This bug was fixed in the package linux - 5.15.0-138.148
---------------
linux (5.15.0-138.148) jammy; urgency=medium
* jammy/linux: 5.15.0-138.148 -proposed tracker (LP: #2102587)
* ipsec_offload in rtnetlink.sh from ubunsu_kselftests_net fails on O/J
(LP: #2096976)
- SAUCE: selftest: netfilter: fix null IP field in kci_test_ipsec_offload
* CVE-2025-21756
- vsock: Keep the binding until socket destruction
- vsock: Orphan socket after transport release
* CVE-2024-50256
- netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()
* CVE-2025-21702
- pfifo_tail_enqueue: Drop new packet when sch->limit == 0
* CVE-2025-21703
- netem: Update sch->q.qlen before qdisc_tree_reduce_backlog()
* CVE-2025-21700
- net: sched: Disallow replacing of child qdisc from one parent to another
* CVE-2024-46826
- ELF: fix kernel.randomize_va_space double read
* CVE-2024-56651
- can: hi311x: hi3110_can_ist(): fix potential use-after-free
* iBFT iSCSI out-of-bounds shift UBSAN warning (LP: #2097824)
- iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic()
* CVE-2024-50248
- ntfs3: Add bounds checking to mi_enum_attr()
- fs/ntfs3: Sequential field availability check in mi_enum_attr()
* CVE-2022-0995
- watch_queue: Use the bitmap API when applicable
* CVE-2024-26837
- net: bridge: switchdev: Skip MDB replays of deferred events on offload
* CVE-2025-21701
- net: avoid race between device unregistration and ethnl ops
* CVE-2024-57798
- drm/dp_mst: Skip CSN if topology probing is not done yet
- drm/dp_mst: Ensure mst_primary pointer is valid in
drm_dp_mst_handle_up_req()
* CVE-2024-56658
- net: defer final 'struct net' free in netns dismantle
* CVE-2024-35864
- smb: client: fix potential UAF in smb2_is_valid_lease_break()
* CVE-2024-35864/CVE-2024-26928
- smb: client: fix potential UAF in cifs_debug_files_proc_show()
-- Stefan Bader <[email protected]> Fri, 14 Mar 2025 15:32:05
+0100
** Changed in: linux (Ubuntu Jammy)
Status: New => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-0995
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-26837
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-26928
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-35864
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-46826
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-50248
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-50256
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-56651
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-56658
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-57798
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2025-21700
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2025-21701
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2025-21702
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2025-21703
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2025-21756
--
You received this bug notification because you are a member of hardware-
certification-users, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/2102587
Title:
jammy/linux: 5.15.0-138.148 -proposed tracker
Status in canonical-signing-jobs task00 series:
Fix Released
Status in Kernel SRU Workflow:
In Progress
Status in Kernel SRU Workflow abi-testing series:
Fix Released
Status in Kernel SRU Workflow automated-testing series:
Fix Released
Status in Kernel SRU Workflow boot-testing series:
Fix Released
Status in Kernel SRU Workflow certification-testing series:
Fix Released
Status in Kernel SRU Workflow kernel-signoff series:
Fix Released
Status in Kernel SRU Workflow new-review series:
Fix Released
Status in Kernel SRU Workflow prepare-package series:
Fix Released
Status in Kernel SRU Workflow prepare-package-generate series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrg series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrm series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrs series:
Fix Released
Status in Kernel SRU Workflow prepare-package-meta series:
Fix Released
Status in Kernel SRU Workflow prepare-package-signed series:
Fix Released
Status in Kernel SRU Workflow promote-signing-to-proposed series:
Invalid
Status in Kernel SRU Workflow promote-to-proposed series:
Fix Released
Status in Kernel SRU Workflow promote-to-security series:
New
Status in Kernel SRU Workflow promote-to-updates series:
In Progress
Status in Kernel SRU Workflow regression-testing series:
Fix Released
Status in Kernel SRU Workflow security-signoff series:
Fix Released
Status in Kernel SRU Workflow sru-review series:
Fix Released
Status in Kernel SRU Workflow verification-testing series:
Fix Released
Status in linux source package in Jammy:
Fix Released
Bug description:
This bug will contain status and test results related to a kernel
source (or snap) as stated in the title.
