Wiki - https://fedoraproject.org/wiki/Changes/Setuptools_74%2B
Discussion Thread -
https://discussion.fedoraproject.org/t/f42-change-proposal-setuptools-74-system-wide/132052
This is a proposed Change for Fedora Linux.
This document represents a proposed Change. As part of the Changes
process, proposals are publicly announced in order to receive
community feedback. This proposal will only be implemented if approved
by the Fedora Engineering Steering Committee.
== Summary ==
Update to a new upstream release of {{package|python-setuptools}} that
is not completely compatible with previous releases. Most notably,
version 72.0.0 removed support for the `setup.py test` command
(deprecated for 5 years). This is a breaking change and Fedora
packages that use the `setup.py test` command during the build need to
be adapted to use a different test runner, such as unittest, pytest,
etc.
There might be other breaking changes. We estimate 142 to 196 Fedora
Rawhide packages to fail to build due to this upgrade (as of Sep
2024).
== Owner ==
* Name: [[User:Churchyard|Miro HronĨok]]
* Email: mhroncok@redhat.com
== Detailed Description ==
Setuptools is a package development process library designed to
facilitate packaging Python projects by enhancing the former Python
standard library distutils (distribution utilities). It changes fast
and it often introduces breaking changes such as the removal of the
`setup.py test` command in version 72.0.0 which was deprecated since
2019.
If your Fedora package still uses the `setup.py test` command
(deprecated for 5 years), please update to `%pytest`, `%tox`,
`%{python3} -m unittest`, etc.
List of packages that will likely fail to build, because they use the
removed `setup.py test` command in the specfile:
$ rg '^[^-#].+(\b|_)setup(\.py|\})\s+test\b' -l | sed -E
's|^rpm-specs/(.+)\.spec$|\1|' | sort
adapt
ansible-inventory-grapher
binwalk
btrfs-sxbackup
calibre
cepces
classification-banner
ddiskit
fprettify
fros
grammalecte
gtts
gtts-token
hddfancontrol
hgsvn
ioc-writer
isrcsubmit
kitty
lazygal
libvirt-test-API
mopidy
mopidy-mpd
nototools
past-time
petsc
pycairo
PyGreSQL
pyjokes
pyowm
python3-lxc
python3-mallard-ducktype
python-aioresponses
python-apsw
python-auth-credential
python-autopage
python-binaryornot
python-booleanoperations
python-bracex
python-can
python-case
python-casttube
python-cccolutils
python-chai
python-cliff
python-collada
python-colorclass
python-CommonMark
python-cpuinfo
python-cwcwidth
python-cx-oracle
python-decorator
python-dfdatetime
python-dictdiffer
python-digitalocean
python-dirq
python-distroinfo
python-django-contrib-comments
python-django-prometheus
python-dkimpy
python-enlighten
python-epub
python-events
python-fedmsg-meta-fedora-infrastructure
python-flask-wtf-decorators
python-flask-xml-rpc
python-flufl-i18n
python-fontMath
python-freeipa
python-gammu
python-genshi
python-genty
python-geojson
python-gerritlib
python-glyphsLib
python-gmqtt
python-hgapi
python-html5-parser
python-httpsig-cffi
python-hypothesis-fspaths
python-imagehash
python-ipgetter2
python-iptools
python-jack-client
python-jcconv
python-jinja2_pluralize
python-jinja2-time
python-journal-brief
python-json-minify
python-jsonpath-ng
python-jsonpath-rw
python-klusta
python-launchpadlib
python-lazr-uri
python-libusb1
python-lupa
python-markups
python-messaging
python-moksha-hub
python-murano-pkg-check
python-mutatormath
python-mwclient
python-neurosynth
python-num2words
python-oletools
python-openidc-client
python-oslo-context
python-oslo-metrics
python-os-service-types
python-ouimeaux
python-pdfkit
python-phonenumbers
python-poyo
python-pyasn1
python-pyclipper
python-pycryptodomex
python-pydispatcher
python-pyfim
python-pymediainfo
python-pyramid_sawing
python-pyramid-tm
python-pysignals
python-pysocks
python-pystray
python-pyte
python-pytest-fixture-config
python-pytest-flakes
python-pytest-runner
python-pytimeparse
python-repoze-lru
python-rmtest
python-rsd-lib
python-scripttest
python-serpy
python-shodan
python-simplegeneric
python-simplevisor
python-singledispatch
python-slacker
python-smartypants
python-sphinxcontrib-autoprogram
python-sphinxcontrib-trio
python-sql
python-ssdeep
python-statsd
python-svg-path
python-testscenarios
python-textile
python-textparser
python-tgscheduler
python-tidy
python-timeout-decorator
python-tosca-parser
python-translationstring
python-tree-format
python-typing-inspect
python-volatile
python-wadllib
python-whoosh
python-wsgi_intercept
python-www-authenticate
python-xmp-toolkit
python-xunitparser
python-yapsy
python-yaql
python-zc-customdoctests
python-zc-lockfile
python-zope-deprecation
python-zope-testing
python-zstd
sepolicy_analysis
tpm2-pkcs11
transifex-client
List of packages that actually failed in our
[https://copr.fedorainfracloud.org/coprs/churchyard/setuptools-74/
testing copr] but did not fail in a control copr:
ansible-inventory-grapher
btrfs-sxbackup
cepces
classification-banner
ddiskit
flent
fprettify
fros
gpgme
grammalecte
grpc
hddfancontrol
ioc-writer
lazygal
mopidy
mopidy-mpd
mozjs102
past-time
PyGreSQL
pyproject-rpm-macros
python3-lxc
python3-mallard-ducktype
python-aioresponses
python-binaryornot
python-bracex
python-case
python-cccolutils
python-chai
python-cliff
python-collada
python-colorclass
python-cpuinfo
python-cwcwidth
python-daemon
python-decorator
python-dfdatetime
python-digitalocean
python-distroinfo
python-django-contrib-comments
python-django-prometheus
python-epub
python-events
python-flake8-class-newline
python-flask-wtf-decorators
python-flask-xml-rpc
python-flufl-i18n
python-fontMath
python-freeipa
python-genshi
python-genty
python-geojson
python-hypothesis-fspaths
python-imagehash
python-iptools
python-jack-client
python-jcconv
python-jinja2_pluralize
python-jinja2-time
python-json-minify
python-jsonpath-ng
python-jsonpath-rw
python-jupyter-packaging
python-klusta
python-launchpadlib
python-lazr-uri
python-libusb1
python-lupa
python-markups
python-moksha-hub
python-mutatormath
python-mwclient
python-nose
python-oletools
python-openidc-client
python-oslo-context
python-oslo-metrics
python-ouimeaux
python-parsel
python-pdfkit
python-phonenumbers
python-poyo
python-pyasn1
python-pycdio
python-pyclipper
python-pydispatcher
python-pyemd
python-pygmtools
python-pymediainfo
python-pyproject-api
python-pyproject-hooks
python-pyramid_sawing
python-pyramid-tm
python-pysignals
python-pysrt
python-pytaglib
python-pyte
python-pytest-fixture-config
python-pytest-flakes
python-pytest-runner
python-pytimeparse
python-pyvmomi
python-repoze-lru
python-rmtest
python-robot-detection
python-scikit-build
python-scripttest
python-serpy
python-simplegeneric
python-singledispatch
python-slacker
python-sphinxcontrib-autoprogram
python-sphinxcontrib-trio
python-sql
python-ssdeep
python-statsd
python-svg-path
python-testscenarios
python-textparser
python-tgscheduler
python-timeout-decorator
python-translationstring
python-tree-format
python-trml2pdf
python-typing-inspect
python-virtualenv
python-volatile
python-wadllib
python-whoosh
python-wsgi_intercept
python-www-authenticate
python-xmp-toolkit
python-xunitparser
python-yaql
python-zc-customdoctests
python-zc-lockfile
python-zope-deprecation
python-zope-testing
python-zope-testrunner
python-zstd
sentencepiece
tpm2-pkcs11
transifex-client
Both lists together, by maintainers:
abbra python-whoosh
abompard python-flufl-i18n python-jinja2_pluralize
python-pyramid_sawing python-pysocks python-translationstring
python-zope-deprecation python-zope-testing python-zope-testrunner
adamwill python-mwclient
adrian flent
aekoroglu python-django-prometheus python-pytaglib python-repoze-lru
python-serpy python-xunitparser
ajax binwalk
alexl pycairo
amigadave isrcsubmit python3-mallard-ducktype
amoralej python-rsd-lib python-yaql
ankursinha python-klusta python-num2words python-pyemd python-pyfim
apevec python-oslo-context python-testscenarios python-wsgi_intercept
asn cepces
athoscr python-booleanoperations python-epub python-fontMath
python-glyphsLib python-mutatormath python-pyclipper
atim kitty
aviso python-enlighten
besser82 python-jcconv
caolanm pycairo
carlwgeorge python-pyproject-hooks
chandankumar python-oslo-context python-tosca-parser python-wsgi_intercept
chedi python-jinja2-time python-poyo python-pytest-flakes
python-tree-format
chkr calibre
churchyard pyproject-rpm-macros python-genty python-launchpadlib
python-lazr-uri python-nose python-scripttest python-simplegeneric
python-virtualenv python-wadllib
cicku python-apsw
ckalina ddiskit
cottsay python-flake8-class-newline
cqi python-django-contrib-comments
cstratak python-virtualenv
dcallagh python-phonenumbers python-www-authenticate
dcavalca tpm2-pkcs11
dchen cepces
defolos grpc
dfateyev python-apsw
dherrera python-pytest-runner
dminer python-zstd
dshea python-jinja2_pluralize
echevemaster python-pydispatcher transifex-client
eeickmeyer python-jack-client
esyr ddiskit
fab ioc-writer past-time python-cx-oracle python-dfdatetime
python-geojson python-gmqtt python-imagehash python-ipgetter2
python-jsonpath-ng python-jsonpath-rw python-shodan python-slacker
python-textparser python-zc-customdoctests
fale python-decorator python-pyvmomi
fed500 python-pygmtools
fedepell python-jinja2-time
filiperosset hddfancontrol
fjanus PyGreSQL
frantisekz mozjs102
frostyx python-flask-wtf-decorators
fschwarz python-digitalocean python-genshi
girst mopidy mopidy-mpd
gsauthof python-aioresponses
gui1ty python-moksha-hub
hhorak PyGreSQL
hiwkby python-oslo-metrics
hobbes1069 python-collada
hvad python-events
ignatenkobrain python-pytest-flakes python-simplegeneric
jamatos python-markups python-smartypants
jcapitao python-cliff python-distroinfo python-timeout-decorator
jcaratzas python-repoze-lru python-simplegeneric
python-singledispatch python-sphinxcontrib-trio python-zc-lockfile
jjelen tpm2-pkcs11
jkucera gpgme
jmontleon python-dictdiffer
jonathanspw kitty python-freeipa python-parsel python-pystray
python-pytest-runner python-zstd
jonny python-libusb1
jorti python-pysrt
jpena python-murano-pkg-check python-tosca-parser
jruzicka python-tosca-parser
jujens python-CommonMark python-hgapi
jussilehtola fprettify
kalev pycairo
kevin calibre python-chai python-decorator python-html5-parser
python-pycdio python-pyramid-tm python-pysocks
python-pytest-fixture-config python-svg-path python-tgscheduler
kni python-ouimeaux python-pysignals
ktdreyer python-testscenarios
kushal python-daemon
laxathom python-gammu
lbalhar python-jupyter-packaging python-pyproject-api
python-pyproject-hooks python-virtualenv
lbazan python-neurosynth transifex-client
lberk python-rmtest
lbrabec python-xunitparser
lcons python-auth-credential python-dirq python-messaging
python-simplevisor
lecris python-scikit-build
limb python-typing-inspect
lnie libvirt-test-API
lyessaadi python-yapsy
maha python-sphinxcontrib-autoprogram
melmorabity grammalecte python-pycryptodomex
mfabian nototools
mhayden python-virtualenv
mhlavink gpgme
mohanboddu python-openidc-client
mrc0mmand gpgme
mrunge python-pytimeparse python-singledispatch
python-testscenarios python-virtualenv
nathans python-rmtest
nb python-digitalocean
neil grpc python-gerritlib
ngompa python-case python-dkimpy python-freeipa python-pystray
python-robot-detection python-zstd
opohorel python-launchpadlib python-lazr-uri python-wadllib
orion python-virtualenv python-zope-testing
orphan python-case python-fedmsg-meta-fedora-infrastructure
python-hypothesis-fspaths python-iptools
osloup PyGreSQL
pbrobinson adapt gtts gtts-token pyjokes python-can python-casttube tpm2-pkcs11
peter python-libusb1
pingou python-binaryornot python-case python-chai python-flask-xml-rpc
pkubat PyGreSQL
pnemade ansible-inventory-grapher python-bracex python-cpuinfo
poros ddiskit
praiskup PyGreSQL
puiterwijk python-cccolutils
pwhalen pyjokes pyowm
pwu nototools
qulogic python-json-minify python-xmp-toolkit
radez python-zc-lockfile python-zope-testing
raphgro python-pdfkit python-pyvmomi
rathann lazygal
rcallicotte python-pyvmomi
rcritten cepces python-pyasn1
rdieter gpgme python-mwclient
rebus python-colorclass python-oletools
rhughes pycairo
robert python-oletools
rstrode pycairo
sagitter petsc
salimma kitty python-lupa python-pytest-runner
python-robot-detection python-volatile python-zope-testrunner
python-zstd
sergiomb python-gammu
sgallagh python-whoosh
sharkcz python-sql
shoracek tpm2-pkcs11
slinabery python-jsonpath-rw
solopasha kitty
spichugi python-pyasn1
suve python-ssdeep
swt2c binwalk
tdecacqu python-statsd
terjeros hgsvn python-cwcwidth python-httpsig-cffi python-pyte python-tidy
tflink python-xunitparser
thebeanogamer classification-banner
thm python-sphinxcontrib-trio python-textile python3-lxc
thofmann btrfs-sxbackup
thrnciar python-scikit-build
tieugene python-trml2pdf
tohojo flent
tomspur python-daemon python-simplegeneric
topazus sentencepiece
trawets fros
ttorling python-pysocks
twaugh python-journal-brief
vascom python-pymediainfo
vmojzis sepolicy_analysis
vtrefny python-pytimeparse
xavierb python-daemon
ykarel python-os-service-types
zaneb python-autopage
zawertun kitty
zbyszek calibre
zsun ddiskit
We will be slowly crushing the failures and opening bugzillas before
we actually update setuptools.
== Feedback ==
python-devel thread from August 2024:
https://lists.fedoraproject.org/archives/list/python-devel@lists.fedoraproject.org/thread/YOC5527SRKNY2XG6CMS3KNGJ54O7SMXI/
Listed ~200 packages, ~30 were fixed in a month. Thank you, maintainers!
== Benefit to Fedora ==
Fedora offers cutting-edge technologies for Python and setuptools is
one of the most important Python packages. By doing this update we
bring users the latest features that setuptools offers and also we
enable Fedora 42+ to receive future updates as well.
== Scope ==
* Proposal owners: update python-setuptools to 74.x.x or newer, open
bugzillas, provide help
* Other developers: report problems to the upstream and backport
patches to the affected packages. The impact can be tested using
[https://copr.fedorainfracloud.org/coprs/churchyard/setuptools-74/
copr repository where setuptools 74+ has been built].
* Release engineering: [https://pagure.io/releng/issue/12323 #12323]
* Policies and guidelines: N/A (not needed for this Change)
* Trademark approval: N/A (not needed for this Change)
* Alignment with the Fedora Strategy: First
== Upgrade/compatibility impact ==
There is a clean upgrade path from current version to
python-setuptools 69.x.x. Fedora users using RPM-packaged setuptools
will use setuptools 74+ by default.
== Early Testing (Optional) ==
Do you require 'QA Blueprint' support? N
== How To Test ==
* Find the package you want to update in the
[https://copr.fedorainfracloud.org/coprs/churchyard/setuptools-74/
copr repository] and check the build logs to determine the fail cause.
* Work with the upstream to resolve the issue or drop the need for
`setup.py test` during the build of the package.
* When updating the package, you can test it using the same copr
repository where the latest version of setuptools has been built.
* Let us know if something doesn't work as it should.
== User Experience ==
Regular distro users shouldn't notice any change in setuptools
behavior, except for upstream-intended changes.
== Dependencies ==
== Contingency Plan ==
* Contingency mechanism: (What to do? Who will do it?) Provide a
compat package with setuptools 69
* Contingency deadline: mass rebuild
* Blocks release? No
== Documentation ==
[https://setuptools.pypa.io/en/stable/history.html Setuptools changelog]
This page is the documentation.
== Release Notes ==
--
Aoife Moloney
Fedora Operations Architect
Fedora Project
Matrix: @amoloney:fedora.im
IRC: amoloney
--
_______________________________________________
devel-announce mailing list -- devel-announce@lists.fedoraproject.org
To unsubscribe send an email to devel-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel-announce@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Tuesday, September 24, 2024
F42 Change Proposal: Third Party Legacy JDKs (System-Wide)
Wiki - https://fedoraproject.org/wiki/Changes/ThirdPartyLegacyJdks
Discussion Topic -
https://discussion.fedoraproject.org/t/f42-change-proposal-third-party-legacy-jdks-system-wide/132049
This is a proposed Change for Fedora Linux.
This document represents a proposed Change. As part of the Changes
process, proposals are publicly announced in order to receive
community feedback. This proposal will only be implemented if approved
by the Fedora Engineering Steering Committee.
= Adjust java/java-devel requires to multi-vendor JDK world and
replace legacy JDKs by third party Eclipse Temurin repositories =
== Summary ==
Adjust java/java-devel `provides/requires` to multivendor world and
obsolete all non-system LTS JDKs (java-1.8.0-openjdk, java-11-openjdk,
java-17-openjdk in time of writing) by appropriate, properly
integrating, RPMs from Eclipse Adoptium repositories.
== Owner ==
* Name: [[User:jvanek| Jiri Vanek]]
* Email: <jvanek@redhat.com>
* Product: java and java stack
* Responsible WG: java-sig (java and java-maint)(which no longer exists)
* rcm ticket: https://pagure.io/releng/issue/TODO
* named side tag ticket: tbd
=== Expected schedule ===
* Eclipse Temurin repositories already exists:
https://adoptium.net/installation/linux/#_centosrhelfedora_instructions
* RPMs can be easily integrated. Remaining issues are summed up at:
https://github.com/adoptium/installer/issues/848 ; but they do not
block immediate usage
* RPM with repository on review:
https://bugzilla.redhat.com/show_bug.cgi?id=2313339
* JDKs will be obsoleted from f42 onwards only. The Repository may be
available also for older Fedoras, as they can coexists.
