USN-7939-2 linux-azure-fips vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

USN-7939-1 linux-azure, linux-azure-5.4 vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

EUVD-2025-203649

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Plug potential memory leak in dotimercreate When posix timer creation is set to allocate a given timer ID and the access to the user space value faults, the function terminates without freeing the already allocated...

EUVD-2025-203656

In the Linux kernel, the following vulnerability has been resolved: nilfs2: avoid having an active sctimer before freeing sci Because kthreadstop did not stop sctask properly and returned -EINTR, the sctimer was not properly closed, ultimately causing the problem 1 reported by syzbot when freeing...

EUVD-2025-203682

In the Linux kernel, the following vulnerability has been resolved: timers: Fix NULL function pointer race in timershutdownsync There is a race condition between timershutdownsync and timer expiration that can lead to hitting a WARNON in expiretimers. The issue occurs when timershutdownsync clear...

CVE-2025-68240

In the Linux kernel, the following vulnerability has been resolved: nilfs2: avoid having an active sctimer before freeing sci Because kthreadstop did not stop sctask properly and returned -EINTR, the sctimer was not properly closed, ultimately causing the problem 1 reported by syzbot when freeing...

CVE-2025-68247

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Plug potential memory leak in dotimercreate When posix timer creation is set to allocate a given timer ID and the access to the user space value faults, the function terminates without freeing the already allocated...

UBUNTU-CVE-2025-68247

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Plug potential memory leak in dotimercreate When posix timer creation is set to allocate a given timer ID and the access to the user space value faults, the function terminates without freeing the already allocated...

UBUNTU-CVE-2025-68240

In the Linux kernel, the following vulnerability has been resolved: nilfs2: avoid having an active sctimer before freeing sci Because kthreadstop did not stop sctask properly and returned -EINTR, the sctimer was not properly closed, ultimately causing the problem 1 reported by syzbot when freeing...

CVE-2025-68240

In the Linux kernel, the following vulnerability has been resolved: nilfs2: avoid having an active sctimer before freeing sci Because kthreadstop did not stop sctask properly and returned -EINTR, the sctimer was not properly closed, ultimately causing the problem 1 reported by syzbot when freeing...

CVE-2025-68247

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Plug potential memory leak in dotimercreate When posix timer creation is set to allocate a given timer ID and the access to the user space value faults, the function terminates without freeing the already allocated...

CVE-2025-68247 posix-timers: Plug potential memory leak in do_timer_create()

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Plug potential memory leak in dotimercreate When posix timer creation is set to allocate a given timer ID and the access to the user space value faults, the function terminates without freeing the already allocated...

CVE-2025-68247

The CVE-2025-68247 issue affects the Linux kernel posix-timers code, specifically do_timer_create(), where memory allocated for a timer ID could leak if user-space access faults occur during timer creation. The underlying root cause is the allocation happening before validating user-space data; t...

CVE-2025-68247 posix-timers: Plug potential memory leak in do_timer_create()

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Plug potential memory leak in dotimercreate When posix timer creation is set to allocate a given timer ID and the access to the user space value faults, the function terminates without freeing the already allocated...

CVE-2025-68240

The CVE-2025-68240 entry concerns the Linux kernel nilfs2 subsystem. The described vulnerability arose because a sc_timer could remain active when freeing sci, caused by kthread_stop not reliably stopping sc_task (returning -EINTR), leaving the timer improperly closed. The remediation uses timer_...

CVE-2025-68240 nilfs2: avoid having an active sc_timer before freeing sci

In the Linux kernel, the following vulnerability has been resolved: nilfs2: avoid having an active sctimer before freeing sci Because kthreadstop did not stop sctask properly and returned -EINTR, the sctimer was not properly closed, ultimately causing the problem 1 reported by syzbot when freeing...

CVE-2025-68240 nilfs2: avoid having an active sc_timer before freeing sci

In the Linux kernel, the following vulnerability has been resolved: nilfs2: avoid having an active sctimer before freeing sci Because kthreadstop did not stop sctask properly and returned -EINTR, the sctimer was not properly closed, ultimately causing the problem 1 reported by syzbot when freeing...

CVE-2025-68214

In the Linux kernel, the following vulnerability has been resolved: timers: Fix NULL function pointer race in timershutdownsync There is a race condition between timershutdownsync and timer expiration that can lead to hitting a WARNON in expiretimers. The issue occurs when timershutdownsync clear...

AZL-72475 CVE-2025-68214 affecting package kernel for versions less than 6.6.119.3-1

In the Linux kernel, the following vulnerability has been resolved: timers: Fix NULL function pointer race in timershutdownsync There is a race condition between timershutdownsync and timer expiration that can lead to hitting a WARNON in expiretimers. The issue occurs when timershutdownsync clear...

UBUNTU-CVE-2025-68214

In the Linux kernel, the following vulnerability has been resolved: timers: Fix NULL function pointer race in timershutdownsync There is a race condition between timershutdownsync and timer expiration that can lead to hitting a WARNON in expiretimers. The issue occurs when timershutdownsync clear...