Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2025-38688 | In the Linux kernel, the following vulnerability has been resolved: iommufd: Prevent ALIGN() overflow When allocating IOVA the candidate range gets | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39760 | In the Linux kernel, the following vulnerability has been resolved: usb: core: config: Prevent OOB read in SS endpoint companion parsing usb_parse_ | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-38687 | In the Linux kernel, the following vulnerability has been resolved: comedi: fix race between polling and detaching syzbot reports a use-after-free | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39738 | In the Linux kernel, the following vulnerability has been resolved: btrfs: do not allow relocation of partially dropped subvolumes [BUG] There is a | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-38685 | In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix vmalloc out-of-bounds write in fast_imageblit This issue triggers wh | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-38683 | In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: Fix panic during namespace deletion with VF The existing code move t | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39737 | In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: avoid soft lockup in __kmemleak_do_cleanup() A soft lockup warning | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39736 | In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: avoid deadlock by moving pr_warn() outside kmemleak_lock When netp | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-38680 | In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format() The buffer | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-38679 | In the Linux kernel, the following vulnerability has been resolved: media: venus: Fix OOB read due to missing payload bound check Currently, The ev | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39758 | In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix the sendmsg byte count in siw_tcp_sendpages Ever since commit c2f | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39724 | In the Linux kernel, the following vulnerability has been resolved: serial: 8250: fix panic due to PSLVERR When the PSLVERR_RESP_EN parameter is se | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39790 | In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote device | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39721 | In the Linux kernel, the following vulnerability has been resolved: crypto: qat - flush misc workqueue during device shutdown Repeated loading and | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39720 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix refcount leak causing resource not released When ksmbd_conn_releasin | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39787 | In the Linux kernel, the following vulnerability has been resolved: soc: qcom: mdt_loader: Ensure we don't read past the ELF header When the MDT lo | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39719 | In the Linux kernel, the following vulnerability has been resolved: iio: imu: bno055: fix OOB access of hw_xlate array Fix a potential out-of-bound | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39783 | In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Fix configfs group list head handling Doing a list_del() on the | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-39718 | In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Validate length in packet header before skb_put() When receiving | linux linux-hwe-6.8 linux-hwe-6.8 |
| CVE | CVE-2025-38677 | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid out-of-boundary access in dnode page As Jiaming Zhang report | linux linux-hwe-6.8 linux-hwe-6.8 |
About
-
Send Feedback to @ubuntu_updates
