This bug will contain status and test results related to a kernel source (or snap) as stated in the title.
For an explanation of the tasks and the associated workflow see:
https://wiki.ubuntu.com/Kernel/kernel-sru-workflow
-- swm properties --
built:
from: c9ff9a25089816aa
route-entry: 2
delta:
promote-to-proposed: [lrm, lrs, main, meta, signed, lrg, generate]
promote-to-security: []
promote-to-updates: [lrm, lrs, main, meta, signed]
flag:
boot-testing-requested: true
bugs-spammed: true
proposed-announcement-sent: true
proposed-testing-requested: true
issue: KSRU-8997
kernel-stable-master-bug: 2030581
packages:
generate: linux-generate-oracle-5.15
lrg: linux-restricted-generate-oracle-5.15
lrm: linux-restricted-modules-oracle-5.15
lrs: linux-restricted-signatures-oracle-5.15
main: linux-oracle-5.15
meta: linux-meta-oracle-5.15
signed: linux-signed-oracle-5.15
phase: Complete
phase-changed: Tuesday, 29. August 2023 09:57 UTC
reason: {}
synthetic:
:promote-to-as-proposed: Invalid
variant: debs
versions:
lrm: 5.15.0-1041.47~20.04.1
main: 5.15.0-1041.47~20.04.1
meta: 5.15.0.1041.47~20.04.1
signed: 5.15.0-1041.47~20.04.1
~~:
clamps:
new-review: c9ff9a25089816aa
promote-to-proposed: c9ff9a25089816aa
self: 5.15.0-1041.47~20.04.1
sru-review: c9ff9a25089816aa
This bug was fixed in the package linux-oracle-5.15 - 5.15.0- 1041.47~ 20.04.1
--------------- 1041.47~ 20.04.1) focal; urgency=medium
linux-oracle-5.15 (5.15.0-
* focal/linux- oracle- 5.15: 5.15.0- 1041.47~ 20.04.1 -proposed tracker
(LP: #2030580)
[ Ubuntu: 5.15.0-1041.47 ]
* jammy/linux-oracle: 5.15.0-1041.47 -proposed tracker (LP: #2030581) dkms-versions helper GDS_FORCE_ MITIGATION finalize_ init() finalize_ init() finalize_ init() finalize_ init() finalize_ init() finalize_ init() earlier finalize_ init() finalize_ init() ARCH_HAS_ CPU_FINALIZE_ INIT and GDS_FORCE_ MITIGATION PREPARE_ ERROR to deal with bound RULE_CHAIN_ ID
* Packaging resync (LP: #1786013)
- [Packaging] resync update-
- [Packaging] update variants
- [Packaging] resync getabis
* arm64 support: Enable ARM_SMMU and ARM_SMMU_V3 for oracle (LP: #2002381)
- [config] Enable ARM_SMMU and ARM_SMMU_V3
* jammy/linux: 5.15.0-82.91 -proposed tracker (LP: #2031147)
* libgnutls report "trap invalid opcode" when trying to install packages over
https (LP: #2031093)
- [Config]: disable CONFIG_
* jammy/linux: 5.15.0-80.87 -proposed tracker (LP: #2030588)
* CVE-2022-40982
- x86/mm: Initialize text poking earlier
- x86/mm: fix poking_init() for Xen PV guests
- x86/mm: Use mm_alloc() in poking_init()
- mm: Move mm_cachep initialization to mm_init()
- init: Provide arch_cpu_
- x86/cpu: Switch to arch_cpu_
- ARM: cpu: Switch to arch_cpu_
- sparc/cpu: Switch to arch_cpu_
- um/cpu: Switch to arch_cpu_
- init: Remove check_bugs() leftovers
- init: Invoke arch_cpu_
- init, x86: Move mem_encrypt_init() into arch_cpu_
- x86/init: Initialize signal frame size late
- x86/fpu: Remove cpuinfo argument from init functions
- x86/fpu: Mark init functions __init
- x86/fpu: Move FPU initialization into arch_cpu_
- x86/xen: Fix secondary processors' FPU initialization
- x86/speculation: Add Gather Data Sampling mitigation
- x86/speculation: Add force option to GDS mitigation
- x86/speculation: Add Kconfig option for GDS
- KVM: Add GDS_NO support to KVM
- Documentation/x86: Fix backwards on/off logic about YMM support
- [Config]: Enable CONFIG_
CONFIG_
* CVE-2023-21400
- io_uring: ensure IOPOLL locks around deferred work
* CVE-2023-4015
- netfilter: nf_tables: add NFT_TRANS_
set/chain
- netfilter: nf_tables: unbind non-anonymous set if rule construction fails
- netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR
* CVE-2023-3777
- netfilter: nf_tables: skip bound chain on rule flush
* CVE-2023-3995
- netfilter: nf_tables: disallow rule addition to bound chain via
NFTA_
* CVE-2023-20593
- x86/cpu/amd: Move the errata checking functionality up
- x86/cpu/amd: Add a Zenbleed fix
* CVE-2023-3776
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free
* CVE-2023-4004
- netfilter: nft_set_pipapo: fix improper element removal
* CVE-2023-3611
- net/sched: sch_qfq: refactor parsing of netlink parameters
- net/sched: sch_qfq: account for stab overhead in qfq_enqueue
* CVE-2023-3610
- netfilter: nf_ta...