Ubuntu
linux-hwe-5.19 package

CVE-2023-31248 status? High priority, says pending, is there a deb?

Asked by Charles Evans

Is an update available to download?
Changelog shows no updates since 6/21.

Question information

Language:
English Edit question
Status:
Solved
For:
Ubuntu linux-hwe-5.19 Edit question
Assignee:
No assignee Edit question
Solved by:
Manfred Hampl
Solved:
Last query:
Last reply:
Revision history for this message
Manfred Hampl (m-hampl) said : 		#1

The status in https://ubuntu.com/security/CVE-2023-31248 is shown as "pending".

This seems to be a tricky case. The 5.19 kernel in jammy is copied (and adapted) from the kernel in kinetic, but kinetic just went end of life yesterday https://lists.ubuntu.com/archives/ubuntu-announce/2023-June/000291.html
I am not sure whether work will still be done on the 5.19 kernel family.

A potential solution for the system that use linux-hwe-5.19 on jammy is switching to linux-hwe-6.2 (but the update for this CVE currently is in status "pending" for the 6.2 kernel in lunar as well, but already covered in the 6.2.0-27.28 version of the kernel in lunar-proposed).

Revision history for this message
Charles Evans (crtiger) said : 		#2

That will be a superior solution.

Is there a ppa or ~ where one can get the pending version ?

Is it advisable to attempt to manually install a lunar kernel?

Revision history for this message
Best Manfred Hampl (m-hampl) said : 		#3

As far as I can see, there is no officially supported package with the bug fix available for jammy yet.

My advice is being patient and waiting for a new package.

Of course you can experiment with manual installation of a package for lunar if you want, but that is within your own responsibility.

The package for lunar with a fix for CVE-2023-31248 is in lunar-proposed, see version 6.2.0-27.28 in https://launchpad.net/ubuntu/+source/linux

Revision history for this message
Manfred Hampl (m-hampl) said : 		#4

As far as I can see, an updated package (version 5.19.0-50.50) has been published on July 24.

Revision history for this message
Charles Evans (crtiger) said : 		#5

Thanks Manfred Hampl, that solved my question.