[CLSA-2025:1753083094] Fix of 10 CVEs

Type:

security

Severity:

Important

Release date:

2025-07-21 07:31:38 UTC

Description:

   * Focal update: v5.4.292 upstream stable release (LP: #2109357) // CVE-url:
     https://ubuntu.com/security/CVE-2025-37937
     - objtool, media: dib8000: Prevent divide-by-zero in dib8000_set_dds()
   * Focal update: v5.4.287 upstream stable release (LP: #2095145) // CVE-url:
     https://ubuntu.com/security/CVE-2024-53197
     - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox
       devices
   * Bionic update: upstream stable patchset 2023-01-20 (LP: #2003596) // CVE-
     url: https://ubuntu.com/security/CVE-2022-49909
     - Bluetooth: L2CAP: fix use-after-free in l2cap_conn_del()
   * Bionic update: upstream stable patchset 2022-07-25 (LP: #1982782) // CVE-
     url: https://ubuntu.com/security/CVE-2022-49530
     - drm/amd/pm: fix double free in si_parse_power_table()
   * CVE-url: https://ubuntu.com/security/CVE-2025-39688
     - nfsd: allow SC_STATUS_FREEABLE when searching via nfs4_lookup_stateid()
   * CVE-url: https://ubuntu.com/security/CVE-2024-50106
     - nfsd: simplify nfs4_put_deleg_lease calls
     - nfsd: factor out common delegation-destruction code
     - nfsd: Fix race to FREE_STATEID and cl_revoked
     - nfsd: don't call functions with side-effecting inside WARN_ON()
     - nfsd: remove fault injection code
     - nfsd: avoid race after unhash_delegation_locked()
     - nfsd: split sc_status out of sc_type
     - nfsd: fix race between laundromat and free_stateid
   * CVE-url: https://ubuntu.com/security/CVE-2024-35937
     - wifi: cfg80211: check A-MSDU format more carefully
   * CVE-url: https://ubuntu.com/security/CVE-2024-49966
     - ocfs2: cancel dqi_sync_work before freeing oinfo
   * CVE-url: https://ubuntu.com/security/CVE-2023-52588
     - f2fs: fix to tag gcing flag on page during block migration
   * CVE-url: https://ubuntu.com/security/CVE-2024-57798
     - drm/dp-mst-helper: Remove hotplug callback
     - drm/dp_mst: Remove huge conditional in drm_dp_mst_handle_up_req()
     - drm/dp_mst: Refactor drm_dp_mst_handle_up_req()
     - drm/dp_mst: Rename drm_dp_add_port and drm_dp_update_port
     - drm/dp_mst: Handle UP requests asynchronously
     - drm/dp_mst: Ensure mst_primary pointer is valid in
       drm_dp_mst_handle_up_req()
   * Miscellaneous Ubuntu changes
     - [Config] updateconfigs for NFSD_FAULT_INJECTION

Updated packages:

linux-buildinfo-4.4.0-276-tuxcare.els47-generic_4.4.0-276.310_amd64.deb
sha:66a05ef09b333e6f126bc32502ce644a32a07cfb
linux-buildinfo-4.4.0-276-tuxcare.els47-lowlatency_4.4.0-276.310_amd64.deb
sha:15242cbd6bb2a26180a0675f8560fa44b298b0f3
linux-cloud-tools-4.4.0-276-tuxcare.els47_4.4.0-276.310_amd64.deb
sha:2063a343b9cfc2bdcf9f8f8827372a443b7cd02c
linux-cloud-tools-4.4.0-276-tuxcare.els47-generic_4.4.0-276.310_amd64.deb
sha:d25acdfb243602595edbf7a7f0a92c07984f044b
linux-cloud-tools-4.4.0-276-tuxcare.els47-lowlatency_4.4.0-276.310_amd64.deb
sha:ca600c0ca6080102b9fcec29ef99ed7a2cc99d24
linux-cloud-tools-common_4.4.0-276.310_all.deb
sha:85c0d623c7b75aa6f7f8e6ffdfffca7e032b3482
linux-doc_4.4.0-276.310_all.deb
sha:776119cb2852e4803f4473a1547afe4fbe432975
linux-headers-4.4.0-276-tuxcare.els47_4.4.0-276.310_all.deb
sha:c0973fad8112116d2092f191217cdd9e3850ea31
linux-headers-4.4.0-276-tuxcare.els47-generic_4.4.0-276.310_amd64.deb
sha:aeb96f238c52a1d88555e969b2968f9fcc1ca1ec
linux-headers-4.4.0-276-tuxcare.els47-lowlatency_4.4.0-276.310_amd64.deb
sha:17230af4b159624f41558cbfa3b4389fde2f8300
linux-image-unsigned-4.4.0-276-tuxcare.els47-generic_4.4.0-276.310_amd64.deb
sha:6c80ae3f2cdbb4dffa4982036d8540f9f3ea8bb9
linux-image-unsigned-4.4.0-276-tuxcare.els47-lowlatency_4.4.0-276.310_amd64.deb
sha:6f5b019a9229fb58e717890aeac8c2e0f7148a0c
linux-libc-dev_4.4.0-276.310_amd64.deb
sha:835d18c8ba072a5539d07e84307647ba4eccd6bc
linux-modules-4.4.0-276-tuxcare.els47-generic_4.4.0-276.310_amd64.deb
sha:289af07ef75564771d74756c528e3a9ee9eedd67
linux-modules-4.4.0-276-tuxcare.els47-lowlatency_4.4.0-276.310_amd64.deb
sha:62bf012d533f8eb25c9f004db21500486fa667ec
linux-modules-extra-4.4.0-276-tuxcare.els47-generic_4.4.0-276.310_amd64.deb
sha:c91e4ed5cd0fee037f485520a7f7032a52bbf025
linux-source-4.4.0_4.4.0-276.310_all.deb
sha:7198fa5d18bd6c12d904a246b8027f43a01201b8
linux-tools-4.4.0-276-tuxcare.els47_4.4.0-276.310_amd64.deb
sha:7282e953aece0ddc20770ed356394acb3a761369
linux-tools-4.4.0-276-tuxcare.els47-generic_4.4.0-276.310_amd64.deb
sha:9968b01830e7b1b5e21a5b2574e88d96caa54632
linux-tools-4.4.0-276-tuxcare.els47-lowlatency_4.4.0-276.310_amd64.deb
sha:47cbf25dba7748bd00ee0e7ee7a30d06a61cd8b4
linux-tools-common_4.4.0-276.310_all.deb
sha:ea9f6b4cb1da561142429cdbb464dd296201de35
linux-tools-host_4.4.0-276.310_all.deb
sha:1da00e1db599a0455f5ce07ad471cb3f59bd53c6

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.