Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2025-39902 | In the Linux kernel, the following vulnerability has been resolved: mm/slub: avoid accessing metadata when pointer is invalid in object_err() objec | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39920 | In the Linux kernel, the following vulnerability has been resolved: pcmcia: Add error handling for add_interval() in do_validate_mem() In the do_va | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39843 | In the Linux kernel, the following vulnerability has been resolved: mm: slub: avoid wake up kswapd in set_track_prepare set_track_prepare() can inc | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-38502 | In the Linux kernel, the following vulnerability has been resolved: bpf: Fix oob access in cgroup local storage Lonial reported that an out-of-boun | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39854 | In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL access of tx->in_use in ice_ll_ts_intr Recent versions of the E81 | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39901 | In the Linux kernel, the following vulnerability has been resolved: i40e: remove read access to debugfs files The 'command' and 'netdev_ops' debugf | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39852 | In the Linux kernel, the following vulnerability has been resolved: net/tcp: Fix socket memory leak in TCP-AO failure handling for IPv6 When tcp_ao | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39851 | In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix NPD when refreshing an FDB entry with a nexthop object VXLAN FDB ent | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39850 | In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix NPD in {arp,neigh}_reduce() when using nexthop objects When the "pro | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39897 | In the Linux kernel, the following vulnerability has been resolved: net: xilinx: axienet: Add error handling for RX metadata pointer retrieval Add | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39899 | In the Linux kernel, the following vulnerability has been resolved: mm/userfaultfd: fix kmap_local LIFO ordering for CONFIG_HIGHPTE With CONFIG_HIG | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-22125 | In the Linux kernel, the following vulnerability has been resolved: md/raid1,raid10: don't ignore IO flags If blk-wbt is enabled by default, it's f | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-22113 | In the Linux kernel, the following vulnerability has been resolved: ext4: avoid journaling sb update on error if journal is destroying Presently we | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-23133 | In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: update channel list in reg notifier instead reg worker Currently | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-22103 | In the Linux kernel, the following vulnerability has been resolved: net: fix NULL pointer dereference in l3mdev_l3_rcv When delete l3s ipvlan: | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-22124 | In the Linux kernel, the following vulnerability has been resolved: md/md-bitmap: fix wrong bitmap_limit for clustermd when write sb In clustermd, | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-23143 | In the Linux kernel, the following vulnerability has been resolved: net: Fix null-ptr-deref by sock_lock_init_class_and_name() and rmmod. When I ra | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39914 | In the Linux kernel, the following vulnerability has been resolved: tracing: Silence warning when chunk allocation fails in trace_pid_write Syzkall | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39886 | In the Linux kernel, the following vulnerability has been resolved: bpf: Tell memcg to use allow_spinning=false path in bpf_timer_init() Currently, | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
| CVE | CVE-2025-39913 | In the Linux kernel, the following vulnerability has been resolved: tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock- | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-lowlatency-hwe-6.8 linux-xilinx linux-xilinx |
About
-
Send Feedback to @ubuntu_updates
