UbuntuUpdates.org

Package "linux-source-6.8.0"

Name: linux-source-6.8.0

Description:

Linux kernel source for version 6.8.0 with Ubuntu patches

Latest version: 6.8.0-134.134
Release: noble (24.04)
Level: updates
Repository: main
Head package: linux

Links


Download "linux-source-6.8.0"


Other versions of "linux-source-6.8.0" in Noble

Repository Area Version
base main 6.8.0-31.31
security main 6.8.0-124.124
proposed main 6.8.0-130.130
PPA: Canonical Kernel Team 6.8.0-135.135

Changelog

Version: 6.8.0-134.134 2026-07-01 02:08:15 UTC
No changelog available yet.
Source diff to previous version

Version: 6.8.0-124.124 2026-05-29 00:08:00 UTC

  linux (6.8.0-124.124) noble; urgency=medium

  * GRO managed-frag use-after-free leading to local privilege escalation
    (LP: #2154172)
    - net: gro: don't merge zcopy skbs

Source diff to previous version
2154172 GRO managed-frag use-after-free leading to local privilege escalation

Version: 6.8.0-117.117 2026-05-14 21:07:59 UTC

  linux (6.8.0-117.117) noble; urgency=medium

  * noble/linux: 6.8.0-117.117 -proposed tracker (LP: #2151070)

  * CVE-2026-31419
    - net: bonding: fix use-after-free in bond_xmit_broadcast()

  * CVE-2026-31431
    - crypto: scatterwalk - Backport memcpy_sglist()
    - crypto: algif_aead - use memcpy_sglist() instead of null skcipher
    - crypto: algif_aead - Revert to operating out-of-place
    - crypto: algif_aead - snapshot IV for async AEAD requests
    - crypto: authenc - use memcpy_sglist() instead of null skcipher
    - crypto: authencesn - Do not place hiseq at end of dst for out-of-place
      decryption
    - crypto: authencesn - Fix src offset when decrypting in-place
    - crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl
    - crypto: algif_aead - Fix minimum RX size check for decryption

  * CVE-2026-31533
    - net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption

  * CVE-2026-31504
    - net: fix fanout UAF in packet_release() via NETDEV_UP race

 -- Manuel Diewald <email address hidden> Tue, 05 May 2026 15:53:02 +0200

Source diff to previous version
CVE-2026-31419 In the Linux kernel, the following vulnerability has been resolved: net: bonding: fix use-after-free in bond_xmit_broadcast() bond_xmit_broadcast()
CVE-2026-31431 In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commi
CVE-2026-31533 In the Linux kernel, the following vulnerability has been resolved: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption The -EBUS
CVE-2026-31504 In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() via NETDEV_UP race `packet_release()` h

Version: 6.8.0-111.111 2026-04-30 18:09:07 UTC

  linux (6.8.0-111.111) noble; urgency=medium

  * noble/linux: 6.8.0-111.111 -proposed tracker (LP: #2147890)

  * CVE-2026-23231
    - netfilter: nf_tables: fix use-after-free in nf_tables_addchain()

  * macvlan: observe an RCU grace period in macvlan_common_newlink() error
    path (LP: #2144380) // CVE-2026-23209
    - macvlan: observe an RCU grace period in macvlan_common_newlink() error
      path

  * CVE-2026-23112
    - nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec

 -- Manuel Diewald <email address hidden> Sat, 11 Apr 2026 22:54:06 +0200

Source diff to previous version
2144380 macvlan: observe an RCU grace period in macvlan_common_newlink() error path
CVE-2026-23231 In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix use-after-free in nf_tables_addchain() nf_tables_addc
CVE-2026-23209 In the Linux kernel, the following vulnerability has been resolved: macvlan: fix error recovery in macvlan_common_newlink() valis provided a nice r
CVE-2026-23112 In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec nvmet_tcp_build_pdu_i

Version: 6.8.0-110.110 2026-04-13 15:08:16 UTC

  linux (6.8.0-110.110) noble; urgency=medium

  * noble/linux: 6.8.0-110.110 -proposed tracker (LP: #2144887)

  * ITS mitigation is not enabled on affected CPUs (LP: #2144730)
    - x86/bugs: Rename CONFIG_RETPOLINE => CONFIG_MITIGATION_RETPOLINE
    - x86/bugs: Rename CONFIG_RETHUNK => CONFIG_MITIGATION_RETHUNK
    - [Config] rename config options RETHUNK and RETPOLINE

2144730 ITS mitigation is not enabled on affected CPUs



About   -   Send Feedback to @ubuntu_updates