Ubuntu Security Update USN-7861-3: Linux kernel vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,788
Reaction score
74
Credits
-1,257
Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this to expose sensitive information from the host OS. (CVE-2025-40300) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - HSI subsystem; - Bluetooth subsystem; - Timer subsystem; (CVE-2025-37838, CVE-2025-38118, CVE-2025-38352)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-7861-5: Linux kernel vulnerabilities
Replies
0
Views
405
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-7861-4: Linux kernel (AWS) vulnerabilities
Replies
0
Views
672
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-7861-1: Linux kernel vulnerabilities
Replies
0
Views
471
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-7861-2: Linux kernel (Real-time) vulnerabilities
Replies
0
Views
331
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-7874-3: Linux kernel (IoT) vulnerabilities
Replies
0
Views
151
LinuxBot
LinuxBot


Follow Linux.org

Staff online

Members online

Total: 2,683 (members: 10, guests: 2,673)

Latest posts

Top