Ubuntu
linux package

linux 6.2.0-35.35 source package in Ubuntu

Changelog

linux (6.2.0-35.35) lunar; urgency=medium

  * lunar/linux: 6.2.0-35.35 -proposed tracker (LP: #2038229)

  * Packaging resync (LP: #1786013)
    - [Packaging] update helper scripts

  * CVE-2023-4244
    - netfilter: nf_tables: don't skip expired elements during walk
    - netfilter: nf_tables: integrate pipapo into commit protocol
    - netfilter: nft_set_rbtree: fix overlap expiration walk
    - netfilter: nf_tables: adapt set backend to use GC transaction API
    - netfilter: nft_set_hash: mark set element as dead when deleting from packet
      path
    - netfilter: nf_tables: drop map element references from preparation phase
    - netfilter: nf_tables: GC transaction API to avoid race with control plane
    - netfilter: nf_tables: remove busy mark and gc batch API
    - netfilter: nf_tables: don't fail inserts if duplicate has expired
    - netfilter: nf_tables: fix kdoc warnings after gc rework
    - netfilter: nf_tables: fix GC transaction races with netns and netlink event
      exit path
    - netfilter: nf_tables: GC transaction race with netns dismantle
    - netfilter: nf_tables: GC transaction race with abort path
    - netfilter: nf_tables: use correct lock to protect gc_list
    - netfilter: nf_tables: defer gc run if previous batch is still pending
    - netfilter: nft_dynset: disallow object maps
    - netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction

  * CVE-2023-5197
    - netfilter: nf_tables: skip bound chain in netns release path
    - netfilter: nf_tables: disallow rule removal from chain binding

  * CVE-2023-4921
    - net: sched: sch_qfq: Fix UAF in qfq_dequeue()

  * CVE-2023-4881
    - netfilter: nftables: exthdr: fix 4-byte stack OOB write

  * CVE-2023-4623
    - net/sched: sch_hfsc: Ensure inner classes have fsc curve

  * CVE-2023-4622
    - af_unix: Fix null-ptr-deref in unix_stream_sendpage().

  * CVE-2023-42756
    - netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP

  * CVE-2023-42755
    - net/sched: Retire rsvp classifier
    - [Config] remove NET_CLS_RSVP and NET_CLS_RSVP6

  * CVE-2023-42753
    - netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for
      ip_set_hash_netportnet.c

  * CVE-2023-42752
    - igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU
    - net: add SKB_HEAD_ALIGN() helper
    - net: remove osize variable in __alloc_skb()
    - net: factorize code in kmalloc_reserve()
    - net: deal with integer overflows in kmalloc_reserve()

  * CVE-2023-34319
    - xen/netback: Fix buffer overrun triggered by unusual packet

 -- Thadeu Lima de Souza Cascardo <email address hidden>  Tue, 03 Oct 2023 08:50:55 -0300

Upload details

Uploaded by:
Thadeu Lima de Souza Cascardo
Uploaded to:
Lunar
Original maintainer:
Ubuntu Kernel Team
Architectures:
all amd64 armhf arm64 ppc64el s390x i386 riscv64
Section:
devel
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Lunar security main devel
Lunar updates main devel

Downloads

File Size SHA-256 Checksum
linux_6.2.0.orig.tar.gz 208.4 MiB e25ae806476ae60671bedf91d5b120a75a27a8c9eb3355ed6c53edec6038eac3
linux_6.2.0-35.35.diff.gz 5.4 MiB 781ba3f75c5c0d71cc93f40dd6a8bb05dc54b3ad54d6b0e17b0dd77778081672
linux_6.2.0-35.35.dsc 8.7 KiB 18d18d14590f7764106a7ed6adb44a8b80f2a1d4066578b1e3edab10246f99de

View changes file

Binary packages built by this source

linux-buildinfo-6.2.0-35-generic: Linux kernel buildinfo for version 6.2.0 on RISC-V SMP

 This package contains the Linux kernel buildinfo for version 6.2.0 on
 RISC-V SMP.
 .
 You likely do not want to install this package.

