Ubuntu Security Notice USN-7940-1 reports multiple security vulnerabilities fixed in the Linux kernel for Ubuntu 24.04 LTS. The vulnerabilities, including CVE-2025-40300 (VMSCAPE), allow an attacker to potentially expose sensitive information or compromise the system. To fix these issues, users need to update their system to the latest package versions and reboot their computer after a standard system update. Additionally, due to an ABI change, users may need to recompile and reinstall third-party kernel modules they have installed.
[USN-7940-1] Linux kernel (Azure FIPS) vulnerabilities
Several critical kernel updates are available for Ubuntu Linux. These include fixes for vulnerabilities in the standard Linux kernel as well as the Azure and Azure FIPS variants. The updates aim to address security concerns within these specific kernel versions. Users should consider installing these patches to ensure their system is up-to-date and secure.
[USN-7889-7] Linux kernel vulnerabilities
[USN-7938-1] Linux kernel (Azure) vulnerabilities
[USN-7939-2] Linux kernel (Azure FIPS) vulnerabilities
[USN-7939-1] Linux kernel (Azure) vulnerabilities
Liquorix has released version 6.17-14 of their custom-built Linux kernel, which is designed to optimize desktop performance for multimedia and gaming workloads by tapping into underutilized capabilities. This kernel includes various improvements, such as interactive tuning, optimized I/O and memory management, and changes to CPUFreq control, aiming to balance responsiveness with stability. Liquorix 6.17-14 also features additional performance enhancements like high-resolution scheduling, real-time system handling, and support for Budget Fair Queue (BFQ) and TCP BBR2 Congestion Control. Users can easily deploy the kernel on Debian, Ubuntu, or Arch Linux using pre-built binary packages from their PPA or an automated installation script.
A security issue has been fixed in the Linux kernel affecting Ubuntu 18.04 LTS, 16.04 LTS, and 14.04 LTS. This update corrects vulnerabilities in various subsystems, including the cryptographic API, ACPI drivers, and network file system (NFS) server daemon, among others.
[USN-7907-5] Linux kernel kernel vulnerabilities
Ubuntu Linux has released several security updates, including fixes for FIPS and non-FIPS Linux kernel vulnerabilities. Additionally, c-ares, Raspberry Pi, and real-time Linux kernel vulnerabilities have been addressed in the latest update. OpenStack Keystone and urllib3 also had vulnerabilities fixed in the recent security patches. Multiple other Linux kernel vulnerabilities were resolved as part of these updates.
[USN-7922-2] Linux kernel (FIPS) vulnerabilities
[USN-7925-1] c-ares vulnerability
[USN-7889-6] Linux kernel vulnerabilities
[USN-7906-3] Linux kernel (Raspberry Pi) vulnerabilities
[USN-7928-3] Linux kernel (Real-time) vulnerabilities
[USN-7928-2] Linux kernel (FIPS) vulnerabilities
[USN-7928-1] Linux kernel vulnerabilities
[USN-7926-1] OpenStack Keystone vulnerabilities
[USN-7927-1] urllib3 vulnerabilities
Ubuntu Linux has released several security updates to address various vulnerabilities. The updates include fixes for GNU binutils, libpng, Qt, and multiple issues in the Linux kernel. These patches aim to improve system security by addressing potential weaknesses that could be exploited by hackers.
[USN-7919-1] GNU binutils vulnerabilities
[USN-7924-1] libpng vulnerabilities
[USN-7923-1] Qt vulnerability
[USN-7921-1] Linux kernel vulnerabilities
[USN-7922-1] Linux kernel vulnerabilities
[USN-7920-1] Linux kernel vulnerabilities
Ubuntu has issued security notices for several vulnerabilities affecting various packages across different releases. The affected packages include Radare2, which contained memory leaks that could cause denial of service attacks; python-apt, which could crash when opening specially crafted files; and Netty, which had issues with HTTP message parsing and memory management. FontTools was also found to be vulnerable to XML External Entity (XEE) attacks and path traversal attacks that could lead to remote code execution. To fix these vulnerabilities, users are advised to update their systems to the latest package versions as specified in the security notices.
[USN-7915-1] Radare2 vulnerabilities
[USN-7916-1] python-apt vulnerability
[USN-7918-1] Netty vulnerabilities
[USN-7917-1] fontTools vulnerabilities
Ubuntu has released two separate security updates to address vulnerabilities in its system. The first update, USN-7914-1, fixes several security issues in WebKitGTK that could allow attackers to execute code or cause denial-of-service attacks. The second update, USN-7412-3, addresses a vulnerability in GnuPG on Ubuntu 18.04 LTS and 16.04 LTS that could be used to corrupt keyrings. Both updates require users to restart affected applications after installing the new packages.
