USN-7862-3

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/notices/USN-7862-3
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7862-3.json
JSON Data
https://api.osv.dev/v1/vulns/USN-7862-3
Upstream
Related
Published
2025-11-13T14:47:04.667347Z
Modified
2025-11-14T07:33:11.425814Z
Summary
linux-xilinx-zynqmp vulnerability
Details

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this to expose sensitive information from the host OS.

References

Affected packages

Ubuntu:22.04:LTS / linux-xilinx-zynqmp

Package

Name
linux-xilinx-zynqmp
Purl
pkg:deb/ubuntu/linux-xilinx-zynqmp@5.15.0-1060.64?arch=source&distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.15.0-1060.64

Affected versions

5.*

5.15.0-1022.26
5.15.0-1023.27
5.15.0-1025.29
5.15.0-1027.31
5.15.0-1030.34
5.15.0-1031.35
5.15.0-1035.39
5.15.0-1036.40
5.15.0-1037.41
5.15.0-1038.42
5.15.0-1039.43
5.15.0-1041.45
5.15.0-1044.48
5.15.0-1046.50
5.15.0-1050.54
5.15.0-1051.55
5.15.0-1052.56
5.15.0-1053.57
5.15.0-1054.58
5.15.0-1055.59
5.15.0-1056.60
5.15.0-1057.61
5.15.0-1059.63

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "5.15.0-1060.64",
            "binary_name": "linux-buildinfo-5.15.0-1060-xilinx-zynqmp"
        },
        {
            "binary_version": "5.15.0-1060.64",
            "binary_name": "linux-headers-5.15.0-1060-xilinx-zynqmp"
        },
        {
            "binary_version": "5.15.0-1060.64",
            "binary_name": "linux-image-5.15.0-1060-xilinx-zynqmp"
        },
        {
            "binary_version": "5.15.0-1060.64",
            "binary_name": "linux-modules-5.15.0-1060-xilinx-zynqmp"
        },
        {
            "binary_version": "5.15.0-1060.64",
            "binary_name": "linux-tools-5.15.0-1060-xilinx-zynqmp"
        },
        {
            "binary_version": "5.15.0-1060.64",
            "binary_name": "linux-xilinx-zynqmp-headers-5.15.0-1060"
        },
        {
            "binary_version": "5.15.0-1060.64",
            "binary_name": "linux-xilinx-zynqmp-tools-5.15.0-1060"
        }
    ]
}

Database specific

cves_map

{
    "ecosystem": "Ubuntu:22.04:LTS",
    "cves": [
        {
            "id": "CVE-2025-40300",
            "severity": [
                {
                    "score": "high",
                    "type": "Ubuntu"
                }
            ]
        }
    ]
}