Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2025-40286 | In the Linux kernel, the following vulnerability has been resolved: smb/server: fix possible memory leak in smb2_read() Memory leak occurs when ksm | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40285 | In the Linux kernel, the following vulnerability has been resolved: smb/server: fix possible refcount leak in smb2_sess_setup() Reference count of | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-68210 | In the Linux kernel, the following vulnerability has been resolved: erofs: avoid infinite loop due to incomplete zstd-compressed data Currently, th | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40284 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: cancel mesh send timer when hdev removed mesh_send_done timer | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40283 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF There is a K | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40282 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: 6lowpan: reset link-local header on ipv6 recv path Bluetooth 6lowpan | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40281 | In the Linux kernel, the following vulnerability has been resolved: sctp: prevent possible shift-out-of-bounds in sctp_transport_update_rto syzbot | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40280 | In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipc_mon_reinit_self(). syzbot reported use-after-f | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40214 | In the Linux kernel, the following vulnerability has been resolved: af_unix: Initialise scc_index in unix_add_edge(). Quang Le reported that the AF | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40279 | In the Linux kernel, the following vulnerability has been resolved: net: sched: act_connmark: initialize struct tc_ife to fix kernel leak In tcf_co | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40278 | In the Linux kernel, the following vulnerability has been resolved: net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak Fix | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-68209 | In the Linux kernel, the following vulnerability has been resolved: mlx5: Fix default values in create CQ Currently, CQs without a completion funct | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-68206 | In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: add seqadj extension for natted connections Sequence adjustm | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40277 | In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE This dat | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40276 | In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Flush shmem writes before mapping buffers CPU-uncached The shmem l | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-68243 | In the Linux kernel, the following vulnerability has been resolved: NFS: Check the TLS certificate fields in nfs_match_client() If the TLS security | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-68242 | In the Linux kernel, the following vulnerability has been resolved: NFS: Fix LTP test failures when timestamps are delegated The utimes01 and utime | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-40275 | In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd In | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-68200 | In the Linux kernel, the following vulnerability has been resolved: bpf: Add bpf_prog_run_data_pointers() syzbot found that cls_bpf_classify() is a | linux linux-hwe-6.17 linux linux-hwe-6.17 |
| CVE | CVE-2025-68208 | In the Linux kernel, the following vulnerability has been resolved: bpf: account for current allocated stack depth in widen_imprecise_scalars() The | linux linux-hwe-6.17 linux linux-hwe-6.17 |
About
-
Send Feedback to @ubuntu_updates
