Ubuntu
linux package

linux 5.15.0-142.152 source package in Ubuntu

Changelog

linux (5.15.0-142.152) jammy; urgency=medium

  * jammy/linux: 5.15.0-142.152 -proposed tracker (LP: #2110829)

  * Rotate the Canonical Livepatch key (LP: #2111244)
    - [Config] Prepare for Canonical Livepatch key rotation

  * Jammy generic-64k fails to initialize gVNIC devices (LP: #2109537)
    - gve: Perform adminq allocations through a dma_pool.
    - gve: Deprecate adminq_pfn for pci revision 0x1.
    - gve: Remove obsolete checks that rely on page size.
    - gve: Add page size register to the register_page_list command.
    - gve: Remove dependency on 4k page size.

  * CVE-2025-2312 cifs.upcall could access incorrect kerberos credentials cache
    (LP: #2099914) // CVE-2025-2312
    - CIFS: New mount option for cifs.upcall namespace resolution

  * [UBUNTU 22.04] net/smc: fix neighbour and rtable leak in smc_ib_find_route()
    (LP: #2109601) // CVE-2024-36945
    - net/smc: fix neighbour and rtable leak in smc_ib_find_route()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355)
    - clockevents/drivers/i8253: Fix stop sequence for timer 0
    - sched/isolation: Prevent boot crash when the boot CPU is nohz_full
    - fbdev: hyperv_fb: iounmap() the correct memory when removing a device
    - pinctrl: bcm281xx: Fix incorrect regmap max_registers value
    - netfilter: nft_ct: Use __refcount_inc() for per-CPU nft_ct_pcpu_template.
    - net: dsa: mv88e6xxx: Verify after ATU Load ops
    - netpoll: hold rcu read lock in __netpoll_send_skb()
    - Drivers: hv: vmbus: Don't release fb_mmio resource in vmbus_free_mmio()
    - ipvs: prevent integer overflow in do_ip_vs_get_ctl()
    - netfilter: nft_exthdr: fix offset with ipv4_find_option()
    - gre: Fix IPv6 link-local address generation.
    - slab: clean up function prototypes
    - slab: Introduce kmalloc_size_roundup()
    - openvswitch: Use kmalloc_size_roundup() to match ksize() usage
    - net: openvswitch: remove misbehaving actions length check
    - net/mlx5e: Prevent bridge link show failure for non-eswitch-allowed devices
    - nvme-fc: go straight to connecting state when initializing
    - hrtimers: Mark is_migration_base() with __always_inline
    - powercap: call put_device() on an error path in
      powercap_register_control_type()
    - scsi: core: Use GFP_NOIO to avoid circular locking dependency
    - ACPI: resource: IRQ override for Eluktronics MECH-17
    - alpha/elf: Fix misc/setarch test of util-linux by removing 32bit support
    - vboxsf: fix building with GCC 15
    - HID: intel-ish-hid: fix the length of MNG_SYNC_FW_CLOCK in doorbell
    - sched: Clarify wake_up_q()'s write to task->wake_q.next
    - s390/cio: Fix CHPID "configure" attribute caching
    - thermal/cpufreq_cooling: Remove structure member documentation
    - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime()
    - ASoC: arizona/madera: use fsleep() in up/down DAPM event delays.
    - ASoC: SOF: Intel: hda: add softdep pre to snd-hda-codec-hdmi module
    - net: wwan: mhi_wwan_mbim: Silence sequence number glitch errors
    - nvmet-rdma: recheck queue state is LIVE in state lock in recv done
    - sctp: Fix undefined behavior in left shift operation
    - nvme: only allow entering LIVE from CONNECTING state
    - ASoC: tas2770: Fix volume scale
    - ASoC: tas2764: Fix power control mask
    - ASoC: tas2764: Set the SDOUT polarity correctly
    - fuse: don't truncate cached, mutated symlink
    - x86/irq: Define trace events conditionally
    - mptcp: safety check before fallback
    - drm/nouveau: Do not override forced connector status
    - block: fix 'kmem_cache of name 'bio-108' already exists'
    - USB: serial: ftdi_sio: add support for Altera USB Blaster 3
    - USB: serial: option: add Telit Cinterion FE990B compositions
