{"id":"USN-7938-1","summary":"linux-azure-5.15 vulnerabilities","details":"\nJean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered\nthat the Linux kernel contained insufficient branch predictor isolation\nbetween a guest and a userspace hypervisor for certain processors. This\nflaw is known as VMSCAPE. An attacker in a guest VM could possibly use this\nto expose sensitive information from the host OS. (CVE-2025-40300)\n\nSeveral security issues were discovered in the Linux kernel.\nAn attacker could possibly use these to compromise the system.\nThis update corrects flaws in the following subsystems:\n  - ARM32 architecture;\n  - ARM64 architecture;\n  - MIPS architecture;\n  - PowerPC architecture;\n  - RISC-V architecture;\n  - S390 architecture;\n  - x86 architecture;\n  - Block layer subsystem;\n  - Cryptographic API;\n  - ACPI drivers;\n  - ATM drivers;\n  - DRBD Distributed Replicated Block Device drivers;\n  - Bus devices;\n  - Clock framework and drivers;\n  - Data acquisition framework and drivers;\n  - Hardware crypto device drivers;\n  - Device frequency scaling framework;\n  - Buffer Sharing and Synchronization framework;\n  - DMA engine subsystem;\n  - ARM SCMI message protocol;\n  - GPU drivers;\n  - HID subsystem;\n  - Hardware monitoring drivers;\n  - I2C subsystem;\n  - I3C subsystem;\n  - IIO subsystem;\n  - InfiniBand drivers;\n  - Input Device core drivers;\n  - IOMMU subsystem;\n  - Media drivers;\n  - Network drivers;\n  - Mellanox network drivers;\n  - PCI subsystem;\n  - PCCARD (PCMCIA/CardBus) bus subsystem;\n  - PHY drivers;\n  - Power supply drivers;\n  - Voltage and Current Regulator drivers;\n  - SCSI subsystem;\n  - ASPEED SoC drivers;\n  - QCOM SoC drivers;\n  - small TFT LCD display modules;\n  - Trusted Execution Environment drivers;\n  - TTY drivers;\n  - UFS subsystem;\n  - USB core drivers;\n  - DesignWare USB3 driver;\n  - USB Gadget drivers;\n  - Framebuffer layer;\n  - AFS file system;\n  - BTRFS file system;\n  - File systems infrastructure;\n  - EFI Variable file system;\n  - Ext4 file system;\n  - F2FS file system;\n  - JFS file system;\n  - Network file system (NFS) client;\n  - Network file system (NFS) server daemon;\n  - NILFS2 file system;\n  - NTFS3 file system;\n  - SMB network file system;\n  - Asynchronous Transfer Mode (ATM) subsystem;\n  - BPF subsystem;\n  - NFS page cache wrapper;\n  - Memory management;\n  - Networking subsytem;\n  - UDP network protocol;\n  - Perf events;\n  - RCU subsystem;\n  - Tracing infrastructure;\n  - 802.1Q VLAN protocol;\n  - Appletalk network protocol;\n  - Amateur Radio drivers;\n  - B.A.T.M.A.N. meshing protocol;\n  - Bluetooth subsystem;\n  - Ethernet bridge;\n  - Networking core;\n  - HSR network protocol;\n  - IPv4 