[USN-7914-1] WebKitGTK vulnerabilities
[USN-7412-3] GnuPG vulnerability
Liquorix Linux kernel version 6.17-13 has been released, which is based on the stable Linux kernel 6.17.10 and designed to optimize desktop experiences for multimedia and gaming workloads. The new kernel has several important updates, like adjustments that make the system respond faster instead of saving power, better management of input/output and memory, and improved CPUFreq control for quicker responses when needed. Additionally, Liquorix 6.17-12 includes better scheduling for high-resolution tasks, a way to manage real-time processes, and support for Budget Fair Queue (BFQ) and TCP BBR2 Congestion Control The kernel can be easily installed on Debian, Ubuntu, or Arch Linux using a provided script or through their own PPA, making it a straightforward replacement for the standard kernel.
Multiple security vulnerabilities were discovered in the Linux kernel, affecting Ubuntu systems and their derivatives. These vulnerabilities were fixed in various updates, including USN-7910-2 for Linux kernel (Azure), USN-7909-4 for Linux kernel (GCP), GKE, and GKEOP, and USN-7889-5 for Linux kernel (IBM). The updates correct flaws in various subsystems, such as architecture-specific code, drivers, and file systems.
[USN-7910-2] Linux kernel (Azure) vulnerabilities
[USN-7909-4] Linux kernel vulnerabilities
[USN-7889-5] Linux kernel (IBM) vulnerabilities
[USN-7906-2] Linux kernel (GCP) vulnerabilities
Ubuntu Linux has released several security updates to address various vulnerabilities in its Linux kernel. These updates include fixes for FIPS-compliant versions of the kernel used by Google Cloud (USN-7907-4), Microsoft Azure (USN-7910-1), and generic FIPS (USN-7909-3). Additionally, other updates have been released to address vulnerabilities in the real-time Linux kernel (USN-7909-2) and IoT-focused versions of the kernel (USN-7874-3). Other software affected includes CUPS (with multiple advisories, USN-7912-1 and USN-7912-2), MAME (USN-7913-1), and various Linux kernel advisories.
[USN-7907-4] Linux kernel (GCP FIPS) vulnerabilities
[USN-7907-3] Linux kernel vulnerabilities
[USN-7911-1] Linux kernel vulnerabilities
[USN-7910-1] Linux kernel (Azure FIPS) vulnerabilities
[USN-7909-3] Linux kernel (FIPS) vulnerabilities
[USN-7909-2] Linux kernel (Real-time) vulnerabilities
[USN-7889-4] Linux kernel vulnerabilities
[USN-7879-4] Linux kernel vulnerabilities
[USN-7909-1] Linux kernel vulnerabilities
[USN-7912-2] CUPS vulnerability
[USN-7913-1] MAME vulnerabilities
[USN-7874-3] Linux kernel (IoT) vulnerabilities
[USN-7912-1] CUPS vulnerability
Ubuntu has released several security updates for various packages, including Linux kernel vulnerabilities (USN-7906-1, USN-7861-5, and USN-7907-2) that affect Ubuntu 25.10, 24.04 LTS, and 18.04 LTS versions. The updates fix multiple issues in the Linux kernel, such as insufficient branch predictor isolation, incorrect handling of memory operations, and flaws in various subsystems. Additionally, there are security notices for PostgreSQL vulnerabilities (USN-7908-1) that affect Ubuntu 25.10, 25.04, 24.04 LTS, and 22.04 LTS versions, and a KDE Connect vulnerability (USN-7905-1) affecting Ubuntu 25.10. The updates also include fixes for Ghostscript vulnerabilities (USN-7904-1) that affect various Ubuntu versions, including 20.04 LTS, 18.04 LTS, and 16.04 LTS.
[USN-7906-1] Linux kernel vulnerabilities
[USN-7908-1] PostgreSQL vulnerabilities
[USN-7861-5] Linux kernel vulnerabilities
[USN-7907-2] Linux kernel (FIPS) vulnerabilities
[USN-7907-1] Linux kernel vulnerabilities
[USN-7905-1] KDE Connect vulnerability
[USN-7904-1] Ghostscript vulnerabilities
USN-7855-1 partially fixed a regression issue in Unbound, which Ubuntu Security Notice USN-7855-2 addresses. The regression could lead to domain hijack attacks if an attacker exploited it. To resolve this issue, users need to update their system to the specified package versions for their Ubuntu release. Separately, Ubuntu Security Notice USN-7903-1 addresses several vulnerabilities in Django, including one that allowed arbitrary SQL commands and another that caused a denial of service due to inefficient deserialization of XML objects. The affected releases include multiple long-term support (LTS) versions of Ubuntu, with update instructions provided for each release.
