UbuntuUpdates.org

Package "linux-mtk"

Name: linux-mtk

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Header files related to Linux kernel version 5.15.0
  • Header files related to Linux kernel version 5.15.0
  • Header files related to Linux kernel version 5.15.0
  • Header files related to Linux kernel version 5.15.0

Latest version: 5.15.0-1034.40
Release: jammy (22.04)
Level: updates
Repository: universe

Links



Other versions of "linux-mtk" in Jammy

Repository Area Version
security universe 5.15.0-1034.40
proposed universe 5.15.0-1035.41
PPA: Canonical Kernel Team 5.15.0-1036.42

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.15.0-1034.40 2024-10-16 20:07:07 UTC

  linux-mtk (5.15.0-1034.40) jammy; urgency=medium

  * jammy/linux-mtk: 5.15.0-1034.40 -proposed tracker (LP: #2082876)

  * [g1200] regulators not enabled after sru d2024.08.12 (LP: #2082868)
    - SAUCE: (no-up) regulator: mt6360: fix compatibility issue for downstream
      device tree
    - SAUCE: (no-up) power: supply: mt6360_charger: fix compatibility issue for
      downstream device tree

  * [uc22][g700] systemd-backlight@backlight:1c008000.dsi0.0.service loaded
    failed during cold boot stress test (LP: #2078763)
    - [Config] CONFIG_DRM_MEDIATEK_HDMI=y and CONFIG_PHY_MTK_HDMI=y

  * [g510][g700] add fsource device tree node (LP: #2078762)
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: genio-700-evk/genio-510-evk: add
      fsource device tree node

  [ Ubuntu: 5.15.0-119.129 ]

  * jammy/linux: 5.15.0-119.129 -proposed tracker (LP: #2075665)
  * Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4
    (LP: #2073267)
    - SAUCE: Revert "randomize_kstack: Improve entropy diffusion"
  * CVE-2024-26921
    - inet: inet_defrag: prevent sk release while still in use
  * Jammy update: v5.15.162 upstream stable release (LP: #2073765) //
    CVE-2024-39484
    - mmc: davinci: Don't strip remove function when driver is builtin
  * Jammy update: v5.15.162 upstream stable release (LP: #2073765)
    - mmc: davinci_mmc: Convert to platform remove callback returning void
  * CVE-2024-39292
    - um: Add winch to winch_handlers before registering winch IRQ
  * CVE-2024-36901
    - ipv6: prevent NULL dereference in ip6_output()
  * CVE-2024-26830
    - i40e: Do not allow untrusted VF to remove administratively set MAC
  * CVE-2024-26680
    - net: atlantic: Fix DMA mapping for PTP hwts ring
  * CVE-2023-52760
    - gfs2: Fix slab-use-after-free in gfs2_qd_dealloc
  * CVE-2023-52629
    - sh: push-switch: Reorder cleanup operations to avoid use-after-free bug

  [ Ubuntu: 5.15.0-118.128 ]

  * jammy/linux: 5.15.0-118.128 -proposed tracker (LP: #2072255)
  * Jammy update: v5.15.160 upstream stable release (LP: #2070292)
    - drm/amd/display: Fix division by zero in setup_dsc_config
    - pinctrl: core: handle radix_tree_insert() errors in
      pinctrl_register_one_pin()
    - nfsd: don't allow nfsd threads to be signalled.
    - KEYS: trusted: Fix memory leak in tpm2_key_encode()
    - Revert "selftests: mm: fix map_hugetlb failure on 64K page size systems"
    - net: bcmgenet: synchronize EXT_RGMII_OOB_CTRL access
    - net: bcmgenet: synchronize UMAC_CMD access
    - netlink: annotate lockless accesses to nlk->max_recvmsg_len
    - netlink: annotate data-races around sk->sk_err
    - KVM: x86: Clear "has_error_code", not "error_code", for RM exception
      injection
    - drm/amdgpu: Fix possible NULL dereference in
      amdgpu_ras_query_error_status_helper()
    - binder: fix max_thread type inconsistency
    - usb: typec: ucsi: displayport: Fix potential deadlock
    - serial: kgdboc: Fix NMI-safety problems from keyboard reset code
    - remoteproc: mediatek: Make sure IPI buffer fits in L2TCM
    - KEYS: trusted: Do not use WARN when encode fails
    - admin-guide/hw-vuln/core-scheduling: fix return type of PR_SCHED_CORE_GET
    - docs: kernel_include.py: Cope with docutils 0.21
    - Linux 5.15.160
  * Jammy update: v5.15.159 upstream stable release (LP: #2070028)
    - dmaengine: pl330: issue_pending waits until WFP state
    - dmaengine: Revert "dmaengine: pl330: issue_pending waits until WFP state"
    - wifi: nl80211: don't free NULL coalescing rule
    - ksmbd: fix slab-out-of-bounds in smb2_allocate_rsp_buf
    - ksmbd: validate request buffer size in smb2_allocate_rsp_buf()
    - ksmbd: clear RENAME_NOREPLACE before calling vfs_rename
    - eeprom: at24: Use dev_err_probe for nvmem register failure
    - eeprom: at24: Probe for DDR3 thermal sensor in the SPD case
    - eeprom: at24: fix memory corruption race condition
    - pinctrl: pinctrl-aspeed-g6: Fix register offset for pinconf of GPIOR-T
    - pinctrl/meson: fix typo in PDM's pin name
    - pinctrl: core: delete incorrect free in pinctrl_enable()
    - pinctrl: mediatek: paris: Rework mtk_pinconf_{get,set} switch/case logic
    - pinctrl: mediatek: paris: Fix PIN_CONFIG_INPUT_SCHMITT_ENABLE readback
    - pinctrl: mediatek: paris: Rework support for
      PIN_CONFIG_{INPUT,OUTPUT}_ENABLE
    - sunrpc: add a struct rpc_stats arg to rpc_create_args
    - nfs: expose /proc/net/sunrpc/nfs in net namespaces
    - nfs: make the rpc_stat per net namespace
    - nfs: Handle error of rpc_proc_register() in nfs_net_init().
    - power: rt9455: hide unused rt9455_boost_voltage_values
    - power: supply: mt6360_charger: Fix of_match for usb-otg-vbus regulator
    - pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()
    - regulator: mt6360: De-capitalize devicetree regulator subnodes
    - bpf, kconfig: Fix DEBUG_INFO_BTF_MODULES Kconfig definition
    - bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue
    - bpf: Fix a verifier verbose message
    - spi: hisi-kunpeng: Delete the dump interface of data registers in debugfs
    - s390/mm: Fix storage key clearing for guest huge pages
    - s390/mm: Fix clearing storage keys for huge pages
    - xdp: Move conversion to xdp_frame out of map functions
    - xdp: Add xdp_do_redirect_frame() for pre-computed xdp_frames
    - xdp: use flags field to disambiguate broadcast redirect
    - bna: ensure the copied buf is NUL terminated
    - octeontx2-af: avoid off-by-one read from userspace
    - nsh: Restore skb->{protocol,data,mac_header} for outer header in
      nsh_gso_segment().
    - net l2tp: drop flow hash on forward
    - s390/vdso: Add CFI for RA register to asm macro vdso_func
    - net: qede: sanitize 'rc' in qede_add_tc_flower_fltr()
    - net: qede: use return from qede_parse_flow_attr() for flower
    - net: qede: use return from qede_parse_flow_attr() for flow_spec
    - net: qede: use return from q

