~canonical-kernel/ubuntu/+source/linux-nvidia/+git/jammy:nvidia-6.5

Branch merges

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

bdb1560... by Ian May on 2023-10-04

UBUNTU: Ubuntu-nvidia-6.5-6.5.0-1001.1

Signed-off-by: Ian May <email address hidden>

f8dc3af... by Ian May on 2023-10-04

UBUNTU: [Config] nvidia-6.5: update annotations

Signed-off-by: Ian May <email address hidden>

6304b4b... by Ian May on 2023-10-04

UBUNTU: Start new release

Ignore: yes
Signed-off-by: Ian May <email address hidden>

b62b8c4... by Ian May on 2023-10-04

UBUNTU: [Packaging] update Ubuntu.md

BugLink: https://bugs.launchpad.net/bugs/1786013
Signed-off-by: Ian May <email address hidden>

43af911... by Ian May on 2023-10-04

UBUNTU: [Packaging] update variants

BugLink: https://bugs.launchpad.net/bugs/1786013
Signed-off-by: Ian May <email address hidden>

4b4c6ef... by Ian May on 2023-10-04

Revert "UBUNTU: [Packaging] ZSTD compress modules"

This reverts commit b2638e9702b4454f4bd79faf65b56e92cf426f77.

This feature is not targeted for Jammy.

Signed-off-by: Ian May <email address hidden>

e5e7c33... by Ian May on 2023-10-04

Revert "UBUNTU: SAUCE: modpost: support arbitrary symbol length in modversion"

This reverts commit 47d27f27577742dc486a9ad8ce439ae6f7f40dbb.

We need to revert this to avoid regressing any modules used in Jammy.

Signed-off-by: Ian May <email address hidden>

6fea3e8... by Ian May on 2023-10-03

UBUNTU: [Packaging] Initialize linux-nvidia-6.5

Signed-off-by: Ian May <email address hidden>

5b2151a... by Jozsef Kadlecsik <email address hidden> on 2023-09-28

netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP

Kyle Zeng reported that there is a race between IPSET_CMD_ADD and IPSET_CMD_SWAP
in netfilter/ip_set, which can lead to the invocation of `__ip_set_put` on a
wrong `set`, triggering the `BUG_ON(set->ref == 0);` check in it.

The race is caused by using the wrong reference counter, i.e. the ref counter instead
of ref_netlink.

Fixes: 24e227896bbf ("netfilter: ipset: Add schedule point in call_ad().")
Reported-by: Kyle Zeng <email address hidden>
Closes: https://lore.kernel.org/netfilter-devel/ZPZqetxOmH+w%2Fmyc@westworld/#r
Tested-by: Kyle Zeng <email address hidden>
Signed-off-by: Jozsef Kadlecsik <email address hidden>
Signed-off-by: Florian Westphal <email address hidden>
(cherry picked from commit 7433b6d2afd512d04398c73aa984d1e285be125b)
CVE-2023-42756
Signed-off-by: Thadeu Lima de Souza Cascardo <email address hidden>
Acked-by: Stefan Bader <email address hidden>
Acked-by: Tim Gardner <email address hidden>
Signed-off-by: Roxana Nicolescu <email address hidden>

5c85cd3... by Florian Westphal <email address hidden> on 2023-09-14

netfilter: nftables: exthdr: fix 4-byte stack OOB write

If priv->len is a multiple of 4, then dst[len / 4] can write past
the destination array which leads to stack corruption.

This construct is necessary to clean the remainder of the register
in case ->len is NOT a multiple of the register size, so make it
conditional just like nft_payload.c does.

The bug was added in 4.1 cycle and then copied/inherited when
tcp/sctp and ip option support was added.

Bug reported by Zero Day Initiative project (ZDI-CAN-21950,
ZDI-CAN-21951, ZDI-CAN-21961).

Fixes: 49499c3e6e18 ("netfilter: nf_tables: switch registers to 32 bit addressing")
Fixes: 935b7f643018 ("netfilter: nft_exthdr: add TCP option matching")
Fixes: 133dc203d77d ("netfilter: nft_exthdr: Support SCTP chunks")
Fixes: dbb5281a1f84 ("netfilter: nf_tables: add support for matching IPv4 options")
Signed-off-by: Florian Westphal <email address hidden>

CVE-2023-4881
(cherry picked from commit fd94d9dadee58e09b49075240fe83423eb1dcd36)
Signed-off-by: Thadeu Lima de Souza Cascardo <email address hidden>
Acked-by: Tim Gardner <email address hidden>
Acked-by: Roxana Nicolescu <email address hidden>
Signed-off-by: Stefan Bader <email address hidden>