<?xml version='1.0' encoding='UTF-8'?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0"><channel><title>Ubuntu security notices</title><link>https://ubuntu.com/security/notices/rss.xml</link><description>Recent content on Ubuntu security notices</description><atom:link href="https://ubuntu.com/security/notices/rss.xml" rel="self"/><copyright>2026 Canonical Ltd. Ubuntu and Canonical are registered trademarks of Canonical Ltd.</copyright><docs>http://www.rssboard.org/rss-specification</docs><generator>Feedgen</generator><lastBuildDate>Thu, 02 Jul 2026 18:33:33 +0000</lastBuildDate><item><title>USN-8501-1: Linux kernel vulnerabilities</title><link>https://ubuntu.com/security/notices/USN-8501-1</link><description>It was discovered that a logic flaw existed in the XFRM ESP-in-TCP
subsystem in the Linux kernel when handling socket buffer fragments. This
flaw is known as Fragnesia. A local attacker could use this to escalate
privileges, or possibly escape a container. (CVE-2026-43503)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
  - USB over IP driver;
  - Network file system (NFS) server daemon;
  - SMB network file system;
  - Tracing infrastructure;
  - Ethernet bridge;
  - Ceph Core library;
  - IPv4 networking;
  - IPv6 networking;
  - Netfilter;
  - RxRPC session sockets;
  - X.25 network layer;
(CVE-2024-35896, CVE-2026-23455, CVE-2026-31402, CVE-2026-31607,
CVE-2026-31637, CVE-2026-43011, CVE-2026-43037, CVE-2026-43038,
CVE-2026-43383, CVE-2026-43407, CVE-2026-45988, CVE-2026-46119,
CVE-2026-46243)
</description><guid isPermaLink="false">https://ubuntu.com/security/notices/USN-8501-1</guid><pubDate>Thu, 02 Jul 2026 16:14:41 +0000</pubDate></item><item><title>USN-8493-2: Linux kernel (Oracle) vulnerabilities</title><link>https://ubuntu.com/security/notices/USN-8493-2</link><description>Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
  - RISC-V architecture;
  - Cryptographic API;
  - InfiniBand drivers;
  - IOMMU subsystem;
  - Network drivers;
  - STMicroelectronics network drivers;
  - NVME drivers;
  - x86 platform drivers;
  - SCSI subsystem;
  - SPI subsystem;
  - TCM subsystem;
  - USB over IP driver;
  - File systems infrastructure;
  - HFS+ file system;
  - Network file system (NFS) server daemon;
  - SMB network file system;
  - IPv6 networking;
  - Tracing infrastructure;
  - Timer subsystem;
  - B.A.T.M.A.N. meshing protocol;
  - Bluetooth subsystem;
  - Ethernet bridge;
  - Ceph Core library;
  - IPv4 networking;
  - MAC80211 subsystem;
  - Multipath TCP;
  - Netfilter;
  - RxRPC session sockets;
  - SMC sockets;
  - Sun RPC protocol;
  - X.25 network layer;
  - AMD SoC Alsa drivers;
  - KVM subsystem;
(CVE-2022-48816, CVE-2023-53673, CVE-2025-37778, CVE-2025-37822,
CVE-2025-37924, CVE-2025-38201, CVE-2025-40082, CVE-2025-68214,
CVE-2025-68263, CVE-2025-71089, CVE-2025-71220, CVE-2025-71222,
CVE-2025-71224, CVE-2026-23176, CVE-2026-23180, CVE-2026-23182,
CVE-2026-23190, CVE-2026-23193, CVE-2026-23198, CVE-2026-23202,
CVE-2026-23206, CVE-2026-23216, CVE-2026-23256, CVE-2026-23257,
CVE-2026-23258, CVE-2026-23262, CVE-2026-23272, CVE-2026-23278,
CVE-2026-23428, CVE-2026-23450, CVE-2026-23455, CVE-2026-31402,
CVE-2026-31418, CVE-2026-31478, CVE-2026-31607, CVE-2026-31637,
CVE-2026-31649, CVE-2026-31657, CVE-2026-31659, CVE-2026-31668,
CVE-2026-31669, CVE-2026-31682, CVE-2026-31685, CVE-2026-43011,
CVE-2026-43037, CVE-2026-43038, CVE-2026-43071, CVE-2026-43114,
CVE-2026-43117, CVE-2026-43186, CVE-2026-43304, CVE-2026-43341,
CVE-2026-43383, CVE-2026-43406, CVE-2026-43407, CVE-2026-43414,
CVE-2026-43493, CVE-2026-43501, CVE-2026-45988, CVE-2026-46043,
CVE-2026-46119, CVE-2026-46135, CVE-2026-46195, CVE-2026-46243)
</description><guid isPermaLink="false">https://ubuntu.com/security/notices/USN-8493-2</guid><pubDate>Thu, 02 Jul 2026 16:07:52 +0000</pubDate></item><item><title>USN-8499-1: Linux kernel (Xilinx) vulnerabilities</title><link>https://ubuntu.com/security/notices/USN-8499-1</link><description>It was discovered that the Linux kernel algif_aead module did not properly
handle in-place cryptographic operations. This flaw is known as Copy Fail.
A local attacker could use this to escalate privileges, or possibly escape
a container. (CVE-2026-31431)

It was discovered that the Linux kernel did not properly handle shared page
fragments during socket buffer operations, collectively known as Dirty
Frag. A logic flaw existed in the XFRM ESP-in-TCP subsystem and in the
RxRPC networking subsystem when processing paged fragments. A local
attacker could use this to escalate privileges, or possibly escape a
container. (CVE-2026-43284, CVE-2026-43500, CVE-2026-45998, CVE-2026-46000)

It was discovered that a logic flaw existed in the XFRM ESP-in-TCP
subsystem in the Linux kernel when handling socket buffer fragments. This
flaw is known as Fragnesia. A local attacker could use this to escalate
privileges, or possibly escape a container. (CVE-2026-43503,
CVE-2026-46300)

Qualys discovered that a race condition existed in the ptrace subsystem of
the Linux kernel when privileged processes are exiting. An unprivileged
local attacker could use this issue to expose sensitive information.
(CVE-2026-46333)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contain a memory leak when handling AppArmor notifications. A local
attacker could use this to cause resource exhaustion. (CVE-2026-47326)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contain a NULL pointer dereference when handling AppArmor notifications. A
local attacker could use this to cause a kernel oops. (CVE-2026-47327)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained an invalid free when handling AppArmor notifications. A local
attacker could use this to corrupt kernel memory. (CVE-2026-47328)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained insufficient validation of AppArmor notification responses. A
local attacker could use this to allow crafted responses to be processed.
(CVE-2026-47329)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0 used
an uninitialized variable when handling AppArmor notifications. A local
attacker could use this to cause incorrect caching of data.
(CVE-2026-47330)

Tristan Madani discovered that Ubuntu Linux kernel 6.8 contained a use-
after-free (UAF) bug. A local attacker could use this to cause memory
corruption and, theoretically, arbitrary code execution. (CVE-2026-47331)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained an out-of-bounds (OOB) read when handling AppArmor notifications.
A local attacker could use this to cause information disclosure of kernel
memory. (CVE-2026-47332)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained a out-of-bounds (OOB) read when handling AppArmor notifications.
A local attacker could use this to cause kernel memory corruption and,
theoretically, influence processing of AppArmor policies. (CVE-2026-47333)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained incorrect holding of locks when handling AppArmor notifications.
A local attacker could use this to cause a kernel panic or deadlock.