    - USB: serial: option: fix Telit Cinterion FE990A name
    - USB: serial: option: match on interface class for Telit FN990B
    - drm/atomic: Filter out redundant DPMS calls
    - drm/amd/display: Restore correct backlight brightness after a GPU reset
    - qlcnic: fix memory leak issues in qlcnic_sriov_common.c
    - lib/buildid: Handle memfd_secret() files in build_id_parse()
    - tcp: fix races in tcp_abort()
    - ASoC: ops: Consistently treat platform_max as control value
    - drm/gma500: Add NULL check for pci_gfx_root in mid_get_vbt_data()
    - ASoC: codecs: wm0010: Fix error handling path in wm0010_spi_probe()
    - cifs: Fix integer overflow while processing actimeo mount option
    - i2c: ali1535: Fix an error handling path in ali1535_probe()
    - i2c: ali15x3: Fix an error handling path in ali15x3_probe()
    - i2c: sis630: Fix an error handling path in sis630_probe()
    - drm/amd/display: Check for invalid input params when building scaling params
    - smb: client: Fix match_session bug preventing session reuse
    - Revert "smb: client: fix potential UAF in cifs_debug_files_proc_show()"
    - smb: client: fix potential UAF in cifs_debug_files_proc_show()
    - firmware: imx-scu: fix OF node leak in .probe()
    - xfrm_output: Force software GSO only in tunnel mode
    - ARM: dts: bcm2711: PL011 UARTs are actually r1p5
    - RDMA/bnxt_re: Add missing paranthesis in map_qp_id_to_tbl_indx
    - ARM: dts: bcm2711: Don't mark timer regs unconfigured
    - RDMA/bnxt_re: Avoid clearing VLAN_ID mask in modify qp path
    - RDMA/hns: Remove redundant 'phy_addr' in hns_roce_hem_list_find_mtt()
    - RDMA/hns: Fix unmatched condition in error path of alloc_user_qp_db()
    - RDMA/hns: Fix a missing rollback in error path of
      hns_roce_create_qp_common()
    - RDMA/hns: Fix wrong value of max_sge_rd
    - ipv6: Set errno after ip_fib_metrics_init() in ip6_route_info_create().
    - net/neighbor: add missing policy for NDTPA_QUEUE_LENBYTES
    - Revert "gre: Fix IPv6 link-local address generation."
    - i2c: omap: fix IRQ storms
    - drm/v3d: Don't run jobs that have errors flagged in its fence
    - mmc: atmel-mci: Add missing clk_disable_unprepare()
    - ARM: shmobile: smp: Enforce shmobile_smp_* alignment
    - batman-adv: Ignore own maximum aggregation size during RX
    - drm/amdgpu: Fix JPEG video caps max size for navi1x and raven
    - mptcp: Fix data stream corruption in the address announcement
    - arm64: dts: rockchip: fix u2phy1_host status for NanoPi R4S
    - ALSA: usb-audio: Add quirk for Plantronics headsets to fix control names
    - HID: hid-plantronics: Add mic mute mapping and generalize quirks
    - ARM: 9350/1: fault: Implement copy_from_kernel_nofault_allowed()
    - ARM: 9351/1: fault: Add "cut here" line for prefetch aborts
    - ARM: Remove address checking for MMUless devices
    - ALSA: hda/realtek: Support mute LED on HP Laptop 15s-du3xxx
    - counter: stm32-lptimer-cnt: fix error handling when enabling
    - counter: microchip-tcb-capture: Fix undefined counter channel state on probe
    - tty: serial: 8250: Add some more device IDs
    - tty: serial: 8250: Add Brainboxes XC devices
    - net: usb: qmi_wwan: add Telit Cinterion FN990B composition
    - net: usb: qmi_wwan: add Telit Cinterion FE990B composition
    - net: usb: usbnet: restore usb%d name exception for local mac addresses
    - serial: 8250_dma: terminate correct DMA in tx_dma_flush()
    - x86/mm/pat: cpa-test: fix length for CPA_ARRAY test
    - cpufreq: scpi: compare kHz instead of Hz
    - cpufreq: governor: Fix negative 'idle_time' handling in dbs_update()
    - x86/fpu: Avoid copying dynamic FP state from init_task in
      arch_dup_task_struct()
    - x86/platform: Only allow CONFIG_EISA for 32-bit
    - [Config] updateconfigs for HAVE_EISA
