CVEs related to bugs in Ubuntu on IBM z Systems

Open bugs

Bug CVE(s)
Bug #1836860: [18.04 FEAT] Enhanced CPU-MF hardware counters - kernel part CVE-2019-12614
CVE-2019-13648
Ubuntu on IBM z Systems Fix committed by Frank Heimes

Resolved bugs

Bug CVE(s)
Bug #1544978: PCI Call Traces hw csum failure in dmesg with 4.4.0-2-generic CVE-2016-1583
CVE-2016-2117
CVE-2016-2187
CVE-2016-4485
CVE-2016-4486
CVE-2016-4558
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1555344: s390/cpumf: Fix lpp detection CVE-2016-2847
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1559194: Bad page state in process genwqe_gunzip pfn:3c275 in the genwqe device driver CVE-2016-7425
CVE-2016-8655
CVE-2016-8658
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1564918: glibc/s390: Save and restore fprs/vrs while resolving symbols. CVE-2016-3075
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1572291: s390/pci: add extra padding to function measurement block CVE-2016-3672
CVE-2016-3951
CVE-2016-3955
Ubuntu on IBM z Systems Fix released, assigned to Tim Gardner
Bug #1577460: mkinitramfs --help > Core dumped CVE-2016-6323
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1584827: s390/mm: fix asce_bits handling with dynamic pagetable levels CVE-2016-4482
CVE-2016-4569
CVE-2016-4578
CVE-2016-4951
Ubuntu on IBM z Systems Fix released, assigned to Andy Whitcroft
Bug #1584828: s390/pci: fix use after free in dma_init CVE-2016-4482
CVE-2016-4569
CVE-2016-4578
CVE-2016-4951
Ubuntu on IBM z Systems Fix released, assigned to Andy Whitcroft
Bug #1597971: kernel: signal return with invalid floating-point control CVE-2016-3135
CVE-2016-4440
CVE-2016-4470
CVE-2016-4794
CVE-2016-5243
Ubuntu on IBM z Systems Fix released, assigned to Andy Whitcroft
Bug #1601831: qeth: delete napi struct when removing a qeth device CVE-2016-1237
CVE-2016-3135
CVE-2016-3961
CVE-2016-4440
CVE-2016-4470
CVE-2016-4794
CVE-2016-5243
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1609415: s390/cio: fix reset of channel measurement block CVE-2016-5244
CVE-2016-5400
CVE-2016-5696
CVE-2016-5728
Ubuntu on IBM z Systems Fix released, assigned to Tim Gardner
Bug #1628889: [17.04 FEAT] Integrate kernel message catalogue for s390x into Ubuntu distribution CVE-2016-1575
CVE-2016-1576
Ubuntu on IBM z Systems Fix released, assigned to bugproxy
Bug #1644557: crypto : tolerate new crypto hardware for z Systems CVE-2016-9756
CVE-2016-9793
CVE-2016-9794
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1647400: system freeze when swapping to encrypted swap partition CVE-2016-9756
CVE-2016-9793
CVE-2016-9794
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1670634: blk-mq: possible deadlock on CPU hot(un)plug CVE-2017-14106
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1703368: [FFe] [17.10 FEAT] upgrade to newest version of glibc >=2.26 CVE-2017-1000366
CVE-2017-12132
CVE-2017-12133
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1708399: kernel panic -not syncing: Fatal exception: panic_on_oops CVE-2017-1000251
CVE-2017-7541
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1719290: CONFIG_DEBUG_FS is not enabled by "make zfcpdump_defconfig" with Ubuntu 17.10 (kernel 4.13) CVE-2017-1000252
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1719297: [17.10 FEAT] KVM: CPU Model z14 CVE-2017-1000252
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1734130: [18.04 FEAT] Add kvm_stat from kernel tree CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1742771: s390: add ppa to kernel entry/exit CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1744736: Ubuntu 16.04 - s390/cpuinfo: show facilities as reported by stfle CVE-2017-15129
CVE-2017-16995
CVE-2017-17448