* to keep en system-jdk idea as it is, the requires of "java",
"java-devel" and "java-headless" were revisited
** those will be encapsulated them to "javapackages-tools" and
"javapavckages-local" which handles system JDK anyway in user
independent way
(https://fedoraproject.org/wiki/Changes/Decouple_system_java_setting_from_java_command_setting#Summary)
** the documentation of
https://docs.fedoraproject.org/en-US/packaging-guidelines/Java/#_buildrequires_and_requires
will be updated
** all non-system LTS JDKs will be orphaned or replaced by obsoleting
package with possible dependency on the repository wrapper)
As 'Change Checkpoint: Proposal submission deadline (System Wide
Changes) Tue 2024-12-24' and 'Branch Fedora Linux 42 from Rawhide Tue
2025-02-04' is in reasonable time, we hope to finish all peacefully
(as all initial tests are already finished).
== Detailed Description ==
{{admon/important | JDK TEAM NOTE: | in el10 there is only one jdk,
however, the non binding java/java-devel, and all the whole "system
jdk in javapackages-tools" is quite a precedent for it, and
considering we will be updating system jdk in el aprox 3x, we should
take exceptional care here, as it may solve - or bite back - the issue
we are facin gin el9 now}}
Fedora currently ships:
* java-1.8.0-openjdk (LTS)
* java-11-openjdk (LTS)
* java-17-openjdk (LTS)
* java-21-openjdk (LTS), system JDK
* java-latest-openjdk (STS) - currently JDK22, soon JDK23, in time of
finish JDK24
* In future, java-25-openjdk will fork from java-latest-openjdk, and
will become system jdk, as jdk21 before
(https://fedoraproject.org/wiki/Changes/Java21#java-21-openjdk_as_the_system_JDK_in_F40)
and jdk17 before that and so on...
** java-21-openjdk will then follow the fate of java-17-openjdk, 11
and 1.8.0 as written lower.
We, OpenJDK maintainers in Fedora, would like to orphan/close/obsolete
non system JDKs in favor of Temurin JDKs. Adoptium Temurin
(https://adoptium.net/temurin/releases/) is de-facto standard build of
JDK, with huge support and compatibility, and all current Fedora JDK
contributors are long term members and contributors to Temrun JDK (and
its RPMs).
Adoptium is dedicated, to keep Temurin RPMs well integrated and
healthy for Fedora. Adoptium efforts are tracked in
https://github.com/adoptium/installer/issues/848 . Adoptium is
maintaining their repos
(https://adoptium.net/installation/linux/#_centosrhelfedora_instructions)
for ages, and they're heavily used.
Practically We see several approaches:
* simply orphan jdk 8,11 and 17 (in f42 the only system JDK will be 21)
** However past (orphaning of jdk 6 and 7 ) had learned us a lesson
that average packager (despite being experienced java/C programmer) is
unable to maintain OpenJDK packages
* orphan the packages and close them. enhance
https://docs.fedoraproject.org/en-US/quick-docs/installing-java/ that
non system JDK can be installed after enabling the adoptium repos
(https://adoptium.net/installation/linux/#_centosrhelfedora_instructions)
* orphan the packages and close them.
** provide rpm which will contain the 3d party repository\
** enhance https://docs.fedoraproject.org/en-US/quick-docs/installing-java/
informing about that
* provide rpm which will contain the 3d party repository\
** integrate it with gnome software and and fedora setup of 3rd party repos
** we would like try to do an fluent transition - so the current 8,11
and 17 packages will also install the rpm with repository files and
thus once we remove jdk8-17 (or future) from distribution, they will
be smoothly updated by temurin jdk (with check if other 3rd party
repos are enabled)
java-latest-openjdk remain also maintained in Koji, as it is necessary
testing ground for future system JDK.
It was never an intention to repack a binary Temurin blob in Koji
(just in case anybody will think about it).
It is not an intention to get rid of maintaining System JDK. However
once JDK will no longer be System jdk in any live Fedora, it will be
orphaned/closed in favor of Temurin JDK. So once f42 will go out we
will continue to maintain only
jdk 23+21. In some short time, we will maintain 25+21, a bit later
26+25+21... And once 25 will become system JDK in all live fedoras, we
will ditch 21 in favor of Temurins
=== java packages `requires` mass change ===
The javastack (via javapackages-tools) will be reworked to:
*encapsulate dependencies on system jdk (or any other koji-based jdk)
to javapackages tools
*allow any application to work on any, even 3rd party java
This should be achieved via following chnages to reqires changes and
generated changes:
*`javapackages-local` for packages with `ant` or no build - `requires
java-%{system}-openjdk-devel` (`%jpackage_script`)
**`javapavckages-local%VERSIONED` for older ones
**For slower transitions to newer jdks
*`javapackages-tools`
**`requires java-%{system}-openjdk-headless`
**`javapackages-tools%VERSIONED` for older ones
**Do not requires java-%{system}-openjdk
***'''Will not be added''' - satisfied by Javapackages-tools with java
|| java-xyz-openjdk requires
* Requires generator which crawls through launchers of packages
(including `jpackage_script` ) which source `java_functions`
** will be pointing to used jre headless
**`%jpackage_script` is implicitly affected by generator and will
generate requires to corresponding `%{build_time_sdk's}-headless jre`
(which is currently system jdk, which is jdl 21, unless specified
differently)
*Other packages will need to manually adjust from
`java-%{system}-openjdk-/headless/devel` to
`java-(system+1)-openjdk-/headless/devel`
**This affects mass rebuilds (instead of just release++ a
java-xy-openjdk must do xy++). Positive si that there is more time to
do that
** Indirectly this is '''not enforcing''' new system jdk when new LTS
is promoted in Fedora
***Otherwise generic `java-devel` will no longer satisfy new systemjdk
after system bump
*`JAVA_HOME` remains main override (rpm generated requires are not
affected (maybe todo?))
https://docs.fedoraproject.org/en-US/packaging-guidelines/Java/ will
be adjusted accordingly
the packages built by pure javac or just build requires java without
any javapackages tools will be adjusted manually
'''Note that this is a much smaller effort than it looks like. 99% of
packages are living with generated provides, and will get the change
automagically. The remaining - approx 10 - packages will be handled
manually'''
== Feedback ==
todo
== Benefit to Fedora ==
The number of legacy JDKs have grown, and hand in hand with that the
number of their usages dropped to minimum. It seems there is no longer
any need to maintain them, as their usage is only highly specialized.
By providing 3rd party repo, we allow the specialized use-cases to
continue to exist. By discontinuing their build in koji we will untie
our hands to move forward and focus on future JDKs. Also we will
enable fedora to provide highly stable, often updated, secure, 100%
integrate-able and passionately maintained builds of legacy JDKs,
which will serve as proper replacement if really needed. As a side
effect of the changes in `provides/requires`, we will allow every JDK,
from any vendor, which follows unofficial packaging JEP (which covers
java and javac alternatives master and java/java-devel provides) to be
effectively part of system if wanted, and not just silent companion.
== Scope ==
* Proposal owners:
** will provide and maintain the 3rd party repo -
https://bugzilla.redhat.com/show_bug.cgi?id=2313339
** will help to integrate it with gnome-software and other 3rd party repos units
** will orphan or replace (based on agreement on `details`
** will update java packages documentation
** we will fix all the direct requires java/java-devel (approx 14 only)
** we will communicate with packagers of known, remaining packages
which do not run with system jdk (approx 5 )
* Other developers:
** javapackages-tools, maven and ant maintainers are already on board
to to totally decuple system jdk from installed java
* Release engineering: [https://pagure.io/releng/issues #Releng issue number]
** I think the mass rebuild will not be needed
* Policies and guidelines: N/A (not needed for this Change)
** java packaging guidelines will be updated
* Trademark approval: N/A (not needed for this Change)
* Alignment with the Fedora Strategy:
** This proposal is aligned with Fedora mission - to be on top of
technology. We want to focus on newer JDKs, and still provide
comfortable access to legacy ones,
== Upgrade/compatibility impact ==
No meter what approach will be selected at the end, there will be
upgrade impact.
* in ideal usecase, the JDKs from koji simply replaces themselves by
those from Eclipse Temurin
* in worst case, user will just get disabled 3rd party repo and updated docs.
In all cases system jdk will remain on machine, and in all cases
legacy jdks will be replaced or disappear. I would really be unhappy
to simply discontinue them, and leave unmaintained software on target
boxes.
== Early Testing (Optional) ==
Do you require 'QA Blueprint' support? Y
== How To Test ==
No JDK on system
# get system without java
# update to next fedora
# no JDK should be there
Only system JDK on system and future STS jdk
# get system with system jdk only
# update to next fedora
# JDK should be there
Only legacy JDK
# get system withotu any JDK
# manually install any of legacy LTS jdks
# update to next fedora
# the legacy jdk should not be there or should be gone
System JDK and legacy JDK
# get system with system jdk only
# manually install any of legacy LTS jdks
# update to next fedora
# system JDK should be there
# the legacy jdk should not be there or should be gone
== User Experience ==
As already described, basic users should not notice change. Advanced
users should not lost.
== Dependencies ==
Several (less then 10) packages will lost theirs main dependencies.
Those list will be enumerated.
Those packages will need to orphan and move to different kind of
distribution or update.
Main java stack - the packages depending on system
java/java-devel/java-headless/java-packages-tools and similar, should
not notice change.
== Contingency Plan ==
* Contingency mechanism: If we fails to introduce Eclipse Temurin JDKs
repo, we will simply orphan legacy JDKs as written earlier
* Contingency deadline: 1. December 2024
* Blocks release? Yes
== Documentation ==
Only eclipse temurin install pages and java packages guidelines
* todo link1
* todo link2
== Release Notes ==
tbd
--
Aoife Moloney
Fedora Operations Architect
Fedora Project
Matrix: @amoloney:fedora.im
IRC: amoloney
--
_______________________________________________
devel-announce mailing list -- devel-announce@lists.fedoraproject.org
To unsubscribe send an email to devel-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel-announce@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Discussion Topic -
https://discussion.fedoraproject.org/t/f42-change-proposal-third-party-legacy-jdks-system-wide/132049
This is a proposed Change for Fedora Linux.
This document represents a proposed Change. As part of the Changes
process, proposals are publicly announced in order to receive
community feedback. This proposal will only be implemented if approved
by the Fedora Engineering Steering Committee.
= Adjust java/java-devel requires to multi-vendor JDK world and
replace legacy JDKs by third party Eclipse Temurin repositories =
== Summary ==
Adjust java/java-devel `provides/requires` to multivendor world and
obsolete all non-system LTS JDKs (java-1.8.0-openjdk, java-11-openjdk,
java-17-openjdk in time of writing) by appropriate, properly
integrating, RPMs from Eclipse Adoptium repositories.
== Owner ==
* Name: [[User:jvanek| Jiri Vanek]]
* Email: <jvanek@redhat.com>
* Product: java and java stack
* Responsible WG: java-sig (java and java-maint)(which no longer exists)
* rcm ticket: https://pagure.io/releng/issue/TODO
* named side tag ticket: tbd
=== Expected schedule ===
* Eclipse Temurin repositories already exists:
https://adoptium.net/installation/linux/#_centosrhelfedora_instructions
* RPMs can be easily integrated. Remaining issues are summed up at:
https://github.com/adoptium/installer/issues/848 ; but they do not
block immediate usage
* RPM with repository on review:
https://bugzilla.redhat.com/show_bug.cgi?id=2313339
* JDKs will be obsoleted from f42 onwards only. The Repository may be
available also for older Fedoras, as they can coexists.
* to keep en system-jdk idea as it is, the requires of "java",
"java-devel" and "java-headless" were revisited
** those will be encapsulated them to "javapackages-tools" and
"javapavckages-local" which handles system JDK anyway in user
independent way
(https://fedoraproject.org/wiki/Changes/Decouple_system_java_setting_from_java_command_setting#Summary)
** the documentation of
https://docs.fedoraproject.org/en-US/packaging-guidelines/Java/#_buildrequires_and_requires
will be updated
** all non-system LTS JDKs will be orphaned or replaced by obsoleting
package with possible dependency on the repository wrapper)
As 'Change Checkpoint: Proposal submission deadline (System Wide
Changes) Tue 2024-12-24' and 'Branch Fedora Linux 42 from Rawhide Tue
2025-02-04' is in reasonable time, we hope to finish all peacefully
(as all initial tests are already finished).
== Detailed Description ==
{{admon/important | JDK TEAM NOTE: | in el10 there is only one jdk,
however, the non binding java/java-devel, and all the whole "system
jdk in javapackages-tools" is quite a precedent for it, and
considering we will be updating system jdk in el aprox 3x, we should
take exceptional care here, as it may solve - or bite back - the issue
we are facin gin el9 now}}
Fedora currently ships:
* java-1.8.0-openjdk (LTS)
* java-11-openjdk (LTS)
* java-17-openjdk (LTS)
* java-21-openjdk (LTS), system JDK
* java-latest-openjdk (STS) - currently JDK22, soon JDK23, in time of
finish JDK24
* In future, java-25-openjdk will fork from java-latest-openjdk, and
will become system jdk, as jdk21 before
(https://fedoraproject.org/wiki/Changes/Java21#java-21-openjdk_as_the_system_JDK_in_F40)
and jdk17 before that and so on...
** java-21-openjdk will then follow the fate of java-17-openjdk, 11
and 1.8.0 as written lower.
We, OpenJDK maintainers in Fedora, would like to orphan/close/obsolete
non system JDKs in favor of Temurin JDKs. Adoptium Temurin
(https://adoptium.net/temurin/releases/) is de-facto standard build of
JDK, with huge support and compatibility, and all current Fedora JDK
contributors are long term members and contributors to Temrun JDK (and
its RPMs).
Adoptium is dedicated, to keep Temurin RPMs well integrated and
healthy for Fedora. Adoptium efforts are tracked in
https://github.com/adoptium/installer/issues/848 . Adoptium is
maintaining their repos
(https://adoptium.net/installation/linux/#_centosrhelfedora_instructions)
for ages, and they're heavily used.
Practically We see several approaches:
* simply orphan jdk 8,11 and 17 (in f42 the only system JDK will be 21)
** However past (orphaning of jdk 6 and 7 ) had learned us a lesson
that average packager (despite being experienced java/C programmer) is
unable to maintain OpenJDK packages
* orphan the packages and close them. enhance
https://docs.fedoraproject.org/en-US/quick-docs/installing-java/ that
non system JDK can be installed after enabling the adoptium repos
(https://adoptium.net/installation/linux/#_centosrhelfedora_instructions)
* orphan the packages and close them.
** provide rpm which will contain the 3d party repository\
** enhance https://docs.fedoraproject.org/en-US/quick-docs/installing-java/
informing about that
* provide rpm which will contain the 3d party repository\
** integrate it with gnome software and and fedora setup of 3rd party repos
** we would like try to do an fluent transition - so the current 8,11
and 17 packages will also install the rpm with repository files and
thus once we remove jdk8-17 (or future) from distribution, they will
be smoothly updated by temurin jdk (with check if other 3rd party
repos are enabled)
java-latest-openjdk remain also maintained in Koji, as it is necessary
testing ground for future system JDK.
It was never an intention to repack a binary Temurin blob in Koji
(just in case anybody will think about it).
It is not an intention to get rid of maintaining System JDK. However
once JDK will no longer be System jdk in any live Fedora, it will be
orphaned/closed in favor of Temurin JDK. So once f42 will go out we
will continue to maintain only
jdk 23+21. In some short time, we will maintain 25+21, a bit later
26+25+21... And once 25 will become system JDK in all live fedoras, we
will ditch 21 in favor of Temurins
=== java packages `requires` mass change ===
The javastack (via javapackages-tools) will be reworked to:
*encapsulate dependencies on system jdk (or any other koji-based jdk)
to javapackages tools
*allow any application to work on any, even 3rd party java
This should be achieved via following chnages to reqires changes and
generated changes:
*`javapackages-local` for packages with `ant` or no build - `requires
java-%{system}-openjdk-devel` (`%jpackage_script`)
**`javapavckages-local%VERSIONED` for older ones
**For slower transitions to newer jdks
*`javapackages-tools`
**`requires java-%{system}-openjdk-headless`
**`javapackages-tools%VERSIONED` for older ones
**Do not requires java-%{system}-openjdk
***'''Will not be added''' - satisfied by Javapackages-tools with java
|| java-xyz-openjdk requires
* Requires generator which crawls through launchers of packages
(including `jpackage_script` ) which source `java_functions`
** will be pointing to used jre headless
**`%jpackage_script` is implicitly affected by generator and will
generate requires to corresponding `%{build_time_sdk's}-headless jre`
(which is currently system jdk, which is jdl 21, unless specified
differently)
*Other packages will need to manually adjust from
`java-%{system}-openjdk-/headless/devel` to
`java-(system+1)-openjdk-/headless/devel`
**This affects mass rebuilds (instead of just release++ a
java-xy-openjdk must do xy++). Positive si that there is more time to
do that
** Indirectly this is '''not enforcing''' new system jdk when new LTS
is promoted in Fedora
***Otherwise generic `java-devel` will no longer satisfy new systemjdk
after system bump
*`JAVA_HOME` remains main override (rpm generated requires are not
affected (maybe todo?))
https://docs.fedoraproject.org/en-US/packaging-guidelines/Java/ will
be adjusted accordingly
the packages built by pure javac or just build requires java without
any javapackages tools will be adjusted manually
'''Note that this is a much smaller effort than it looks like. 99% of
packages are living with generated provides, and will get the change
automagically. The remaining - approx 10 - packages will be handled
manually'''
== Feedback ==
todo
== Benefit to Fedora ==
The number of legacy JDKs have grown, and hand in hand with that the
number of their usages dropped to minimum. It seems there is no longer
any need to maintain them, as their usage is only highly specialized.
By providing 3rd party repo, we allow the specialized use-cases to
continue to exist. By discontinuing their build in koji we will untie
our hands to move forward and focus on future JDKs. Also we will
enable fedora to provide highly stable, often updated, secure, 100%
integrate-able and passionately maintained builds of legacy JDKs,
which will serve as proper replacement if really needed. As a side
effect of the changes in `provides/requires`, we will allow every JDK,
from any vendor, which follows unofficial packaging JEP (which covers
java and javac alternatives master and java/java-devel provides) to be
effectively part of system if wanted, and not just silent companion.