    - PM: sleep: Adjust check before setting power.must_resume
    - selinux: Chain up tool resolving errors in install_policy.sh
    - EDAC/ie31200: Fix the size of EDAC_MC_LAYER_CHIP_SELECT layer
    - EDAC/ie31200: Fix the DIMM size mask for several SoCs
    - EDAC/ie31200: Fix the error path order of ie31200_init()
    - PM: sleep: Fix handling devices with direct_complete set on errors
    - lockdep: Don't disable interrupts on RT in disable_irq_nosync_lockdep.*()
    - perf/ring_buffer: Allow the EPOLLRDNORM flag for poll
    - media: platform: allgro-dvt: unregister v4l2_device on the error path
    - HID: remove superfluous (and wrong) Makefile entry for
      CONFIG_INTEL_ISH_FIRMWARE_DOWNLOADER
    - ALSA: hda/realtek: Always honor no_shutup_pins
    - ASoC: ti: j721e-evm: Fix clock configuration for ti,j7200-cpb-audio
      compatible
    - drm/bridge: ti-sn65dsi86: Fix multiple instances
    - drm/dp_mst: Fix drm RAD print
    - drm: xlnx: zynqmp: Fix max dma segment size
    - drm/mediatek: mtk_hdmi: Unregister audio platform device on failure
    - drm/mediatek: mtk_hdmi: Fix typo for aud_sampe_size member
    - PCI: cadence-ep: Fix the driver to send MSG TLP for INTx without data
      payload
    - PCI: brcmstb: Use internal register to change link capability
    - PCI/portdrv: Only disable pciehp interrupts early when needed
    - PCI: Avoid reset when disabled via sysfs
    - drm/amd/display: fix type mismatch in CalculateDynamicMetadataParameters()
    - PCI: Remove stray put_device() in pci_register_host_bridge()
    - PCI: xilinx-cpm: Fix IRQ domain leak in error path of probe
    - drm/mediatek: dsi: fix error codes in mtk_dsi_host_transfer()
    - PCI: pciehp: Don't enable HPIE when resuming in poll mode
    - fbdev: au1100fb: Move a variable assignment behind a null pointer check
    - mdacon: rework dependency list
    - fbdev: sm501fb: Add some geometry checks.
    - clk: amlogic: gxbb: drop incorrect flag on 32k clock
    - crypto: hisilicon/sec2 - fix for aead authsize alignment
    - of: property: Increase NR_FWNODE_REFERENCE_ARGS
    - remoteproc: qcom_q6v5_pas: Make single-PD handling more robust
    - libbpf: Fix hypothetical STT_SECTION extern NULL deref case
    - clk: qcom: gcc-msm8953: fix stuck venus0_core0 clock
    - bpf: Use preempt_count() directly in bpf_send_signal_common()
    - lib: 842: Improve error handling in sw842_compress()
    - pinctrl: renesas: rza2: Fix missing of_node_put() call
    - pinctrl: renesas: rzg2l: Fix missing of_node_put() call
    - clk: rockchip: rk3328: fix wrong clk_ref_usb3otg parent
    - remoteproc: qcom_q6v5_mss: Handle platforms with one power domain
    - IB/mad: Check available slots before posting receive WRs
    - pinctrl: tegra: Set SFIO mode to Mux Register
    - clk: amlogic: g12b: fix cluster A parent data
    - clk: amlogic: gxbb: drop non existing 32k clock parent
    - clk: amlogic: g12a: fix mmc A peripheral clock
    - x86/entry: Fix ORC unwinder for PUSH_REGS with save_ret=1
    - power: supply: max77693: Fix wrong conversion of charge input threshold
      value
    - crypto: nx - Fix uninitialised hv_nxc on error
    - mfd: sm501: Switch to BIT() to mitigate integer overflows
    - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to
      misplaced assignment
    - crypto: hisilicon/sec2 - fix for aead auth key length
    - clk: qcom: mmcc-sdm660: fix stuck video_subcore0 clock
    - isofs: fix KMSAN uninit-value bug in do_isofs_readdir()
    - soundwire: slave: fix an OF node reference leak in soundwire slave device
    - coresight: catu: Fix number of pages while using 64k pages
    - iio: accel: mma8452: Ensure error return on failure to matching oversampling
      ratio
    - iio: adc: ad7124: Fix comparison of channel configs