Source diff to previous version
2082868 [g1200] regulators not enabled after sru d2024.08.12\t
2078763 [uc22][g700] systemd-backlight@backlight:1c008000.dsi0.0.service loaded failed during cold boot stress test
2078762 [g510][g700] add fsource device tree node
2073267 Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4
2073765 Jammy update: v5.15.162 upstream stable release
2070292 Jammy update: v5.15.160 upstream stable release
2070028 Jammy update: v5.15.159 upstream stable release
2061091 Freezing user space processes failed after 20.008 seconds (1 tasks refusing to freeze, wq_busy=0)
2069081 idxd: NULL pointer dereference reading wq op_config attribute
2068738 AMD GPUs fail with null pointer dereference when IOMMU enabled, leading to black screen
1786013 Packaging resync
2067974 Jammy update: v5.15.158 upstream stable release
2067959 Jammy update: v5.15.157 upstream stable release
2046722 [SRU][22.04.4]: megaraid_sas: Critical Bug Fixes
2065857 Jammy update: v5.15.156 upstream stable release
2065805 Jammy update: v5.15.155 upstream stable release
2065435 Jammy update: v5.15.154 upstream stable release
CVE-2024-26921 In the Linux kernel, the following vulnerability has been resolved: inet: inet_defrag: prevent sk release while still in use ip_local_out() and oth
CVE-2024-39484 In the Linux kernel, the following vulnerability has been resolved: mmc: davinci: Don't strip remove function when driver is builtin Using __exit f
CVE-2024-39292 In the Linux kernel, the following vulnerability has been resolved: um: Add winch to winch_handlers before registering winch IRQ Registering a winc
CVE-2024-36901 In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent NULL dereference in ip6_output() According to syzbot, there is a
CVE-2024-26830 In the Linux kernel, the following vulnerability has been resolved: i40e: Do not allow untrusted VF to remove administratively set MAC Currently wh
CVE-2024-26680 In the Linux kernel, the following vulnerability has been resolved: net: atlantic: Fix DMA mapping for PTP hwts ring Function aq_ring_hwts_rx_alloc
CVE-2023-52760 In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix slab-use-after-free in gfs2_qd_dealloc In gfs2_put_super(), whether w
CVE-2023-52629 In the Linux kernel, the following vulnerability has been resolved: sh: push-switch: Reorder cleanup operations to avoid use-after-free bug The ori
CVE-2024-27017 In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: walk over current view on netlink dump The generatio
CVE-2024-26952 In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial out-of-bounds when buffer offset is invalid I found potenc
CVE-2024-26886 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: af_bluetooth: Fix deadlock Attemting to do sock_lock on .recvmsg may
CVE-2023-52752 In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() Skip SMB ses
CVE-2024-25742 In the Linux kernel before 6.9, an untrusted hypervisor can inject virtual interrupt 29 (#VC) at any point in time and can trigger its handler. This
CVE-2024-36016 In the Linux kernel, the following vulnerability has been resolved: tty: n_gsm: fix possible out-of-bounds in gsm0_receive() Assuming the following
CVE-2024-23307 Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (md, raid, raid5 modules) allows Forced Integer Overflow
CVE-2024-26828 In the Linux kernel, the following vulnerability has been resolved: cifs: fix underflow in parse_server_interfaces() In this loop, we step through
CVE-2024-24861 A race condition was found in the Linux kernel's media/xc4000 device driver in xc4000 xc4000_get_frequency() function. This can result in return valu
CVE-2024-26642 In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: disallow anonymous set with timeout flag Anonymous sets a
CVE-2024-26926 In the Linux kernel, the following vulnerability has been resolved: binder: check offset alignment in binder_get_object() Commit 6d98eb95b450 ("bin
CVE-2024-26922 In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate the parameters of bo mapping operations more clearly Verif
CVE-2023-6039 A use-after-free flaw was found in lan78xx_disconnect in drivers/net/usb/lan78xx.c in the network sub-component, net/usb/lan78xx in the Linux Kernel.
CVE-2024-26924 In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: do not free live element Pablo reports a crash with
CVE-2024-26643 In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeout

Version: 5.15.0-1033.38 2024-07-29 15:07:24 UTC

  linux-mtk (5.15.0-1033.38) jammy; urgency=medium

  * jammy/linux-mtk: 5.15.0-1033.38 -proposed tracker (LP: #2072455)

  * [g350] No video output on HDMI (LP: #2072531)
    - SAUCE: (no-up) drm/mediatek: dpi: fix hdmi output for g350(mt8365)

  * [UC22][g350] systemd-backlight@backlight:14014000.dsi0.0.service: Failed to
    write system 'brightness' attribute: Invalid argument during warm-boot /
    cold-boot stress test (LP: #2069787)
    - [Config] CONFIG_DRM_PANEL_STARTEK_KD070FHFID015=m

  * [SRU] UBSAN: shift-out-of-bounds in mt6359-regulator.c:281 (LP: #2059227)
    - SAUCE: (no-up) regulator: mt6359: fix regulator mode setting

  [ Ubuntu: 5.15.0-113.123 ]

  * jammy/linux: 5.15.0-113.123 -proposed tracker (LP: #2068242)
  * CVE-2024-26924
    - netfilter: nft_set_pipapo: do not free live element
  * CVE-2024-26643
    - netfilter: nf_tables: mark set as dead when unbinding anonymous set with
      timeout

 -- Jian Hui Lee <email address hidden> Mon, 15 Jul 2024 10:28:19 +0800

Source diff to previous version
CVE-2024-26924 In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: do not free live element Pablo reports a crash with
CVE-2024-26643 In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeout

Version: 5.15.0-1031.36 2024-06-12 17:57:00 UTC

  linux-mtk (5.15.0-1031.36) jammy; urgency=medium

  * jammy/linux-mtk: 5.15.0-1031.36 -proposed tracker (LP: #2064983)

  * [SRU] ubuntu_ltp: fs testsuite causing tainted kernel (LP: #2059057)
    - SAUCE: (no-up) ubuntu: mtk-apusys-driver: fix fs testsuite in ubuntu_ltp
      causing tainted kernel

  * [SRU] UBSAN: shift-out-of-bounds in mt6359-regulator.c:281 (LP: #2059227)
    - SAUCE: (no-up) regulator: mt6359: fix UBSAN: shift-out-of-bounds

  * [uc22][g350][g700] long install time and vblank timeout (LP: #2060936)
    - SAUCE: (no-up) drm/panel: stk-kd070: fix relaxation time between regulator
      enablement
    - SAUCE: (no-up) drm/panel: stk-kd070: fix panel not responding if set/get
      brightness earlier before pre_enable

  * [uc22][g700] Unable boot into OS and got call trace during kernel boot while
    configuring DSI + DPoC (display-dsidp.dtbo) (LP: #2063185)
    - SAUCE: (no-up) drm/panel: stk-kd070: fix deference error after panel being
      defer probed

  * [SRU] dt node backward compatibility for rxfifo (LP: #2065760)
    - SAUCE: (no-up) usb: xhci-mtk: dt node backward compatibility for rxfifo

  * [g1200] Unable boot into OS while using display-lvdshdmidp.dtbo with 1030.35
    kernel (LP: #2059233)
    - SAUCE: (no-up) drm/mediatek: dpi: fix triple display if lvds/edp is enabled

  * Packaging resync (LP: #1786013)
    - [Packaging] drop ABI data
    - [Packaging] drop getabis data

  [ Ubuntu: 5.15.0-105.115 ]

  * jammy/linux: 5.15.0-105.115 -proposed tracker (LP: #2061372)
  * Jammy update: v5.15.149 upstream stable release (LP: #2059014) // CIFS
    stopped working/is unstable with kernel update to 5.15.0-102.112
    (LP: #2060780)
    - smb3: Replace smb2pdu 1-element arrays with flex-arrays

  [ Ubuntu: 5.15.0-103.113 ]

