{"id":"USN-7934-1","summary":"linux-azure, linux-azure-6.14 vulnerabilities","details":"It was discovered that improper initialization of CPU cache memory could\nallow a local attacker with hypervisor access to overwrite SEV-SNP guest\nmemory resulting in loss of data integrity. (CVE-2024-36331)\n\nJean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered\nthat the Linux kernel contained insufficient branch predictor isolation\nbetween a guest and a userspace hypervisor for certain processors. This\nflaw is known as VMSCAPE. An attacker in a guest VM could possibly use this\nto expose sensitive information from the host OS. (CVE-2025-40300)\n\nSeveral security issues were discovered in the Linux kernel.\nAn attacker could possibly use these to compromise the system.\nThis update corrects flaws in the following subsystems:\n  - ARM64 architecture;\n  - PowerPC architecture;\n  - S390 architecture;\n  - x86 architecture;\n  - Cryptographic API;\n  - Network block device driver;\n  - Character device driver;\n  - Clock framework and drivers;\n  - Data acquisition framework and drivers;\n  - Hardware crypto device drivers;\n  - Device frequency scaling framework;\n  - DMA engine subsystem;\n  - EDAC drivers;\n  - GPU drivers;\n  - HID subsystem;\n  - Hardware monitoring drivers;\n  - I2C subsystem;\n  - IIO subsystem;\n  - IIO ADC drivers;\n  - InfiniBand drivers;\n  - Input Device core drivers;\n  - Multiple devices driver;\n  - Media drivers;\n  - Network drivers;\n  - Mellanox network drivers;\n  - PCI subsystem;\n  - PHY drivers;\n  - Pin controllers subsystem;\n  - x86 platform drivers;\n  - Power supply drivers;\n  - Powercap sysfs driver;\n  - Voltage and Current Regulator drivers;\n  - S/390 drivers;\n  - ASPEED SoC drivers;\n  - SPI subsystem;\n  - small TFT LCD display modules;\n  - Media staging drivers;\n  - USB Gadget drivers;\n  - vDPA drivers;\n  - VFIO drivers;\n  - Framebuffer layer;\n  - Xen hypervisor drivers;\n  - BTRFS file system;\n  - Ceph distributed file system;\n  - EFI Variable file system;\n  - File systems infrastructure;\n  - F2FS file system;\n  - GFS2 file system;\n  - Network file systems library;\n  - Network file system (NFS) client;\n  - Network file system (NFS) server daemon;\n  - NILFS2 file system;\n  - NTFS3 file system;\n  - Proc file system;\n  - SMB network file system;\n  - DRM display driver;\n  - io_uring subsystem;\n  - Internal shared memory driver;\n  - padata parallel execution mechanism;\n  - Networking subsytem;\n  - Bluetooth subsystem;\n  - Netfilter;\n  - UDP network protocol;\n  - Tracing infrastructure;\n  - BPF subsystem;\n  - Perf