UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
CVE CVE-2026-31429 In the Linux kernel, the following vulnerability has been resolved: net: skb: fix cross-cache free of KFENCE-allocated skb head SKB_SMALL_HEAD_CACH linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-43120 In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix double free related to rereg_user_mr If IB_MR_REREG_TRANS is se linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-43094 In the Linux kernel, the following vulnerability has been resolved: ixgbevf: add missing negotiate_features op to Hyper-V ops table Commit a7075f50 linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-43092 In the Linux kernel, the following vulnerability has been resolved: xsk: validate MTU against usable frame size on bind AF_XDP bind currently accep linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-43091 In the Linux kernel, the following vulnerability has been resolved: xfrm: Wait for RCU readers during policy netns exit xfrm_policy_fini() frees th linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-43086 In the Linux kernel, the following vulnerability has been resolved: ipvs: fix NULL deref in ip_vs_add_service error path When ip_vs_bind_scheduler( linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-43082 In the Linux kernel, the following vulnerability has been resolved: net: txgbe: leave space for null terminators on property_entry Lists of struct linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-43081 In the Linux kernel, the following vulnerability has been resolved: net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+ Fix the field mask linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-43345 In the Linux kernel, the following vulnerability has been resolved: net: ipa: fix event ring index not programmed for IPA v5.0+ For IPA v5.0+, the linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-43072 In the Linux kernel, the following vulnerability has been resolved: drm/vc4: platform_get_irq_byname() returns an int platform_get_irq_byname() wil linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-31612 In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate EaNameLength in smb2_get_ea() smb2_get_ea() reads ea_req->EaNam linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-31611 In the Linux kernel, the following vulnerability has been resolved: ksmbd: require 3 sub-authorities before reading sub_auth[2] parse_dacl() compar linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-31610 In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix mechToken leak when SPNEGO decode fails after token alloc The kernel linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-31604 In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix device leak on probe failure Driver core holds a reference to linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-31587 In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm compo linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-31584 In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix use-after-free in encoder release path The fops_vc linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-31595 In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-vntb: Stop cmd_handler work in epf_ntb_epc_cleanup Disab linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-31714 In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid memory leak in f2fs_rename() syzbot reported a f2fs bug as b linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-31711 In the Linux kernel, the following vulnerability has been resolved: smb: server: fix active_num_conn leak on transport allocation failure Commit 77 linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8
CVE CVE-2026-43350 In the Linux kernel, the following vulnerability has been resolved: smb: client: require a full NFS mode SID before reading mode bits parse_dacl() linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8



About   -   Send Feedback to @ubuntu_updates