  * jammy/linux: 5.15.0-103.113 -proposed tracker (LP: #2059683)
  * Packaging resync (LP: #1786013)
    - [Packaging] drop getabis data
  * Remove getabis scripts (LP: #2059143)
    - [Packaging] Remove getabis
  * CVE-2023-24023
    - Bluetooth: Add more enc key size check
  * CVE-2023-52600
    - jfs: fix uaf in jfs_evict_inode
  * Jammy update: v5.15.149 upstream stable release (LP: #2059014) //
    CVE-2023-52603
    - UBSAN: array-index-out-of-bounds in dtSplitRoot
  * CVE-2024-26581
    - netfilter: nft_set_rbtree: skip end interval element from gc

  [ Ubuntu: 5.15.0-102.112 ]

  * jammy/linux: 5.15.0-102.112 -proposed tracker (LP: #2055632)
  * Drop ABI checks from kernel build (LP: #2055686)
    - [Packaging] Remove in-tree abi checks
    - [Packaging] Drop abi checks from final-checks
  * Packaging resync (LP: #1786013)
    - [Packaging] drop ABI data
    - [Packaging] update annotations scripts
    - debian.master/dkms-versions -- update from kernel-versions (main/2024.03.04)
  * block/loop: No longer allows to create partitions (LP: #2056143)
    - block, loop: support partitions without scanning
  * Cranky update-dkms-versions rollout (LP: #2055685)
    - [Packaging] remove update-dkms-versions
    - Move debian/dkms-versions to debian.master/dkms-versions
    - [Packaging] Replace debian/dkms-versions with $(DEBIAN)/dkms-versions
    - [Packaging] remove update-version-dkms
  * linux: please move erofs.ko (CONFIG_EROFS for EROFS support) from linux-
    modules-extra to linux-modules (LP: #2054809)
    - UBUNTU [Packaging]: Include erofs in linux-modules instead of linux-modules-
      extra
  * linux-tools-common: man page of usbip[d] is misplaced (LP: #2054094)
    - [Packaging] rules: Put usbip manpages in the correct directory
  * CVE-2024-23851
    - dm ioctl: log an error if the ioctl structure is corrupted
    - dm: limit the number of targets and parameter size area
  * CVE-2024-23850
    - btrfs: do not ASSERT() if the newly created subvolume already got read
  * x86: performance: tsc: Extend watchdog check exemption to 4-Sockets platform
    (LP: #2054699)
    - x86/tsc: Extend watchdog check exemption to 4-Sockets platform
  * linux: please move dmi-sysfs.ko (CONFIG_DMI_SYSFS for SMBIOS support) from
    linux-modules-extra to linux-modules (LP: #2045561)
    - [Packaging] Move dmi-sysfs.ko into linux-modules
  * Fix bpf selftests build failure after v5.15.139 update (LP: #2054567)
    - Revert "selftests/bpf: Test tail call counting with bpf2bpf and data on
      stack"
  * Jammy update: v5.15.148 upstream stable release (LP: #2055145)
    - f2fs: explicitly null-terminate the xattr list
    - pinctrl: lochnagar: Don't build on MIPS
    - ALSA: hda - Fix speaker and headset mic pin config for CHUWI CoreBook XPro
    - mptcp: fix uninit-value in mptcp_incoming_options
    - wifi: cfg80211: lock wiphy mutex for rfkill poll
    - debugfs: fix automount d_fsdata usage
    - drm/amdgpu: Fix cat debugfs amdgpu_regs_didt causes kernel null pointer
    - nvme-core: check for too small lba shift
    - ASoC: wm8974: Correct boost mixer inputs
    - ASoC: Intel: Skylake: Fix mem leak in few functions
    - ASoC: nau8822: Fix incorrect type in assignment and cast to restricted
      __be16
    - ASoC: Intel: Skylake: mem leak in skl register function
    - ASoC: cs43130: Fix the position of const qualifier
    - ASoC: cs43130: Fix incorrect frame delay configuration
    - ASoC: rt5650: add mutex to avoid the jack detection failure
    - nouveau/tu102: flush all pdbs on vmm flush
    - net/tg3: fix race condition in tg3_reset_task()
    - ASoC: da7219: Support low DC impedance headset
    - ASoC: ops: add correct range check for limiting volume
    - nvme: introduce helper function to get ctrl state
    - drm/amdgpu: Add NULL checks for function pointers
    - drm/exynos: fix a potential error pointer dereference
    - drm/exynos: fix a wrong error checking
    - hwmon: (corsair-psu) Fix probe when built-in
    - clk: rockchip: rk3128: Fix HCLK_OTG gate register
    - jbd2: correct the printing of write_flags in jbd2_write_superblock()
    - drm/crtc: Fix uninit-value bug in drm_mode_setcrtc
    - neighbour: Don't let nei

Source diff to previous version
1786013 Packaging resync
2059014 Jammy update: v5.15.149 upstream stable release
2060780 CIFS stopped working/is unstable with kernel update to 5.15.0-102.112
2059143 Remove getabis scripts
2055686 Drop ABI checks from kernel build
2056143 block/loop: No longer allows to create partitions
2055685 Cranky update-dkms-versions rollout
2054809 linux: please move erofs.ko (CONFIG_EROFS for EROFS support) from linux-modules-extra to linux-modules
2054094 linux-tools-common: man page of usbip[d] is misplaced
2054699 x86: performance: tsc: Extend watchdog check exemption to 4-Sockets platform
2045561 linux: please move dmi-sysfs.ko (CONFIG_DMI_SYSFS for SMBIOS support) from linux-modules-extra to linux-modules
2054567 Fix bpf selftests build failure after v5.15.139 update
2055145 Jammy update: v5.15.148 upstream stable release
2053251 performance: Scheduler: ratelimit updating of load_avg
2054411 Jammy update: v5.15.147 upstream stable release
2053152 performance: mm/percpu-internal.h: Re-layout pcpu_chunk to mitigate false sharing
2053069 performance: address_space: add padding for i_map and i_mmap_rwsem to mitigate a false sharing
2052817 cpufreq: intel_pstate: Enable HWP IO boost for all servers
2052827 performance: mm/memcontrol.c: remove the redundant updating of stats_flush_threshold
2053212 Jammy update: v5.15.146 upstream stable release
1971699 disable Intel DMA remapping by default
2052005 Validate connection interval to pass Bluetooth Test Suite
2052406 Jammy update: v5.15.145 upstream stable release
2052404 Jammy update: v5.15.144 upstream stable release
2049689 partproke is broken on empty loopback device
2050858 Jammy update: v5.15.143 upstream stable release
2036239 Intel E810-XXV - NETDEV WATCHDOG: (ice): transmit queue timed out
2048404 Don't WARN_ON_ONCE() for a broken discovery table
2047634 Reject connection when malformed L2CAP signal packet is received
2050849 Jammy update: v5.15.142 upstream stable release
2050044 Jammy update: v5.15.141 upstream stable release
2050038 Jammy update: v5.15.140 upstream stable release
2049432 Jammy update: v5.15.139 upstream stable release
2049417 Jammy update: v5.15.138 upstream stable release
2049350 Jammy update: v5.15.137 upstream stable release
CVE-2023-24023 Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-
CVE-2023-52600 In the Linux kernel, the following vulnerability has been resolved: jfs: fix uaf in jfs_evict_inode When the execution of diMount(ipimap) fails, th
CVE-2023-52603 In the Linux kernel, the following vulnerability has been resolved: UBSAN: array-index-out-of-bounds in dtSplitRoot Syzkaller reported the followin
CVE-2024-26581 In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_rbtree: skip end interval element from gc rbtree lazy gc on
CVE-2024-23851 copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes, and crash, because of a missi
CVE-2024-23850 In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an assertion failure and crash because a subvolume can be
CVE-2024-24855 A race condition was found in the Linux kernel's scsi device driver in lpfc_unregister_fcf_rescan() function. This can result in a null pointer deref
CVE-2024-1085 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_
CVE-2023-23000 In the Linux kernel before 5.17, drivers/phy/tegra/xusb.c mishandles the tegra_xusb_find_port_node return value. Callers expect NULL in the error cas
CVE-2023-46838 Transmit requests in Xen's virtual network protocol can consist of multiple parts. While not really useful, except for the initial part any of them
CVE-2024-1086 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_
CVE-2023-32247 A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2_SESSION_S
CVE-2024-22705 An issue was discovered in ksmbd in the Linux kernel before 6.6.10. smb2_get_data_area_len in fs/smb/server/smb2misc.c can cause an smb_strndup_from_
CVE-2023-0340 The Custom Content Shortcode WordPress plugin through 4.0.2 does not validate one of its shortcode attribute, which could allow users with a contribu
CVE-2023-51780 An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race conditio
CVE-2023-6915 A Null pointer dereference problem was found in ida_free in lib/idr.c in the Linux Kernel. This issue may allow an attacker using this library to cau
CVE-2024-0646 An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with
CVE-2024-0565 An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Ker
CVE-2023-51781 An issue was discovered in the Linux kernel before 6.6.8. atalk_ioctl in net/appletalk/ddp.c has a use-after-free because of an atalk_recvmsg race co
CVE-2023-46862 An issue was discovered in the Linux kernel through 6.5.9. During a race with SQ thread exit, an io_uring/fdinfo.c io_uring_show_fdinfo NULL pointer
CVE-2023-51782 An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use-after-free because of a rose_accept race conditi
CVE-2023-51779 bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a bt_sock_ioctl race condition.
CVE-2023-22995 In the Linux kernel before 5.17, an error path in dwc3_qcom_acpi_register_core in drivers/usb/dwc3/dwc3-qcom.c lacks certain platform_device_put and
CVE-2023-4134 Input: cyttsp4_core - change del_timer_sync() to timer_shutdown_sync()