events;\n  - Padata parallel execution mechanism;\n  - Codetag library;\n  - KASAN memory debugging framework;\n  - Memory management;\n  - 802.1Q VLAN protocol;\n  - Appletalk network protocol;\n  - Asynchronous Transfer Mode (ATM) subsystem;\n  - Networking core;\n  - IPv4 networking;\n  - IPv6 networking;\n  - MAC80211 subsystem;\n  - Multipath TCP;\n  - Netlink;\n  - RxRPC session sockets;\n  - Network traffic control;\n  - SMC sockets;\n  - Sun RPC protocol;\n  - TIPC protocol;\n  - TLS protocol;\n  - VMware vSockets driver;\n  - Wireless networking;\n  - XFRM subsystem;\n  - ADI SoundPort AD1816A based soundcard drivers;\n  - MediaTek ASoC drivers;\n  - SOF drivers;\n  - USB sound devices;\n  - KVM subsystem;\n(CVE-2025-38335, CVE-2025-38349, CVE-2025-38351, CVE-2025-38437,\nCVE-2025-38438, CVE-2025-38439, CVE-2025-38440, CVE-2025-38441,\nCVE-2025-38443, CVE-2025-38444, CVE-2025-38445, CVE-2025-38446,\nCVE-2025-38448, CVE-2025-38449, CVE-2025-38450, CVE-2025-38451,\nCVE-2025-38452, CVE-2025-38453, CVE-2025-38454, CVE-2025-38455,\nCVE-2025-38456, CVE-2025-38457, CVE-2025-38458, CVE-2025-38459,\nCVE-2025-38460, CVE-2025-38461, CVE-2025-38462, CVE-2025-38463,\nCVE-2025-38464, CVE-2025-38465, CVE-2025-38466, CVE-2025-38467,\nCVE-2025-38468, CVE-2025-38469, CVE-2025-38470, CVE-2025-38471,\nCVE-2025-38472, CVE-2025-38473, CVE-2025-38474, CVE-2025-38475,\nCVE-2025-38476, CVE-2025-38478, CVE-2025-38480, CVE-2025-38481,\nCVE-2025-38482, CVE-2025-38483, CVE-2025-38484, CVE-2025-38485,\nCVE-2025-38487, CVE-2025-38488, CVE-2025-38489, CVE-2025-38490,\nCVE-2025-38491, CVE-2025-38492, CVE-2025-38493, CVE-2025-38494,\nCVE-2025-38495, CVE-2025-38496, CVE-2025-38497, CVE-2025-38501,\nCVE-2025-38503, CVE-2025-38505, CVE-2025-38506, CVE-2025-38507,\nCVE-2025-38508, CVE-2025-38509, CVE-2025-38510, CVE-2025-38511,\nCVE-2025-38512, CVE-2025-38513, CVE-2025-38514, CVE-2025-38515,\nCVE-2025-38516, CVE-2025-38517, CVE-2025-38520, CVE-2025-38521,\nCVE-2025-38524, CVE-2025-38525, CVE-2025-38526, CVE-2025-38527,\nCVE-2025-38528, CVE-2025-38529, CVE-2025-38530, CVE-2025-38531,\nCVE-2025-38532, CVE-2025-38533, CVE-2025-38534, CVE-2025-38535,\nCVE-2025-38537, CVE-2025-38538, CVE-2025-38539, CVE-2025-38540,\nCVE-2025-38542, CVE-2025-38543, CVE-2025-38544, CVE-2025-38545,\nCVE-2025-38546, CVE-2025-38547, CVE-2025-38548, CVE-2025-38549,\nCVE-2025-38550, CVE-2025-38551, CVE-2025-38552, CVE-2025-38553,\nCVE-2025-38555, CVE-2025-38556, CVE-2025-38557, CVE-2025-38558,\nCVE-2025-38559, CVE-2025-38560, CVE-2025-38561, CVE-2025-38562,\nCVE-2025-38563, CVE-2025-38565, CVE-2025-38566, CVE-2025-38567,\nCVE-2025-38568, CVE-2025