Package "linux-image-5.4.0-135-generic"
Name: |
linux-image-5.4.0-135-generic
|
Description: |
Linux kernel image for version 5.4.0 on 32 bit x86 SMP
|
Latest version: |
5.4.0-135.152~18.04.2 |
Release: |
bionic (18.04) |
Level: |
security |
Repository: |
main |
Head package: |
linux-hwe-5.4 |
Links
Download "linux-image-5.4.0-135-generic"
Other versions of "linux-image-5.4.0-135-generic" in Bionic
Changelog
linux-hwe-5.4 (5.4.0-144.161~18.04.1) bionic; urgency=medium
* bionic/linux-hwe-5.4: 5.4.0-144.161~18.04.1 -proposed tracker (LP: #2004384)
[ Ubuntu: 5.4.0-144.161 ]
* focal/linux: 5.4.0-144.161 -proposed tracker (LP: #2004653)
* CVE-2023-0461
- SAUCE: Fix inet_csk_listen_start after CVE-2023-0461
[ Ubuntu: 5.4.0-143.160 ]
* focal/linux: 5.4.0-143.160 -proposed tracker (LP: #2004385)
* NFS: client permission error after adding user to permissible group
(LP: #2003053)
- NFS: Clear the file access cache upon login
- NFS: Judge the file access cache's timestamp in rcu path
- NFS: Fix up a sparse warning
* Focal update: v5.4.229 upstream stable release (LP: #2003914)
- tracing/ring-buffer: Only do full wait when cpu != RING_BUFFER_ALL_CPUS
- udf: Discard preallocation before extending file with a hole
- udf: Fix preallocation discarding at indirect extent boundary
- udf: Do not bother looking for prealloc extents if i_lenExtents matches
i_size
- udf: Fix extending file within last block
- usb: gadget: uvc: Prevent buffer overflow in setup handler
- USB: serial: option: add Quectel EM05-G modem
- USB: serial: cp210x: add Kamstrup RF sniffer PIDs
- USB: serial: f81232: fix division by zero on line-speed change
- USB: serial: f81534: fix division by zero on line-speed change
- igb: Initialize mailbox message for VF reset
- xen-netback: move removal of "hotplug-status" to the right place
- HID: ite: Add support for Acer S1002 keyboard-dock
- HID: ite: Enable QUIRK_TOUCHPAD_ON_OFF_REPORT on Acer Aspire Switch 10E
- HID: ite: Enable QUIRK_TOUCHPAD_ON_OFF_REPORT on Acer Aspire Switch V 10
- HID: uclogic: Add HID_QUIRK_HIDINPUT_FORCE quirk
- net: loopback: use NET_NAME_PREDICTABLE for name_assign_type
- usb: musb: remove extra check in musb_gadget_vbus_draw
- ARM: dts: qcom: apq8064: fix coresight compatible
- arm64: dts: qcom: sdm845-cheza: fix AP suspend pin bias
- drivers: soc: ti: knav_qmss_queue: Mark knav_acc_firmwares as static
- arm: dts: spear600: Fix clcd interrupt
- soc: ti: knav_qmss_queue: Use pm_runtime_resume_and_get instead of
pm_runtime_get_sync
- soc: ti: knav_qmss_queue: Fix PM disable depth imbalance in knav_queue_probe
- soc: ti: smartreflex: Fix PM disable depth imbalance in omap_sr_probe
- perf: arm_dsu: Fix hotplug callback leak in dsu_pmu_init()
- perf/smmuv3: Fix hotplug callback leak in arm_smmu_pmu_init()
- arm64: dts: mt2712e: Fix unit_address_vs_reg warning for oscillators
- arm64: dts: mt2712e: Fix unit address for pinctrl node
- arm64: dts: mt2712-evb: Fix vproc fixed regulators unit names
- arm64: dts: mt2712-evb: Fix usb vbus regulators unit names
- arm64: dts: mediatek: mt6797: Fix 26M oscillator unit name
- ARM: dts: dove: Fix assigned-addresses for every PCIe Root Port
- ARM: dts: armada-370: Fix assigned-addresses for every PCIe Root Port
- ARM: dts: armada-xp: Fix assigned-addresses for every PCIe Root Port
- ARM: dts: armada-375: Fix assigned-addresses for every PCIe Root Port
- ARM: dts: armada-38x: Fix assigned-addresses for every PCIe Root Port
- ARM: dts: armada-39x: Fix assigned-addresses for every PCIe Root Port
