canonical-hw-cert team mailing list archive
-
canonical-hw-cert team
-
Mailing list archive
-
Message #137249
[Bug 2026743] Re: lunar/linux-gcp: 6.2.0-1010.10 -proposed tracker
This bug was fixed in the package linux-gcp - 6.2.0-1010.10
---------------
linux-gcp (6.2.0-1010.10) lunar; urgency=medium
* lunar/linux-gcp: 6.2.0-1010.10 -proposed tracker (LP: #2026743)
* Packaging resync (LP: #1786013)
- debian/dkms-versions -- update from kernel-versions (main/s2023.06.12)
[ Ubuntu: 6.2.0-26.26 ]
* lunar/linux: 6.2.0-26.26 -proposed tracker (LP: #2026753)
* CVE-2023-2640 // CVE-2023-32629
- Revert "UBUNTU: SAUCE: overlayfs: handle idmapped mounts in
ovl_do_(set|remove)xattr"
- Revert "UBUNTU: SAUCE: overlayfs: Skip permission checking for
trusted.overlayfs.* xattrs"
- SAUCE: overlayfs: default to userxattr when mounted from non initial user
namespace
* CVE-2023-35001
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval
* CVE-2023-31248
- netfilter: nf_tables: do not ignore genmask when looking up chain by id
* CVE-2023-3389
- io_uring/poll: serialize poll linked timer start with poll removal
* CVE-2023-3390
- netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE
* CVE-2023-3090
- ipvlan:Fix out-of-bounds caused by unclear skb->cb
* CVE-2023-3269
- mm: introduce new 'lock_mm_and_find_vma()' page fault helper
- mm: make the page fault mmap locking killable
- arm64/mm: Convert to using lock_mm_and_find_vma()
- powerpc/mm: Convert to using lock_mm_and_find_vma()
- mips/mm: Convert to using lock_mm_and_find_vma()
- riscv/mm: Convert to using lock_mm_and_find_vma()
- arm/mm: Convert to using lock_mm_and_find_vma()
- mm/fault: convert remaining simple cases to lock_mm_and_find_vma()
- powerpc/mm: convert coprocessor fault to lock_mm_and_find_vma()
- mm: make find_extend_vma() fail if write lock not held
- execve: expand new process stack manually ahead of time
- mm: always expand the stack with the mmap write lock held
- [CONFIG]: Set CONFIG_LOCK_MM_AND_FIND_VMA
-- Roxana Nicolescu <roxana.nicolescu@xxxxxxxxxxxxx> Fri, 14 Jul 2023
10:51:44 +0200
** Changed in: linux-gcp (Ubuntu Lunar)
Status: New => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-2640
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-3090
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-31248
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-32629
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-3269
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-3389
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-3390
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-35001
--
You received this bug notification because you are a member of hardware-
certification-users, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/2026743
Title:
lunar/linux-gcp: 6.2.0-1010.10 -proposed tracker
Status in canonical-signing-jobs task00 series:
Fix Released
Status in Kernel SRU Workflow:
In Progress
Status in Kernel SRU Workflow automated-testing series:
Invalid
Status in Kernel SRU Workflow boot-testing series:
Fix Released
Status in Kernel SRU Workflow certification-testing series:
Invalid
Status in Kernel SRU Workflow new-review series:
Fix Released
Status in Kernel SRU Workflow prepare-package series:
Fix Released
Status in Kernel SRU Workflow prepare-package-generate series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrg series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrm series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrs series:
Fix Released
Status in Kernel SRU Workflow prepare-package-meta series:
Fix Released
Status in Kernel SRU Workflow prepare-package-signed series:
Fix Released
Status in Kernel SRU Workflow promote-signing-to-proposed series:
Invalid
Status in Kernel SRU Workflow promote-to-proposed series:
Fix Released
Status in Kernel SRU Workflow promote-to-security series:
New
Status in Kernel SRU Workflow promote-to-updates series:
Fix Released
Status in Kernel SRU Workflow regression-testing series:
Fix Released
Status in Kernel SRU Workflow security-signoff series:
Fix Released
Status in Kernel SRU Workflow sru-review series:
Fix Released
Status in Kernel SRU Workflow verification-testing series:
Fix Released
Status in linux-gcp source package in Lunar:
Fix Released
Bug description:
This bug will contain status and test results related to a kernel
source (or snap) as stated in the title.
For an explanation of the tasks and the associated workflow see:
https://wiki.ubuntu.com/Kernel/kernel-sru-workflow
-- swm properties --
built:
from: 3e2e432be6c95d83
route-entry: 2
delta:
promote-to-proposed: [lrm, lrs, main, meta, signed, lrg, generate]
promote-to-updates: [lrm, lrs, main, meta, signed]
flag:
boot-testing-requested: true
proposed-announcement-sent: true
proposed-testing-requested: true
stream-from-cycle: true
issue: KSRU-8491
kernel-stable-master-bug: 2026753
packages:
generate: linux-generate-gcp
lrg: linux-restricted-generate-gcp
lrm: linux-restricted-modules-gcp
lrs: linux-restricted-signatures-gcp
main: linux-gcp
meta: linux-meta-gcp
signed: linux-signed-gcp
phase: Holding before Promote to Security
phase-changed: Monday, 24. July 2023 16:11 UTC
reason:
promote-to-security: Holding -- not ready for security (replication
dwell)
synthetic:
:promote-to-as-proposed: Invalid
trackers:
jammy/linux-gcp-6.2: bug 2026742
variant: debs
versions:
lrm: 6.2.0-1010.10
main: 6.2.0-1010.10
meta: 6.2.0.1010.10
signed: 6.2.0-1010.10
~~:
clamps:
new-review: 3e2e432be6c95d83
promote-to-proposed: 3e2e432be6c95d83
self: 6.2.0-1010.10
sru-review: 3e2e432be6c95d83
To manage notifications about this bug go to:
https://bugs.launchpad.net/canonical-signing-jobs/task00/+bug/2026743/+subscriptions