-38569, CVE-2025-38570, CVE-2025-38571,\nCVE-2025-38572, CVE-2025-38573, CVE-2025-38574, CVE-2025-38576,\nCVE-2025-38577, CVE-2025-38578, CVE-2025-38579, CVE-2025-38581,\nCVE-2025-38582, CVE-2025-38583, CVE-2025-38584, CVE-2025-38585,\nCVE-2025-38586, CVE-2025-38587, CVE-2025-38588, CVE-2025-38589,\nCVE-2025-38590, CVE-2025-38593, CVE-2025-38595, CVE-2025-38601,\nCVE-2025-38602, CVE-2025-38604, CVE-2025-38605, CVE-2025-38606,\nCVE-2025-38608, CVE-2025-38609, CVE-2025-38610, CVE-2025-38612,\nCVE-2025-38615, CVE-2025-38616, CVE-2025-38619, CVE-2025-38622,\nCVE-2025-38623, CVE-2025-38624, CVE-2025-38625, CVE-2025-38626,\nCVE-2025-38628, CVE-2025-38629, CVE-2025-38630, CVE-2025-38631,\nCVE-2025-38632, CVE-2025-38634, CVE-2025-38635, CVE-2025-38639,\nCVE-2025-38640, CVE-2025-38642, CVE-2025-38643, CVE-2025-38644,\nCVE-2025-38645, CVE-2025-38646, CVE-2025-38648, CVE-2025-38649,\nCVE-2025-38650, CVE-2025-38652, CVE-2025-38653, CVE-2025-38654,\nCVE-2025-38655, CVE-2025-38659, CVE-2025-38660, CVE-2025-38662,\nCVE-2025-38663, CVE-2025-38664, CVE-2025-38665, CVE-2025-38666,\nCVE-2025-38668, CVE-2025-38670, CVE-2025-38671, CVE-2025-38675,\nCVE-2025-38678, CVE-2025-39725, CVE-2025-39726, CVE-2025-39727,\nCVE-2025-39730, CVE-2025-39731, CVE-2025-39732, CVE-2025-39734,\nCVE-2025-39809, CVE-2025-39818, CVE-2025-39946, CVE-2025-39964,\nCVE-2025-39993, CVE-2025-40018, CVE-2025-40157)\n","modified":"2026-05-23T01:34:18.594695910Z","published":"2025-12-15T20:51:05Z","related":["UBUNTU-CVE-2024-36331","UBUNTU-CVE-2025-38335","UBUNTU-CVE-2025-38349","UBUNTU-CVE-2025-38351","UBUNTU-CVE-2025-38437","UBUNTU-CVE-2025-38438","UBUNTU-CVE-2025-38439","UBUNTU-CVE-2025-38440","UBUNTU-CVE-2025-38441","UBUNTU-CVE-2025-38443","UBUNTU-CVE-2025-38444","UBUNTU-CVE-2025-38445","UBUNTU-CVE-2025-38446","UBUNTU-CVE-2025-38448","UBUNTU-CVE-2025-38449","UBUNTU-CVE-2025-38450","UBUNTU-CVE-2025-38451","UBUNTU-CVE-2025-38452","UBUNTU-CVE-2025-38453","UBUNTU-CVE-2025-38454","UBUNTU-CVE-2025-38455","UBUNTU-CVE-2025-38456","UBUNTU-CVE-2025-38457","UBUNTU-CVE-2025-38458","UBUNTU-CVE-2025-38459","UBUNTU-CVE-2025-38460","UBUNTU-CVE-2025-38461","UBUNTU-CVE-2025-38462","UBUNTU-CVE-2025-38463","UBUNTU-CVE-2025-38464","UBUNTU-CVE-2025-38465","UBUNTU-CVE-2025-38466","UBUNTU-CVE-2025-38467","UBUNTU-CVE-2025-38468","UBUNTU-CVE-2025-38469","UBUNTU-CVE-2025-38470","UBUNTU-CVE-2025-38471","UBUNTU-CVE-2025-38472","UBUNTU-CVE-2025-38473","UBUNTU-CVE-2025-38474","UBUNTU-CVE-2025-38475","UBUNTU-CVE-2025-38476","UBUNTU-CVE-2025-38478","UBUNTU-CVE-2025-38480","UBUNTU-CVE-2025-38481","UBUNTU-CVE-2025-38482","UBUNTU-CVE-2025-38483","UBUNTU-CVE-2025-38484","