Undertow, Kernel, Libjxl, Cairo updates for Ubuntu Linux

Ubuntu 7039 Published by

Ubuntu released a series of security notices to address vulnerabilities affecting multiple operating system versions. While some updates fix memory management flaws in libraries like Undertow and Cairo, others resolve critical kernel issues that could allow attackers to compromise the entire system. Administrators running real-time or FIPS configurations will need to apply specific package updates depending on their architecture and cloud provider environment. A final note warns that several kernel changes involve an unavoidable ABI shift which necessitates recompiling third party modules before rebooting the machine.

[USN-8144-1] Undertow vulnerability
[USN-8148-3] Linux kernel (Real-time) vulnerabilities
[USN-8145-2] Linux kernel (FIPS) vulnerabilities
[USN-8143-2] Linux kernel (FIPS) vulnerabilities
[USN-8148-2] Linux kernel (FIPS) vulnerabilities
[USN-8146-1] libjxl vulnerability
[USN-8140-1] Cairo vulnerabilities
[USN-8148-1] Linux kernel vulnerabilities
[USN-8149-1] Linux kernel vulnerabilities
[USN-8145-1] Linux kernel vulnerabilities




[USN-8144-1] Undertow vulnerability


==========================================================================
Ubuntu Security Notice USN-8144-1
April 02, 2026

undertow vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS

Summary:

Undertow would allow unintended access to user sessions over the network.

Software Description:
- undertow: Java web server based on non-blocking IO

Details:

It was discovered that Undertow incorrectly validated the Host header in
incoming HTTP requests. A remote attacker could possibly use this issue
to gain unintended access to user sessions.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.04 LTS
libundertow-java 2.3.8-2ubuntu0.1~esm1
Available with Ubuntu Pro

Ubuntu 22.04 LTS
libundertow-java 2.2.16-1ubuntu0.1~esm1
Available with Ubuntu Pro

Ubuntu 20.04 LTS
libundertow-java 2.0.29-1ubuntu0.1~esm1
Available with Ubuntu Pro

Ubuntu 18.04 LTS
libundertow-java 1.4.23-3ubuntu0.1~esm1
Available with Ubuntu Pro

Ubuntu 16.04 LTS
libundertow-java 1.3.16-1ubuntu0.1~esm1
Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-8144-1
CVE-2025-12543



[USN-8148-3] Linux kernel (Real-time) vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8148-3
April 02, 2026

linux-realtime, linux-realtime-6.8, linux-raspi-realtime vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux-raspi-realtime: Linux kernel for Raspberry Pi Real-time systems
- linux-realtime: Linux kernel for Real-time systems
- linux-realtime-6.8: Linux kernel for Real-time systems

Details:

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Cryptographic API;
- Netfilter;
- Network traffic control;
(CVE-2026-23060, CVE-2026-23074, CVE-2026-23111)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.04 LTS
linux-image-6.8.0-2041-raspi-realtime 6.8.0-2041.42
Available with Ubuntu Pro
linux-image-6.8.1-1046-realtime 6.8.1-1046.47
Available with Ubuntu Pro
linux-image-intel-iot-realtime 6.8.1-1046.47
Available with Ubuntu Pro
linux-image-raspi-realtime 6.8.0-2041.42
Available with Ubuntu Pro
linux-image-raspi-realtime-6.8 6.8.0-2041.42
Available with Ubuntu Pro
linux-image-realtime 6.8.1-1046.47
Available with Ubuntu Pro
linux-image-realtime-6.8.1 6.8.1-1046.47
Available with Ubuntu Pro

Ubuntu 22.04 LTS
linux-image-6.8.1-1046-realtime 6.8.1-1046.47~22.04.2
Available with Ubuntu Pro
linux-image-realtime-6.8.1 6.8.1-1046.47~22.04.2
Available with Ubuntu Pro
linux-image-realtime-hwe-22.04 6.8.1-1046.47~22.04.2
Available with Ubuntu Pro

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
https://ubuntu.com/security/notices/USN-8148-3
https://ubuntu.com/security/notices/USN-8148-2
https://ubuntu.com/security/notices/USN-8148-1
CVE-2026-23060, CVE-2026-23074, CVE-2026-23111

