From c9f3e9ff11709cc15a8f37b0d391dd29732f630b Mon Sep 17 00:00:00 2001 From: Timo Aaltonen <timo.aaltonen@canonical.com> Date: Tue, 29 Nov 2022 17:37:06 +0200 Subject: [PATCH] UBUNTU: Ubuntu-oem-5.14-5.14.0-1055.62 Signed-off-by: Timo Aaltonen <timo.aaltonen@canonical.com> --- debian.oem/changelog | 47 +++++++++++++++++++++++++++++++++++++++----- 1 file changed, 42 insertions(+), 5 deletions(-) diff --git a/debian.oem/changelog b/debian.oem/changelog index 7026b1f35c5e6..8a017954573c5 100644 --- a/debian.oem/changelog +++ b/debian.oem/changelog @@ -1,10 +1,47 @@ -linux-oem-5.14 (5.14.0-1055.62) UNRELEASED; urgency=medium +linux-oem-5.14 (5.14.0-1055.62) focal; urgency=medium - CHANGELOG: Do not edit directly. Autogenerated at release. - CHANGELOG: Use the printchanges target to see the curent changes. - CHANGELOG: Use the insertchanges target to create the final log. + * focal/linux-oem-5.14: 5.14.0-1055.62 -proposed tracker (LP: #1997413) - -- Timo Aaltonen <timo.aaltonen@canonical.com> Tue, 29 Nov 2022 17:16:15 +0200 + * CVE-2022-42703 + - mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse + + * CVE-2022-3566 + - tcp: Fix data races around icsk->icsk_af_ops. + + * CVE-2022-3567 + - ipv6: annotate some data-races around sk->sk_prot + - ipv6: Fix data races around sk->sk_prot. + + * CVE-2022-3564 + - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu + + * CVE-2022-3524 + - tcp/udp: Fix memory leak in ipv6_renew_options(). + + * CVE-2022-3621 + - nilfs2: fix NULL pointer dereference at nilfs_bmap_lookup_at_level() + + * CVE-2022-3594 + - r8152: Rate limit overflow messages + + * CVE-2022-43945 + - SUNRPC: Fix svcxdr_init_decode's end-of-buffer calculation + - SUNRPC: Fix svcxdr_init_encode's buflen calculation + - NFSD: Protect against send buffer overflow in NFSv2 READDIR + - NFSD: Protect against send buffer overflow in NFSv3 READDIR + - NFSD: Protect against send buffer overflow in NFSv2 READ + - NFSD: Protect against send buffer overflow in NFSv3 READ + - NFSD: Remove "inline" directives on op_rsize_bop helpers + - NFSD: Cap rsize_bop result based on send buffer size + + * CVE-2022-26365 + - xen/blkfront: fix leaking data in shared pages + + * CVE-2022-33743 + - xen-netfront: restore __skb_queue_tail() positioning in + xennet_get_responses() + + -- Timo Aaltonen <timo.aaltonen@canonical.com> Tue, 29 Nov 2022 17:37:05 +0200 linux-oem-5.14 (5.14.0-1054.61) focal; urgency=medium