* focal/linux: 5.4.0-163.180 -proposed tracker (LP: #2034247)
* Packaging resync (LP: #1786013)
- [Packaging] update helper scripts
* CVE-2023-40283
- Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
* CVE-2023-20588
- x86/bugs: Increase the x86 bugs vector size to two u32s
- x86/CPU/AMD: Do not leak quotient data after a division by 0
- x86/CPU/AMD: Fix the DIV(0) initial fix attempt
* CVE-2023-4128
- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-
after-free
This bug was fixed in the package linux-iot - 5.4.0-1022.23
---------------
linux-iot (5.4.0-1022.23) focal; urgency=medium
* focal/linux-iot: 5.4.0-1022.23 -proposed tracker (LP: #2034236)
[ Ubuntu: 5.4.0-163.180 ]
* focal/linux: 5.4.0-163.180 -proposed tracker (LP: #2034247)
* Packaging resync (LP: #1786013)
- [Packaging] update helper scripts
* CVE-2023-40283
- Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
* CVE-2023-20588
- x86/bugs: Increase the x86 bugs vector size to two u32s
- x86/CPU/AMD: Do not leak quotient data after a division by 0
- x86/CPU/AMD: Fix the DIV(0) initial fix attempt
* CVE-2023-4128
- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-
after-free
-- Wen-chien Jesse Sung <email address hidden> Fri, 08 Sep 2023 15:47:02 +0800