* CVE-2024-27017
- netfilter: nft_set_pipapo: constify lookup fn args where possible
- netfilter: nft_set_pipapo: walk over current view on netlink dump
- netfilter: nf_tables: missing iterator type in lookup walk
* CVE-2024-26952
- ksmbd: fix potencial out-of-bounds when buffer offset is invalid
This bug was fixed in the package linux - 5.15.0-117.127
---------------
linux (5.15.0-117.127) jammy; urgency=medium
* jammy/linux: 5.15.0-117.127 -proposed tracker (LP: #2072059)
* CVE-2024-27017
- netfilter: nft_set_pipapo: constify lookup fn args where possible
- netfilter: nft_set_pipapo: walk over current view on netlink dump
- netfilter: nf_tables: missing iterator type in lookup walk
* CVE-2024-26952
- ksmbd: fix potencial out-of-bounds when buffer offset is invalid
* CVE-2024-26886
- Bluetooth: af_bluetooth: Fix deadlock
* CVE-2023-52752 data_proc_ show()
- smb: client: fix use-after-free bug in cifs_debug_
* CVE-2024-25742
- x86/sev: Harden #VC instruction emulation somewhat
- x86/sev: Check for MWAITX and MONITORX opcodes in the #VC handler
* CVE-2024-36016
- tty: n_gsm: fix possible out-of-bounds in gsm0_receive()
-- Manuel Diewald <email address hidden> Fri, 05 Jul 2024 17:04:46 +0200