USN-7611-2

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38000, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932)

References

Affected packages

Ubuntu:25.04 / linux-azure

Package

Name: linux-azure
Purl: pkg:deb/ubuntu/linux-azure@6.14.0-1008.8?arch=source&distro=plucky

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.14.0-1008.8

Affected versions

6.*

6.11.0-1004.4

6.12.0-1002.2

6.12.0-1004.4

6.14.0-1002.2

6.14.0-1003.3

6.14.0-1004.4

6.14.0-1007.7

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "linux-azure-cloud-tools-6.14.0-1008",
            "binary_version": "6.14.0-1008.8"
        },
        {
            "binary_name": "linux-azure-headers-6.14.0-1008",
            "binary_version": "6.14.0-1008.8"
        },
        {
            "binary_name": "linux-azure-tools-6.14.0-1008",
            "binary_version": "6.14.0-1008.8"
        },
        {
            "binary_name": "linux-buildinfo-6.14.0-1008-azure",
            "binary_version": "6.14.0-1008.8"
        },
        {
            "binary_name": "linux-cloud-tools-6.14.0-1008-azure",
            "binary_version": "6.14.0-1008.8"
        },
        {
            "binary_name": "linux-headers-6.14.0-1008-azure",
            "binary_version": "6.14.0-1008.8"
        },
        {
            "binary_name": "linux-image-unsigned-6.14.0-1008-azure",
            "binary_version": "6.14.0-1008.8"
        },
        {
            "binary_name": "linux-modules-6.14.0-1008-azure",
            "binary_version": "6.14.0-1008.8"
        },
        {
            "binary_name": "linux-modules-extra-6.14.0-1008-azure",
            "binary_version": "6.14.0-1008.8"
        },
        {
            "binary_name": "linux-tools-6.14.0-1008-azure",
            "binary_version": "6.14.0-1008.8"
        }
    ]
}

Database specific

cves_map

{
    "ecosystem": "Ubuntu:25.04",
    "cves": [
        {
            "id": "CVE-2025-37890",
            "severity": [
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        },
        {
            "id": "CVE-2025-37932",
            "severity": [
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        },
        {
            "id": "CVE-2025-37997",
            "severity": [
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        },
        {
            "id": "CVE-2025-38000",
            "severity": [
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        },
        {
            "id": "CVE-2025-38001",
            "severity": [
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        }
    ]
}