A security notice was issued for Ubuntu 24.04 LTS due to vulnerabilities in the Linux kernel. These issues, which affect the cryptographic API, SMB network file system, and io_uring subsystem, could potentially be exploited by an attacker to compromise a system. To fix these problems, users need to update their systems to specific package versions, including linux-image-6.8.0-1022-xilinx and linux-image-6.8.0-94-lowlatency. After updating, it's essential to reboot the computer and possibly reinstall third-party kernel modules due to an ABI change.
[USN-8015-5] Linux kernel vulnerabilities
The newest XanMod kernels (6.19.3, 6.18.13, 6.18.13-rt, and LTS 6.12.74) have been released for 64-bit Debian-based systems, offering several performance tweaks, including LLVM's ThinLTO and polyhedral optimizations in the 6.19 series. However, users may experience issues with certain drivers, such as NVIDIA's proprietary driver version 560.28, which can cause the system to panic after booting into XanMod 6.19.3. To install the new kernel on Debian/Ubuntu systems, you need to trust the XanMod signing key and add a repository line to your sources.list file. If you rely on external modules like NVIDIA or OpenZFS with ZFS DKMS package, make sure to update their source trees before rebooting and reinstall any necessary packages after the kernel upgrade from version 6.18.x or earlier.
The Liquorix 6.18-14 kernel has been released for Linux users, promising lower latency, a snappier desktop feel, and better frame-time consistency in games. This new kernel is designed to improve "interactive" performance by swapping the default scheduler, reducing CPU timeslice, and enabling background hugepage reclaim among other changes. If you regularly engage in gaming, video production, or run virtual machines that require low latency, installing Liquorix may be worth it as it can provide extra responsiveness and improved playback.
Ubuntu Linux has released several updates to address security vulnerabilities in various components, including the Linux kernel. These updates affect different kernel flavors, such as Low Latency and Intel IoTG, as well as Azure and HWE kernels. Additionally, a vulnerability was found in libvpx, another critical component that requires an update. Users are advised to check for available updates to ensure their systems are secure.
[USN-8033-7] Linux kernel vulnerabilities
[USN-8052-1] Linux kernel (Low Latency) vulnerabilities
[USN-8031-3] Linux kernel vulnerabilities
[USN-8028-6] Linux kernel (HWE) vulnerabilities
[USN-8028-7] Linux kernel (Low Latency NVIDIA) vulnerabilities
[USN-8053-1] libvpx vulnerability
[USN-8033-8] Linux kernel (Intel IoTG) vulnerabilities
[USN-7990-5] Linux kernel (Azure) vulnerabilities
The first XanMod kernel, version 6.19.2, has been released based on the latest 6.19 Kernel series with several enhancements and new features, including webcam support for select AMD Strix Halo-based laptops. To install it on Debian-based systems, start by adding the official repository and grabbing its signing key to prevent warnings from apt. After updating the package list, you'll need to pull in the kernel and headers, as well as build tools like dkms and clang if you plan to rebuild external modules, such as NVIDIA drivers or VirtualBox. With these steps complete, your system should be running smoothly on XanMod 6.19.2, although it's always a good idea to verify the kernel version and have backup plans in case of unexpected issues.
Ubuntu has released several security updates to address vulnerabilities in its systems. The first update addresses issues in the Linux kernel, including improper initialization of CPU cache memory and potential data leakage due to processor flaws (CVE-2024-36331, CVE-2025-21884). The second update fixes a vulnerability in Apache Traffic Server that could cause denial-of-service attacks if it receives specially crafted input. Additionally, updates have been released for libssh, which corrects issues including incorrect key exchange handling and potential file overwriting due to SCP client vulnerabilities (CVE-2026-0964, CVE-2025-8277).
[USN-8031-2] Linux kernel (GCP FIPS) vulnerabilities
[USN-8050-1] Apache Traffic Server vulnerability
[USN-8051-1] libssh vulnerabilities
[USN-7992-2] Inetutils vulnerability
The Liquorix Kernel 6.18-13 offers improved performance and reduced latency for desktop users and gamers through tweaks such as swapping the default scheduler and adjusting CPU settings. To install this kernel on Debian, Ubuntu, and Arch Linux systems, download the official script using curl and follow its instructions to pull the necessary .deb files from Liquorix's repository. The new kernel replaces the mq-deadline scheduler with Kyber for multiqueue devices and BFQ for single-queue drives, resulting in faster performance during tasks like video encoding and gaming. After installation and a reboot, users can verify that the new kernel is active by checking the system's output from commands like uname -r and /sys/block/sda/queue/scheduler.
