Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2025-40328 | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_close_cached_fid() find_or_create_cached | linux linux-hwe-6.17 |
| CVE | CVE-2025-40327 | In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix system hang caused by cpu-clock usage cpu-clock usage by the asy | linux linux-hwe-6.17 |
| CVE | CVE-2025-68180 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL deref in debugfs odm_combine_segments When a connecto | linux linux-hwe-6.17 |
| CVE | CVE-2025-40292 | In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix received length check in big packets Since commit 4959aebba8c0 | linux linux-hwe-6.17 |
| CVE | CVE-2025-68316 | In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix invalid probe error return value After DME Link Startup, t | linux linux-hwe-6.17 |
| CVE | CVE-2025-68244 | In the Linux kernel, the following vulnerability has been resolved: drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD On completio | linux linux-hwe-6.17 |
| CVE | CVE-2025-68207 | In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Synchronize Dead CT worker with unbind Cancel and wait for any Dead | linux linux-hwe-6.17 |
| CVE | CVE-2025-68201 | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: remove two invalid BUG_ON()s Those can be triggered trivially by us | linux linux-hwe-6.17 |
| CVE | CVE-2025-40289 | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM Otherwise accessing | linux linux-hwe-6.17 |
| CVE | CVE-2025-40288 | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices Previous | linux linux-hwe-6.17 |
| CVE | CVE-2025-40287 | In the Linux kernel, the following vulnerability has been resolved: exfat: fix improper check of dentry.stream.valid_size We found an infinite loop | linux linux-hwe-6.17 |
| CVE | CVE-2025-40286 | In the Linux kernel, the following vulnerability has been resolved: smb/server: fix possible memory leak in smb2_read() Memory leak occurs when ksm | linux linux-hwe-6.17 |
| CVE | CVE-2025-40285 | In the Linux kernel, the following vulnerability has been resolved: smb/server: fix possible refcount leak in smb2_sess_setup() Reference count of | linux linux-hwe-6.17 |
| CVE | CVE-2025-68210 | In the Linux kernel, the following vulnerability has been resolved: erofs: avoid infinite loop due to incomplete zstd-compressed data Currently, th | linux linux-hwe-6.17 |
| CVE | CVE-2025-40284 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: cancel mesh send timer when hdev removed mesh_send_done timer | linux linux-hwe-6.17 |
| CVE | CVE-2025-40283 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF There is a K | linux linux-hwe-6.17 |
| CVE | CVE-2025-40282 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: 6lowpan: reset link-local header on ipv6 recv path Bluetooth 6lowpan | linux linux-hwe-6.17 |
| CVE | CVE-2025-40281 | In the Linux kernel, the following vulnerability has been resolved: sctp: prevent possible shift-out-of-bounds in sctp_transport_update_rto syzbot | linux linux-hwe-6.17 |
| CVE | CVE-2025-40280 | In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipc_mon_reinit_self(). syzbot reported use-after-f | linux linux-hwe-6.17 |
| CVE | CVE-2025-40214 | In the Linux kernel, the following vulnerability has been resolved: af_unix: Initialise scc_index in unix_add_edge(). Quang Le reported that the AF | linux linux-hwe-6.17 |
About
-
Send Feedback to @ubuntu_updates
