Change History (7)
comment:1 by , 2 years ago
| Summary: | linux-5.19.9 → linux-5.19.10 |
|---|
comment:4 by , 2 years ago
| Resolution: | → fixed |
|---|---|
| Status: | new → closed |
Fixed at commit 79789000a80b5d149e46c2cc8de726aa9f3d4cc9
Update to iana-etc-20220922. Update to tzdata-2022d. Update to readline-8.2. Update to linux-5.19.11. Update to libffi-3.4.3. Update to libcap-2.66. Update to dbus-1.14.2. Update to bc-6.0.3. Update to bash-5.2.
follow-up: 6 comment:5 by , 2 years ago
| Priority: | normal → high |
|---|
Contains fixes for the following CVEs:
- CVE-2022-3303: ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC (Medium)
- CVE-2022-2663: netfilter: nf_conntrack_irc: Fix forged IP logic (Medium)
- CVE-2022-40307: efi: capsule-loader: Fix use-after-free in efi_capsule_write (Medium)
Additionally, 5.19.4 included a fix for the following CVE:
- CVE-2022-2785: bpf: Disallow bpf programs call prog_run command. (Medium)
5.19.6 included fixes for the following CVEs:
- CVE-2022-39190: netfilter: nf_tables: disallow binding to already bound chain (Medium)
- CVE-2022-2590: mm/gup: fix FOLL_FORCE COW security issue and remove FOLL_COW (High)
- CVE-2022-3028: af_key: Do not call xfrm_probe_algs in parallel (High)
- CVE-2022-2905: bpf: Don't use tnum_range on array range checking for poke descriptors (Medium)
I'll file an SA for this one today at some point.
comment:6 by , 2 years ago
Replying to Douglas R. Reno:
5.19.6 included fixes for the following CVEs:
- CVE-2022-2590: mm/gup: fix FOLL_FORCE COW security issue and remove FOLL_COW (High)
This one is already SA 11.1-102.
Note:
See TracTickets
for help on using tickets.
Now version 5.19.10.