-dev" in Noble

Repository Area Version
security main 6.8.0-78.78
updates main 6.8.0-78.78
proposed main 6.8.0-80.80

Changelog

Version: 6.8.0-80.80 2025-08-15 16:08:25 UTC

 linux (6.8.0-80.80) noble; urgency=medium
 .
   * noble/linux: 6.8.0-80.80 -proposed tracker (LP: #2120433)
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] debian.master/dkms-versions -- update from kernel-versions
       (main/2025.08.11)
 .
   * minimal kernel lacks modules for blk disk in arm64 openstack environments
     where config_drive is required (LP: #2118499)
     - [Config] Enable SYM53C8XX_2 on arm64
 .
   * rcu: Eliminate deadlocks involving do_exit() and RCU tasks (LP: #2117123)
     - rcu-tasks: Initialize callback lists at rcu_init() time
     - rcu-tasks: Maintain lists to eliminate RCU-tasks/do_exit() deadlocks
     - rcu-tasks: Eliminate deadlocks involving do_exit() and RCU tasks
     - rcu-tasks: Maintain real-time response in rcu_tasks_postscan()
 .
   * BPF header file in wrong location (LP: #2118965)
     - [Packaging] Install bpf header to correct location
 .
   * i915: support ARL-H gpu (LP: #2117716)
     - drm/i915: Add additional ARL PCI IDs
     - drm/i915/mtl: Add fake PCH for Meteor Lake
     - drm/i915/mtl: Wake GT before sending H2G message
     - drm/i915/xelpg: Add workaround 14019877138
     - drm/i915/xelpg: Extend driver code of Xe_LPG to Xe_LPG+
     - drm/i915/display: correct dual pps handling for MTL_PCH+
 .
   * Ubuntu 24.04.2: NULL pointer dereference with Ceph and selinux
     (LP: #2115447)
     - SAUCE: fs/ceph, selinux: fix NULL pointer dereference on CephFS write
       with SELinux in permissive mode
 .
   * Noble update: upstream stable patchset 2025-08-04 (LP: #2119458)
     - clockevents/drivers/i8253: Fix stop sequence for timer 0
     - sched/isolation: Prevent boot crash when the boot CPU is nohz_full
     - hrtimer: Use and report correct timerslack values for realtime tasks
     - mm: add nommu variant of vm_insert_pages()
     - io_uring: get rid of remap_pfn_range() for mapping rings/sqes
     - io_uring: don't attempt to mmap larger than what the user asks for
     - io_uring: fix corner case forgetting to vunmap
     - io_uring: use vmap() for ring mapping
     - io_uring: unify io_pin_pages()
     - io_uring/kbuf: vmap pinned buffer ring
     - io_uring/kbuf: use vm_insert_pages() for mmap'ed pbuf ring
     - io_uring: use unpin_user_pages() where appropriate
     - io_uring: fix error pbuf checking
     - rust: Disallow BTF generation with Rust + LTO
     - rust: init: fix `Zeroable` implementation for `Option>` and
       `Option>`
     - lib/buildid: Handle memfd_secret() files in build_id_parse()
     - mm: split critical region in remap_file_pages() and invoke LSMs in
       between
     - stmmac: loongson: Pass correct arg to PCI function
     - rust: lockdep: Remove support for dynamically allocated LockClassKeys
     - netfilter: nf_tables: allow clone callbacks to sleep
     - drm/amd/display: should support dmub hw lock on Replay
     - drm/amd/display: Use HW lock mgr for PSR1 when only one eDP
     - KVM: arm64: Calculate cptr_el2 traps on activating traps
     - KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state
     - KVM: arm64: Remove host FPSIMD saving for non-protected KVM
     - KVM: arm64: Remove VHE host restore of CPACR_EL1.ZEN
     - KVM: arm64: Remove VHE host restore of CPACR_EL1.SMEN
     - KVM: arm64: Refactor exit handlers
     - KVM: arm64: Eagerly switch ZCR_EL{1,2}
     - Revert "sched/core: Reduce cost of sched_move_task when config
       autogroup"
     - wifi: iwlwifi: support BIOS override for 5G9 in CA also in LARI version
       8
     - netfilter: nft_counter: Use u64_stats_t for statistic.
     - firmware: imx-scu: fix OF node leak in .probe()
     - arm64: dts: freescale: tqma8mpql: Fix vqmmc-supply
     - arm64: dts: rockchip: remove supports-cqe from rk3588 jaguar
     - xfrm: fix tunnel mode TX datapath in packet offload mode
     - xfrm_output: Force software GSO only in tunnel mode
     - soc: imx8m: Remove global soc_uid
     - soc: imx8m: Use devm_* to simplify probe failure handling
     - soc: imx8m: Unregister cpufreq and soc dev in cleanup path
     - ARM: dts: bcm2711: Fix xHCI power-domain
     - ARM: dts: bcm2711: PL011 UARTs are actually r1p5
     - arm64: dts: rockchip: Remove undocumented sdmmc property from lubancat-1
     - RDMA/bnxt_re: Add missing paranthesis in map_qp_id_to_tbl_indx
     - RDMA/mlx5: Handle errors returned from mlx5r_ib_rate()
     - ARM: OMAP1: select CONFIG_GENERIC_IRQ_CHIP
     - ARM: dts: bcm2711: Don't mark timer regs unconfigured
     - dma-mapping: fix missing clear bdr in check_ram_in_range_map()
     - RDMA/bnxt_re: Avoid clearing VLAN_ID mask in modify qp path
     - RDMA/hns: Fix soft lockup during bt pages loop
     - RDMA/hns: Fix unmatched condition in error path of alloc_user_qp_db()
     - RDMA/hns: Fix a missing rollback in error path of
       hns_roce_create_qp_common()
     - RDMA/hns: Fix missing xa_destroy()
     - RDMA/hns: Fix wrong value of max_sge_rd
     - Bluetooth: Fix error code in chan_alloc_skb_cb()
     - Bluetooth: hci_event: Fix connection regression between LE and non-LE
       adapters
     - accel/qaic: Fix possible data corruption in BOs > 2G
     - ARM: davinci: da850: fix selecting ARCH_DAVINCI_DA8XX
     - ipv6: Fix memleak of nhc_pcpu_rth_output in fib_check_nh_v6_gw().
     - ipv6: Set errno after ip_fib_metrics_init() in ip6_route_info_create().
     - devlink: fix xa_alloc_cyclic() error handling
     - dpll: fix xa_alloc_cyclic() error handling
     - gpu: host1x: Do not assume that a NULL domain means no DMA IOMMU
     - net: atm: fix use after free in lec_send()
     - net: lwtunnel: fix recursion loops
     - net: ipv6: ioam6: fix lwtunnel_output() loop
     - libfs: Fix duplicate directory entry in offset_dir_lookup
     - net/neighbor: add missing policy for NDTPA_QUEUE_LENBYTES
     - i2c: omap: fix IRQ storms
     - net: mana: Support holes in device list reply msg
     - can: rcar_canfd: Fix page entries in the AFL list
     - can: ucan: fix out of bound re

