USN-7344-1: Linux kernel vulnerabilities
11 March 2025
Several security issues were fixed in the Linux kernel.
Releases
Packages
- linux-aws - Linux kernel for Amazon Web Services (AWS) systems
- linux-aws-hwe - Linux kernel for Amazon Web Services (AWS-HWE) systems
- linux-gcp - Linux kernel for Google Cloud Platform (GCP) systems
- linux-gcp-4.15 - Linux kernel for Google Cloud Platform (GCP) systems
- linux-kvm - Linux kernel for cloud environments
- linux-oracle - Linux kernel for Oracle Cloud systems
Details
Chenyuan Yang discovered that the CEC driver driver in the Linux kernel
contained a use-after-free vulnerability. A local attacker could use this
to cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2024-23848)
Attila Szász discovered that the HFS+ file system implementation in the
Linux Kernel contained a heap overflow vulnerability. An attacker could use
a specially crafted file system image that, when mounted, could cause a
denial of service (system crash) or possibly execute arbitrary code.
(CVE-2025-0927)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- PowerPC architecture;
- GPIO subsystem;
- GPU drivers;
- Media drivers;
- Network drivers;
- SCSI subsystem;
- Direct Digital Synthesis drivers;
- TTY drivers;
- 9P distributed file system;
- JFS file system;
- NILFS2 file system;
- File systems infrastructure;
- BPF subsystem;
- Netfilter;
- Memory management;
- Amateur Radio drivers;
- B.A.T.M.A.N. meshing protocol;
- Bluetooth subsystem;
- Ethernet bridge;
- Networking core;
- IPv4 networking;
- IPv6 networking;
- Open vSwitch;
- Network traffic control;
- TIPC protocol;
- Wireless networking;
(CVE-2024-50134, CVE-2024-40981, CVE-2022-48772, CVE-2024-43900,
CVE-2023-52488, CVE-2024-49902, CVE-2023-52880, CVE-2024-50229,
CVE-2024-43892, CVE-2024-42068, CVE-2024-40910, CVE-2024-26685,
CVE-2024-43863, CVE-2024-53104, CVE-2024-41064, CVE-2023-52799,
CVE-2024-42070, CVE-2024-35896, CVE-2024-44931, CVE-2024-40943,
CVE-2024-36952, CVE-2024-38558, CVE-2024-50171, CVE-2023-52522,
CVE-2024-36964, CVE-2024-53156, CVE-2024-41063, CVE-2024-50117,
CVE-2023-52818, CVE-2024-43893, CVE-2024-50233, CVE-2024-44938,
CVE-2024-36886, CVE-2024-38567, CVE-2024-53164, CVE-2024-50148,
CVE-2024-40911)
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 18.04
-
linux-image-4.15.0-1140-oracle
-
4.15.0-1140.151
Available with Ubuntu Pro
-
linux-image-4.15.0-1161-kvm
-
4.15.0-1161.166
Available with Ubuntu Pro
-
linux-image-4.15.0-1171-gcp
-
4.15.0-1171.188
Available with Ubuntu Pro
-
linux-image-4.15.0-1178-aws
-
4.15.0-1178.191
Available with Ubuntu Pro
-
linux-image-aws-lts-18.04
-
4.15.0.1178.176
Available with Ubuntu Pro
-
linux-image-gcp-lts-18.04
-
4.15.0.1171.184
Available with Ubuntu Pro
-
linux-image-kvm
-
4.15.0.1161.152
Available with Ubuntu Pro
-
linux-image-oracle-lts-18.04
-
4.15.0.1140.145
Available with Ubuntu Pro
Ubuntu 16.04
-
linux-image-4.15.0-1140-oracle
-
4.15.0-1140.151~16.04.1
Available with Ubuntu Pro
-
linux-image-4.15.0-1171-gcp
-
4.15.0-1171.188~16.04.1
Available with Ubuntu Pro
-
linux-image-4.15.0-1178-aws
-
4.15.0-1178.191~16.04.1
Available with Ubuntu Pro
-
linux-image-aws-hwe
-
4.15.0.1178.191~16.04.1
Available with Ubuntu Pro
-
linux-image-gcp
-
4.15.0.1171.188~16.04.1
Available with Ubuntu Pro
-
linux-image-gke
-
4.15.0.1171.188~16.04.1
Available with Ubuntu Pro
-
linux-image-oracle
-
4.15.0.1140.151~16.04.1
Available with Ubuntu Pro
After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.