- ARM: dts: turris-omnia: Add ethernet aliases
- ARM: dts: turris-omnia: Add switch port 6 node
- arm64: dts: armada-3720-turris-mox: Add missing interrupt for RTC
- pstore/ram: Fix error return code in ramoops_probe()
- ARM: mmp: fix timer_read delay
- pstore: Avoid kcore oops by vmap()ing with VM_IOREMAP
- tpm/tpm_crb: Fix error message in __crb_relinquish_locality()
- cpuidle: dt: Return the correct numbers of parsed idle states
- alpha: fix syscall entry in !AUDUT_SYSCALL case
- PM: hibernate: Fix mistake in kerneldoc comment
- fs: don't audit the capability check in simple_xattr_list()
- selftests/ftrace: event_triggers: wait longer for test_event_enable
- perf: Fix possible memleak in pmu_dev_alloc()
- timerqueue: Use rb_entry_safe() in timerqueue_getnext()
- proc: fixup uptime selftest
- lib/fonts: fix undefined behavior in bit shift for get_default_font
- ocfs2: fix memory leak in ocfs2_stack_glue_init()
- MIPS: vpe-mt: fix possible memory leak while module exiting
- MIPS: vpe-cmp: fix possible memory leak while module exiting
- selftests/efivarfs: Add checking of the test return value
- PNP: fix name memory leak in pnp_alloc_dev()
- perf/x86/intel/uncore: Fix reference count leak in hswep_has_limit_sbox()
- irqchip: gic-pm: Use pm_runtime_resume_and_get() in gic_probe()
- EDAC/i10nm: fix refcount leak in pci_get_dev_wrapper()
- nfsd: don't call nfsd_file_put from client states seqfile display
- genirq/irqdesc: Don't try to remove non-existing sysfs files
- cpufreq: amd_freq_sensitivity: Add missing pci_dev_put()
- libfs: add DEFINE_SIMPLE_ATTRIBUTE_SIGNED for signed value
- lib/notifier-error-inject: fix error when writing -errno to debugfs file
- docs: fault-injection: fix non-working usage of negative values
- debugfs: fix error when writing negative value to atomic_t debugfs file
- ocfs2: ocfs2_mount_volume does cleanup job before return error
- ocfs2: rewrite error handling of ocfs2_fill_super
- ocfs2: fix memory leak in ocfs2_mount_volume()
- rapidio: fix possible name leaks when rio_add_device() fails
- rapidio: rio: fix possible name leak in rio_register_mport()
- clocksource/drivers/sh_cmt: Make sure channel clock supply is enabled
- ACPICA: Fix use-after-free in acpi_ut_copy_ipackage_to_ipackage()
- uprobes/x86: Allow to probe a NOP instruction with 0x66 prefix
- xen/events: only register debug interrupt for 2-level events
- x86/xen: Fix memory leak in xen_smp_intr_init{_pv}()
- x86/xen: Fix memory leak in xen_init_lock_cpu()
- xen/privcmd: Fix a possible w
|
Source diff to previous version |
2003053 |
NFS: client permission error after adding user to permissible group |
2003914 |
Focal update: v5.4.229 upstream stable release |
2003904 |
Focal update: v5.4.228 upstream stable release |
2003901 |
Focal update: v5.4.227 upstream stable release |
2002889 |
5.15.0-58.64 breaks xen bridge networking (pvh domU) |
2003896 |
Focal update: v5.4.226 upstream stable release |
2002347 |
Focal update: v5.4.225 upstream stable release |
CVE-2023-0461 |
RESERVED |
CVE-2023-0266 |
A use after free vulnerability exists in the ALSA PCM package in the Linux Kernel. SNDRV_CTL_IOCTL_ELEM_{READ|WRITE}32 is missing locks that can be u |
CVE-2022-41218 |
In drivers/media/dvb-core/dmxdev.c in the Linux kernel through 5.19.10, there is a use-after-free caused by refcount races, affecting dvb_demux_open |
CVE-2022-4139 |
An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially leading to random memory corruption or data leaks. T |
CVE-2022-47520 |
