UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
CVE CVE-2025-21765 In the Linux kernel, the following vulnerability has been resolved: ipv6: use RCU protection in ip6_default_advmss() ip6_default_advmss() needs rcu linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21764 In the Linux kernel, the following vulnerability has been resolved: ndisc: use RCU protection in ndisc_alloc_skb() ndisc_alloc_skb() can be called linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21763 In the Linux kernel, the following vulnerability has been resolved: neighbour: use RCU protection in __neigh_notify() __neigh_notify() can be calle linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21762 In the Linux kernel, the following vulnerability has been resolved: arp: use RCU protection in arp_xmit() arp_xmit() can be called without RTNL or linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21761 In the Linux kernel, the following vulnerability has been resolved: openvswitch: use RCU protection in ovs_vport_cmd_fill_info() ovs_vport_cmd_fill linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21760 In the Linux kernel, the following vulnerability has been resolved: ndisc: extend RCU protection in ndisc_send_skb() ndisc_send_skb() can be called linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21722 In the Linux kernel, the following vulnerability has been resolved: nilfs2: do not force clear folio if buffer is referenced Patch series "nilfs2: linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21811 In the Linux kernel, the following vulnerability has been resolved: nilfs2: protect access to buffers with no active references nilfs_lookup_dirty_ linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2024-57979 In the Linux kernel, the following vulnerability has been resolved: pps: Fix a use-after-free On a board running ntpd and gpsd, I'm seeing a consis linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2024-57977 In the Linux kernel, the following vulnerability has been resolved: memcg: fix soft lockup in the OOM process A soft lockup issue was found in the linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21859 In the Linux kernel, the following vulnerability has been resolved: USB: gadget: f_midi: f_midi_complete to call queue_work When using USB MIDI, a linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21866 In the Linux kernel, the following vulnerability has been resolved: powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VM_AL linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21858 In the Linux kernel, the following vulnerability has been resolved: geneve: Fix use-after-free in geneve_find_dev(). syzkaller reported a use-after linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21865 In the Linux kernel, the following vulnerability has been resolved: gtp: Suppress list corruption splat in gtp_net_exit_batch_rtnl(). Brad Spengler linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21871 In the Linux kernel, the following vulnerability has been resolved: tee: optee: Fix supplicant wait loop OP-TEE supplicant is a user-space daemon a linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21848 In the Linux kernel, the following vulnerability has been resolved: nfp: bpf: Add check for nfp_app_ctrl_msg_alloc() Add check for the return value linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21823 In the Linux kernel, the following vulnerability has been resolved: batman-adv: Drop unmanaged ELP metric worker The ELP worker needs to calculate linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21877 In the Linux kernel, the following vulnerability has been resolved: usbnet: gl620a: fix endpoint checking in genelink_bind() Syzbot reports [1] a w linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2024-58090 In the Linux kernel, the following vulnerability has been resolved: sched/core: Prevent rescheduling when interrupts are disabled David reported a linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield
CVE CVE-2025-21862 In the Linux kernel, the following vulnerability has been resolved: drop_monitor: fix incorrect initialization order Syzkaller reports the followin linux linux linux linux-bluefield linux linux-hwe-5.15 linux-lowlatency-hwe-5.15 linux-bluefield



About   -   Send Feedback to @ubuntu_updates