I filed this bug to alert that these vulnerabilities were unpatched for 2 months. Some kernels in supported Ubuntu releases are still affected:
$ wget https://git.launchpad.net/ubuntu-cve-tracker/plain/active/CVE-2022-25258 $ grep -vE '^(upstream_[a-z0-9.-]+: |Patches_[a-z0-9.-]+:$| break-fix:|([a-z]+|trusty/esm|esm-infra/xenial)_[a-z0-9.-]+: (DNE$|released |not-affected($| )|ignored)|$)' CVE-2022-25258
bionic_linux-aws-5.4: pending (5.4.0-1073.78~18.04.1) focal_linux-bluefield: needed fips/xenial_linux-fips: needs-triage fips-updates/xenial_linux-fips: needs-triage fips/bionic_linux-fips: needs-triage fips-updates/bionic_linux-fips: needs-triage fips/focal_linux-fips: needs-triage fips-updates/focal_linux-fips: needs-triage bionic_linux-gke-5.4: pending (5.4.0-1069.72~18.04.1) bionic_linux-raspi2: pending (4.15.0-1109.116) impish_linux-riscv: pending (5.13.0-1021.23) focal_linux-oracle-5.13: pending (5.13.0-1028.33~20.04.1)
Please release patched versions of linux-bluefield and linux-fips.
I filed this bug to alert that these vulnerabilities were unpatched for 2 months. Some kernels in supported Ubuntu releases are still affected:
$ wget https:/ /git.launchpad. net/ubuntu- cve-tracker/ plain/active/ CVE-2022- 25258 [a-z0-9. -]+: |Patches_ [a-z0-9. -]+:$| break-fix: |([a-z] +|trusty/ esm|esm- infra/xenial) _[a-z0- 9.-]+: (DNE$|released |not-affected($| )|ignored)|$)' CVE-2022-25258
$ grep -vE '^(upstream_
bionic_ linux-aws- 5.4: pending (5.4.0- 1073.78~ 18.04.1) bluefield: needed linux-fips: needs-triage xenial_ linux-fips: needs-triage linux-fips: needs-triage bionic_ linux-fips: needs-triage linux-fips: needs-triage focal_linux- fips: needs-triage linux-gke- 5.4: pending (5.4.0- 1069.72~ 18.04.1) linux-raspi2: pending (4.15.0-1109.116) oracle- 5.13: pending (5.13.0- 1028.33~ 20.04.1)
focal_linux-
fips/xenial_
fips-updates/
fips/bionic_
fips-updates/
fips/focal_
fips-updates/
bionic_
bionic_
impish_linux-riscv: pending (5.13.0-1021.23)
focal_linux-
Please release patched versions of linux-bluefield and linux-fips.