For an explanation of the tasks and the associated workflow see:
https://wiki.ubuntu.com/Kernel/kernel-sru-workflow
-- swm properties --
built:
from: 31365b458d049675
route-entry: 1
comments:
abi-testing: 1
delta:
promote-to-proposed: [lrm, lrs, main, meta, signed, lrg, generate]
promote-to-updates: [lrm, lrs, main, meta, signed]
flag:
boot-testing-requested: true
bugs-spammed: true
proposed-announcement-sent: true
proposed-testing-requested: true
stream-from-cycle: true
flavours:
linux-image-extra-virtual: [amd64, arm64, ppc64el, s390x]
linux-image-extra-virtual-hwe-20.04: [amd64, arm64, ppc64el, s390x]
linux-image-extra-virtual-hwe-20.04-edge: [amd64, arm64, ppc64el,
s390x]
linux-image-generic: [amd64, arm64, armhf, ppc64el, s390x]
linux-image-generic-64k: [arm64]
linux-image-generic-64k-hwe-20.04: [arm64]
linux-image-generic-64k-hwe-20.04-edge: [arm64]
linux-image-generic-hwe-20.04: [amd64, arm64, armhf, ppc64el, s390x]
linux-image-generic-hwe-20.04-edge: [amd64, arm64, armhf, ppc64el,
s390x]
linux-image-generic-lpae: [armhf]
linux-image-generic-lpae-hwe-20.04: [armhf]
linux-image-generic-lpae-hwe-20.04-edge: [armhf]
linux-image-oem-20.04: [amd64]
linux-image-virtual: [amd64, arm64, ppc64el, s390x]
linux-image-virtual-hwe-20.04: [amd64, arm64, ppc64el, s390x]
linux-image-virtual-hwe-20.04-edge: [amd64, arm64, ppc64el, s390x]
issue: KSRU-16166
packages:
generate: linux-generate
lrg: linux-restricted-generate
lrm: linux-restricted-modules
lrs: linux-restricted-signatures
main: linux
meta: linux-meta
signed: linux-signed
phase: Promote to Updates
phase-changed: Wednesday, 16. April 2025 12:20 UTC
reason:
promote-to-updates: Ongoing -- packages not yet published
synthetic:
:promote-to-as-proposed: Fix Released
:promote-to-build-public: Fix Released
test-observer:
proposed: 124641
testing:
verification-bugs: ['2096976', '2097824', '2102587']
trackers:
focal/linux-hwe-5.15: bug 2102585
focal/linux-riscv-5.15: bug 2102586
jammy/linux-aws: bug 2102532
jammy/linux-azure: bug 2102537
jammy/linux-bluefield: bug 2102538
jammy/linux-capilano: bug 2102541
jammy/linux-fips: bug 2102543
jammy/linux-gcp: bug 2102547
jammy/linux-gke: bug 2102548
jammy/linux-gkeop: bug 2102549
jammy/linux-ibm: bug 2102551
jammy/linux-ibm-gt: bug 2102553
jammy/linux-intel-iotg: bug 2102568
jammy/linux-jollyville: bug 2102571
jammy/linux-kvm: bug 2102572
jammy/linux-lowlatency: bug 2102574
jammy/linux-nvidia: bug 2102575
jammy/linux-oracle: bug 2102577
jammy/linux-raspi: bug 2102579
jammy/linux-realtime: bug 2102561
jammy/linux-uc22: bug 2102582
jammy/linux-xilinx-zynqmp: bug 2102584
variant: debs
versions:
lrm: 5.15.0-138.148
main: 5.15.0-138.148
meta: 5.15.0.138.134
signed: 5.15.0-138.148
~~:
announce:
swm-transition-crankable: 2025-03-14 18:45:01.594102
clamps:
new-review: 31365b458d049675
promote-to-proposed: 31365b458d049675
self: 5.15.0-138.148
sru-review: 31365b458d049675
tracker:
last-message: '2025-04-11 05:50:51.196134+00:00'
To manage notifications about this bug go to:
https://bugs.launchpad.net/canonical-signing-jobs/task00/+bug/2102587/+subscriptions
--
Mailing list: https://launchpad.net/~canonical-hw-cert
Post to : [email protected]
Unsubscribe : https://launchpad.net/~canonical-hw-cert
More help : https://help.launchpad.net/ListHelp