Package Information:
https://launchpad.net/ubuntu/+source/linux-raspi-realtime/6.8.0-2041.42
https://launchpad.net/ubuntu/+source/linux-realtime/6.8.1-1046.47

https://launchpad.net/ubuntu/+source/linux-realtime-6.8/6.8.1-1046.47~22.04.2



[USN-8145-2] Linux kernel (FIPS) vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8145-2
April 02, 2026

linux-fips, linux-aws-fips vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux-aws-fips: Linux kernel for Amazon Web Services (AWS) systems with FIPS
- linux-fips: Linux kernel with FIPS

Details:

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- ARM64 architecture;
- Cryptographic API;
- UDF file system;
- NFC subsystem;
- Network traffic control;
(CVE-2024-46777, CVE-2025-21735, CVE-2025-37849, CVE-2026-23060,
CVE-2026-23074)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS
linux-image-4.15.0-1145-fips 4.15.0-1145.157
Available with Ubuntu Pro
linux-image-4.15.0-2128-aws-fips 4.15.0-2128.134
Available with Ubuntu Pro
linux-image-aws-fips 4.15.0.2128.122
Available with Ubuntu Pro
linux-image-aws-fips-4.15 4.15.0.2128.122
Available with Ubuntu Pro
linux-image-fips 4.15.0.1145.142
Available with Ubuntu Pro

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
https://ubuntu.com/security/notices/USN-8145-2
https://ubuntu.com/security/notices/USN-8145-1
CVE-2024-46777, CVE-2025-21735, CVE-2025-37849, CVE-2026-23060,
CVE-2026-23074

Package Information:
https://launchpad.net/ubuntu/+source/linux-aws-fips/4.15.0-2128.134
https://launchpad.net/ubuntu/+source/linux-fips/4.15.0-1145.157



[USN-8143-2] Linux kernel (FIPS) vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8143-2
April 02, 2026

linux-fips vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux-fips: Linux kernel with FIPS

Details:

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Cryptographic API;
- GPU drivers;
- BTRFS file system;
- GFS2 file system;
- UDF file system;
- NFC subsystem;
- Network traffic control;
(CVE-2021-47142, CVE-2021-47145, CVE-2021-47254, CVE-2024-46777,
CVE-2025-21735, CVE-2026-23060, CVE-2026-23074)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS
linux-image-4.4.0-1123-fips 4.4.0-1123.130
Available with Ubuntu Pro
linux-image-fips 4.4.0.1123.124
Available with Ubuntu Pro

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
https://ubuntu.com/security/notices/USN-8143-2
https://ubuntu.com/security/notices/USN-8143-1
CVE-2021-47142, CVE-2021-47145, CVE-2021-47254, CVE-2024-46777,
CVE-2025-21735, CVE-2026-23060, CVE-2026-23074

Package Information:
https://launchpad.net/ubuntu/+source/linux-fips/4.4.0-1123.130



[USN-8148-2] Linux kernel (FIPS) vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8148-2
April 02, 2026

linux-fips, linux-aws-fips, linux-gcp-fips vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux-aws-fips: Linux kernel for Amazon Web Services (AWS) systems with FIPS
- linux-fips: Linux kernel with FIPS
- linux-gcp-fips: Linux kernel for Google Cloud Platform (GCP) systems with
FIPS

Details:

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Cryptographic API;
- Netfilter;
- Network traffic control;
(CVE-2026-23060, CVE-2026-23074, CVE-2026-23111)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.04 LTS
linux-image-6.8.0-1051-aws-fips 6.8.0-1051.54+fips1
Available with Ubuntu Pro
linux-image-6.8.0-1053-gcp-fips 6.8.0-1053.56+fips1
Available with Ubuntu Pro
linux-image-6.8.0-107-fips 6.8.0-107.107+fips1
Available with Ubuntu Pro
linux-image-aws-fips 6.8.0-1051.54+fips1
Available with Ubuntu Pro
linux-image-aws-fips-6.8 6.8.0-1051.54+fips1
Available with Ubuntu Pro
linux-image-fips 6.8.0-107.107+fips1
Available with Ubuntu Pro
linux-image-fips-6.8 6.8.0-107.107+fips1
Available with Ubuntu Pro
linux-image-gcp-fips 6.8.0-1053.56+fips1
Available with Ubuntu Pro
linux-image-gcp-fips-6.8 6.8.0-1053.56+fips1
Available with Ubuntu Pro