== Scope ==
* Proposal owners:
** will provide and maintain the 3rd party repo -
https://bugzilla.redhat.com/show_bug.cgi?id=2313339
** will help to integrate it with gnome-software and other 3rd party repos units
** will orphan or replace (based on agreement on `details`
** will update java packages documentation
** we will fix all the direct requires java/java-devel (approx 14 only)
** we will communicate with packagers of known, remaining packages
which do not run with system jdk (approx 5 )
* Other developers:
** javapackages-tools, maven and ant maintainers are already on board
to to totally decuple system jdk from installed java
* Release engineering: [https://pagure.io/releng/issues #Releng issue number]
** I think the mass rebuild will not be needed
* Policies and guidelines: N/A (not needed for this Change)
** java packaging guidelines will be updated
* Trademark approval: N/A (not needed for this Change)
* Alignment with the Fedora Strategy:
** This proposal is aligned with Fedora mission - to be on top of
technology. We want to focus on newer JDKs, and still provide
comfortable access to legacy ones,
== Upgrade/compatibility impact ==
No meter what approach will be selected at the end, there will be
upgrade impact.
* in ideal usecase, the JDKs from koji simply replaces themselves by
those from Eclipse Temurin
* in worst case, user will just get disabled 3rd party repo and updated docs.
In all cases system jdk will remain on machine, and in all cases
legacy jdks will be replaced or disappear. I would really be unhappy
to simply discontinue them, and leave unmaintained software on target
boxes.
== Early Testing (Optional) ==
Do you require 'QA Blueprint' support? Y
== How To Test ==
No JDK on system
# get system without java
# update to next fedora
# no JDK should be there
Only system JDK on system and future STS jdk
# get system with system jdk only
# update to next fedora
# JDK should be there
Only legacy JDK
# get system withotu any JDK
# manually install any of legacy LTS jdks
# update to next fedora
# the legacy jdk should not be there or should be gone
System JDK and legacy JDK
# get system with system jdk only
# manually install any of legacy LTS jdks
# update to next fedora
# system JDK should be there
# the legacy jdk should not be there or should be gone
== User Experience ==
As already described, basic users should not notice change. Advanced
users should not lost.
== Dependencies ==
Several (less then 10) packages will lost theirs main dependencies.
Those list will be enumerated.
Those packages will need to orphan and move to different kind of
distribution or update.
Main java stack - the packages depending on system
java/java-devel/java-headless/java-packages-tools and similar, should
not notice change.
== Contingency Plan ==
* Contingency mechanism: If we fails to introduce Eclipse Temurin JDKs
repo, we will simply orphan legacy JDKs as written earlier
* Contingency deadline: 1. December 2024
* Blocks release? Yes
== Documentation ==
Only eclipse temurin install pages and java packages guidelines
* todo link1
* todo link2
== Release Notes ==
tbd
--
Aoife Moloney
Fedora Operations Architect
Fedora Project
Matrix: @amoloney:fedora.im
IRC: amoloney
--
_______________________________________________
devel-announce mailing list -- devel-announce@lists.fedoraproject.org
To unsubscribe send an email to devel-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel-announce@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
[USN-7030-1] py7zr vulnerability
-----BEGIN PGP SIGNATURE-----
wnsEABYIACMWIQSyA9nA4R5iZYAVzFrgLM9xllPy5AUCZvJ19wUDAAAAAAAKCRDgLM9xllPy5JYe
AP0XbIzu3OHf794Qr0IrnTwBUrLtoO5yspqr9+8HdKnrkgEArjD/FUgLz9h6O/RrPCQ5Gi7YWzCL
z1ypv1MSjvC14Qo=
=BRHM
-----END PGP SIGNATURE-----
wnsEABYIACMWIQSyA9nA4R5iZYAVzFrgLM9xllPy5AUCZvJ19wUDAAAAAAAKCRDgLM9xllPy5JYe
AP0XbIzu3OHf794Qr0IrnTwBUrLtoO5yspqr9+8HdKnrkgEArjD/FUgLz9h6O/RrPCQ5Gi7YWzCL
z1ypv1MSjvC14Qo=
=BRHM
-----END PGP SIGNATURE-----
========================================================================== Ubuntu Security Notice USN-7030-1 September 24, 2024 py7zr vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS Summary: py7zr could be made to create arbitrary files when extracting the contents of a specially crafted 7z archive. Software Description: - py7zr: Pure Python 7-zip library Details: It was discovered that py7zr was vulnerable to path traversal attacks. If a user or automated system were tricked into extracting a specially crafted 7z archive, an attacker could possibly use this issue to write arbitrary files outside the target directory on the host. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS python3-py7zr 0.11.3+dfsg-4ubuntu0.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7030-1 CVE-2022-44900 Package Information: https://launchpad.net/ubuntu/+source/py7zr/0.11.3+dfsg-4ubuntu0.1
Monday, September 23, 2024
Orphaned packages looking for new maintainers
Report started at 2024-09-23 18:00:57 UTC
The following packages are orphaned and will be retired when they
are orphaned for six weeks, unless someone adopts them. If you know for sure
that the package should be retired, please do so now with a proper reason:
https://fedoraproject.org/wiki/How_to_remove_a_package_at_end_of_life
Note: If you received this mail directly you (co)maintain one of the affected
packages or a package that depends on one. Please adopt the affected package or
retire your depending package to avoid broken dependencies, otherwise your
package will be retired when the affected package gets retired.
Request package ownership via the *Take* button in the left column on
https://src.fedoraproject.org/rpms/<pkgname>
Full report available at:
https://a.gtmx.me/orphans/orphans.txt
grep it for your FAS username and follow the dependency chain.
For human readable dependency chains,
see https://packager-dashboard.fedoraproject.org/
For all orphaned packages,
see https://packager-dashboard.fedoraproject.org/orphan
Package (co)maintainers Status Change
================================================================================
RediSearch agerstmayr, orphan 0 weeks ago
abrt-java-connector @abrt-sig, orphan 3 weeks ago
ansible-collection-netbox- @infra-sig, ignatenkobrain, 1 weeks ago
netbox orphan
ctemplate orphan 5 weeks ago
echolinux orphan 3 weeks ago
fedmsg orphan 2 weeks ago
gearmand orphan 4 weeks ago
ghc-cryptohash @haskell-lang-sig, orphan 3 weeks ago
golang-github-emersion-milter @go-sig, orphan 0 weeks ago
golang-github-emersion-msgauth @go-sig, orphan 0 weeks ago
gpsman orphan 3 weeks ago
harvey orphan 2 weeks ago
libkindrv orphan 5 weeks ago
m2crypto @python-packagers-sig, mitr, 4 weeks ago
orphan
orocos-bfl orphan 5 weeks ago
orocos-kdl cottsay, orphan 5 weeks ago
pcc orphan 0 weeks ago
php-aws-sdk3 orphan 1 weeks ago
php-guzzlehttp-guzzle6 orphan 1 weeks ago
php-ralouphie-getallheaders orphan 1 weeks ago
pmix orion, orphan 3 weeks ago
pycanberra @python-packagers-sig, orphan 2 weeks ago
python-case ngompa, orphan, pingou 5 weeks ago
python-fedmsg-meta-fedora- orphan 2 weeks ago
infrastructure
python-ffmpeg-python orphan 5 weeks ago
python-gear orphan, tdecacqu, zuul 2 weeks ago
python-hypothesis-fspaths @python-packagers-sig, orphan 5 weeks ago
python-iptools orphan 5 weeks ago
python-k2hr3-osnl orphan 2 weeks ago
python-nss orphan 1 weeks ago
python-opentracing orphan 5 weeks ago
python-oslo-concurrency @epel-packagers-sig, 2 weeks ago
@openstack-sig, apevec, orphan
python-oslo-messaging orphan 2 weeks ago
python-oslo-service orphan 2 weeks ago
python-pyvmomi @python-packagers-sig, fale, 0 weeks ago
orphan, rcallicotte
python-webpy orphan 2 weeks ago
python-ws4py orphan, sbluhm, zuul 2 weeks ago
rebloom lberk, orphan 0 weeks ago
rejson lberk, orphan 0 weeks ago
viking orphan 0 weeks ago
The following packages require above mentioned packages:
Depending on: fedmsg (2), status change: 2024-09-05 (2 weeks ago)
module-build-service (maintained by: breilly, mikem)
module-build-service-3.9.2-9.fc41.noarch requires python3-fedmsg = 1.1.7-6.fc40, python3.12dist(fedmsg) = 1.1.7
module-build-service-3.9.2-9.fc41.src requires python3-fedmsg = 1.1.7-6.fc40
python-fedmsg-meta-fedora-infrastructure (maintained by: orphan)
python-fedmsg-meta-fedora-infrastructure-0.31.0-12.fc40.src requires python3-fedmsg = 1.1.7-6.fc40
python3-fedmsg-meta-fedora-infrastructure-0.31.0-12.fc40.noarch requires python3-fedmsg = 1.1.7-6.fc40, python3.12dist(fedmsg) = 1.1.7
Depending on: gearmand (1), status change: 2024-08-26 (4 weeks ago)
php-pecl-gearman (maintained by: pwhalen, remi)
php-pecl-gearman-2.1.2-2.fc41.src requires libgearman-devel = 1.1.21-4.fc41
php-pecl-gearman-2.1.2-2.fc41.x86_64 requires libgearman.so.8()(64bit)
Depending on: golang-github-emersion-milter (1), status change: 2024-09-23 (0 weeks ago)
golang-github-emersion-msgauth (maintained by: @go-sig, orphan)
golang-github-emersion-msgauth-0.6.6-8.fc41.src requires golang(github.com/emersion/go-milter) = 0.3.3-8.fc41
golang-github-emersion-msgauth-devel-0.6.6-8.fc41.noarch requires golang(github.com/emersion/go-milter) = 0.3.3-8.fc41
Depending on: gpsman (1), status change: 2024-09-01 (3 weeks ago)
xastir (maintained by: lucilanga)
xastir-1:2.2.0-4.fc41.src requires gpsman = 6.4.1-26.fc41
Depending on: m2crypto (9), status change: 2024-08-20 (4 weeks ago)
dnsviz (maintained by: @dns-sig, jonathanspw, pemensik)
dnsviz-0.10.0-3.fc41.noarch requires python3-m2crypto = 0.41.0^git20240613.3156614-1.fc41
dnsviz-0.10.0-3.fc41.src requires python3-m2crypto = 0.41.0^git20240613.3156614-1.fc41, python3dist(m2crypto) = 0.41
fts-rest-client (maintained by: mipatras)
fts-rest-client-3.13.4-1.fc42.noarch requires python3-m2crypto = 0.41.0^git20240613.3156614-1.fc41, python3.13dist(m2crypto) = 0.41
hash-slinger (maintained by: frankcrawford)
hash-slinger-3.2-5.fc41.noarch requires python3-m2crypto = 0.41.0^git20240613.3156614-1.fc41
ipsilon (maintained by: jonathanspw, kevin, puiterwijk, simo)
ipsilon-3.0.4-17.fc41.src requires python3-m2crypto = 0.41.0^git20240613.3156614-1.fc41
module-build-service (maintained by: breilly, mikem)
module-build-service-3.9.2-9.fc41.noarch requires python3-m2crypto = 0.41.0^git20240613.3156614-1.fc41
module-build-service-3.9.2-9.fc41.src requires python3-m2crypto = 0.41.0^git20240613.3156614-1.fc41
oz (maintained by: clalance)
oz-0.18.1-15.fc41.noarch requires python3-m2crypto = 0.41.0^git20240613.3156614-1.fc41
oz-0.18.1-15.fc41.src requires python3-m2crypto = 0.41.0^git20240613.3156614-1.fc41
ursa-major (maintained by: cqi, julian8628)
ursa-major-0.4.2-12.fc41.noarch requires python3-m2crypto = 0.41.0^git20240613.3156614-1.fc41
imagefactory (maintained by: clalance, kevin)
imagefactory-1.1.16-14.fc41.noarch requires oz = 0.18.1-15.fc41
imagefactory-plugins (maintained by: kevin)
imagefactory-plugins-IndirectionCloud-1.1.16-13.fc41.noarch requires imagefactory-plugin-api = 1.0, oz = 0.18.1-15.fc41
imagefactory-plugins-OVA-1.1.16-13.fc41.noarch requires imagefactory-plugin-api = 1.0, oz = 0.18.1-15.fc41
imagefactory-plugins-TinMan-1.1.16-13.fc41.noarch requires imagefactory-plugin-api = 1.0, oz = 0.18.1-15.fc41
imagefactory-plugins-ovfcommon-1.1.16-13.fc41.noarch requires oz = 0.18.1-15.fc41
imagefactory-plugins-1.1.16-13.fc41.noarch requires imagefactory = 1.1.16-14.fc41
imagefactory-plugins-RHEVM-1.1.16-13.fc41.noarch requires imagefactory-plugin-api = 1.0
imagefactory-plugins-vSphere-1.1.16-13.fc41.noarch requires imagefactory-plugin-api = 1.0
Depending on: php-guzzlehttp-guzzle6 (1), status change: 2024-09-16 (1 weeks ago)
php-aws-sdk3 (maintained by: orphan)
php-aws-sdk3-3.191.10-7.fc41.noarch requires php-composer(guzzlehttp/guzzle) = 6.5.8
php-aws-sdk3-3.191.10-7.fc41.src requires php-composer(guzzlehttp/guzzle) = 6.5.8
Depending on: php-ralouphie-getallheaders (4), status change: 2024-09-16 (1 weeks ago)
php-guzzlehttp-psr7 (maintained by: remi)
php-guzzlehttp-psr7-1.9.0-7.fc41.noarch requires php-composer(ralouphie/getallheaders) = 3.0.3
php-guzzlehttp-psr7-1.9.0-7.fc41.src requires php-composer(ralouphie/getallheaders) = 3.0.3
php-aws-php-sns-message-validator (maintained by: siwinski)
php-aws-php-sns-message-validator-1.6.0-8.fc39.src requires php-composer(guzzlehttp/psr7) = 1.9.0
php-aws-sdk3 (maintained by: orphan)
php-aws-sdk3-3.191.10-7.fc41.noarch requires php-composer(guzzlehttp/guzzle) = 6.5.8, php-composer(guzzlehttp/psr7) = 1.9.0
php-aws-sdk3-3.191.10-7.fc41.src requires php-composer(guzzlehttp/guzzle) = 6.5.8, php-composer(guzzlehttp/psr7) = 1.9.0
php-guzzlehttp-guzzle6 (maintained by: orphan)
php-guzzlehttp-guzzle6-6.5.8-7.fc41.noarch requires php-composer(guzzlehttp/psr7) = 1.9.0
php-guzzlehttp-guzzle6-6.5.8-7.fc41.src requires php-composer(guzzlehttp/psr7) = 1.9.0
Depending on: pmix (67), status change: 2024-08-28 (3 weeks ago)
openmpi (maintained by: dledford, orion)
openmpi-5.0.5-2.fc41.src requires pmix-devel = 4.2.8-3.fc41
openmpi-5.0.5-2.fc41.x86_64 requires libpmix.so.2()(64bit)
openmpi-devel-5.0.5-2.fc41.x86_64 requires libpmix.so.2()(64bit)
prrte (maintained by: orion)
prrte-3.0.2-6.fc41.src requires pmix-devel = 4.2.8-3.fc41, pmix-tools = 4.2.8-3.fc41
prrte-3.0.2-6.fc41.x86_64 requires libpmix.so.2()(64bit)
prrte-libs-3.0.2-6.fc41.x86_64 requires libpmix.so.2()(64bit)
slurm (maintained by: @epel-packagers-sig, neil, salimma)
slurm-24.05.2-1.fc42.src requires pmix-devel = 4.2.8-3.fc41
slurm-24.05.2-1.fc42.x86_64 requires pmix = 4.2.8-3.fc41
MUMPS (maintained by: sagitter)
MUMPS-openmpi-5.6.2-6.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), libmpi_usempi_ignore_tkr.so.40()(64bit)(openmpi-x86_64), libmpi_usempif08.so.40()(64bit)(openmpi-x86_64), openmpi(x86-64) = 5.0.5-2.fc41
MUMPS-openmpi-examples-5.6.2-6.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), libmpi_usempi_ignore_tkr.so.40()(64bit)(openmpi-x86_64), libmpi_usempif08.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
MUSIC (maintained by: @neuro-sig, ankursinha)
MUSIC-1.2.1-7.fc41.src requires openmpi-devel = 5.0.5-2.fc41
MUSIC-openmpi-1.2.1-7.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
MUSIC-openmpi-devel-1.2.1-7.fc41.x86_64 requires openmpi = 5.0.5-2.fc41
python3-MUSIC-openmpi-1.2.1-7.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
amg4psblas (maintained by: sagitter)
amg4psblas-1.1.2-6.fc41.src requires openmpi-devel = 5.0.5-2.fc41
amg4psblas-openmpi-1.1.2-6.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi(x86-64) = 5.0.5-2.fc41
arbor (maintained by: @neuro-sig, ankursinha)
arbor-0.9.0-8.fc41.src requires openmpi-devel = 5.0.5-2.fc41
arbor-openmpi-0.9.0-8.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41, python3-openmpi = 5.0.5-2.fc41
auryn (maintained by: @neuro-sig, ankursinha)
auryn-0.8.3-8.fc41.src requires openmpi-devel = 5.0.5-2.fc41
auryn-openmpi-0.8.3-8.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
boost (maintained by: denisarnaud, jwakely, mcermak, ppalka, trodgers)
boost-graph-openmpi-1.83.0-8.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
boost-openmpi-1.83.0-8.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
boost-openmpi-python3-1.83.0-8.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), python3-openmpi(x86-64) = 5.0.5-2.fc41
bout++ (maintained by: davidsch)
bout++-5.1.0-13.fc41.src requires openmpi-devel = 5.0.5-2.fc41
bout++-openmpi-5.1.0-13.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
python3-bout++-openmpi-5.1.0-13.fc41.x86_64 requires openmpi = 5.0.5-2.fc41, python3-openmpi = 5.0.5-2.fc41
cgnslib (maintained by: cicku, loveshack, orion, smani)
cgnslib-openmpi-devel-4.4.0-5.fc41.x86_64 requires openmpi-devel = 5.0.5-2.fc41
cgnslib-openmpi-libs-4.4.0-5.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
coin-or-Ipopt (maintained by: pcpa, sagitter)
coin-or-Ipopt-3.14.14-2.fc41.src requires pkgconfig(ompi) = 5.0.5
coin-or-Ipopt-openmpi-3.14.14-2.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
combblas (maintained by: sagitter)
combblas-openmpi-2.0.0-8.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi(x86-64) = 5.0.5-2.fc41
combblas-openmpi-devel-2.0.0-8.fc41.x86_64 requires openmpi-devel(x86-64) = 5.0.5-2.fc41