Version: 5.15.0-1030.35 2024-03-27 12:07:18 UTC

  linux-mtk (5.15.0-1030.35) jammy; urgency=medium

  * jammy/linux-mtk: 5.15.0-1030.35 -proposed tracker (LP: #2057877)

  * [g510] Device tree and overlay for G510 (LP: #2047792)
    - SAUCE: (no-up) arm64: dts: mediatek: genio-510-evk: enable supported dtbo
    - SAUCE: (no-up) arm64: dts: mediatek: genio-510-evk: correct inclusion of isp
      file
    - SAUCE: (no-up) arm64: dts: mediatek: genio-510-evk: disable unsupported dtbo
    - SAUCE: (no-up) arm64: dts: mediatek: genio-510-evk: disable unsupported dtbo

  * [g700] Fail to set the device to performance mode (LP: #2056524)
    - SAUCE: (no-up) apusys: Use default platform id for old device tree

  * Jammy update: v5.15.46 upstream stable release (LP: #1981864)
    - [Packaging] Move python3-dev to build-depends

  * [EBBR] Compatibility between kernel and device tree (LP: #2034657)
    - SAUCE: (no-up) arm64: dts: mediatek: mt8188/mt8195/mt8370: modify dp-intf
      compatible string
    - SAUCE: (no-up) drm/mediatek: dpi: add dpintf compatible string for backward
      compatibility

  * [g510][server] No video output through Type-C Display Port (LP: #2048706)
    - drm/mediatek: Add spinlock for setting vblank event in atomic_begin
    - drm/mediatek: dpi: Add kernel document for struct mtk_dpi_conf
    - drm/mediatek: dpi: Add config to support direct connection to dpi panels
    - drm/mediatek: dpi: Add input_2pixel config support
    - drm/mediatek: dpi: Add pixels_per_iter config support
    - drm/mediatek: dpi: Add dp_intf support
    - SAUCE: (no-up) drm/mediatek: dpi: Add dpintf support
    - clk: mediatek: clk-mux: Add .determine_rate() callback
    - clk: mediatek: clk-mux: Support custom parent indices for muxes
    - clk: mediatek: mt8195-topckgen: Refactor parents for top_dp/edp muxes
    - clk: mediatek: mt8188-topckgen: Refactor parents for top_dp/edp muxes
    - clk: clk_core_get() can also return NULL

  * [g510] rity23.2: build failure due to: GENIO: media: platform: mtk-isp:
    Properly store buffer CPU address (LP: #2047998)
    - GENIO: media: platform: mtk-isp: Remove fhaddr from camsv50

  * Miscellaneous Ubuntu changes
    - SAUCE: (no-up) fix for "dma-buf: move dma-buf symbols into the DMA_BUF
      module namespace"
    - SAUCE: (no-up) GENIO: ASoC: mediatek: mt8188: fix dmic gain enable flow
    - SAUCE: (no-up) GENIO: ASoC: mediatek: mt8195: fix dmic gain enable flow
    - SAUCE: (no-up) GENIO: media: i2c: ap1302: Fix AE not working
    - SAUCE: (no-up) GENIO: media: i2c: ap1302: Fix read console buffer failure
    - SAUCE: (no-up) GENIO: media: i2c: ap1302: Add AR0830 sensor support
    - SAUCE: (no-up) GENIO: media: platform: mtk-mdp3: Fix mdp-capture memory leak
      issue
    - SAUCE: (no-up) GENIO: drm/mediatek: plane: remove input layer addr offset
    - SAUCE: (no-up) GENIO: drm/mediatek: cmdq: change print level when gce reg
      not found
    - SAUCE: (no-up) GENIO: soc: mediatek: hdmirx: mt8195: Set default state to
      plugout
    - SAUCE: (no-up) GENIO: media: platform: mtk-mdp3: Revise m2m suspend flow
    - SAUCE: (no-up) GENIO: soc: mediatek: hdmirx: mt8195: Revise suspend notify
      flow
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: mt8365-pumpkin: Set INT to push-
      pull
    - SAUCE: (no-up) GENIO: arm64: dts: mt8365: modify thermal parameters
    - SAUCE: (no-up) GENIO: pwm: add inversed polarity support for
      mtk_disp_pwm_apply
    - SAUCE: (no-up) GENIO: drm/mediatek: ovl: disable layer when width or height
      equals zero
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: genio-510-evk: modify memory
      size
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: mt8195: fix no reg warning
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: genio-1200-evk: fix no reg
      warning
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: genio-510-evk: use dsi startek-
      kd070fhfid078
    - SAUCE: (no-up) GENIO: clk: mediatek: Fix mtk_clk_fixup_divider()
    - SAUCE: (no-up) GENIO: soc: mediatek: cmdq: Fix pointer arithmetic
    - SAUCE: (no-up) GENIO: soc: mediatek: mmsys: Drop unused variable
    - SAUCE: (no-up) GENIO: soc: mediatek: mutex: Add explicit braces to fix
      compiler warning
    - SAUCE: (no-up) GENIO: media: platform: mtk-isp: Initialize the protect_mutex
    - SAUCE: (no-up) GENIO: media: platform: mtk-isp: Don't call runtime PM with
      spinlock held
    - SAUCE: (no-up) GENIO: media: platform: mtk-isp: isp_30: Fix IRQ locking
    - SAUCE: (no-up) GENIO: ASoC: mediatek: mt8188: fix null ptr access in dmic
      gain enable
    - SAUCE: (no-up) GENIO: ASoC: mediatek: mt8195: fix null ptr access in dmic
      gain enable
    - SAUCE: (no-up) GENIO: arm64: dts: mt8370: disable idle states below
      mcusysoff
    - SAUCE: (no-up) GENIO: arm64: dts: mt8188: add uart3 apdma support
    - SAUCE: (no-up) GENIO: arm64: dts: mt8370: add apdma device node
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: mt8188: Remove DMIC codec
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: genio-700-evk: Add DMIC codec
      for delay
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: mt8195: Remove DMIC codec
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: genio-1200-evk: Add DMIC codec
      for delay
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: mt8195-demo: Add DMIC codec for
      delay
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: mt8370: Remove DMIC codec
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: genio-510-evk: Add DMIC codec
      for delay
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: genio-510-evk: Update sound card
      name
    - SAUCE: (no-up) GENIO: ASoC: mediatek: mt8188: Set I2S inputs to slave mode
    - SAUCE: (no-up) GENIO: drm/mediatek: bridge: it6122: add usage of power
      regulator
    - SAUCE: (no-up) GENIO: drm/mediatek: panel: KOE TX18D204VM0BAA: add usage of
      power regulator
    - SAUCE: (no-up) GENIO: iio: adc: mt6577_auxadc: add support for
      IIO_CHAN_INFO_RAW
    - SAUCE: (no-up) GENIO: iio: adc: mt657