(CVE-2026-47334)

Tristan Madani discovered that Ubuntu Linux kernel 6.8 contained a NULL
pointer dereference when handling AppArmor notifications. A local attacker
could use this to cause a kernel panic. (CVE-2026-47335)

Tristan Madani discovered that Ubuntu Linux kernel 6.8 used an
uninitialized variable when handling AppArmor AF_INET/AF_INET6 socket
mediation. A local attacker could use this to influence processing of fine-
grained network socket mediation. (CVE-2026-47336)

Tristan Madani and Trevor Lawrence have each independently discovered that
Ubuntu Linux kernel 6.8, 6.17 and 7.0 contained a NULL pointer dereference
when handling AppArmor network socket mediation. A local attacker could use
this to cause a kernel oops. (CVE-2026-47337)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
  - Foo-over-UDP (FOU);
  - ARM64 architecture;
  - MIPS architecture;
  - PowerPC architecture;
  - x86 architecture;
  - Block layer subsystem;
  - Cryptographic API;
  - Intel NPU Driver;
  - ACPI drivers;
  - ATM drivers;
  - Drivers core;
  - Null block device driver;
  - RNBD block device driver;
  - Ublk userspace block driver;
  - Bluetooth drivers;
  - Bus devices;
  - Character device driver;
  - TPM device driver;
  - Clock framework and drivers;
  - Clocksource drivers;
  - Counter interface drivers;
  - CPU idle management framework;
  - Hardware crypto device drivers;
  - DMA engine subsystem;
  - DPLL subsystem;
  - EFI core;
  - GPIO subsystem;
  - GPU drivers;
  - HID subsystem;
  - Hardware monitoring drivers;
  - Intel Trace Hub HW tracing drivers;
  - IIO subsystem;
  - IIO ADC drivers;
  - InfiniBand drivers;
  - On-Chip Interconnect management framework;
  - IOMMU subsystem;
  - IRQ chip drivers;
  - Modular ISDN driver;
  - LED subsystem;
  - Multiple devices driver;
  - Media drivers;
  - Multifunction device drivers;
  - Broadcom VK accelerator driver;
  - UACCE accelerator framework;
  - MMC subsystem;
  - MOST (Media Oriented Systems Transport) drivers;
  - MTD block device drivers;
  - Ethernet bonding driver;
  - Network drivers;
  - Mellanox network drivers;
  - STMicroelectronics network drivers;
  - NTB driver;
  - NVME drivers;
  - PCI subsystem;
  - Performance monitor drivers;
  - PHY drivers;
  - Pin controllers subsystem;
  - x86 platform drivers;
  - i.MX PM domains;
  - Power supply drivers;
  - RapidIO drivers;
  - RAS (Reliability, Availability, Serviceability) subsystem;
  - Remote Processor subsystem;
  - RPMSG subsystem;
  - S/390 drivers;
  - SCSI subsystem;
  - SLIMbus drivers;
  - MediaTek SoC drivers;
  - Texas Instruments SoC drivers;
  - SPI subsystem;
  - Greybus lights staging drivers;
  - Realtek RTL8723BS SDIO drivers;
  - TCM subsystem;
  - UFS subsystem;
  - ChipIdea USB driver;
  - DesignWare USB3 driver;
  - USB over IP driver;
  - vDPA drivers;
  - Virtio Host (VHOST) subsystem;
  - Framebuffer layer;
  - W1 Dallas's 1-wire bus driver;
  - Xen hypervisor drivers;
  - BTRFS file system;
  - File systems infrastructure;
  - Ceph distributed file system;
  - EFI Variable file system;
  - exFAT file system;
  - Ext4 file system;
  - F2FS file system;
  - FAT file system;
  - GFS2 file system;
  - HFS+ file system;
  - JFS file system;
  - Network file system (NFS) client;
  - Network file system (NFS) server daemon;
  - NILFS2 file system;
  - NTFS3 file system;
  - OCFS2 file system;
  - Proc file system;
  - Pstore file system;
  - Diskquota system;
  - SMB network file system;
  - XFS file system;
  - Audit subsystem;
  - Memory Management;
  - Scheduler infrastructure;
  - IPv6 networking;
  - Netfilter;
  - NFC subsystem;
  - Tracing infrastructure;
  - io_uring subsystem;
  - BPF subsystem;
  - Perf events;
  - Kernel kexec() syscall;
  - RCU subsystem;
  - Floating proportions library;
  - Scatterlist API;
  - Memory management;
  - 9P file system network protocol;
  - Asynchronous Transfer Mode (ATM) subsystem;
  - B.A.T.M.A.N. meshing protocol;
  - Bluetooth subsystem;
  - Ethernet bridge;
  - CAN network layer;
  - Ceph Core library;
  - Networking core;
  - IPv4 networking;
  - KCM (Kernel Connection Multiplexor) sockets driver;
  - L2TP protocol;
  - MAC80211 subsystem;
  - Multipath TCP;
  - NET/ROM layer;
  - Packet sockets;
  - RDS protocol;
  - RxRPC session sockets;
  - Network traffic control;
  - SCTP protocol;
  - SMC sockets;
  - Sun RPC protocol;
  - TLS protocol;
  - Unix domain sockets;
  - VMware vSockets driver;
  - Wireless networking;
  - X.25 network layer;
  - XFRM subsystem;
  - AppArmor security module;
  - Simplified Mandatory Access Control Kernel framework;
  - ALSA AC97 driver;
  - Generic PCM loopback sound driver;
  - Creative Sound Blaster X-Fi driver;
  - AMD SoC Alsa drivers;
  - Texas InstrumentS Audio (ASoC/HDA) drivers;
  - SOF drivers;
  - USB sound devices;
  - KVM subsystem;
(CVE-2024-50004, CVE-2024-58096, CVE-2024-58097, CVE-2025-37926,
CVE-2025-38201, CVE-2025-38591, CVE-2025-40005, CVE-2025-40039,
CVE-2025-40082, CVE-2025-40149, CVE-2025-68351, CVE-2025-68358,
CVE-2025-68365, CVE-2025-68725, CVE-2025-68749, CVE-2025-68803,
CVE-2025-68823, CVE-2025-71160, CVE-2025-71162, CVE-2025-71163,
CVE-2025-71180, CVE-2025-71182, CVE-2025-71183, CVE-2025-71184,
CVE-2025-71185, CVE-2025-71186, CVE-2025-71188, CVE-2025-71189,
CVE-2025-71190, CVE-2025-71191, CVE-2025-71192, CVE-2025-71193,
CVE-2025-71194, CVE-2025-71195, CVE-2025-71196, CVE-2025-71197,
CVE-2025-71198, CVE-2025-71199, CVE-2025-71200, CVE-2025-71220,
CVE-2025-71222, CVE-2025-71224, CVE-2025-71225, CVE-2025-71229,
CVE-2025-71231, CVE-2025-71232, CVE-2025-71233, CVE-2025-71235,
CVE-2025-71236, CVE-2025-71237, CVE-2025-71238, CVE-2025-71239,
CVE-2025-71265, CVE-2025-71266, CVE-2025-71267, CVE-2025-71268,
CVE-2025-71272, CVE-2025-71273, CVE-2025-71274, CVE-2025-71286,
CVE-2025-71291, CVE-2025-71292, CVE-2025-71294, CVE-2025-71295,
CVE-2025-71297, CVE-2025-71304, CVE-2025-71305, CVE-2026-22976,
CVE-2026-22977, CVE-2026-22978, CVE-2026-22979, CVE-2026-22980,
CVE-2026-22982, CVE-2026-22984, CVE-2026-22990, CVE-2026-22991,
CVE-2026-22992, CVE-2026-22994, CVE-2026-22996, CVE-2026-22997,
CVE-2026-22998, CVE-2026-22999, CVE-2026-23000, CVE-2026-23001,
CVE-2026-23003, CVE-2026-23005, CVE-2026-23006, CVE-2026-23010,
CVE-2026-23011, CVE-2026-23019, CVE-2026-23020, CVE-2026-23021,
CVE-2026-23025, CVE-2026-23026, CVE-2026-23030, CVE-2026-23031,
CVE-2026-23032, CVE-2026-23033, CVE-2026-23035, CVE-2026-23037,
CVE-2026-23038, CVE-2026-23047, CVE-2026-23049, CVE-2026-23050,
CVE-2026-23053, CVE-2026-23054, CVE-2026-23056, CVE-2026-23057,
CVE-2026-23058, CVE-2026-23059, CVE-2026-23061, CVE-2026-23062,
CVE-2026-23063, CVE-2026-23064, CVE-2026-23065, CVE-2026-23068,
CVE-2026-23069, CVE-2026-23071, CVE-2026-23073, CVE-2026-23075,
CVE-2026-23076, CVE-2026-23078, CVE-2026-23080, CVE-2026-23083,
CVE-2026-23084, CVE-2026-23085, CVE-2026-23086, CVE-2026-23087,
CVE-2026-23088, CVE-2026-23089, CVE-2026-23090, CVE-2026-23091,
CVE-2026-23093, CVE-2026-23094, CVE-2026-23095, CVE-2026-23096,
CVE-2026-23097, CVE-2026-23098, CVE-2026-23099, CVE-2026-23100,
CVE-2026-23101, CVE-2026-23102, CVE-2026-23103, CVE-2026-23105,
CVE-2026-23107, CVE-2026-23108, CVE-2026-23110, CVE-2026-23113,
CVE-2026-23116, CVE-2026-23119, CVE-2026-23120, CVE-2026-23121,
CVE-2026-23123, CVE-2026-23124, CVE-2026-23125, CVE-2026-23126,
