canonical-hw-cert team mailing list archive
-
canonical-hw-cert team
-
Mailing list archive
-
Message #137254
[Bug 2026740] Re: jammy/linux-azure-6.2: 6.2.0-1008.8~22.04.1 -proposed tracker
This bug was fixed in the package linux-azure-6.2 - 6.2.0-1008.8~22.04.1
---------------
linux-azure-6.2 (6.2.0-1008.8~22.04.1) jammy; urgency=medium
* jammy/linux-azure-6.2: 6.2.0-1008.8~22.04.1 -proposed tracker (LP:
#2026740)
[ Ubuntu: 6.2.0-1008.8 ]
* lunar/linux-azure: 6.2.0-1008.8 -proposed tracker (LP: #2026741)
* Azure: MANA: Fix doorbell access for receives (LP: #2027615)
- SAUCE: net: mana: Batch ringing RX queue doorbell on receiving packets
- SAUCE: net: mana: Use the correct WQE count for ringing RQ doorbell
* lunar/linux: 6.2.0-26.26 -proposed tracker (LP: #2026753)
* CVE-2023-2640 // CVE-2023-32629
- Revert "UBUNTU: SAUCE: overlayfs: handle idmapped mounts in
ovl_do_(set|remove)xattr"
- Revert "UBUNTU: SAUCE: overlayfs: Skip permission checking for
trusted.overlayfs.* xattrs"
- SAUCE: overlayfs: default to userxattr when mounted from non initial user
namespace
* CVE-2023-35001
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval
* CVE-2023-31248
- netfilter: nf_tables: do not ignore genmask when looking up chain by id
* CVE-2023-3389
- io_uring/poll: serialize poll linked timer start with poll removal
* CVE-2023-3390
- netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE
* CVE-2023-3090
- ipvlan:Fix out-of-bounds caused by unclear skb->cb
* CVE-2023-3269
- mm: introduce new 'lock_mm_and_find_vma()' page fault helper
- mm: make the page fault mmap locking killable
- arm64/mm: Convert to using lock_mm_and_find_vma()
- powerpc/mm: Convert to using lock_mm_and_find_vma()
- mips/mm: Convert to using lock_mm_and_find_vma()
- riscv/mm: Convert to using lock_mm_and_find_vma()
- arm/mm: Convert to using lock_mm_and_find_vma()
- mm/fault: convert remaining simple cases to lock_mm_and_find_vma()
- powerpc/mm: convert coprocessor fault to lock_mm_and_find_vma()
- mm: make find_extend_vma() fail if write lock not held
- execve: expand new process stack manually ahead of time
- mm: always expand the stack with the mmap write lock held
- [CONFIG]: Set CONFIG_LOCK_MM_AND_FIND_VMA
linux-azure-6.2 (6.2.0-1007.7~22.04.1) jammy; urgency=medium
* jammy/linux-azure-6.2: 6.2.0-1007.7~22.04.1 -proposed tracker (LP:
#2026281)
* Revert variable symbol length modversion in all the jammy kernels
(LP: #2025134)
- Revert "UBUNTU: SAUCE: modpost: support arbitrary symbol length in
modversion"
[ Ubuntu: 6.2.0-1007.7 ]
* lunar/linux-azure: 6.2.0-1007.7 -proposed tracker (LP: #2024534)
* Packaging resync (LP: #1786013)
- [Packaging] resync update-dkms-versions helper
* lunar/linux: 6.2.0-25.25 -proposed tracker (LP: #2024167)
* ftrace in ubuntu_kernel_selftests failed with "check if duplicate events are
caught" on J-5.15 P9 / J-kvm / L-kvm (LP: #1977827)
- SAUCE: selftests/ftrace: Add test dependency
* Add microphone support of the front headphone port on P3 Tower
(LP: #2023650)
- ALSA: hda/realtek: Add Lenovo P3 Tower platform
* Add audio support for ThinkPad P1 Gen 6 and Z16 Gen 2 (LP: #2023539)
- ALSA: hda/realtek: Add quirk for ThinkPad P1 Gen 6
* Fix Disable thunderbolt clx make edp-monitor garbage while moving the
touchpad (LP: #2023004)
- drm/i915: Use 18 fast wake AUX sync len
* Fix Monitor lost after replug WD19TBS to SUT port with VGA/DVI to type-C
dongle (LP: #2021949)