The XanMod kernels 6.18.12 and 6.12.73 LTS offer improved performance, including faster compile times and higher throughput for I/O-intensive containers, due to ThinLTO compilation and block layer runqueue changes. To install these kernels on Debian-based systems, users need to import the signing key, add a source list entry, update apt, and install the linux-xanmod-x64v3 meta-package. This process can be simplified into a single flow of fetching the key, writing the repo line, updating apt, installing the kernel package, and rebooting. After installation, users can verify that the new kernel is active by checking /proc/version or uname -r, and ensure their graphics stack has re-initialized correctly using glxinfo | grep OpenGL.
Several security updates have been released for Ubuntu to address vulnerabilities in various software packages, including FreeRDP, Expat, .NET, alsa-lib, and GnuTLS. The updates affect multiple releases of Ubuntu, including 25.10, 24.04 LTS, 22.04 LTS, 20.04 LTS, and 18.04 LTS. Vulnerabilities were discovered in FreeRDP that could allow attackers to cause denial of service or execute arbitrary code, while Expat had issues with XML parsing and .NET had a vulnerability related to bypassing security checks. alsa-lib was found to have a topology mixer control decoder issue, and GnuTLS had problems with malicious certificates and PKCS11 token labels.
[USN-8042-1] FreeRDP vulnerabilities
[USN-8022-2] Expat vulnerabilities
[USN-8025-2] .NET vulnerability
[USN-8044-1] alsa-lib vulnerability
[USN-8043-1] GnuTLS vulnerabilities
The new Liquorix Kernel 6.18-12 offers improved low-latency power for Debian, Ubuntu, and Arch systems without sacrificing stability. It drops support for BTF module loading to achieve faster boot times on older hardware and lower input latency with a built-in scheduler swap to Kyber or BFQ. Users can install the kernel quickly using an official script that auto-detects their system type, or build their own packages with Docker for a more transparent workflow. The Liquorix kernel features various low-latency improvements such as Zen Interactive Tuning and High-Resolution 1000 Hz Tick, making it ideal for gaming and real-time tasks.
A security notice was issued for Ubuntu and its derivatives due to vulnerabilities in the python-aiohttp library. The issues were discovered by Charles Chan and Thomas Rinsma, who found flaws that could lead to denial of service or request smuggling attacks. Vulnerable versions include Ubuntu 25.10, 24.04 LTS, 22.04 LTS, 20.04 LTS, and 18.04 LTS.
[USN-8032-1] AIOHTTP vulnerabilities
Xanmod Kernel 6.12.71 is now available, based on the latest Linux LTS kernel that features a range of targeted fixes including improvements for virtual-socket tests, asynchronous I/O, and VLAN packet handling in tunnels. This updated kernel offers stability and performance enhancements, and can be installed on Debian, Ubuntu, or derivative systems. A step-by-step guide will walk you through the process of installing the Xanmod LTS kernel, explaining each command and how to avoid common issues with DKMS modules.
A new version of the Liquorix Kernel 6.18-11 has been released, bringing low-latency tweaks, latency-driven improvements, and an optional Docker build pipeline to Debian, Ubuntu, and Arch systems. For most users, the official install script can be used to easily install a drop-in replacement kernel with reduced input latency without any manual configuration. Power users who prefer a transparent build chain can use Docker to compile their own packages from source, allowing for customization of signing and packaging options. The Liquorix kernel brings several low-latency features, including Zen Interactive Tuning, Background Hugepage Reclaim, and High-Resolution 1000 Hz Tick, making it a great solution for gaming, audio production, and other interactive workloads.
A security issue was found in the Linux kernel for Amazon Web Services (AWS) systems, affecting Ubuntu 20.04 LTS and its derivatives. The issue was fixed by correcting flaws in multiple subsystems, including Nios II architecture, x86 architecture, Block layer subsystem, Cryptographic API, and more. To fix the problem, users need to update their system to specific package versions, reboot, and reinstall any third-party kernel modules that were installed manually.
[USN-8033-4] Linux kernel (AWS) vulnerabilities
The Ubuntu Security Notice USN-8034-1 addresses vulnerabilities in the Linux kernel (NVIDIA Tegra) on Ubuntu 22.04 LTS and Ubuntu 20.04 LTS, which could be exploited by an attacker to compromise the system. USN-8033-3 fixes vulnerabilities in the Linux kernel (FIPS) affecting Ubuntu 22.04 LTS, which could be used by an attacker to compromise the system. USN-8033-2 addresses multiple security issues in the Linux kernel (Real-time) on Ubuntu 22.04 LTS, including improper initialization of CPU cache memory and potential information leakage due to AMD processor flaws. Additionally, multiple security notices address various vulnerabilities in different software packages, including HAProxy, nginx, MUNGE, node-dottie, and libpng, which could be exploited by attackers to compromise systems or steal sensitive information.