    - perf units: Fix insufficient array space
    - kexec: initialize ELF lowest address to ULONG_MAX
    - NFSv4: Don't trigger uneccessary scans for return-on-close delegations
    - fuse: fix dax truncate/punch_hole fault path
    - i3c: master: svc: Fix missing the IBI rules
    - perf python: Fixup description of sample.id event member
    - perf python: Decrement the refcount of just created event on failure
    - perf python: Don't keep a raw_data pointer to consumed ring buffer space
    - perf python: Check if there is space to copy all the event
    - fs/procfs: fix the comment above proc_pid_wchan()
    - objtool, media: dib8000: Prevent divide-by-zero in dib8000_set_dds()
    - exfat: fix the infinite loop in exfat_find_last_cluster()
    - ksmbd: fix multichannel connection failure
    - ring-buffer: Fix bytes_dropped calculation issue
    - ACPI: processor: idle: Return an error if both P_LVL{2,3} idle states are
      invalid
    - octeontx2-af: Fix mbox INTR handler when num VFs > 64
    - octeontx2-af: Free NIX_AF_INT_VEC_GEN irq
    - sched/smt: Always inline sched_smt_active()
    - wifi: iwlwifi: fw: allocate chained SG tables for dump
    - nvme-tcp: fix possible UAF in nvme_tcp_poll
    - nvme-pci: clean up CMBMSC when registering CMB fails
    - nvme-pci: skip CMB blocks incompatible with PCI P2P DMA
    - affs: generate OFS sequence numbers starting at 1
    - affs: don't write overlarge OFS data block size fields
    - sched/deadline: Use online cpus for validating runtime
    - locking/semaphore: Use wake_q to wake up processes outside lock critical
      section
    - x86/sgx: Warn explicitly if X86_FEATURE_SGX_LC is not enabled
    - drm/amd: Keep display off while going into S4
    - ALSA: hda/realtek: Add mute LED quirk for HP Pavilion x360 14-dy1xxx
    - can: statistics: use atomic access in hot path
    - hwmon: (nct6775-core) Fix out of bounds access for NCT679{8,9}
    - riscv: ftrace: Add parentheses in macro definitions of make_call_t0 and
      make_call_ra
    - ntb: intel: Fix using link status DB's
    - netfilter: nft_set_hash: GC reaps elements with conncount for dynamic sets
      only
    - vsock: avoid timeout during connect() if the socket is closing
    - tunnels: Accept PACKET_HOST in skb_tunnel_check_pmtu().
    - ipv6: fix omitted netlink attributes when using RTEXT_FILTER_SKIP_STATS
    - can: flexcan: only change CAN state when link up in system PM
    - can: flexcan: disable transceiver during system PM
    - mmc: sdhci-brcmstb: Add ability to increase max clock rate for 72116b0
    - mmc: sdhci-brcmstb: add cqhci suspend/resume to PM ops
    - tty: serial: fsl_lpuart: use UARTMODIR register bits for lpuart32 platform
    - tty: serial: fsl_lpuart: disable transmitter before changing RS485 related
      registers
    - platform/x86: ISST: Correct command storage data length
    - ntb_perf: Delete duplicate dmaengine_unmap_put() call in perf_copy_chunk()
    - x86/tsc: Always save/restore TSC sched_clock() on suspend/resume
    - ACPI: resource: Skip IRQ override on ASUS Vivobook 14 X1404VAP
    - mmc: sdhci-pxav3: set NEED_RSP_BUSY capability
    - tracing: Ensure module defining synth event cannot be unloaded while tracing
    - tracing: Fix synth event printk format for str fields
    - tracing/osnoise: Fix possible recursive locking for cpus_read_lock()
    - ext4: don't over-report free space or inodes in statvfs
    - jfs: add index corruption check to DT_GETPAGE()
    - NFSD: Skip sending CB_RECALL_ANY when the backchannel isn't up
    - mmc: sdhci-brcmstb: use clk_get_rate(base_clk) in PM resume
    - mm, slab: remove duplicate kernel-doc comment for ksize()
    - tracing: Do not use PERF enums when perf is not defined
    - mmc: sdhci-brcmstb: Initialize base_clk to NULL in sdhci_brcmstb_probe()
    - Linux 5.15.180