cp2k (maintained by: @scitech_sig, jussilehtola, lecris, tomspur)
cp2k-openmpi-2024.1-8.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), libmpi_usempi_ignore_tkr.so.40()(64bit)(openmpi-x86_64), libmpi_usempif08.so.40()(64bit)(openmpi-x86_64)
dbcsr (maintained by: lecris, orion)
dbcsr-openmpi-2.6.0-6.fc41.x86_64 requires libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), libmpi_usempi_ignore_tkr.so.40()(64bit)(openmpi-x86_64), libmpi_usempif08.so.40()(64bit)(openmpi-x86_64)
dl_poly (maintained by: loveshack)
dl_poly-1.10-22.fc41.src requires openmpi-devel = 5.0.5-2.fc41
dl_poly-openmpi-1.10-22.fc41.x86_64 requires libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), openmpi(x86-64) = 5.0.5-2.fc41
elk (maintained by: marcindulak)
elk-9.2.12-2.fc41.src requires openmpi-devel = 5.0.5-2.fc41
elk-openmpi-9.2.12-2.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), libmpi_usempi_ignore_tkr.so.40()(64bit)(openmpi-x86_64), libmpi_usempif08.so.40()(64bit)(openmpi-x86_64)
espresso (maintained by: jngrad, junghans)
espresso-4.2.2-4.fc41.src requires openmpi-devel = 5.0.5-2.fc41
python3-espresso-openmpi-4.2.2-4.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
fftw (maintained by: dcantrell, jchaloup, jussilehtola, konradm)
fftw-openmpi-devel-3.3.10-13.fc41.x86_64 requires openmpi-devel = 5.0.5-2.fc41
fftw-openmpi-libs-double-3.3.10-13.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
fftw-openmpi-libs-long-3.3.10-13.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
fftw-openmpi-libs-single-3.3.10-13.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
freefem++ (maintained by: corsepiu)
freefem++-4.14-11.fc42.src requires openmpi-devel = 5.0.5-2.fc41
freefem++-openmpi-4.14-11.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
ga (maintained by: marcindulak)
ga-5.8.2-8.fc41.src requires openmpi-devel = 5.0.5-2.fc41
ga-openmpi-5.8.2-8.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), libmpi_usempi_ignore_tkr.so.40()(64bit)(openmpi-x86_64), libmpi_usempif08.so.40()(64bit)(openmpi-x86_64)
ga-openmpi-devel-5.8.2-8.fc41.x86_64 requires openmpi-devel = 5.0.5-2.fc41
ga-openmpi-static-5.8.2-8.fc41.x86_64 requires openmpi-devel = 5.0.5-2.fc41
gloo (maintained by: trix)
gloo-0.5.0^git20230824.01a0c81-12.fc41.src requires openmpi-devel = 5.0.5-2.fc41
gloo-openmpi-0.5.0^git20230824.01a0c81-12.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
gmsh (maintained by: hobbes1069, ignatenkobrain, jkastner, smani)
gmsh-4.13.2-3.fc41.src requires openmpi-devel = 5.0.5-2.fc41
gmsh-openmpi-devel-4.13.2-3.fc41.x86_64 requires openmpi-devel = 5.0.5-2.fc41
gmsh-openmpi-libs-4.13.2-3.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
gpaw (maintained by: marcindulak)
gpaw-24.1.0-3.fc41.src requires openmpi-devel = 5.0.5-2.fc41
python3-gpaw-openmpi-24.1.0-3.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
gretl (maintained by: hannes)
gretl-2024b-2.fc41.src requires openmpi-devel = 5.0.5-2.fc41
gretl-openmpi-2024b-2.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
gromacs (maintained by: junghans)
gromacs-2024.3-1.fc42.src requires openmpi-devel = 5.0.5-2.fc41
gromacs-openmpi-2024.3-1.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
hdf5 (maintained by: @scitech_sig, ignatenkobrain, orion, sagitter)
hdf5-openmpi-1.12.1-20.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
hdf5-openmpi-devel-1.12.1-20.fc41.x86_64 requires openmpi-devel(x86-64) = 5.0.5-2.fc41
hpl (maintained by: jskarvad)
hpl-openmpi-2.2-19.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), libmpi_usempi_ignore_tkr.so.40()(64bit)(openmpi-x86_64), libmpi_usempif08.so.40()(64bit)(openmpi-x86_64)
hpx (maintained by: diehlpk, junghans)
hpx-1.10.0-4.fc42.src requires openmpi-devel = 5.0.5-2.fc41
hpx-openmpi-1.10.0-4.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi-devel = 5.0.5-2.fc41
hpx-openmpi-devel-1.10.0-4.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi-devel = 5.0.5-2.fc41
hpx-openmpi-examples-1.10.0-4.fc42.x86_64 requires openmpi = 5.0.5-2.fc41
hypre (maintained by: fuller, loveshack)
hypre-openmpi-2.24.0-16.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi(x86-64) = 5.0.5-2.fc41
hypre-openmpi-devel-2.24.0-16.fc42.x86_64 requires openmpi-devel(x86-64) = 5.0.5-2.fc41
intel-mpi-benchmarks (maintained by: kheib, michich)
intel-mpi-benchmarks-2021.8-4.fc41.src requires openmpi-devel = 5.0.5-2.fc41
intel-mpi-benchmarks-openmpi-2021.8-4.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
lammps (maintained by: cz4rs, ellio167, junghans, rberger)
lammps-openmpi-20240829-1.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
libcircle (maintained by: junghans)
libcircle-0.3-17.fc41.src requires openmpi-devel = 5.0.5-2.fc41
libcircle-openmpi-0.3-17.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
libneurosim (maintained by: @neuro-sig, ankursinha)
libneurosim-openmpi-1.2.0-12.20210110.gitafc003f.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
libneurosim-openmpi-devel-1.2.0-12.20210110.gitafc003f.fc41.x86_64 requires openmpi = 5.0.5-2.fc41
mathgl (maintained by: krege)
mathgl-openmpi-8.0.1-14.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
mfem (maintained by: topazus)
mfem-4.7-3.fc41.src requires openmpi-devel = 5.0.5-2.fc41
mfem-openmpi-4.7-3.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi(x86-64) = 5.0.5-2.fc41
mfem-openmpi-devel-4.7-3.fc41.x86_64 requires openmpi-devel(x86-64) = 5.0.5-2.fc41
mpi4py (maintained by: @python-packagers-sig, limb, tomspur)
mpi4py-4.0.0-1.fc41.src requires openmpi-devel = 5.0.5-2.fc41
python3-mpi4py-openmpi-4.0.0-1.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), python3-openmpi(x86-64) = 5.0.5-2.fc41
mpibash (maintained by: junghans)
mpibash-1.4-2.fc41.src requires openmpi-devel = 5.0.5-2.fc41
mpibash-openmpi-1.4-2.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
nest (maintained by: @neuro-sig, ankursinha)
nest-3.8-1.fc42.src requires openmpi-devel = 5.0.5-2.fc41
nest-openmpi-3.8-1.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
python3-nest-openmpi-3.8-1.fc42.x86_64 requires openmpi = 5.0.5-2.fc41
netcdf-cxx4 (maintained by: @scitech_sig, orion)
netcdf-cxx4-openmpi-4.3.1-13.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
netcdf-cxx4-openmpi-devel-4.3.1-13.fc41.x86_64 requires openmpi-devel = 5.0.5-2.fc41
netcdf-fortran (maintained by: @scitech_sig, orion)
netcdf-fortran-4.6.1-2.fc41.src requires openmpi-devel = 5.0.5-2.fc41
netcdf-fortran-openmpi-devel-4.6.1-2.fc41.x86_64 requires openmpi-devel = 5.0.5-2.fc41
netcdf (maintained by: @scitech_sig, orion)
netcdf-openmpi-4.9.2-6.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
netcdf-openmpi-devel-4.9.2-6.fc41.x86_64 requires openmpi-devel(x86-64) = 5.0.5-2.fc41
netgen-mesher (maintained by: hobbes1069, smani)
netgen-mesher-6.2.2404-2.fc41.src requires openmpi-devel = 5.0.5-2.fc41
netgen-mesher-openmpi-devel-6.2.2404-2.fc41.x86_64 requires openmpi-devel = 5.0.5-2.fc41
netgen-mesher-openmpi-libs-6.2.2404-2.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
python3-netgen-mesher-openmpi-6.2.2404-2.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
neuron (maintained by: @neuro-sig, ankursinha)
neuron-8.2.2-11.fc41.src requires openmpi-devel = 5.0.5-2.fc41
neuron-openmpi-8.2.2-11.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
nwchem (maintained by: marcindulak)
nwchem-7.2.2-7.fc41.src requires openmpi-devel = 5.0.5-2.fc41
nwchem-openmpi-7.2.2-7.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), libmpi_usempi_ignore_tkr.so.40()(64bit)(openmpi-x86_64), libmpi_usempif08.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
orsa (maintained by: lkundrak, zbyszek)
orsa-openmpi-0.7.0-78.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
osu-micro-benchmarks (maintained by: kheib, michich)
osu-micro-benchmarks-7.4-1.fc41.src requires openmpi-devel = 5.0.5-2.fc41
osu-micro-benchmarks-openmpi-7.4-1.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
paraview (maintained by: @scitech_sig, orion, sagitter)
paraview-5.12.1-5.fc41.src requires openmpi-devel = 5.0.5-2.fc41
paraview-openmpi-5.12.1-5.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
petsc (maintained by: sagitter)
petsc-openmpi-3.20.6-12.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), libmpi_mpifh.so.40()(64bit)(openmpi-x86_64)
petsc-openmpi-devel-3.20.6-12.fc42.x86_64 requires openmpi-devel(x86-64) = 5.0.5-2.fc41
python3-petsc-openmpi-3.20.6-12.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi(x86-64) = 5.0.5-2.fc41
psblas3 (maintained by: sagitter)
psblas3-3.8.1-6.post2.fc41.src requires openmpi-devel = 5.0.5-2.fc41
psblas3-openmpi-3.8.1-6.post2.fc41.x86_64 requires libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), openmpi(x86-64) = 5.0.5-2.fc41
psblas3-openmpi-static-3.8.1-6.post2.fc41.x86_64 requires openmpi(x86-64) = 5.0.5-2.fc41
scotch (maintained by: fuller, smani)
ptscotch-openmpi-7.0.5-1.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
python-dijitso (maintained by: limb)
python-dijitso-2019.1.0-20.fc41.src requires openmpi-devel = 5.0.5-2.fc41
python-lfpy (maintained by: @neuro-sig, lbazan, victortyau)
python-lfpy-2.3-7.fc41.src requires openmpi-devel = 5.0.5-2.fc41
python-pytest-mpi (maintained by: orion)
python-pytest-mpi-0.6-10.fc41.src requires openmpi-devel = 5.0.5-2.fc41
python-steps (maintained by: @neuro-sig, ankursinha)
python-steps-3.6.0-36.fc41.src requires openmpi-devel = 5.0.5-2.fc41
python3-steps-openmpi-3.6.0-36.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
python-torch (maintained by: @rocm-packagers-sig, trix)
python-torch-2.4.1-1.fc42.src requires openmpi-devel = 5.0.5-2.fc41
h5py (maintained by: orion, stevetraylen, terjeros)
python3-h5py-openmpi-3.11.0-3.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
vtk (maintained by: @scitech_sig, orion)
python3-vtk-openmpi-9.2.6-17.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
vtk-openmpi-9.2.6-17.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
vtk-openmpi-devel-9.2.6-17.fc41.x86_64 requires openmpi-devel = 5.0.5-2.fc41
quantum-espresso (maintained by: marcindulak)
quantum-espresso-7.0-12.fc41.src requires openmpi-devel = 5.0.5-2.fc41
quantum-espresso-openmpi-7.0-12.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
sandia-omega-h (maintained by: @neuro-sig, gui1ty)
sandia-omega-h-9.34.13-7.fc41.src requires openmpi-devel = 5.0.5-2.fc41
sandia-omega-h-openmpi-9.34.13-7.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi = 5.0.5-2.fc41
sandia-omega-h-openmpi-devel-9.34.13-7.fc41.x86_64 requires openmpi-devel = 5.0.5-2.fc41
scalapack (maintained by: spot, tomspur)
scalapack-openmpi-2.2.0-10.fc41.x86_64 requires openmpi = 5.0.5-2.fc41
scalapack-openmpi-devel-2.2.0-10.fc41.x86_64 requires openmpi-devel = 5.0.5-2.fc41
scalasca (maintained by: loveshack)
scalasca-2.6.1-7.fc41.src requires openmpi-devel = 5.0.5-2.fc41
scalasca-openmpi-2.6.1-7.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi(x86-64) = 5.0.5-2.fc41
scorep (maintained by: jreuter, loveshack, orion)
scorep-8.4-3.fc41.src requires openmpi-devel = 5.0.5-2.fc41
sundials (maintained by: sagitter)
sundials-openmpi-6.7.0-4.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
superlu_dist (maintained by: fuller, loveshack, sagitter)
superlu_dist-openmpi-1:8.2.0-5.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), libmpi_mpifh.so.40()(64bit)(openmpi-x86_64), libmpi_usempi_ignore_tkr.so.40()(64bit)(openmpi-x86_64), libmpi_usempif08.so.40()(64bit)(openmpi-x86_64)
superlu_dist-openmpi-devel-1:8.2.0-5.fc42.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64), openmpi-devel(x86-64) = 5.0.5-2.fc41
valgrind (maintained by: ahajkova, dodji, fche, jakub, jcheca, mjw)
valgrind-openmpi-1:3.23.0-5.fc41.x86_64 requires libmpi.so.40()(64bit)(openmpi-x86_64)
votca (maintained by: junghans)
votca-2024.1-1.fc41.src requires openmpi-devel = 5.0.5-2.fc41
Too many dependencies for pmix, not all listed here
Depending on: pycanberra (1), status change: 2024-09-06 (2 weeks ago)
pitivi (maintained by: ignatenkobrain, limb, wtaymans)
pitivi-2023.03-11.fc41.x86_64 requires python3-canberra = 0-0.38.git88c53cd.fc41
Depending on: python-case (1), status change: 2024-08-16 (5 weeks ago)
python-hpilo (maintained by: aekoroglu)
python-hpilo-4.4.3-9.fc41.src requires python3-case = 1.5.3-22.fc41
Depending on: python-nss (1), status change: 2024-09-10 (1 weeks ago)
sigul (maintained by: kevin, mitr)
sigul-1.2-4.fc41.src requires python3-nss = 1.0.1^20210803hg9de14a6f77e2-12.fc41
sigul-1.2-4.fc41.x86_64 requires python3-nss = 1.0.1^20210803hg9de14a6f77e2-12.fc41
Depending on: python-oslo-concurrency (4), status change: 2024-09-09 (2 weeks ago)
copr-dist-git (maintained by: @copr-sig, frostyx, msuchy, praiskup)
copr-dist-git-0.70-1.fc41.noarch requires python3-oslo-concurrency = 6.0.0-1.fc41
copr-dist-git-0.70-1.fc41.src requires python3-oslo-concurrency = 6.0.0-1.fc41
python-oslo-service (maintained by: orphan)
python-oslo-service-3.3.0-1.fc41.src requires python3-oslo-concurrency = 6.0.0-1.fc41
python3-oslo-service-3.3.0-1.fc41.noarch requires python3-oslo-concurrency = 6.0.0-1.fc41, python3.12dist(oslo-concurrency) = 6
python-oslo-messaging (maintained by: orphan)
python-oslo-messaging-14.7.0-2.fc41.src requires python3-oslo-service = 3.3.0-1.fc41
python3-oslo-messaging-14.7.0-2.fc41.noarch requires python3-oslo-service = 3.3.0-1.fc41
python3-oslo-messaging-tests-14.7.0-2.fc41.noarch requires python3-oslo-service = 3.3.0-1.fc41
python-k2hr3-osnl (maintained by: orphan)
python-k2hr3-osnl-1.0.6-1.fc41.src requires python3-oslo-messaging = 14.7.0-2.fc41
python3-k2hr3-osnl-1.0.6-1.fc41.noarch requires python3-oslo-messaging = 14.7.0-2.fc41, python3.12dist(oslo-messaging) = 14.7
Depending on: python-oslo-messaging (1), status change: 2024-09-09 (2 weeks ago)
python-k2hr3-osnl (maintained by: orphan)
python-k2hr3-osnl-1.0.6-1.fc41.src requires python3-oslo-messaging = 14.7.0-2.fc41
python3-k2hr3-osnl-1.0.6-1.fc41.noarch requires python3-oslo-messaging = 14.7.0-2.fc41, python3.12dist(oslo-messaging) = 14.7
Depending on: python-oslo-service (2), status change: 2024-09-09 (2 weeks ago)
python-oslo-messaging (maintained by: orphan)
python-oslo-messaging-14.7.0-2.fc41.src requires python3-oslo-service = 3.3.0-1.fc41
python3-oslo-messaging-14.7.0-2.fc41.noarch requires python3-oslo-service = 3.3.0-1.fc41
python3-oslo-messaging-tests-14.7.0-2.fc41.noarch requires python3-oslo-service = 3.3.0-1.fc41
python-k2hr3-osnl (maintained by: orphan)
python-k2hr3-osnl-1.0.6-1.fc41.src requires python3-oslo-messaging = 14.7.0-2.fc41
python3-k2hr3-osnl-1.0.6-1.fc41.noarch requires python3-oslo-messaging = 14.7.0-2.fc41, python3.12dist(oslo-messaging) = 14.7
Depending on: python-pyvmomi (5), status change: 2024-09-18 (0 weeks ago)
python-pvc (maintained by: @python-packagers-sig, raphgro)
python-pvc-0.3.0-24.fc41.src requires python3-pyvmomi = 8.0.3.0.1-1.fc42, python3-vconnector = 0.6.0-16.fc41
python3-pvc-0.3.0-24.fc41.noarch requires python3.13dist(pyvmomi) = 8.0.3.0.1, python3.13dist(vconnector) = 0.6
python-pyvirtualize (maintained by: @python-packagers-sig, raphgro)
python-pyvirtualize-0.10-19.20191018gitdc2d971.fc41.src requires python3dist(pyvmomi) = 8.0.3.0.1
python3-pyvirtualize-0.10-19.20191018gitdc2d971.fc41.noarch requires python3-pyvmomi = 8.0.3.0.1-1.fc42, python3.13dist(pyvmomi) = 8.0.3.0.1
python-vconnector (maintained by: @python-packagers-sig, raphgro)
python-vconnector-0.6.0-16.fc41.src requires python3-pyvmomi = 8.0.3.0.1-1.fc42
python3-vconnector-0.6.0-16.fc41.noarch requires python3.13dist(pyvmomi) = 8.0.3.0.1
python-vevents (maintained by: @python-packagers-sig, raphgro)
python-vevents-0.1.0-0.18.20149631git3ff37a2.fc41.src requires python3-pyvmomi = 8.0.3.0.1-1.fc42, python3-vconnector = 0.6.0-16.fc41
python3-vevents-0.1.0-0.18.20149631git3ff37a2.fc41.noarch requires python3.13dist(pyvmomi) = 8.0.3.0.1, python3.13dist(vconnector) = 0.6
python-vpoller (maintained by: @python-packagers-sig, raphgro)
python-vpoller-0.7.3-24.fc41.src requires python3-pyvmomi = 8.0.3.0.1-1.fc42, python3-vconnector = 0.6.0-16.fc41
