Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2025-40207 | In the Linux kernel, the following vulnerability has been resolved: media: v4l2-subdev: Fix alloc failure check in v4l2_subdev_call_state_try() v4l | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40206 | In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_objref: validate objref and objrefmap expressions Referencing a | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40160 | In the Linux kernel, the following vulnerability has been resolved: xen/events: Return -EEXIST for bound VIRQs Change find_virq() to return -EEXIST | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40201 | In the Linux kernel, the following vulnerability has been resolved: kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit6 | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40192 | In the Linux kernel, the following vulnerability has been resolved: Revert "ipmi: fix msg stack when IPMI is disconnected" This reverts commit c608 | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40193 | In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in proc_write_simdisk A malicious user co | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40219 | In the Linux kernel, the following vulnerability has been resolved: PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV Before di | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40218 | In the Linux kernel, the following vulnerability has been resolved: mm/damon/vaddr: do not repeat pte_offset_map_lock() until success DAMON's virtu | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40038 | In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid Skip the W | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40032 | In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release The | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40202 | In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messag | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40180 | In the Linux kernel, the following vulnerability has been resolved: mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop The clean | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40221 | In the Linux kernel, the following vulnerability has been resolved: media: pci: mg4b: fix uninitialized iio scan data Fix potential leak of uniniti | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40159 | In the Linux kernel, the following vulnerability has been resolved: xsk: Harden userspace-supplied xdp_desc validation Turned out certain clearly i | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40198 | In the Linux kernel, the following vulnerability has been resolved: ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() Unlike | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40196 | In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quota_release_work There is a kernel | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40349 | In the Linux kernel, the following vulnerability has been resolved: hfs: validate record offset in hfsplus_bmap_alloc hfsplus_bmap_alloc can trigge | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40351 | In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix KMSAN uninit-value issue in hfsplus_delete_cat() The syzbot report | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40347 | In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix the deadlock of enetc_mdio_lock After applying the workaround f | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
| CVE | CVE-2025-40350 | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ XDP | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx |
About
-
Send Feedback to @ubuntu_updates
