{"id":"USN-7860-5","summary":"linux-hwe-6.14 vulnerability","details":"Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered\nthat the Linux kernel contained insufficient branch predictor isolation\nbetween a guest and a userspace hypervisor for certain processors. This\nflaw is known as VMSCAPE. An attacker in a guest VM could possibly use this\nto expose sensitive information from the host OS.\n","modified":"2026-02-10T04:50:21Z","published":"2025-11-10T09:40:01Z","related":["UBUNTU-CVE-2025-40300"],"upstream":["CVE-2025-40300","UBUNTU-CVE-2025-40300"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-7860-5"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-40300"}],"affected":[{"package":{"name":"linux-hwe-6.14","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/linux-hwe-6.14@6.14.0-35.35~24.04.1?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.14.0-35.35~24.04.1"}]}],"versions":["6.14.0-24.24~24.04.3","6.14.0-27.27~24.04.1","6.14.0-28.28~24.04.1","6.14.0-29.29~24.04.1","6.14.0-32.32~24.04.1","6.14.0-33.33~24.04.1","6.14.0-34.34~24.04.1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-buildinfo-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-buildinfo-6.14.0-35-generic-64k"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-cloud-tools-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-headers-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-headers-6.14.0-35-generic-64k"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-hwe-6.14-cloud-tools-6.14.0-35"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-hwe-6.14-headers-6.14.0-35"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-hwe-6.14-tools-6.14.0-35"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-image-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-image-unsigned-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-image-unsigned-6.14.0-35-generic-64k"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-lib-rust-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-modules-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-modules-6.14.0-35-generic-64k"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-modules-extra-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-modules-ipu6-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-modules-ipu7-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-modules-iwlwifi-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-modules-usbio-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-modules-vision-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-tools-6.14.0-35-generic"},{"binary_version":"6.14.0-35.35~24.04.1","binary_name":"linux-tools-6.14.0-35-generic-64k"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7860-5.json"}}],"schema_version":"1.7.3"}