[ubuntu/focal-security] linux-iot 5.4.0-1024.25 (Accepted)

Andy Whitcroft apw at canonical.com
Mon Oct 30 14:47:41 UTC 2023


linux-iot (5.4.0-1024.25) focal; urgency=medium

  * focal/linux-iot: 5.4.0-1024.25 -proposed tracker (LP: #2038152)

  * CVE-2023-42755
    - [Config] iot: remove NET_CLS_RSVP and NET_CLS_RSVP6

  [ Ubuntu: 5.4.0-165.182 ]

  * focal/linux: 5.4.0-165.182 -proposed tracker (LP: #2038163)
  * CVE-2023-42756
    - netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP
  * CVE-2023-4623
    - net/sched: sch_hfsc: Ensure inner classes have fsc curve
  * CVE-2023-42755
    - net/sched: Retire rsvp classifier
    - [Config] remove NET_CLS_RSVP and NET_CLS_RSVP6
  * CVE-2023-42753
    - netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for
      ip_set_hash_netportnet.c
  * CVE-2023-34319
    - xen/netback: Fix buffer overrun triggered by unusual packet
  * CVE-2023-4921
    - net: sched: sch_qfq: Fix UAF in qfq_dequeue()
  * CVE-2023-42752
    - igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU
  * CVE-2023-4881
    - netfilter: nftables: exthdr: fix 4-byte stack OOB write
  * CVE-2023-4622
    - af_unix: Fix null-ptr-deref in unix_stream_sendpage().

Date: 2023-10-12 10:01:16.077637+00:00
Changed-By: Jesse Sung <jesse.sung at canonical.com>
Signed-By: Andy Whitcroft <apw at canonical.com>
https://launchpad.net/ubuntu/+source/linux-iot/5.4.0-1024.25
-------------- next part --------------
Sorry, changesfile not available.


More information about the Focal-changes mailing list