|
|
Log in / Subscribe / Register

Ubuntu alert USN-8226-2 (kmod)



From:
              noreply+usn-bot@canonical.com


To:
              ubuntu-security-announce@lists.ubuntu.com


Subject:
              [USN-8226-2] kmod update


Date:
              Thu, 30 Apr 2026 16:29:21 +0000


Message-ID:
              <E1wIUGP-0001Vi-LG@lists.ubuntu.com>


==========================================================================
Ubuntu Security Notice USN-8226-2
April 30, 2026

kmod update
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
- Ubuntu 14.04 LTS

Summary:

kmod has been updated to block loading of the algif_aead kernel module.

Software Description:
- kmod: tools for managing Linux kernel modules

Details:

USN-8226-1 added a mitigation to kmod to disable loading the algif_aead
module. This update adds the same mitigation to Ubuntu 14.04 LTS,
Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS.

Original advisory details:

It was discovered that the Linux kernel algif_aead module contained a logic
flaw allowing a local attacker to escalate privileges to root. This update
to the kmod package disables loading the algif_aead module as a measure to
mitigate the issue until kernel updates are made available.

See the following URL for more information
https://ubuntu.com/blog/copy-fail-vulnerability-fixes-ava...

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.04 LTS
  kmod                            27-1ubuntu2.1+esm1
                                  Available with Ubuntu Pro

Ubuntu 18.04 LTS
  kmod                            24-1ubuntu3.5+esm1
                                  Available with Ubuntu Pro

Ubuntu 16.04 LTS
  kmod                            22-1ubuntu5.2+esm1
                                  Available with Ubuntu Pro

Ubuntu 14.04 LTS
  kmod                            15-0ubuntu7+esm1
                                  Available with Ubuntu Pro

After a standard system update you need to reboot your computer to make
all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-8226-2
  https://ubuntu.com/security/notices/USN-8226-1
  CVE-2026-31431




Attachment: signature.asc (type=application/pgp-signature)

-----BEGIN PGP SIGNATURE-----
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=I+HT
-----END PGP SIGNATURE-----
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds