[Ksplice][Ubuntu-22.04-Updates] New Ksplice updates for Ubuntu 22.04 Jammy (USN-7510-1)

Oracle Ksplice gregory.herrero at oracle.com
Thu May 22 08:55:25 UTC 2025 

Synopsis: USN-7510-1 can now be patched using Ksplice
CVEs: CVE-2024-26982 CVE-2024-58001 CVE-2025-21647 CVE-2025-21719 CVE-2025-21745 CVE-2025-21753 CVE-2025-21787 CVE-2025-21791 CVE-2025-21795 CVE-2025-21844 CVE-2025-21919 CVE-2025-21920 CVE-2025-21926 CVE-2025-21971

Systems running Ubuntu 22.04 Jammy can now use Ksplice to patch
against the latest Ubuntu Security Notice, USN-7510-1.

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running Ubuntu 22.04
Jammy install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2024-26982: Denial-of-service in SquashFS.

A missing check when using SquashFS could lead to an out-of-bounds memory
access. A local attacker could use this flaw to cause a denial-of-service.


* CVE-2024-58001: Denial-of-service in OCFS2 filesystem.

Incorrect reference counting when using the OCFS2 filesystem could lead to a
memory leak. A local attacker could use this flaw to cause a denial-of-service.


* CVE-2025-21647: Privilege escalation in Common Applications Kept Enhanced (CAKE) driver.

A logic error when using the Common Applications Kept Enhanced (CAKE)
driver could lead to an out-of-bounds memory access. A local attacker
could use this flaw to escalate privileges.


* CVE-2025-21719: Denial-of-service in TCP/IP networking driver.

A logic error when using the TCP/IP networking driver could lead to a
kernel crash. A local attacker could use this flaw to cause a
denial-of-service.


* CVE-2025-21745: Denial-of-service in IO controller driver.

Incorrect reference counting when using the IO controller driver could
lead to a reference count leak. A local attacker could use this flaw to
cause a denial-of-service.


* CVE-2025-21753: Privilege escalation in Btrfs filesystem.

A race condition when using the Btrfs filesystem could lead to a
use-after-free. A local attacker could use this flaw to escalate
privileges.


* CVE-2025-21787: Denial-of-service in Ethernet team driver.

Incorrect checks on parameters passed from userspace when using the
Ethernet team driver could lead to an out-of-bounds memory read. A local
attacker could use this flaw to cause a denial-of-service.


* CVE-2025-21791: Privilege escalation in layer 3 master device support.

A race condition when using an L3 master device could lead to a
use-after-free. A local attacker could use this flaw to escalate
privileges.


* CVE-2025-21795: Remote denial-of-service in NFS server driver.

A logic error when using the NFS server driver could lead to ~15 minutes long
hang. A remote attacker could use this flaw to cause a denial-of-service.


* CVE-2025-21844: Denial-of-service in Common Internet File System (CIFS).

A missing check when using the SMB3 client could lead to a NULL
pointer dereference. A local attacker could use this flaw to cause a
denial-of-service.


* CVE-2025-21919: Memory corruption in Completely Fair Scheduler (CFS).

A logic error when using the Completely Fair Scheduler could lead to an
out-of-bounds memory access. A local attacker could use this flaw to
cause memory corruption.


* CVE-2025-21920: Information leak in ethernet VLAN stack.

A missing check for device type in the ethernet VLAN stack could
lead to kernel address leak. As System.map file is also readable
by an unprivileged attacker, KASLR can be bypassed since the
attacker can find out the relative offsets and combine that with
the leaked address to find the address of any kernel symbol, which
can facilitate an attack, like privilege escalation.


* CVE-2025-21926: Denial-of-service in UDPv4 Generic Segmentation Offload support.

A logic error when using UDPv4 sockets with GSO could lead to a
kernel panic. A local attacker could use this flaw to cause a
denial-of-service.


* CVE-2025-21971: Denial-of-service in QoS driver.

A missing check when computing statistics in the QoS driver could lead
to a kernel panic. A local attacker could use this flaw to cause a
denial-of-service.


* Information leak in USB Modem (CDC ACM) driver.

A missing check when using the USB Modem (CDC ACM) driver could lead to
use of uninitialized memory. A local attacker could use this flaw to
extract sensitive information.


* Note: Oracle has determined some CVEs are not applicable.

The kernel is not affected by the following CVEs
since the code under consideration is not compiled.

CVE-2025-21687, CVE-2025-21785, CVE-2025-21871

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.

More information about the Ksplice-Ubuntu-22.04-updates mailing list