Source diff to previous version
1981864 Jammy update: v5.15.46 upstream stable release
1786013 Packaging resync
2049689 partproke is broken on empty loopback device
2028158 [SRU] Duplicate Device_dax ids Created and hence Probing is Failing.
2045387 Add ODM driver f81604 usb-can
2045386 Add ODM driver gpio-m058ssan
2045385 Add ODM driver rtc-pcf85263
2045384 AppArmor patch for mq-posix interface is missing in jammy
2047382 Hotplugging SCSI disk in QEMU VM fails
2044192 Patches needed for AmpereOne (arm64)
2047630 Add quirk to disable i915 fastboot on B\u0026R PC
2035971 linux tools packages for derived kernels refuse to install simultaneously due to libcpupower name collision
2045562 [Debian] autoreconstruct - Do not generate chmod -x for deleted files
2046008 Jammy update: v5.15.136 upstream stable release
2045809 Jammy update: v5.15.135 upstream stable release
2029405 Change in trace file leads to test timeout in ftrace tests on 5.15 ARM64
2041842 Kernel doesn't compile with CONFIG_IMA
2044023 Jammy update: v5.15.134 upstream stable release
2043422 Jammy update: v5.15.133 upstream stable release
2041702 Jammy update: v5.15.132 upstream stable release
2043197 USB bus error after upgrading to proposed kernel on lunar and jammy
2039575 SMC stats: Wrong bucket calculation for payload of exactly 4096 bytes
2033406 [SRU][J/L/M] UBUNTU: [Packaging] Make WWAN driver a loadable module
2037513 HP ProBook 450 G8 Notebook fail to wifi test
2039439 usbip: error: failed to open /usr/share/hwdata//usb.ids
2035123 scripts/pahole-flags.sh change return to exit 0
2040157 Unable to use nvme drive to install Ubuntu 23.10
2039610 Jammy update: v5.15.131 upstream stable release
2039608 Jammy update: v5.15.130 upstream stable release
2039227 Jammy update: v5.15.129 upstream stable release
2038486 Jammy update: v5.15.128 upstream stable release
2038382 Jammy update: v5.15.127 upstream stable release
2037403 PCI BARs larger than 128GB are disabled
2037077 Fix unstable audio at low levels on Thinkpad P1G4
1945989 Check for changes relevant for security certifications
2037593 Jammy update: v5.15.126 upstream stable release
2036843 Jammy update: v5.15.125 upstream stable release
2035163 Avoid address overwrite in kernel_connect
2035166 NULL Pointer Dereference During KVM MMU Page Invalidation
2034479 Fix suspend hang on Lenovo workstation
2034745 [regression] Unable to initialize SGX enclaves with XFRM other than 3
2035400 Jammy update: v5.15.124 upstream stable release
2034612 Jammy update: v5.15.123 upstream stable release
2036675 5.15.0-85 live migration regression
2035181 Regression for ubuntu_bpf test build on Jammy 5.15.0-85.95
2034447 `refcount_t: underflow; use-after-free.` on hidon w/ 5.15.0-85-generic
2022361 Please enable Renesas RZ platform serial installer
2033122 Request backport of xen timekeeping performance improvements
2033007 kdump doesn't work with UEFI secure boot and kernel lockdown enabled on ARM64
2019880 ubuntu_kernel_selftests:net:vrf-xfrm-tests.sh: 8 failed test cases on jammy/fips
2019868 ubuntu_kernel_selftests:net:tls: 88 failed test cases on jammy/fips
2028122 Fix unreliable ethernet cable detection on I219 NIC
2031333 Need to get fine-grained control for FAN(TFN) Participant.
2030924 [SRU][Ubuntu 22.04.1] Unable to interpret the frequency values in cpuinfo_min_freq and cpuino_max_freq sysfs files.
2032176 Crashing with CPU soft lock on GA kernel 5.15.0.79.76 and HWE kernel 5.19.0-46.47-22.04.1
2032690 Jammy update: v5.15.122 upstream stable release
2032689 Jammy update: v5.15.121 upstream stable release
2032688 Jammy update: v5.15.120 upstream stable release
2032683 Jammy update: v5.15.119 upstream stable release
2030239 Jammy update: v5.15.118 upstream stable release
2030107 Jammy update: v5.15.117 upstream stable release
2031093 libgnutls report \
2015400 losetup with mknod fails on jammy with kernel 5.15.0-69-generic
2029401 Jammy update: v5.15.116 upstream stable release
2028550 Backport support to tolerate ZSTD compressed firmware files
2016398 stacked overlay file system mounts that have chroot() called against them appear to be getting locked (by the kernel most likely?)
2026028 usbrtl sometimes doesn't reload firmware
2029138 cifs: fix mid leak during reconnection after timeout threshold
2028799 Jammy update: v5.15.115 upstream stable release
2028701 Jammy update: v5.15.114 upstream stable release
2028408 Jammy update: v5.15.113 upstream stable release
2026607 Jammy update: v5.15.112 upstream stable release
2025095 Jammy update: v5.15.111 upstream stable release
2025090 Jammy update: v5.15.110 upstream stable release
2024265 Jammy update: v5.15.109 upstream stable release
2024900 Disable hv-kvp-daemon if /dev/vmbus/hv_kvp is not present
2008745 [SRU] Intel Sapphire Rapids HBM support needs CONFIG_NUMA_EMU
1853306 [22.04 FEAT] Enhanced Interpretation for PCI Functions on s390x - kernel part
2003374 Undefined Behavior Sanitizer (UBSAN) causes failure to match symbols
1977827 ftrace in ubuntu_kernel_selftests failed with \
2023650 Add microphone support of the front headphone port on P3 Tower
2023539 Add audio support for ThinkPad P1 Gen 6 and Z16 Gen 2
2023311 Resolve synchronous exception on arm64
2018591 Enable Tracing Configs for OSNOISE and TIMERLAT
2003053 NFS: client permission error after adding user to permissible group
2022098 Severe NFS performance degradation after LP #2003053
2020319 Encountering an issue with memcpy_fromio causing failed boot of SEV-enabled guest
2023328 Jammy update: v5.15.108 upstream stable release
2023320 Jammy update: v5.15.107 upstream stable release
2023233 Jammy update: v5.15.106 upstream stable release
2023230 Jammy update: v5.15.105 upstream stable release
2023225 Jammy update: v5.15.104 upstream stable release
2023224 Jammy update: v5.15.103 upstream stable release
2020393 Jammy update: v5.15.102 upstream stable release
2020391 Jammy update: v5.15.101 upstream stable release
2020387 Jammy update: v5.15.100 upstream stable release
2023577 cls_flower: off-by-one in fl_set_geneve_opt
2020413 fix typo in config-checks invocation
2020531 support python \u003c 3.9 with annotations
1998643 smartpqi: Update 22.04 driver to include recent bug fixes and support current generation devices
2019131 Add PPIN support for Intel EMR cpu
2016269 conntrack mark is not advertised via netlink
2008751 [SRU] Backport request for hpwdt from upstream 6.1 to Jammy
2012335 Ubuntu 22.04 raise abnormal NIC MSI-X requests with larger CPU cores (256)
2008527 [SRU]With \
2007745 [SRU][Jammy] CONFIG_PCI_MESON is not enabled
2018438 Jammy update: v5.15.99 upstream stable release
2019000 Use new annotations model
2015855 Add split lock detection for EMR
2015372 Add support for intel EMR cpu
2013603 Kernel livepatch ftrace graph fix
2015600 Jammy update: v5.15.98 upstream stable release
2015599 Jammy update: v5.15.97 upstream stable release
2015595 Jammy update: v5.15.96 upstream stable release
2015498 Debian autoreconstruct Fix restoration of execute permissions
2013088 kernel: fix __clear_user() inline assembly constraints
2015097 Kernel crash during Mellanox performance testing
2013209 expoline.o is packaged unconditionally for s390x
2004262 Intel E810 NICs driver in causing hangs when booting and bonds configured
2013118 Jammy update: v5.15.95 upstream stable release
1937133 devlink_port_split from ubuntu_kernel_selftests.net fails on hirsute (KeyError: 'flavour')
2011616 Connection timeout due to conntrack limits
2012673 Jammy update: v5.15.94 upstream stable release
2012665 Jammy update: v5.15.93 upstream stable release
2008157 [SRU][Ubuntu 22.04.1]: Observed \