- thunderbolt: Increase timeout of DP OUT adapter handshake
- thunderbolt: Do not touch CL state configuration during discovery
- thunderbolt: Increase DisplayPort Connection Manager handshake timeout
* Enable Tracing Configs for OSNOISE and TIMERLAT (LP: #2018591)
- [Config] Enable OSNOISE_TRACER and TIMERLAT_TRACER configs
* Fix only reach PC3 when ethernet is plugged r8169 (LP: #1946433)
- r8169: use spinlock to protect mac ocp register access
- r8169: use spinlock to protect access to registers Config2 and Config5
- r8169: enable cfg9346 config register access in atomic context
- r8169: prepare rtl_hw_aspm_clkreq_enable for usage in atomic context
- r8169: disable ASPM during NAPI poll
- r8169: remove ASPM restrictions now that ASPM is disabled during NAPI poll
* introduce do_lib_rust=true|false to enable/disable linux-lib-rust package
(LP: #2021605)
- [Packaging] introduce do_lib_rust and enable it only on generic amd64
* System either hang with black screen or rebooted on entering suspend on AMD
Ryzen 9 PRO 7940HS w/ Radeon 780M Graphics (LP: #2020685)
- drm/amdgpu: refine get gpu clock counter method
- drm/amdgpu/gfx11: update gpu_clock_counter logic
* generate linux-lib-rust only on amd64 (LP: #2020356)
- [Packaging] generate linux-lib-rust only on amd64
* No HDMI/DP audio output on dock(Nvidia GPU) (LP: #2020062)
- ALSA: hda: Add NVIDIA codec IDs a3 through a7 to patch table
* Add support for mdev_set_iommu_device() kABI in Ubuntu 22.10 kernel
(LP: #1988806)
- SAUCE: Add mdev_set_iommu_device() kABI.
* Enable audio LEDs on HP laptops (LP: #2019915)
- ALSA: hda/realtek: Fix mute and micmute LEDs for an HP laptop
- ALSA: hda/realtek: Fix mute and micmute LEDs for yet another HP laptop
* linux-*: please enable dm-verity kconfigs to allow MoK/db verified root
images (LP: #2019040)
- [Config] CONFIG_DM_VERITY_VERIFY_ROOTHASH_SIG_SECONDARY_KEYRING=y
* Lunar update: v6.2.13 upstream stable release (LP: #2023929)
- ARM: dts: rockchip: fix a typo error for rk3288 spdif node
- arm64: dts: rockchip: Lower sd speed on rk3566-soquartz
- arm64: dts: qcom: ipq8074-hk01: enable QMP device, not the PHY node
- arm64: dts: qcom: ipq8074-hk10: enable QMP device, not the PHY node
- arm64: dts: meson-g12-common: specify full DMC range
- arm64: dts: meson-g12-common: resolve conflict between canvas & pmu
- perf/amlogic: adjust register offsets
- arm64: dts: qcom: sc8280xp-pmics: fix pon compatible and registers
- arm64: dts: imx8mm-evk: correct pmic clock source
- arm64: dts: imx8mm-verdin: correct off-on-delay
- arm64: dts: imx8mp-verdin: correct off-on-delay
- netfilter: br_netfilter: fix recent physdev match breakage
- netfilter: nf_tables: Modify nla_memdup's flag to GFP_KERNEL_ACCOUNT
- rust: str: fix requierments->requirements typo
- regulator: fan53555: Explicitly include bits header
- regulator: fan53555: Fix wrong TCS_SLEW_MASK
- virtio_net: bugfix overflow inside xdp_linearize_page()
- sfc: Fix use-after-free due to selftest_work
- netfilter: nf_tables: fix ifdef to also consider nf_tables=m
- i40e: fix accessing vsi->active_filters without holding lock
- i40e: fix i40e_setup_misc_vector() error handling
- netfilter: nf_tables: validate catch-all set elements
- cxgb4: fix use after free bugs caused by circular dependency problem
- netfilter: nf_tables: tighten netlink attribute requirements for catch-all
elements
- bnxt_en: Do not initialize PTP on older P3/P4 chips