Source diff to previous version
1786013 Packaging resync
2118499 minimal kernel lacks modules for blk disk in arm64 openstack environments where config_drive is required
2117123 rcu: Eliminate deadlocks involving do_exit() and RCU tasks
2118965 BPF header file in wrong location
2117716 i915: support ARL-H gpu
2115447 Ubuntu 24.04.2: NULL pointer dereference with Ceph and selinux
2119458 Noble update: upstream stable patchset 2025-08-04
2118927 Noble update: upstream stable patchset 2025-07-28
2117533 Noble update: upstream stable patchset 2025-07-22
2116878 Noble update: upstream stable patchset 2025-07-14
CVE-2025-21872 In the Linux kernel, the following vulnerability has been resolved: efi: Don't map the entire mokvar table to determine its size Currently, when va
CVE-2025-21880 In the Linux kernel, the following vulnerability has been resolved: drm/xe/userptr: fix EFAULT handling Currently we treat EFAULT from hmm_range_fa
CVE-2025-21890 In the Linux kernel, the following vulnerability has been resolved: idpf: fix checksums set in idpf_rx_rsc() idpf_rx_rsc() uses skb_transport_offse
CVE-2025-21885 In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix the page details for the srq created by kernel consumers Whil
CVE-2025-21888 In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix a WARN during dereg_mr for DM type Memory regions (MR) of type D
CVE-2025-21892 In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix the recovery flow of the UMR QP This patch addresses an issue in
CVE-2025-21873 In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: bsg: Fix crash when arpmb command fails If the device doesn't
CVE-2024-58090 In the Linux kernel, the following vulnerability has been resolved: sched/core: Prevent rescheduling when interrupts are disabled David reported a
CVE-2025-21875 In the Linux kernel, the following vulnerability has been resolved: mptcp: always handle address removal under msk socket lock Syzkaller reported a
CVE-2025-21877 In the Linux kernel, the following vulnerability has been resolved: usbnet: gl620a: fix endpoint checking in genelink_bind() Syzbot reports [1] a w
CVE-2025-21878 In the Linux kernel, the following vulnerability has been resolved: i2c: npcm: disable interrupt enable bit before devm_request_irq The customer re
CVE-2025-21889 In the Linux kernel, the following vulnerability has been resolved: perf/core: Add RCU read lock protection to perf_iterate_ctx() The perf_iterate_
CVE-2025-21898 In the Linux kernel, the following vulnerability has been resolved: ftrace: Avoid potential division by zero in function_stat_show() Check whether
CVE-2025-21899 In the Linux kernel, the following vulnerability has been resolved: tracing: Fix bad hist from corrupting named_triggers list The following command
CVE-2025-21881 In the Linux kernel, the following vulnerability has been resolved: uprobes: Reject the shared zeropage in uprobe_write_opcode() We triggered the f
CVE-2025-21895 In the Linux kernel, the following vulnerability has been resolved: perf/core: Order the PMU list to fix warning about unordered pmu_ctx_list Syska
CVE-2025-21883 In the Linux kernel, the following vulnerability has been resolved: ice: Fix deinitializing VF in error path If ice_ena_vfs() fails after calling i
CVE-2025-21891 In the Linux kernel, the following vulnerability has been resolved: ipvlan: ensure network headers are in skb linear part syzbot found that ipvlan_
CVE-2024-57996 In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: don't allow 1 packet limit The current implementation does
CVE-2025-37752 In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: move the limit validation It is not sufficient to directly
CVE-2025-38350 In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty Certain cla
CVE-2025-21887 In the Linux kernel, the following vulnerability has been resolved: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up The iss

