Ubuntu
linux package

linux: 2.6.32-63.126 -proposed tracker

Bug #1335875 reported by Luis Henriques
12
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Kernel SRU Workflow
In Progress
Medium
Unassigned
Automated-testing
In Progress
Medium
Canonical Kernel Team
Certification-testing
Confirmed
Medium
Canonical Hardware Certification
Prepare-package
Fix Released
Medium
Luis Henriques
Prepare-package-lbm
Fix Released
Medium
Luis Henriques
Prepare-package-meta
Fix Released
Medium
Luis Henriques
Prepare-package-ports-meta
Fix Released
Medium
Luis Henriques
Promote-to-proposed
Fix Released
Medium
Adam Conrad
Promote-to-security
New
Medium
Ubuntu Stable Release Updates Team
Promote-to-updates
New
Medium
Ubuntu Stable Release Updates Team
Regression-testing
In Progress
Medium
Paul Larson
Security-signoff
In Progress
Medium
John Johansen
Verification-testing
In Progress
Medium
Canonical Kernel Team
linux (Ubuntu)
Invalid
Undecided
Unassigned
Lucid
Fix Released
Medium
Unassigned

Bug Description

This bug is for tracking the 2.6.32-63.126 upload package. This bug will contain status and testing results related to that upload.

For an explanation of the tasks and the associated workflow see: https://wiki.ubuntu.com/Kernel/kernel-sru-workflow
kernel-stable-Prepare-package-start:Monday, 30. June 2014 14:25 UTC
kernel-stable-Prepare-package-end:Tuesday, 01. July 2014 04:52 UTC
kernel-stable-Promote-to-proposed-start:Tuesday, 01. July 2014 04:52 UTC
kernel-stable-Promote-to-proposed-end:Wednesday, 02. July 2014 00:23 UTC
kernel-stable-phase:Verification & Testing
kernel-stable-phase-changed:Wednesday, 02. July 2014 01:37 UTC
kernel-stable-Verification-testing-start:Wednesday, 02. July 2014 01:37 UTC
kernel-stable-Certification-testing-start:Wednesday, 02. July 2014 01:37 UTC
kernel-stable-Security-signoff-start:Wednesday, 02. July 2014 01:37 UTC
kernel-stable-Regression-testing-start:Wednesday, 02. July 2014 01:37 UTC

See original description

CVE References

Luis Henriques (henrix)
tags: added: kernel-release-tracking-bug
tags: added: lucid
Changed in kernel-sru-workflow:
status: New → In Progress
importance: Undecided → Medium
Changed in linux (Ubuntu):
status: New → Invalid
Changed in linux (Ubuntu Lucid):
importance: Undecided → Medium
Revision history for this message
Brad Figg (brad-figg) wrote : Packages available

All builds are complete, packages in this bug can be copied to -proposed.

Derivative packages from packages here can be worked on, the following tracking bugs were opened for them:
linux-ec2 - bug 1336142

description: updated
Brad Figg (brad-figg)
description: updated
Brad Figg (brad-figg)
description: updated
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package linux - 2.6.32-64.128

---------------
linux (2.6.32-64.128) lucid; urgency=low

  [ Upstream Kernel Changes ]

  * l2tp: Privilege escalation in ppp over l2tp sockets
    - LP: #1341472
    - CVE-2014-4943

linux (2.6.32-64.127) lucid; urgency=low

  [ Luis Henriques ]

  * Merged back Ubuntu-2.6.32-62.126 security release
  * Revert "x86_64,ptrace: Enforce RIP <= TASK_SIZE_MAX (CVE-2014-4699)"
    - LP: #1337339
  * Release Tracking Bug
    - LP: #1338946

  [ Upstream Kernel Changes ]

  * ptrace,x86: force IRET path after a ptrace_stop()
    - LP: #1337339
    - CVE-2014-4699

linux (2.6.32-63.126) lucid; urgency=low

  [ Luis Henriques ]

  * Release Tracking Bug
    - LP: #1335875

  [ Upstream Kernel Changes ]

  * net: check net.core.somaxconn sysctl values
    - LP: #1321293
  * sysctl net: Keep tcp_syn_retries inside the boundary
    - LP: #1321293
  * ethtool: Report link-down while interface is down
    - LP: #1335049
  * futex: Prevent attaching to kernel threads
    - LP: #1335049
  * auditsc: audit_krule mask accesses need bounds checking
    - LP: #1335049
  * net: fix regression introduced in 2.6.32.62 by sysctl fixes
    - LP: #1335049
  * Linux 2.6.32.63
    - LP: #1335049
  * lib/lzo: Rename lzo1x_decompress.c to lzo1x_decompress_safe.c
    - LP: #1335313
    - CVE-2014-4608
  * lib/lzo: Update LZO compression to current upstream version
    - LP: #1335313
    - CVE-2014-4608
  * lzo: properly check for overruns
    - LP: #1335313
    - CVE-2014-4608
 -- Luis Henriques <email address hidden> Mon, 14 Jul 2014 16:33:33 +0100

Changed in linux (Ubuntu Lucid):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.