This bug was fixed in the package linux - 4.15.0-147.151
---------------
linux (4.15.0-147.151) bionic; urgency=medium
* CVE-2021-3444
- bpf: Fix truncation handling for mod32 dst reg wrt zero
* CVE-2021-3600
- SAUCE: bpf: Do not use ax register in interpreter on div/mod
- bpf: fix subprog verifier bypass by div/mod by 0 exception
- SAUCE: bpf: Fix 32-bit register truncation on div/mod instruction
linux (4.15.0-146.150) bionic; urgency=medium
* UAF on CAN BCM bcm_rx_handler (LP: #1931855)
- SAUCE: can: bcm: delay release of struct bcm_op after synchronize_rcu
linux (4.15.0-145.149) bionic; urgency=medium
* bionic/linux: 4.15.0-145.149 -proposed tracker (LP: #1929967)
* Packaging resync (LP: #1786013)
- update dkms package versions
* raid10: Block discard is very slow, causing severe delays for mkfs and
fstrim operations (LP: #1896578)
- md: add md_submit_discard_bio() for submitting discard bio
- md/raid10: extend r10bio devs to raid disks
- md/raid10: pull the code that wait for blocked dev into one function
- md/raid10: improve raid10 discard request
- md/raid10: improve discard request for far layout
* CVE-2021-23133
- sctp: delay auto_asconf init until binding the first addr
* Bionic update: upstream stable patchset 2021-05-25 (LP: #1929603)
- Input: nspire-keypad - enable interrupts only when opened
- dmaengine: dw: Make it dependent to HAS_IOMEM
- ARM: dts: Fix moving mmc devices with aliases for omap4 & 5
- arc: kernel: Return -EFAULT if copy_to_user() fails
- neighbour: Disregard DEAD dst in neigh_update
- ARM: keystone: fix integer overflow warning
- ASoC: fsl_esai: Fix TDM slot setup for I2S mode
- scsi: scsi_transport_srp: Don't block target in SRP_PORT_LOST state
- net: ieee802154: stop dump llsec keys for monitors
- net: ieee802154: stop dump llsec devs for monitors
- net: ieee802154: forbid monitor for add llsec dev
- net: ieee802154: stop dump llsec devkeys for monitors
- net: ieee802154: forbid monitor for add llsec devkey
- net: ieee802154: stop dump llsec seclevels for monitors
- net: ieee802154: forbid monitor for add llsec seclevel
- pcnet32: Use pci_resource_len to validate PCI resource
- mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN
- Input: i8042 - fix Pegatron C15B ID entry
- HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices
- readdir: make sure to verify directory entry for legacy interfaces too
- arm64: fix inline asm in load_unaligned_zeropad()
- arm64: alternatives: Move length validation in alternative_{insn, endif}
- scsi: libsas: Reset num_scatter if libata marks qc as NODATA
- netfilter: conntrack: do not print icmpv6 as unknown via /proc
- netfilter: nft_limit: avoid possible divide error in nft_limit_init
- net: davicom: Fix regulator not turned off on failed probe
- net: sit: Unregister catch-all devices
- i40e: fix the panic when running bpf in xdpdrv mode
- ibmvnic: avoid calling napi_disable() twice
- ibmvnic: remove duplicate napi_schedule call in do_reset function
- ibmvnic: remove duplicate napi_schedule call in open function
- ARM: footbridge: fix PCI interrupt mapping
- ARM: 9071/1: uprobes: Don't hook on thumb instructions
- pinctrl: lewisburg: Update number of pins in community
- HID: wacom: Assign boolean values to a bool variable
- ARM: dts: Fix swapped mmc order for omap3
- net: geneve: check skb is large enough for IPv4/IPv6 header
- s390/entry: save the caller of psw_idle
- xen-netback: Check for hotplug-status existence before watching
- cavium/liquidio: Fix duplicate argument
- ia64: fix discontig.c section mismatches
- ia64: tools: remove duplicate definition of ia64_mf() on ia64
- x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access
- net: hso: fix NULL-deref on disconnect regression
- USB: CDC-ACM: fix poison/unpoison imbalance
- lockdep: Add a missing initialization hint to the "INFO: Trying to
register
non-static key" message
- drm/msm: Fix a5xx/a6xx timestamps
- Input: s6sy761 - fix coordinate read bit shift
- net: ip6_tunnel: Unregister catch-all devices
- ACPI: tables: x86: Reserve memory occupied by ACPI tables
- ACPI: x86: Call acpi_boot_table_init() after acpi_table_upgrade()
- net: usb: ax88179_178a: initialize local variables before use
- iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_enqueue_hcmd()
- mips: Do not include hi and lo in clobber list for R6
- bpf: Fix masking negation logic upon negative dst register
- iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_gen2_enqueue_hcmd()
- ALSA: usb-audio: Add MIDI quirk for Vox ToneLab EX
- USB: Add reset-resume quirk for WD19's Realtek Hub
- platform/x86: thinkpad_acpi: Correct thermal sensor allocation
* r8152 tx status -71 (LP: #1922651) // Bionic update: upstream stable
patchset 2021-05-25 (LP: #1929603)
- USB: Add LPM quirk for Lenovo ThinkPad USB-C Dock Gen2 Ethernet
* seccomp_bpf:syscall_faked from kselftests fail on s390x (LP: #1928522)
- selftests/seccomp: s390 shares the syscall and return value register
