-linux (4.15.0-52.56) UNRELEASED; urgency=medium
+linux (4.15.0-54.58) bionic; urgency=medium
- CHANGELOG: Do not edit directly. Autogenerated at release.
- CHANGELOG: Use the printchanges target to see the curent changes.
- CHANGELOG: Use the insertchanges target to create the final log.
+ * linux: 4.15.0-54.58 -proposed tracker (LP: #1833987)
- -- Marcelo Henrique Cerri <marcelo.cerri@canonical.com> Tue, 04 Jun 2019 17:26:05 -0300
+ * Remote denial of service (resource exhaustion) caused by TCP SACK scoreboard
+ manipulation (LP: #1831638) // CVE-2019-11478
+ - tcp: refine memory limit test in tcp_fragment()
+
+ * CVE-2019-11479
+ - SAUCE: tcp: add tcp_min_snd_mss sysctl
+ - SAUCE: tcp: enforce tcp_min_snd_mss in tcp_mtu_probing()
+
+ -- Kleber Sacilotto de Souza <kleber.souza@canonical.com> Mon, 24 Jun 2019 11:39:50 +0200
+
+linux (4.15.0-52.56) bionic; urgency=medium
+
+ * Remote denial of service (resource exhaustion) caused by TCP SACK scoreboard
+ manipulation (LP: #1831638)
+ - SAUCE: tcp: tcp_fragment() should apply sane memory limits
+
+ * Remote denial of service (system crash) caused by integer overflow in TCP
+ SACK handling (LP: #1831637)
+ - SAUCE: tcp: limit payload size of sacked skbs
+
+ -- Marcelo Henrique Cerri <marcelo.cerri@canonical.com> Tue, 04 Jun 2019 17:33:24 -0300
linux (4.15.0-51.55) bionic; urgency=medium