UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
CVE CVE-2026-43023 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: fix race conditions in sco_sock_connect() sco_sock_connect() ch linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-43019 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: fix potential UAF in set_cig_params_sync hci_conn lookup a linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-43018 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: fix potential UAF in hci_le_remote_conn_param_req_evt hci linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-43017 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate mesh send advertising payload length mesh_send() curr linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-43016 In the Linux kernel, the following vulnerability has been resolved: bpf: sockmap: Fix use-after-free of sk->sk_socket in sk_psock_verdict_data_ready linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-31675 In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_netem: fix out-of-bounds access in packet corruption In netem_en linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-43013 In the Linux kernel, the following vulnerability has been resolved: net/mlx5: lag: Check for LAG device before creating debugfs __mlx5_lag_dev_add_ linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-43012 In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix switchdev mode rollback in case of failure If for some internal r linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-43007 In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Handle DBC deactivation if the owner went away When a DBC is releas linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-31779 In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix potential out-of-bounds read in iwl_mvm_nd_match_info_ha linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-31772 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: fix stack buffer overflow in hci_le_big_create_sync hci_le linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-31432 In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERY_INFO for compound requests When a compound reques linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-31768 In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() Add a DMA-safe buff linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-31767 In the Linux kernel, the following vulnerability has been resolved: drm/i915/dsi: Don't do DSC horizontal timing adjustments in command mode Stop a linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-31741 In the Linux kernel, the following vulnerability has been resolved: counter: rz-mtu3-cnt: prevent counter from being toggled multiple times Runtime linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-31740 In the Linux kernel, the following vulnerability has been resolved: counter: rz-mtu3-cnt: do not use struct rz_mtu3_channel's dev member The counte linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-43332 In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone device registration error path If thermal_zone_ linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-31730 In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: possible double-free of cctx->remote_heap fastrpc_init_create_st linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-31729 In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: validate connector number in ucsi_notify_common() The connect linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8
CVE CVE-2026-23389 In the Linux kernel, the following vulnerability has been resolved: ice: Fix memory leak in ice_set_ringparam() In ice_set_ringparam, tx_rings and linux linux-hwe-6.8 linux linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-hwe-6.8



About   -   Send Feedback to @ubuntu_updates