networking;\n  - IPv6 networking;\n  - Multipath TCP;\n  - Netfilter;\n  - Network traffic control;\n  - SCTP protocol;\n  - TLS protocol;\n  - Wireless networking;\n  - SoC audio core drivers;\n  - USB sound devices;\n(CVE-2022-49390, CVE-2022-50070, CVE-2022-50327, CVE-2023-52935,\nCVE-2023-53074, CVE-2024-47691, CVE-2024-50061, CVE-2024-50067,\nCVE-2024-53068, CVE-2024-53090, CVE-2024-53218, CVE-2025-21855,\nCVE-2025-37925, CVE-2025-37968, CVE-2025-38095, CVE-2025-38148,\nCVE-2025-38165, CVE-2025-38335, CVE-2025-38347, CVE-2025-38468,\nCVE-2025-38470, CVE-2025-38473, CVE-2025-38474, CVE-2025-38476,\nCVE-2025-38478, CVE-2025-38480, CVE-2025-38481, CVE-2025-38482,\nCVE-2025-38483, CVE-2025-38487, CVE-2025-38488, CVE-2025-38494,\nCVE-2025-38495, CVE-2025-38497, CVE-2025-38499, CVE-2025-38502,\nCVE-2025-38527, CVE-2025-38528, CVE-2025-38529, CVE-2025-38530,\nCVE-2025-38535, CVE-2025-38538, CVE-2025-38539, CVE-2025-38548,\nCVE-2025-38550, CVE-2025-38553, CVE-2025-38555, CVE-2025-38563,\nCVE-2025-38565, CVE-2025-38569, CVE-2025-38572, CVE-2025-38574,\nCVE-2025-38576, CVE-2025-38577, CVE-2025-38578, CVE-2025-38579,\nCVE-2025-38581, CVE-2025-38583, CVE-2025-38601, CVE-2025-38602,\nCVE-2025-38604, CVE-2025-38608, CVE-2025-38609, CVE-2025-38612,\nCVE-2025-38614, CVE-2025-38622, CVE-2025-38623, CVE-2025-38624,\nCVE-2025-38630, CVE-2025-38634, CVE-2025-38635, CVE-2025-38639,\nCVE-2025-38645, CVE-2025-38650, CVE-2025-38652, CVE-2025-38663,\nCVE-2025-38664, CVE-2025-38666, CVE-2025-38668, CVE-2025-38670,\nCVE-2025-38671, CVE-2025-38676, CVE-2025-38677, CVE-2025-38678,\nCVE-2025-38680, CVE-2025-38681, CVE-2025-38684, CVE-2025-38685,\nCVE-2025-38687, CVE-2025-38691, CVE-2025-38693, CVE-2025-38694,\nCVE-2025-38695, CVE-2025-38696, CVE-2025-38697, CVE-2025-38698,\nCVE-2025-38699, CVE-2025-38700, CVE-2025-38701, CVE-2025-38706,\nCVE-2025-38707, CVE-2025-38708, CVE-2025-38711, CVE-2025-38712,\nCVE-2025-38713, CVE-2025-38714, CVE-2025-38715, CVE-2025-38718,\nCVE-2025-38721, CVE-2025-38724, CVE-2025-38725, CVE-2025-38729,\nCVE-2025-38732, CVE-2025-39673, CVE-2025-39675, CVE-2025-39676,\nCVE-2025-39681, CVE-2025-39683, CVE-2025-39684, CVE-2025-39685,\nCVE-2025-39686, CVE-2025-39687, CVE-2025-39689, CVE-2025-39691,\nCVE-2025-39693, CVE-2025-39697, CVE-2025-39702, CVE-2025-39703,\nCVE-2025-39709, CVE-2025-39710, CVE-2025-39713, CVE-2025-39714,\nCVE-2025-39724, CVE-2025-39730, CVE-2025-39734, CVE-2025-39736,\nCVE-2025-39737, CVE-2025-39738, CVE-2025-39742, CVE-2025-39743,\nCVE-2025-39749, CVE-2025-39752, CVE-2025-39756, CVE-2025-39757,\nCVE-2025-39760, CVE-2025-39766, CVE-2025-39772, CVE-2025-39773,\nCVE-2025-39776, CVE-2025-39782, CVE-2025-39783, CVE-2025-39787,\nCVE-2025-39788, CVE-2025-39790, CVE-2025-39794, CVE-2025-39795,\nCVE-2025-39798, CVE-2025-39801, CVE-2025-39806, CVE-2025-39808,\nCVE-2025-39812, CVE-2025-39813, CVE-2025-39817, CVE-2025-39823,\nCVE-2025-39824, CVE-2025-39828, CVE-2025-39835, CVE-2025-39839,\nCVE-2025-39841, CVE-2025-39844, CVE-2025-39845, CVE-2025-39846,\nCVE-2025-39847, CVE-2025-39848, CVE-2025-39853, CVE-2025-39860,\nCVE-2025-39864, CVE-2025-39865, CVE-2025-39866, CVE-2025-39891,\nCVE-2025-39894, CVE-2025-39902, CVE-2025-39920, CVE-2025-39964,\nCVE-2025-39993, CVE-2025-40018)\n","modified":"2026-05-23T01:34:18.592495697Z","published":"2025-12-16T14:52:44Z","related":["UBUNTU-CVE-2022-49390","UBUNTU-CVE-2022-50070","UBUNTU-CVE-2022-50327","UBUNTU-CVE-2023-52935","UBUNTU-CVE-2023-53074","UBUNTU-CVE-2024-47691","UBUNTU-CVE-2024-50061","UBUNTU-CVE-2024-50067","UBUNTU-CVE-2024-53068","UBUNTU-CVE-2024-53090","UBUNTU-CVE-2024-53218","UBUNTU-CVE-2025-21855","UBUNTU-CVE-2025-37925","UBUNTU-CVE-2025-37968","UBUNTU-CVE-2025-38095","UBUNTU-CVE-2025-38148","UBUNTU-CVE-2025-38165","UBUNTU-CVE-2025-38335","UBUNTU-CVE-2025-38347","UBUNTU-CVE-2025-38468","UBUNTU-CVE-2025-38470","UBUNTU-CVE-2025-38473","UBUNTU-CVE-2025-38474","UBUNTU-CVE-2025-38476","UBUNTU-CVE-2025-38478","UBUNTU-CVE-2025-38480","UBUNTU-CVE-2025-38481","UBUNTU-CVE-2025-38482","UBUNTU-CVE-2025-38483","UBUNTU-CVE-2025-38487","UBUNTU-CVE-2025-38488","UBUNTU-CVE-2025-38494","UBUNTU-CVE-2025-38495","UBUNTU-CVE-2025-38497","UBUNTU-CVE-2025-38499","UBUNTU-CVE-2025-38502","UBUNTU-CVE-2025-38527","UBUNTU-CVE-2025-38528","UBUNTU-CVE-2025-38529","UBUNTU-CVE-2025-38530","UBUNTU-CVE-2025-38535","UBUNTU-CVE-2025-38538","UBUNTU-CVE-2025-38539","UBUNTU-CVE-2025-38548","UBUNTU-CVE-2025-38550","UBUNTU-CVE-2025-38553","UBUNTU-CVE-2025-38555","UBUNTU-CVE-2025-38563","UBUNTU-CVE-2025-38565","UBUNTU-CVE-2025-38569","UBUNTU-CVE-2025-38572","UBUNTU-CVE-2025-38574","UBUNTU-CVE-2025-38576","UBUNTU-CVE-2025-38577","UBUNTU-CVE-2025-38578","UBUNTU-CVE-2025-38579","UBUNTU-CVE-2025-38581","UBUNTU-CVE-2025-38583","UBUNTU-CVE-2025-38601","UBUNTU-CVE-2025-38602","UBUNTU-CVE-2025-38604","UBUNTU-CVE-2025-38608","UBUNTU-CVE-2025-38609","UBUNTU-CVE-2025-38612","UBUNTU-CVE-2025-38614","UBUNTU-CVE-2025-38622","UBUNTU-CVE-2025-38623","UBUNTU-CVE-2025-38624","UBUNTU-CVE-2025-38630","UBUNTU-CVE-2025-38634","UBUNTU-CVE-2025-38635","UBUNTU-CVE-2025-38639","UBUNTU-CVE-2025-38645","UBUNTU-CVE-2025-38650","UBUNTU-CVE-2025-38652","UBUNTU-CVE-2025-38663","UBUNTU-CVE-2025-38664","UBUNTU-CVE-2025-38666","UBUNTU-CVE-2025-38668","UBUNTU-CVE-2025-38670","UBUNTU-CVE-2025-38671","UBUNTU-CVE-2025-38676","UBUNTU-CVE-2025-38677","UBUNTU-CVE-2025-38678","UBUNTU-CVE-2025-38680","UBUNTU-CVE-2025-38681","UBUNTU-CVE-2025-38684","UBUNTU-CVE-2025-38685","UBUNTU-CVE-2025-38687","UBUNTU-CVE-2025-38691","UBUNTU-CVE-2025-38693","UBUNTU-CVE-2025-38