[ubuntu/jammy-proposed] linux-azure 5.15.0-1087.96 (Accepted)

Andy Whitcroft apw at canonical.com
Mon Mar 31 16:01:33 UTC 2025 

linux-azure (5.15.0-1087.96) jammy; urgency=medium

  * jammy/linux-azure: 5.15.0-1087.96 -proposed tracker (LP: #2102537)

  [ Ubuntu: 5.15.0-138.148 ]

  * jammy/linux: 5.15.0-138.148 -proposed tracker (LP: #2102587)
  * ipsec_offload in rtnetlink.sh from ubunsu_kselftests_net fails on O/J
    (LP: #2096976)
    - SAUCE: selftest: netfilter: fix null IP field in kci_test_ipsec_offload
  * CVE-2025-21756
    - vsock: Keep the binding until socket destruction
    - vsock: Orphan socket after transport release
  * CVE-2024-50256
    - netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()
  * CVE-2025-21702
    - pfifo_tail_enqueue: Drop new packet when sch->limit == 0
  * CVE-2025-21703
    - netem: Update sch->q.qlen before qdisc_tree_reduce_backlog()
  * CVE-2025-21700
    - net: sched: Disallow replacing of child qdisc from one parent to another
  * CVE-2024-46826
    - ELF: fix kernel.randomize_va_space double read
  * CVE-2024-56651
    - can: hi311x: hi3110_can_ist(): fix potential use-after-free
  * iBFT iSCSI out-of-bounds shift UBSAN warning (LP: #2097824)
    - iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic()
  * CVE-2024-50248
    - ntfs3: Add bounds checking to mi_enum_attr()
    - fs/ntfs3: Sequential field availability check in mi_enum_attr()
  * CVE-2022-0995
    - watch_queue: Use the bitmap API when applicable
  * CVE-2024-26837
    - net: bridge: switchdev: Skip MDB replays of deferred events on offload
  * CVE-2025-21701
    - net: avoid race between device unregistration and ethnl ops
  * CVE-2024-57798
    - drm/dp_mst: Skip CSN if topology probing is not done yet
    - drm/dp_mst: Ensure mst_primary pointer is valid in
      drm_dp_mst_handle_up_req()
  * CVE-2024-56658
    - net: defer final 'struct net' free in netns dismantle
  * CVE-2024-35864
    - smb: client: fix potential UAF in smb2_is_valid_lease_break()
  * CVE-2024-35864/CVE-2024-26928
    - smb: client: fix potential UAF in cifs_debug_files_proc_show()

linux-azure (5.15.0-1086.95) jammy; urgency=medium

  * jammy/linux-azure: 5.15.0-1086.95 -proposed tracker (LP: #2104384)

  * Additional Mana Patch Requests for 5.15 Kernel (LP: #2103651)
    - Revert "net: mana: Fix oversized sge0 for GSO packets"
    - RDMA/mana_ib: register RDMA device with GDMA
    - RDMA/mana_ib: query device capabilities
    - net: mana: Implement get_ringparam/set_ringparam for mana
    - net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024
    - net: mana: Fix possible double free in error handling path
    - net: mana: Add new MANA VF performance counters for easier troubleshooting
    - net: mana: Fix perf regression: remove rx_cqes, tx_cqes counters
    - net: mana: Add gdma stats to ethtool output for mana
    - net: mana: Configure hwc timeout from hardware
    - net: mana: Fix the extra HZ in mana_hwc_send_request
    - net: netvsc: Update default VMBus channels
    - net: mana: Enable debugfs files for MANA device
    - net: mana: Cleanup "mana" debugfs dir after cleanup of all children
    - net: mana: Add get_link and get_link_ksettings in ethtool
    - scsi: storvsc: Set correct data length for sending SCSI command without
      payload
    - net: mana: Fix oversized sge0 for GSO packets
    - net: mana: cleanup mana struct after debugfs_remove()

linux-azure (5.15.0-1085.94) jammy; urgency=medium

  * jammy/linux-azure: 5.15.0-1085.94 -proposed tracker (LP: #2102380)

  * CVE-2024-35864
    - smb: client: fix potential UAF in smb2_is_valid_lease_break()

  * CVE-2024-35864/CVE-2024-26928
    - smb: client: fix potential UAF in cifs_debug_files_proc_show()

  * azure: Enable erofs compression configs (LP: #2098178)
    - [Config] azure: Enable erofs compression configs

  [ Ubuntu: 5.15.0-136.147 ]

  * jammy/linux: 5.15.0-136.147 -proposed tracker (LP: #2102429)
  * CVE-2024-57798
    - drm/dp_mst: Skip CSN if topology probing is not done yet
    - drm/dp_mst: Ensure mst_primary pointer is valid in
      drm_dp_mst_handle_up_req()
  * CVE-2024-56658
    - net: defer final 'struct net' free in netns dismantle

linux-azure (5.15.0-1084.93) jammy; urgency=medium

  * jammy/linux-azure: 5.15.0-1084.93 -proposed tracker (LP: #2102682)

  * azure: backport "net: mana: Fix oversized sge0 for GSO packets"
    (LP: #2102678)
    - net: mana: Fix oversized sge0 for GSO packets

Date: 2025-03-28 20:27:14.353083+00:00
Changed-By: John Cabaj <john-cabaj at ubuntu.com>
Signed-By: Andy Whitcroft <apw at canonical.com>
https://launchpad.net/ubuntu/+source/linux-azure/5.15.0-1087.96
-------------- next part --------------
Sorry, changesfile not available.

More information about the jammy-changes mailing list