CVE-2026-23128, CVE-2026-23129, CVE-2026-23131, CVE-2026-23133,
CVE-2026-23135, CVE-2026-23136, CVE-2026-23139, CVE-2026-23140,
CVE-2026-23141, CVE-2026-23142, CVE-2026-23144, CVE-2026-23145,
CVE-2026-23146, CVE-2026-23148, CVE-2026-23150, CVE-2026-23151,
CVE-2026-23156, CVE-2026-23159, CVE-2026-23160, CVE-2026-23163,
CVE-2026-23164, CVE-2026-23166, CVE-2026-23167, CVE-2026-23168,
CVE-2026-23169, CVE-2026-23170, CVE-2026-23172, CVE-2026-23173,
CVE-2026-23176, CVE-2026-23178, CVE-2026-23179, CVE-2026-23180,
CVE-2026-23182, CVE-2026-23187, CVE-2026-23190, CVE-2026-23191,
CVE-2026-23193, CVE-2026-23198, CVE-2026-23200, CVE-2026-23202,
CVE-2026-23204, CVE-2026-23205, CVE-2026-23206, CVE-2026-23212,
CVE-2026-23213, CVE-2026-23214, CVE-2026-23215, CVE-2026-23216,
CVE-2026-23220, CVE-2026-23221, CVE-2026-23222, CVE-2026-23228,
CVE-2026-23229, CVE-2026-23230, CVE-2026-23233, CVE-2026-23234,
CVE-2026-23235, CVE-2026-23236, CVE-2026-23237, CVE-2026-23238,
CVE-2026-23241, CVE-2026-23242, CVE-2026-23243, CVE-2026-23249,
CVE-2026-23254, CVE-2026-23256, CVE-2026-23257, CVE-2026-23258,
CVE-2026-23260, CVE-2026-23261, CVE-2026-23262, CVE-2026-23264,
CVE-2026-23266, CVE-2026-23267, CVE-2026-23272, CVE-2026-23274,
CVE-2026-23278, CVE-2026-23351, CVE-2026-23392, CVE-2026-23394,
CVE-2026-23428, CVE-2026-23450, CVE-2026-23455, CVE-2026-31402,
CVE-2026-31411, CVE-2026-31418, CVE-2026-31419, CVE-2026-31436,
CVE-2026-31448, CVE-2026-31478, CVE-2026-31504, CVE-2026-31533,
CVE-2026-31607, CVE-2026-31637, CVE-2026-31649, CVE-2026-31657,
CVE-2026-31659, CVE-2026-31668, CVE-2026-31669, CVE-2026-31676,
CVE-2026-31682, CVE-2026-31685, CVE-2026-31687, CVE-2026-31693,
CVE-2026-43011, CVE-2026-43033, CVE-2026-43037, CVE-2026-43038,
CVE-2026-43071, CVE-2026-43077, CVE-2026-43078, CVE-2026-43114,
CVE-2026-43117, CVE-2026-43123, CVE-2026-43124, CVE-2026-43128,
CVE-2026-43130, CVE-2026-43132, CVE-2026-43133, CVE-2026-43134,
CVE-2026-43135, CVE-2026-43136, CVE-2026-43137, CVE-2026-43139,
CVE-2026-43140, CVE-2026-43141, CVE-2026-43143, CVE-2026-43145,
CVE-2026-43147, CVE-2026-43148, CVE-2026-43149, CVE-2026-43150,
CVE-2026-43152, CVE-2026-43153, CVE-2026-43156, CVE-2026-43157,
CVE-2026-43158, CVE-2026-43159, CVE-2026-43163, CVE-2026-43167,
CVE-2026-43168, CVE-2026-43169, CVE-2026-43170, CVE-2026-43171,
CVE-2026-43173, CVE-2026-43175, CVE-2026-43180, CVE-2026-43182,
CVE-2026-43183, CVE-2026-43184, CVE-2026-43186, CVE-2026-43187,
CVE-2026-43189, CVE-2026-43190, CVE-2026-43194, CVE-2026-43196,
CVE-2026-43199, CVE-2026-43200, CVE-2026-43201, CVE-2026-43202,
CVE-2026-43203, CVE-2026-43205, CVE-2026-43206, CVE-2026-43207,
CVE-2026-43209, CVE-2026-43211, CVE-2026-43212, CVE-2026-43214,
CVE-2026-43215, CVE-2026-43218, CVE-2026-43221, CVE-2026-43222,
CVE-2026-43223, CVE-2026-43225, CVE-2026-43226, CVE-2026-43227,
CVE-2026-43230, CVE-2026-43231, CVE-2026-43232, CVE-2026-43233,
CVE-2026-43236, CVE-2026-43238, CVE-2026-43239, CVE-2026-43241,
CVE-2026-43242, CVE-2026-43244, CVE-2026-43246, CVE-2026-43248,
CVE-2026-43249, CVE-2026-43250, CVE-2026-43251, CVE-2026-43253,
CVE-2026-43255, CVE-2026-43256, CVE-2026-43257, CVE-2026-43258,
CVE-2026-43261, CVE-2026-43262, CVE-2026-43264, CVE-2026-43266,
CVE-2026-43268, CVE-2026-43269, CVE-2026-43270, CVE-2026-43271,
CVE-2026-43273, CVE-2026-43275, CVE-2026-43277, CVE-2026-43278,
CVE-2026-43279, CVE-2026-43283, CVE-2026-43287, CVE-2026-43288,
CVE-2026-43289, CVE-2026-43291, CVE-2026-43295, CVE-2026-43296,
CVE-2026-43297, CVE-2026-43300, CVE-2026-43302, CVE-2026-43304,
CVE-2026-43312, CVE-2026-43313, CVE-2026-43314, CVE-2026-43315,
CVE-2026-43316, CVE-2026-43317, CVE-2026-43318, CVE-2026-43319,
CVE-2026-43320, CVE-2026-43341, CVE-2026-43378, CVE-2026-43383,
CVE-2026-43384, CVE-2026-43406, CVE-2026-43407, CVE-2026-43414,
CVE-2026-43493, CVE-2026-43494, CVE-2026-43501, CVE-2026-45847,
CVE-2026-45848, CVE-2026-45849, CVE-2026-45851, CVE-2026-45852,
CVE-2026-45856, CVE-2026-45857, CVE-2026-45859, CVE-2026-45860,
CVE-2026-45861, CVE-2026-45862, CVE-2026-45864, CVE-2026-45865,
CVE-2026-45866, CVE-2026-45867, CVE-2026-45868, CVE-2026-45869,
CVE-2026-45870, CVE-2026-45871, CVE-2026-45872, CVE-2026-45873,
CVE-2026-45875, CVE-2026-45877, CVE-2026-45878, CVE-2026-45879,
CVE-2026-45880, CVE-2026-45881, CVE-2026-45882, CVE-2026-45883,
CVE-2026-45884, CVE-2026-45885, CVE-2026-45886, CVE-2026-45890,
CVE-2026-45891, CVE-2026-45893, CVE-2026-45895, CVE-2026-45902,
CVE-2026-45904, CVE-2026-45905, CVE-2026-45910, CVE-2026-45912,
CVE-2026-45913, CVE-2026-45914, CVE-2026-45915, CVE-2026-45916,
CVE-2026-45917, CVE-2026-45919, CVE-2026-45921, CVE-2026-45923,
CVE-2026-45928, CVE-2026-45935, CVE-2026-45936, CVE-2026-45938,
CVE-2026-45941, CVE-2026-45946, CVE-2026-45947, CVE-2026-45948,
CVE-2026-45954, CVE-2026-45957, CVE-2026-45960, CVE-2026-45962,
CVE-2026-45964, CVE-2026-45965, CVE-2026-45968, CVE-2026-45969,
CVE-2026-45970, CVE-2026-45973, CVE-2026-45974, CVE-2026-45976,
CVE-2026-45978, CVE-2026-45981, CVE-2026-45982, CVE-2026-45983,
CVE-2026-45984, CVE-2026-45988, CVE-2026-46028, CVE-2026-46043,
CVE-2026-46115, CVE-2026-46119, CVE-2026-46135, CVE-2026-46185,
CVE-2026-46195, CVE-2026-46243, CVE-2026-46244, CVE-2026-46246,
CVE-2026-46247, CVE-2026-46249, CVE-2026-46250, CVE-2026-46251,
CVE-2026-46253, CVE-2026-46254, CVE-2026-46255, CVE-2026-46259,
CVE-2026-46261, CVE-2026-46265, CVE-2026-46266, CVE-2026-46267,
CVE-2026-46270, CVE-2026-46289, CVE-2026-46323, CVE-2026-46328)
</description><guid isPermaLink="false">https://ubuntu.com/security/notices/USN-8499-1</guid><pubDate>Thu, 02 Jul 2026 15:56:51 +0000</pubDate></item><item><title>USN-8498-1: Linux kernel (NVIDIA Tegra) vulnerabilities</title><link>https://ubuntu.com/security/notices/USN-8498-1</link><description>Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
  - ARM64 architecture;
  - MIPS architecture;
  - PowerPC architecture;
  - x86 architecture;
  - Block layer subsystem;
  - Cryptographic API;
  - ACPI drivers;
  - ATM drivers;
  - RNBD block device driver;
  - Ublk userspace block driver;
  - Bus devices;
  - Character device driver;
  - TPM device driver;
  - Clock framework and drivers;
  - Clocksource drivers;
  - CPU idle management framework;
  - Hardware crypto device drivers;
  - DMA engine subsystem;
  - EFI core;
  - GPIO subsystem;
  - GPU drivers;
  - HID subsystem;
  - Hardware monitoring drivers;
  - IIO subsystem;
  - InfiniBand drivers;
  - IOMMU subsystem;
  - Multiple devices driver;
  - Media drivers;
  - Multifunction device drivers;
  - Broadcom VK accelerator driver;
  - MOST (Media Oriented Systems Transport) drivers;
  - MTD block device drivers;
  - Ethernet bonding driver;
  - Network drivers;
  - Mellanox network drivers;
  - STMicroelectronics network drivers;
  - NTB driver;
  - NVME drivers;
  - PCI subsystem;
  - Performance monitor drivers;
  - Pin controllers subsystem;
  - x86 platform drivers;
  - Power supply drivers;
  - RapidIO drivers;
  - RAS (Reliability, Availability, Serviceability) subsystem;
  - Remote Processor subsystem;
  - RPMSG subsystem;
  - S/390 drivers;
  - SCSI subsystem;
  - MediaTek SoC drivers;
  - Texas Instruments SoC drivers;
  - SPI subsystem;
  - Greybus lights staging drivers;
  - Realtek RTL8723BS SDIO drivers;
  - UFS subsystem;
  - ChipIdea USB driver;
  - DesignWare USB3 driver;
  - USB over IP driver;
