This bug was fixed in the package linux - 5.15.0-128.138
---------------
linux (5.15.0-128.138) jammy; urgency=medium
* jammy/linux: 5.15.0-128.138 -proposed tracker (LP: #2090163)
* CVE-2024-50264
- vsock/virtio: Initialization of the dangling pointer occurring in
vsk->trans
* CVE-2024-53057
- net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT
* CVE-2024-43904
- drm/amd/display: Add null checks for 'stream' and 'plane' before
dereferencing
* CVE-2024-40973
- media: mtk-vcodec: potential null pointer deference in SCP
* CVE-2024-38553
- net: fec: remove .ndo_poll_controller to avoid deadlocks
* CVE-2024-26822
- smb: client: set correct id, uid and cruid for multiuser automounts
* CVE-2020-12351 // CVE-2020-12352 // CVE-2020-24490
- [Config] Disable BlueZ highspeed support
* CVE-2024-40910
- ax25: Fix refcount imbalance on inbound connections
* CVE-2024-35963
- Bluetooth: hci_sock: Fix not validating setsockopt user input
* CVE-2024-35965
- Bluetooth: L2CAP: Fix not validating setsockopt user input
* CVE-2024-35966
- Bluetooth: RFCOMM: Fix not validating setsockopt user input
* CVE-2024-35967
- Bluetooth: SCO: Fix not validating setsockopt user input
-- Manuel Diewald <[email protected]> Sat, 30 Nov 2024
19:12:45 +0100
** Changed in: linux (Ubuntu Jammy)
Status: New => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-12351
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-12352
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-24490
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-26822
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-35963
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-35965
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-35966
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-35967
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-38553
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-40910
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-40973
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-43904
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-50264
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-53057
--
You received this bug notification because you are a member of hardware-
certification-users, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/2090163
Title:
jammy/linux: 5.15.0-128.138 -proposed tracker
Status in canonical-signing-jobs task00 series:
Fix Released
Status in Kernel SRU Workflow:
In Progress
Status in Kernel SRU Workflow abi-testing series:
Fix Released
Status in Kernel SRU Workflow automated-testing series:
Invalid
Status in Kernel SRU Workflow boot-testing series:
Fix Released
Status in Kernel SRU Workflow certification-testing series:
Invalid
Status in Kernel SRU Workflow kernel-signoff series:
Fix Released
Status in Kernel SRU Workflow new-review series:
Fix Released
Status in Kernel SRU Workflow prepare-package series:
Fix Released
Status in Kernel SRU Workflow prepare-package-generate series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrg series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrm series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrs series:
Fix Released
Status in Kernel SRU Workflow prepare-package-meta series:
Fix Released
Status in Kernel SRU Workflow prepare-package-signed series:
Fix Released
Status in Kernel SRU Workflow promote-signing-to-proposed series:
Invalid
Status in Kernel SRU Workflow promote-to-proposed series:
Fix Released
Status in Kernel SRU Workflow promote-to-security series:
New
Status in Kernel SRU Workflow promote-to-updates series:
In Progress
Status in Kernel SRU Workflow regression-testing series:
Fix Released
Status in Kernel SRU Workflow security-signoff series:
Fix Released
Status in Kernel SRU Workflow sru-review series:
Fix Released
Status in Kernel SRU Workflow verification-testing series:
Fix Released
Status in linux source package in Jammy:
Fix Released
Bug description:
This bug will contain status and test results related to a kernel
source (or snap) as stated in the title.
For an explanation of the tasks and the associated workflow see:
https://wiki.ubuntu.com/Kernel/kernel-sru-workflow
-- swm properties --
built:
from: f19e260182da9ba9
route-entry: 2
comments:
abi-testing: 1
delta:
promote-to-proposed: []
promote-to-updates: [lrm, lrs, main, meta, signed]
flag:
boot-testing-requested: true
bugs-spammed: true
proposed-announcement-sent: true
proposed-testing-requested: true
stream-from-cycle: true
flavours:
linux-image-extra-virtual: [amd64, arm64, ppc64el, s390x]
linux-image-extra-virtual-hwe-20.04: [amd64, arm64, ppc64el, s390x]
linux-image-extra-virtual-hwe-20.04-edge: [amd64, arm64, ppc64el,
s390x]
linux-image-generic: [amd64, arm64, armhf, ppc64el, s390x]
linux-image-generic-64k: [arm64]
linux-image-generic-64k-hwe-20.04: [arm64]
linux-image-generic-64k-hwe-20.04-edge: [arm64]
linux-image-generic-hwe-20.04: [amd64, arm64, armhf, ppc64el, s390x]
linux-image-generic-hwe-20.04-edge: [amd64, arm64, armhf, ppc64el,
s390x]
linux-image-generic-lpae: [armhf]
linux-image-generic-lpae-hwe-20.04: [armhf]
linux-image-generic-lpae-hwe-20.04-edge: [armhf]
linux-image-oem-20.04: [amd64]
linux-image-virtual: [amd64, arm64, ppc64el, s390x]
linux-image-virtual-hwe-20.04: [amd64, arm64, ppc64el, s390x]
linux-image-virtual-hwe-20.04-edge: [amd64, arm64, ppc64el, s390x]
issue: KSRU-14844
packages:
generate: linux-generate
lrg: linux-restricted-generate
lrm: linux-restricted-modules
lrs: linux-restricted-signatures
main: linux
meta: linux-meta
signed: linux-signed
phase: Promote to Updates
phase-changed: Tuesday, 17. December 2024 21:23 UTC
reason:
promote-to-updates: Ongoing -- packages not yet published
synthetic:
:promote-to-as-proposed: Invalid
testing:
verification-bugs: ['2090163']
trackers:
focal/linux-hwe-5.15: bug 2090161
focal/linux-riscv-5.15: bug 2090162
jammy/linux-aws: bug 2090107
jammy/linux-azure: bug 2090113
jammy/linux-bluefield: bug 2090114
jammy/linux-capilano: bug 2090117
jammy/linux-fips: bug 2090120
jammy/linux-gcp: bug 2090124
jammy/linux-gke: bug 2090125
jammy/linux-gkeop: bug 2090126
jammy/linux-ibm: bug 2090128
jammy/linux-ibm-gt: bug 2090131
jammy/linux-intel-iotg: bug 2090145
jammy/linux-kvm: bug 2090146
jammy/linux-lowlatency: bug 2090148
jammy/linux-nvidia: bug 2090150
jammy/linux-oracle: bug 2090152
jammy/linux-raspi: bug 2090154
jammy/linux-realtime: bug 2090136
jammy/linux-uc22: bug 2090157
jammy/linux-xilinx-zynqmp: bug 2090159
variant: debs
versions:
lrm: 5.15.0-128.138+1
main: 5.15.0-128.138
meta: 5.15.0.128.127
signed: 5.15.0-128.138
versions-replace:
lrm: [5.15.0-128.138]
~~:
announce:
swm-transition-crankable: 2024-11-29 18:14:29.981678
clamps:
new-review: f19e260182da9ba9
promote-to-proposed: f19e260182da9ba9
self: 5.15.0-128.138
sru-review: f19e260182da9ba9
tracker:
last-message: '2024-12-17 21:24:36.050212+00:00'
To manage notifications about this bug go to:
https://bugs.launchpad.net/canonical-signing-jobs/task00/+bug/2090163/+subscriptions
--
Mailing list: https://launchpad.net/~canonical-hw-cert
Post to : [email protected]
Unsubscribe : https://launchpad.net/~canonical-hw-cert
More help : https://help.launchpad.net/ListHelp
