This bug was fixed in the package linux-kvm - 4.15.0-1141.146
--------------- linux-kvm (4.15.0-1141.146) bionic; urgency=medium
* bionic/linux-kvm: 4.15.0-1141.146 -proposed tracker (LP: #2019700)
[ Ubuntu: 4.15.0-212.223 ]
* bionic/linux: 4.15.0-212.223 -proposed tracker (LP: #2019708) * Packaging resync (LP: #1786013) - [Packaging] update helper scripts * CVE-2023-32233 - netfilter: nf_tables: add nft_set_is_anonymous() helper - netfilter: nf_tables: split set destruction in deactivate and destroy phase - netfilter: nf_tables: unbind set in rule from commit path - netfilter: nf_tables: bogus EBUSY in helper removal from transaction - netfilter: nf_tables: fix set double-free in abort path - netfilter: nf_tables: bogus EBUSY when deleting set after flush - netfilter: nf_tables: use-after-free in failing rule with bound set - netfilter: nf_tables: deactivate anonymous set from preparation phase * CVE-2023-31436 - net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg * CVE-2023-1380 - wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() * CVE-2023-30456 - KVM: nVMX: add missing consistency checks for CR0 and CR4
-- Andrei Gherzan <email address hidden> Thu, 25 May 2023 10:22:26 +0100
This bug was fixed in the package linux-kvm - 4.15.0-1141.146
---------------
linux-kvm (4.15.0-1141.146) bionic; urgency=medium
* bionic/linux-kvm: 4.15.0-1141.146 -proposed tracker (LP: #2019700)
[ Ubuntu: 4.15.0-212.223 ]
* bionic/linux: 4.15.0-212.223 -proposed tracker (LP: #2019708) is_anonymous( ) helper assoc_ies( )
* Packaging resync (LP: #1786013)
- [Packaging] update helper scripts
* CVE-2023-32233
- netfilter: nf_tables: add nft_set_
- netfilter: nf_tables: split set destruction in deactivate and destroy phase
- netfilter: nf_tables: unbind set in rule from commit path
- netfilter: nf_tables: bogus EBUSY in helper removal from transaction
- netfilter: nf_tables: fix set double-free in abort path
- netfilter: nf_tables: bogus EBUSY when deleting set after flush
- netfilter: nf_tables: use-after-free in failing rule with bound set
- netfilter: nf_tables: deactivate anonymous set from preparation phase
* CVE-2023-31436
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg
* CVE-2023-1380
- wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_
* CVE-2023-30456
- KVM: nVMX: add missing consistency checks for CR0 and CR4
-- Andrei Gherzan <email address hidden> Thu, 25 May 2023 10:22:26 +0100