- mlxfw: fix null-ptr-deref in mlxfw_mfa2_tlv_next()
- LoongArch: Fix build error if CONFIG_SUSPEND is not set
- bonding: Fix memory leak when changing bond type to Ethernet
- net: rpl: fix rpl header size calculation
- mlxsw: pci: Fix possible crash during initialization
- spi: spi-rockchip: Fix missing unwind goto in rockchip_sfc_probe()
- bpf: Fix incorrect verifier pruning due to missing register precision taints
- net: dsa: microchip: ksz8795: Correctly handle huge frame configuration
- bnxt_en: fix free-runnig PHC mode
- e1000e: Disable TSO on i219-LM card to increase speed
- net: bridge: switchdev: don't notify FDB entries with "master dynamic"
- f2fs: Fix f2fs_truncate_partial_nodes ftrace event
- platform/x86/intel: vsec: Fix a memory leak in intel_vsec_add_aux
- platform/x86 (gigabyte-wmi): Add support for A320M-S2H V2
- selftests: sigaltstack: fix -Wuninitialized
- scsi: megaraid_sas: Fix fw_crash_buffer_show()
- scsi: core: Improve scsi_vpd_inquiry() checks
- net: dsa: b53: mmap: add phy ops
- platform/x86: gigabyte-wmi: add support for B650 AORUS ELITE AX
- s390/ptrace: fix PTRACE_GET_LAST_BREAK error handling
- drm: buddy_allocator: Fix buddy allocator init on 32-bit systems
- drm: test: Fix 32-bit issue in drm_buddy_test
- nvme-tcp: fix a possible UAF when failing to allocate an io queue
- xen/netback: use same error messages for same errors
- platform/x86: gigabyte-wmi: add support for X570S AORUS ELITE
- platform/x86: asus-nb-wmi: Add quirk_asus_tablet_mode to other ROG Flow X13
models
- mtd: spi-nor: fix memory leak when using debugfs_lookup()
- pwm: Zero-initialize the pwm_state passed to driver's .get_state()
- Revert "userfaultfd: don't fail on unrecognized features"
- Revert "ACPICA: Events: Support fixed PCIe wake event"
- iio: dac: ad5755: Add missing fwnode_handle_put()
- iio: light: tsl2772: fix reading proximity-diodes from device tree
- ALSA: hda/realtek: fix mute/micmute LEDs for a HP ProBook
- btrfs: set default discard iops_limit to 1000
- btrfs: reinterpret async discard iops_limit=0 as no delay
- rust: kernel: Mark rust_fmt_argument as extern "C"
- LoongArch: module: set section addresses to 0x0
- LoongArch: Check unwind_error() in arch_stack_walk()
- LoongArch: Fix probing of the CRC32 feature
- LoongArch: Mark 3 symbol exports as non-GPL
- wifi: ath9k: Don't mark channelmap stack variable read-only in
ath9k_mci_update_wlan_channels()
- maple_tree: make maple state reusable after mas_empty_area_rev()
- maple_tree: fix mas_empty_area() search
- maple_tree: fix a potential memory leak, OOB access, or other unpredictable
bug
- ASoC: SOF: ipc4-topology: Clarify bind failure caused by missing fw_module
- nilfs2: initialize unused bytes in segment summary blocks
- mptcp: stops worker on unaccepted sockets at listener close
- mptcp: fix accept vs worker race
- tools/mm/page_owner_sort.c: fix TGID output when cull=tg is used
- memstick: fix memory leak if card device is never registered
- kernel/sys.c: fix and improve control flow in __sys_setres[ug]id()
- writeback, cgroup: fix null-ptr-deref write in bdi_split_work_to_wbs
- mmc: sdhci_am654: Set HIGH_SPEED_ENA for SDR12 and SDR25
- drm/amdgpu: Fix desktop freezed after gpu-reset
- drm/amd/display: set dcn315 lb bpp to 48
- drm/rockchip: vop2: fix suspend/resume
- drm/rockchip: vop2: Use regcache_sync() to fix suspend/resume
- mm: fix memory leak on mm_init error handling