UBUNTU-CVE-2025-38485","UBUNTU-CVE-2025-38487","UBUNTU-CVE-2025-38488","UBUNTU-CVE-2025-38489","UBUNTU-CVE-2025-38490","UBUNTU-CVE-2025-38491","UBUNTU-CVE-2025-38492","UBUNTU-CVE-2025-38493","UBUNTU-CVE-2025-38494","UBUNTU-CVE-2025-38495","UBUNTU-CVE-2025-38496","UBUNTU-CVE-2025-38497","UBUNTU-CVE-2025-38501","UBUNTU-CVE-2025-38503","UBUNTU-CVE-2025-38505","UBUNTU-CVE-2025-38506","UBUNTU-CVE-2025-38507","UBUNTU-CVE-2025-38508","UBUNTU-CVE-2025-38509","UBUNTU-CVE-2025-38510","UBUNTU-CVE-2025-38511","UBUNTU-CVE-2025-38512","UBUNTU-CVE-2025-38513","UBUNTU-CVE-2025-38514","UBUNTU-CVE-2025-38515","UBUNTU-CVE-2025-38516","UBUNTU-CVE-2025-38517","UBUNTU-CVE-2025-38520","UBUNTU-CVE-2025-38521","UBUNTU-CVE-2025-38524","UBUNTU-CVE-2025-38525","UBUNTU-CVE-2025-38526","UBUNTU-CVE-2025-38527","UBUNTU-CVE-2025-38528","UBUNTU-CVE-2025-38529","UBUNTU-CVE-2025-38530","UBUNTU-CVE-2025-38531","UBUNTU-CVE-2025-38532","UBUNTU-CVE-2025-38533","UBUNTU-CVE-2025-38534","UBUNTU-CVE-2025-38535","UBUNTU-CVE-2025-38537","UBUNTU-CVE-2025-38538","UBUNTU-CVE-2025-38539","UBUNTU-CVE-2025-38540","UBUNTU-CVE-2025-38542","UBUNTU-CVE-2025-38543","UBUNTU-CVE-2025-38544","UBUNTU-CVE-2025-38545","UBUNTU-CVE-2025-38546","UBUNTU-CVE-2025-38547","UBUNTU-CVE-2025-38548","UBUNTU-CVE-2025-38549","UBUNTU-CVE-2025-38550","UBUNTU-CVE-2025-38551","UBUNTU-CVE-2025-38552","UBUNTU-CVE-2025-38553","UBUNTU-CVE-2025-38555","UBUNTU-CVE-2025-38556","UBUNTU-CVE-2025-38557","UBUNTU-CVE-2025-38558","UBUNTU-CVE-2025-38559","UBUNTU-CVE-2025-38560","UBUNTU-CVE-2025-38561","UBUNTU-CVE-2025-38562","UBUNTU-CVE-2025-38563","UBUNTU-CVE-2025-38565","UBUNTU-CVE-2025-38566","UBUNTU-CVE-2025-38567","UBUNTU-CVE-2025-38568","UBUNTU-CVE-2025-38569","UBUNTU-CVE-2025-38570","UBUNTU-CVE-2025-38571","UBUNTU-CVE-2025-38572","UBUNTU-CVE-2025-38573","UBUNTU-CVE-2025-38574","UBUNTU-CVE-2025-38576","UBUNTU-CVE-2025-38577","UBUNTU-CVE-2025-38578","UBUNTU-CVE-2025-38579","UBUNTU-CVE-2025-38581","UBUNTU-CVE-2025-38582","UBUNTU-CVE-2025-38583","UBUNTU-CVE-2025-38584","UBUNTU-CVE-2025-38585","UBUNTU-CVE-2025-38586","UBUNTU-CVE-2025-38587","UBUNTU-CVE-2025-38588","UBUNTU-CVE-2025-38589","UBUNTU-CVE-2025-38590","UBUNTU-CVE-2025-38593","UBUNTU-CVE-2025-38595","UBUNTU-CVE-2025-38601","UBUNTU-CVE-2025-38602","UBUNTU-CVE-2025-38604","UBUNTU-CVE-2025-38605","UBUNTU-CVE-2025-38606","UBUNTU-CVE-2025-38608","UBUNTU-CVE-2025-38609","UBUNTU-CVE-2025-38610","UBUNTU-CVE-2025-38612","UBUNTU-CVE-2025-38615","UBUNTU-CVE-2025-38616","UBUNTU-CVE-2025-38619","UBUNTU-CVE-2025-38622","UBUNTU-CVE-2025-38623","UBUNTU-CVE-2025-38624","UBUNTU-CVE-2025-38625","UBUNTU-CVE-2025-38626","UBUNTU-CVE-2025-38628