CVE-2017-17450
CVE-2017-17741
CVE-2017-17862
CVE-2017-5753
CVE-2018-1000026
CVE-2018-5333
CVE-2018-5344
CVE-2018-8043
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1747639: [18.04 FEAT] Automatically detect layer2 setting in the qeth device driver CVE-2017-5754
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1750568: qeth: check not more than 16 SBALEs on the completion queue CVE-2017-15129
CVE-2017-16995
CVE-2017-17448
CVE-2017-17450
CVE-2017-17741
CVE-2017-17862
CVE-2017-5753
CVE-2018-1000026
CVE-2018-5333
CVE-2018-5344
CVE-2018-8043
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1750810: qeth: fix calculation of required buffer elements for skb CVE-2017-15129
CVE-2017-16995
CVE-2017-17448
CVE-2017-17450
CVE-2017-17741
CVE-2017-17862
CVE-2017-5753
CVE-2018-1000026
CVE-2018-5333
CVE-2018-5344
CVE-2018-8043
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1750813: qeth: fix L3 next-hop im xmit qeth hdr CVE-2017-15129
CVE-2017-16995
CVE-2017-17448
CVE-2017-17450
CVE-2017-17741
CVE-2017-17862
CVE-2017-5753
CVE-2018-1000026
CVE-2018-5333
CVE-2018-5344
CVE-2018-8043
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1751234: Unable to insert test_bpf module on Bionic s390x CVE-2017-5754
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1753424: s390/crypto: Fix kernel crash on aes_s390 module remove CVE-2018-1000004
CVE-2018-8043
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1754580: [CVE] Spectre: System Z {kernel} UBUNTU18.04 CVE-2018-1000004
CVE-2018-8043
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1755132: KVM: s390: add vcpu stat counters for many instruction CVE-2018-1000004
CVE-2018-8043
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1761674: [Ubuntu 16.04] kernel: fix rwlock implementation CVE-2017-5715
CVE-2017-5753
CVE-2018-1068
CVE-2018-1092
CVE-2018-3639
CVE-2018-7492
CVE-2018-8087
CVE-2018-8781
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1762353: [Ubuntu 18.04] cryptsetup: 'device-mapper: reload ioctl on failed' when setting up a second end-to-end encrypted disk CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1762719: System Z {kernel} UBUNTU18.04 wrong kernel config CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1765083: Please cherrypick s390 unwind fix CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1766727: initramfs-tools exception during pm.DoInstall with do-release-upgrade from 16.04 to 18.04 CVE-2018-3639
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1772593: cpum_sf: ensure sample freq is non-zero CVE-2018-1130
CVE-2018-11508
CVE-2018-3639
CVE-2018-3665
CVE-2018-5750
CVE-2018-5803
CVE-2018-6927
CVE-2018-7755
CVE-2018-7757
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1775018: Fix for openssl 1.0.2 backport CVE-2019-1559
Ubuntu on IBM z Systems Fix released, assigned to Dimitri John Ledkov
Bug #1775390: kernel: Fix memory leak on CCA and EP11 CPRB processing. CVE-2018-10323
CVE-2018-10840
CVE-2018-10881
CVE-2018-1108
CVE-2018-11412
CVE-2018-11506
CVE-2018-12232
CVE-2018-12233
CVE-2018-12904
CVE-2018-13094
CVE-2018-13405
CVE-2018-13406
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1775391: kernel: Fix arch random implementation CVE-2018-10323
CVE-2018-10840
CVE-2018-10881
CVE-2018-1108
CVE-2018-11412
CVE-2018-11506
CVE-2018-12232
CVE-2018-12233
CVE-2018-12904
CVE-2018-13094
CVE-2018-13405
CVE-2018-13406
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1780773: [18.10 FEAT] zKVM: CPU Model z14 ZR 1 CVE-2018-15746
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1781912: Upgrade cryptsetup >= 2.0.3 CVE-2016-4484
Ubuntu on IBM z Systems Won't fix, assigned to Canonical Foundations Team
