Package "linux-oem-5.17-tools-host"

Name:	linux-oem-5.17-tools-host
Description:	Linux kernel VM host tools
Latest version:	5.17.0-1035.36
Release:	jammy (22.04)
Level:	updates
Repository:	main
Head package:	linux-oem-5.17

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "linux-oem-5.17-tools-host"

All arch deb package

APT INSTALL

Other versions of "linux-oem-5.17-tools-host" in Jammy

Repository	Area	Version
security	main	5.17.0-1035.36
PPA: Canonical Kernel Team		5.17.0-1033.34

Changelog

Version: 5.17.0-1030.31 2023-04-18 12:07:54 UTC

linux-oem-5.17 (5.17.0-1030.31) jammy; urgency=medium * jammy/linux-oem-5.17: 5.17.0-1030.31 -proposed tracker (LP: #2011919) * Packaging resync (LP: #1786013) - [Packaging] update update.conf - debian/dkms-versions -- update from kernel-versions (main/2023.03.20) * CVE-2022-4382 - USB: gadgetfs: Fix race between mounting and unmounting * CVE-2023-23559 - wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid * CVE-2022-3903 - media: mceusb: Use new usb_control_msg_*() routines * CVE-2023-1118 - media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() * CVE-2023-26607 - ntfs: fix use-after-free in ntfs_ucsncmp() - ntfs: fix out-of-bounds read in ntfs_attr_find() * CVE-2022-21505 - lockdown: Fix kexec lockdown bypass with ima policy * CVE-2023-1095 - netfilter: nf_tables: fix null deref due to zeroed list head * CVE-2023-1074 - sctp: fail if no bound addresses can be used for a given scope * CVE-2022-41849 - fbdev: smscufx: Fix use-after-free in ufx_ops_open() * CVE-2023-1281 - net/sched: tcindex: update imperfect hash filters respecting rcu -- Manuel Diewald <email address hidden> Fri, 31 Mar 2023 15:37:07 +0200

Source diff to previous version

1786013	Packaging resync
CVE-2022-4382	A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yanking out a
CVE-2023-23559	In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.
CVE-2022-3903	An incorrect read request flaw was found in the Infrared Transceiver USB driver in the Linux kernel. This issue occurs when a user attaches a malicio
CVE-2023-1118	A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user
CVE-2023-26607	In the Linux kernel 6.0.8, there is an out-of-bounds read in ntfs_attr_find in fs/ntfs/attrib.c.
CVE-2023-1095	In nf_tables_updtable, if nf_tables_table_enable returns an error, nft_trans_destroy is called to free the transaction object. nft_trans_destroy() ca
CVE-2023-1074	A memory leak flaw was found in the Linux kernel's Stream Control Transmission Protocol. This issue may occur when a user starts a malicious networki
CVE-2022-41849	drivers/video/fbdev/smscufx.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free if a physically proximate attacke
CVE-2023-1281	RESERVED

Version: 5.17.0-1029.30 2023-03-27 13:07:14 UTC

linux-oem-5.17 (5.17.0-1029.30) jammy; urgency=medium * jammy/linux-oem-5.17: 5.17.0-1029.30 -proposed tracker (LP: #2008350) * CVE-2023-0461 - SAUCE: Fix inet_csk_listen_start after CVE-2023-0461 * CVE-2023-0394 - ipv6: raw: Deduct extension header length in rawv6_push_pending_frames * CVE-2022-36280 - drm/vmwgfx: Validate the box size for the snooped cursor * CVE-2022-41850 - HID: roccat: Fix use-after-free in roccat_read() * CVE-2022-3061 - video: fbdev: i740fb: Error out if 'pixclock' equals zero * CVE-2022-3628 - wifi: brcmfmac: Fix potential buffer overflow in brcmf_fweh_event_worker() * CVE-2022-3646 - nilfs2: fix leak of nilfs_root in case of writer thread creation failure * CVE-2022-3649 - nilfs2: fix use-after-free bug of struct nilfs_root * rtcpie in timers from ubuntu_kernel_selftests randomly failing (LP: #1814234) - SAUCE: selftest: rtcpie: Force passing unreliable subtest * CVE-2022-2196 - KVM: VMX: Execute IBPB on emulated VM-exit when guest has IBRS -- Timo Aaltonen <email address hidden> Mon, 13 Mar 2023 16:14:19 +0200