python3-vpoller-0.7.3-24.fc41.noarch requires python3.13dist(pyvmomi) = 8.0.3.0.1, python3.13dist(vconnector) = 0.6
Affected (co)maintainers
@abrt-sig: abrt-java-connector
@copr-sig: python-oslo-concurrency
@dns-sig: m2crypto
@epel-packagers-sig: python-oslo-concurrency, pmix
@go-sig: golang-github-emersion-milter, golang-github-emersion-msgauth
@haskell-lang-sig: ghc-cryptohash
@infra-sig: ansible-collection-netbox-netbox
@neuro-sig: pmix
@openstack-sig: python-oslo-concurrency
@python-packagers-sig: pycanberra, python-hypothesis-fspaths, m2crypto, pmix, python-pyvmomi
@rocm-packagers-sig: pmix
@scitech_sig: pmix
aekoroglu: python-case
agerstmayr: RediSearch
ahajkova: pmix
ankursinha: pmix
apevec: python-oslo-concurrency
breilly: fedmsg, m2crypto
cicku: pmix
clalance: m2crypto
corsepiu: pmix
cottsay: orocos-kdl
cqi: m2crypto
cz4rs: pmix
davidsch: pmix
dcantrell: pmix
denisarnaud: pmix
diehlpk: pmix
dledford: pmix
dodji: pmix
ellio167: pmix
fale: python-pyvmomi
fche: pmix
frankcrawford: m2crypto
frostyx: python-oslo-concurrency
fuller: pmix
gui1ty: pmix
hannes: pmix
hobbes1069: pmix
ignatenkobrain: ansible-collection-netbox-netbox, pmix, pycanberra
jakub: pmix
jchaloup: pmix
jcheca: pmix
jkastner: pmix
jngrad: pmix
jonathanspw: m2crypto
jreuter: pmix
jskarvad: pmix
julian8628: m2crypto
junghans: pmix
jussilehtola: pmix
jwakely: pmix
kevin: python-nss, m2crypto
kheib: pmix
konradm: pmix
krege: pmix
lbazan: pmix
lberk: rebloom, rejson
lecris: pmix
limb: pmix, pycanberra
lkundrak: pmix
loveshack: pmix
lucilanga: gpsman
marcindulak: pmix
mcermak: pmix
michich: pmix
mikem: fedmsg, m2crypto
mipatras: m2crypto
mitr: python-nss, m2crypto
mjw: pmix
msuchy: python-oslo-concurrency
neil: pmix
ngompa: python-case
orion: pmix
pcpa: pmix
pemensik: m2crypto
pingou: python-case
ppalka: pmix
praiskup: python-oslo-concurrency
puiterwijk: m2crypto
pwhalen: gearmand
raphgro: python-pyvmomi
rberger: pmix
rcallicotte: python-pyvmomi
remi: gearmand, php-ralouphie-getallheaders
sagitter: pmix
salimma: pmix
sbluhm: python-ws4py
simo: m2crypto
siwinski: php-ralouphie-getallheaders
smani: pmix
spot: pmix
stevetraylen: pmix
tdecacqu: python-gear
terjeros: pmix
tomspur: pmix
topazus: pmix
trix: pmix
trodgers: pmix
victortyau: pmix
wtaymans: pycanberra
zbyszek: pmix
zuul: python-ws4py, python-gear
Orphans (40): RediSearch abrt-java-connector
ansible-collection-netbox-netbox ctemplate echolinux fedmsg
gearmand ghc-cryptohash golang-github-emersion-milter
golang-github-emersion-msgauth gpsman harvey libkindrv m2crypto
orocos-bfl orocos-kdl pcc php-aws-sdk3 php-guzzlehttp-guzzle6
php-ralouphie-getallheaders pmix pycanberra python-case
python-fedmsg-meta-fedora-infrastructure python-ffmpeg-python
python-gear python-hypothesis-fspaths python-iptools
python-k2hr3-osnl python-nss python-opentracing
python-oslo-concurrency python-oslo-messaging python-oslo-service
python-pyvmomi python-webpy python-ws4py rebloom rejson viking
Orphans (dependend on) (15): fedmsg gearmand
golang-github-emersion-milter gpsman m2crypto
php-guzzlehttp-guzzle6 php-ralouphie-getallheaders pmix pycanberra
python-case python-nss python-oslo-concurrency
python-oslo-messaging python-oslo-service python-pyvmomi
Orphans (rawhide) for at least 6 weeks (dependend on) (0):
Orphans (rawhide) (not depended on) (25): RediSearch
abrt-java-connector ansible-collection-netbox-netbox ctemplate
echolinux ghc-cryptohash golang-github-emersion-msgauth harvey
libkindrv orocos-bfl orocos-kdl pcc php-aws-sdk3
python-fedmsg-meta-fedora-infrastructure python-ffmpeg-python
python-gear python-hypothesis-fspaths python-iptools
python-k2hr3-osnl python-opentracing python-webpy python-ws4py
rebloom rejson viking
Orphans (rawhide) for at least 6 weeks (not dependend on) (0):
Depending packages (rawhide) (96): MUMPS MUSIC amg4psblas arbor auryn
boost bout++ cgnslib coin-or-Ipopt combblas copr-dist-git cp2k
dbcsr dl_poly dnsviz elk espresso fftw freefem++ fts-rest-client
ga gloo gmsh golang-github-emersion-msgauth gpaw gretl gromacs
h5py hash-slinger hdf5 hpl hpx hypre imagefactory
imagefactory-plugins intel-mpi-benchmarks ipsilon lammps libcircle
libneurosim mathgl mfem module-build-service mpi4py mpibash nest
netcdf netcdf-cxx4 netcdf-fortran netgen-mesher neuron nwchem
openmpi orsa osu-micro-benchmarks oz paraview petsc
php-aws-php-sns-message-validator php-aws-sdk3
php-guzzlehttp-guzzle6 php-guzzlehttp-psr7 php-pecl-gearman pitivi
prrte psblas3 python-dijitso
python-fedmsg-meta-fedora-infrastructure python-hpilo
python-k2hr3-osnl python-lfpy python-oslo-messaging
python-oslo-service python-pvc python-pytest-mpi
python-pyvirtualize python-steps python-torch python-vconnector
python-vevents python-vpoller quantum-espresso sandia-omega-h
scalapack scalasca scorep scotch sigul slurm sundials superlu_dist
ursa-major valgrind votca vtk xastir
Packages depending on packages orphaned (rawhide) for more than 6
weeks (0):
--
The script creating this output is run and developed by Fedora
Release Engineering. Please report issues at its pagure instance:
https://pagure.io/releng/
The sources of this script can be found at:
https://pagure.io/releng/blob/main/f/scripts/find_unblocked_orphans.py
Report finished at 2024-09-23 18:06:36 UTC
[USN-7021-2] Linux kernel vulnerabilities
==========================================================================
Ubuntu Security Notice USN-7021-2
September 23, 2024
linux-ibm-5.15, linux-oracle-5.15, linux-xilinx-zynqmp vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Summary:
Several security issues were fixed in the Linux kernel.
Software Description:
- linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP processors
- linux-ibm-5.15: Linux kernel for IBM cloud systems
- linux-oracle-5.15: Linux kernel for Oracle Cloud systems
Details:
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- GPU drivers;
- BTRFS file system;
- F2FS file system;
- GFS2 file system;
- BPF subsystem;
- Netfilter;
- RxRPC session sockets;
- Integrity Measurement Architecture(IMA) framework;
(CVE-2024-27012, CVE-2024-39496, CVE-2024-26677, CVE-2024-42228,
CVE-2024-38570, CVE-2024-39494, CVE-2024-42160, CVE-2024-41009)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 22.04 LTS
linux-image-5.15.0-1036-xilinx-zynqmp 5.15.0-1036.40
linux-image-xilinx-zynqmp 5.15.0.1036.40
Ubuntu 20.04 LTS
linux-image-5.15.0-1063-ibm 5.15.0-1063.66~20.04.1
linux-image-5.15.0-1068-oracle 5.15.0-1068.74~20.04.1
linux-image-ibm 5.15.0.1063.66~20.04.1
linux-image-oracle 5.15.0.1068.74~20.04.1
After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.
References:
https://ubuntu.com/security/notices/USN-7021-2
https://ubuntu.com/security/notices/USN-7021-1
CVE-2024-26677, CVE-2024-27012, CVE-2024-38570, CVE-2024-39494,
CVE-2024-39496, CVE-2024-41009, CVE-2024-42160, CVE-2024-42228
Package Information:
https://launchpad.net/ubuntu/+source/linux-xilinx-zynqmp/5.15.0-1036.40
https://launchpad.net/ubuntu/+source/linux-ibm-5.15/5.15.0-1063.66~20.04.1
https://launchpad.net/ubuntu/+source/linux-oracle-5.15/5.15.0-1068.74~20.04.1
Ubuntu Security Notice USN-7021-2
September 23, 2024
linux-ibm-5.15, linux-oracle-5.15, linux-xilinx-zynqmp vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Summary:
Several security issues were fixed in the Linux kernel.
Software Description:
- linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP processors
- linux-ibm-5.15: Linux kernel for IBM cloud systems
- linux-oracle-5.15: Linux kernel for Oracle Cloud systems
Details:
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- GPU drivers;
- BTRFS file system;
- F2FS file system;
- GFS2 file system;
- BPF subsystem;
- Netfilter;
- RxRPC session sockets;
- Integrity Measurement Architecture(IMA) framework;
(CVE-2024-27012, CVE-2024-39496, CVE-2024-26677, CVE-2024-42228,
CVE-2024-38570, CVE-2024-39494, CVE-2024-42160, CVE-2024-41009)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 22.04 LTS
linux-image-5.15.0-1036-xilinx-zynqmp 5.15.0-1036.40
linux-image-xilinx-zynqmp 5.15.0.1036.40
Ubuntu 20.04 LTS
linux-image-5.15.0-1063-ibm 5.15.0-1063.66~20.04.1
linux-image-5.15.0-1068-oracle 5.15.0-1068.74~20.04.1
linux-image-ibm 5.15.0.1063.66~20.04.1
linux-image-oracle 5.15.0.1068.74~20.04.1
After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.
References:
https://ubuntu.com/security/notices/USN-7021-2
https://ubuntu.com/security/notices/USN-7021-1
CVE-2024-26677, CVE-2024-27012, CVE-2024-38570, CVE-2024-39494,
CVE-2024-39496, CVE-2024-41009, CVE-2024-42160, CVE-2024-42228
Package Information:
https://launchpad.net/ubuntu/+source/linux-xilinx-zynqmp/5.15.0-1036.40
https://launchpad.net/ubuntu/+source/linux-ibm-5.15/5.15.0-1063.66~20.04.1
https://launchpad.net/ubuntu/+source/linux-oracle-5.15/5.15.0-1068.74~20.04.1
[USN-7029-1] Linux kernel vulnerabilities
==========================================================================
Ubuntu Security Notice USN-7029-1
September 23, 2024
linux-hwe-6.8
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 22.04 LTS
Summary:
Several security issues were fixed in the Linux kernel.
Software Description:
- linux-hwe-6.8: Linux hardware enablement (HWE) kernel
Details:
Chenyuan Yang discovered that the CEC driver driver in the Linux kernel
contained a use-after-free vulnerability. A local attacker could use this
to cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2024-23848)
It was discovered that the JFS file system contained an out-of-bounds read
vulnerability when printing xattr debug information. A local attacker could
use this to cause a denial of service (system crash). (CVE-2024-40902)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- ARM64 architecture;
- MIPS architecture;
- PA-RISC architecture;
- PowerPC architecture;
- RISC-V architecture;
- User-Mode Linux (UML);
- x86 architecture;
- Block layer subsystem;
- ACPI drivers;
- Drivers core;
- Null block device driver;
- Character device driver;
- TPM device driver;
- Clock framework and drivers;
- CPU frequency scaling framework;
- Hardware crypto device drivers;
- CXL (Compute Express Link) drivers;
- Buffer Sharing and Synchronization framework;
- DMA engine subsystem;
- EFI core;
- FPGA Framework;
- GPU drivers;
- Greybus drivers;
- HID subsystem;
- HW tracing;
- I2C subsystem;
- IIO subsystem;
- InfiniBand drivers;
- Input Device (Mouse) drivers;
- Mailbox framework;
- Media drivers;
- Microchip PCI driver;
- VMware VMCI Driver;
- MMC subsystem;
- Network drivers;
- PCI subsystem;
- x86 platform drivers;
- PTP clock framework;
- S/390 drivers;
- SCSI drivers;
- SoundWire subsystem;
- Sonic Silicon Backplane drivers;
- Greybus lights staging drivers;
- Thermal drivers;
- TTY drivers;
- USB subsystem;
- VFIO drivers;
- Framebuffer layer;
- Watchdog drivers;
- 9P distributed file system;
- BTRFS file system;
- File systems infrastructure;
- Ext4 file system;
- F2FS file system;
- JFS file system;
- Network file system server daemon;
- NILFS2 file system;
- NTFS3 file system;
- SMB network file system;
- Tracing file system;
- IOMMU subsystem;
- Tracing infrastructure;
- io_uring subsystem;
- Core kernel;
- BPF subsystem;
- Kernel debugger infrastructure;
- DMA mapping infrastructure;
- IRQ subsystem;
- Memory management;
- 9P file system network protocol;
- Amateur Radio drivers;
- B.A.T.M.A.N. meshing protocol;
- Ethernet bridge;
- Networking core;
- Ethtool driver;
- IPv4 networking;
- IPv6 networking;
- MAC80211 subsystem;
- Multipath TCP;
- Netfilter;
- NET/ROM layer;
- NFC subsystem;
- Network traffic control;
- Sun RPC protocol;
- TIPC protocol;
- TLS protocol;
- Unix domain sockets;
- Wireless networking;
- XFRM subsystem;
- AppArmor security module;
- Integrity Measurement Architecture(IMA) framework;
- Landlock security;
- Linux Security Modules (LSM) Framework;
- SELinux security module;
- Simplified Mandatory Access Control Kernel framework;
- ALSA framework;
- HD-audio driver;
- SOF drivers;
- KVM core;
(CVE-2024-39498, CVE-2024-33847, CVE-2024-39510, CVE-2024-39462,
CVE-2024-40930, CVE-2024-38634, CVE-2024-40962, CVE-2024-37078,
CVE-2024-39371, CVE-2024-40972, CVE-2024-41002, CVE-2024-40920,
CVE-2024-40982, CVE-2024-40915, CVE-2024-40942, CVE-2024-42154,
CVE-2024-40937, CVE-2024-40967, CVE-2024-40909, CVE-2024-36244,
CVE-2024-33619, CVE-2024-39277, CVE-2024-40900, CVE-2024-38661,
CVE-2024-40974, CVE-2024-38618, CVE-2024-32936, CVE-2024-40906,
CVE-2024-40919, CVE-2024-39470, CVE-2024-38390, CVE-2024-40966,
CVE-2024-39467, CVE-2024-40938, CVE-2024-39471, CVE-2024-39485,
CVE-2024-39495, CVE-2024-39492, CVE-2024-39475, CVE-2024-40953,
CVE-2024-40939, CVE-2024-39493, CVE-2024-38637, CVE-2024-40945,
CVE-2024-41006, CVE-2024-39461, CVE-2024-40948, CVE-2024-40916,
CVE-2024-40925, CVE-2024-40956, CVE-2024-40970, CVE-2024-40912,
CVE-2024-33621, CVE-2024-40989, CVE-2024-36489, CVE-2024-37354,
CVE-2024-34027, CVE-2024-39506, CVE-2024-39296, CVE-2024-40977,
CVE-2024-38624, CVE-2024-40983, CVE-2024-40911, CVE-2024-36477,
CVE-2024-38384, CVE-2024-39507, CVE-2024-38659, CVE-2024-40987,
CVE-2024-40922, CVE-2024-36978, CVE-2024-38629, CVE-2024-38622,
CVE-2024-40921, CVE-2024-40903, CVE-2024-38306, CVE-2024-40926,
CVE-2024-39291, CVE-2024-36286, CVE-2024-40910, CVE-2024-40943,
CVE-2024-40899, CVE-2024-37356, CVE-2024-40961, CVE-2024-39468,
CVE-2024-40940, CVE-2024-40931, CVE-2024-38381, CVE-2024-40998,
CVE-2024-34030, CVE-2024-41000, CVE-2024-40986, CVE-2024-38663,
CVE-2024-40914, CVE-2024-31076, CVE-2024-42228, CVE-2024-40978,
CVE-2024-40975, CVE-2024-39494, CVE-2024-40905, CVE-2024-40908,
CVE-2024-38625, CVE-2024-38388, CVE-2024-40965, CVE-2024-41004,
CVE-2023-52884, CVE-2024-39484, CVE-2024-40951, CVE-2024-40988,
CVE-2024-40929, CVE-2024-39491, CVE-2024-40992, CVE-2024-41009,
CVE-2024-40976, CVE-2024-40917, CVE-2024-39502, CVE-2024-40999,
CVE-2024-39479, CVE-2024-39505, CVE-2024-40981, CVE-2024-38662,
CVE-2024-38636, CVE-2024-39496, CVE-2024-39276, CVE-2024-41003,
CVE-2024-37021, CVE-2024-36972, CVE-2024-38780, CVE-2024-40954,
CVE-2024-40963, CVE-2024-36478, CVE-2024-39465, CVE-2024-39474,
CVE-2024-39490, CVE-2024-36484, CVE-2024-36974, CVE-2024-38628,
CVE-2024-36479, CVE-2024-42078, CVE-2024-40936, CVE-2024-38385,
CVE-2024-40996, CVE-2024-40901, CVE-2024-40969, CVE-2024-39483,
CVE-2024-40990, CVE-2024-40947, CVE-2024-40980, CVE-2024-39464,
CVE-2024-40923, CVE-2024-40933, CVE-2024-39481, CVE-2024-40927,
CVE-2024-38667, CVE-2024-42159, CVE-2024-38635, CVE-2024-38627,
CVE-2024-38630, CVE-2024-39504, CVE-2024-34777, CVE-2024-40944,
CVE-2024-37026, CVE-2024-38633, CVE-2024-40941, CVE-2024-39499,
CVE-2024-36270, CVE-2024-35247, CVE-2024-40924, CVE-2024-40984,
CVE-2024-40968, CVE-2024-39489, CVE-2024-39298, CVE-2024-40949,
CVE-2024-39508, CVE-2024-41001, CVE-2024-40934, CVE-2024-40957,
CVE-2024-39292, CVE-2024-40979, CVE-2024-39488, CVE-2024-40995,
CVE-2024-39500, CVE-2024-40918, CVE-2024-36015, CVE-2024-39503,
CVE-2024-39301, CVE-2024-39466, CVE-2024-42224, CVE-2024-39478,
CVE-2024-40902, CVE-2024-39509, CVE-2024-39463, CVE-2024-40971,
CVE-2024-40928, CVE-2024-38664, CVE-2024-39473, CVE-2024-39501,
CVE-2024-36288, CVE-2024-42148, CVE-2024-38621, CVE-2024-38632,
CVE-2024-41005, CVE-2024-38619, CVE-2024-36973, CVE-2024-40994,
CVE-2024-42160, CVE-2024-40960, CVE-2024-40958, CVE-2024-39469,
CVE-2022-48772, CVE-2024-40964, CVE-2024-40913, CVE-2024-36481,
CVE-2024-40932, CVE-2024-36971, CVE-2024-40935, CVE-2024-38623,
CVE-2024-40997, CVE-2024-40952, CVE-2024-40955, CVE-2024-36281,
CVE-2024-39480, CVE-2024-40904, CVE-2024-40985, CVE-2024-39497,
CVE-2024-40973, CVE-2024-40959)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 22.04 LTS
linux-image-6.8.0-45-generic 6.8.0-45.45~22.04.1
linux-image-6.8.0-45-generic-64k 6.8.0-45.45~22.04.1
linux-image-generic-64k-hwe-22.04 6.8.0-45.45~22.04.1
linux-image-generic-hwe-22.04 6.8.0-45.45~22.04.1
linux-image-oem-22.04 6.8.0-45.45~22.04.1
linux-image-oem-22.04a 6.8.0-45.45~22.04.1
linux-image-oem-22.04b 6.8.0-45.45~22.04.1
linux-image-oem-22.04c 6.8.0-45.45~22.04.1
linux-image-oem-22.04d 6.8.0-45.45~22.04.1
linux-image-virtual-hwe-22.04 6.8.0-45.45~22.04.1
After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.