694","UBUNTU-CVE-2025-38695","UBUNTU-CVE-2025-38696","UBUNTU-CVE-2025-38697","UBUNTU-CVE-2025-38698","UBUNTU-CVE-2025-38699","UBUNTU-CVE-2025-38700","UBUNTU-CVE-2025-38701","UBUNTU-CVE-2025-38706","UBUNTU-CVE-2025-38707","UBUNTU-CVE-2025-38708","UBUNTU-CVE-2025-38711","UBUNTU-CVE-2025-38712","UBUNTU-CVE-2025-38713","UBUNTU-CVE-2025-38714","UBUNTU-CVE-2025-38715","UBUNTU-CVE-2025-38718","UBUNTU-CVE-2025-38721","UBUNTU-CVE-2025-38724","UBUNTU-CVE-2025-38725","UBUNTU-CVE-2025-38729","UBUNTU-CVE-2025-38732","UBUNTU-CVE-2025-39673","UBUNTU-CVE-2025-39675","UBUNTU-CVE-2025-39676","UBUNTU-CVE-2025-39681","UBUNTU-CVE-2025-39683","UBUNTU-CVE-2025-39684","UBUNTU-CVE-2025-39685","UBUNTU-CVE-2025-39686","UBUNTU-CVE-2025-39687","UBUNTU-CVE-2025-39689","UBUNTU-CVE-2025-39691","UBUNTU-CVE-2025-39693","UBUNTU-CVE-2025-39697","UBUNTU-CVE-2025-39702","UBUNTU-CVE-2025-39703","UBUNTU-CVE-2025-39709","UBUNTU-CVE-2025-39710","UBUNTU-CVE-2025-39713","UBUNTU-CVE-2025-39714","UBUNTU-CVE-2025-39724","UBUNTU-CVE-2025-39730","UBUNTU-CVE-2025-39734","UBUNTU-CVE-2025-39736","UBUNTU-CVE-2025-39737","UBUNTU-CVE-2025-39738","UBUNTU-CVE-2025-39742","UBUNTU-CVE-2025-39743","UBUNTU-CVE-2025-39749","UBUNTU-CVE-2025-39752","UBUNTU-CVE-2025-39756","UBUNTU-CVE-2025-39757","UBUNTU-CVE-2025-39760","UBUNTU-CVE-2025-39766","UBUNTU-CVE-2025-39772","UBUNTU-CVE-2025-39773","UBUNTU-CVE-2025-39776","UBUNTU-CVE-2025-39782","UBUNTU-CVE-2025-39783","UBUNTU-CVE-2025-39787","UBUNTU-CVE-2025-39788","UBUNTU-CVE-2025-39790","UBUNTU-CVE-2025-39794","UBUNTU-CVE-2025-39795","UBUNTU-CVE-2025-39798","UBUNTU-CVE-2025-39801","UBUNTU-CVE-2025-39806","UBUNTU-CVE-2025-39808","UBUNTU-CVE-2025-39812","UBUNTU-CVE-2025-39813","UBUNTU-CVE-2025-39817","UBUNTU-CVE-2025-39823","UBUNTU-CVE-2025-39824","UBUNTU-CVE-2025-39828","UBUNTU-CVE-2025-39835","UBUNTU-CVE-2025-39839","UBUNTU-CVE-2025-39841","UBUNTU-CVE-2025-39844","UBUNTU-CVE-2025-39845","UBUNTU-CVE-2025-39846","UBUNTU-CVE-2025-39847","UBUNTU-CVE-2025-39848","UBUNTU-CVE-2025-39853","UBUNTU-CVE-2025-39860","UBUNTU-CVE-2025-39864","UBUNTU-CVE-2025-39865","UBUNTU-CVE-2025-39866","UBUNTU-CVE-2025-39891","UBUNTU-CVE-2025-39894","UBUNTU-CVE-2025-39902","UBUNTU-CVE-2025-39920","UBUNTU-CVE-2025-39964","UBUNTU-CVE-2025-39993","UBUNTU-CVE-2025-40018","UBUNTU-CVE-2025-40300"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-7938-1"}],"affected":[{"package":{"name":"linux-azure-5.15","ecosystem":"Ubuntu:Pro:20.04:LTS","purl":"pkg:deb/ubuntu/linux-azure-5.15?arch=source&distro=esm-infra%2Ffocal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.15.0-1102.111~20.04.1"}]}],"versions":["5.15.0-1007.8~20.04.1","5.15.0-1008.9~20.04.1","5.15.0-1013.16~20.04.1","5.15.0-1014.17~20.04.1","5.15.0-1017.20~20.04.1","5.15.0-1019.24~20.04.1","5.15.0-1020.25