Bug #1784331: [18.10 FEAT] zcrypt DD: introduce APQN tags to support deterministic driver binding CVE-2017-5715
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1786057: qeth: don't clobber buffer on async TX completion CVE-2018-1118
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1786902: [18.10 FEAT] SMC-Direct CVE-2017-5715
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1786956: [19.04 FEAT] upgrade qemu > 3.0 CVE-2016-10028
CVE-2017-8284
CVE-2017-9060
CVE-2018-10839
CVE-2018-11806
CVE-2018-12617
CVE-2018-15746
CVE-2018-16847
CVE-2018-16867
CVE-2018-16872
CVE-2018-17958
CVE-2018-17962
CVE-2018-17963
CVE-2018-18438
CVE-2018-18849
CVE-2018-18954
CVE-2018-19364
CVE-2018-19489
CVE-2018-19665
CVE-2018-3639
Ubuntu on IBM z Systems Fix released, assigned to Canonical Server Team
Bug #1787405: [FEAT] Guest-dedicated Crypto Adapters CVE-2018-10839
CVE-2018-12617
CVE-2018-16847
CVE-2018-17958
CVE-2018-17962
CVE-2018-17963
CVE-2018-18653
CVE-2018-18849
CVE-2018-18954
CVE-2018-18955
CVE-2018-19364
CVE-2018-6559
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1787898: [18.10 FEAT] Add kernel config option "CONFIG_SCLP_OFB" CVE-2017-5715
CVE-2018-14633
CVE-2018-15572
CVE-2018-15594
CVE-2018-17182
CVE-2018-3639
CVE-2018-6554
CVE-2018-6555
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1788432: 4.15 s390x kernel BUG at /build/linux-Gycr4Z/linux-4.15.0/drivers/block/virtio_blk.c:565! CVE-2017-5715
CVE-2017-5754
CVE-2018-3639
Ubuntu on IBM z Systems Fix released, assigned to bugproxy
Bug #1789934: [18.10 FEAT] Add kernel config options for SMC-R/D CVE-2017-5715
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1790457: kernel: improve spectre mitigation CVE-2017-5715
CVE-2018-15746
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1790480: random oopses on s390 systems using NVMe devices CVE-2017-5715
CVE-2017-5753
CVE-2018-14633
CVE-2018-15572
CVE-2018-15594
CVE-2018-17182
CVE-2018-3620
CVE-2018-3639
CVE-2018-3646
CVE-2018-6554
CVE-2018-6555
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1793086: qeth: use vzalloc for QUERY OAT buffer CVE-2018-14633
CVE-2018-5391
CVE-2018-9363
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1794294: [Ubuntu] s390/crypto: Fix return code checking in cbc_paes_crypt. CVE-2018-14633
CVE-2018-5391
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1794346: check and fix zkey required kernel modules locations in debs, udebs, and initramfs CVE-2018-14633
CVE-2018-5391
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1797367: Ubuntu 18.04.1 - [s390x] Kernel panic while stressing network bonding CVE-2018-18653
CVE-2018-18955
CVE-2018-6559
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1798776: kvm_stat : missing python dependency CVE-2018-16880
CVE-2018-18397
CVE-2018-19854
CVE-2019-6133
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1799184: [18.04 FEAT] zcrypt DD: introduce APQN tags to support deterministic driver binding CVE-2018-18955
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1800639: [Ubuntu] net/af_iucv: fix skb leaks for HiperTransport CVE-2018-18653
CVE-2018-18955
CVE-2018-6559
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1800641: [Ubuntu] qeth: Fix potential array overrun in cmd/rc lookup CVE-2018-18653
CVE-2018-18955
CVE-2018-6559
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1800849: [Ubuntu] kvm: fix deadlock when killed by oom CVE-2018-18955
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1801686: [Ubuntu] qdio: reset old sbal_state flags CVE-2018-18955
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1804798: strongSwan Vulnerability (CVE-2018-17540) CVE-2018-17540
Ubuntu on IBM z Systems Fix released (unassigned)