linux-buildinfo-6.2.0-35-generic-64k: Linux kernel buildinfo for version 6.2.0 on ARMv8 SMP

 This package contains the Linux kernel buildinfo for version 6.2.0 on
 ARMv8 SMP.
 .
 You likely do not want to install this package.

linux-buildinfo-6.2.0-35-generic-lpae: Linux kernel buildinfo for version 6.2.0 on ARM (hard float) SMP

 This package contains the Linux kernel buildinfo for version 6.2.0 on
 ARM (hard float) SMP.
 .
 You likely do not want to install this package.

linux-cloud-tools-6.2.0-35: Linux kernel version specific cloud tools for version 6.2.0-35

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud tools for version 6.2.0-35 on
 64 bit x86.
 You probably want to install linux-cloud-tools-6.2.0-35-<flavour>.

linux-cloud-tools-6.2.0-35-generic: Linux kernel version specific cloud tools for version 6.2.0-35

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud for version 6.2.0-35 on
 64 bit x86.

linux-cloud-tools-common: Linux kernel version specific cloud tools for version 6.2.0

 This package provides the architecture independent parts for kernel
 version locked tools for cloud tools for version 6.2.0.

linux-doc: Linux kernel specific documentation for version 6.2.0

 This package provides the various documents in the 6.2.0 kernel
 Documentation/ subdirectory. These document kernel subsystems, APIs, device
 drivers, and so on. See
 /usr/share/doc/linux-doc/00-INDEX for a list of what is
 contained in each file.

linux-headers-6.2.0-35: Header files related to Linux kernel version 6.2.0

 This package provides kernel header files for version 6.2.0, for sites
 that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-6.2.0-35/debian.README.gz for details

linux-headers-6.2.0-35-generic: Linux kernel headers for version 6.2.0 on RISC-V SMP

 This package provides kernel header files for version 6.2.0 on
 RISC-V SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-6.2.0-35/debian.README.gz for details.

linux-headers-6.2.0-35-generic-64k: Linux kernel headers for version 6.2.0 on ARMv8 SMP

 This package provides kernel header files for version 6.2.0 on
 ARMv8 SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-6.2.0-35/debian.README.gz for details.

linux-headers-6.2.0-35-generic-lpae: Linux kernel headers for version 6.2.0 on ARM (hard float) SMP

 This package provides kernel header files for version 6.2.0 on
 ARM (hard float) SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-6.2.0-35/debian.README.gz for details.

linux-image-6.2.0-35-generic: Linux kernel image for version 6.2.0 on RISC-V SMP

 This package contains the Linux kernel image for version 6.2.0 on
 RISC-V SMP.
 .
 Supports Generic processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-6.2.0-35-generic-dbgsym: Linux kernel debug image for version 6.2.0 on RISC-V SMP

 This package provides the kernel debug image for version 6.2.0 on
 RISC-V SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-image-6.2.0-35-generic-lpae: Linux kernel image for version 6.2.0 on ARM (hard float) SMP

 This package contains the Linux kernel image for version 6.2.0 on
 ARM (hard float) SMP.
 .
 Supports Generic LPAE processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic-lpae meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-6.2.0-35-generic-lpae-dbgsym: Linux kernel debug image for version 6.2.0 on ARM (hard float) SMP

 This package provides the kernel debug image for version 6.2.0 on
 ARM (hard float) SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-image-unsigned-6.2.0-35-generic: Linux kernel image for version 6.2.0 on ARMv8 SMP

 This package contains the unsigned Linux kernel image for version 6.2.0 on
 ARMv8 SMP.
 .
 Supports Generic processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-unsigned-6.2.0-35-generic-64k: Linux kernel image for version 6.2.0 on ARMv8 SMP

 This package contains the unsigned Linux kernel image for version 6.2.0 on
 ARMv8 SMP.
 .
 Supports Generic 64K pages processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic-64k meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-unsigned-6.2.0-35-generic-64k-dbgsym: Linux kernel debug image for version 6.2.0 on ARMv8 SMP

