This bug was fixed in the package linux - 4.15.0-184.194
---------------
linux (4.15.0-184.194) bionic; urgency=medium
* CVE-2022-1966
- netfilter: nf_tables: disallow non-stateful expression in sets earlier
-- Thadeu Lima de Souza Cascardo <[email protected]> Thu, 02 Jun
2022 15:36:51 -0300
** Changed in: linux (Ubuntu Bionic)
Status: Fix Committed => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-1966
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1970479
Title:
Bionic update: upstream stable patchset 2022-04-26
Status in linux package in Ubuntu:
Invalid
Status in linux source package in Bionic:
Fix Released
Bug description:
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The following upstream
stable patches should be included in the Ubuntu kernel:
upstream stable patchset 2022-04-26
from git://git.kernel.org/
net: qlogic: check the return value of dma_alloc_coherent() in
qed_vf_hw_prepare()
qed: return status of qed_iov_get_link
ethernet: Fix error handling in xemaclite_of_probe
net: ethernet: ti: cpts: Handle error for clk_enable
net: ethernet: lpc_eth: Handle error for clk_enable
ax25: Fix NULL pointer dereference in ax25_kill_by_device
net/mlx5: Fix size field in bufferx_reg struct
NFC: port100: fix use-after-free in port100_send_complete
gpio: ts4900: Do not set DAT and OE together
sctp: fix kernel-infoleak for SCTP sockets
net-sysfs: add check for netdevice being present to speed_show
Revert "xen-netback: remove 'hotplug-status' once it has served its purpose"
Revert "xen-netback: Check for hotplug-status existence before watching"
tracing: Ensure trace buffer is at least 4096 bytes large
selftests/memfd: clean up mapping in mfd_fail_write
ARM: Spectre-BHB: provide empty stub for non-config
staging: gdm724x: fix use after free in gdm_lte_rx()
virtio: unexport virtio_finalize_features
virtio: acknowledge all features before access
ARM: fix Thumb2 regression with Spectre BHB
ext4: add check to prevent attempting to resize an fs with sparse_super2
btrfs: unlock newly allocated extent buffer after error
net: phy: DP83822: clear MISR2 register to disable interrupts
UBUNTU: upstream stable to v4.14.272, v4.19.235
sctp: fix the processing for INIT chunk
sctp: fix the processing for INIT_ACK chunk
xfrm: Fix xfrm migrate issues when address family changes
arm64: dts: rockchip: fix rk3399-puma eMMC HS400 signal integrity
ARM: dts: rockchip: fix a typo on rk3288 crypto-controller
MIPS: smp: fill in sibling and core maps earlier
ARM: 9178/1: fix unmet dependency on BITREVERSE for HAVE_ARCH_BITREVERSE
can: rcar_canfd: rcar_canfd_channel_probe(): register the CAN device when
fully ready
atm: firestream: check the return value of ioremap() in fs_init()
nl80211: Update bss channel on channel switch for P2P_CLIENT
tcp: make tcp_read_sock() more robust
sfc: extend the locking on mcdi->seqno
kselftest/vm: fix tests build with old libc
fs: sysfs_emit: Remove PAGE_SIZE alignment check
efi: fix return value of __setup handlers
net/packet: fix slab-out-of-bounds access in packet_recvmsg()
atm: eni: Add check for dma_map_single
net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit()
usb: gadget: rndis: prevent integer overflow in rndis_set_response()
usb: gadget: Fix use-after-free bug by not setting udc->dev.driver
Input: aiptek - properly check endpoint type
perf symbols: Fix symbol size calculation condition
net: dsa: Add missing of_node_put() in dsa_port_parse_of
UBUNTU: upstream stable to v4.14.273, v4.19.236
net: ipv6: fix skb_over_panic in __ip6_append_data
staging: fbtft: fb_st7789v: reset display before initialization
thermal: int340x: fix memory leak in int3400_notify()
llc: fix netdevice reference leaks in llc_ui_bind()
ALSA: pcm: Add stream lock during PCM reset ioctl operations
ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB
ALSA: cmipci: Restore aux vol on suspend/resume
ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec
drivers: net: xgene: Fix regression in CRC stripping
netfilter: nf_tables: initialize registers in nft_do_chain()
ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board
ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3
ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU
crypto: qat - disable registration of algorithms
mac80211: fix potential double free on mesh join
llc: only change llc->dev when bind() succeeds
UBUNTU: upstream stable to v4.14.274, v4.19.237
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1970479/+subscriptions
--
Mailing list: https://launchpad.net/~kernel-packages
Post to : [email protected]
Unsubscribe : https://launchpad.net/~kernel-packages
More help : https://help.launchpad.net/ListHelp
