USN-7796-4
- Source
- https://ubuntu.com/security/notices/USN-7796-4
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7796-4.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/USN-7796-4
- Upstream
- Related
- Published
- 2025-10-13T16:24:55.549515Z
- Modified
- 2025-10-15T08:03:12.835657Z
- Summary
- linux-azure-fips vulnerabilities
- Details
-
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Framebuffer layer; - BTRFS file system; - Ext4 file system; - Network file system (NFS) server daemon; - Packet sockets; - Network traffic control; - VMware vSockets driver; (CVE-2025-38477, CVE-2025-38617, CVE-2025-21796, CVE-2025-38618, CVE-2024-49924, CVE-2024-35849, CVE-2025-37785)
- References
-
- https://ubuntu.com/security/notices/USN-7796-4
- https://ubuntu.com/security/CVE-2024-35849
- https://ubuntu.com/security/CVE-2024-49924
- https://ubuntu.com/security/CVE-2025-21796
- https://ubuntu.com/security/CVE-2025-37785
- https://ubuntu.com/security/CVE-2025-38477
- https://ubuntu.com/security/CVE-2025-38617
- https://ubuntu.com/security/CVE-2025-38618
Affected packages
Ubuntu:Pro:FIPS-updates:18.04:LTS / linux-azure-fips
Package
- Name
- linux-azure-fips
- Purl
- pkg:deb/ubuntu/linux-azure-fips@4.15.0-2102.108?arch=source&distro=fips-updates/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.15.0-2102.108
Affected versions
4.*
4.15.0-1002.2
4.15.0-2006.7
4.15.0-2007.8
4.15.0-2008.9
4.15.0-2009.10
4.15.0-2012.14
4.15.0-2013.15
4.15.0-2015.17
4.15.0-2016.18
4.15.0-2017.20
4.15.0-2018.21
4.15.0-2020.23
4.15.0-2021.24
4.15.0-2022.25
4.15.0-2023.26
4.15.0-2024.27
4.15.0-2025.28
4.15.0-2026.29
4.15.0-2027.30
4.15.0-2030.33
4.15.0-2033.37
4.15.0-2034.38
4.15.0-2035.39
4.15.0-2036.40
4.15.0-2037.41
4.15.0-2038.42
4.15.0-2039.43
4.15.0-2041.45
4.15.0-2042.46
4.15.0-2043.47
4.15.0-2045.49
4.15.0-2046.50
4.15.0-2047.51
4.15.0-2048.52
4.15.0-2049.53
4.15.0-2050.54
4.15.0-2053.58
4.15.0-2056.62
4.15.0-2057.63
4.15.0-2059.65
4.15.0-2060.66
4.15.0-2062.68
4.15.0-2066.72
4.15.0-2067.73
4.15.0-2068.74
4.15.0-2070.76
4.15.0-2071.77
4.15.0-2072.78
4.15.0-2073.79
4.15.0-2074.80
4.15.0-2075.81
4.15.0-2076.82
4.15.0-2077.83
4.15.0-2078.84
4.15.0-2079.85
4.15.0-2080.86
4.15.0-2081.87
4.15.0-2082.88
4.15.0-2084.90
4.15.0-2085.91
4.15.0-2086.92
4.15.0-2087.93
4.15.0-2088.94
4.15.0-2089.95
4.15.0-2090.96
4.15.0-2091.97
4.15.0-2092.98
4.15.0-2093.99
4.15.0-2094.100
4.15.0-2095.101
4.15.0-2096.102
4.15.0-2097.103
4.15.0-2098.104
4.15.0-2099.105
4.15.0-2100.106
4.15.0-2101.107
Ecosystem specific
{
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_version": "4.15.0-2102.108",
"binary_name": "linux-azure-fips-cloud-tools-4.15.0-2102"
},
{
"binary_version": "4.15.0-2102.108",
"binary_name": "linux-azure-fips-headers-4.15.0-2102"
},
{
"binary_version": "4.15.0-2102.108",
"binary_name": "linux-azure-fips-tools-4.15.0-2102"
},
{
"binary_version": "4.15.0-2102.108",
"binary_name": "linux-buildinfo-4.15.0-2102-azure-fips"
},
{
"binary_version": "4.15.0-2102.108",
"binary_name": "linux-cloud-tools-4.15.0-2102-azure-fips"
},
{
"binary_version": "4.15.0-2102.108",
"binary_name": "linux-headers-4.15.0-2102-azure-fips"
},
{
"binary_version": "4.15.0-2102.108",
"binary_name": "linux-image-unsigned-4.15.0-2102-azure-fips"
},
{
"binary_version": "4.15.0-2102.108",
"binary_name": "linux-image-unsigned-hmac-4.15.0-2102-azure-fips"
},
{
"binary_version": "4.15.0-2102.108",
"binary_name": "linux-modules-4.15.0-2102-azure-fips"
},
{
"binary_version": "4.15.0-2102.108",
"binary_name": "linux-modules-extra-4.15.0-2102-azure-fips"
},
{
"binary_version": "4.15.0-2102.108",
"binary_name": "linux-tools-4.15.0-2102-azure-fips"
}
]
}
Database specific
{
"cves_map": {
"ecosystem": "Ubuntu:Pro:FIPS-updates:18.04:LTS",
"cves": [
{
"id": "CVE-2024-35849",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
},
{
"id": "CVE-2024-49924",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
},
{
"id": "CVE-2025-21796",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
},
{
"id": "CVE-2025-37785",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
},
{
"id": "CVE-2025-38477",
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
]
},
{
"id": "CVE-2025-38617",
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
]
},
{
"id": "CVE-2025-38618",
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
]
}
]
}
}