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22025
    - nfsd: put dl_stid if fail to queue dl_recall

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-39735
    - jfs: fix slab-out-of-bounds read in ea_get()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-37785
    - ext4: fix OOB read when checking dotdot dir

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22035
    - tracing: Fix use-after-free in print_graph_function_flags during tracer
      switching

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22044
    - acpi: nfit: fix narrowing conversion in acpi_nfit_ctl

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22045
    - x86/mm: Fix flush_tlb_range() when used for zapping normal PMDs

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2024-46753
    - btrfs: handle errors from btrfs_dec_ref() properly

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22050
    - usbnet:fix NPE during rx_complete

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2024-46812
    - drm/amd/display: Skip inactive planes within
      ModeSupportAndSystemConfiguration

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2024-46821
    - drm/amd/pm: Fix negative array index read

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22054
    - arcnet: Add NULL check in com20020pci_probe()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22055
    - net: fix geneve_opt length integer overflow

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22056
    - netfilter: nft_tunnel: fix geneve_opt type confusion addition

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22060
    - net: mvpp2: Prevent parser TCAM memory corruption

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-38637
    - net_sched: skbprio: Remove overly strict queue assertions

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22063
    - netlabel: Fix NULL pointer exception caused by CALIPSO on IPv4 sockets

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22066
    - ASoC: imx-card: Add NULL check in imx_card_probe()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2023-53034
    - ntb_hw_switchtec: Fix shift-out-of-bounds in switchtec_ntb_mw_set_trans

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22071
    - spufs: fix a leak in spufs_create_context()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22073
    - spufs: fix a leak on spufs_new_file() failure

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21994
    - ksmbd: fix incorrect validation for num_aces field of smb_acl

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-38575
    - ksmbd: use aead_request_free to match aead_request_alloc

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22075
    - rtnetlink: Allocate vfinfo size for VF GUIDs when supported

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22079
    - ocfs2: validate l_tree_depth to avoid out-of-bounds access

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22081
    - fs/ntfs3: Fix a couple integer overflows on 32bit systems

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22086
    - RDMA/mlx5: Fix mlx5_poll_one() cur_qp update flow

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22089
    - RDMA/core: Don't expose hw_counters outside of init net namespace

