focal/linux-azure-5.8: 5.8.0-1043.46~20.04.1 -proposed tracker
Bug Description
This bug will contain status and test results related to a kernel source (or snap) as stated in the title.
For an explanation of the tasks and the associated workflow see:
https:/
-- swm properties --
boot-testing-
bugs-spammed: true
built:
route-entry: 1
delta:
promote-
- signed
- lrs
- main
- lrm
- lrg
- meta
promote-
promote-
- lrm
- lrs
- signed
- main
- meta
sru-review:
- lrm
- lrg
- main
- meta
- signed
- lrs
kernel-
packages:
lrg: linux-restricte
lrm: linux-restricte
lrs: linux-restricte
main: linux-azure-5.8
meta: linux-meta-
signed: linux-signed-
phase: Complete
phase-changed: Tuesday, 19. October 2021 10:56 UTC
proposed-
proposed-
reason: {}
synthetic:
:promote-
variant: debs
versions:
lrm: 5.8.0-1043.
main: 5.8.0-1043.
meta: 5.8.0.1043.
signed: 5.8.0-1043.
source: 5.8.0-1043.
CVE References
| tags: | added: kernel-release-tracking-bug-live |
| description: | updated |
| tags: | added: kernel-sru-cycle-2021.09.27-1 |
| description: | updated |
| tags: | added: kernel-sru-derivative-of-1944903 |
| Changed in kernel-sru-workflow: | |
| status: | New → Confirmed |
| importance: | Undecided → Medium |
| Changed in linux-azure-5.8 (Ubuntu Focal): | |
| importance: | Undecided → Medium |
| Changed in kernel-sru-workflow: | |
| status: | Confirmed → Triaged |
| description: | updated |
| Changed in kernel-sru-workflow: | |
| status: | Triaged → In Progress |
| description: | updated |
| description: | updated |
| summary: |
- focal/linux-azure-5.8: <version to be filled> -proposed tracker + focal/linux-azure-5.8: 5.8.0-1043.46~20.04.1 -proposed tracker |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| tags: | added: kernel-signing-bot |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| Launchpad Janitor (janitor) wrote | #1 |
| Changed in linux-azure-5.8 (Ubuntu Focal): | |
| status: | New → Fix Released |
| description: | updated |
| description: | updated |
| description: | updated |
| description: | updated |
| Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote Workflow done! | #2 |
| Changed in kernel-sru-workflow: | |
| status: | In Progress → Fix Released |
| tags: | removed: kernel-release-tracking-bug-live |
This bug was fixed in the package linux-azure-5.8 - 5.8.0-1043.
---------------
linux-azure-5.8 (5.8.0-
* focal/linux-
(LP: #1944902)
* Support builtin revoked certificates (LP: #1932029)
- [Config] Configure CONFIG_
[ Ubuntu: 5.8.0-66.74 ]
* focal/linux-
* Packaging resync (LP: #1786013)
- debian/
* linux: btrfs: fix NULL pointer dereference when deleting device by invalid
id (LP: #1945987)
- btrfs: fix NULL pointer dereference when deleting device by invalid id
* CVE-2021-38199
- NFSv4: Initialise connection to the server in nfs4_alloc_client()
* BCM57800 SRIOV bug causes interfaces to disappear (LP: #1945707)
- bnx2x: Fix enabling network interfaces without VFs
* CVE-2021-3759
- memcg: enable accounting of ipc resources
* CVE-2019-19449
- f2fs: fix wrong total_sections check and fsmeta check
- f2fs: fix to do sanity check on segment/section count
* Support builtin revoked certificates (LP: #1932029)
- Revert "UBUNTU: SAUCE: Dump stack when X.509 certificates cannot be loaded"
- integrity: Move import of MokListRT certs to a separate routine
- integrity: Load certs from the EFI MOK config table
- certs: Add EFI_CERT_X509_GUID support for dbx entries
- certs: Move load_system_
- certs: Add ability to preload revocation certs
- integrity: Load mokx variables into the blacklist keyring
- certs: add 'x509_revocatio
- SAUCE: Dump stack when X.509 certificates cannot be loaded
- [Packaging] build canonical-
- [Packaging] Revoke 2012 UEFI signing certificate as built-in
- [Config] Configure CONFIG_
* Support importing mokx keys into revocation list from the mok table
(LP: #1928679)
- efi: Support for MOK variable config table
- efi: mokvar-table: fix some issues in new code
- efi: mokvar: add missing include of asm/early_ioremap.h
- efi/mokvar: Reserve the table only if it is in boot services data
- SAUCE: integrity: add informational messages when revoking certs
* Support importing mokx keys into revocation list from the mok table
(LP: #1928679) // CVE-2020-26541 when certificates are revoked via
MokListXRT.
- SAUCE: integrity: Load mokx certs from the EFI MOK config table
* CVE-2020-36311
- KVM: SVM: Periodically schedule when unregistering regions on destroy
* CVE-2021-22543
- KVM: do not allow mapping valid but non-reference-
* CVE-2021-3612
- Input: joydev - prevent use of not validated data in JSIOCSBTNMAP ioctl
* CVE-2021-38207
- net: ll_temac: Fix TX BD buffer overwrite
* CVE-2021-40490
- ext4: fix race writing to an inline_data file while its xattrs are changing
* LRMv5: switch primary version handling to kernel-versions data set
(LP: #1928921)
- [Pac...