Source diff to previous version

1814234	rtcpie in timers from ubuntu_kernel_selftests randomly failing
CVE-2023-0461	RESERVED
CVE-2023-0394	A NULL pointer dereference flaw was found in rawv6_push_pending_frames in net/ipv6/raw.c in the network subcomponent in the Linux kernel. This flaw c
CVE-2022-36280	An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the Linux kernel
CVE-2022-41850	roccat_report_event in drivers/hid/hid-roccat.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free in certain situ
CVE-2022-3061	Found Linux Kernel flaw in the i740 driver. The Userspace program could pass any values to the driver through ioctl() interface. The driver doesn't c
CVE-2022-3628	A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device
CVE-2022-3646	A vulnerability, which was classified as problematic, has been found in Linux Kernel. This issue affects the function nilfs_attach_log_writer of the
CVE-2022-3649	A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_new_inode of the file fs/nilfs2/inod
CVE-2022-2196	A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 du

Version: 5.17.0-1028.29 2023-03-02 00:06:54 UTC

linux-oem-5.17 (5.17.0-1028.29) jammy; urgency=medium * jammy/linux-oem-5.17: 5.17.0-1028.29 -proposed tracker (LP: #2004346) * CVE-2023-0045 - x86/bugs: Flush IBP in ib_prctl_set() * Packaging resync (LP: #1786013) - debian/dkms-versions -- update from kernel-versions (main/2023.01.30) * Keeps rebooting with AMD W6400, W6600, and W6800 graphic cards (LP: #2000110) - drm/amdgpu: move nbio ih_doorbell_range() into ih code for vega - drm/amdgpu: move nbio sdma_doorbell_range() into sdma code for vega - drm/amdgpu: make sure to init common IP before gmc - drm/amdgpu: fix sdma doorbell init ordering on APUs * CVE-2022-47520 - wifi: wilc1000: validate pairwise and authentication suite offsets * Improve arp_ndisc_evict_nocarrier.sh test result processing (LP: #2006546) - selftests: net: return non-zero for failures reported in arp_ndisc_evict_nocarrier * CVE-2022-43750 - usb: mon: make mmapped memory read only * CVE-2023-0461 - net/ulp: prevent ULP without clone op from entering the LISTEN status - net/ulp: use consistent error code when blocking ULP * CVE-2022-3565 - mISDN: fix use-after-free bugs in l1oip timer handlers * CVE-2022-36879 - xfrm: xfrm_policy: fix a possible double xfrm_pols_put() in xfrm_bundle_lookup() * CVE-2022-20369 - NFSD: fix use-after-free in __nfs42_ssc_open() * arp_ndisc_evict_nocarrier.sh in net from ubuntu_kernel_selftests failed on J-oem-5.17 / K (LP: #1968310) - selftests: net: fix cleanup_v6() for arp_ndisc_evict_nocarrier * CVE-2022-20566 - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put * Expose built-in trusted and revoked certificates (LP: #1996892) - [Packaging] Expose built-in trusted and revoked certificates -- Timo Aaltonen <email address hidden> Fri, 10 Feb 2023 12:15:41 +0200