2011926 Revert \
1971151 [SRU][Ubuntu 22.04.1] mpi3mr: Add management application interface(BSG) support
2008519 cpufreq: intel_pstate: Update Balance performance EPP for Sapphire Rapids
2009024 Fail to output sound to external monitor which connects via docking station
2009118 Fix mediatek wifi driver crash when loading wrong SAR table
2011472 Jammy update: v5.15.92 upstream stable release
2011467 Jammy update: v5.15.91 upstream stable release
2008971 Do not sort the task scan result from /proc when synthesizing perf events
1642368 linux: Staging modules should be unsigned
2008933 Jammy update: v5.15.90 upstream stable release
2008929 Jammy update: v5.15.89 upstream stable release
2008927 Jammy update: v5.15.88 upstream stable release
2006453 Fix selftests/ftracetests/Meta-selftests in Focal
1987430 Ubuntu 22.04 kernel 5.15.0-46-generic leaks kernel memory in kmalloc-2k slabs
2003267 [EGS] Backport intel_idle support for Eagle Stream Ubuntu 22.04 release
2003161 Fix speaker mute hotkey doesn't work on Dell G16 series
2006077 Fix the ACPI _CPC not found error from kernel dmesg on some dynamic SSDT table loaded firmwares
1814234 rtcpie in timers from ubuntu_kernel_selftests randomly failing
2007441 Jammy update: v5.15.87 upstream stable release
1951447 ubuntu_kernel_selftests: net:udpgso_bench.sh failed
2006692 net:fcnal-test.sh didn't return a non-zero value even with some sub-tests failed
1990849 LXD containers using shiftfs on ZFS or TMPFS broken on 5.15.0-48.54
2003816 Regression in ext4 during online resize
2005113 Jammy update: v5.15.86 upstream stable release
2007798 [Inspiron 7590, Realtek ALC3254, Speaker, Internal] fails after a while
2000299 Fix W6400 hang after resume of S3 stress
2003139 Jammy update: v5.15.85 upstream stable release
2003137 Jammy update: v5.15.84 upstream stable release
2003134 Jammy update: v5.15.83 upstream stable release
2002889 5.15.0-58.64 breaks xen bridge networking (pvh domU)
2003132 Jammy update: v5.15.82 upstream stable release
2003130 Jammy update: v5.15.81 upstream stable release
2003122 Jammy update: v5.15.80 upstream stable release
2001570 Jammy update: v5.15.79 upstream stable release
2002812 Revoke \u0026 rotate to new signing key
1998115 Fix iosm: WWAN cannot build the connection (DW5823e)
1993563 support for same series backports versioning numbers
1999528 [DEP-8] Run ADT regression suite for lowlatency kernels Jammy and later
1998883 Micron NVME storage failure [1344,5407]
1998843 Jammy update: v5.15.78 upstream stable release
1989944 [22.04/Jammy] Replace SAUCE AMD DP tunneling patch by upstream version
1997981 Jammy update: v5.15.77 upstream stable release
1991951 RCU stalls
1997113 Jammy update: v5.15.76 upstream stable release
1970074 UBSAN: array-index-out-of-bounds in /build/linux-9H675w/linux-5.15.0/drivers/ata/libahci.c:968:41
1996825 Jammy update: v5.15.75 upstream stable release
1989990 [SRU] Ubuntu 22.04 - NVMe TCP - Host fails to reconnect to target after link down/link up sequence
1996892 Expose built-in trusted and revoked certificates
1996121 alsa: soc: the kernel print UBSAN calltrace on the machine with cs35l41 codec
1996071 [UBUNTU 20.04] boot: Add s390x secure boot trailer
1996198 Fix rfkill causing soft blocked wifi
1991366 Fix Thunderbolt device hotplug fail when connect via thunderbolt dock
1993315 md: Replace snprintf with scnprintf
1992266 input/keyboard: the keyboard on some Asus laptops can't work
1991974 AMD Yellow Carp system hang on HDMI plug in/out over HP hook2 docking
1995638 Jammy update: v5.15.74 upstream stable release
1995637 Jammy update: v5.15.73 upstream stable release
1995517 Jammy update: v5.15.72 upstream stable release
1995420 Jammy update: v5.15.71 upstream stable release
1995415 Jammy update: v5.15.70 upstream stable release
1993010 Jammy update: v5.15.69 upstream stable release
1993003 Jammy update: v5.15.68 upstream stable release
1991841 Jammy update: v5.15.67 upstream stable release
1991840 Jammy update: v5.15.66 upstream stable release
1991831 Jammy update: v5.15.65 upstream stable release
1996740 5.15.0-53-generic no longer boots
1980621 Fix blank screen on Thinkpad ADL 4K+ panel
1992484 Kernel regresses openjdk on riscv64
1983656 iavf: SR-IOV VFs error with no traffic flow when MTU greater than 1500
1965927 [Ubuntu 22.04] mpt3sas: Request to include latest bug fix patches
1990985 ACPI: processor idle: Practically limit \
1990920 Fix resume on AMD platforms when TBT monitor is plugged
1987998 LSM: Configuring Too Many LSMs Causes Kernel Panic on Boot
1989578 Add HDMI codec ID for Intel Raptor Lake
1991717 Jammy update: v5.15.64 upstream stable release
1990564 Jammy update: v5.15.63 upstream stable release
1990554 Jammy update: v5.15.62 upstream stable release
1990162 Jammy update: v5.15.61 upstream stable release
1988809 ip/nexthop: fix default address selection for connected nexthop
1990124 icmp_redirect.sh in ubuntu_kernel_selftests failed on Jammy 5.15.0-49.55
1981883 amdgpu module crash after 5.15 kernel update
1982070 scsi: hisi_sas: Increase debugfs_dump_index after dump is \u00a0completed
1984103 [UBUNTU 22.04] s390/qeth: cache link_info for ethtool
1987232 WARN in trace_event_dyn_put_ref
1989221 Jammy update: v5.15.60 upstream stable release
1989218 Jammy update: v5.15.59 upstream stable release
1988479 Jammy update: v5.15.58 upstream stable release
1988353 Jammy update: v5.15.57 upstream stable release
1988351 Jammy update: v5.15.56 upstream stable release
1988338 Jammy update: v5.15.55 upstream stable release
1987451 Jammy update: v5.15.54 upstream stable release
1978986 [SRU][OEM-5.14/OEM-5.17][PATCH 0/1] Fix oled brightness set above frame-average luminance on AMD
1983498 Jammy: Add OVS Internal Port HW Offload to mlx5 driver
1986798 Remove unused variable from i915 psr
1983640 refactoring of overlayfs fix to properly support shiftfs
1986728 Jammy update: v5.15.53 upstream stable release
1986724 Jammy update: v5.15.52 upstream stable release
1986718 Jammy update: v5.15.51 upstream stable release
1986715 Jammy update: v5.15.50 upstream stable release
1983149 Jammy update: v5.15.49 upstream stable release
1983146 Jammy update: v5.15.48 upstream stable release
1982968 Jammy update: v5.15.47 upstream stable release
1884232 touchpad and touchscreen doesn't work at all on ACER Spin 5 (SP513-54N)
1942999 [SRU][H/OEM-5.13/OEM-5.14/U] Fix invalid MAC address after hotplug tbt dock
1981390 Mass Storage Gadget driver truncates device \u003e2TB
1973104 e1000e report hardware hang
1982930 ioam6.sh in net from ubuntu_kernel_selftests fails with 5.15 kernels in Focal
1983297 Additional fix for TGL + AUO panel flickering
1953613 GPIO character device v1 API not enabled in kernel
1980060 Fix AMDGPU blank screen when Type-C DP alt is in use
1980925 [SRU] bcache deadlock during read IO in writeback mode
1966680 Revert drm/amd/pm: enable ASPM by default
1981862 Jammy update: v5.15.45 upstream stable release
1981649 Jammy update: v5.15.44 upstream stable release
1981468 Jammy update: v5.15.43 upstream stable release
1981375 Jammy update: v5.15.42 upstream stable release
1980087 Fix PSR flickers on Intel TGL laptops + AUO panel
1966010 Fix audio on Zbook Studio G9
1969771 Fix beacon loss for rtl8821ce on certain platforms
1978915 alsa/hda: mute led can't work on the lenovo machine with cs35l41 s-codec
1980278 Jammy update: v5.15.41 upstream stable release
1980277 Jammy update: v5.15.40 upstream stable release
CVE-2023-51781 An issue was discovered in the Linux kernel before 6.6.8. atalk_ioctl in net/appletalk/ddp.c has a use-after-free because of an atalk_recvmsg race co
