Sicherheit: Mehrere Probleme in Linux (Aktualisierung)

Lesezeichen hinzufügen

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--------------DnLWjLp0DiV5LgBnfxal3HO0
Content-Type: multipart/mixed;
boundary="------------0x8VsqaXgUoStB48EE8z31am";
protected-headers="v1"
From: Rodrigo Figueiredo Zaiden <rodrigo.zaiden@canonical.com>
Reply-To: security@ubuntu.com
To: ubuntu-security-announce@lists.ubuntu.com
Message-ID: <111da83b-1ebf-4081-90ad-7205309a9411@canonical.com>
Subject: [USN-7608-4] Linux kernel vulnerabilities

--------------0x8VsqaXgUoStB48EE8z31am
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: base64

==========================================================================
Ubuntu Security Notice USN-7608-4
July 03, 2025

linux-aws-5.15, linux-intel-iot-realtime vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux-intel-iot-realtime: Linux kernel for Intel IoT Real-time platforms
- linux-aws-5.15: Linux kernel for Amazon Web Services (AWS) systems

Details:

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- GPU drivers;
- SMB network file system;
- Memory management;
- Netfilter;
- Network traffic control;
(CVE-2025-37890, CVE-2024-46787, CVE-2025-37798, CVE-2025-38000,
CVE-2025-37932, CVE-2025-38001, CVE-2025-37997, CVE-2024-50047,
CVE-2024-53051)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS
linux-image-5.15.0-1080-intel-iot-realtime 5.15.0-1080.82
Available with Ubuntu Pro
linux-image-intel-iot-realtime 5.15.0.1080.84
Available with Ubuntu Pro
linux-image-intel-iot-realtime-5.15 5.15.0.1080.84
Available with Ubuntu Pro

Ubuntu 20.04 LTS
linux-image-5.15.0-1087-aws 5.15.0-1087.94~20.04.1
Available with Ubuntu Pro
linux-image-aws 5.15.0.1087.94~20.04.1
Available with Ubuntu Pro
linux-image-aws-5.15 5.15.0.1087.94~20.04.1
Available with Ubuntu Pro

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
https://ubuntu.com/security/notices/USN-7608-4
https://ubuntu.com/security/notices/USN-7608-3
https://ubuntu.com/security/notices/USN-7608-2
https://ubuntu.com/security/notices/USN-7608-1
CVE-2024-46787, CVE-2024-50047, CVE-2024-53051, CVE-2025-37798,
CVE-2025-37890, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000,
CVE-2025-38001

Package Information:
https://launchpad.net/ubuntu/+source/linux-intel-iot-realtime/5.15.0-1080.82

--------------0x8VsqaXgUoStB48EE8z31am--

--------------DnLWjLp0DiV5LgBnfxal3HO0
Content-Type: application/pgp-signature; name="OpenPGP_signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="OpenPGP_signature.asc"

-----BEGIN PGP SIGNATURE-----

wsB5BAABCAAjFiEEYrygdx1GDec9TV8EZ0GeRcM5nt0FAmhm2tQFAwAAAAAACgkQZ0GeRcM5nt04
AAf9H9RgCp+4Wroi28DkvAKg4kpX9nG0p+tfbEadN5BLAJG/TPtNJxclZIEDN/YxYc7AFu85kFj2
N74UUUlKd7RX8KTDF+d64b3DibGxCs22X0IqM48/eSkjGUksn13RmHNNFltsxr88S7VDEjWH2m76
8Elarr1zBMO2XoCiaC/7slc7ZPyNxN9m3ok9Cs93QGn6IkoSU2AcVJ0xa+1WPEVgPgKDDYcNdnpK
qc/shrbaX2mVkpAMoryXRpZcHTQ/LqneJSHzt/5O4bFbDNtEoB+dUxG/Mqk2Ro9uZOLiAEZJjkzG
zuALThH0nc1fLh97OqLGwY2aODPZ4Fz1VVKVVdxALg==
=iA6Z
-----END PGP SIGNATURE-----

--------------DnLWjLp0DiV5LgBnfxal3HO0--