[USN-7855-2] Unbound regression
[USN-7903-1] Django vulnerabilities
Ubuntu Linux has released several security updates to address vulnerabilities in different software packages. The USN-7899-1 update addresses issues with GNU binutils, while the next three updates (USN-7900-1 through USN-7902-1) target various vulnerabilities in CRaC JDK versions 17, 21, and 25. These updates aim to improve system security by patching known weaknesses. Users are advised to review the specific details of each update for more information on the affected packages and recommended actions.
[USN-7899-1] GNU binutils vulnerabilities
[USN-7900-1] CRaC JDK 17 vulnerabilities
[USN-7901-1] CRaC JDK 21 vulnerabilities
[USN-7902-1] CRaC JDK 25 vulnerabilities
Liquorix Linux kernel version 6.17-12 has been released, which is based on the stable Linux kernel 6.17.10 and designed to optimize desktop experiences for multimedia and gaming workloads. The new kernel has several important updates, like adjustments that make the system respond faster instead of saving power, better management of input/output and memory, and improved CPUFreq control for quicker responses when needed. Additionally, Liquorix 6.17-12 includes better scheduling for high-resolution tasks, a way to manage real-time processes, and support for Budget Fair Queue (BFQ) and TCP BBR2 Congestion Control The kernel can be easily installed on Debian, Ubuntu, or Arch Linux using a provided script or through their own PPA, making it a straightforward replacement for the standard kernel.
Steven Barrett has released the Liquorix Linux kernel 6.17-11. The kernel features Zen Interactive Tuning, which adjusts system settings to prioritize responsiveness over power-saving, as well as optimized I/O and memory management. There are also improvements for better performance, like more precise scheduling, better handling of real-time tasks, and support for Budget Fair Queue (BFQ Users can easily install the kernel using a provided script or by downloading binary builds from Liquorix's PPA repository, which supports Debian, Ubuntu, and Arch Linux distributions.
A security issue has been discovered in EDK II, which affects Ubuntu 24.04 LTS and 22.04 LTS systems. The issue was introduced as part of an earlier update to fix vulnerabilities in EDK II, but it inadvertently caused a regression in UEFI network boot functionality. To address this issue, users need to update their systems to specific package versions and then restart any virtual machines that use the affected firmware. This update is intended to revert the fixes for two CVEs (CVE-2023-45236 and CVE-2023-45237) while further investigation into the issue continues.
[USN-7894-2] EDK II regression
Ubuntu has released several security notices (USN-7897-1, USN-7890-1, USN-7898-1, USN-7852-2, USN-7896-1, and USN-7895-1) to address vulnerabilities in various packages, including CUPS, FFmpeg, OpenVPN, libxml2, and WebKitGTK. The vulnerabilities could allow attackers to crash or run programs as administrators, cause denial of service, or execute arbitrary code. Affected Ubuntu releases include 25.10, 25.04, 24.04 LTS, 22.04 LTS, 20.04 LTS, 18.04 LTS, and 16.04 LTS.
[USN-7897-1] CUPS vulnerability
[USN-7890-1] FFmpeg vulnerability
[USN-7898-1] OpenVPN vulnerability
[USN-7852-2] libxml2 vulnerability
[USN-7896-1] libxml2 vulnerabilities
[USN-7895-1] WebKitGTK vulnerabilities
Ubuntu Linux has released several security updates to address vulnerabilities in various components. These updates include fixes for the Linux kernel (Real-time and FIPS) as well as other affected packages such as H2O, Valkey, Python, rust-openssl, and EDK II. Additionally, vulnerabilities in the Linux kernel have also been addressed. Users are advised to install these security updates to ensure their system's security.
[USN-7889-3] Linux kernel (Real-time) vulnerabilities
[USN-7889-2] Linux kernel (FIPS) vulnerabilities
[USN-7879-3] Linux kernel vulnerabilities
[USN-7892-1] H2O vulnerability
[USN-7893-1] Valkey vulnerabilities
[USN-7886-2] Python vulnerabilities
[USN-7891-1] rust-openssl vulnerabilities
[USN-7894-1] EDK II vulnerabilities