References:
https://ubuntu.com/security/notices/USN-7029-1
CVE-2022-48772, CVE-2023-52884, CVE-2024-23848, CVE-2024-31076,
CVE-2024-32936, CVE-2024-33619, CVE-2024-33621, CVE-2024-33847,
CVE-2024-34027, CVE-2024-34030, CVE-2024-34777, CVE-2024-35247,
CVE-2024-36015, CVE-2024-36244, CVE-2024-36270, CVE-2024-36281,
CVE-2024-36286, CVE-2024-36288, CVE-2024-36477, CVE-2024-36478,
CVE-2024-36479, CVE-2024-36481, CVE-2024-36484, CVE-2024-36489,
CVE-2024-36971, CVE-2024-36972, CVE-2024-36973, CVE-2024-36974,
CVE-2024-36978, CVE-2024-37021, CVE-2024-37026, CVE-2024-37078,
CVE-2024-37354, CVE-2024-37356, CVE-2024-38306, CVE-2024-38381,
CVE-2024-38384, CVE-2024-38385, CVE-2024-38388, CVE-2024-38390,
CVE-2024-38618, CVE-2024-38619, CVE-2024-38621, CVE-2024-38622,
CVE-2024-38623, CVE-2024-38624, CVE-2024-38625, CVE-2024-38627,
CVE-2024-38628, CVE-2024-38629, CVE-2024-38630, CVE-2024-38632,
CVE-2024-38633, CVE-2024-38634, CVE-2024-38635, CVE-2024-38636,
CVE-2024-38637, CVE-2024-38659, CVE-2024-38661, CVE-2024-38662,
CVE-2024-38663, CVE-2024-38664, CVE-2024-38667, CVE-2024-38780,
CVE-2024-39276, CVE-2024-39277, CVE-2024-39291, CVE-2024-39292,
CVE-2024-39296, CVE-2024-39298, CVE-2024-39301, CVE-2024-39371,
CVE-2024-39461, CVE-2024-39462, CVE-2024-39463, CVE-2024-39464,
CVE-2024-39465, CVE-2024-39466, CVE-2024-39467, CVE-2024-39468,
CVE-2024-39469, CVE-2024-39470, CVE-2024-39471, CVE-2024-39473,
CVE-2024-39474, CVE-2024-39475, CVE-2024-39478, CVE-2024-39479,
CVE-2024-39480, CVE-2024-39481, CVE-2024-39483, CVE-2024-39484,
CVE-2024-39485, CVE-2024-39488, CVE-2024-39489, CVE-2024-39490,
CVE-2024-39491, CVE-2024-39492, CVE-2024-39493, CVE-2024-39494,
CVE-2024-39495, CVE-2024-39496, CVE-2024-39497, CVE-2024-39498,
CVE-2024-39499, CVE-2024-39500, CVE-2024-39501, CVE-2024-39502,
CVE-2024-39503, CVE-2024-39504, CVE-2024-39505, CVE-2024-39506,
CVE-2024-39507, CVE-2024-39508, CVE-2024-39509, CVE-2024-39510,
CVE-2024-40899, CVE-2024-40900, CVE-2024-40901, CVE-2024-40902,
CVE-2024-40903, CVE-2024-40904, CVE-2024-40905, CVE-2024-40906,
CVE-2024-40908, CVE-2024-40909, CVE-2024-40910, CVE-2024-40911,
CVE-2024-40912, CVE-2024-40913, CVE-2024-40914, CVE-2024-40915,
CVE-2024-40916, CVE-2024-40917, CVE-2024-40918, CVE-2024-40919,
CVE-2024-40920, CVE-2024-40921, CVE-2024-40922, CVE-2024-40923,
CVE-2024-40924, CVE-2024-40925, CVE-2024-40926, CVE-2024-40927,
CVE-2024-40928, CVE-2024-40929, CVE-2024-40930, CVE-2024-40931,
CVE-2024-40932, CVE-2024-40933, CVE-2024-40934, CVE-2024-40935,
CVE-2024-40936, CVE-2024-40937, CVE-2024-40938, CVE-2024-40939,
CVE-2024-40940, CVE-2024-40941, CVE-2024-40942, CVE-2024-40943,
CVE-2024-40944, CVE-2024-40945, CVE-2024-40947, CVE-2024-40948,
CVE-2024-40949, CVE-2024-40951, CVE-2024-40952, CVE-2024-40953,
CVE-2024-40954, CVE-2024-40955, CVE-2024-40956, CVE-2024-40957,
CVE-2024-40958, CVE-2024-40959, CVE-2024-40960, CVE-2024-40961,
CVE-2024-40962, CVE-2024-40963, CVE-2024-40964, CVE-2024-40965,
CVE-2024-40966, CVE-2024-40967, CVE-2024-40968, CVE-2024-40969,
CVE-2024-40970, CVE-2024-40971, CVE-2024-40972, CVE-2024-40973,
CVE-2024-40974, CVE-2024-40975, CVE-2024-40976, CVE-2024-40977,
CVE-2024-40978, CVE-2024-40979, CVE-2024-40980, CVE-2024-40981,
CVE-2024-40982, CVE-2024-40983, CVE-2024-40984, CVE-2024-40985,
CVE-2024-40986, CVE-2024-40987, CVE-2024-40988, CVE-2024-40989,
CVE-2024-40990, CVE-2024-40992, CVE-2024-40994, CVE-2024-40995,
CVE-2024-40996, CVE-2024-40997, CVE-2024-40998, CVE-2024-40999,
CVE-2024-41000, CVE-2024-41001, CVE-2024-41002, CVE-2024-41003,
CVE-2024-41004, CVE-2024-41005, CVE-2024-41006, CVE-2024-41009,
CVE-2024-42078, CVE-2024-42148, CVE-2024-42154, CVE-2024-42159,
CVE-2024-42160, CVE-2024-42224, CVE-2024-42228
Package Information:
https://launchpad.net/ubuntu/+source/linux-hwe-6.8/6.8.0-45.45~22.04.1
Ubuntu Security Notice USN-7029-1
September 23, 2024
linux-hwe-6.8
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 22.04 LTS
Summary:
Several security issues were fixed in the Linux kernel.
Software Description:
- linux-hwe-6.8: Linux hardware enablement (HWE) kernel
Details:
Chenyuan Yang discovered that the CEC driver driver in the Linux kernel
contained a use-after-free vulnerability. A local attacker could use this
to cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2024-23848)
It was discovered that the JFS file system contained an out-of-bounds read
vulnerability when printing xattr debug information. A local attacker could
use this to cause a denial of service (system crash). (CVE-2024-40902)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- ARM64 architecture;
- MIPS architecture;
- PA-RISC architecture;
- PowerPC architecture;
- RISC-V architecture;
- User-Mode Linux (UML);
- x86 architecture;
- Block layer subsystem;
- ACPI drivers;
- Drivers core;
- Null block device driver;
- Character device driver;
- TPM device driver;
- Clock framework and drivers;
- CPU frequency scaling framework;
- Hardware crypto device drivers;
- CXL (Compute Express Link) drivers;
- Buffer Sharing and Synchronization framework;
- DMA engine subsystem;
- EFI core;
- FPGA Framework;
- GPU drivers;
- Greybus drivers;
- HID subsystem;
- HW tracing;
- I2C subsystem;
- IIO subsystem;
- InfiniBand drivers;
- Input Device (Mouse) drivers;
- Mailbox framework;
- Media drivers;
- Microchip PCI driver;
- VMware VMCI Driver;
- MMC subsystem;
- Network drivers;
- PCI subsystem;
- x86 platform drivers;
- PTP clock framework;
- S/390 drivers;
- SCSI drivers;
- SoundWire subsystem;
- Sonic Silicon Backplane drivers;
- Greybus lights staging drivers;
- Thermal drivers;
- TTY drivers;
- USB subsystem;
- VFIO drivers;
- Framebuffer layer;
- Watchdog drivers;
- 9P distributed file system;
- BTRFS file system;
- File systems infrastructure;
- Ext4 file system;
- F2FS file system;
- JFS file system;
- Network file system server daemon;
- NILFS2 file system;
- NTFS3 file system;
- SMB network file system;
- Tracing file system;
- IOMMU subsystem;
- Tracing infrastructure;
- io_uring subsystem;
- Core kernel;
- BPF subsystem;
- Kernel debugger infrastructure;
- DMA mapping infrastructure;
- IRQ subsystem;
- Memory management;
- 9P file system network protocol;
- Amateur Radio drivers;
- B.A.T.M.A.N. meshing protocol;
- Ethernet bridge;
- Networking core;
- Ethtool driver;
- IPv4 networking;
- IPv6 networking;
- MAC80211 subsystem;
- Multipath TCP;
- Netfilter;
- NET/ROM layer;
- NFC subsystem;
- Network traffic control;
- Sun RPC protocol;
- TIPC protocol;
- TLS protocol;
- Unix domain sockets;
- Wireless networking;
- XFRM subsystem;
- AppArmor security module;
- Integrity Measurement Architecture(IMA) framework;
- Landlock security;
- Linux Security Modules (LSM) Framework;
- SELinux security module;
- Simplified Mandatory Access Control Kernel framework;
- ALSA framework;
- HD-audio driver;
- SOF drivers;
- KVM core;
(CVE-2024-39498, CVE-2024-33847, CVE-2024-39510, CVE-2024-39462,
CVE-2024-40930, CVE-2024-38634, CVE-2024-40962, CVE-2024-37078,
CVE-2024-39371, CVE-2024-40972, CVE-2024-41002, CVE-2024-40920,
CVE-2024-40982, CVE-2024-40915, CVE-2024-40942, CVE-2024-42154,
CVE-2024-40937, CVE-2024-40967, CVE-2024-40909, CVE-2024-36244,
CVE-2024-33619, CVE-2024-39277, CVE-2024-40900, CVE-2024-38661,
CVE-2024-40974, CVE-2024-38618, CVE-2024-32936, CVE-2024-40906,
CVE-2024-40919, CVE-2024-39470, CVE-2024-38390, CVE-2024-40966,
CVE-2024-39467, CVE-2024-40938, CVE-2024-39471, CVE-2024-39485,
CVE-2024-39495, CVE-2024-39492, CVE-2024-39475, CVE-2024-40953,
CVE-2024-40939, CVE-2024-39493, CVE-2024-38637, CVE-2024-40945,
CVE-2024-41006, CVE-2024-39461, CVE-2024-40948, CVE-2024-40916,
CVE-2024-40925, CVE-2024-40956, CVE-2024-40970, CVE-2024-40912,
CVE-2024-33621, CVE-2024-40989, CVE-2024-36489, CVE-2024-37354,
CVE-2024-34027, CVE-2024-39506, CVE-2024-39296, CVE-2024-40977,
CVE-2024-38624, CVE-2024-40983, CVE-2024-40911, CVE-2024-36477,
CVE-2024-38384, CVE-2024-39507, CVE-2024-38659, CVE-2024-40987,
CVE-2024-40922, CVE-2024-36978, CVE-2024-38629, CVE-2024-38622,
CVE-2024-40921, CVE-2024-40903, CVE-2024-38306, CVE-2024-40926,
CVE-2024-39291, CVE-2024-36286, CVE-2024-40910, CVE-2024-40943,
CVE-2024-40899, CVE-2024-37356, CVE-2024-40961, CVE-2024-39468,
CVE-2024-40940, CVE-2024-40931, CVE-2024-38381, CVE-2024-40998,
CVE-2024-34030, CVE-2024-41000, CVE-2024-40986, CVE-2024-38663,
CVE-2024-40914, CVE-2024-31076, CVE-2024-42228, CVE-2024-40978,
CVE-2024-40975, CVE-2024-39494, CVE-2024-40905, CVE-2024-40908,
CVE-2024-38625, CVE-2024-38388, CVE-2024-40965, CVE-2024-41004,
CVE-2023-52884, CVE-2024-39484, CVE-2024-40951, CVE-2024-40988,
CVE-2024-40929, CVE-2024-39491, CVE-2024-40992, CVE-2024-41009,
CVE-2024-40976, CVE-2024-40917, CVE-2024-39502, CVE-2024-40999,
CVE-2024-39479, CVE-2024-39505, CVE-2024-40981, CVE-2024-38662,
CVE-2024-38636, CVE-2024-39496, CVE-2024-39276, CVE-2024-41003,
CVE-2024-37021, CVE-2024-36972, CVE-2024-38780, CVE-2024-40954,
CVE-2024-40963, CVE-2024-36478, CVE-2024-39465, CVE-2024-39474,
CVE-2024-39490, CVE-2024-36484, CVE-2024-36974, CVE-2024-38628,
CVE-2024-36479, CVE-2024-42078, CVE-2024-40936, CVE-2024-38385,
CVE-2024-40996, CVE-2024-40901, CVE-2024-40969, CVE-2024-39483,
CVE-2024-40990, CVE-2024-40947, CVE-2024-40980, CVE-2024-39464,
CVE-2024-40923, CVE-2024-40933, CVE-2024-39481, CVE-2024-40927,
CVE-2024-38667, CVE-2024-42159, CVE-2024-38635, CVE-2024-38627,
CVE-2024-38630, CVE-2024-39504, CVE-2024-34777, CVE-2024-40944,
CVE-2024-37026, CVE-2024-38633, CVE-2024-40941, CVE-2024-39499,
CVE-2024-36270, CVE-2024-35247, CVE-2024-40924, CVE-2024-40984,
CVE-2024-40968, CVE-2024-39489, CVE-2024-39298, CVE-2024-40949,
CVE-2024-39508, CVE-2024-41001, CVE-2024-40934, CVE-2024-40957,
CVE-2024-39292, CVE-2024-40979, CVE-2024-39488, CVE-2024-40995,
CVE-2024-39500, CVE-2024-40918, CVE-2024-36015, CVE-2024-39503,
CVE-2024-39301, CVE-2024-39466, CVE-2024-42224, CVE-2024-39478,
CVE-2024-40902, CVE-2024-39509, CVE-2024-39463, CVE-2024-40971,
CVE-2024-40928, CVE-2024-38664, CVE-2024-39473, CVE-2024-39501,
CVE-2024-36288, CVE-2024-42148, CVE-2024-38621, CVE-2024-38632,
CVE-2024-41005, CVE-2024-38619, CVE-2024-36973, CVE-2024-40994,
CVE-2024-42160, CVE-2024-40960, CVE-2024-40958, CVE-2024-39469,
CVE-2022-48772, CVE-2024-40964, CVE-2024-40913, CVE-2024-36481,
CVE-2024-40932, CVE-2024-36971, CVE-2024-40935, CVE-2024-38623,
CVE-2024-40997, CVE-2024-40952, CVE-2024-40955, CVE-2024-36281,
CVE-2024-39480, CVE-2024-40904, CVE-2024-40985, CVE-2024-39497,
CVE-2024-40973, CVE-2024-40959)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 22.04 LTS
linux-image-6.8.0-45-generic 6.8.0-45.45~22.04.1
linux-image-6.8.0-45-generic-64k 6.8.0-45.45~22.04.1
linux-image-generic-64k-hwe-22.04 6.8.0-45.45~22.04.1
linux-image-generic-hwe-22.04 6.8.0-45.45~22.04.1
linux-image-oem-22.04 6.8.0-45.45~22.04.1
linux-image-oem-22.04a 6.8.0-45.45~22.04.1
linux-image-oem-22.04b 6.8.0-45.45~22.04.1
linux-image-oem-22.04c 6.8.0-45.45~22.04.1
linux-image-oem-22.04d 6.8.0-45.45~22.04.1
linux-image-virtual-hwe-22.04 6.8.0-45.45~22.04.1
After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.