~20.04.1","5.15.0-1021.26~20.04.1","5.15.0-1022.27~20.04.1","5.15.0-1023.29~20.04.1","5.15.0-1029.36~20.04.1","5.15.0-1030.37~20.04.1","5.15.0-1031.38~20.04.1","5.15.0-1033.40~20.04.1","5.15.0-1034.41~20.04.1","5.15.0-1035.42~20.04.1","5.15.0-1036.43~20.04.1","5.15.0-1037.44~20.04.1","5.15.0-1038.45~20.04.1","5.15.0-1039.46~20.04.1","5.15.0-1040.47~20.04.1","5.15.0-1041.48~20.04.1","5.15.0-1042.49~20.04.1","5.15.0-1043.50~20.04.1","5.15.0-1045.52~20.04.1","5.15.0-1046.53~20.04.1","5.15.0-1047.54~20.04.1","5.15.0-1049.56~20.04.1","5.15.0-1050.57~20.04.1","5.15.0-1051.59~20.04.1","5.15.0-1052.60~20.04.1","5.15.0-1053.61~20.04.1","5.15.0-1054.62~20.04.1","5.15.0-1056.64~20.04.1","5.15.0-1057.65~20.04.1","5.15.0-1058.66~20.04.2","5.15.0-1059.67~20.04.1","5.15.0-1060.69~20.04.1","5.15.0-1061.70~20.04.1","5.15.0-1063.72~20.04.1","5.15.0-1064.73~20.04.1","5.15.0-1065.74~20.04.1","5.15.0-1067.76~20.04.1","5.15.0-1068.77~20.04.1","5.15.0-1070.79~20.04.1","5.15.0-1071.80~20.04.1","5.15.0-1072.81~20.04.1","5.15.0-1073.82~20.04.1","5.15.0-1074.83~20.04.1","5.15.0-1075.84~20.04.1","5.15.0-1078.87~20.04.1","5.15.0-1079.88~20.04.1","5.15.0-1081.90~20.04.1","5.15.0-1082.91~20.04.1","5.15.0-1086.95~20.04.1","5.15.0-1087.96~20.04.1","5.15.0-1088.97~20.04.1","5.15.0-1089.98~20.04.1","5.15.0-1091.100~20.04.1","5.15.0-1094.103~20.04.1","5.15.0-1095.104~20.04.1","5.15.0-1096.105~20.04.1","5.15.0-1097.106~20.04.1","5.15.0-1098.107~20.04.1"],"ecosystem_specific":{"binaries":[{"binary_version":"5.15.0-1102.111~20.04.1","binary_name":"linux-azure-5.15-cloud-tools-5.15.0-1102"},{"binary_version":"5.15.0-1102.111~20.04.1","binary_name":"linux-azure-5.15-headers-5.15.0-1102"},{"binary_version":"5.15.0-1102.111~20.04.1","binary_name":"linux-azure-5.15-tools-5.15.0-1102"},{"binary_version":"5.15.0-1102.111~20.04.1","binary_name":"linux-buildinfo-5.15.0-1102-azure"},{"binary_version":"5.15.0-1102.111~20.04.1","binary_name":"linux-cloud-tools-5.15.0-1102-azure"},{"binary_version":"5.15.0-1102.111~20.04.1","binary_name":"linux-headers-5.15.0-1102-azure"},{"binary_version":"5.15.0-1102.111~20.04.1","binary_name":"linux-image-unsigned-5.15.0-1102-azure"},{"binary_version":"5.15.0-1102.111~20.04.1","binary_name":"linux-modules-5.15.0-1102-azure"},{"binary_version":"5.15.0-1102.111~20.04.1","binary_name":"linux-modules-extra-5.15.0-1102-azure"},{"binary_version":"5.15.0-1102.111~20.04.1","binary_name":"linux-modules-involflt-5.15.0-1102-azure"},{"binary_version":"5.15.0-1102.111~20.04.1","binary_name":"linux-tools-5.15.0-1102-azure"}],"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro"},"database_specific":{"cves_map":{"cves":[],"ecosystem":"Ubuntu:Pro:20.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7938-1.json"}}],"schema_version":"1.7.5"}