{"id":"USN-8098-9","summary":"linux-ibm-5.4 vulnerabilities","details":"Qualys discovered that several vulnerabilities existed in the AppArmor\nLinux kernel Security Module (LSM). An unprivileged local attacker could\nuse these issues to load, replace, and remove arbitrary AppArmor profiles\ncausing denial of service, exposure of sensitive information (kernel\nmemory), local privilege escalation, or possibly escape a container.\n(LP: #2143853)\n\nSeveral security issues were discovered in the Linux kernel.\nAn attacker could possibly use these to compromise the system.\nThis update corrects flaws in the following subsystems:\n  - x86 architecture;\n  - GPIO subsystem;\n  - GPU drivers;\n  - BTRFS file system;\n  - XFRM subsystem;\n  - IPv4 networking;\n  - IPv6 networking;\n  - MAC80211 subsystem;\n  - SMC sockets;\n(CVE-2021-47599, CVE-2022-48875, CVE-2022-49072, CVE-2024-49927,\nCVE-2024-56640, CVE-2025-21780, CVE-2025-40215)\n","modified":"2026-04-27T18:17:17.693114412Z","published":"2026-03-27T08:51:44Z","related":["UBUNTU-CVE-2021-47599","UBUNTU-CVE-2022-48875","UBUNTU-CVE-2022-49072","UBUNTU-CVE-2022-49267","UBUNTU-CVE-2024-49927","UBUNTU-CVE-2024-56640","UBUNTU-CVE-2025-21780","UBUNTU-CVE-2025-40215"],"upstream":["CVE-2021-47599","CVE-2022-48875","CVE-2022-49072","CVE-2022-49267","CVE-2024-49927","CVE-2024-56640","CVE-2025-21780","CVE-2025-40215","UBUNTU-CVE-2021-47599","UBUNTU-CVE-2022-48875","UBUNTU-CVE-2022-49072","UBUNTU-CVE-2022-49267","UBUNTU-CVE-2024-49927","UBUNTU-CVE-2024-56640","UBUNTU-CVE-2025-21780","UBUNTU-CVE-2025-40215"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-8098-9"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2021-47599"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-48875"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-49072"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-49267"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-49927"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-56640"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-21780"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-40215"},{"type":"REPORT","url":"https://launchpad.net/bugs/2143853"}],"affected":[{"package":{"name":"linux-ibm-5.4","ecosystem":"Ubuntu:Pro:18.04:LTS","purl":"pkg:deb/ubuntu/linux-ibm-5.4@5.4.0-1102.107~18.04.1?arch=source&distro=esm-infra/bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.4.0-1102.107~18.04.1"}]}],"versions":["5.4.0-1010.11~18.04.2","5.4.0-1012.13~18.04.1","5.4.0-1014.15~18.04.1","5.4.0-1015.16~18.04.1","5.4.0-1017.19~18.04.1","5.4.0-1018.20~18.04.1","5.4.0-1019.21~18.04.1","5.4.0-1020.22~18.04.1","5.4.0-1021.23~18.04.1","5.4.0-1023.25~18.04.1","5.4.0-1026.29~18.04.1","5.4.0-1028.32~18.04.1","5.4.0-1029.33~18.04.1","5.4.0-1031.35~18.04.1","5.4.0-1032.36~18.04.1","5.4.0-1033.37~18.04.1","5.4.0-1034.38~18.04.1","5.4.0-1036.41~18.04.1","5.4.0-1037.42~18.04.1","5.4.0-1040.45~18.04.2","5.4.0-1041.46~18.04.1","5.4.0-1042.47~18.04.1","5.4.0-1044.49~18.04.1","5.4.0-1045.50~18.04.1","5.4.0-1046.51~18.04.1","5.4.0-1047.52~18.04.1","5.4.0-1048.53~18.04.1","5.4.0-1049.54~18.04.1","5.4.0-1050.55~18.04.1","5.4.0-1051.56~18.04.1","5.4.0-1052.57~18.04.1","5.4.0-1053.58~18.04.1","5.4.0-1054.59~18.04.1","5.4.0-1056.61~18.04.1","5.4.0-1057.62~18.04.1","5.4.0-1058.63~18.04.1","5.4.0-1059.64~18.04.1","5.4.0-1060.65~18.04.1","5.4.0-1061.66~18.04.1","5.4.0-1063.68~18.04.1","5.4.0-1064.69~18.04.1","5.4.0-1065.70~18.04.1","5.4.0-1066.71~18.04.1","5.4.0-1067.72~18.04.1","5.4.0-1068.73~18.04.1","5.4.0-1069.74~18.04.1","5.4.0-1070.75~18.04.1","5.4.0-1071.76~18.04.1","5.4.0-1072.77~18.04.1","5.4.0-1073.78~18.04.1","5.4.0-1074.79~18.04.1","5.4.0-1075.80~18.04.1","5.4.0-1076.81~18.04.1","5.4.0-1077.82~18.04.1","5.4.0-1078.83~18.04.1","5.4.0-1079.84~18.04.1","5.4.0-1080.85~18.04.1","5.4.0-1081.86~18.04.1","5.4.0-1082.87~18.04.1","5.4.0-1083.88~18.04.1","5.4.0-1084.89~18.04.1","5.4.0-1085.90~18.04.1","5.4.0-1086.91~18.04.1","5.4.0-1090.95~18.04.1","5.4.0-1092.97~18.04.1","5.4.0-1093.98~18.04.1","5.4.0-1094.99~18.04.1","5.4.0-1095.100~18.04.1","5.4.0-1096.101~18.04.1","5.4.0-1097.102~18.04.1","5.4.0-1098.103~18.04.1","5.4.0-1099.104~18.04.1","5.4.0-1100.105~18.04.1"],"ecosystem_specific":{"binaries":[{"binary_version":"5.4.0-1102.107~18.04.1","binary_name":"linux-buildinfo-5.4.0-1102-ibm"},{"binary_version":"5.4.0-1102.107~18.04.1","binary_name":"linux-headers-5.4.0-1102-ibm"},{"binary_version":"5.4.0-1102.107~18.04.1","binary_name":"linux-ibm-5.4-cloud-tools-common"},{"binary_version":"5.4.0-1102.107~18.04.1","binary_name":"linux-ibm-5.4-headers-5.4.0-1102"},{"binary_version":"5.4.0-1102.107~18.04.1","binary_name":"linux-ibm-5.4-source-5.4.0"},{"binary_version":"5.4.0-1102.107~18.04.1","binary_name":"linux-ibm-5.4-tools-5.4.0-1102"},{"binary_version":"5.4.0-1102.107~18.04.1","binary_name":"linux-ibm-5.4-tools-common"},{"binary_version":"5.4.0-1102.107~18.04.1","binary_name":"linux-image-unsigned-5.4.0-1102-ibm"},{"binary_version":"5.4.0-1102.107~18.04.1","binary_name":"linux-modules-5.4.0-1102-ibm"},{"binary_version":"5.4.0-1102.107~18.04.1","binary_name":"linux-modules-extra-5.4.0-1102-ibm"},{"binary_version":"5.4.0-1102.107~18.04.1","binary_name":"linux-tools-5.4.0-1102-ibm"}],"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8098-9.json","cves_map":{"cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2021-47599"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2022-48875"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2022-49072"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2022-49267"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-49927"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"high"}],"id":"CVE-2024-56640"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"high"}],"id":"CVE-2025-21780"},{"severity":[{"type":"Ubuntu","score":"medium"}],"id":"CVE-2025-40215"}],"ecosystem":"Ubuntu:Pro:18.04:LTS"}}}],"schema_version":"1.7.5"}