[ubuntu/hirsute-security] linux-kvm 5.11.0-1007.7 (Accepted)

Andy Whitcroft apw at canonical.com
Tue May 11 19:53:31 UTC 2021

linux-kvm (5.11.0-1007.7) hirsute; urgency=medium

  * no memory hot-plugging in cloud-images (LP: #1925008)
    - [Config] kvm: CONFIG_ACPI_HOTPLUG_MEMORY=y

  [ Ubuntu: 5.11.0-17.18 ]

  * Race between isotp_bind and isotp_setsockopt (LP: #1927409)
    - SAUCE: Revert "can: isotp: add SF_BROADCAST support for functional
  * CVE-2021-3491
    - io_uring: fix overflows checks in provide buffers
    - SAUCE: proc: Avoid mixing integer types in mem_rw()
    - SAUCE: io_uring: truncate lengths larger than MAX_RW_COUNT on provide
  * CVE-2021-3490
    - SAUCE: bpf: verifier: fix ALU32 bounds tracking with bitwise ops
  * CVE-2021-3489
    - SAUCE: bpf: ringbuf: deny reserve of buffers larger than ringbuf
    - SAUCE: bpf: prevent writable memory-mapping of read-only ringbuf pages

Date: 2021-05-06 19:34:11.589171+00:00
Changed-By: Stefan Bader <stefan.bader at canonical.com>
Signed-By: Andy Whitcroft <apw at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Hirsute-changes mailing list