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-39728
    - clk: samsung: Fix UBSAN panic in samsung_clk_init()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-38152
    - remoteproc: core: Clear table_sz when rproc_shutdown

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2024-58093
    - PCI/ASPM: Fix link state exit during switch upstream function removal

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22097
    - drm/vkms: Fix use after free and double free on init error

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-23136
    - thermal: int340x: Add NULL check for adev

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-23138
    - watch_queue: fix pipe accounting mismatch

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22020
    - memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22021
    - netfilter: socket: Lookup orig tuple for IPv6 SNAT

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22018
    - atm: Fix NULL pointer dereference

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2024-56664
    - bpf, sockmap: Fix race between element replace and close()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2024-53144 // CVE-2024-8805
    - Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21996
    - drm/radeon: fix uninitialized size issue in radeon_vce_cs_parse()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22014
    - soc: qcom: pdr: Fix the potential deadlock

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21999
    - proc: fix UAF in proc_get_inode()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22008
    - regulator: check that dummy regulator has been probed before using it

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22004
    - net: atm: fix use after free in lec_send()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22005
    - ipv6: Fix memleak of nhc_pcpu_rth_output in fib_check_nh_v6_gw().

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22007
    - Bluetooth: Fix error code in chan_alloc_skb_cb()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-22010
    - RDMA/hns: Fix soft lockup during bt pages loop

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21941
    - drm/amd/display: Fix null check for pipe_ctx->plane_state in
      resource_build_scaling_params

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21962
    - cifs: Fix integer overflow while processing closetimeo mount option

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21963
    - cifs: Fix integer overflow while processing acdirmax mount option

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21964
    - cifs: Fix integer overflow while processing acregmax mount option

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21968
    - drm/amd/display: Fix slab-use-after-free on hdcp_work

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21956
    - drm/amd/display: Assign normalized_pix_clk when color depth = 14

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21991
    - x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21992
    - HID: ignore non-functional sensor in HP 5MP Camera

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21957
    - scsi: qla1280: Fix kernel oops when debug level > 2

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21970
    - net/mlx5: Bridge, fix the crash caused by LAG state check

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21959
    - netfilter: nf_conncount: Fully initialize struct nf_conncount_tuple in
      insert_tree()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21975
    - net/mlx5: handle errors in mlx5_chains_create_table()

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2025-21981
    - ice: fix memory leak in aRFS after reset

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2022-49728
    - ipv6: Fix signed integer overflow in __ip6_append_data

  * Jammy update: v5.15.180 upstream stable release (LP: #2109355) //
    CVE-2022-49636
    - vlan: fix memory leak in vlan_newlink()

  * VM boots slowly with large-BAR GPU Passthrough due to pci/probe.c redundancy
    (LP: #2097389)
    - PCI: Batch BAR sizing operations

  * kexec fails in LPAR when some cpus are disabled (LP: #2075575)
    - powerpc/pseries: Fix scv instruction crash with kexec

  * CVE-2024-56608
    - drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create'

  * CVE-2024-53168
    - net: make sock_inuse_add() available
    - sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket

  * CVE-2024-56551
    - drm/amdgpu: fix usage slab after free

  * Packaging resync (LP: #1786013)
    - [Packaging] update annotations scripts

 -- Stefan Bader <email address hidden>  Mon, 19 May 2025 12:17:06 +0200

Upload details

Uploaded by:
Stefan Bader
Uploaded to:
Jammy
Original maintainer:
Ubuntu Kernel Team
Architectures:
all amd64 armhf arm64 ppc64el s390x i386 riscv64
Section:
devel
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Jammy proposed main devel

Downloads

File Size SHA-256 Checksum
linux_5.15.0.orig.tar.gz 185.9 MiB 4d7908da75ad50a70a0141721e259c2589b7bdcc317f7bd885b80c2ffa689211
linux_5.15.0-142.152.diff.gz 11.2 MiB 46f1a2fab2bb8cd2c88941d56f8fc898e359df64f42d0dc7f1d37152e36acdad
linux_5.15.0-142.152.dsc 7.6 KiB 9b5c134ad1bc36990929e906524c51da3b9fc140cd50c09f050e9c69afea4db2

