* [ANNOUNCE] Release v5.10.106-cip4 v4.19.235-cip70
@ 2022-03-29 9:36 nobuhiro1.iwamatsu
0 siblings, 0 replies; only message in thread
From: nobuhiro1.iwamatsu @ 2022-03-29 9:36 UTC (permalink / raw)
To: cip-dev; +Cc: pavel, uli, jan.kiszka, masami.ichikawa, Chris.Paterson2
Hi all,
CIP kernel team has released Linux kernel v5.10.106-cip4 and v4.19.235-cip70.
The linux-5.10.y-cip tree has been updated base version from v5.10.104 to v5.10.106.
and the linux-4.19.y-cip tree has been updated base version from v4.19.233 to v4.19.235.
There are no CIP-specific patches in this release.
Yoe can get this release via the git tree at:
v5.10.106-cip4:
repository:
https://git.kernel.org/pub/scm/linux/kernel/git/cip/linux-cip.git
branch:
linux-5.10.y-cip
commit hash:
8bb6e30b765989a3c0924158316d689e16317cd1
Fixed CVEs:
- CVE-2022-0995: watch_queue, pipe: Free watchqueue state after clearing pipe ring
- CVE-2022-23040: xen/xenbus: don't let xenbus_grant_ring() remove grants in error case
- CVE-2022-23036: xen/grant-table: add gnttab_try_end_foreign_access()
- CVE-2022-23038: xen/grant-table: add gnttab_try_end_foreign_access()
- CVE-2022-23037: xen/netfront: don't use gnttab_query_foreign_access() for mapped status
- CVE-2022-23038: xen/scsifront: don't use gnttab_query_foreign_access() for mapped status
- CVE-2022-23039: xen/gntalloc: don't use gnttab_query_foreign_access()
- CVE-2022-23041: xen/9p: use alloc/free_pages_exact()
- CVE-2022-23042: xen/netfront: react properly to failing gnttab_end_foreign_access_ref()
- CVE-2022-24958: usb: gadget: don't release an existing dev->buf
- CVE-2022-23960:
added commits:
CIP: Bump version suffix to -cip4 after merge from stable
v4.19.235-cip70:
repository:
https://git.kernel.org/pub/scm/linux/kernel/git/cip/linux-cip.git
branch:
linux-4.19.y-cip
commit hash:
91567a6adc2cb5217b6d7aabf7da3ac9ae6f1a79
Fixed CVEs:
- CVE-2022-23036: xen/grant-table: add gnttab_try_end_foreign_access()
- CVE-2022-23038: xen/grant-table: add gnttab_try_end_foreign_access()
- CVE-2022-23037: xen/netfront: don't use gnttab_query_foreign_access() for mapped status
- CVE-2022-23039: xen/gntalloc: don't use gnttab_query_foreign_access()
- CVE-2022-23041: xen/9p: use alloc/free_pages_exact()
- CVE-2022-23041: xen/gnttab: fix gnttab_end_foreign_access() without page specified
- CVE-2022-23042: xen/netfront: react properly to failing gnttab_end_foreign_access_ref()
- CVE-2022-24958: usb: gadget: don't release an existing dev->buf
- CVE-2021-4149: btrfs: unlock newly allocated extent buffer after error
- CVE-2022-24958: usb: gadget: don't release an existing dev->buf
added commits:
CIP: Bump version suffix to -cip70 after merge from stable
Best regards,
Nobuhiro
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2022-03-29 9:37 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-03-29 9:36 [ANNOUNCE] Release v5.10.106-cip4 v4.19.235-cip70 nobuhiro1.iwamatsu
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.