Source diff to previous version

1786013	Packaging resync
2006546	Improve arp_ndisc_evict_nocarrier.sh test result processing
1996892	Expose built-in trusted and revoked certificates
CVE-2022-47520	An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000
CVE-2022-43750	drivers/usb/mon/mon_bin.c in usbmon in the Linux kernel before 5.19.15 and 6.x before 6.0.1 allows a user-space client to corrupt the monitor's inter
CVE-2023-0461	RESERVED
CVE-2022-3565	A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function del_timer of the file drive
CVE-2022-36879	An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.
CVE-2022-20369	In v4l2_m2m_querybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation
CVE-2022-20566	In l2cap_chan_put of l2cap_core, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no

Version: 5.17.0-1027.28 2023-02-08 20:07:20 UTC

linux-oem-5.17 (5.17.0-1027.28) jammy; urgency=medium * jammy/linux-oem-5.17: 5.17.0-1027.28 -proposed tracker (LP: #2003451) * CVE-2022-3545 - nfp: fix use-after-free in area_cache_get() * CVE-2022-42895 - Bluetooth: L2CAP: Fix attempting to access uninitialized memory * ThinkPad L14 Gen 3 blank laptop screen on bootup (LP: #2002467) - Revert "drm/amdgpu: make sure to init common IP before gmc" * CVE-2023-0179 - netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits [ Ubuntu: 5.17.0-15.16~22.04.8 ] * jammy/linux-hwe-5.17: 5.17.0-15.16~22.04.8 -proposed tracker (LP: #2003452) * Packaging resync (LP: #1786013) - [Packaging] update helper scripts - debian/dkms-versions -- update from kernel-versions (main/2023.01.02) * Revoke & rotate to new signing key (LP: #2002812) - [Packaging] Revoke and rotate to new signing key * CVE-2022-45934 - Bluetooth: L2CAP: Fix u8 overflow * CVE-2022-42896 - Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM - Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm * CVE-2022-4378 - proc: proc_skip_spaces() shouldn't think it is working on C strings - proc: avoid integer type confusion in get_proc_long -- Timo Aaltonen <email address hidden> Mon, 23 Jan 2023 12:37:39 +0200

Source diff to previous version

2002467	ThinkPad L14 Gen 3 blank laptop screen on bootup
1786013	Packaging resync
2002812	Revoke \u0026 rotate to new signing key
CVE-2022-3545	A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function area_cache_get of the file
CVE-2022-42895	There is an infoleak vulnerability in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_parse_conf_req function which can be used to leak kernel
CVE-2023-0179	netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits
CVE-2022-45934	An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_R
CVE-2022-42896	There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_connect and l2cap_le_connect_req functions which ma
CVE-2022-4378	A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem ...

Version: 5.17.0-1026.27 2023-01-09 22:06:38 UTC

linux-oem-5.17 (5.17.0-1026.27) jammy; urgency=medium * jammy/linux-oem-5.17: 5.17.0-1026.27 -proposed tracker (LP: #2001046) * Keeps rebooting with AMD W6400, W6600, and W6800 graphic cards (LP: #2000110) - drm/amdgpu: Remove ATC L2 access for MMHUB 2.1.x - drm/amd/pm: disable BACO entry/exit completely on several sienna cichlid cards - drm/amdgpu: disable BACO on special BEIGE_GOBY card - drm/amdgpu: disable BACO support on more cards - drm/amdgpu: make sure to init common IP before gmc * Fix SUT can't displayed after resume from WB/CB with dGFX installed(FR:6/10)[RX6300][RX6500] (LP: #1999836) - drm/amd/display: No display after resume from WB/CB * CVE-2022-4378 - proc: proc_skip_spaces() shouldn't think it is working on C strings - proc: avoid integer type confusion in get_proc_long -- Timo Aaltonen <email address hidden> Wed, 04 Jan 2023 11:37:57 +0200

CVE-2022-4378

A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem ...

About - Send Feedback to @ubuntu_updates

Package "linux-oem-5.17-tools-host"

Links

Download "linux-oem-5.17-tools-host"

Other versions of "linux-oem-5.17-tools-host" in Jammy

Changelog

Share this page

Bookmarks

Latest updates

proposed

updates

security

PPA updates