* focal/linux: 5.4.0-163.180 -proposed tracker (LP: #2034247)
* Packaging resync (LP: #1786013)
- [Packaging] update helper scripts
* CVE-2023-40283
- Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
* CVE-2023-20588
- x86/bugs: Increase the x86 bugs vector size to two u32s
- x86/CPU/AMD: Do not leak quotient data after a division by 0
- x86/CPU/AMD: Fix the DIV(0) initial fix attempt
* CVE-2023-4128
- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-
after-free
This bug was fixed in the package linux-oracle - 5.4.0-1109.118
---------------
linux-oracle (5.4.0-1109.118) focal; urgency=medium
* focal/linux-oracle: 5.4.0-1109.118 -proposed tracker (LP: #2034239)
[ Ubuntu: 5.4.0-163.180 ]
* focal/linux: 5.4.0-163.180 -proposed tracker (LP: #2034247)
* Packaging resync (LP: #1786013)
- [Packaging] update helper scripts
* CVE-2023-40283
- Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
* CVE-2023-20588
- x86/bugs: Increase the x86 bugs vector size to two u32s
- x86/CPU/AMD: Do not leak quotient data after a division by 0
- x86/CPU/AMD: Fix the DIV(0) initial fix attempt
* CVE-2023-4128
- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-
free
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-
after-free
-- Joseph Salisbury <email address hidden> Wed, 06 Sep 2023 13:35:09 -0400