Version: 6.8.0-78.78 2025-08-12 15:08:25 UTC

 linux (6.8.0-78.78) noble; urgency=medium
 .
   * noble/linux: 6.8.0-78.78 -proposed tracker (LP: #2120405)
 .
   * Incorrect backport for CVE-2025-21861 causes kernel hangs
     (LP: #2120330) // CVE-2025-21861
     - mm/migrate_device: don't add folio to be freed to LRU in
       migrate_device_finalize()
 .
   * Incorrect backport for CVE-2025-21861 causes kernel hangs (LP: #2120330)
     - SAUCE: Revert "mm/migrate_device: don't add folio to be freed to LRU in
       migrate_device_finalize()"
     - mm: migrate_device: use more folio in migrate_device_finalize()
 .

2120330 Incorrect backport for CVE-2025-21861 causes kernel hangs
CVE-2025-21861 In the Linux kernel, the following vulnerability has been resolved: mm/migrate_device: don't add folio to be freed to LRU in migrate_device_finalize

Version: *DELETED* 2025-08-12 12:08:21 UTC
No changelog for deleted or moved packages.

Version: 6.8.0-76.76 2025-08-09 03:08:04 UTC

 linux (6.8.0-76.76) noble; urgency=medium
 .
   * noble/linux: 6.8.0-76.76 -proposed tracker (LP: #2120206)
 .
   * minimal kernel lacks modules for blk disk in arm64 openstack environments
     where config_drive is required (LP: #2118499)
     - [Config] Enable SYM53C8XX_2 on arm64
 .

Source diff to previous version
2118499 minimal kernel lacks modules for blk disk in arm64 openstack environments where config_drive is required

