[Ksplice][Ubuntu-24.04-Updates] New Ksplice updates for Ubuntu 24.04 Noble (USN-7651-1)

[Oracle Ksplice]

Synopsis: USN-7651-1 can now be patched using Ksplice
CVEs: CVE-2024-57996 CVE-2024-58001 CVE-2025-21714 CVE-2025-21719 CVE-2025-21720 CVE-2025-21731 CVE-2025-21745 CVE-2025-21753 CVE-2025-37750 CVE-2025-37797 CVE-2025-38083

Systems running Ubuntu 24.04 Noble can now use Ksplice to patch
against the latest Ubuntu Security Notice, USN-7651-1.

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running Ubuntu 24.04
Noble install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2024-57996: Out-of-bounds memory access in Stochastic Fairness Queueing (SFQ) driver.

* CVE-2024-58001: Denial-of-service in OCFS2 filesystem.

* CVE-2025-21714: Use-after-free in InfiniBand on-demand paging driver.

* CVE-2025-21719: Denial-of-service in TCP/IP networking stack.

* CVE-2025-21720: Null pointer dereference in IP XFRM subsystem.

* CVE-2025-21731: Privilege escalation in network block device driver.

* CVE-2025-21745: Denial-of-service in IO controller driver.

* CVE-2025-21753: Privilege escalation in Btrfs filesystem.

* CVE-2025-37750: Use-after-free in SMB client filesystem driver.

* CVE-2025-37797: Use-after-free in HFSC network scheduler.

* CVE-2025-38083: Race condition in PRIO network scheduler.

* Note: Oracle has determined some CVEs are not applicable.

The kernel is not affected by the following CVEs
since the code under consideration is not compiled.

CVE-2025-21750


SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.