  - vDPA drivers;
  - Virtio Host (VHOST) subsystem;
  - Framebuffer layer;
  - BTRFS file system;
  - File systems infrastructure;
  - Ceph distributed file system;
  - Ext4 file system;
  - F2FS file system;
  - FAT file system;
  - GFS2 file system;
  - HFS+ file system;
  - JFS file system;
  - Network file system (NFS) server daemon;
  - NILFS2 file system;
  - NTFS3 file system;
  - OCFS2 file system;
  - Proc file system;
  - Pstore file system;
  - Diskquota system;
  - SMB network file system;
  - XFS file system;
  - Audit subsystem;
  - Memory Management;
  - IPv6 networking;
  - Netfilter;
  - Tracing infrastructure;
  - Kernel kexec() syscall;
  - RCU subsystem;
  - Scheduler infrastructure;
  - Scatterlist API;
  - 9P file system network protocol;
  - Asynchronous Transfer Mode (ATM) subsystem;
  - B.A.T.M.A.N. meshing protocol;
  - Bluetooth subsystem;
  - Ethernet bridge;
  - Ceph Core library;
  - Networking core;
  - IPv4 networking;
  - KCM (Kernel Connection Multiplexor) sockets driver;
  - Multipath TCP;
  - NFC subsystem;
  - RDS protocol;
  - RxRPC session sockets;
  - Network traffic control;
  - SMC sockets;
  - Sun RPC protocol;
  - X.25 network layer;
  - XFRM subsystem;
  - AppArmor security module;
  - Simplified Mandatory Access Control Kernel framework;
  - SOF drivers;
  - USB sound devices;
(CVE-2025-40005, CVE-2025-71229, CVE-2025-71231, CVE-2025-71232,
CVE-2025-71235, CVE-2025-71236, CVE-2025-71237, CVE-2025-71238,
CVE-2025-71239, CVE-2025-71265, CVE-2025-71266, CVE-2025-71267,
CVE-2025-71272, CVE-2025-71273, CVE-2025-71274, CVE-2025-71286,
CVE-2025-71291, CVE-2025-71292, CVE-2025-71294, CVE-2025-71295,
CVE-2025-71297, CVE-2025-71304, CVE-2025-71305, CVE-2026-23100,
CVE-2026-23169, CVE-2026-23220, CVE-2026-23221, CVE-2026-23222,
CVE-2026-23228, CVE-2026-23229, CVE-2026-23230, CVE-2026-23233,
CVE-2026-23234, CVE-2026-23235, CVE-2026-23236, CVE-2026-23237,
CVE-2026-23238, CVE-2026-23241, CVE-2026-23242, CVE-2026-23243,
CVE-2026-23249, CVE-2026-23266, CVE-2026-23267, CVE-2026-23272,
CVE-2026-23278, CVE-2026-23392, CVE-2026-23428, CVE-2026-23450,
CVE-2026-23455, CVE-2026-31402, CVE-2026-31411, CVE-2026-31418,
CVE-2026-31436, CVE-2026-31448, CVE-2026-31478, CVE-2026-31607,
CVE-2026-31637, CVE-2026-31649, CVE-2026-31657, CVE-2026-31659,
CVE-2026-31668, CVE-2026-31669, CVE-2026-31682, CVE-2026-31685,
CVE-2026-31687, CVE-2026-31693, CVE-2026-43011, CVE-2026-43037,
CVE-2026-43038, CVE-2026-43071, CVE-2026-43114, CVE-2026-43117,
CVE-2026-43123, CVE-2026-43124, CVE-2026-43128, CVE-2026-43130,
CVE-2026-43132, CVE-2026-43133, CVE-2026-43134, CVE-2026-43135,
CVE-2026-43136, CVE-2026-43137, CVE-2026-43139, CVE-2026-43140,
CVE-2026-43141, CVE-2026-43143, CVE-2026-43145, CVE-2026-43147,
CVE-2026-43148, CVE-2026-43149, CVE-2026-43150, CVE-2026-43152,
CVE-2026-43153, CVE-2026-43156, CVE-2026-43157, CVE-2026-43158,
CVE-2026-43159, CVE-2026-43163, CVE-2026-43167, CVE-2026-43168,
CVE-2026-43169, CVE-2026-43170, CVE-2026-43171, CVE-2026-43173,
CVE-2026-43175, CVE-2026-43180, CVE-2026-43182, CVE-2026-43183,
CVE-2026-43184, CVE-2026-43186, CVE-2026-43187, CVE-2026-43189,
CVE-2026-43190, CVE-2026-43194, CVE-2026-43196, CVE-2026-43199,
CVE-2026-43201, CVE-2026-43202, CVE-2026-43203, CVE-2026-43205,
CVE-2026-43206, CVE-2026-43207, CVE-2026-43209, CVE-2026-43211,
CVE-2026-43212, CVE-2026-43214, CVE-2026-43215, CVE-2026-43218,
CVE-2026-43221, CVE-2026-43222, CVE-2026-43223, CVE-2026-43225,
CVE-2026-43226, CVE-2026-43227, CVE-2026-43230, CVE-2026-43231,
CVE-2026-43232, CVE-2026-43233, CVE-2026-43236, CVE-2026-43238,
CVE-2026-43239, CVE-2026-43241, CVE-2026-43242, CVE-2026-43244,
CVE-2026-43246, CVE-2026-43248, CVE-2026-43249, CVE-2026-43250,
CVE-2026-43251, CVE-2026-43253, CVE-2026-43255, CVE-2026-43256,
CVE-2026-43257, CVE-2026-43258, CVE-2026-43261, CVE-2026-43262,
CVE-2026-43264, CVE-2026-43266, CVE-2026-43268, CVE-2026-43269,
CVE-2026-43270, CVE-2026-43271, CVE-2026-43273, CVE-2026-43275,
CVE-2026-43277, CVE-2026-43278, CVE-2026-43279, CVE-2026-43283,
CVE-2026-43287, CVE-2026-43288, CVE-2026-43289, CVE-2026-43291,
CVE-2026-43295, CVE-2026-43296, CVE-2026-43297, CVE-2026-43300,
CVE-2026-43302, CVE-2026-43304, CVE-2026-43312, CVE-2026-43313,
CVE-2026-43314, CVE-2026-43315, CVE-2026-43316, CVE-2026-43317,
CVE-2026-43318, CVE-2026-43319, CVE-2026-43320, CVE-2026-43341,
CVE-2026-43378, CVE-2026-43383, CVE-2026-43384, CVE-2026-43406,
CVE-2026-43407, CVE-2026-43414, CVE-2026-43493, CVE-2026-43501,
CVE-2026-45847, CVE-2026-45848, CVE-2026-45849, CVE-2026-45851,
CVE-2026-45852, CVE-2026-45856, CVE-2026-45857, CVE-2026-45859,
CVE-2026-45860, CVE-2026-45861, CVE-2026-45862, CVE-2026-45864,
CVE-2026-45865, CVE-2026-45866, CVE-2026-45867, CVE-2026-45868,
CVE-2026-45869, CVE-2026-45870, CVE-2026-45871, CVE-2026-45872,
CVE-2026-45873, CVE-2026-45875, CVE-2026-45877, CVE-2026-45878,
CVE-2026-45879, CVE-2026-45880, CVE-2026-45881, CVE-2026-45882,
CVE-2026-45883, CVE-2026-45884, CVE-2026-45885, CVE-2026-45886,
CVE-2026-45890, CVE-2026-45891, CVE-2026-45893, CVE-2026-45895,
CVE-2026-45902, CVE-2026-45904, CVE-2026-45905, CVE-2026-45910,
CVE-2026-45912, CVE-2026-45913, CVE-2026-45914, CVE-2026-45915,
CVE-2026-45916, CVE-2026-45917, CVE-2026-45919, CVE-2026-45921,
CVE-2026-45923, CVE-2026-45928, CVE-2026-45935, CVE-2026-45936,
CVE-2026-45938, CVE-2026-45941, CVE-2026-45946, CVE-2026-45947,
CVE-2026-45948, CVE-2026-45954, CVE-2026-45957, CVE-2026-45960,
CVE-2026-45962, CVE-2026-45964, CVE-2026-45965, CVE-2026-45968,
CVE-2026-45969, CVE-2026-45970, CVE-2026-45972, CVE-2026-45973,
CVE-2026-45974, CVE-2026-45976, CVE-2026-45978, CVE-2026-45981,
CVE-2026-45982, CVE-2026-45983, CVE-2026-45984, CVE-2026-45988,
CVE-2026-46043, CVE-2026-46115, CVE-2026-46119, CVE-2026-46135,
CVE-2026-46185, CVE-2026-46195, CVE-2026-46243, CVE-2026-46244,
CVE-2026-46246, CVE-2026-46247, CVE-2026-46249, CVE-2026-46250,
CVE-2026-46251, CVE-2026-46253, CVE-2026-46254, CVE-2026-46255,
CVE-2026-46259, CVE-2026-46260, CVE-2026-46261, CVE-2026-46265,
CVE-2026-46266, CVE-2026-46267, CVE-2026-46270, CVE-2026-46289,
CVE-2026-46328)
</description><guid isPermaLink="false">https://ubuntu.com/security/notices/USN-8498-1</guid><pubDate>Thu, 02 Jul 2026 15:49:42 +0000</pubDate></item><item><title>USN-8497-1: Linux kernel (Low Latency) vulnerabilities</title><link>https://ubuntu.com/security/notices/USN-8497-1</link><description>It was discovered that the Linux kernel did not properly handle shared page
fragments during socket buffer operations, collectively known as Dirty
Frag. A logic flaw existed in the XFRM ESP-in-TCP subsystem and in the
RxRPC networking subsystem when processing paged fragments. A local
attacker could use this to escalate privileges, or possibly escape a
container. (CVE-2026-43284, CVE-2026-43500, CVE-2026-45998, CVE-2026-46000)

It was discovered that a logic flaw existed in the XFRM ESP-in-TCP
subsystem in the Linux kernel when handling socket buffer fragments. This
flaw is known as Fragnesia. A local attacker could use this to escalate
privileges, or possibly escape a container. (CVE-2026-43503,
CVE-2026-46300)

Qualys discovered that a race condition existed in the ptrace subsystem of
the Linux kernel when privileged processes are exiting. An unprivileged
local attacker could use this issue to expose sensitive information.