References
- CVE-2024-41064
- CVE-2024-36964
- CVE-2024-42070
- CVE-2024-53164
- CVE-2024-44938
- CVE-2024-36952
- CVE-2024-50233
- CVE-2024-36886
- CVE-2024-50117
- CVE-2024-50134
- CVE-2024-23848
- CVE-2024-38558
- CVE-2024-43900
- CVE-2024-41063
- CVE-2024-44931
- CVE-2024-50229
- CVE-2024-35896
- CVE-2024-40911
- CVE-2024-38567
- CVE-2024-43892
- CVE-2024-50171
- CVE-2023-52522
- CVE-2024-50148
- CVE-2024-40910
- CVE-2024-40981
- CVE-2025-0927
- CVE-2024-49902
- CVE-2024-26685
- CVE-2022-48772
- CVE-2023-52488
- CVE-2024-40943
- CVE-2023-52799
- CVE-2024-53104
- CVE-2024-53156
- CVE-2024-43893
- CVE-2024-43863
- CVE-2024-42068
- CVE-2023-52880
- CVE-2023-52818
Related notices
- USN-7088-1
- USN-7089-1
- USN-7090-1
- USN-7088-2
- USN-7089-2
- USN-7088-3
- USN-7089-3
- USN-7095-1
- USN-7088-4
- USN-7100-1
- USN-7100-2
- USN-7089-4
- USN-7089-5
- USN-7088-5
- USN-7089-6
- USN-7119-1
- USN-7089-7
- USN-7123-1
- USN-7144-1
- USN-7156-1
- USN-7194-1
- USN-7332-1
- USN-7342-1
- USN-7332-2
- USN-6949-1
- USN-6953-1
- USN-6950-1
- USN-6951-1
- USN-6952-1
- USN-6955-1
- USN-6950-2
- USN-6957-1
- USN-6956-1
- USN-6950-3
- USN-6949-2
- USN-6951-2
- USN-6951-3
- USN-6950-4
- USN-6951-4
- USN-6979-1
- USN-7019-1
- USN-7333-1
- USN-7003-1
- USN-7003-2
- USN-7006-1
- USN-7003-3
- USN-7007-1
- USN-7009-1
- USN-7007-2
- USN-7007-3
- USN-7009-2
- USN-7003-4
- USN-7003-5
- USN-7234-1
- USN-7235-1
- USN-7236-1
- USN-7237-1
- USN-7238-1
- USN-7236-2
- USN-7235-2
- USN-7234-2
- USN-7238-2
- USN-7238-3
- USN-7234-3
- USN-7234-4
- USN-7235-3
- USN-7236-3
- USN-7238-4
- USN-7295-1
- USN-7234-5
- USN-7308-1
- USN-7311-1
- USN-7154-1
- USN-7155-1
- USN-7154-2
- USN-7196-1
- USN-7173-1
- USN-7173-2
- USN-7195-1
- USN-7195-2
- USN-7173-3
- USN-7276-1
- USN-7277-1
- USN-7294-1
- USN-7288-1
- USN-7289-1
- USN-7291-1
- USN-7288-2
- USN-7289-2
- USN-7293-1
- USN-7289-3
- USN-7305-1
- USN-7289-4
- USN-7294-2
- USN-7294-3
- USN-7310-1
- USN-7294-4
- USN-7331-1
- USN-6999-1
- USN-7004-1
- USN-7005-1
- USN-7005-2
- USN-7008-1
- USN-6999-2
- USN-7029-1
- USN-7166-1
- USN-7166-2
- USN-7166-3
- USN-7186-1
- USN-7186-2
- USN-7166-4
- USN-6893-1
- USN-6898-1
- USN-6893-2
- USN-6898-2
- USN-6898-3
- USN-6893-3
- USN-6898-4
- USN-6917-1
- USN-6918-1
- USN-6919-1
- USN-6927-1
- USN-7179-1
- USN-7179-2
- USN-7179-3
- USN-7179-4
- USN-7296-1
- USN-7300-1
- USN-7298-1
- USN-7301-1
- USN-7323-1
- USN-7325-1
- USN-7326-1
- USN-7328-1
- USN-7329-1
- USN-7323-2
- USN-7325-2
- USN-7304-1
- USN-7303-1
- USN-7303-2
- USN-7303-3
- USN-6766-1
- USN-6767-1
- USN-6767-2
- USN-6766-2
- USN-6766-3
- USN-6795-1
- USN-6828-1
- USN-6895-1
- USN-6895-2
- USN-6900-1
- USN-6895-3
- USN-6895-4
- USN-6818-1
- USN-6819-1
- USN-6818-2
- USN-6819-2
- USN-6819-3
- USN-6818-3
- USN-6818-4
- USN-6819-4
- USN-7159-1
- USN-7159-2
- USN-7159-3
- USN-7159-4
- USN-7159-5
- USN-7324-1
- USN-6896-1
- USN-6896-2
- USN-6896-3
- USN-6896-4
- USN-6896-5