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
https://ubuntu.com/security/notices/USN-8148-2
https://ubuntu.com/security/notices/USN-8148-1
CVE-2026-23060, CVE-2026-23074, CVE-2026-23111

Package Information:
https://launchpad.net/ubuntu/+source/linux-aws-fips/6.8.0-1051.54+fips1
https://launchpad.net/ubuntu/+source/linux-fips/6.8.0-107.107+fips1
https://launchpad.net/ubuntu/+source/linux-gcp-fips/6.8.0-1053.56+fips1



[USN-8146-1] libjxl vulnerability


==========================================================================
Ubuntu Security Notice USN-8146-1
April 02, 2026

jpeg-xl vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 25.10

Summary:

libjxl could be made to crash or run programs as your login if it
opened a specially crafted file.

Software Description:
- jpeg-xl: Reference codec implementation for JPEG XL compressed raster image format

Details:

Daniel Novomeský discovered that libjxl did not properly manage memory when
decoding certain files. An attacker could use this issue to cause
libjxl to crash, resulting in denial of service, or possibly execute
arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.10
libjpegxl-java 0.11.1-6ubuntu1.1
libjxl-tools 0.11.1-6ubuntu1.1
libjxl0.11 0.11.1-6ubuntu1.1

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-8146-1
CVE-2026-1837

Package Information:
https://launchpad.net/ubuntu/+source/jpeg-xl/0.11.1-6ubuntu1.1



[USN-8140-1] Cairo vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8140-1
April 02, 2026

cairo vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS

Summary:

Several security issues were fixed in Cairo.

Software Description:
- cairo: Cairo 2D vector graphics library performance utilities

Details:

Alberto Garcia, Francisco Oca and Suleman Ali discovered that Cairo did
not properly manage memory. An attacker could possibly use this issue to
cause Cairo to crash, resulting in a denial of service. This issue only
affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS.
(CVE-2017-9814)

It was discovered that Cairo incorrectly handled certain angle values when
drawing arcs. An attacker could possibly use this issue to cause Cairo to
crash, resulting in a denial of service. (CVE-2019-6461)

It was discovered that Cairo incorrectly handled certain calculations when
drawing arcs. An attacker could possibly use this issue to cause Cairo to
consume resources, resulting in a denial of service. This issue only
affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS.
(CVE-2019-6462)

Stephan Bergmann discovered that Cairo incorrectly managed memory during
image composition. An attacker could use this issue to cause Cairo to
crash, resulting in a denial of service, or possibly execute arbitrary
code. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS.
(CVE-2020-35492)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS
cairo-perf-utils 1.16.0-5ubuntu2.1
libcairo2 1.16.0-5ubuntu2.1

Ubuntu 20.04 LTS
cairo-perf-utils 1.16.0-4ubuntu1+esm1
Available with Ubuntu Pro
libcairo2 1.16.0-4ubuntu1+esm1
Available with Ubuntu Pro

Ubuntu 18.04 LTS
cairo-perf-utils 1.15.10-2ubuntu0.1+esm1
Available with Ubuntu Pro
libcairo2 1.15.10-2ubuntu0.1+esm1
Available with Ubuntu Pro

Ubuntu 16.04 LTS
cairo-perf-utils 1.14.6-1ubuntu0.1~esm2
Available with Ubuntu Pro
libcairo2 1.14.6-1ubuntu0.1~esm2
Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-8140-1
CVE-2017-9814, CVE-2019-6461, CVE-2019-6462, CVE-2020-35492

Package Information:
https://launchpad.net/ubuntu/+source/cairo/1.16.0-5ubuntu2.1