Available diffs

View changes file

Binary packages built by this source

linux-buildinfo-5.15.0-142-generic: Linux kernel buildinfo for version 5.15.0 on ARMv8 SMP

 This package contains the Linux kernel buildinfo for version 5.15.0 on
 ARMv8 SMP.
 .
 You likely do not want to install this package.

linux-buildinfo-5.15.0-142-generic-64k: Linux kernel buildinfo for version 5.15.0 on ARMv8 SMP

 This package contains the Linux kernel buildinfo for version 5.15.0 on
 ARMv8 SMP.
 .
 You likely do not want to install this package.

linux-buildinfo-5.15.0-142-generic-lpae: Linux kernel buildinfo for version 5.15.0 on ARM (hard float) SMP

 This package contains the Linux kernel buildinfo for version 5.15.0 on
 ARM (hard float) SMP.
 .
 You likely do not want to install this package.

linux-cloud-tools-5.15.0-142: Linux kernel version specific cloud tools for version 5.15.0-142

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud tools for version 5.15.0-142 on
 64 bit x86.
 You probably want to install linux-cloud-tools-5.15.0-142-<flavour>.

linux-cloud-tools-5.15.0-142-generic: Linux kernel version specific cloud tools for version 5.15.0-142

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud for version 5.15.0-142 on
 64 bit x86.

linux-cloud-tools-common: Linux kernel version specific cloud tools for version 5.15.0

 This package provides the architecture independent parts for kernel
 version locked tools for cloud tools for version 5.15.0.

linux-doc: Linux kernel specific documentation for version 5.15.0

 This package provides the various documents in the 5.15.0 kernel
 Documentation/ subdirectory. These document kernel subsystems, APIs, device
 drivers, and so on. See
 /usr/share/doc/linux-doc/00-INDEX for a list of what is
 contained in each file.

linux-headers-5.15.0-142: Header files related to Linux kernel version 5.15.0

 This package provides kernel header files for version 5.15.0, for sites
 that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-5.15.0-142/debian.README.gz for details

linux-headers-5.15.0-142-generic: Linux kernel headers for version 5.15.0 on ARMv8 SMP

 This package provides kernel header files for version 5.15.0 on
 ARMv8 SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-5.15.0-142/debian.README.gz for details.

linux-headers-5.15.0-142-generic-64k: Linux kernel headers for version 5.15.0 on ARMv8 SMP

 This package provides kernel header files for version 5.15.0 on
 ARMv8 SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-5.15.0-142/debian.README.gz for details.

linux-headers-5.15.0-142-generic-lpae: Linux kernel headers for version 5.15.0 on ARM (hard float) SMP

 This package provides kernel header files for version 5.15.0 on
 ARM (hard float) SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-5.15.0-142/debian.README.gz for details.

linux-image-5.15.0-142-generic: Signed kernel image generic

 A kernel image for generic. This version of it is signed with
 Canonical's signing key.

linux-image-5.15.0-142-generic-dbgsym: Signed kernel image generic

 A link to the debugging symbols for the generic signed kernel.

linux-image-5.15.0-142-generic-lpae: Linux kernel image for version 5.15.0 on ARM (hard float) SMP

 This package contains the Linux kernel image for version 5.15.0 on
 ARM (hard float) SMP.
 .
 Supports Generic LPAE processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic-lpae meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-5.15.0-142-generic-lpae-dbgsym: Linux kernel debug image for version 5.15.0 on ARM (hard float) SMP

 This package provides the kernel debug image for version 5.15.0 on
 ARM (hard float) SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-image-unsigned-5.15.0-142-generic: Linux kernel image for version 5.15.0 on ARMv8 SMP