[USN-8034-1] Linux kernel (NVIDIA Tegra) vulnerabilities
[USN-8033-3] Linux kernel (FIPS) vulnerabilities
[USN-8033-2] Linux kernel vulnerabilities
[USN-8033-1] Linux kernel vulnerabilities
[USN-8031-1] Linux kernel (GCP) vulnerabilities
[USN-8028-2] Linux kernel (Real-time) vulnerabilities
[USN-8030-1] Linux kernel (GCP) vulnerabilities
[USN-8029-1] Linux kernel vulnerabilities
[USN-8025-1] .NET vulnerability
[USN-8035-1] libpng vulnerabilities
[USN-8037-1] DNSdist vulnerabilities
[USN-7990-4] Linux kernel (Oracle) vulnerabilities
[USN-7988-5] Linux kernel (Azure) vulnerabilities
[USN-8039-1] libpng vulnerability
[USN-8036-1] HAProxy vulnerability
[USN-8038-1] nginx vulnerability
[USN-8040-1] MUNGE vulnerability
[USN-8041-1] Dottie vulnerability
Ubuntu Linux 24.04.4 LTS brings several key updates, including a new Linux kernel 6.17 and Mesa 25.2.8, which add support for fresh hardware and improve gaming performance. The update also includes newer versions of Firefox, Snapd, and LibreOffice, making most users' experiences smoother and more stable. Gamers on laptops with integrated graphics will particularly benefit from the Mesa refresh, which can lead to a 5-10% bump in frame rates. Overall, this point release addresses real pain points for Ubuntu users, including new hardware support and modest gaming improvements, making it worth upgrading.
The XanMod kernel offers improved performance with its block-layer runqueue tweaks and revamped scheduler, resulting in smoother multitasking. It also includes aggressive x86_64 optimizations from LLVM's ThinLTO for better I/O boosts. For low-latency workloads like audio production, robotics, or gaming, the linux-xanmod-rt package is available, which ships a PREEMPT_RT-enabled kernel based on 6.18 with deterministic scheduling. The XanMod kernel is compatible with various drivers, including NVIDIA and VirtualBox, although some may require reinstalling under new headers to work properly.
Several security issues have been fixed in various packages, including expat, libxmltok, and Linux kernel, which affect Ubuntu 24.04 LTS, 22.04 LTS, 20.04 LTS, 18.04 LTS, 16.04 LTS, and 14.04 LTS. The updates fix vulnerabilities that could potentially allow an attacker to cause a denial of service or execute arbitrary code, including issues related to memory handling, integer calculations, and external entity initialization. To address these issues, users are advised to update their systems to the latest package versions, which can be done by running a standard system update. The affected packages include expat 2.7.1-2ubuntu0.2, libxmltok1 1.2-4ubuntu0.22.04.1~esm6, and Linux kernel version 6.8.0-100.100.
[USN-8022-1] Expat vulnerabilities
[USN-8023-1] xmltok library vulnerabilities
[USN-8028-1] Linux kernel vulnerabilities
[USN-8027-1] Python-Multipart vulnerabilities
[USN-7954-2] Libtasn1 vulnerabilities
[USN-8013-4] Linux kernel vulnerabilities
[USN-7988-4] Linux kernel (GCP FIPS) vulnerabilities
[USN-8015-4] Linux kernel vulnerabilities
[USN-7990-3] Linux kernel (Xilinx ZynqMP) vulnerabilities
[USN-8024-1] Libwebsockets vulnerabilities
Ubuntu Security Notice USN-8021-1 addresses a vulnerability in ImageMagick that could allow an attacker to crash or run programs as a user's login by opening a specially crafted file. The issue affects several Ubuntu releases, including 24.04 LTS, 22.04 LTS, 20.04 LTS, 18.04 LTS, 16.04 LTS, and 14.04 LTS. To fix the problem, users can update their system to the latest package versions listed in the security notice. Similarly, USN-7942-2 addresses multiple vulnerabilities in GLib that could cause a denial of service or allow arbitrary code execution, affecting Ubuntu 20.04 LTS, 18.04 LTS, 16.04 LTS, and 14.04 LTS.
[USN-8021-1] ImageMagick vulnerability
[USN-7942-2] GLib vulnerabilities
