{"id":"USN-7595-2","summary":"linux-realtime vulnerabilities","details":"It was discovered that the CIFS network file system implementation in the\nLinux kernel did not properly verify the target namespace when handling\nupcalls. An attacker could use this to expose sensitive information.\n(CVE-2025-2312)\n\nSeveral security issues were discovered in the Linux kernel.\nAn attacker could possibly use these to compromise the system.\nThis update corrects flaws in the following subsystems:\n  - GPIO subsystem;\n  - GPU drivers;\n  - InfiniBand drivers;\n  - IRQ chip drivers;\n  - Network drivers;\n  - Mellanox network drivers;\n  - i.MX PM domains;\n  - SCSI subsystem;\n  - USB Serial drivers;\n  - AFS file system;\n  - GFS2 file system;\n  - File systems infrastructure;\n  - File system notification infrastructure;\n  - Overlay file system;\n  - Proc file system;\n  - SMB network file system;\n  - Timer subsystem;\n  - Kernel CPU control infrastructure;\n  - Memory management;\n  - Networking core;\n  - DCCP (Datagram Congestion Control Protocol);\n  - IPv6 networking;\n  - IEEE 802.15.4 subsystem;\n  - Open vSwitch;\n  - Network traffic control;\n  - VMware vSockets driver;\n(CVE-2025-21943, CVE-2025-21672, CVE-2024-57952, CVE-2024-57949,\nCVE-2025-21683, CVE-2025-21690, CVE-2025-21699, CVE-2025-21676,\nCVE-2024-57924, CVE-2025-21694, CVE-2024-57948, CVE-2025-21675,\nCVE-2024-57951, CVE-2025-21692, CVE-2025-21684, CVE-2025-21668,\nCVE-2025-21665, CVE-2025-21667, CVE-2025-21670, CVE-2025-21674,\nCVE-2025-21697, CVE-2024-53124, CVE-2025-21666, CVE-2025-21682,\nCVE-2025-21680, CVE-2025-21681, CVE-2025-21691, CVE-2025-21669,\nCVE-2025-21673, CVE-2024-50157, CVE-2025-21689, CVE-2025-21678)\n","modified":"2026-04-24T10:17:09.871745450Z","published":"2025-06-24T17:50:52Z","related":["UBUNTU-CVE-2024-50157","UBUNTU-CVE-2024-53124","UBUNTU-CVE-2024-57924","UBUNTU-CVE-2024-57948","UBUNTU-CVE-2024-57949","UBUNTU-CVE-2024-57951","UBUNTU-CVE-2024-57952","UBUNTU-CVE-2025-21665","UBUNTU-CVE-2025-21666","UBUNTU-CVE-2025-21667","UBUNTU-CVE-2025-21668","UBUNTU-CVE-2025-21669","UBUNTU-CVE-2025-21670","UBUNTU-CVE-2025-21672","UBUNTU-CVE-2025-21673","UBUNTU-CVE-2025-21674","UBUNTU-CVE-2025-21675","UBUNTU-CVE-2025-21676","UBUNTU-CVE-2025-21678","UBUNTU-CVE-2025-21680","UBUNTU-CVE-2025-21681","UBUNTU-CVE-2025-21682","UBUNTU-CVE-2025-21683","UBUNTU-CVE-2025-21684","UBUNTU-CVE-2025-21689","UBUNTU-CVE-2025-21690","UBUNTU-CVE-2025-21691","UBUNTU-CVE-2025-21692","UBUNTU-CVE-2025-21694","UBUNTU-CVE-2025-21697","UBUNTU-CVE-2025-21699","UBUNTU-CVE-2025-21943","UBUNTU-CVE-2025-2312"],"upstream":["CVE-2024-50157","CVE-2024-57949","CVE-2025-21668","CVE-2025-21670","CVE-2025-21674","CVE-2025-21675","CVE-2025-21676","CVE-2025-21691","UBUNTU-CVE-2024-50157","UBUNTU-CVE-2024-57949","UBUNTU-CVE-2025-21668","UBUNTU-CVE-2025-21670","UBUNTU-CVE-2025-21674","UBUNTU-CVE-2025-21675","UBUNTU-CVE-2025-21676","UBUNTU-CVE-2025-21691"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-7595-2"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-50157"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-57949"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-21668"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-21670"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-21674"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-21675"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-21676"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-21691"}],"affected":[{"package":{"name":"linux-realtime","ecosystem":"Ubuntu:Pro:Realtime:24.04:LTS","purl":"pkg:deb/ubuntu/linux-realtime@6.8.1-1023.24?arch=source&distro=realtime/noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.8.1-1023.24"}]}],"versions":["6.8.0-1008.19","6.8.1-1001.1","6.8.1-1002.2","6.8.1-1003.3","6.8.1-1004.4","6.8.1-1005.5","6.8.1-1006.6","6.8.1-1007.7","6.8.1-1008.8","6.8.1-1009.9","6.8.1-1010.10","6.8.1-1011.11","6.8.1-1012.12","6.8.1-1013.14","6.8.1-1014.15","6.8.1-1015.16","6.8.1-1016.17","6.8.1-1017.18","6.8.1-1018.19","6.8.1-1019.20","6.8.1-1020.21","6.8.1-1021.22","6.8.1-1022.23"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_name":"linux-buildinfo-6.8.1-1023-realtime","binary_version":"6.8.1-1023.24"},{"binary_name":"linux-cloud-tools-6.8.1-1023-realtime","binary_version":"6.8.1-1023.24"},{"binary_name":"linux-headers-6.8.1-1023-realtime","binary_version":"6.8.1-1023.24"},{"binary_name":"linux-image-unsigned-6.8.1-1023-realtime","binary_version":"6.8.1-1023.24"},{"binary_name":"linux-modules-6.8.1-1023-realtime","binary_version":"6.8.1-1023.24"},{"binary_name":"linux-modules-extra-6.8.1-1023-realtime","binary_version":"6.8.1-1023.24"},{"binary_name":"linux-modules-iwlwifi-6.8.1-1023-realtime","binary_version":"6.8.1-1023.24"},{"binary_name":"linux-realtime-cloud-tools-6.8.1-1023","binary_version":"6.8.1-1023.24"},{"binary_name":"linux-realtime-headers-6.8.1-1023","binary_version":"6.8.1-1023.24"},{"binary_name":"linux-realtime-tools-6.8.1-1023","binary_version":"6.8.1-1023.24"},{"binary_name":"linux-tools-6.8.1-1023-realtime","binary_version":"6.8.1-1023.24"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:Pro:Realtime:24.04:LTS","cves":[{"id":"CVE-2024-50157","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2024-57949","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2025-21668","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2025-21670","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2025-21674","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2025-21675","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2025-21676","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2025-21691","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7595-2.json"}}],"schema_version":"1.7.5"}