Comment 4 for bug 1990920

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package linux-oem-5.14 - 5.14.0-1054.61

---------------
linux-oem-5.14 (5.14.0-1054.61) focal; urgency=medium

  * Packaging resync (LP: #1786013)
    - [Config] Add PAHOLE_HAS_SPLIT_BTF config

  * CVE-2022-2602
    - SAUCE: io_uring/af_unix: defer registered files gc to io_uring release
    - SAUCE: io_uring/af_unix: fix memleak during unix GC

  * CVE-2022-41674
    - mac80211: fix memory leaks with element parsing
    - SAUCE: wifi: cfg80211: fix u8 overflow in
      cfg80211_update_notlisted_nontrans()
    - SAUCE: wifi: cfg80211/mac80211: reject bad MBSSID elements
    - SAUCE: wifi: cfg80211: ensure length byte is present before access
    - SAUCE: wifi: mac80211_hwsim: avoid mac80211 warning on bad rate
    - SAUCE: wifi: cfg80211: update hidden BSSes to avoid WARN_ON

  * CVE-2022-42722
    - SAUCE: wifi: mac80211: fix crash in beacon protection for P2P-device

  * CVE-2022-42721
    - SAUCE: wifi: cfg80211: avoid nontransmitted BSS list corruption

  * CVE-2022-42720
    - SAUCE: wifi: cfg80211: fix BSS refcounting bugs

  * CVE-2022-42719
    - SAUCE: wifi: mac80211: fix MBSSID parsing use-after-free

 -- Stefan Bader <email address hidden> Fri, 14 Oct 2022 14:45:08 +0200