(CVE-2026-46333)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contain a memory leak when handling AppArmor notifications. A local
attacker could use this to cause resource exhaustion. (CVE-2026-47326)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contain a NULL pointer dereference when handling AppArmor notifications. A
local attacker could use this to cause a kernel oops. (CVE-2026-47327)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained an invalid free when handling AppArmor notifications. A local
attacker could use this to corrupt kernel memory. (CVE-2026-47328)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained insufficient validation of AppArmor notification responses. A
local attacker could use this to allow crafted responses to be processed.
(CVE-2026-47329)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0 used
an uninitialized variable when handling AppArmor notifications. A local
attacker could use this to cause incorrect caching of data.
(CVE-2026-47330)

Tristan Madani discovered that Ubuntu Linux kernel 6.8 contained a use-
after-free (UAF) bug. A local attacker could use this to cause memory
corruption and, theoretically, arbitrary code execution. (CVE-2026-47331)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained an out-of-bounds (OOB) read when handling AppArmor notifications.
A local attacker could use this to cause information disclosure of kernel
memory. (CVE-2026-47332)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained a out-of-bounds (OOB) read when handling AppArmor notifications.
A local attacker could use this to cause kernel memory corruption and,
theoretically, influence processing of AppArmor policies. (CVE-2026-47333)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained incorrect holding of locks when handling AppArmor notifications.
A local attacker could use this to cause a kernel panic or deadlock.
(CVE-2026-47334)

Tristan Madani discovered that Ubuntu Linux kernel 6.8 contained a NULL
pointer dereference when handling AppArmor notifications. A local attacker
could use this to cause a kernel panic. (CVE-2026-47335)

Tristan Madani discovered that Ubuntu Linux kernel 6.8 used an
uninitialized variable when handling AppArmor AF_INET/AF_INET6 socket
mediation. A local attacker could use this to influence processing of fine-
grained network socket mediation. (CVE-2026-47336)

Tristan Madani and Trevor Lawrence have each independently discovered that
Ubuntu Linux kernel 6.8, 6.17 and 7.0 contained a NULL pointer dereference
when handling AppArmor network socket mediation. A local attacker could use
this to cause a kernel oops. (CVE-2026-47337)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
  - ARM64 architecture;
  - MIPS architecture;
  - PowerPC architecture;
  - x86 architecture;
  - Block layer subsystem;
  - Cryptographic API;
  - ACPI drivers;
  - ATM drivers;
  - RNBD block device driver;
  - Ublk userspace block driver;
  - Bus devices;
  - Character device driver;
  - TPM device driver;
  - Clock framework and drivers;
  - Clocksource drivers;
  - CPU idle management framework;
  - Hardware crypto device drivers;
  - DMA engine subsystem;
  - EFI core;
  - GPIO subsystem;
  - GPU drivers;
  - HID subsystem;
  - Hardware monitoring drivers;
  - IIO subsystem;
  - InfiniBand drivers;
  - IOMMU subsystem;
  - Multiple devices driver;
  - Media drivers;
  - Multifunction device drivers;
  - Broadcom VK accelerator driver;
  - MOST (Media Oriented Systems Transport) drivers;
  - MTD block device drivers;
  - Ethernet bonding driver;
  - Network drivers;
  - Mellanox network drivers;
  - STMicroelectronics network drivers;
  - NTB driver;
  - NVME drivers;
  - PCI subsystem;
  - Performance monitor drivers;
  - Pin controllers subsystem;
  - x86 platform drivers;
  - Power supply drivers;
  - RapidIO drivers;
  - RAS (Reliability, Availability, Serviceability) subsystem;
  - Remote Processor subsystem;
  - RPMSG subsystem;
  - S/390 drivers;
  - SCSI subsystem;
  - MediaTek SoC drivers;
  - Texas Instruments SoC drivers;
  - SPI subsystem;
  - Greybus lights staging drivers;
  - Realtek RTL8723BS SDIO drivers;
  - UFS subsystem;
  - ChipIdea USB driver;
  - DesignWare USB3 driver;
  - USB over IP driver;
  - vDPA drivers;
  - Virtio Host (VHOST) subsystem;
  - Framebuffer layer;
  - BTRFS file system;
  - File systems infrastructure;
  - Ceph distributed file system;
  - Ext4 file system;
  - F2FS file system;
  - FAT file system;
  - GFS2 file system;
  - HFS+ file system;
  - JFS file system;
  - Network file system (NFS) server daemon;
  - NILFS2 file system;
  - NTFS3 file system;
  - OCFS2 file system;
  - Proc file system;
  - Pstore file system;
  - Diskquota system;
  - SMB network file system;
  - XFS file system;
  - Audit subsystem;
  - Memory Management;
  - IPv6 networking;
  - Netfilter;
  - Tracing infrastructure;
  - Kernel kexec() syscall;
  - RCU subsystem;
  - Scheduler infrastructure;
  - Scatterlist API;
  - 9P file system network protocol;
  - Asynchronous Transfer Mode (ATM) subsystem;
  - B.A.T.M.A.N. meshing protocol;
  - Bluetooth subsystem;
  - Ethernet bridge;
  - Ceph Core library;
  - Networking core;
  - IPv4 networking;
  - KCM (Kernel Connection Multiplexor) sockets driver;
  - Multipath TCP;
  - NFC subsystem;
  - RDS protocol;
  - RxRPC session sockets;
  - Network traffic control;
  - SMC sockets;
  - Sun RPC protocol;
  - X.25 network layer;
  - XFRM subsystem;
  - AppArmor security module;
  - Simplified Mandatory Access Control Kernel framework;
  - SOF drivers;
  - USB sound devices;
(CVE-2025-40005, CVE-2025-71229, CVE-2025-71231, CVE-2025-71232,
CVE-2025-71233, CVE-2025-71235, CVE-2025-71236, CVE-2025-71237,
CVE-2025-71238, CVE-2025-71239, CVE-2025-71265, CVE-2025-71266,
CVE-2025-71267, CVE-2025-71272, CVE-2025-71273, CVE-2025-71274,
CVE-2025-71286, CVE-2025-71291, CVE-2025-71292, CVE-2025-71294,
CVE-2025-71295, CVE-2025-71297, CVE-2025-71304, CVE-2025-71305,
CVE-2026-23100, CVE-2026-23169, CVE-2026-23220, CVE-2026-23221,
CVE-2026-23222, CVE-2026-23228, CVE-2026-23229, CVE-2026-23230,
CVE-2026-23233, CVE-2026-23234, CVE-2026-23235, CVE-2026-23236,
CVE-2026-23237, CVE-2026-23238, CVE-2026-23241, CVE-2026-23242,
CVE-2026-23243, CVE-2026-23249, CVE-2026-23266, CVE-2026-23267,
CVE-2026-23272, CVE-2026-23278, CVE-2026-23392, CVE-2026-23428,
CVE-2026-23450, CVE-2026-23455, CVE-2026-31402, CVE-2026-31411,
CVE-2026-31418, CVE-2026-31436, CVE-2026-31448, CVE-2026-31478,
CVE-2026-31607, CVE-2026-31637, CVE-2026-31649, CVE-2026-31657,
CVE-2026-31659, CVE-2026-31668, CVE-2026-31669, CVE-2026-31676,
CVE-2026-31682, CVE-2026-31685, CVE-2026-31687, CVE-2026-31693,