An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000 |
CVE-2022-3545 |
A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function area_cache_get of the file |
|
linux-hwe-5.4 (5.4.0-139.156~18.04.1) bionic; urgency=medium
[ Ubuntu: 5.4.0-139.156 ]
* focal/linux: 5.4.0-139.156 -proposed tracker (LP: #2003486)
* Revoke & rotate to new signing key (LP: #2002812)
- [Packaging] Revoke and rotate to new signing key
|
Source diff to previous version |
2002812 |
Revoke \u0026 rotate to new signing key |
|
linux-hwe-5.4 (5.4.0-137.154~18.04.1) bionic; urgency=medium
* bionic/linux-hwe-5.4: 5.4.0-137.154~18.04.1 -proposed tracker (LP: #2001968)
[ Ubuntu: 5.4.0-137.154 ]
* focal/linux: 5.4.0-137.154 -proposed tracker (LP: #2001969)
* CVE-2022-3643
- xen/netback: Ensure protocol headers don't fall in the non-linear area
* CVE-2022-43945
- NFSD: Cap rsize_bop result based on send buffer size
* CVE-2022-45934
- Bluetooth: L2CAP: Fix u8 overflow
* CVE-2022-42896
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm
-- Thadeu Lima de Souza Cascardo <email address hidden> Tue, 10 Jan 2023 13:37:06 -0300
|
Source diff to previous version |
CVE-2022-3643 |
Guests can trigger NIC interface reset/abort/crash via netback It is possible for a guest to trigger a NIC interface reset/abort/crash in a Linux bas |
CVE-2022-43945 |
The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by e |
CVE-2022-45934 |
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_R |
CVE-2022-42896 |
There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_connect and l2cap_le_connect_req functions which ma |
|
linux-hwe-5.4 (5.4.0-136.153~18.04.1) bionic; urgency=medium
* bionic/linux-hwe-5.4: 5.4.0-136.153~18.04.1 -proposed tracker (LP: #1997834)
[ Ubuntu: 5.4.0-136.153 ]
* focal/linux: 5.4.0-136.153 -proposed tracker (LP: #1997835)
* Expose built-in trusted and revoked certificates (LP: #1996892)
- [Packaging] Expose built-in trusted and revoked certificates
* [UBUNTU 20.04] KVM: PV: ext call delivered twice when receiver in PSW wait
(LP: #1995941)
- KVM: s390: pv: don't present the ecall interrupt twice
* [UBUNTU 20.04] boot: Add s390x secure boot trailer (LP: #1996071)
- s390/boot: add secure boot trailer
* Fix rfkill causing soft blocked wifi (LP: #1996198)
- platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi
* md: Replace snprintf with scnprintf (LP: #1993315)
- md: Replace snprintf with scnprintf
* input/keyboard: the keyboard on some Asus laptops can't work (LP: #1992266)
- ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA
- ACPI: resource: Add ASUS model S5402ZA to quirks
* Focal update: v5.4.218 upstream stable release (LP: #1995530)
- mm: pagewalk: Fix race between unmap and page walker
- perf tools: Fixup get_current_dir_name() compilation
- firmware: arm_scmi: Add SCMI PM driver remove routine
- dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores property
- dmaengine: xilinx_dma: Report error in case of dma_set_mask_and_coherent API
failure
- ARM: dts: fix Moxa SDIO 'compatible', remove 'sdhci' misnomer
- scsi: qedf: Fix a UAF bug in __qedf_probe()
- net/ieee802154: fix uninit value bug in dgram_sendmsg
- um: Cleanup syscall_handler_t cast in syscalls_32.h
- um: Cleanup compiler warning in arch/x86/um/tls_32.c
- arch: um: Mark the stack non-executable to fix a binutils warning
- usb: mon: make mmapped memory read only
- USB: serial: ftdi_sio: fix 300 bps rate for SIO
- mmc: core: Replace with already defined values for readability
- mmc: core: Terminate infinite loop in SD-UHS voltage switch