 This package contains the unsigned Linux kernel image for version 5.15.0 on
 ARMv8 SMP.
 .
 Supports Generic processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-unsigned-5.15.0-142-generic-64k: Linux kernel image for version 5.15.0 on ARMv8 SMP

 This package contains the unsigned Linux kernel image for version 5.15.0 on
 ARMv8 SMP.
 .
 Supports Generic 64K pages processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic-64k meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-unsigned-5.15.0-142-generic-64k-dbgsym: Linux kernel debug image for version 5.15.0 on ARMv8 SMP

 This package provides the unsigned kernel debug image for version 5.15.0 on
 ARMv8 SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-image-unsigned-5.15.0-142-generic-dbgsym: Linux kernel debug image for version 5.15.0 on ARMv8 SMP

 This package provides the unsigned kernel debug image for version 5.15.0 on
 ARMv8 SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-libc-dev: Linux Kernel Headers for development

 This package provides headers from the Linux kernel. These headers
 are used by the installed headers for GNU glibc and other system
 libraries. They are NOT meant to be used to build third-party modules for
 your kernel. Use linux-headers-* packages for that.

linux-modules-5.15.0-142-generic: Linux kernel extra modules for version 5.15.0 on ARMv8 SMP

 Contains the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Generic processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-modules-5.15.0-142-generic-64k: Linux kernel extra modules for version 5.15.0 on ARMv8 SMP

 Contains the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Generic 64K pages processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic-64k meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-modules-5.15.0-142-generic-lpae: Linux kernel extra modules for version 5.15.0 on ARM (hard float) SMP

 Contains the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Generic LPAE processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic-lpae meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-modules-extra-5.15.0-142-generic: Linux kernel extra modules for version 5.15.0 on ARMv8 SMP

 This package contains the Linux kernel extra modules for version 5.15.0 on
 ARMv8 SMP.
 .
 Also includes the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports Generic processors.
 .
 Geared toward desktop and server systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-generic meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-modules-iwlwifi-5.15.0-142-generic: Linux kernel iwlwifi modules for version 5.15.0-142

 This package provides the Linux kernel iwlwifi modules for version
 5.15.0-142.
 .
 You likely do not want to install this package directly. Instead, install the
 one of the linux-modules-iwlwifi-generic* meta-packages,
 which will ensure that upgrades work correctly, and that supporting packages are
 also installed.

linux-source-5.15.0: Linux kernel source for version 5.15.0 with Ubuntu patches

 This package provides the source code for the Linux kernel version
 5.15.0.
 .
 This package is mainly meant for other packages to use, in order to build
 custom flavours.
 .
 If you wish to use this package to create a custom Linux kernel, then it
 is suggested that you investigate the package kernel-package, which has
 been designed to ease the task of creating kernel image packages.
 .
 If you are simply trying to build third-party modules for your kernel,
 you do not want this package. Install the appropriate linux-headers
 package instead.

linux-tools-5.15.0-142: Linux kernel version specific tools for version 5.15.0-142

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 5.15.0-142 on
 ARMv8.
 You probably want to install linux-tools-5.15.0-142-<flavour>.

linux-tools-5.15.0-142-generic: Linux kernel version specific tools for version 5.15.0-142

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 5.15.0-142 on
 ARMv8.

linux-tools-5.15.0-142-generic-64k: Linux kernel version specific tools for version 5.15.0-142

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 5.15.0-142 on
 ARMv8.

linux-tools-5.15.0-142-generic-lpae: Linux kernel version specific tools for version 5.15.0-142

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 5.15.0-142 on
 ARM (hard float).

linux-tools-common: Linux kernel version specific tools for version 5.15.0

 This package provides the architecture independent parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 5.15.0.

linux-tools-host: Linux kernel VM host tools

 This package provides kernel tools useful for VM hosts.