Version: 6.8.0-74.74 2025-08-08 15:08:27 UTC

 linux (6.8.0-74.74) noble; urgency=medium
 .
   * noble/linux: 6.8.0-74.74 -proposed tracker (LP: #2120039)
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] debian.master/dkms-versions -- update from kernel-versions
       (main/2025.08.11)
 .
   * rcu: Eliminate deadlocks involving do_exit() and RCU tasks (LP: #2117123)
     - rcu-tasks: Initialize callback lists at rcu_init() time
     - rcu-tasks: Maintain lists to eliminate RCU-tasks/do_exit() deadlocks
     - rcu-tasks: Eliminate deadlocks involving do_exit() and RCU tasks
     - rcu-tasks: Maintain real-time response in rcu_tasks_postscan()
 .
   * BPF header file in wrong location (LP: #2118965)
     - [Packaging] Install bpf header to correct location
 .
   * i915: support ARL-H gpu (LP: #2117716)
     - drm/i915: Add additional ARL PCI IDs
     - drm/i915/mtl: Add fake PCH for Meteor Lake
     - drm/i915/mtl: Wake GT before sending H2G message
     - drm/i915/xelpg: Add workaround 14019877138
     - drm/i915/xelpg: Extend driver code of Xe_LPG to Xe_LPG+
     - drm/i915/display: correct dual pps handling for MTL_PCH+
 .
   * Ubuntu 24.04.2: NULL pointer dereference with Ceph and selinux
     (LP: #2115447)
     - SAUCE: fs/ceph, selinux: fix NULL pointer dereference on CephFS write
       with SELinux in permissive mode
 .
   * Noble update: upstream stable patchset 2025-08-04 (LP: #2119458)
     - clockevents/drivers/i8253: Fix stop sequence for timer 0
     - sched/isolation: Prevent boot crash when the boot CPU is nohz_full
     - hrtimer: Use and report correct timerslack values for realtime tasks
     - mm: add nommu variant of vm_insert_pages()
     - io_uring: get rid of remap_pfn_range() for mapping rings/sqes
     - io_uring: don't attempt to mmap larger than what the user asks for
     - io_uring: fix corner case forgetting to vunmap
     - io_uring: use vmap() for ring mapping
     - io_uring: unify io_pin_pages()
     - io_uring/kbuf: vmap pinned buffer ring
     - io_uring/kbuf: use vm_insert_pages() for mmap'ed pbuf ring
     - io_uring: use unpin_user_pages() where appropriate
     - io_uring: fix error pbuf checking
     - rust: Disallow BTF generation with Rust + LTO
     - rust: init: fix `Zeroable` implementation for `Option>` and
       `Option>`
     - lib/buildid: Handle memfd_secret() files in build_id_parse()
     - mm: split critical region in remap_file_pages() and invoke LSMs in
       between
     - stmmac: loongson: Pass correct arg to PCI function
     - rust: lockdep: Remove support for dynamically allocated LockClassKeys
     - netfilter: nf_tables: allow clone callbacks to sleep
     - drm/amd/display: should support dmub hw lock on Replay
     - drm/amd/display: Use HW lock mgr for PSR1 when only one eDP
     - KVM: arm64: Calculate cptr_el2 traps on activating traps
     - KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state
     - KVM: arm64: Remove host FPSIMD saving for non-protected KVM
     - KVM: arm64: Remove VHE host restore of CPACR_EL1.ZEN
     - KVM: arm64: Remove VHE host restore of CPACR_EL1.SMEN
     - KVM: arm64: Refactor exit handlers
     - KVM: arm64: Eagerly switch ZCR_EL{1,2}
     - Revert "sched/core: Reduce cost of sched_move_task when config
       autogroup"
     - wifi: iwlwifi: support BIOS override for 5G9 in CA also in LARI version
       8
     - netfilter: nft_counter: Use u64_stats_t for statistic.
     - firmware: imx-scu: fix OF node leak in .probe()
     - arm64: dts: freescale: tqma8mpql: Fix vqmmc-supply
     - arm64: dts: rockchip: remove supports-cqe from rk3588 jaguar
     - xfrm: fix tunnel mode TX datapath in packet offload mode
     - xfrm_output: Force software GSO only in tunnel mode
     - soc: imx8m: Remove global soc_uid
     - soc: imx8m: Use devm_* to simplify probe failure handling
     - soc: imx8m: Unregister cpufreq and soc dev in cleanup path
     - ARM: dts: bcm2711: Fix xHCI power-domain
     - ARM: dts: bcm2711: PL011 UARTs are actually r1p5
     - arm64: dts: rockchip: Remove undocumented sdmmc property from lubancat-1
     - RDMA/bnxt_re: Add missing paranthesis in map_qp_id_to_tbl_indx
     - RDMA/mlx5: Handle errors returned from mlx5r_ib_rate()
     - ARM: OMAP1: select CONFIG_GENERIC_IRQ_CHIP
     - ARM: dts: bcm2711: Don't mark timer regs unconfigured
     - dma-mapping: fix missing clear bdr in check_ram_in_range_map()
     - RDMA/bnxt_re: Avoid clearing VLAN_ID mask in modify qp path
     - RDMA/hns: Fix soft lockup during bt pages loop
     - RDMA/hns: Fix unmatched condition in error path of alloc_user_qp_db()
     - RDMA/hns: Fix a missing rollback in error path of
       hns_roce_create_qp_common()
     - RDMA/hns: Fix missing xa_destroy()
     - RDMA/hns: Fix wrong value of max_sge_rd
     - Bluetooth: Fix error code in chan_alloc_skb_cb()
     - Bluetooth: hci_event: Fix connection regression between LE and non-LE
       adapters
     - accel/qaic: Fix possible data corruption in BOs > 2G
     - ARM: davinci: da850: fix selecting ARCH_DAVINCI_DA8XX
     - ipv6: Fix memleak of nhc_pcpu_rth_output in fib_check_nh_v6_gw().
     - ipv6: Set errno after ip_fib_metrics_init() in ip6_route_info_create().
     - devlink: fix xa_alloc_cyclic() error handling
     - dpll: fix xa_alloc_cyclic() error handling
     - gpu: host1x: Do not assume that a NULL domain means no DMA IOMMU
     - net: atm: fix use after free in lec_send()
     - net: lwtunnel: fix recursion loops
     - net: ipv6: ioam6: fix lwtunnel_output() loop
     - libfs: Fix duplicate directory entry in offset_dir_lookup
     - net/neighbor: add missing policy for NDTPA_QUEUE_LENBYTES
     - i2c: omap: fix IRQ storms
     - net: mana: Support holes in device list reply msg
     - can: rcar_canfd: Fix page entries in the AFL list
     - can: ucan: fix out of bound read in strscpy() source
     - can: flexcan: only change CAN state when link up in system PM
     - can: flexcan: disable transceiver during system PM
     - drm/xe: Fix exportin