Bug #1805414: [Ubuntu] kernel: zcrypt: reinit ap queue state machine CVE-2018-14625
CVE-2018-16882
CVE-2018-17972
CVE-2018-18281
CVE-2018-19407
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1805802: [UBUNTU] qeth: fix length check in SNMP processing CVE-2018-14625
CVE-2018-16882
CVE-2018-17972
CVE-2018-18281
CVE-2018-19407
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1807686: efi-lockdown patch causes -EPERM for some debugfs files even though CONFIG_LOCK_DOWN_KERNEL is not set CVE-2018-14625
CVE-2018-16882
CVE-2018-19407
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1812384: [Ubuntu] qemu - backport diag308 stable exception fix CVE-2016-10028
CVE-2017-8284
CVE-2017-9060
CVE-2018-10839
CVE-2018-11806
CVE-2018-12617
CVE-2018-15746
CVE-2018-16847
CVE-2018-16867
CVE-2018-16872
CVE-2018-17958
CVE-2018-17962
CVE-2018-17963
CVE-2018-18438
CVE-2018-18849
CVE-2018-18954
CVE-2018-19364
CVE-2018-19489
CVE-2018-19665
CVE-2018-3639
Ubuntu on IBM z Systems Fix released, assigned to Christian Ehrhardt 
Bug #1813934: Vsock connect fails with ENODEV for large CID CVE-2018-16880
CVE-2018-18397
CVE-2018-19854
CVE-2019-6133
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1814892: [19.04 FEAT] qeth: Enhanced link speed - kernel part CVE-2017-5715
CVE-2017-5754
CVE-2018-3639
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1818854: [Ubuntu] vfio-ap: add subsystem to matrix device to avoid libudev failures CVE-2017-5715
CVE-2017-5754
CVE-2018-3639
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1828038: [19.10 FEAT] Update hardware CPU Model z14 CVE-2018-16872
CVE-2018-19665
CVE-2018-20815
CVE-2019-3812
CVE-2019-5008
CVE-2019-6501
CVE-2019-6778
CVE-2019-9824
Ubuntu on IBM z Systems Fix released, assigned to Canonical Server Team
Bug #1829972: Require improved hypervisor detection patch in Ubuntu 18.04 CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2019-11085
CVE-2019-11091
CVE-2019-11815
CVE-2019-11833
CVE-2019-11884
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1830238: [19.10 FEAT] zKVM: Add hardware CPU Model - qemu part CVE-2018-16872
CVE-2018-19665
CVE-2018-20815
CVE-2019-3812
CVE-2019-5008
CVE-2019-6501
CVE-2019-6778
CVE-2019-9824
Ubuntu on IBM z Systems Fix released, assigned to Canonical Server Team
Bug #1830243: [19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu CVE-2018-16872
CVE-2018-19665
CVE-2018-20815
CVE-2019-3812
CVE-2019-5008
CVE-2019-6501
CVE-2019-6778
CVE-2019-9824
Ubuntu on IBM z Systems Fix released, assigned to Canonical Server Team
Bug #1832623: [UBUNTU] kernel: Fix gcm-aes-s390 wrong scatter-gather list processing CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2019-11085
CVE-2019-11091
CVE-2019-11815
CVE-2019-11833
CVE-2019-11884
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1832624: [UBUNTU] kernel: Fix wrong dispatching for control domain CPRBs CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2019-11085
CVE-2019-11091
CVE-2019-11815
CVE-2019-11833
CVE-2019-11884
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1832625: [UBUNTU] pkey: Indicate old mkvp only if old and curr. mkvp are different CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2019-11085
CVE-2019-11091
CVE-2019-11815
CVE-2019-11833
CVE-2019-11884
Ubuntu on IBM z Systems Fix released, assigned to Canonical Kernel Team
Bug #1836153: [18.04 FEAT] zKVM: Add hardware CPU Model - kernel part CVE-2000-1134
CVE-2007-3852
CVE-2008-0525
CVE-2009-0416
CVE-2011-4834
CVE-2015-1838
CVE-2015-7442
CVE-2016-7489
CVE-2018-5383
CVE-2019-10126
CVE-2019-1125
CVE-2019-12614
CVE-2019-12818
CVE-2019-12819
CVE-2019-12984
CVE-2019-13233
CVE-2019-13272
CVE-2019-2101
CVE-2019-3846
Ubuntu on IBM z Systems Fix released (unassigned)