[22.04 FEAT] Upgrade cryptsetup to latest version (crypto)

Bug #1959427 reported by bugproxy
This bug affects 3 people
Affects Status Importance Assigned to Milestone
Ubuntu on IBM z Systems
Fix Released
Skipper Bug Screeners
cryptsetup (Ubuntu)
Fix Released
Steve Langasek

Bug Description

Upgrade cryptsetup to latest version (crypto)

Update cryptsetup to latest version.

Available at

CVE References

bugproxy (bugproxy)
tags: added: architecture-s39064 bugnameltc-196189 severity-high targetmilestone-inin2204
Changed in ubuntu:
assignee: nobody → Skipper Bug Screeners (skipper-screen-team)
affects: ubuntu → linux (Ubuntu)
Revision history for this message
Frank Heimes (fheimes) wrote (last edit ):

Updating current version 2.4.2 in jammy:
cryptsetup | 2:2.4.2-1ubuntu4 | jammy | s390x
to latest version 2.4.3 is only to solve CVE-2021-4122.

"Cryptsetup 2.4.3 Release Notes
 Stable security bug-fix release that fixes CVE-2021-4122.
 All users of cryptsetup 2.4.x must upgrade to this version."

Changing this ticket to Public Security.

affects: linux (Ubuntu) → cryptsetup (Ubuntu)
Changed in ubuntu-z-systems:
assignee: nobody → Skipper Bug Screeners (skipper-screen-team)
Changed in cryptsetup (Ubuntu):
importance: Undecided → High
Changed in ubuntu-z-systems:
importance: Undecided → High
information type: Private → Public Security
Revision history for this message
Steve Langasek (vorlon) wrote :

uploaded to jammy.

Changed in cryptsetup (Ubuntu):
status: New → Fix Committed
assignee: Skipper Bug Screeners (skipper-screen-team) → Steve Langasek (vorlon)
Frank Heimes (fheimes)
Changed in ubuntu-z-systems:
status: New → Fix Committed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package cryptsetup - 2:2.4.3-1ubuntu1

cryptsetup (2:2.4.3-1ubuntu1) jammy; urgency=low

  * Merge from Debian unstable (LP: #1959427). Remaining changes:
    - debian/control:
      + Recommend plymouth.
      + Depend on busybox-initramfs instead of busybox | busybox-static.
      + Move cryptsetup-initramfs back to cryptsetup's Recommends.
      + Do not build cryptsetup-suspend binary package on i386.
    - Fix cryptroot-unlock for busybox compatibility.
    - Fix warning and error when running on ZFS on root: (LP: #1830110)
      - d/functions: Return an empty devno for ZFS devices as they don't have
        major:minor device numbers.
      - d/initramfs/hooks/cryptroot: Ignore and don't print an error message
        when devices don't have a devno.
    - debian/patches/decrease_memlock_ulimit.patch
      Fixed FTBFS due to a restricted build environment
    - Stop building the udeb on request.

cryptsetup (2:2.4.3-1) unstable; urgency=high

  [ Guilhem Moulin ]
  * New upstream security release 2.4.3, with fix for CVE-2021-4122:
    decryption through LUKS2 reencryption crash recovery. (Closes: #1003685,
  * Remove cryptsetup-initramfs.preinst. (Closes: #1001063)

  [ Christoph Anton Mitterer ]
  * d/rules: don't expand here-document.

 -- Steve Langasek <email address hidden> Fri, 28 Jan 2022 12:14:06 -0800

Changed in cryptsetup (Ubuntu):
status: Fix Committed → Fix Released
Frank Heimes (fheimes)
Changed in ubuntu-z-systems:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.