* Fix kdump failures (LP: #1927518)
- video: hyperv_fb: Add ratelimit on error message
- Drivers: hv: vmbus: Increase wait time for VMbus unload
- Drivers: hv: vmbus: Initialize unload_event statically
-- Thadeu Lima de Souza Cascardo <casca...@canonical.com> Fri, 18 Jun
2021 13:49:56 -0300
** Changed in: linux (Ubuntu Bionic)
Status: Fix Committed => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-23133
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-3444
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-3600
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1929603
Title:
Bionic update: upstream stable patchset 2021-05-25
Status in linux package in Ubuntu:
Invalid
Status in linux source package in Bionic:
Fix Released
Bug description:
SRU Justification
Impact:
The upstream process for stable tree updates is quite similar
in scope to the Ubuntu SRU process, e.g., each patch has to
demonstrably fix a bug, and each patch is vetted by upstream
by originating either directly from a mainline/stable Linux tree or
a minimally backported form of that patch. The following upstream
stable patches should be included in the Ubuntu kernel:
upstream stable patchset 2021-05-25
Ported from the following upstream stable releases:
v4.14.232, v4.19.189
v4.19.190
from git://git.kernel.org/
Input: nspire-keypad - enable interrupts only when opened
dmaengine: dw: Make it dependent to HAS_IOMEM
ARM: dts: Fix moving mmc devices with aliases for omap4 & 5
arc: kernel: Return -EFAULT if copy_to_user() fails
neighbour: Disregard DEAD dst in neigh_update
ARM: keystone: fix integer overflow warning
ASoC: fsl_esai: Fix TDM slot setup for I2S mode
scsi: scsi_transport_srp: Don't block target in SRP_PORT_LOST state
net: ieee802154: stop dump llsec keys for monitors
net: ieee802154: stop dump llsec devs for monitors
net: ieee802154: forbid monitor for add llsec dev
net: ieee802154: stop dump llsec devkeys for monitors
net: ieee802154: forbid monitor for add llsec devkey
net: ieee802154: stop dump llsec seclevels for monitors
net: ieee802154: forbid monitor for add llsec seclevel
pcnet32: Use pci_resource_len to validate PCI resource
mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN
Input: i8042 - fix Pegatron C15B ID entry
HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices
readdir: make sure to verify directory entry for legacy interfaces too
arm64: fix inline asm in load_unaligned_zeropad()
arm64: alternatives: Move length validation in alternative_{insn, endif}
scsi: libsas: Reset num_scatter if libata marks qc as NODATA
netfilter: conntrack: do not print icmpv6 as unknown via /proc
netfilter: nft_limit: avoid possible divide error in nft_limit_init
net: davicom: Fix regulator not turned off on failed probe
net: sit: Unregister catch-all devices
i40e: fix the panic when running bpf in xdpdrv mode
ibmvnic: avoid calling napi_disable() twice
ibmvnic: remove duplicate napi_schedule call in do_reset function
ibmvnic: remove duplicate napi_schedule call in open function
ARM: footbridge: fix PCI interrupt mapping
ARM: 9071/1: uprobes: Don't hook on thumb instructions
pinctrl: lewisburg: Update number of pins in community
HID: wacom: Assign boolean values to a bool variable
ARM: dts: Fix swapped mmc order for omap3
net: geneve: check skb is large enough for IPv4/IPv6 header
s390/entry: save the caller of psw_idle
xen-netback: Check for hotplug-status existence before watching
cavium/liquidio: Fix duplicate argument
ia64: fix discontig.c section mismatches
ia64: tools: remove duplicate definition of ia64_mf() on ia64
x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access
net: hso: fix NULL-deref on disconnect regression
USB: CDC-ACM: fix poison/unpoison imbalance
lockdep: Add a missing initialization hint to the "INFO: Trying to register
non-static key" message
drm/msm: Fix a5xx/a6xx timestamps
Input: s6sy761 - fix coordinate read bit shift
net: ip6_tunnel: Unregister catch-all devices
UBUNTU: upstream stable to v4.14.232, v4.19.189
ACPI: tables: x86: Reserve memory occupied by ACPI tables
ACPI: x86: Call acpi_boot_table_init() after acpi_table_upgrade()
net: usb: ax88179_178a: initialize local variables before use
iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_enqueue_hcmd()
mips: Do not include hi and lo in clobber list for R6
bpf: Fix masking negation logic upon negative dst register
iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_gen2_enqueue_hcmd()
ALSA: usb-audio: Add MIDI quirk for Vox ToneLab EX
USB: Add LPM quirk for Lenovo ThinkPad USB-C Dock Gen2 Ethernet
USB: Add reset-resume quirk for WD19's Realtek Hub
platform/x86: thinkpad_acpi: Correct thermal sensor allocation
UBUNTU: upstream stable to v4.19.190
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1929603/+subscriptions
--
Mailing list: https://launchpad.net/~kernel-packages
Post to : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help : https://help.launchpad.net/ListHelp
