Azure: drop variant changes for security respin

Bug #2020686 reported by Tim Gardner
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux-azure-5.19 (Ubuntu)
Invalid
Undecided
Unassigned
Jammy
Fix Released
High
Tim Gardner

Bug Description

SRU Justification

[Impact]

linux-azure-5.19 5.19.0-1027.30~22.04.1 (SRU 2023.04.17-4) was generated after changes were made to the kteam-tools kernel.yaml to promote 5.19 to the default kernel. These changes are not allowed during a security respin.

[Fix]

Revert the variant updates and respin to 5.19.0-1027.30~22.04.2

[Test Plan]

Verify that there are no new meta-packages generated.

Tim Gardner (timg-tpi)
affects: linux (Ubuntu) → linux-azure-5.19 (Ubuntu)
Changed in linux-azure-5.19 (Ubuntu):
assignee: nobody → Tim Gardner (timg-tpi)
importance: Undecided → High
status: New → In Progress
Changed in linux-azure-5.19 (Ubuntu Jammy):
assignee: nobody → Tim Gardner (timg-tpi)
importance: Undecided → High
status: New → In Progress
Changed in linux-azure-5.19 (Ubuntu):
status: In Progress → Invalid
importance: High → Undecided
assignee: Tim Gardner (timg-tpi) → nobody
description: updated
Tim Gardner (timg-tpi)
Changed in linux-azure-5.19 (Ubuntu Jammy):
status: In Progress → Fix Committed
Revision history for this message
Launchpad Janitor (janitor) wrote :
Download full text (201.0 KiB)

This bug was fixed in the package linux-azure-5.19 - 5.19.0-1027.30~22.04.2

---------------
linux-azure-5.19 (5.19.0-1027.30~22.04.2) jammy; urgency=medium

  * jammy/linux-azure-5.19: 5.19.0-1027.30~22.04.2 -proposed tracker
    (LP: #2019592)

  * Azure: drop variant changes for security respin (LP: #2020686)
    - Revert "UBUNTU: [Packaging] update variants"

linux-azure-5.19 (5.19.0-1027.30~22.04.1) jammy; urgency=medium

  * jammy/linux-azure-5.19: 5.19.0-1027.30~22.04.1 -proposed tracker
    (LP: #2019592)

  * Packaging resync (LP: #1786013)
    - [Packaging] update variants

  [ Ubuntu: 5.19.0-1027.30 ]

  * kinetic/linux-azure: 5.19.0-1027.30 -proposed tracker (LP: #2019593)
  * kinetic/linux: 5.19.0-43.44 -proposed tracker (LP: #2019606)
  * CVE-2023-32233
    - netfilter: nf_tables: deactivate anonymous set from preparation phase
  * CVE-2023-2612
    - SAUCE: shiftfs: prevent lock unbalance in shiftfs_create_object()
  * CVE-2023-31436
    - net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg
  * CVE-2023-1380
    - wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies()
  * CVE-2023-30456
    - KVM: nVMX: add missing consistency checks for CR0 and CR4
  * Packaging resync (LP: #1786013)
    - [Packaging] update helper scripts

linux-azure-5.19 (5.19.0-1026.29~22.04.1) jammy; urgency=medium

  * jammy/linux-azure-5.19: 5.19.0-1026.29~22.04.1 -proposed tracker
    (LP: #2016487)

  [ Ubuntu: 5.19.0-1026.29 ]

  * kinetic/linux-azure: 5.19.0-1026.29 -proposed tracker (LP: #2016488)
  * Azure: Enable MANA Jumbo Frame Support (LP: #2016898)
    - net: mana: Use napi_build_skb in RX path
    - net: mana: Refactor RX buffer allocation code to prepare for various MTU
    - net: mana: Enable RX path to handle various MTU sizes
    - net: mana: Add support for jumbo frame
  * Azure: Add new MANA VF performance counters for easier troubleshooting
    (LP: #2014015)
    - net: mana: Add new MANA VF performance counters for easier troubleshooting
  * Azure: smb3: allow deferred close timeout to be configurable (LP: #2013349)
    - smb3: allow deferred close timeout to be configurable
    - smb3: lower default deferred close timeout to address perf regression
    - keys: Do not cache key in task struct if key is requested from kernel thread
  * kinetic/linux: 5.19.0-42.43 -proposed tracker (LP: #2016503)
  * selftest: fib_tests: Always cleanup before exit (LP: #2015956)
    - selftest: fib_tests: Always cleanup before exit
  * Debian autoreconstruct Fix restoration of execute permissions (LP: #2015498)
    - [Debian] autoreconstruct - fix restoration of execute permissions
  * Kinetic update: upstream stable patchset 2023-04-10 (LP: #2015812)
    - drm/etnaviv: don't truncate physical page address
    - wifi: rtl8xxxu: gen2: Turn on the rate control
    - drm/edid: Fix minimum bpc supported with DSC1.2 for HDMI sink
    - clk: mxl: Switch from direct readl/writel based IO to regmap based IO
    - clk: mxl: Remove redundant spinlocks
    - clk: mxl: Add option to override gate clks
    - clk: mxl: Fix a clk entry by adding relevant flags
    - powerpc: dts: t208x: Mark MAC1 and MAC2 as 10G
    - clk: mxl: syscon_node...

Changed in linux-azure-5.19 (Ubuntu Jammy):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.