Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2025-39801 | In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: Remove WARN_ON for device endpoint command timeouts This commit addr | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39683 | In the Linux kernel, the following vulnerability has been resolved: tracing: Limit access to parser->buffer when trace_get_user failed When the len | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39687 | In the Linux kernel, the following vulnerability has been resolved: iio: light: as73211: Ensure buffer holes are zeroed Given that the buffer is co | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39681 | In the Linux kernel, the following vulnerability has been resolved: x86/cpu/hygon: Add missing resctrl_cpu_detect() in bsp_init helper Since 923 | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39679 | In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/nvif: Fix potential memory leak in nvif_vmm_ctor(). When the nvif_v | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39773 | In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix soft lockup in br_multicast_query_expired() When set multicast | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39676 | In the Linux kernel, the following vulnerability has been resolved: scsi: qla4xxx: Prevent a potential error pointer dereference The qla4xxx_get_ep | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-38676 | In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Avoid stack buffer overflow from kernel cmdline While the kernel com | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39772 | In the Linux kernel, the following vulnerability has been resolved: drm/hisilicon/hibmc: fix the hibmc loaded failed bug When hibmc loaded failed, | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39675 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null pointer check in mod_hdcp_hdcp1_create_session() The | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39770 | In the Linux kernel, the following vulnerability has been resolved: net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6_CSUM When p | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39673 | In the Linux kernel, the following vulnerability has been resolved: ppp: fix race conditions in ppp_fill_forward_path ppp_fill_forward_path() has t | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-38735 | In the Linux kernel, the following vulnerability has been resolved: gve: prevent ethtool ops after shutdown A crash can occur if an ethtool operati | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-38734 | In the Linux kernel, the following vulnerability has been resolved: net/smc: fix UAF on smcsk after smc_listen_out() BPF CI testing report a UAF is | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39766 | In the Linux kernel, the following vulnerability has been resolved: net/sched: Make cake_enqueue return NET_XMIT_CN when past buffer_limit The foll | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-38732 | In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_reject: don't leak dst refcount for loopback packets recent patch | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-38722 | In the Linux kernel, the following vulnerability has been resolved: habanalabs: fix UAF in export_dmabuf() As soon as we'd inserted a file referenc | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-38710 | In the Linux kernel, the following vulnerability has been resolved: gfs2: Validate i_depth for exhash directories A fuzzer test introduced corrupti | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-38705 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: fix null pointer access Writing a string without delimiters (' ', ' | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
| CVE | CVE-2025-39748 | In the Linux kernel, the following vulnerability has been resolved: bpf: Forget ranges when refining tnum after JSET Syzbot reported a kernel warni | linux linux-hwe-6.8 linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-azure-nvidia |
About
-
Send Feedback to @ubuntu_updates
