Ubuntu
linux-kvm package

linux-kvm 6.2.0-1009.9 source package in Ubuntu

Changelog

linux-kvm (6.2.0-1009.9) lunar; urgency=medium

  * lunar/linux-kvm: 6.2.0-1009.9 -proposed tracker (LP: #2026745)

  [ Ubuntu: 6.2.0-26.26 ]

  * lunar/linux: 6.2.0-26.26 -proposed tracker (LP: #2026753)
  * CVE-2023-2640 // CVE-2023-32629
    - Revert "UBUNTU: SAUCE: overlayfs: handle idmapped mounts in
      ovl_do_(set|remove)xattr"
    - Revert "UBUNTU: SAUCE: overlayfs: Skip permission checking for
      trusted.overlayfs.* xattrs"
    - SAUCE: overlayfs: default to userxattr when mounted from non initial user
      namespace
  * CVE-2023-35001
    - netfilter: nf_tables: prevent OOB access in nft_byteorder_eval
  * CVE-2023-31248
    - netfilter: nf_tables: do not ignore genmask when looking up chain by id
  * CVE-2023-3389
    - io_uring/poll: serialize poll linked timer start with poll removal
  * CVE-2023-3390
    - netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE
  * CVE-2023-3090
    - ipvlan:Fix out-of-bounds caused by unclear skb->cb
  * CVE-2023-3269
    - mm: introduce new 'lock_mm_and_find_vma()' page fault helper
    - mm: make the page fault mmap locking killable
    - arm64/mm: Convert to using lock_mm_and_find_vma()
    - powerpc/mm: Convert to using lock_mm_and_find_vma()
    - mips/mm: Convert to using lock_mm_and_find_vma()
    - riscv/mm: Convert to using lock_mm_and_find_vma()
    - arm/mm: Convert to using lock_mm_and_find_vma()
    - mm/fault: convert remaining simple cases to lock_mm_and_find_vma()
    - powerpc/mm: convert coprocessor fault to lock_mm_and_find_vma()
    - mm: make find_extend_vma() fail if write lock not held
    - execve: expand new process stack manually ahead of time
    - mm: always expand the stack with the mmap write lock held
    - [CONFIG]: Set CONFIG_LOCK_MM_AND_FIND_VMA

 -- Roxana Nicolescu <email address hidden>  Fri, 14 Jul 2023 10:12:24 +0200

Upload details

Uploaded by:
Roxana Nicolescu
Uploaded to:
Lunar
Original maintainer:
Ubuntu Kernel Team
Architectures:
all amd64
Section:
devel
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Lunar: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
linux-kvm_6.2.0.orig.tar.gz 208.4 MiB e25ae806476ae60671bedf91d5b120a75a27a8c9eb3355ed6c53edec6038eac3
linux-kvm_6.2.0-1009.9.diff.gz 5.7 MiB c96c4850a21332160c23cb87ecbca34e3d2b6e959618010a5b962fd0a506a2db
linux-kvm_6.2.0-1009.9.dsc 4.5 KiB 461a5a89e5024883c9b729f019435175fea97c3c49259ab0c19ace6036861f76

View changes file

Binary packages built by this source

linux-buildinfo-6.2.0-1009-kvm: Linux kernel buildinfo for version 6.2.0 on 64 bit x86 SMP

 This package contains the Linux kernel buildinfo for version 6.2.0 on
 64 bit x86 SMP.
 .
 You likely do not want to install this package.

linux-headers-6.2.0-1009-kvm: Linux kernel headers for version 6.2.0 on 64 bit x86 SMP

 This package provides kernel header files for version 6.2.0 on
 64 bit x86 SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-6.2.0-1009/debian.README.gz for details.

linux-image-unsigned-6.2.0-1009-kvm: Linux kernel image for version 6.2.0 on 64 bit x86 SMP

 This package contains the unsigned Linux kernel image for version 6.2.0 on
 64 bit x86 SMP.
 .
 Supports amd64 processors.
 .
 Geared toward virtual systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-kvm meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-unsigned-6.2.0-1009-kvm-dbgsym: Linux kernel debug image for version 6.2.0 on 64 bit x86 SMP

 This package provides the unsigned kernel debug image for version 6.2.0 on
 64 bit x86 SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-kvm-headers-6.2.0-1009: Header files related to Linux kernel version 6.2.0

 This package provides kernel header files for version 6.2.0, for sites
 that want the latest kernel headers. Please read
 /usr/share/doc/linux-kvm-headers-6.2.0-1009/debian.README.gz for details

linux-kvm-tools-6.2.0-1009: Linux kernel version specific tools for version 6.2.0-1009

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 6.2.0-1009 on
 64 bit x86.
 You probably want to install linux-tools-6.2.0-1009-<flavour>.

linux-modules-6.2.0-1009-kvm: Linux kernel extra modules for version 6.2.0 on 64 bit x86 SMP

 Contains the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports amd64 processors.
 .
 Geared toward virtual systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-kvm meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-tools-6.2.0-1009-kvm: Linux kernel version specific tools for version 6.2.0-1009

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 6.2.0-1009 on
 64 bit x86.