CVE-2026-43011, CVE-2026-43037, CVE-2026-43038, CVE-2026-43071,
CVE-2026-43114, CVE-2026-43117, CVE-2026-43123, CVE-2026-43124,
CVE-2026-43128, CVE-2026-43130, CVE-2026-43132, CVE-2026-43133,
CVE-2026-43134, CVE-2026-43135, CVE-2026-43136, CVE-2026-43137,
CVE-2026-43139, CVE-2026-43140, CVE-2026-43141, CVE-2026-43143,
CVE-2026-43145, CVE-2026-43147, CVE-2026-43148, CVE-2026-43149,
CVE-2026-43150, CVE-2026-43152, CVE-2026-43153, CVE-2026-43156,
CVE-2026-43157, CVE-2026-43158, CVE-2026-43159, CVE-2026-43163,
CVE-2026-43167, CVE-2026-43168, CVE-2026-43169, CVE-2026-43170,
CVE-2026-43171, CVE-2026-43173, CVE-2026-43175, CVE-2026-43180,
CVE-2026-43182, CVE-2026-43183, CVE-2026-43184, CVE-2026-43186,
CVE-2026-43187, CVE-2026-43189, CVE-2026-43190, CVE-2026-43194,
CVE-2026-43196, CVE-2026-43199, CVE-2026-43200, CVE-2026-43201,
CVE-2026-43202, CVE-2026-43203, CVE-2026-43205, CVE-2026-43206,
CVE-2026-43207, CVE-2026-43209, CVE-2026-43211, CVE-2026-43212,
CVE-2026-43214, CVE-2026-43215, CVE-2026-43218, CVE-2026-43221,
CVE-2026-43222, CVE-2026-43223, CVE-2026-43225, CVE-2026-43226,
CVE-2026-43227, CVE-2026-43230, CVE-2026-43231, CVE-2026-43232,
CVE-2026-43233, CVE-2026-43236, CVE-2026-43238, CVE-2026-43239,
CVE-2026-43241, CVE-2026-43242, CVE-2026-43244, CVE-2026-43246,
CVE-2026-43248, CVE-2026-43249, CVE-2026-43250, CVE-2026-43251,
CVE-2026-43253, CVE-2026-43255, CVE-2026-43256, CVE-2026-43257,
CVE-2026-43258, CVE-2026-43261, CVE-2026-43262, CVE-2026-43264,
CVE-2026-43266, CVE-2026-43268, CVE-2026-43269, CVE-2026-43270,
CVE-2026-43271, CVE-2026-43273, CVE-2026-43275, CVE-2026-43277,
CVE-2026-43278, CVE-2026-43279, CVE-2026-43283, CVE-2026-43287,
CVE-2026-43288, CVE-2026-43289, CVE-2026-43291, CVE-2026-43295,
CVE-2026-43296, CVE-2026-43297, CVE-2026-43300, CVE-2026-43302,
CVE-2026-43304, CVE-2026-43312, CVE-2026-43313, CVE-2026-43314,
CVE-2026-43315, CVE-2026-43316, CVE-2026-43317, CVE-2026-43318,
CVE-2026-43319, CVE-2026-43320, CVE-2026-43341, CVE-2026-43378,
CVE-2026-43383, CVE-2026-43384, CVE-2026-43406, CVE-2026-43407,
CVE-2026-43414, CVE-2026-43493, CVE-2026-43494, CVE-2026-43501,
CVE-2026-45847, CVE-2026-45848, CVE-2026-45849, CVE-2026-45851,
CVE-2026-45852, CVE-2026-45856, CVE-2026-45857, CVE-2026-45859,
CVE-2026-45860, CVE-2026-45861, CVE-2026-45862, CVE-2026-45864,
CVE-2026-45865, CVE-2026-45866, CVE-2026-45867, CVE-2026-45868,
CVE-2026-45869, CVE-2026-45870, CVE-2026-45871, CVE-2026-45872,
CVE-2026-45873, CVE-2026-45875, CVE-2026-45877, CVE-2026-45878,
CVE-2026-45879, CVE-2026-45880, CVE-2026-45881, CVE-2026-45882,
CVE-2026-45883, CVE-2026-45884, CVE-2026-45885, CVE-2026-45886,
CVE-2026-45890, CVE-2026-45891, CVE-2026-45893, CVE-2026-45895,
CVE-2026-45902, CVE-2026-45904, CVE-2026-45905, CVE-2026-45910,
CVE-2026-45912, CVE-2026-45913, CVE-2026-45914, CVE-2026-45915,
CVE-2026-45916, CVE-2026-45917, CVE-2026-45919, CVE-2026-45921,
CVE-2026-45923, CVE-2026-45928, CVE-2026-45935, CVE-2026-45936,
CVE-2026-45938, CVE-2026-45941, CVE-2026-45946, CVE-2026-45947,
CVE-2026-45948, CVE-2026-45954, CVE-2026-45957, CVE-2026-45960,
CVE-2026-45962, CVE-2026-45964, CVE-2026-45965, CVE-2026-45968,
CVE-2026-45969, CVE-2026-45970, CVE-2026-45972, CVE-2026-45973,
CVE-2026-45974, CVE-2026-45976, CVE-2026-45978, CVE-2026-45981,
CVE-2026-45982, CVE-2026-45983, CVE-2026-45984, CVE-2026-45988,
CVE-2026-46043, CVE-2026-46115, CVE-2026-46119, CVE-2026-46135,
CVE-2026-46185, CVE-2026-46195, CVE-2026-46243, CVE-2026-46244,
CVE-2026-46246, CVE-2026-46247, CVE-2026-46249, CVE-2026-46250,
CVE-2026-46251, CVE-2026-46253, CVE-2026-46254, CVE-2026-46255,
CVE-2026-46259, CVE-2026-46260, CVE-2026-46261, CVE-2026-46265,
CVE-2026-46266, CVE-2026-46267, CVE-2026-46270, CVE-2026-46289,
CVE-2026-46323, CVE-2026-46328)
</description><guid isPermaLink="false">https://ubuntu.com/security/notices/USN-8497-1</guid><pubDate>Thu, 02 Jul 2026 15:40:31 +0000</pubDate></item><item><title>USN-8492-2: Linux kernel vulnerabilities</title><link>https://ubuntu.com/security/notices/USN-8492-2</link><description>Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
  - ARM64 architecture;
  - MIPS architecture;
  - PowerPC architecture;
  - x86 architecture;
  - Block layer subsystem;
  - Cryptographic API;
  - ACPI drivers;
  - ATM drivers;
  - RNBD block device driver;
  - Ublk userspace block driver;
  - Bus devices;
  - Character device driver;
  - TPM device driver;
  - Clock framework and drivers;
  - Clocksource drivers;
  - CPU idle management framework;
  - Hardware crypto device drivers;
  - DMA engine subsystem;
  - EFI core;
  - GPIO subsystem;
  - GPU drivers;
  - HID subsystem;
  - Hardware monitoring drivers;
  - IIO subsystem;
  - InfiniBand drivers;
  - IOMMU subsystem;
  - Multiple devices driver;
  - Media drivers;
  - Multifunction device drivers;
  - Broadcom VK accelerator driver;
  - MOST (Media Oriented Systems Transport) drivers;
  - MTD block device drivers;
  - Ethernet bonding driver;
  - Network drivers;
  - Mellanox network drivers;
  - STMicroelectronics network drivers;
  - NTB driver;
  - NVME drivers;
  - PCI subsystem;
  - Performance monitor drivers;
  - Pin controllers subsystem;
  - x86 platform drivers;
  - Power supply drivers;
  - RapidIO drivers;
  - RAS (Reliability, Availability, Serviceability) subsystem;
  - Remote Processor subsystem;
  - RPMSG subsystem;
  - S/390 drivers;
  - SCSI subsystem;
  - MediaTek SoC drivers;
  - Texas Instruments SoC drivers;
  - SPI subsystem;
  - Greybus lights staging drivers;
  - Realtek RTL8723BS SDIO drivers;
  - UFS subsystem;
  - ChipIdea USB driver;
  - DesignWare USB3 driver;
  - USB over IP driver;
  - vDPA drivers;
  - Virtio Host (VHOST) subsystem;
  - Framebuffer layer;
  - BTRFS file system;
  - File systems infrastructure;
  - Ceph distributed file system;
  - Ext4 file system;
  - F2FS file system;
  - FAT file system;
  - GFS2 file system;
  - HFS+ file system;
  - JFS file system;
  - Network file system (NFS) server daemon;
  - NILFS2 file system;
  - NTFS3 file system;
  - OCFS2 file system;
  - Proc file system;
  - Pstore file system;
  - Diskquota system;
  - SMB network file system;
  - XFS file system;
  - Audit subsystem;
  - Memory Management;
  - IPv6 networking;
  - Netfilter;
  - Tracing infrastructure;
  - Kernel kexec() syscall;
  - RCU subsystem;
  - Scheduler infrastructure;
  - Scatterlist API;
  - 9P file system network protocol;
  - Asynchronous Transfer Mode (ATM) subsystem;
  - B.A.T.M.A.N. meshing protocol;
  - Bluetooth subsystem;
  - Ethernet bridge;
  - Ceph Core library;
  - Networking core;
  - IPv4 networking;
  - KCM (Kernel Connection Multiplexor) sockets driver;
  - Multipath TCP;
  - NFC subsystem;
  - RDS protocol;
  - RxRPC session sockets;