- rpmsg: qcom: glink: replace strncpy() with strscpy_pad()
- nilfs2: fix leak of nilfs_root in case of writer thread creation failure
- nilfs2: replace WARN_ONs by nilfs_error for checkpoint acquisition failure
- ceph: don't truncate file in atomic_open
- random: clamp credited irq bits to maximum mixed
- ALSA: hda: Fix position reporting on Poulsbo
- efi: Correct Macmini DMI match in uefi cert quirk
- USB: serial: qcserial: add new usb-id for Dell branded EM7455
- random: restore O_NONBLOCK support
- random: avoid reading two cache lines on irq randomness
- random: use expired timer rather than wq for mixing fast pool
- Input: xpad - add supported devices as contributed on github
- Input: xpad - fix wireless 360 controller breaking after suspend
- Linux 5.4.218
* Focal update: v5.4.217 upstream stable release (LP: #1995528)
- xfs: fix misuse of the XFS_ATTR_INCOMPLETE flag
- xfs: introduce XFS_MAX_FILEOFF
- xfs: truncate should remove all blocks, not just to the end of the page
cache
- xfs: fix s_maxbytes computation on 32-bit kernels
- xfs: fix IOCB_NOWAIT handling in xfs_file_dio_aio_read
- xfs: refactor remote attr value buffer invalidation
- xfs: fix memory corruption during remote attr value buffer invalidation
- xfs: move incore structures out of xfs_da_format.h
- xfs: streamline xfs_attr3_leaf_inactive
- xfs: fix uninitialized variable in xfs_attr3_leaf_inactive
- xfs: remove unused variable 'done'
- Makefile.extrawarn: Move -Wcast-function-type-strict to W=1
- docs: update mediator information in CoC docs
- Linux 5.4.217
* Focal update: v5.4.216 upstream stable release (LP: #1995526)
- uas: add no-uas quirk for Hiksemi usb_disk
- usb-storage: Add Hiksemi USB3-FW to IGNORE_UAS
- uas: ignore UAS for Thinkplus chips
- net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455
- clk: ingenic-tcu: Properly enable registers before accessing timers
- ARM: dts: integrator: Tag PCI host with device_type
- ntfs: fix BUG_ON in ntfs_lookup_inode_by_name()
- libata: add ATA_HORKAGE_NOLPM for Pioneer BDR-207M and BDR-205
- mmc: moxart: fix 4-bit bus width and remove 8-bit bus width
- mm/page_alloc: fix race condition between build_all_zonelists and page
allocation
- mm: prevent page_frag_alloc() from corrupting the memory
- mm/migrate_device.c: flush TLB while holding PTL
- mm: fix madivse_pageout mishandling on non-LRU page
- media: dvb_vb2: fix possible out of bound access
- ARM: dts: Move am33xx and am43xx mmc nodes to sdhci-omap driver
- ARM: dts: am33xx: Fix MMCHS0 dma properties
- soc: sunxi: sram: Actually claim SRAM regions
- soc: sunxi: sram: Prevent the driver from being unbound
- soc: sunxi_sram: Make use of the helper function
devm_platform_ioremap_resource()
- soc: sunxi: sram: Fix probe function ordering issues
- soc: sunxi: sram: Fix debugfs info for A64 SRAM C
- Revert "drm: bridge: analogix/dp: add panel prepare/unprepare in
suspend/resume time"
- Input: melfas_mip4 - fix return value check in mip4_probe()
- usbnet: Fix memory leak in usbnet_disconnect()
- nvme: add new line after variable declatation
- nvme: Fix IOC_PR_CLEAR and IOC_PR_RELEASE ioctls for nvme devices
- selftests: Fix the if conditions of in test_extra_filter()
- clk: imx: imx6sx: remove the SET_RATE_PARENT flag for QSPI clocks
- clk: iproc: Do not rely on node name for correct PLL setup
- Linux 5.4.216
* Focal update: v5.4.215 upstream stable release (LP: #1993203)
- of: fdt: fix off-by-one error in unflatten_dt_nodes()
