* focal/linux: 5.4.0-163.180 -proposed tracker (LP: #2034247)
* Packaging resync (LP: #1786013)
- [Packaging] update helper scripts
* CVE-2023-40283
- Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
* CVE-2023-20588
- x86/bugs: Increase the x86 bugs vector size to two u32s
- x86/CPU/AMD: Do not leak quotient data after a division by 0
- x86/CPU/AMD: Fix the DIV(0) initial fix attempt
* CVE-2023-4128
- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-
after-free
This bug was fixed in the package linux-ibm - 5.4.0-1057.62
---------------
linux-ibm (5.4.0-1057.62) focal; urgency=medium
* focal/linux-ibm: 5.4.0-1057.62 -proposed tracker (LP: #2034231)
[ Ubuntu: 5.4.0-163.180 ]
* focal/linux: 5.4.0-163.180 -proposed tracker (LP: #2034247)
* Packaging resync (LP: #1786013)
- [Packaging] update helper scripts
* CVE-2023-40283
- Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
* CVE-2023-20588
- x86/bugs: Increase the x86 bugs vector size to two u32s
- x86/CPU/AMD: Do not leak quotient data after a division by 0
- x86/CPU/AMD: Fix the DIV(0) initial fix attempt
* CVE-2023-4128
- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-
after-free
-- Thibault Ferrante <email address hidden> Thu, 07 Sep 2023 11:44:42 +0200