  - Network traffic control;
  - SMC sockets;
  - Sun RPC protocol;
  - X.25 network layer;
  - XFRM subsystem;
  - AppArmor security module;
  - Simplified Mandatory Access Control Kernel framework;
  - SOF drivers;
  - USB sound devices;
(CVE-2025-40005, CVE-2025-71229, CVE-2025-71231, CVE-2025-71232,
CVE-2025-71233, CVE-2025-71235, CVE-2025-71236, CVE-2025-71237,
CVE-2025-71238, CVE-2025-71239, CVE-2025-71265, CVE-2025-71266,
CVE-2025-71267, CVE-2025-71272, CVE-2025-71273, CVE-2025-71274,
CVE-2025-71286, CVE-2025-71291, CVE-2025-71292, CVE-2025-71294,
CVE-2025-71295, CVE-2025-71297, CVE-2025-71304, CVE-2025-71305,
CVE-2026-23100, CVE-2026-23169, CVE-2026-23220, CVE-2026-23221,
CVE-2026-23222, CVE-2026-23228, CVE-2026-23229, CVE-2026-23230,
CVE-2026-23233, CVE-2026-23234, CVE-2026-23235, CVE-2026-23236,
CVE-2026-23237, CVE-2026-23238, CVE-2026-23241, CVE-2026-23242,
CVE-2026-23243, CVE-2026-23249, CVE-2026-23266, CVE-2026-23267,
CVE-2026-23272, CVE-2026-23278, CVE-2026-23392, CVE-2026-23428,
CVE-2026-23450, CVE-2026-23455, CVE-2026-31402, CVE-2026-31411,
CVE-2026-31418, CVE-2026-31436, CVE-2026-31448, CVE-2026-31478,
CVE-2026-31607, CVE-2026-31637, CVE-2026-31649, CVE-2026-31657,
CVE-2026-31659, CVE-2026-31668, CVE-2026-31669, CVE-2026-31682,
CVE-2026-31685, CVE-2026-31687, CVE-2026-31693, CVE-2026-43011,
CVE-2026-43037, CVE-2026-43038, CVE-2026-43071, CVE-2026-43114,
CVE-2026-43117, CVE-2026-43123, CVE-2026-43124, CVE-2026-43128,
CVE-2026-43130, CVE-2026-43132, CVE-2026-43133, CVE-2026-43134,
CVE-2026-43135, CVE-2026-43136, CVE-2026-43137, CVE-2026-43139,
CVE-2026-43140, CVE-2026-43141, CVE-2026-43143, CVE-2026-43145,
CVE-2026-43147, CVE-2026-43148, CVE-2026-43149, CVE-2026-43150,
CVE-2026-43152, CVE-2026-43153, CVE-2026-43156, CVE-2026-43157,
CVE-2026-43158, CVE-2026-43159, CVE-2026-43163, CVE-2026-43167,
CVE-2026-43168, CVE-2026-43169, CVE-2026-43170, CVE-2026-43171,
CVE-2026-43173, CVE-2026-43175, CVE-2026-43180, CVE-2026-43182,
CVE-2026-43183, CVE-2026-43184, CVE-2026-43186, CVE-2026-43187,
CVE-2026-43189, CVE-2026-43190, CVE-2026-43194, CVE-2026-43196,
CVE-2026-43199, CVE-2026-43200, CVE-2026-43201, CVE-2026-43202,
CVE-2026-43203, CVE-2026-43205, CVE-2026-43206, CVE-2026-43207,
CVE-2026-43209, CVE-2026-43211, CVE-2026-43212, CVE-2026-43214,
CVE-2026-43215, CVE-2026-43218, CVE-2026-43221, CVE-2026-43222,
CVE-2026-43223, CVE-2026-43225, CVE-2026-43226, CVE-2026-43227,
CVE-2026-43230, CVE-2026-43231, CVE-2026-43232, CVE-2026-43233,
CVE-2026-43236, CVE-2026-43238, CVE-2026-43239, CVE-2026-43241,
CVE-2026-43242, CVE-2026-43244, CVE-2026-43246, CVE-2026-43248,
CVE-2026-43249, CVE-2026-43250, CVE-2026-43251, CVE-2026-43253,
CVE-2026-43255, CVE-2026-43256, CVE-2026-43257, CVE-2026-43258,
CVE-2026-43261, CVE-2026-43262, CVE-2026-43264, CVE-2026-43266,
CVE-2026-43268, CVE-2026-43269, CVE-2026-43270, CVE-2026-43271,
CVE-2026-43273, CVE-2026-43275, CVE-2026-43277, CVE-2026-43278,
CVE-2026-43279, CVE-2026-43283, CVE-2026-43287, CVE-2026-43288,
CVE-2026-43289, CVE-2026-43291, CVE-2026-43295, CVE-2026-43296,
CVE-2026-43297, CVE-2026-43300, CVE-2026-43302, CVE-2026-43304,
CVE-2026-43312, CVE-2026-43313, CVE-2026-43314, CVE-2026-43315,
CVE-2026-43316, CVE-2026-43317, CVE-2026-43318, CVE-2026-43319,
CVE-2026-43320, CVE-2026-43341, CVE-2026-43378, CVE-2026-43383,
CVE-2026-43384, CVE-2026-43406, CVE-2026-43407, CVE-2026-43414,
CVE-2026-43493, CVE-2026-43501, CVE-2026-45847, CVE-2026-45848,
CVE-2026-45849, CVE-2026-45851, CVE-2026-45852, CVE-2026-45856,
CVE-2026-45857, CVE-2026-45859, CVE-2026-45860, CVE-2026-45861,
CVE-2026-45862, CVE-2026-45864, CVE-2026-45865, CVE-2026-45866,
CVE-2026-45867, CVE-2026-45868, CVE-2026-45869, CVE-2026-45870,
CVE-2026-45871, CVE-2026-45872, CVE-2026-45873, CVE-2026-45875,
CVE-2026-45877, CVE-2026-45878, CVE-2026-45879, CVE-2026-45880,
CVE-2026-45881, CVE-2026-45882, CVE-2026-45883, CVE-2026-45884,
CVE-2026-45885, CVE-2026-45886, CVE-2026-45890, CVE-2026-45891,
CVE-2026-45893, CVE-2026-45895, CVE-2026-45902, CVE-2026-45904,
CVE-2026-45905, CVE-2026-45910, CVE-2026-45912, CVE-2026-45913,
CVE-2026-45914, CVE-2026-45915, CVE-2026-45916, CVE-2026-45917,
CVE-2026-45919, CVE-2026-45921, CVE-2026-45923, CVE-2026-45928,
CVE-2026-45935, CVE-2026-45936, CVE-2026-45938, CVE-2026-45941,
CVE-2026-45946, CVE-2026-45947, CVE-2026-45948, CVE-2026-45954,
CVE-2026-45957, CVE-2026-45960, CVE-2026-45962, CVE-2026-45964,
CVE-2026-45965, CVE-2026-45968, CVE-2026-45969, CVE-2026-45970,
CVE-2026-45972, CVE-2026-45973, CVE-2026-45974, CVE-2026-45976,
CVE-2026-45978, CVE-2026-45981, CVE-2026-45982, CVE-2026-45983,
CVE-2026-45984, CVE-2026-45988, CVE-2026-46043, CVE-2026-46115,
CVE-2026-46119, CVE-2026-46135, CVE-2026-46185, CVE-2026-46195,
CVE-2026-46243, CVE-2026-46244, CVE-2026-46246, CVE-2026-46247,
CVE-2026-46249, CVE-2026-46250, CVE-2026-46251, CVE-2026-46253,
CVE-2026-46254, CVE-2026-46255, CVE-2026-46259, CVE-2026-46260,
CVE-2026-46261, CVE-2026-46265, CVE-2026-46266, CVE-2026-46267,
CVE-2026-46270, CVE-2026-46289, CVE-2026-46328)
</description><guid isPermaLink="false">https://ubuntu.com/security/notices/USN-8492-2</guid><pubDate>Thu, 02 Jul 2026 15:24:59 +0000</pubDate></item><item><title>USN-8496-1: cifs-utils vulnerability</title><link>https://ubuntu.com/security/notices/USN-8496-1</link><description>It was discovered that cifs-utils incorrectly dropped root privileges
before looking up user information. A local attacker could possibly use
this issue to execute arbitrary code as the root user.</description><guid isPermaLink="false">https://ubuntu.com/security/notices/USN-8496-1</guid><pubDate>Thu, 02 Jul 2026 15:11:32 +0000</pubDate></item><item><title>USN-8488-2: Linux kernel (Raspberry Pi) vulnerabilities</title><link>https://ubuntu.com/security/notices/USN-8488-2</link><description>It was discovered that some AMD processors did not properly clear data in
the floating point divider unit during speculative execution. A local
attacker could use this to expose sensitive information. (CVE-2025-54505)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
  - ARM64 architecture;
  - x86 architecture;
  - Block layer subsystem;
  - Cryptographic API;
  - Rados block device (RBD) driver;
  - Compressed RAM block device driver;
  - Character device driver;
  - TPM device driver;
  - Hardware crypto device drivers;
  - EDAC drivers;
  - GPU drivers;
  - Greybus drivers;
  - HID subsystem;
  - Microsoft Hyper-V drivers;
  - Hardware monitoring drivers;
  - I2C subsystem;
  - IIO subsystem;
  - InfiniBand drivers;
  - Input Device core drivers;
  - LED subsystem;
  - Multiple devices driver;
  - Media drivers;
  - IBM Advanced System Management driver;
  - MTD block device drivers;
  - Network drivers;