- mm/userfaultfd: fix uffd-wp handling for THP migration entries
- mm/khugepaged: check again on anon uffd-wp during isolation
- mm/huge_memory.c: warn with pr_warn_ratelimited instead of
VM_WARN_ON_ONCE_FOLIO
- mm: kmsan: handle alloc failures in kmsan_ioremap_page_range()
- mm: kmsan: handle alloc failures in kmsan_vmap_pages_range_noflush()
- mm: page_alloc: skip regions with hugetlbfs pages when allocating 1G pages
- mm/mmap: regression fix for unmapped_area{_topdown}
- cifs: avoid dup prefix path in dfs_get_automount_devname()
- KVM: arm64: Make vcpu flag updates non-preemptible
- KVM: arm64: Fix buffer overflow in kvm_arm_set_fw_reg()
- MIPS: Define RUNTIME_DISCARD_EXIT in LD script
- LoongArch: Make -mstrict-align configurable
- LoongArch: Make WriteCombine configurable for ioremap()
- purgatory: fix disabling debug info
- PCI/MSI: Remove over-zealous hardware size check in
pci_msix_validate_entries()
- [Config] updateconfigs for GCC12_NO_ARRAY_BOUNDS
- gcc: disable '-Warray-bounds' for gcc-13 too
- Input: cyttsp5 - fix sensing configuration data structure
- Input: pegasus-notetaker - check pipe type when probing
- iio: adc: at91-sama5d2_adc: fix an error code in at91_adc_allocate_trigger()
- fpga: bridge: properly initialize bridge device before populating children
- mm/page_alloc: fix potential deadlock on zonelist_update_seq seqlock
- ASoC: SOF: pm: Tear down pipelines only if DSP was active
- ASoC: fsl_asrc_dma: fix potential null-ptr-deref
- ASoC: fsl_sai: Fix pins setting for i.MX8QM platform
- ASN.1: Fix check for strdup() success
- Linux 6.2.13
* CVE-2023-2124
- xfs: verify buffer contents when we skip log replay
* cls_flower: off-by-one in fl_set_geneve_opt (LP: #2023577)
- net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
* Some INVLPG implementations can leave Global translations unflushed when
PCIDs are enabled (LP: #2023220)
- x86/mm: Avoid incomplete Global INVLPG flushes
* CVE-2023-2176
- RDMA/core: Refactor rdma_bind_addr
* support python < 3.9 with annotations (LP: #2020531)
- [Packaging] kconfig/annotations.py: support older way of merging dicts
* Packaging resync (LP: #1786013)
- [Packaging] resync git-ubuntu-log
- [Packaging] resync getabis
linux-azure-6.2 (6.2.0-1006.6~22.04.1) jammy; urgency=medium
* jammy/linux-azure-6.2: 6.2.0-1006.6~22.04.1 -proposed tracker (LP:
#2024049)
[ Ubuntu: 6.2.0-1006.6 ]
* lunar/linux-azure: 6.2.0-1006.6 -proposed tracker (LP: #2024050)
* lunar/linux: 6.2.0-24.24 -proposed tracker (LP: #2024058)
* Packaging resync (LP: #1786013)
- [Packaging] resync git-ubuntu-log
- [Packaging] resync getabis
* cls_flower: off-by-one in fl_set_geneve_opt (LP: #2023577)
- net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
* Some INVLPG implementations can leave Global translations unflushed when
PCIDs are enabled (LP: #2023220)
- x86/mm: Avoid incomplete Global INVLPG flushes
-- Tim Gardner <tim.gardner@xxxxxxxxxxxxx> Mon, 17 Jul 2023 07:42:16
-0600
** Changed in: linux-azure-6.2 (Ubuntu Jammy)
Status: New => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-2124
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-2176
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-2640
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-3090
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-31248
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-32629
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-3269