 This package provides the unsigned kernel debug image for version 6.2.0 on
 ARMv8 SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-image-unsigned-6.2.0-35-generic-dbgsym: Linux kernel debug image for version 6.2.0 on ARMv8 SMP

 This package provides the unsigned kernel debug image for version 6.2.0 on
 ARMv8 SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-lib-rust-6.2.0-35-generic: Rust library files related to Linux kernel version 6.2.0

 This package provides kernel library files for version 6.2.0, that allow to
 compile out-of-tree kernel modules written in Rust.

linux-libc-dev: Linux Kernel Headers for development

 This package provides headers from the Linux kernel. These headers
 are used by the installed headers for GNU glibc and other system
 libraries. They are NOT meant to be used to build third-party modules for
 your kernel. Use linux-headers-* packages for that.

linux-modules-6.2.0-35-generic: Linux kernel extra modules for version 6.2.0 on RISC-V SMP

 Contains the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Generic processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-modules-6.2.0-35-generic-64k: Linux kernel extra modules for version 6.2.0 on ARMv8 SMP

 Contains the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Generic 64K pages processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic-64k meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-modules-6.2.0-35-generic-lpae: Linux kernel extra modules for version 6.2.0 on ARM (hard float) SMP

 Contains the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Generic LPAE processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic-lpae meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-modules-extra-6.2.0-35-generic: Linux kernel extra modules for version 6.2.0 on RISC-V SMP

 This package contains the Linux kernel extra modules for version 6.2.0 on
 RISC-V SMP.
 .
 Also includes the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Generic processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-modules-ipu6-6.2.0-35-generic: Linux kernel ipu6 modules for version 6.2.0-35

 This package provides the Linux kernel ipu6 modules for version
 6.2.0-35.
 .
 You likely do not want to install this package directly. Instead, install the
 one of the linux-modules-ipu6-generic* meta-packages,
 which will ensure that upgrades work correctly, and that supporting packages are
 also installed.

linux-modules-ivsc-6.2.0-35-generic: Linux kernel ivsc modules for version 6.2.0-35

 This package provides the Linux kernel ivsc modules for version
 6.2.0-35.
 .
 You likely do not want to install this package directly. Instead, install the
 one of the linux-modules-ivsc-generic* meta-packages,
 which will ensure that upgrades work correctly, and that supporting packages are
 also installed.

linux-modules-iwlwifi-6.2.0-35-generic: Linux kernel iwlwifi modules for version 6.2.0-35

 This package provides the Linux kernel iwlwifi modules for version
 6.2.0-35.
 .
 You likely do not want to install this package directly. Instead, install the
 one of the linux-modules-iwlwifi-generic* meta-packages,
 which will ensure that upgrades work correctly, and that supporting packages are
 also installed.

linux-source-6.2.0: Linux kernel source for version 6.2.0 with Ubuntu patches

 This package provides the source code for the Linux kernel version
 6.2.0.
 .
 This package is mainly meant for other packages to use, in order to build
 custom flavours.
 .
 If you wish to use this package to create a custom Linux kernel, then it
 is suggested that you investigate the package kernel-package, which has
 been designed to ease the task of creating kernel image packages.
 .
 If you are simply trying to build third-party modules for your kernel,
 you do not want this package. Install the appropriate linux-headers
 package instead.

linux-tools-6.2.0-35: Linux kernel version specific tools for version 6.2.0-35

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 6.2.0-35 on
 ARMv8.
 You probably want to install linux-tools-6.2.0-35-<flavour>.

linux-tools-6.2.0-35-generic: Linux kernel version specific tools for version 6.2.0-35

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 6.2.0-35 on
 RISC-V.

linux-tools-6.2.0-35-generic-64k: Linux kernel version specific tools for version 6.2.0-35

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 6.2.0-35 on
 ARMv8.

linux-tools-6.2.0-35-generic-lpae: Linux kernel version specific tools for version 6.2.0-35

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 6.2.0-35 on
 ARM (hard float).

linux-tools-common: Linux kernel version specific tools for version 6.2.0

 This package provides the architecture independent parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 6.2.0.

linux-tools-host: Linux kernel VM host tools

 This package provides kernel tools useful for VM hosts.