Ubuntu
linux-hwe-5.19 package

CVE-2022-4139 status? High priority for Intel CPU

Asked by Charles Evans

Focal HWE and Kinetic kernels have had the fix for a while.
Jammy 5.15 has it.
Upstream fix was last year.
Changelog has no mention of it,
Or of any i915 TLB fix.
What is the status?

Question information

Language:
English Edit question
Status:
Solved
For:
Ubuntu linux-hwe-5.19 Edit question
Assignee:
No assignee Edit question
Solved by:
Charles Evans
Solved:
Last query:
Last reply:
Revision history for this message
Bernard Stafford (bernard010) said (last edit ): 		#1

linux-hwe-5.15
Launchpad, Ubuntu, Debian jammy Does not exist

linux-hwe-5.19
Launchpad, Ubuntu, Debian jammy Pending (5.19.0-35.36~22.04.1)
                                                                                upstream Released (6.1~rc8)

https://ubuntu.com/security/CVE-2022-4139

Revision history for this message
Charles Evans (crtiger) said : 		#2

https://launchpad.net/ubuntu/jammy/+source/linux-hwe-5.19/+changelog

Does not mention 5.19.0-35.36~22.04.1).
Is it on the repo?

Revision history for this message
Charles Evans (crtiger) said : 		#3

http://archive.ubuntu.com/ubuntu/pool/main/l/linux-hwe-5.19/?C=M;O=D

Has no such version currently

Revision history for this message
Charles Evans (crtiger) said : 		#4

https://launchpad.net/ubuntu/jammy/+source/linux/+changelog

CVE-2022-4139
    - drm/i915: fix TLB invalidation for Gen12 video and compute engines

Revision history for this message
Manfred Hampl (m-hampl) said : 		#5

A package with version 5.19.0-35.36~22.04.1 is in development, https://launchpad.net/~canonical-kernel-team/+archive/ubuntu/ppa?field.series_filter=jammy its changelog, however, does not quote that CVE number

Revision history for this message
Charles Evans (crtiger) said : 		#6

http://security.ubuntu.com/ubuntu/pool/main/l/linux-lowlatency-hwe-5.19/
Has fixed
linux-image-unsigned-5.19.0-1018-lowlatency_5.19.0-1018.19~22.04.1_amd64.deb
I assume the signed one will be arriving soon?

Revision history for this message
Bernard Stafford (bernard010) said : 		#7

https://ubuntu.com/security/CVE-2022-4139

Revision history for this message
Charles Evans (crtiger) said : 		#8

Thanks @m-hampl,
drm/i915: fix TLB invalidation for Gen12 video and compute engines
Confirmed,
http://security.ubuntu.com/ubuntu/pool/main/l/linux-signed-lowlatency-hwe-5.19/linux-image-5.19.0-1018-lowlatency_5.19.0-1018.19~22.04.1_amd64.deb