CVE-2023-51780 An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race conditio
CVE-2023-6915 A Null pointer dereference problem was found in ida_free in lib/idr.c in the Linux Kernel. This issue may allow an attacker using this library to cau
CVE-2024-0565 An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Ker
CVE-2024-0646 An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with
CVE-2023-6622 A null pointer dereference vulnerability was found in nft_dynset_init() in net/netfilter/nft_dynset.c in nf_tables in the Linux kernel. This issue ma
CVE-2024-0193 A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is r
CVE-2023-6040 An out-of-bounds access vulnerability involving netfilter was reported and fixed as: f1082dd31fe4 (netfilter: nf_tables: Reject tables of unsupported
CVE-2023-6931 A heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component can be exploited to achieve local privilege escala
CVE-2023-6932 A use-after-free vulnerability in the Linux kernel's ipv4: igmp component can be exploited to achieve local privilege escalation. A race condition c
CVE-2023-6606 An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allow a local attacker
CVE-2023-6817 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The func
CVE-2023-46813 An issue was discovered in the Linux kernel before 6.5.9, exploitable by local users with userspace access to MMIO registers. Incorrect access checki
CVE-2023-6111 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The func
CVE-2023-32252 A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2_LOGOFF co
CVE-2023-6176 A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occurs when a
CVE-2023-6039 A use-after-free flaw was found in lan78xx_disconnect in drivers/net/usb/lan78xx.c in the network sub-component, net/usb/lan78xx in the Linux Kernel.
CVE-2023-25775 Improper access control in the Intel(R) Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to potentia
CVE-2023-39189 A flaw was found in the Netfilter subsystem in the Linux kernel. The nfnl_osf_add_callback function did not validate the user mode controlled opt_num
CVE-2023-45871 An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c in the IGB driver in the Linux kernel before 6.5.3. A buffer size may not be ade
CVE-2023-39193 A flaw was found in the Netfilter subsystem in the Linux kernel. The sctp_mt_check did not validate the flag_count field. This flaw allows a local pr
CVE-2023-39192 A flaw was found in the Netfilter subsystem in the Linux kernel. The xt_u32 module did not validate the fields in the xt_u32 structure. This flaw all
CVE-2023-31085 An issue was discovered in drivers/mtd/ubi/cdev.c in the Linux kernel 6.2. There is a divide-by-zero error in do_div(sz,mtd->erasesize), used indirec
CVE-2023-5717 A heap out-of-bounds write vulnerability in the Linux kernel's Linux Kernel Performance Events (perf) component can be exploited to achieve local pri
CVE-2023-5178 A use-after-free vulnerability was found in drivers/nvme/target/tcp.c` ...
CVE-2023-5158 A flaw was found in vringh_kiov_advance in drivers/vhost/vringh.c in the host side of a virtio ring in the Linux Kernel. This issue may result in a d
CVE-2023-42754 A NULL pointer dereference flaw was found in the Linux kernel ipv4 stack. The socket buffer (skb) was assumed to be associated with a device before c
CVE-2023-37453 An issue was discovered in the USB subsystem in the Linux kernel through 6.4.2. There is an out-of-bounds and crash in read_descriptors in drivers/us
CVE-2023-4244 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Due to a
CVE-2023-42756 A flaw was found in the Netfilter subsystem of the Linux kernel. A race condition between IPSET_CMD_ADD and IPSET_CMD_SWAP can lead to a kernel panic
CVE-2023-4623 A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local pri
CVE-2023-42755 wild pointer access in rsvp classifer in the Linux kernel
CVE-2023-42753 An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the `h->n
CVE-2023-34319 The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would
CVE-2023-5197 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Addition
CVE-2023-4921 A use-after-free vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. When the p
CVE-2023-42752 integer overflows in kmalloc_reserve()
CVE-2023-4881 ** REJECT ** CVE-2023-4881 was wrongly assigned to a bug that was deemed to be a non-security issue by the Linux kernel security team.
CVE-2023-4622 A use-after-free vulnerability in the Linux kernel's af_unix component can be exploited to achieve local privilege escalation. The unix_stream_sendp
CVE-2023-31083 An issue was discovered in drivers/bluetooth/hci_ldisc.c in the Linux kernel 6.2. In hci_uart_tty_ioctl, there is a race condition between HCIUARTSET
CVE-2023-3772 A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADM
CVE-2023-4569 A memory leak flaw was found in nft_set_catchall_flush in net/netfilter/nf_tables_api.c in the Linux Kernel. This issue may allow a local attacker to
CVE-2023-20569 A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative
CVE-2023-40283 An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the
CVE-2023-20588 A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.
CVE-2023-4194 A flaw was found in the Linux kernel's TUN/TAP functionality. This issue could allow a local user to bypass network filters and gain unauthorized acc
CVE-2023-4155 A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in t ...
CVE-2023-1206 A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN floo
CVE-2023-4273 A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, wh
CVE-2023-4128 A use-after-free flaw was found in net/sched/cls_fw.c in classifiers (cls_fw, cls_u32, and cls_route) in the Linux Kernel. This flaw allows a local a
CVE-2023-3863 A use-after-free flaw was found in nfc_llcp_find_local in net/nfc/llcp_core.c in NFC in the Linux kernel. This flaw allows a local user with special
CVE-2022-40982 Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may al
CVE-2023-3609 A use-after-free vulnerability in the Linux kernel's net/sched: cls_u32 component can be exploited to achieve local privilege escalation. If tcf_cha
CVE-2023-21400 In multiple functions of io_uring.c, there is a possible kernel memory corruption due to improper locking. This could lead to local escalation of pr
CVE-2023-4015 netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR
CVE-2023-3995 ** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is a duplicate of CVE-2023-4147.
CVE-2023-3777 netfilter: nf_tables: skip bound chain on rule flush
CVE-2023-20593 An issue in \u201cZen 2\u201d CPUs, under specific microarchitectural ...
CVE-2023-4004 A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a
CVE-2023-3611 An out-of-bounds write vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. The
CVE-2023-3610 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Flaw in
CVE-2023-2898 There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the Linux kernel. This flaw allows a local privileged user t
CVE-2023-31084 An issue was discovered in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASK_RUNNI
CVE-2023-3776 A use-after-free vulnerability in the Linux kernel's net/sched: cls_fw component can be exploited to achieve local privilege escalation. If tcf_chan
CVE-2023-35001 Linux Kernel nftables Out-Of-Bounds Read/Write Vulnerability; nft_byteorder poorly handled vm register contents when CAP_NET_ADMIN is in any user or
CVE-2023-31248 Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain was active a
CVE-2023-3389 A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring canc
