Ubuntu alert USN-7683-2 (linux-aws-fips, linux-fips, linux-gcp-fips)
| From: | Giampaolo Fresi Roglia <giampaolo.fresi.roglia@canonical.com> | |
| To: | ubuntu-security-announce@lists.ubuntu.com | |
| Subject: | [USN-7683-2] Linux kernel (FIPS) vulnerabilities | |
| Date: | Thu, 31 Jul 2025 10:54:30 +0200 | |
| Message-ID: | <877bzod9kp.fsf@canonical.com> |
========================================================================== Ubuntu Security Notice USN-7683-2 July 31, 2025 linux-aws-fips, linux-fips, linux-gcp-fips vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-aws-fips: Linux kernel for Amazon Web Services (AWS) systems with FIPS - linux-fips: Linux kernel with FIPS - linux-gcp-fips: Linux kernel for Google Cloud Platform (GCP) systems with FIPS Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - TTY drivers; - Network traffic control; (CVE-2025-38083, CVE-2024-50073) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS linux-image-5.15.0-1088-gcp-fips 5.15.0-1088.97+fips1 Available with Ubuntu Pro linux-image-5.15.0-1089-aws-fips 5.15.0-1089.96+fips1 Available with Ubuntu Pro linux-image-5.15.0-145-fips 5.15.0-145.158+fips1 Available with Ubuntu Pro linux-image-aws-fips 5.15.0.1089.85 Available with Ubuntu Pro linux-image-aws-fips-5.15 5.15.0.1089.85 Available with Ubuntu Pro linux-image-fips 5.15.0.145.85 Available with Ubuntu Pro linux-image-fips-5.15 5.15.0.145.85 Available with Ubuntu Pro linux-image-gcp-fips 5.15.0.1088.78 Available with Ubuntu Pro linux-image-gcp-fips-5.15 5.15.0.1088.78 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7683-2 https://ubuntu.com/security/notices/USN-7683-1 CVE-2024-50073, CVE-2025-38083 Package Information: https://launchpad.net/ubuntu/+source/linux-aws-fips/5.15.... https://launchpad.net/ubuntu/+source/linux-fips/5.15.0-14... https://launchpad.net/ubuntu/+source/linux-gcp-fips/5.15....
Attachment: signature.asc (type=application/pgp-signature)
-----BEGIN PGP SIGNATURE----- iQHZBAEBCgBDFiEEBcMY+nwS2CY71sUWc4vdAqvdlsYFAmiLL0YlHGdpYW1wYW9s by5mcmVzaS5yb2dsaWFAY2Fub25pY2FsLmNvbQAKCRBzi90Cq92WxlmxC/99YYl4 zhcS++rAoo8I2yapjc/mem7BXo9Ygu5U1K1tbTQJHI6YeqmWatJ1rgajmrdjT0M6 Xx+yqftD7rvBN4/Hk+/vgZwa865//mUwHk367WejHcMsTfVYfWCdWjbZyMNc4v6F hczTlU1EgkIUU02n9CVSEpMs0UMfhs+Qo2TBBvVK3auYP/BUjU4pLDB20tV1U2t5 PL2x7A1HPgQ/7veJ3DyqR3LHXn908x37WA3gUTucE6tUW2n4qSMJ0/19SR511dDo +/zgPnrOPpCysKOwGhtCwNDHrCGm4pCMUwr/ztDt8dU1sr741SsM1IhIES10AhhC kUQ+yledR0WLT2zQickQLumKN+vZqUrZHMO0rNx8kGBhqnReK+42b5spwwWUztGE kucMGxeDq5jfjTX+dmmuVkdXyLldINWC5xMLUCRL9ax0XYd1T2Jd6y2xSLaD73MU XuhZpx9wye0Ri9MBWaUP+Tv0V7QUyx7x6H4aY0ArnwkSbAS47rgAu6DwpmQ= =LPAi -----END PGP SIGNATURE-----