References:
https://ubuntu.com/security/notices/USN-7029-1
CVE-2022-48772, CVE-2023-52884, CVE-2024-23848, CVE-2024-31076,
CVE-2024-32936, CVE-2024-33619, CVE-2024-33621, CVE-2024-33847,
CVE-2024-34027, CVE-2024-34030, CVE-2024-34777, CVE-2024-35247,
CVE-2024-36015, CVE-2024-36244, CVE-2024-36270, CVE-2024-36281,
CVE-2024-36286, CVE-2024-36288, CVE-2024-36477, CVE-2024-36478,
CVE-2024-36479, CVE-2024-36481, CVE-2024-36484, CVE-2024-36489,
CVE-2024-36971, CVE-2024-36972, CVE-2024-36973, CVE-2024-36974,
CVE-2024-36978, CVE-2024-37021, CVE-2024-37026, CVE-2024-37078,
CVE-2024-37354, CVE-2024-37356, CVE-2024-38306, CVE-2024-38381,
CVE-2024-38384, CVE-2024-38385, CVE-2024-38388, CVE-2024-38390,
CVE-2024-38618, CVE-2024-38619, CVE-2024-38621, CVE-2024-38622,
CVE-2024-38623, CVE-2024-38624, CVE-2024-38625, CVE-2024-38627,
CVE-2024-38628, CVE-2024-38629, CVE-2024-38630, CVE-2024-38632,
CVE-2024-38633, CVE-2024-38634, CVE-2024-38635, CVE-2024-38636,
CVE-2024-38637, CVE-2024-38659, CVE-2024-38661, CVE-2024-38662,
CVE-2024-38663, CVE-2024-38664, CVE-2024-38667, CVE-2024-38780,
CVE-2024-39276, CVE-2024-39277, CVE-2024-39291, CVE-2024-39292,
CVE-2024-39296, CVE-2024-39298, CVE-2024-39301, CVE-2024-39371,
CVE-2024-39461, CVE-2024-39462, CVE-2024-39463, CVE-2024-39464,
CVE-2024-39465, CVE-2024-39466, CVE-2024-39467, CVE-2024-39468,
CVE-2024-39469, CVE-2024-39470, CVE-2024-39471, CVE-2024-39473,
CVE-2024-39474, CVE-2024-39475, CVE-2024-39478, CVE-2024-39479,
CVE-2024-39480, CVE-2024-39481, CVE-2024-39483, CVE-2024-39484,
CVE-2024-39485, CVE-2024-39488, CVE-2024-39489, CVE-2024-39490,
CVE-2024-39491, CVE-2024-39492, CVE-2024-39493, CVE-2024-39494,
CVE-2024-39495, CVE-2024-39496, CVE-2024-39497, CVE-2024-39498,
CVE-2024-39499, CVE-2024-39500, CVE-2024-39501, CVE-2024-39502,
CVE-2024-39503, CVE-2024-39504, CVE-2024-39505, CVE-2024-39506,
CVE-2024-39507, CVE-2024-39508, CVE-2024-39509, CVE-2024-39510,
CVE-2024-40899, CVE-2024-40900, CVE-2024-40901, CVE-2024-40902,
CVE-2024-40903, CVE-2024-40904, CVE-2024-40905, CVE-2024-40906,
CVE-2024-40908, CVE-2024-40909, CVE-2024-40910, CVE-2024-40911,
CVE-2024-40912, CVE-2024-40913, CVE-2024-40914, CVE-2024-40915,
CVE-2024-40916, CVE-2024-40917, CVE-2024-40918, CVE-2024-40919,
CVE-2024-40920, CVE-2024-40921, CVE-2024-40922, CVE-2024-40923,
CVE-2024-40924, CVE-2024-40925, CVE-2024-40926, CVE-2024-40927,
CVE-2024-40928, CVE-2024-40929, CVE-2024-40930, CVE-2024-40931,
CVE-2024-40932, CVE-2024-40933, CVE-2024-40934, CVE-2024-40935,
CVE-2024-40936, CVE-2024-40937, CVE-2024-40938, CVE-2024-40939,
CVE-2024-40940, CVE-2024-40941, CVE-2024-40942, CVE-2024-40943,
CVE-2024-40944, CVE-2024-40945, CVE-2024-40947, CVE-2024-40948,
CVE-2024-40949, CVE-2024-40951, CVE-2024-40952, CVE-2024-40953,
CVE-2024-40954, CVE-2024-40955, CVE-2024-40956, CVE-2024-40957,
CVE-2024-40958, CVE-2024-40959, CVE-2024-40960, CVE-2024-40961,
CVE-2024-40962, CVE-2024-40963, CVE-2024-40964, CVE-2024-40965,
CVE-2024-40966, CVE-2024-40967, CVE-2024-40968, CVE-2024-40969,
CVE-2024-40970, CVE-2024-40971, CVE-2024-40972, CVE-2024-40973,
CVE-2024-40974, CVE-2024-40975, CVE-2024-40976, CVE-2024-40977,
CVE-2024-40978, CVE-2024-40979, CVE-2024-40980, CVE-2024-40981,
CVE-2024-40982, CVE-2024-40983, CVE-2024-40984, CVE-2024-40985,
CVE-2024-40986, CVE-2024-40987, CVE-2024-40988, CVE-2024-40989,
CVE-2024-40990, CVE-2024-40992, CVE-2024-40994, CVE-2024-40995,
CVE-2024-40996, CVE-2024-40997, CVE-2024-40998, CVE-2024-40999,
CVE-2024-41000, CVE-2024-41001, CVE-2024-41002, CVE-2024-41003,
CVE-2024-41004, CVE-2024-41005, CVE-2024-41006, CVE-2024-41009,
CVE-2024-42078, CVE-2024-42148, CVE-2024-42154, CVE-2024-42159,
CVE-2024-42160, CVE-2024-42224, CVE-2024-42228
Package Information:
https://launchpad.net/ubuntu/+source/linux-hwe-6.8/6.8.0-45.45~22.04.1
[USN-7007-3] Linux kernel vulnerabilities
==========================================================================
Ubuntu Security Notice USN-7007-3
September 23, 2024
linux-lowlatency, linux-lowlatency-hwe-5.15 vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Summary:
Several security issues were fixed in the Linux kernel.
Software Description:
- linux-lowlatency: Linux low latency kernel
- linux-lowlatency-hwe-5.15: Linux low latency kernel
Details:
Chenyuan Yang discovered that the CEC driver driver in the Linux kernel
contained a use-after-free vulnerability. A local attacker could use this
to cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2024-23848)
Chenyuan Yang discovered that the USB Gadget subsystem in the Linux kernel
did not properly check for the device to be enabled before writing. A local
attacker could possibly use this to cause a denial of service.
(CVE-2024-25741)
It was discovered that the JFS file system contained an out-of-bounds read
vulnerability when printing xattr debug information. A local attacker could
use this to cause a denial of service (system crash). (CVE-2024-40902)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- ARM64 architecture;
- M68K architecture;
- MIPS architecture;
- PowerPC architecture;
- RISC-V architecture;
- x86 architecture;
- Block layer subsystem;
- Cryptographic API;
- Accessibility subsystem;
- ACPI drivers;
- Serial ATA and Parallel ATA drivers;
- Drivers core;
- Bluetooth drivers;
- Character device driver;
- CPU frequency scaling framework;
- Hardware crypto device drivers;
- Buffer Sharing and Synchronization framework;
- DMA engine subsystem;
- FPGA Framework;
- GPIO subsystem;
- GPU drivers;
- Greybus drivers;
- HID subsystem;
- HW tracing;
- I2C subsystem;
- IIO subsystem;
- InfiniBand drivers;
- Input Device (Mouse) drivers;
- Macintosh device drivers;
- Multiple devices driver;
- Media drivers;
- VMware VMCI Driver;
- Network drivers;
- Near Field Communication (NFC) drivers;
- NVME drivers;
- Pin controllers subsystem;
- PTP clock framework;
- S/390 drivers;
- SCSI drivers;
- SoundWire subsystem;
- Greybus lights staging drivers;
- Media staging drivers;
- Thermal drivers;
- TTY drivers;
- USB subsystem;
- DesignWare USB3 driver;
- Framebuffer layer;
- ACRN Hypervisor Service Module driver;
- eCrypt file system;
- File systems infrastructure;
- Ext4 file system;
- F2FS file system;
- JFFS2 file system;
- JFS file system;
- NILFS2 file system;
- NTFS3 file system;
- SMB network file system;
- IOMMU subsystem;
- Memory management;
- Netfilter;
- BPF subsystem;
- Kernel debugger infrastructure;
- DMA mapping infrastructure;
- IRQ subsystem;
- Tracing infrastructure;
- 9P file system network protocol;
- B.A.T.M.A.N. meshing protocol;
- CAN network layer;
- Ceph Core library;
- Networking core;
- IPv4 networking;
- IPv6 networking;
- IUCV driver;
- MAC80211 subsystem;
- Multipath TCP;
- NET/ROM layer;
- NFC subsystem;
- Open vSwitch;
- Network traffic control;
- TIPC protocol;
- TLS protocol;
- Unix domain sockets;
- Wireless networking;
- XFRM subsystem;
- ALSA framework;
- SoC Audio for Freescale CPUs drivers;
- Kirkwood ASoC drivers;
(CVE-2024-42105, CVE-2024-41002, CVE-2024-38558, CVE-2023-52887,
CVE-2024-39487, CVE-2024-39276, CVE-2024-42077, CVE-2024-39493,
CVE-2024-40934, CVE-2024-39277, CVE-2024-42087, CVE-2024-38598,
CVE-2024-38618, CVE-2024-40981, CVE-2024-42127, CVE-2024-38607,
CVE-2024-38586, CVE-2024-40901, CVE-2024-40916, CVE-2024-42247,
CVE-2024-42093, CVE-2024-36489, CVE-2024-38615, CVE-2024-42120,
CVE-2024-38567, CVE-2024-40957, CVE-2024-39501, CVE-2024-42140,
CVE-2024-33621, CVE-2024-38573, CVE-2023-52884, CVE-2024-39468,
CVE-2024-41092, CVE-2024-40931, CVE-2024-42145, CVE-2024-39490,
CVE-2024-38555, CVE-2024-42086, CVE-2024-38597, CVE-2024-40956,
CVE-2024-42223, CVE-2024-36894, CVE-2024-40961, CVE-2024-42076,
CVE-2024-40994, CVE-2024-38619, CVE-2024-39467, CVE-2024-39466,
CVE-2022-48772, CVE-2024-39507, CVE-2024-40914, CVE-2024-41046,
CVE-2024-42094, CVE-2024-38591, CVE-2024-42098, CVE-2024-41027,
CVE-2024-41040, CVE-2024-41089, CVE-2024-40945, CVE-2024-39503,
CVE-2024-37356, CVE-2024-36286, CVE-2024-39495, CVE-2024-42101,
CVE-2024-40941, CVE-2024-42137, CVE-2024-38381, CVE-2024-38627,
CVE-2024-31076, CVE-2024-42092, CVE-2024-40932, CVE-2024-40995,
CVE-2024-40937, CVE-2024-39489, CVE-2024-42084, CVE-2024-40929,
CVE-2024-36978, CVE-2024-36015, CVE-2024-36014, CVE-2024-42124,
CVE-2024-40976, CVE-2024-39502, CVE-2024-38599, CVE-2024-38661,
CVE-2024-42104, CVE-2024-42096, CVE-2024-40904, CVE-2024-40990,
CVE-2024-38579, CVE-2024-40974, CVE-2024-41055, CVE-2024-38633,
CVE-2024-38659, CVE-2024-41093, CVE-2024-42154, CVE-2024-38624,
CVE-2024-41049, CVE-2024-38552, CVE-2024-38578, CVE-2024-38605,
CVE-2024-40970, CVE-2024-38601, CVE-2024-38550, CVE-2024-38559,
CVE-2024-38571, CVE-2024-40971, CVE-2024-41097, CVE-2024-40967,
CVE-2024-38612, CVE-2024-38587, CVE-2024-41004, CVE-2024-33847,
CVE-2024-38580, CVE-2024-39506, CVE-2024-42102, CVE-2024-36032,
CVE-2024-38548, CVE-2024-39499, CVE-2024-38610, CVE-2024-42152,
CVE-2024-40943, CVE-2024-40959, CVE-2024-39488, CVE-2024-36972,
CVE-2024-38637, CVE-2024-40942, CVE-2024-42106, CVE-2024-38546,
CVE-2024-38634, CVE-2024-39471, CVE-2024-39482, CVE-2024-41095,
CVE-2024-42229, CVE-2024-42131, CVE-2024-41007, CVE-2024-42095,
CVE-2024-42097, CVE-2024-39480, CVE-2024-35927, CVE-2024-42153,
CVE-2024-42080, CVE-2024-42089, CVE-2024-41087, CVE-2024-39475,
CVE-2024-42119, CVE-2024-41041, CVE-2024-38623, CVE-2024-39469,
CVE-2024-34777, CVE-2024-42157, CVE-2024-42085, CVE-2024-36270,
CVE-2024-34027, CVE-2024-35247, CVE-2024-38549, CVE-2024-40954,
CVE-2024-41034, CVE-2024-41044, CVE-2024-39509, CVE-2024-40987,
CVE-2024-42161, CVE-2024-40911, CVE-2024-42070, CVE-2024-42109,
CVE-2024-37078, CVE-2024-40912, CVE-2024-40988, CVE-2024-40978,
CVE-2024-41048, CVE-2024-41005, CVE-2024-40905, CVE-2024-41047,
CVE-2024-41006, CVE-2024-38560, CVE-2024-42225, CVE-2024-42148,
CVE-2024-38596, CVE-2024-38588, CVE-2024-39301, CVE-2024-38613,
CVE-2024-38635, CVE-2024-40960, CVE-2024-39505, CVE-2024-42244,
CVE-2024-40963, CVE-2024-39500, CVE-2024-42082, CVE-2024-36971,
CVE-2024-42068, CVE-2024-40984, CVE-2024-41035, CVE-2024-38583,
CVE-2024-42121, CVE-2024-40968, CVE-2024-40958, CVE-2024-40927,
CVE-2024-40980, CVE-2024-40908, CVE-2024-38780, CVE-2024-38590,
CVE-2024-42115, CVE-2024-42224, CVE-2024-42232, CVE-2024-42240,
CVE-2024-42236, CVE-2024-38547, CVE-2024-38565, CVE-2024-40902,
CVE-2024-38662, CVE-2024-42090, CVE-2024-36974, CVE-2024-38621,
CVE-2024-41000, CVE-2024-40983, CVE-2024-42130, CVE-2024-38582,
CVE-2024-38589)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 22.04 LTS
linux-image-5.15.0-121-lowlatency 5.15.0-121.131
linux-image-5.15.0-121-lowlatency-64k 5.15.0-121.131
linux-image-lowlatency 5.15.0.121.110
linux-image-lowlatency-64k 5.15.0.121.110
Ubuntu 20.04 LTS
linux-image-5.15.0-121-lowlatency 5.15.0-121.131~20.04.1
linux-image-5.15.0-121-lowlatency-64k 5.15.0-121.131~20.04.1
linux-image-lowlatency-64k-hwe-20.04 5.15.0.121.131~20.04.1
linux-image-lowlatency-hwe-20.04 5.15.0.121.131~20.04.1
After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.