  - Microsoft Azure Network Adapter (MANA) driver;
  - NTB driver;
  - NVME drivers;
  - Device tree and open firmware driver;
  - PCI subsystem;
  - Remote Processor subsystem;
  - SCSI subsystem;
  - SPI subsystem;
  - Realtek RTL8723BS SDIO drivers;
  - SM750 framebuffer staging driver;
  - Thermal drivers;
  - USB Gadget drivers;
  - USB over IP driver;
  - VFIO drivers;
  - Framebuffer layer;
  - 9P distributed file system;
  - AFS file system;
  - Ceph distributed file system;
  - File systems infrastructure;
  - EROFS file system;
  - Ext4 file system;
  - F2FS file system;
  - FUSE (File system in Userspace);
  - Journaling layer for block devices (JBD2);
  - NILFS2 file system;
  - File system notification infrastructure;
  - NTFS3 file system;
  - OCFS2 file system;
  - SMB network file system;
  - UDF file system;
  - XFS file system;
  - Codetag library;
  - Memory management;
  - Memory Management;
  - KVM subsystem;
  - Tracing infrastructure;
  - User-space API (UAPI);
  - io_uring subsystem;
  - Locking primitives;
  - Timer subsystem;
  - Scatterlist API;
  - Heterogeneous memory management;
  - KASAN memory debugging framework;
  - Bluetooth subsystem;
  - Ethernet bridge;
  - CAIF protocol;
  - CAN network layer;
  - Ceph Core library;
  - IPv4 networking;
  - IPv6 networking;
  - Multipath TCP;
  - Netfilter;
  - NFC subsystem;
  - Packet sockets;
  - Qualcomm IPC Router (QRTR);
  - RDS protocol;
  - RxRPC session sockets;
  - SMC sockets;
  - Stream parser;
  - Landlock security;
  - SELinux security module;
  - ALSA framework;
  - Generic PCM loopback sound driver;
  - FireWire sound drivers;
  - Creative Sound Blaster X-Fi driver;
  - QCOM ASoC drivers;
  - USB sound devices;
  - Objtool;
(CVE-2026-31532, CVE-2026-31574, CVE-2026-31575, CVE-2026-31576,
CVE-2026-31577, CVE-2026-31578, CVE-2026-31579, CVE-2026-31580,
CVE-2026-31581, CVE-2026-31582, CVE-2026-31583, CVE-2026-31584,
CVE-2026-31585, CVE-2026-31586, CVE-2026-31587, CVE-2026-31588,
CVE-2026-31589, CVE-2026-31590, CVE-2026-31591, CVE-2026-31592,
CVE-2026-31593, CVE-2026-31594, CVE-2026-31595, CVE-2026-31596,
CVE-2026-31597, CVE-2026-31598, CVE-2026-31599, CVE-2026-31600,
CVE-2026-31601, CVE-2026-31602, CVE-2026-31603, CVE-2026-31604,
CVE-2026-31605, CVE-2026-31606, CVE-2026-31607, CVE-2026-31608,
CVE-2026-31609, CVE-2026-31610, CVE-2026-31611, CVE-2026-31612,
CVE-2026-31613, CVE-2026-31614, CVE-2026-31615, CVE-2026-31616,
CVE-2026-31617, CVE-2026-31618, CVE-2026-31619, CVE-2026-31620,
CVE-2026-31621, CVE-2026-31622, CVE-2026-31623, CVE-2026-31624,
CVE-2026-31625, CVE-2026-31626, CVE-2026-31627, CVE-2026-31628,
CVE-2026-31629, CVE-2026-31686, CVE-2026-31694, CVE-2026-31696,
CVE-2026-31697, CVE-2026-31698, CVE-2026-31699, CVE-2026-31700,
CVE-2026-31701, CVE-2026-31702, CVE-2026-31703, CVE-2026-31704,
CVE-2026-31705, CVE-2026-31706, CVE-2026-31707, CVE-2026-31708,
CVE-2026-31709, CVE-2026-31710, CVE-2026-31711, CVE-2026-31712,
CVE-2026-31713, CVE-2026-31714, CVE-2026-31715, CVE-2026-31716,
CVE-2026-31717, CVE-2026-31718, CVE-2026-31719, CVE-2026-43058,
CVE-2026-43071, CVE-2026-43072, CVE-2026-43073, CVE-2026-43348,
CVE-2026-43349, CVE-2026-43350, CVE-2026-43491, CVE-2026-43493,
CVE-2026-43499, CVE-2026-43501, CVE-2026-45986, CVE-2026-45987,
CVE-2026-45988, CVE-2026-45989, CVE-2026-45990, CVE-2026-45991,
CVE-2026-45994, CVE-2026-45995, CVE-2026-45996, CVE-2026-45997,
CVE-2026-45999, CVE-2026-46001, CVE-2026-46002, CVE-2026-46003,
CVE-2026-46004, CVE-2026-46005, CVE-2026-46006, CVE-2026-46007,
CVE-2026-46008, CVE-2026-46009, CVE-2026-46010, CVE-2026-46011,
CVE-2026-46012, CVE-2026-46013, CVE-2026-46014, CVE-2026-46015,
CVE-2026-46016, CVE-2026-46018, CVE-2026-46019, CVE-2026-46020,
CVE-2026-46021, CVE-2026-46022, CVE-2026-46023, CVE-2026-46024,
CVE-2026-46025, CVE-2026-46026, CVE-2026-46027, CVE-2026-46028,
CVE-2026-46029, CVE-2026-46030, CVE-2026-46031, CVE-2026-46032,
CVE-2026-46033, CVE-2026-46034, CVE-2026-46035, CVE-2026-46036,
CVE-2026-46037, CVE-2026-46038, CVE-2026-46039, CVE-2026-46040,
CVE-2026-46041, CVE-2026-46042, CVE-2026-46043, CVE-2026-46044,
CVE-2026-46045, CVE-2026-46046, CVE-2026-46047, CVE-2026-46049,
CVE-2026-46050, CVE-2026-46051, CVE-2026-46052, CVE-2026-46053,
CVE-2026-46054, CVE-2026-46056, CVE-2026-46057, CVE-2026-46058,
CVE-2026-46059, CVE-2026-46060, CVE-2026-46061, CVE-2026-46062,
CVE-2026-46063, CVE-2026-46064, CVE-2026-46065, CVE-2026-46066,
CVE-2026-46067, CVE-2026-46068, CVE-2026-46069, CVE-2026-46070,
CVE-2026-46071, CVE-2026-46072, CVE-2026-46073, CVE-2026-46074,
CVE-2026-46075, CVE-2026-46076, CVE-2026-46077, CVE-2026-46078,
CVE-2026-46079, CVE-2026-46080, CVE-2026-46081, CVE-2026-46082,
CVE-2026-46083, CVE-2026-46084, CVE-2026-46085, CVE-2026-46086,
CVE-2026-46087, CVE-2026-46088, CVE-2026-46089, CVE-2026-46090,
CVE-2026-46091, CVE-2026-46092, CVE-2026-46093, CVE-2026-46094,
CVE-2026-46095, CVE-2026-46096, CVE-2026-46097, CVE-2026-46098,
CVE-2026-46099, CVE-2026-46100, CVE-2026-46101, CVE-2026-46102,
CVE-2026-46103, CVE-2026-46115, CVE-2026-46119, CVE-2026-46135,
CVE-2026-46137, CVE-2026-46155, CVE-2026-46185, CVE-2026-46195,
CVE-2026-46243, CVE-2026-46244, CVE-2026-46276, CVE-2026-46277,
CVE-2026-46278, CVE-2026-46279, CVE-2026-46280, CVE-2026-46281,
CVE-2026-46282, CVE-2026-46283, CVE-2026-46284, CVE-2026-46285,
CVE-2026-46286, CVE-2026-46287, CVE-2026-46288, CVE-2026-46289,
CVE-2026-46316, CVE-2026-46332, CVE-2026-52904, CVE-2026-52905,
CVE-2026-52906, CVE-2026-52907, CVE-2026-52933)
</description><guid isPermaLink="false">https://ubuntu.com/security/notices/USN-8488-2</guid><pubDate>Thu, 02 Jul 2026 15:02:33 +0000</pubDate></item><item><title>USN-8495-1: nghttp2 vulnerability</title><link>https://ubuntu.com/security/notices/USN-8495-1</link><description>It was discovered that the nghttp2 nghttpx proxy incorrectly handled
HTTP/1.1 Upgrade requests that included a Content-Length header and body.
A remote attacker could possibly use this issue to perform HTTP request and
response smuggling attacks against backend services.</description><guid isPermaLink="false">https://ubuntu.com/security/notices/USN-8495-1</guid><pubDate>Thu, 02 Jul 2026 13:57:53 +0000</pubDate></item><item><title>USN-8494-1: LibVNCServer vulnerability</title><link>https://ubuntu.com/security/notices/USN-8494-1</link><description>It was discovered that LibVNCServer incorrectly handled the Tight decoder
in libvncclient. A remote attacker could use this issue to cause
LibVNCServer to crash, resulting in a denial of service, or possibly
execute arbitrary code.</description><guid isPermaLink="false">https://ubuntu.com/security/notices/USN-8494-1</guid><pubDate>Thu, 02 Jul 2026 13:22:47 +0000</pubDate></item></channel></rss>