1786013 Packaging resync
2117123 rcu: Eliminate deadlocks involving do_exit() and RCU tasks
2118965 BPF header file in wrong location
2117716 i915: support ARL-H gpu
2115447 Ubuntu 24.04.2: NULL pointer dereference with Ceph and selinux
2119458 Noble update: upstream stable patchset 2025-08-04
2118927 Noble update: upstream stable patchset 2025-07-28
2117533 Noble update: upstream stable patchset 2025-07-22
2116878 Noble update: upstream stable patchset 2025-07-14
CVE-2025-21872 In the Linux kernel, the following vulnerability has been resolved: efi: Don't map the entire mokvar table to determine its size Currently, when va
CVE-2025-21880 In the Linux kernel, the following vulnerability has been resolved: drm/xe/userptr: fix EFAULT handling Currently we treat EFAULT from hmm_range_fa
CVE-2025-21890 In the Linux kernel, the following vulnerability has been resolved: idpf: fix checksums set in idpf_rx_rsc() idpf_rx_rsc() uses skb_transport_offse
CVE-2025-21885 In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix the page details for the srq created by kernel consumers Whil
CVE-2025-21888 In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix a WARN during dereg_mr for DM type Memory regions (MR) of type D
CVE-2025-21892 In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix the recovery flow of the UMR QP This patch addresses an issue in
CVE-2025-21873 In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: bsg: Fix crash when arpmb command fails If the device doesn't
CVE-2024-58090 In the Linux kernel, the following vulnerability has been resolved: sched/core: Prevent rescheduling when interrupts are disabled David reported a
CVE-2025-21875 In the Linux kernel, the following vulnerability has been resolved: mptcp: always handle address removal under msk socket lock Syzkaller reported a
CVE-2025-21877 In the Linux kernel, the following vulnerability has been resolved: usbnet: gl620a: fix endpoint checking in genelink_bind() Syzbot reports [1] a w
CVE-2025-21878 In the Linux kernel, the following vulnerability has been resolved: i2c: npcm: disable interrupt enable bit before devm_request_irq The customer re
CVE-2025-21889 In the Linux kernel, the following vulnerability has been resolved: perf/core: Add RCU read lock protection to perf_iterate_ctx() The perf_iterate_
CVE-2025-21898 In the Linux kernel, the following vulnerability has been resolved: ftrace: Avoid potential division by zero in function_stat_show() Check whether
CVE-2025-21899 In the Linux kernel, the following vulnerability has been resolved: tracing: Fix bad hist from corrupting named_triggers list The following command
CVE-2025-21881 In the Linux kernel, the following vulnerability has been resolved: uprobes: Reject the shared zeropage in uprobe_write_opcode() We triggered the f
CVE-2025-21895 In the Linux kernel, the following vulnerability has been resolved: perf/core: Order the PMU list to fix warning about unordered pmu_ctx_list Syska
CVE-2025-21883 In the Linux kernel, the following vulnerability has been resolved: ice: Fix deinitializing VF in error path If ice_ena_vfs() fails after calling i
CVE-2025-21891 In the Linux kernel, the following vulnerability has been resolved: ipvlan: ensure network headers are in skb linear part syzbot found that ipvlan_
CVE-2024-57996 In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: don't allow 1 packet limit The current implementation does
CVE-2025-37752 In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: move the limit validation It is not sufficient to directly
CVE-2025-38350 In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty Certain cla
CVE-2025-21887 In the Linux kernel, the following vulnerability has been resolved: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up The iss



About   -   Send Feedback to @ubuntu_updates