[USN-8148-1] Linux kernel vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8148-1
April 02, 2026

linux, linux-aws, linux-gcp, linux-gke, linux-gkeop, linux-ibm,
linux-lowlatency, linux-nvidia, linux-raspi vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux: Linux kernel
- linux-aws: Linux kernel for Amazon Web Services (AWS) systems
- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems
- linux-gke: Linux kernel for Google Container Engine (GKE) systems
- linux-gkeop: Linux kernel for Google Container Engine (GKE) systems
- linux-ibm: Linux kernel for IBM cloud systems
- linux-lowlatency: Linux low latency kernel
- linux-nvidia: Linux kernel for NVIDIA systems
- linux-raspi: Linux kernel for Raspberry Pi systems

Details:

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Cryptographic API;
- Netfilter;
- Network traffic control;
(CVE-2026-23060, CVE-2026-23074, CVE-2026-23111)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.04 LTS
linux-image-6.8.0-1036-gkeop 6.8.0-1036.39
linux-image-6.8.0-1049-gke 6.8.0-1049.54
linux-image-6.8.0-1049-gke-64k 6.8.0-1049.54
linux-image-6.8.0-1050-ibm 6.8.0-1050.50
linux-image-6.8.0-1050-nvidia 6.8.0-1050.53
linux-image-6.8.0-1050-nvidia-64k 6.8.0-1050.53
linux-image-6.8.0-1051-aws 6.8.0-1051.54
linux-image-6.8.0-1051-aws-64k 6.8.0-1051.54
linux-image-6.8.0-1051-raspi 6.8.0-1051.55
linux-image-6.8.0-1053-gcp 6.8.0-1053.56
linux-image-6.8.0-1053-gcp-64k 6.8.0-1053.56
linux-image-6.8.0-107-generic 6.8.0-107.107
linux-image-6.8.0-107-generic-64k 6.8.0-107.107
linux-image-6.8.0-107-lowlatency 6.8.0-107.107.1
linux-image-6.8.0-107-lowlatency-64k 6.8.0-107.107.1
linux-image-aws-6.8 6.8.0-1051.54
linux-image-aws-64k-6.8 6.8.0-1051.54
linux-image-aws-64k-lts-24.04 6.8.0-1051.54
linux-image-aws-lts-24.04 6.8.0-1051.54
linux-image-gcp-6.8 6.8.0-1053.56
linux-image-gcp-64k-6.8 6.8.0-1053.56
linux-image-gcp-64k-lts-24.04 6.8.0-1053.56
linux-image-gcp-lts-24.04 6.8.0-1053.56
linux-image-generic 6.8.0-107.107
linux-image-generic-6.8 6.8.0-107.107
linux-image-generic-64k 6.8.0-107.107
linux-image-generic-64k-6.8 6.8.0-107.107
linux-image-generic-lpae 6.8.0-107.107
linux-image-gke 6.8.0-1049.54
linux-image-gke-6.8 6.8.0-1049.54
linux-image-gke-64k 6.8.0-1049.54
linux-image-gke-64k-6.8 6.8.0-1049.54
linux-image-gkeop 6.8.0-1036.39
linux-image-gkeop-6.8 6.8.0-1036.39
linux-image-ibm 6.8.0-1050.50
linux-image-ibm-6.8 6.8.0-1050.50
linux-image-ibm-classic 6.8.0-1050.50
linux-image-ibm-lts-24.04 6.8.0-1050.50
linux-image-intel-iotg 6.8.0-107.107
linux-image-kvm 6.8.0-107.107
linux-image-lowlatency 6.8.0-107.107.1
linux-image-lowlatency-6.8 6.8.0-107.107.1
linux-image-lowlatency-64k 6.8.0-107.107.1
linux-image-lowlatency-64k-6.8 6.8.0-107.107.1
linux-image-nvidia 6.8.0-1050.53
linux-image-nvidia-6.8 6.8.0-1050.53
linux-image-nvidia-64k 6.8.0-1050.53
linux-image-nvidia-64k-6.8 6.8.0-1050.53
linux-image-raspi 6.8.0-1051.55
linux-image-raspi-6.8 6.8.0-1051.55
linux-image-virtual 6.8.0-107.107
linux-image-virtual-6.8 6.8.0-107.107

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
https://ubuntu.com/security/notices/USN-8148-1
CVE-2026-23060, CVE-2026-23074, CVE-2026-23111