CVE-2023-3439 A flaw was found in the MCTP protocol in the Linux kernel. The function mctp_unregister() reclaims the device's relevant resource when a netcard deta
CVE-2023-3390 A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c. Mishandled error handling with
CVE-2023-3141 A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker
CVE-2023-3090 A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network driver can be exploited to achieve local privilege escalation. The out-o
CVE-2022-48502 An issue was discovered in the Linux kernel before 6.2. The ntfs3 subsystem does not properly check for correctness during disk reads, leading to an
CVE-2023-2124 An out-of-bounds memory access flaw was found in the Linux kernel’s XFS file system in how a user restores an XFS image after failure (with a dirty l
CVE-2023-0597 A flaw possibility of memory leak in the Linux kernel cpu_entry_area mapping of X86 CPU data to memory was found in the way user can guess location o
CVE-2023-32233 In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and
CVE-2023-2612 Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ub ...
CVE-2023-31436 qfq_change_class in net/sched/sch_qfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQ_MIN_LMAX.
CVE-2023-1380 A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel.
CVE-2023-30456 An issue was discovered in arch/x86/kvm/vmx/nested.c in the Linux kernel before 6.2.8. nVMX on x86_64 lacks consistency checks for CR0 and CR4.
CVE-2023-1859 A use-after-free flaw was found in xen_9pfs_front_removet in net/9p/trans_xen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow
CVE-2023-1670 A flaw use after free in the Linux kernel Xircom 16-bit PCMCIA (PC-card) Ethernet driver was found.A local user could use this flaw to crash the syst
CVE-2023-1075 A flaw was found in the Linux Kernel. The tls_is_tx_ready() incorrectly checks for list emptiness, potentially accessing a type confused entry to the
CVE-2023-1118 A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user
CVE-2023-1872 A use-after-free vulnerability in the Linux Kernel io_uring system can be exploited to achieve local privilege escalation. The io_file_get_fixed fun
CVE-2023-1829 A use-after-free vulnerability in the Linux Kernel traffic control index filter (tcindex) can be exploited to achieve local privilege escalation. The
CVE-2023-26545 In the Linux kernel before 6.1.13, there is a double free in net/mpls/af_mpls.c upon an allocation failure (for registering the sysctl table under a
CVE-2023-1281 RESERVED
CVE-2022-41218 In drivers/media/dvb-core/dmxdev.c in the Linux kernel through 5.19.10, there is a use-after-free caused by refcount races, affecting dvb_demux_open
CVE-2023-0266 A use after free vulnerability exists in the ALSA PCM package in the Linux Kernel. SNDRV_CTL_IOCTL_ELEM_{READ|WRITE}32 is missing locks that can be u
CVE-2022-4382 A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yanking out a
CVE-2022-2196 A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 du
CVE-2023-23559 In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.
CVE-2023-0045 The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ib_prctl_set  function updates the Thread
CVE-2023-0461 RESERVED
CVE-2022-20369 In v4l2_m2m_querybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation
CVE-2023-0179 netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits
CVE-2022-4139 An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially leading to random memory corruption or data leaks. T
CVE-2022-47520 An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000
CVE-2022-3545 A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function area_cache_get of the file
CVE-2022-47940 An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding
CVE-2022-3643 Guests can trigger NIC interface reset/abort/crash via netback It is possible for a guest to trigger a NIC interface reset/abort/crash in a Linux bas
CVE-2022-4378 A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem ...
CVE-2022-45934 An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_R
CVE-2022-42896 There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_connect and l2cap_le_connect_req functions which ma
CVE-2022-2663 An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be confused and incorrectly matches the message. A firewall
CVE-2022-3061 Found Linux Kernel flaw in the i740 driver. The Userspace program could pass any values to the driver through ioctl() interface. The driver doesn't c
CVE-2022-3566 A vulnerability, which was classified as problematic, was found in Linux Kernel. This affects the function tcp_getsockopt/tcp_setsockopt of the compo
CVE-2022-3567 A vulnerability has been found in Linux Kernel and classified as problematic. This vulnerability affects the function inet6_stream_ops/inet6_dgram_op
CVE-2022-3621 A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_bmap_lookup_at_level of the file fs/
CVE-2022-3564 A vulnerability classified as critical was found in Linux Kernel. Affected by this vulnerability is the function l2cap_reassemble_sdu of the file net
CVE-2022-3524 A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function ipv6_renew_options of
CVE-2022-3565 A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function del_timer of the file drive
CVE-2022-3594 A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function intr_callback of the f
CVE-2022-43945 The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by e
CVE-2022-42703 mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to leaf anon_vma double reuse.
CVE-2022-3028 A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurr
CVE-2022-2978 A flaw use after free in the Linux kernel NILFS file system was found in the way user triggers function security_inode_alloc to fail with following c
CVE-2022-40768 drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive information from kernel memory because stex_queuecomman
CVE-2022-2602 io_uring/af_unix: defer registered files gc to io_uring release
CVE-2022-41674 An issue was discovered in the Linux kernel before 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the ieee80211_bss_i
CVE-2022-42722 In the Linux kernel 5.8 through 5.19.x before 5.19.16, local attackers able to inject WLAN frames into the mac80211 stack could cause a NULL pointer
CVE-2022-42721 A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (a
CVE-2022-42720 Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local
CVE-2022-42719 A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 5.2 through 5.19.x before 5.19.16 could be used by atta
CVE-2022-3176 There exists a use-after-free in io_uring in the Linux kernel. Signalfd_poll() and binder_poll() use a waitqueue whose lifetime is the current task.
CVE-2022-36946 nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) beca
CVE-2021-33655 When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds.
CVE-2021-33061 Insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters may allow an authenticated user to potentially enable d

Version: 5.15.0-1029.33 2023-11-28 12:18:03 UTC

  linux-mtk (5.15.0-1029.33) jammy; urgency=medium

  * jammy/linux-mtk: 5.15.0-1029.33 -proposed tracker (LP: #2038291)

  * [g700] Kernel hang during boot when CONFIG_TOUCHSCREEN_GOODIX is bulit as a
    module and in initrd (LP: #2012610)
    - SAUCE: (no-up) GENIO: arm64: dts: mt8188: Remove clock assignments for mmc1
      and mmc2
    - SAUCE: (no-up) GENIO: arm64: dts: mediatek: genio-700-evk: Update clock
      frequency

 -- Jian Hui Lee <email address hidden> Tue, 03 Oct 2023 17:32:49 +0800




About   -   Send Feedback to @ubuntu_updates