canonical-hw-cert team mailing list archive

Thread
Date
[Bug 1978589] Re: focal/linux-gcp-5.15: 5.15.0-1012.17~20.04.1 -proposed tracker

To: canonical-hw-cert@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <1978589@xxxxxxxxxxxxxxxxxx>
Date: Thu, 30 Jun 2022 08:56:39 -0000
Reply-to: Bug 1978589 <1978589@xxxxxxxxxxxxxxxxxx>
Sender: noreply@xxxxxxxxxxxxx
*** This bug is a duplicate of bug 1979754 ***
    https://bugs.launchpad.net/bugs/1979754

This bug was fixed in the package linux-gcp-5.15 -
5.15.0-1012.17~20.04.1

---------------
linux-gcp-5.15 (5.15.0-1012.17~20.04.1) focal; urgency=medium

  * focal/linux-gcp-5.15: 5.15.0-1012.17~20.04.1 -proposed tracker
    (LP: #1978589)

  * re-apply missing overlayfs SAUCE patch (LP: #1967924)
    - SAUCE: overlayfs: prevent dereferencing struct file in ovl_vm_prfile_set()

  * Packaging resync (LP: #1786013)
    - [Packaging] update variants

  [ Ubuntu: 5.15.0-1010.15 ]

  * CVE-2022-21123 // CVE-2022-21125 // CVE-2022-21166
    - Documentation: Add documentation for Processor MMIO Stale Data
    - x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug
    - x86/speculation: Add a common function for MD_CLEAR mitigation update
    - x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data
    - x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations
    - x86/speculation/mmio: Enable CPU Fill buffer clearing on idle
    - x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data
    - x86/speculation/srbds: Update SRBDS mitigation selection
    - x86/speculation/mmio: Reuse SRBDS mitigation for SBDS
    - KVM: x86/speculation: Disable Fill buffer clear within guests
    - x86/speculation/mmio: Print SMT warning

  [ Ubuntu: 5.15.0-1008.12 ]

  * netfilter newset OOB write (LP: #1976363)
    - netfilter: nf_tables: sanitize nft_set_desc_concat_parse()
  * CVE-2022-1966
    - netfilter: nf_tables: disallow non-stateful expression in sets earlier

 -- Marcelo Henrique Cerri <marcelo.cerri@xxxxxxxxxxxxx>  Thu, 23 Jun
2022 12:31:49 -0300

** Changed in: linux-gcp-5.15 (Ubuntu Focal)
       Status: New => Fix Released

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-1966

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-21123

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-21125

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-21166

-- 
You received this bug notification because you are a member of Canonical
Hardware Certification, which is a bug assignee.
https://bugs.launchpad.net/bugs/1978589

Title:
  focal/linux-gcp-5.15: 5.15.0-1012.17~20.04.1 -proposed tracker

Status in Kernel SRU Workflow:
  Fix Committed
Status in Kernel SRU Workflow automated-testing series:
  Fix Released
Status in Kernel SRU Workflow boot-testing series:
  Fix Released
Status in Kernel SRU Workflow certification-testing series:
  Invalid
Status in Kernel SRU Workflow kernel-signoff series:
  Fix Released
Status in Kernel SRU Workflow new-review series:
  Fix Released
Status in Kernel SRU Workflow prepare-package series:
  Fix Released
Status in Kernel SRU Workflow prepare-package-lrg series:
  Fix Released
Status in Kernel SRU Workflow prepare-package-lrm series:
  Fix Released
Status in Kernel SRU Workflow prepare-package-lrs series:
  Fix Released
Status in Kernel SRU Workflow prepare-package-meta series:
  Fix Released
Status in Kernel SRU Workflow prepare-package-signed series:
  Fix Released
Status in Kernel SRU Workflow promote-signing-to-proposed series:
  Invalid
Status in Kernel SRU Workflow promote-to-proposed series:
  Fix Released
Status in Kernel SRU Workflow promote-to-security series:
  New
Status in Kernel SRU Workflow promote-to-updates series:
  New
Status in Kernel SRU Workflow regression-testing series:
  Fix Released
Status in Kernel SRU Workflow security-signoff series:
  In Progress
Status in Kernel SRU Workflow sru-review series:
  Fix Released
Status in Kernel SRU Workflow verification-testing series:
  Fix Released
Status in linux-gcp-5.15 source package in Focal:
  Fix Released

Bug description:
  This bug will contain status and test results related to a kernel
  source (or snap) as stated in the title.

  For an explanation of the tasks and the associated workflow see:
    https://wiki.ubuntu.com/Kernel/kernel-sru-workflow

  -- swm properties --
  boot-testing-requested: true
  bugs-spammed: true
  built:
    from: a06bbbe948bb183c
    route-entry: 1
  delta:
    promote-to-proposed:
    - meta
    - lrs
    - signed
    - main
    - lrm
    - lrg
  issue: KSRU-2593
  kernel-stable-master-bug: 1978590
  packages:
    lrg: linux-restricted-generate-gcp-5.15
    lrm: linux-restricted-modules-gcp-5.15
    lrs: linux-restricted-signatures-gcp-5.15
    main: linux-gcp-5.15
    meta: linux-meta-gcp-5.15
    signed: linux-signed-gcp-5.15
  phase: Signoff
  phase-changed: Tuesday, 28. June 2022 11:18 UTC
  proposed-announcement-sent: true
  proposed-testing-requested: true
  reason:
    promote-to-updates: 'Holding -- waiting for signoffs: security-signoff'
    security-signoff: Pending -s waiting for signoff
  synthetic:
    :promote-to-as-proposed: Fix Released
  variant: debs
  versions:
    lrm: 5.15.0-1012.17~20.04.1
    main: 5.15.0-1012.17~20.04.1
    meta: 5.15.0.1012.17~20.04.1
    signed: 5.15.0-1012.17~20.04.1
  ~~:
    clamps:
      new-review: a06bbbe948bb183c
      promote-to-proposed: a06bbbe948bb183c
      self: 5.15.0-1012.17~20.04.1
      sru-review: a06bbbe948bb183c

To manage notifications about this bug go to:
https://bugs.launchpad.net/kernel-sru-workflow/+bug/1978589/+subscriptions