Package Information:
https://launchpad.net/ubuntu/+source/linux/6.8.0-107.107
https://launchpad.net/ubuntu/+source/linux-aws/6.8.0-1051.54
https://launchpad.net/ubuntu/+source/linux-gcp/6.8.0-1053.56
https://launchpad.net/ubuntu/+source/linux-gke/6.8.0-1049.54
https://launchpad.net/ubuntu/+source/linux-gkeop/6.8.0-1036.39
https://launchpad.net/ubuntu/+source/linux-ibm/6.8.0-1050.50
https://launchpad.net/ubuntu/+source/linux-lowlatency/6.8.0-107.107.1
https://launchpad.net/ubuntu/+source/linux-nvidia/6.8.0-1050.53
https://launchpad.net/ubuntu/+source/linux-raspi/6.8.0-1051.55



[USN-8149-1] Linux kernel vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8149-1
April 02, 2026

linux, linux-aws, linux-aws-6.17, linux-gcp, linux-gcp-6.17,
linux-hwe-6.17, linux-realtime vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 25.10
- Ubuntu 24.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux: Linux kernel
- linux-aws: Linux kernel for Amazon Web Services (AWS) systems
- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems
- linux-realtime: Linux kernel for Real-time systems
- linux-aws-6.17: Linux kernel for Amazon Web Services (AWS) systems
- linux-gcp-6.17: Linux kernel for Google Cloud Platform (GCP) systems
- linux-hwe-6.17: Linux hardware enablement (HWE) kernel

Details:

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Cryptographic API;
- Netfilter;
- Network traffic control;
(CVE-2026-23060, CVE-2026-23074, CVE-2026-23111)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.10
linux-image-6.17.0-1009-realtime 6.17.0-1009.10
linux-image-6.17.0-1010-aws 6.17.0-1010.10
linux-image-6.17.0-1010-aws-64k 6.17.0-1010.10
linux-image-6.17.0-1010-gcp 6.17.0-1010.10
linux-image-6.17.0-1010-gcp-64k 6.17.0-1010.10
linux-image-6.17.0-20-generic 6.17.0-20.20
linux-image-6.17.0-20-generic-64k 6.17.0-20.20
linux-image-aws 6.17.0-1010.10
linux-image-aws-6.17 6.17.0-1010.10
linux-image-aws-64k 6.17.0-1010.10
linux-image-aws-64k-6.17 6.17.0-1010.10
linux-image-gcp 6.17.0-1010.10
linux-image-gcp-6.17 6.17.0-1010.10
linux-image-gcp-64k 6.17.0-1010.10
linux-image-gcp-64k-6.17 6.17.0-1010.10
linux-image-generic 6.17.0-20.20
linux-image-generic-6.17 6.17.0-20.20
linux-image-generic-64k 6.17.0-20.20
linux-image-generic-64k-6.17 6.17.0-20.20
linux-image-realtime 6.17.0-1009.10
linux-image-realtime-6.17 6.17.0-1009.10
linux-image-virtual 6.17.0-20.20
linux-image-virtual-6.17 6.17.0-20.20

Ubuntu 24.04 LTS
linux-image-6.17.0-1010-aws 6.17.0-1010.10~24.04.1
linux-image-6.17.0-1010-aws-64k 6.17.0-1010.10~24.04.1
linux-image-6.17.0-1010-gcp 6.17.0-1010.10~24.04.1
linux-image-6.17.0-1010-gcp-64k 6.17.0-1010.10~24.04.1
linux-image-6.17.0-20-generic 6.17.0-20.20~24.04.1
linux-image-6.17.0-20-generic-64k 6.17.0-20.20~24.04.1
linux-image-aws 6.17.0-1010.10~24.04.1
linux-image-aws-6.17 6.17.0-1010.10~24.04.1
linux-image-aws-64k 6.17.0-1010.10~24.04.1
linux-image-aws-64k-6.17 6.17.0-1010.10~24.04.1
linux-image-gcp 6.17.0-1010.10~24.04.1
linux-image-gcp-6.17 6.17.0-1010.10~24.04.1
linux-image-gcp-64k 6.17.0-1010.10~24.04.1
linux-image-gcp-64k-6.17 6.17.0-1010.10~24.04.1
linux-image-generic-6.17 6.17.0-20.20~24.04.1
linux-image-generic-64k-6.17 6.17.0-20.20~24.04.1
linux-image-generic-64k-hwe-24.04 6.17.0-20.20~24.04.1
linux-image-generic-hwe-24.04 6.17.0-20.20~24.04.1
linux-image-virtual-6.17 6.17.0-20.20~24.04.1
linux-image-virtual-hwe-24.04 6.17.0-20.20~24.04.1