References:
https://ubuntu.com/security/notices/USN-7007-3
https://ubuntu.com/security/notices/USN-7007-2
https://ubuntu.com/security/notices/USN-7007-1
CVE-2022-48772, CVE-2023-52884, CVE-2023-52887, CVE-2024-23848,
CVE-2024-25741, CVE-2024-31076, CVE-2024-33621, CVE-2024-33847,
CVE-2024-34027, CVE-2024-34777, CVE-2024-35247, CVE-2024-35927,
CVE-2024-36014, CVE-2024-36015, CVE-2024-36032, CVE-2024-36270,
CVE-2024-36286, CVE-2024-36489, CVE-2024-36894, CVE-2024-36971,
CVE-2024-36972, CVE-2024-36974, CVE-2024-36978, CVE-2024-37078,
CVE-2024-37356, CVE-2024-38381, CVE-2024-38546, CVE-2024-38547,
CVE-2024-38548, CVE-2024-38549, CVE-2024-38550, CVE-2024-38552,
CVE-2024-38555, CVE-2024-38558, CVE-2024-38559, CVE-2024-38560,
CVE-2024-38565, CVE-2024-38567, CVE-2024-38571, CVE-2024-38573,
CVE-2024-38578, CVE-2024-38579, CVE-2024-38580, CVE-2024-38582,
CVE-2024-38583, CVE-2024-38586, CVE-2024-38587, CVE-2024-38588,
CVE-2024-38589, CVE-2024-38590, CVE-2024-38591, CVE-2024-38596,
CVE-2024-38597, CVE-2024-38598, CVE-2024-38599, CVE-2024-38601,
CVE-2024-38605, CVE-2024-38607, CVE-2024-38610, CVE-2024-38612,
CVE-2024-38613, CVE-2024-38615, CVE-2024-38618, CVE-2024-38619,
CVE-2024-38621, CVE-2024-38623, CVE-2024-38624, CVE-2024-38627,
CVE-2024-38633, CVE-2024-38634, CVE-2024-38635, CVE-2024-38637,
CVE-2024-38659, CVE-2024-38661, CVE-2024-38662, CVE-2024-38780,
CVE-2024-39276, CVE-2024-39277, CVE-2024-39301, CVE-2024-39466,
CVE-2024-39467, CVE-2024-39468, CVE-2024-39469, CVE-2024-39471,
CVE-2024-39475, CVE-2024-39480, CVE-2024-39482, CVE-2024-39487,
CVE-2024-39488, CVE-2024-39489, CVE-2024-39490, CVE-2024-39493,
CVE-2024-39495, CVE-2024-39499, CVE-2024-39500, CVE-2024-39501,
CVE-2024-39502, CVE-2024-39503, CVE-2024-39505, CVE-2024-39506,
CVE-2024-39507, CVE-2024-39509, CVE-2024-40901, CVE-2024-40902,
CVE-2024-40904, CVE-2024-40905, CVE-2024-40908, CVE-2024-40911,
CVE-2024-40912, CVE-2024-40914, CVE-2024-40916, CVE-2024-40927,
CVE-2024-40929, CVE-2024-40931, CVE-2024-40932, CVE-2024-40934,
CVE-2024-40937, CVE-2024-40941, CVE-2024-40942, CVE-2024-40943,
CVE-2024-40945, CVE-2024-40954, CVE-2024-40956, CVE-2024-40957,
CVE-2024-40958, CVE-2024-40959, CVE-2024-40960, CVE-2024-40961,
CVE-2024-40963, CVE-2024-40967, CVE-2024-40968, CVE-2024-40970,
CVE-2024-40971, CVE-2024-40974, CVE-2024-40976, CVE-2024-40978,
CVE-2024-40980, CVE-2024-40981, CVE-2024-40983, CVE-2024-40984,
CVE-2024-40987, CVE-2024-40988, CVE-2024-40990, CVE-2024-40994,
CVE-2024-40995, CVE-2024-41000, CVE-2024-41002, CVE-2024-41004,
CVE-2024-41005, CVE-2024-41006, CVE-2024-41007, CVE-2024-41027,
CVE-2024-41034, CVE-2024-41035, CVE-2024-41040, CVE-2024-41041,
CVE-2024-41044, CVE-2024-41046, CVE-2024-41047, CVE-2024-41048,
CVE-2024-41049, CVE-2024-41055, CVE-2024-41087, CVE-2024-41089,
CVE-2024-41092, CVE-2024-41093, CVE-2024-41095, CVE-2024-41097,
CVE-2024-42068, CVE-2024-42070, CVE-2024-42076, CVE-2024-42077,
CVE-2024-42080, CVE-2024-42082, CVE-2024-42084, CVE-2024-42085,
CVE-2024-42086, CVE-2024-42087, CVE-2024-42089, CVE-2024-42090,
CVE-2024-42092, CVE-2024-42093, CVE-2024-42094, CVE-2024-42095,
CVE-2024-42096, CVE-2024-42097, CVE-2024-42098, CVE-2024-42101,
CVE-2024-42102, CVE-2024-42104, CVE-2024-42105, CVE-2024-42106,
CVE-2024-42109, CVE-2024-42115, CVE-2024-42119, CVE-2024-42120,
CVE-2024-42121, CVE-2024-42124, CVE-2024-42127, CVE-2024-42130,
CVE-2024-42131, CVE-2024-42137, CVE-2024-42140, CVE-2024-42145,
CVE-2024-42148, CVE-2024-42152, CVE-2024-42153, CVE-2024-42154,
CVE-2024-42157, CVE-2024-42161, CVE-2024-42223, CVE-2024-42224,
CVE-2024-42225, CVE-2024-42229, CVE-2024-42232, CVE-2024-42236,
CVE-2024-42240, CVE-2024-42244, CVE-2024-42247
Package Information:
https://launchpad.net/ubuntu/+source/linux-lowlatency/5.15.0-121.131
https://launchpad.net/ubuntu/+source/linux-lowlatency-hwe-5.15/5.15.0-121.131~20.04.1
Ubuntu Security Notice USN-7007-3
September 23, 2024
linux-lowlatency, linux-lowlatency-hwe-5.15 vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Summary:
Several security issues were fixed in the Linux kernel.
Software Description:
- linux-lowlatency: Linux low latency kernel
- linux-lowlatency-hwe-5.15: Linux low latency kernel
Details:
Chenyuan Yang discovered that the CEC driver driver in the Linux kernel
contained a use-after-free vulnerability. A local attacker could use this
to cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2024-23848)
Chenyuan Yang discovered that the USB Gadget subsystem in the Linux kernel
did not properly check for the device to be enabled before writing. A local
attacker could possibly use this to cause a denial of service.
(CVE-2024-25741)
It was discovered that the JFS file system contained an out-of-bounds read
vulnerability when printing xattr debug information. A local attacker could
use this to cause a denial of service (system crash). (CVE-2024-40902)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- ARM64 architecture;
- M68K architecture;
- MIPS architecture;
- PowerPC architecture;
- RISC-V architecture;
- x86 architecture;
- Block layer subsystem;
- Cryptographic API;
- Accessibility subsystem;
- ACPI drivers;
- Serial ATA and Parallel ATA drivers;
- Drivers core;
- Bluetooth drivers;
- Character device driver;
- CPU frequency scaling framework;
- Hardware crypto device drivers;
- Buffer Sharing and Synchronization framework;
- DMA engine subsystem;
- FPGA Framework;
- GPIO subsystem;
- GPU drivers;
- Greybus drivers;
- HID subsystem;
- HW tracing;
- I2C subsystem;
- IIO subsystem;
- InfiniBand drivers;
- Input Device (Mouse) drivers;
- Macintosh device drivers;
- Multiple devices driver;
- Media drivers;
- VMware VMCI Driver;
- Network drivers;
- Near Field Communication (NFC) drivers;
- NVME drivers;
- Pin controllers subsystem;
- PTP clock framework;
- S/390 drivers;
- SCSI drivers;
- SoundWire subsystem;
- Greybus lights staging drivers;
- Media staging drivers;
- Thermal drivers;
- TTY drivers;
- USB subsystem;
- DesignWare USB3 driver;
- Framebuffer layer;
- ACRN Hypervisor Service Module driver;
- eCrypt file system;
- File systems infrastructure;
- Ext4 file system;
- F2FS file system;
- JFFS2 file system;
- JFS file system;
- NILFS2 file system;
- NTFS3 file system;
- SMB network file system;
- IOMMU subsystem;
- Memory management;
- Netfilter;
- BPF subsystem;
- Kernel debugger infrastructure;
- DMA mapping infrastructure;
- IRQ subsystem;
- Tracing infrastructure;
- 9P file system network protocol;
- B.A.T.M.A.N. meshing protocol;
- CAN network layer;
- Ceph Core library;
- Networking core;
- IPv4 networking;
- IPv6 networking;
- IUCV driver;
- MAC80211 subsystem;
- Multipath TCP;
- NET/ROM layer;
- NFC subsystem;
- Open vSwitch;
- Network traffic control;
- TIPC protocol;
- TLS protocol;
- Unix domain sockets;
- Wireless networking;
- XFRM subsystem;
- ALSA framework;
- SoC Audio for Freescale CPUs drivers;
- Kirkwood ASoC drivers;
(CVE-2024-42105, CVE-2024-41002, CVE-2024-38558, CVE-2023-52887,
CVE-2024-39487, CVE-2024-39276, CVE-2024-42077, CVE-2024-39493,
CVE-2024-40934, CVE-2024-39277, CVE-2024-42087, CVE-2024-38598,
CVE-2024-38618, CVE-2024-40981, CVE-2024-42127, CVE-2024-38607,
CVE-2024-38586, CVE-2024-40901, CVE-2024-40916, CVE-2024-42247,
CVE-2024-42093, CVE-2024-36489, CVE-2024-38615, CVE-2024-42120,
CVE-2024-38567, CVE-2024-40957, CVE-2024-39501, CVE-2024-42140,
CVE-2024-33621, CVE-2024-38573, CVE-2023-52884, CVE-2024-39468,
CVE-2024-41092, CVE-2024-40931, CVE-2024-42145, CVE-2024-39490,
CVE-2024-38555, CVE-2024-42086, CVE-2024-38597, CVE-2024-40956,
CVE-2024-42223, CVE-2024-36894, CVE-2024-40961, CVE-2024-42076,
CVE-2024-40994, CVE-2024-38619, CVE-2024-39467, CVE-2024-39466,
CVE-2022-48772, CVE-2024-39507, CVE-2024-40914, CVE-2024-41046,
CVE-2024-42094, CVE-2024-38591, CVE-2024-42098, CVE-2024-41027,
CVE-2024-41040, CVE-2024-41089, CVE-2024-40945, CVE-2024-39503,
CVE-2024-37356, CVE-2024-36286, CVE-2024-39495, CVE-2024-42101,
CVE-2024-40941, CVE-2024-42137, CVE-2024-38381, CVE-2024-38627,
CVE-2024-31076, CVE-2024-42092, CVE-2024-40932, CVE-2024-40995,
CVE-2024-40937, CVE-2024-39489, CVE-2024-42084, CVE-2024-40929,
CVE-2024-36978, CVE-2024-36015, CVE-2024-36014, CVE-2024-42124,
CVE-2024-40976, CVE-2024-39502, CVE-2024-38599, CVE-2024-38661,
CVE-2024-42104, CVE-2024-42096, CVE-2024-40904, CVE-2024-40990,
CVE-2024-38579, CVE-2024-40974, CVE-2024-41055, CVE-2024-38633,
CVE-2024-38659, CVE-2024-41093, CVE-2024-42154, CVE-2024-38624,
CVE-2024-41049, CVE-2024-38552, CVE-2024-38578, CVE-2024-38605,
CVE-2024-40970, CVE-2024-38601, CVE-2024-38550, CVE-2024-38559,
CVE-2024-38571, CVE-2024-40971, CVE-2024-41097, CVE-2024-40967,
CVE-2024-38612, CVE-2024-38587, CVE-2024-41004, CVE-2024-33847,
CVE-2024-38580, CVE-2024-39506, CVE-2024-42102, CVE-2024-36032,
CVE-2024-38548, CVE-2024-39499, CVE-2024-38610, CVE-2024-42152,
CVE-2024-40943, CVE-2024-40959, CVE-2024-39488, CVE-2024-36972,
CVE-2024-38637, CVE-2024-40942, CVE-2024-42106, CVE-2024-38546,
CVE-2024-38634, CVE-2024-39471, CVE-2024-39482, CVE-2024-41095,
CVE-2024-42229, CVE-2024-42131, CVE-2024-41007, CVE-2024-42095,
CVE-2024-42097, CVE-2024-39480, CVE-2024-35927, CVE-2024-42153,
CVE-2024-42080, CVE-2024-42089, CVE-2024-41087, CVE-2024-39475,
CVE-2024-42119, CVE-2024-41041, CVE-2024-38623, CVE-2024-39469,
CVE-2024-34777, CVE-2024-42157, CVE-2024-42085, CVE-2024-36270,
CVE-2024-34027, CVE-2024-35247, CVE-2024-38549, CVE-2024-40954,
CVE-2024-41034, CVE-2024-41044, CVE-2024-39509, CVE-2024-40987,
CVE-2024-42161, CVE-2024-40911, CVE-2024-42070, CVE-2024-42109,
CVE-2024-37078, CVE-2024-40912, CVE-2024-40988, CVE-2024-40978,
CVE-2024-41048, CVE-2024-41005, CVE-2024-40905, CVE-2024-41047,
CVE-2024-41006, CVE-2024-38560, CVE-2024-42225, CVE-2024-42148,
CVE-2024-38596, CVE-2024-38588, CVE-2024-39301, CVE-2024-38613,
CVE-2024-38635, CVE-2024-40960, CVE-2024-39505, CVE-2024-42244,
CVE-2024-40963, CVE-2024-39500, CVE-2024-42082, CVE-2024-36971,
CVE-2024-42068, CVE-2024-40984, CVE-2024-41035, CVE-2024-38583,
CVE-2024-42121, CVE-2024-40968, CVE-2024-40958, CVE-2024-40927,
CVE-2024-40980, CVE-2024-40908, CVE-2024-38780, CVE-2024-38590,
CVE-2024-42115, CVE-2024-42224, CVE-2024-42232, CVE-2024-42240,
CVE-2024-42236, CVE-2024-38547, CVE-2024-38565, CVE-2024-40902,
CVE-2024-38662, CVE-2024-42090, CVE-2024-36974, CVE-2024-38621,
CVE-2024-41000, CVE-2024-40983, CVE-2024-42130, CVE-2024-38582,
CVE-2024-38589)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 22.04 LTS
linux-image-5.15.0-121-lowlatency 5.15.0-121.131
linux-image-5.15.0-121-lowlatency-64k 5.15.0-121.131
linux-image-lowlatency 5.15.0.121.110
linux-image-lowlatency-64k 5.15.0.121.110
Ubuntu 20.04 LTS
linux-image-5.15.0-121-lowlatency 5.15.0-121.131~20.04.1
linux-image-5.15.0-121-lowlatency-64k 5.15.0-121.131~20.04.1
linux-image-lowlatency-64k-hwe-20.04 5.15.0.121.131~20.04.1
linux-image-lowlatency-hwe-20.04 5.15.0.121.131~20.04.1
After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.
References:
https://ubuntu.com/security/notices/USN-7007-3
https://ubuntu.com/security/notices/USN-7007-2
https://ubuntu.com/security/notices/USN-7007-1
CVE-2022-48772, CVE-2023-52884, CVE-2023-52887, CVE-2024-23848,
CVE-2024-25741, CVE-2024-31076, CVE-2024-33621, CVE-2024-33847,
CVE-2024-34027, CVE-2024-34777, CVE-2024-35247, CVE-2024-35927,
CVE-2024-36014, CVE-2024-36015, CVE-2024-36032, CVE-2024-36270,
CVE-2024-36286, CVE-2024-36489, CVE-2024-36894, CVE-2024-36971,
CVE-2024-36972, CVE-2024-36974, CVE-2024-36978, CVE-2024-37078,
CVE-2024-37356, CVE-2024-38381, CVE-2024-38546, CVE-2024-38547,
CVE-2024-38548, CVE-2024-38549, CVE-2024-38550, CVE-2024-38552,
CVE-2024-38555, CVE-2024-38558, CVE-2024-38559, CVE-2024-38560,
CVE-2024-38565, CVE-2024-38567, CVE-2024-38571, CVE-2024-38573,
CVE-2024-38578, CVE-2024-38579, CVE-2024-38580, CVE-2024-38582,
CVE-2024-38583, CVE-2024-38586, CVE-2024-38587, CVE-2024-38588,
CVE-2024-38589, CVE-2024-38590, CVE-2024-38591, CVE-2024-38596,
CVE-2024-38597, CVE-2024-38598, CVE-2024-38599, CVE-2024-38601,
CVE-2024-38605, CVE-2024-38607, CVE-2024-38610, CVE-2024-38612,
CVE-2024-38613, CVE-2024-38615, CVE-2024-38618, CVE-2024-38619,
CVE-2024-38621, CVE-2024-38623, CVE-2024-38624, CVE-2024-38627,
CVE-2024-38633, CVE-2024-38634, CVE-2024-38635, CVE-2024-38637,
CVE-2024-38659, CVE-2024-38661, CVE-2024-38662, CVE-2024-38780,
CVE-2024-39276, CVE-2024-39277, CVE-2024-39301, CVE-2024-39466,
CVE-2024-39467, CVE-2024-39468, CVE-2024-39469, CVE-2024-39471,
CVE-2024-39475, CVE-2024-39480, CVE-2024-39482, CVE-2024-39487,
CVE-2024-39488, CVE-2024-39489, CVE-2024-39490, CVE-2024-39493,
CVE-2024-39495, CVE-2024-39499, CVE-2024-39500, CVE-2024-39501,
CVE-2024-39502, CVE-2024-39503, CVE-2024-39505, CVE-2024-39506,
CVE-2024-39507, CVE-2024-39509, CVE-2024-40901, CVE-2024-40902,
CVE-2024-40904, CVE-2024-40905, CVE-2024-40908, CVE-2024-40911,
CVE-2024-40912, CVE-2024-40914, CVE-2024-40916, CVE-2024-40927,
CVE-2024-40929, CVE-2024-40931, CVE-2024-40932, CVE-2024-40934,
CVE-2024-40937, CVE-2024-40941, CVE-2024-40942, CVE-2024-40943,
CVE-2024-40945, CVE-2024-40954, CVE-2024-40956, CVE-2024-40957,
CVE-2024-40958, CVE-2024-40959, CVE-2024-40960, CVE-2024-40961,
CVE-2024-40963, CVE-2024-40967, CVE-2024-40968, CVE-2024-40970,
CVE-2024-40971, CVE-2024-40974, CVE-2024-40976, CVE-2024-40978,
CVE-2024-40980, CVE-2024-40981, CVE-2024-40983, CVE-2024-40984,
CVE-2024-40987, CVE-2024-40988, CVE-2024-40990, CVE-2024-40994,
CVE-2024-40995, CVE-2024-41000, CVE-2024-41002, CVE-2024-41004,
CVE-2024-41005, CVE-2024-41006, CVE-2024-41007, CVE-2024-41027,
CVE-2024-41034, CVE-2024-41035, CVE-2024-41040, CVE-2024-41041,
CVE-2024-41044, CVE-2024-41046, CVE-2024-41047, CVE-2024-41048,
CVE-2024-41049, CVE-2024-41055, CVE-2024-41087, CVE-2024-41089,
CVE-2024-41092, CVE-2024-41093, CVE-2024-41095, CVE-2024-41097,
CVE-2024-42068, CVE-2024-42070, CVE-2024-42076, CVE-2024-42077,
CVE-2024-42080, CVE-2024-42082, CVE-2024-42084, CVE-2024-42085,
CVE-2024-42086, CVE-2024-42087, CVE-2024-42089, CVE-2024-42090,
CVE-2024-42092, CVE-2024-42093, CVE-2024-42094, CVE-2024-42095,
CVE-2024-42096, CVE-2024-42097, CVE-2024-42098, CVE-2024-42101,
CVE-2024-42102, CVE-2024-42104, CVE-2024-42105, CVE-2024-42106,
CVE-2024-42109, CVE-2024-42115, CVE-2024-42119, CVE-2024-42120,
CVE-2024-42121, CVE-2024-42124, CVE-2024-42127, CVE-2024-42130,
CVE-2024-42131, CVE-2024-42137, CVE-2024-42140, CVE-2024-42145,
CVE-2024-42148, CVE-2024-42152, CVE-2024-42153, CVE-2024-42154,
CVE-2024-42157, CVE-2024-42161, CVE-2024-42223, CVE-2024-42224,
CVE-2024-42225, CVE-2024-42229, CVE-2024-42232, CVE-2024-42236,
CVE-2024-42240, CVE-2024-42244, CVE-2024-42247
Package Information:
https://launchpad.net/ubuntu/+source/linux-lowlatency/5.15.0-121.131
https://launchpad.net/ubuntu/+source/linux-lowlatency-hwe-5.15/5.15.0-121.131~20.04.1
Subscribe to:
Posts (Atom)