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-3389
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-3390
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-35001
--
You received this bug notification because you are a member of hardware-
certification-users, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/2026740
Title:
jammy/linux-azure-6.2: 6.2.0-1008.8~22.04.1 -proposed tracker
Status in canonical-signing-jobs task00 series:
Fix Released
Status in Kernel SRU Workflow:
In Progress
Status in Kernel SRU Workflow automated-testing series:
Invalid
Status in Kernel SRU Workflow boot-testing series:
Fix Released
Status in Kernel SRU Workflow certification-testing series:
Invalid
Status in Kernel SRU Workflow new-review series:
Fix Released
Status in Kernel SRU Workflow prepare-package series:
Fix Released
Status in Kernel SRU Workflow prepare-package-generate series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrg series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrm series:
Fix Released
Status in Kernel SRU Workflow prepare-package-lrs series:
Fix Released
Status in Kernel SRU Workflow prepare-package-meta series:
Fix Released
Status in Kernel SRU Workflow prepare-package-signed series:
Fix Released
Status in Kernel SRU Workflow promote-signing-to-proposed series:
Invalid
Status in Kernel SRU Workflow promote-to-proposed series:
Fix Released
Status in Kernel SRU Workflow promote-to-security series:
New
Status in Kernel SRU Workflow promote-to-updates series:
Fix Released
Status in Kernel SRU Workflow regression-testing series:
Fix Released
Status in Kernel SRU Workflow security-signoff series:
Fix Released
Status in Kernel SRU Workflow sru-review series:
Fix Released
Status in Kernel SRU Workflow stakeholder-signoff series:
Fix Released
Status in Kernel SRU Workflow verification-testing series:
Fix Released
Status in linux-azure-6.2 source package in Jammy:
Fix Released
Bug description:
This bug will contain status and test results related to a kernel
source (or snap) as stated in the title.
For an explanation of the tasks and the associated workflow see:
https://wiki.ubuntu.com/Kernel/kernel-sru-workflow
-- swm properties --
built:
from: b3eb2292a7e85b37
route-entry: 2
delta:
promote-to-proposed: [lrm, lrs, main, meta, signed, lrg, generate]
promote-to-updates: [lrm, lrs, main, meta, signed]
flag:
boot-testing-requested: true
proposed-announcement-sent: true
proposed-testing-requested: true
stream-from-cycle: true
issue: KSRU-8375
kernel-stable-master-bug: 2026741
packages:
generate: linux-generate-azure-6.2
lrg: linux-restricted-generate-azure-6.2
lrm: linux-restricted-modules-azure-6.2
lrs: linux-restricted-signatures-azure-6.2
main: linux-azure-6.2
meta: linux-meta-azure-6.2
signed: linux-signed-azure-6.2
phase: Holding before Promote to Security
phase-changed: Monday, 24. July 2023 16:12 UTC
reason:
promote-to-security: Holding -- not ready for security (replication
dwell)
synthetic:
:promote-to-as-proposed: Invalid
trackers:
jammy/linux-azure-fde-6.2: bug 2026739
variant: debs
versions:
lrm: 6.2.0-1008.8~22.04.1
main: 6.2.0-1008.8~22.04.1
meta: 6.2.0.1008.8~22.04.1
signed: 6.2.0-1008.8~22.04.1
~~:
clamps:
new-review: b3eb2292a7e85b37
promote-to-proposed: b3eb2292a7e85b37
self: 6.2.0-1008.8~22.04.1
sru-review: b3eb2292a7e85b37
To manage notifications about this bug go to:
https://bugs.launchpad.net/canonical-signing-jobs/task00/+bug/2026740/+subscriptions