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
https://ubuntu.com/security/notices/USN-8149-1
CVE-2026-23060, CVE-2026-23074, CVE-2026-23111

Package Information:
https://launchpad.net/ubuntu/+source/linux/6.17.0-20.20
https://launchpad.net/ubuntu/+source/linux-aws/6.17.0-1010.10
https://launchpad.net/ubuntu/+source/linux-gcp/6.17.0-1010.10
https://launchpad.net/ubuntu/+source/linux-realtime/6.17.0-1009.10
https://launchpad.net/ubuntu/+source/linux-aws-6.17/6.17.0-1010.10~24.04.1
https://launchpad.net/ubuntu/+source/linux-gcp-6.17/6.17.0-1010.10~24.04.1
https://launchpad.net/ubuntu/+source/linux-hwe-6.17/6.17.0-20.20~24.04.1



[USN-8145-1] Linux kernel vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8145-1
April 02, 2026

linux, linux-aws, linux-aws-hwe, linux-kvm, linux-oracle vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux: Linux kernel
- linux-aws: Linux kernel for Amazon Web Services (AWS) systems
- linux-kvm: Linux kernel for cloud environments
- linux-oracle: Linux kernel for Oracle Cloud systems
- linux-aws-hwe: Linux kernel for Amazon Web Services (AWS-HWE) systems

Details:

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- ARM64 architecture;
- Cryptographic API;
- UDF file system;
- NFC subsystem;
- Network traffic control;
(CVE-2024-46777, CVE-2025-21735, CVE-2025-37849, CVE-2026-23060,
CVE-2026-23074)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS
linux-image-4.15.0-1152-oracle 4.15.0-1152.163
Available with Ubuntu Pro
linux-image-4.15.0-1172-kvm 4.15.0-1172.177
Available with Ubuntu Pro
linux-image-4.15.0-1190-aws 4.15.0-1190.203
Available with Ubuntu Pro
linux-image-4.15.0-248-generic 4.15.0-248.260
Available with Ubuntu Pro
linux-image-4.15.0-248-lowlatency 4.15.0-248.260
Available with Ubuntu Pro
linux-image-aws-4.15 4.15.0.1190.188
Available with Ubuntu Pro
linux-image-aws-lts-18.04 4.15.0.1190.188
Available with Ubuntu Pro
linux-image-generic 4.15.0.248.232
Available with Ubuntu Pro
linux-image-kvm 4.15.0.1172.163
Available with Ubuntu Pro
linux-image-lowlatency 4.15.0.248.232
Available with Ubuntu Pro
linux-image-oracle-4.15 4.15.0.1152.157
Available with Ubuntu Pro
linux-image-oracle-lts-18.04 4.15.0.1152.157
Available with Ubuntu Pro
linux-image-virtual 4.15.0.248.232
Available with Ubuntu Pro

Ubuntu 16.04 LTS
linux-image-4.15.0-1190-aws 4.15.0-1190.203~16.04.1
Available with Ubuntu Pro
linux-image-aws-hwe 4.15.0.1190.203~16.04.1
Available with Ubuntu Pro

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
https://ubuntu.com/security/notices/USN-8145-1
CVE-2024-46777, CVE-2025-21735, CVE-2025-37849, CVE-2026-23060,
CVE-2026-23074


Expat, PostgreSQL, Kea, and more updates for SUSE

XanMod Kernel 6.19.11 and 6.18.21 LTS released

Windows

Linux

macOS

Community

  • Lexonight
    Hey everyone,Wanted to share a project I've been b ...
  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...