","UBUNTU-CVE-2025-38629","UBUNTU-CVE-2025-38630","UBUNTU-CVE-2025-38631","UBUNTU-CVE-2025-38632","UBUNTU-CVE-2025-38634","UBUNTU-CVE-2025-38635","UBUNTU-CVE-2025-38639","UBUNTU-CVE-2025-38640","UBUNTU-CVE-2025-38642","UBUNTU-CVE-2025-38643","UBUNTU-CVE-2025-38644","UBUNTU-CVE-2025-38645","UBUNTU-CVE-2025-38646","UBUNTU-CVE-2025-38648","UBUNTU-CVE-2025-38649","UBUNTU-CVE-2025-38650","UBUNTU-CVE-2025-38652","UBUNTU-CVE-2025-38653","UBUNTU-CVE-2025-38654","UBUNTU-CVE-2025-38655","UBUNTU-CVE-2025-38659","UBUNTU-CVE-2025-38660","UBUNTU-CVE-2025-38662","UBUNTU-CVE-2025-38663","UBUNTU-CVE-2025-38664","UBUNTU-CVE-2025-38665","UBUNTU-CVE-2025-38666","UBUNTU-CVE-2025-38668","UBUNTU-CVE-2025-38670","UBUNTU-CVE-2025-38671","UBUNTU-CVE-2025-38675","UBUNTU-CVE-2025-38678","UBUNTU-CVE-2025-39725","UBUNTU-CVE-2025-39726","UBUNTU-CVE-2025-39727","UBUNTU-CVE-2025-39730","UBUNTU-CVE-2025-39731","UBUNTU-CVE-2025-39732","UBUNTU-CVE-2025-39734","UBUNTU-CVE-2025-39809","UBUNTU-CVE-2025-39818","UBUNTU-CVE-2025-39946","UBUNTU-CVE-2025-39964","UBUNTU-CVE-2025-39993","UBUNTU-CVE-2025-40018","UBUNTU-CVE-2025-40157","UBUNTU-CVE-2025-40300"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-7934-1"}],"affected":[{"package":{"name":"linux-azure-6.14","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/linux-azure-6.14?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.14.0-1017.17~24.04.1"}]}],"versions":["6.14.0-1010.10~24.04.1","6.14.0-1012.12~24.04.1","6.14.0-1013.13~24.04.1","6.14.0-1014.14~24.04.1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"6.14.0-1017.17~24.04.1","binary_name":"linux-azure-6.14-cloud-tools-6.14.0-1017"},{"binary_name":"linux-azure-6.14-headers-6.14.0-1017","binary_version":"6.14.0-1017.17~24.04.1"},{"binary_version":"6.14.0-1017.17~24.04.1","binary_name":"linux-azure-6.14-tools-6.14.0-1017"},{"binary_version":"6.14.0-1017.17~24.04.1","binary_name":"linux-buildinfo-6.14.0-1017-azure"},{"binary_name":"linux-cloud-tools-6.14.0-1017-azure","binary_version":"6.14.0-1017.17~24.04.1"},{"binary_version":"6.14.0-1017.17~24.04.1","binary_name":"linux-headers-6.14.0-1017-azure"},{"binary_version":"6.14.0-1017.17~24.04.1","binary_name":"linux-image-unsigned-6.14.0-1017-azure"},{"binary_name":"linux-modules-6.14.0-1017-azure","binary_version":"6.14.0-1017.17~24.04.1"},{"binary_version":"6.14.0-1017.17~24.04.1","binary_name":"linux-modules-extra-6.14.0-1017-azure"},{"binary_name":"linux-tools-6.14.0-1017-azure","binary_version":"6.14.0-1017.17~24.04.1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7934-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[]}}}],"schema_version":"1.7.5"}