{"id":"USN-8277-2","summary":"linux-oracle-6.17 vulnerabilities","details":"It was discovered that the Linux kernel algif_aead module did not properly\nhandle in-place cryptographic operations. This flaw is known as Copy Fail.\nA local attacker could use this to escalate privileges, or possibly escape\na container. (CVE-2026-31431)\n\nSeveral security issues were discovered in the Linux kernel.\nAn attacker could possibly use these to compromise the system.\nThis update corrects flaws in the following subsystems:\n  - S390 architecture;\n  - Cryptographic API;\n  - GPU drivers;\n  - Ethernet bonding driver;\n  - Network file system (NFS) server daemon;\n  - Distributed Switch Architecture;\n  - Netfilter;\n  - Control group (cgroup);\n  - Kernel kexec() syscall;\n  - Memory management;\n  - MAC80211 subsystem;\n  - Multipath TCP;\n  - Packet sockets;\n  - TLS protocol;\n  - Unix domain sockets;\n(CVE-2025-71088, CVE-2025-71090, CVE-2025-71127, CVE-2025-71134,\nCVE-2025-71139, CVE-2025-71141, CVE-2025-71142, CVE-2025-71144,\nCVE-2025-71152, CVE-2025-71155, CVE-2026-23274, CVE-2026-23351,\nCVE-2026-23394, CVE-2026-31419, CVE-2026-31504, CVE-2026-31533,\nCVE-2026-43033, CVE-2026-43077, CVE-2026-43078)\n","modified":"2026-05-23T01:33:47.422245575Z","published":"2026-05-22T14:05:12Z","related":["UBUNTU-CVE-2025-71088","UBUNTU-CVE-2025-71090","UBUNTU-CVE-2025-71127","UBUNTU-CVE-2025-71134","UBUNTU-CVE-2025-71139","UBUNTU-CVE-2025-71141","UBUNTU-CVE-2025-71142","UBUNTU-CVE-2025-71144","UBUNTU-CVE-2025-71152","UBUNTU-CVE-2025-71155","UBUNTU-CVE-2026-23274","UBUNTU-CVE-2026-23351","UBUNTU-CVE-2026-23394","UBUNTU-CVE-2026-31419","UBUNTU-CVE-2026-31431","UBUNTU-CVE-2026-31504","UBUNTU-CVE-2026-31533","UBUNTU-CVE-2026-43033","UBUNTU-CVE-2026-43077","UBUNTU-CVE-2026-43078"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-8277-2"}],"affected":[{"package":{"name":"linux-oracle-6.17","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/linux-oracle-6.17?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.17.0-1014.14~24.04.1"}]}],"versions":["6.17.0-1004.4~24.04.2","6.17.0-1007.7~24.04.1","6.17.0-1009.9~24.04.1","6.17.0-1010.10~24.04.1","6.17.0-1011.11~24.04.1"],"ecosystem_specific":{"binaries":[{"binary_name":"linux-buildinfo-6.17.0-1014-oracle","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-buildinfo-6.17.0-1014-oracle-64k","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-headers-6.17.0-1014-oracle","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-headers-6.17.0-1014-oracle-64k","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-image-unsigned-6.17.0-1014-oracle","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-image-unsigned-6.17.0-1014-oracle-64k","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-modules-6.17.0-1014-oracle","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-modules-6.17.0-1014-oracle-64k","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-modules-extra-6.17.0-1014-oracle","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-modules-extra-6.17.0-1014-oracle-64k","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-oracle-6.17-headers-6.17.0-1014","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-oracle-6.17-tools-6.17.0-1014","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-tools-6.17.0-1014-oracle","binary_version":"6.17.0-1014.14~24.04.1"},{"binary_name":"linux-tools-6.17.0-1014-oracle-64k","binary_version":"6.17.0-1014.14~24.04.1"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8277-2.json","cves_map":{"cves":[],"ecosystem":"Ubuntu:24.04:LTS"}}}],"schema_version":"1.7.5"}