- NFSv4: Turn off open-by-filehandle and NFS re-export for NFSv4.0
- gpio: mpc8xxx: Fix support for IRQ_TYPE_LEVEL_LOW flow_type in mpc85xx
- drm/meson: Correct OSD1 glob
|
Source diff to previous version |
1996892 |
Expose built-in trusted and revoked certificates |
1995941 |
[UBUNTU 20.04] KVM: PV: ext call delivered twice when receiver in PSW wait |
1996071 |
[UBUNTU 20.04] boot: Add s390x secure boot trailer |
1996198 |
Fix rfkill causing soft blocked wifi |
1993315 |
md: Replace snprintf with scnprintf |
1992266 |
input/keyboard: the keyboard on some Asus laptops can't work |
1995530 |
Focal update: v5.4.218 upstream stable release |
1995528 |
Focal update: v5.4.217 upstream stable release |
1995526 |
Focal update: v5.4.216 upstream stable release |
1993203 |
Focal update: v5.4.215 upstream stable release |
1993196 |
Focal update: v5.4.214 upstream stable release |
1992211 |
Focal update: v5.4.213 upstream stable release |
CVE-2022-2663 |
An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be confused and incorrectly matches the message. A firewall |
CVE-2022-3061 |
Found Linux Kernel flaw in the i740 driver. The Userspace program could pass any values to the driver through ioctl() interface. The driver doesn't c |
|
linux-hwe-5.4 (5.4.0-135.152~18.04.2) bionic; urgency=medium
* bionic/linux-hwe-5.4: 5.4.0-135.152~18.04.2 -proposed tracker (LP: #1997411)
[ Ubuntu: 5.4.0-135.152 ]
* focal/linux: 5.4.0-135.152 -proposed tracker (LP: #1997412)
* containerd sporadic timeouts (LP: #1996678)
- epoll: call final ep_events_available() check under the lock
- epoll: check for events when removing a timed out thread from the wait queue
- Revert "fs: check FMODE_LSEEK to control internal pipe splicing"
* CVE-2022-3621
- nilfs2: fix NULL pointer dereference at nilfs_bmap_lookup_at_level()
* CVE-2022-3565
- mISDN: fix use-after-free bugs in l1oip timer handlers
* CVE-2022-3566
- tcp: Fix data races around icsk->icsk_af_ops.
* CVE-2022-3567
- ipv6: annotate some data-races around sk->sk_prot
- ipv6: Fix data races around sk->sk_prot.
* CVE-2022-3564
- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu
* CVE-2022-3524
- tcp/udp: Fix memory leak in ipv6_renew_options().
* CVE-2022-3594
- r8152: Rate limit overflow messages
* CVE-2022-42703
- mm/rmap.c: don't reuse anon_vma if we just want a copy
-- Thadeu Lima de Souza Cascardo <email address hidden> Mon, 28 Nov 2022 18:10:19 -0300
|
1996678 |
containerd sporadic timeouts |
CVE-2022-3621 |
A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_bmap_lookup_at_level of the file fs/ |
CVE-2022-3565 |
A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function del_timer of the file drive |
CVE-2022-3566 |
A vulnerability, which was classified as problematic, was found in Linux Kernel. This affects the function tcp_getsockopt/tcp_setsockopt of the compo |
CVE-2022-3567 |
A vulnerability has been found in Linux Kernel and classified as problematic. This vulnerability affects the function inet6_stream_ops/inet6_dgram_op |
CVE-2022-3564 |
A vulnerability classified as critical was found in Linux Kernel. Affected by this vulnerability is the function l2cap_reassemble_sdu of the file net |
CVE-2022-3524 |
A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function ipv6_renew_options of |
CVE-2022-3594 |
A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function intr_callback of the f |
CVE-2022-42703 |
mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to leaf anon_vma double reuse. |
|
About
-
Send Feedback to @ubuntu_updates