Release Info

Advisory: CLSA-2023:1701799960

OS: Ubuntu 16.04 ELS

Public date: 2023-12-05 13:12:42

Project: linux

Version: 4.4.0-249.283

Errata link: https://errata.tuxcare.com/els_os/ubuntu16.04els/CLSA-2023-1701799960.html

Changelog

* CVE-url: https://ubuntu.com/security/CVE-2023-45871 - igb: Limit maximum frame Rx based on MTU - igb: Only sync size of expected frame in ethtool testing - igb: Add support for ethtool private flag to allow use of legacy Rx - igb: Add support for using order 1 pages to receive large frames - igb: set max size RX buffer when store bad packet is enabled * CVE-2023-31085 // CVE-url: https://ubuntu.com/security/CVE-2023-31085 - ubi: Refuse attaching if mtd's erasesize is 0 * CVE-2023-5717 // CVE-url: https://ubuntu.com/security/CVE-2023-5717 - perf: Disallow mis-matched inherited group reads * Bionic update: upstream stable patchset 2022-09-23 (LP: #1990698) // CVE- url: https://ubuntu.com/security/CVE-2022-3629 - vsock: Fix memory leak in vsock_connect() * Jammy update: v5.15.99 upstream stable release (LP: #2018438) // CVE-url: https://ubuntu.com/security/CVE-2023-1077 - sched/rt: pick_next_rt_entity(): check list_entry * CVE-url: https://ubuntu.com/security/CVE-2023-1077 - sched/debug: Add SCHED_WARN_ON() * CVE-url: https://ubuntu.com/security/CVE-2023-45863 - kobject: Fix slab-out-of-bounds in fill_kobj_path() * Jammy update: v5.15.100 upstream stable release (LP: #2020387) // CVE-url: https://ubuntu.com/security/CVE-2023-45862 - USB: ene_usb6250: Allocate enough memory for full object * CVE-url: https://ubuntu.com/security/CVE-2023-39189 - netfilter: nfnetlink_osf: avoid OOB read

Update

Update command: apt-get update apt-get --only-upgrade install linux*

Packages list

linux-buildinfo-4.4.0-249-tuxcare.els20-generic_4.4.0-249.283_amd64.deb linux-buildinfo-4.4.0-249-tuxcare.els20-lowlatency_4.4.0-249.283_amd64.deb linux-cloud-tools-4.4.0-249-tuxcare.els20_4.4.0-249.283_amd64.deb linux-cloud-tools-4.4.0-249-tuxcare.els20-generic_4.4.0-249.283_amd64.deb linux-cloud-tools-4.4.0-249-tuxcare.els20-lowlatency_4.4.0-249.283_amd64.deb linux-cloud-tools-common_4.4.0-249.283_all.deb linux-doc_4.4.0-249.283_all.deb linux-headers-4.4.0-249-tuxcare.els20_4.4.0-249.283_all.deb linux-headers-4.4.0-249-tuxcare.els20-generic_4.4.0-249.283_amd64.deb linux-headers-4.4.0-249-tuxcare.els20-lowlatency_4.4.0-249.283_amd64.deb linux-image-unsigned-4.4.0-249-tuxcare.els20-generic_4.4.0-249.283_amd64.deb linux-image-unsigned-4.4.0-249-tuxcare.els20-lowlatency_4.4.0-249.283_amd64.deb linux-libc-dev_4.4.0-249.283_amd64.deb linux-modules-4.4.0-249-tuxcare.els20-generic_4.4.0-249.283_amd64.deb linux-modules-4.4.0-249-tuxcare.els20-lowlatency_4.4.0-249.283_amd64.deb linux-modules-extra-4.4.0-249-tuxcare.els20-generic_4.4.0-249.283_amd64.deb linux-source-4.4.0_4.4.0-249.283_all.deb linux-tools-4.4.0-249-tuxcare.els20_4.4.0-249.283_amd64.deb linux-tools-4.4.0-249-tuxcare.els20-generic_4.4.0-249.283_amd64.deb linux-tools-4.4.0-249-tuxcare.els20-lowlatency_4.4.0-249.283_amd64.deb linux-tools-common_4.4.0-249.283_all.deb linux-tools-host_4.4.0-249.283_all.deb

CVEs

CVE-2022-3629
CVE-2023-39189
CVE-2023-5717
CVE-2023-45863
CVE-2023-45871
CVE-2023-31085
CVE-2023-1077
CVE-2023-45862