Detections
Analytics

Ubuntu 24.04 LTS : Linux kernel (OEM) vulnerabilities (USN-7771-1)

high Nessus Plugin ID 265926

Synopsis

The remote Ubuntu host is missing one or more security updates.

Description

The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7771-1 advisory.

 Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems:

 - ARM64 architecture;

 - PowerPC architecture;

 - x86 architecture;

 - Block layer subsystem;

 - Cryptographic API;

 - ACPI drivers;

 - Android drivers;

 - Bluetooth drivers;

 - Bus devices;

 - Clock framework and drivers;

 - CPU frequency scaling framework;

 - Hardware crypto device drivers;

 - DMA engine subsystem;

 - EDAC drivers;

 - Arm Firmware Framework for ARMv8-A(FFA);

 - FPGA Framework;

 - GPIO subsystem;

 - GPU drivers;

 - HID subsystem;

 - Hardware monitoring drivers;

 - HW tracing;

 - InfiniBand drivers;

 - IOMMU subsystem;

 - Multiple devices driver;

 - Media drivers;

 - VMware VMCI Driver;

 - MTD block device drivers;

 - Network drivers;

 - Mellanox network drivers;

 - STMicroelectronics network drivers;

 - NVDIMM (Non-Volatile Memory Device) drivers;

 - NVME drivers;

 - NVMEM (Non Volatile Memory) drivers;

 - PCI subsystem;

 - Amlogic Meson DDR PMU;

 - NI-700 PMU driver;

 - PHY drivers;

 - Pin controllers subsystem;

 - x86 platform drivers;

 - PTP clock framework;

 - SCSI subsystem;

 - ASPEED SoC drivers;

 - SPI subsystem;

 - TCM subsystem;

 - TTY drivers;

 - UFS subsystem;

 - USB core drivers;

 - USB Gadget drivers;

 - Renesas USBHS Controller drivers;

 - USB Type-C Port Controller Manager driver;

 - VFIO drivers;

 - Virtio Host (VHOST) subsystem;

 - Backlight driver;

 - Framebuffer layer;

 - Virtio drivers;

 - BTRFS file system;

 - EROFS file system;

 - F2FS file system;

 - File systems infrastructure;

 - Network file systems library;

 - NTFS3 file system;

 - SMB network file system;

 - Codetag library;

 - BPF subsystem;

 - LZO compression library;

 - Mellanox drivers;

 - IPv4 networking;

 - Bluetooth subsystem;

 - Network sockets;

 - XFRM subsystem;

 - Digital Audio (PCM) driver;

 - Tracing infrastructure;

 - io_uring subsystem;

 - Padata parallel execution mechanism;

 - DVFS energy model driver;

 - Restartable seuqences system call mechanism;

 - Timer subsystem;

 - Memory management;

 - KASAN memory debugging framework;

 - CAN network layer;

 - Networking core;

 - IPv6 networking;

 - Netfilter;

 - NetLabel subsystem;

 - Open vSwitch;

 - Network traffic control;

 - TIPC protocol;

 - TLS protocol;

 - ALSA framework;

 - sma1307 audio codecs;

 - Intel ASoC drivers;

 - MediaTek ASoC drivers;

 - USB sound devices; (CVE-2025-38141, CVE-2025-38039, CVE-2025-38283, CVE-2025-38272, CVE-2025-38290, CVE-2025-38168, CVE-2025-38134, CVE-2025-38158, CVE-2025-38097, CVE-2025-38078, CVE-2025-38161, CVE-2025-38116, CVE-2025-38312, CVE-2025-38067, CVE-2025-38129, CVE-2025-38119, CVE-2025-38061, CVE-2025-38352, CVE-2025-38269, CVE-2025-38163, CVE-2025-38315, CVE-2025-38301, CVE-2025-38115, CVE-2025-38032, CVE-2025-38127, CVE-2025-38029, CVE-2025-38277, CVE-2025-38075, CVE-2025-38300, CVE-2025-38059, CVE-2025-38047, CVE-2025-38118, CVE-2025-38038, CVE-2025-38278, CVE-2025-38169, CVE-2025-38074, CVE-2025-38292, CVE-2025-38295, CVE-2025-38294, CVE-2025-38154, CVE-2025-38165, CVE-2025-38069, CVE-2025-38120, CVE-2025-38098, CVE-2025-38050, CVE-2025-38068, CVE-2025-38063, CVE-2025-38034, CVE-2025-38123, CVE-2025-38092, CVE-2025-38103, CVE-2025-38170, CVE-2025-38313, CVE-2025-38062, CVE-2025-38159, CVE-2025-38147, CVE-2025-38415, CVE-2025-38045, CVE-2025-38279, CVE-2025-38302, CVE-2025-38162, CVE-2025-38414, CVE-2025-38146, CVE-2025-38035, CVE-2025-38040, CVE-2025-38073, CVE-2025-38054, CVE-2025-38099, CVE-2025-38291, CVE-2025-38126, CVE-2025-38088, CVE-2025-38310, CVE-2025-38176, CVE-2025-38102, CVE-2025-38149, CVE-2025-38124, CVE-2025-38003, CVE-2025-38140, CVE-2025-38100, CVE-2025-38081, CVE-2025-38319, CVE-2025-38142, CVE-2025-38303, CVE-2025-38155, CVE-2025-38044, CVE-2025-38316, CVE-2025-38052, CVE-2025-38317, CVE-2025-38151, CVE-2025-38164, CVE-2025-38148, CVE-2025-38082, CVE-2025-38267, CVE-2025-38031, CVE-2025-38132, CVE-2025-38138, CVE-2025-38125, CVE-2025-38111, CVE-2025-38106, CVE-2025-38287, CVE-2025-38137, CVE-2025-38117, CVE-2025-38130, CVE-2025-38122, CVE-2025-38058, CVE-2025-38110, CVE-2025-38101, CVE-2025-38048, CVE-2025-38080, CVE-2025-38304, CVE-2025-38128, CVE-2025-38072, CVE-2025-38265, CVE-2025-38166, CVE-2025-38131, CVE-2025-38105, CVE-2025-38096, CVE-2025-38275, CVE-2025-38305, CVE-2025-38156, CVE-2025-38139, CVE-2025-38318, CVE-2025-38136, CVE-2025-38107, CVE-2025-38041, CVE-2025-38288, CVE-2025-38055, CVE-2025-38033, CVE-2025-38064, CVE-2025-38036, CVE-2025-38077, CVE-2025-38053, CVE-2025-38112, CVE-2025-38070, CVE-2025-38109, CVE-2025-38143, CVE-2025-38299, CVE-2025-38051, CVE-2025-38167, CVE-2025-38172, CVE-2025-38057, CVE-2025-38311, CVE-2025-38285, CVE-2025-38076, CVE-2025-38280, CVE-2025-38157, CVE-2025-38043, CVE-2025-38065, CVE-2025-38289, CVE-2025-38060, CVE-2025-38274, CVE-2025-38004, CVE-2025-38037, CVE-2025-38282, CVE-2025-38298, CVE-2025-38293, CVE-2025-38499, CVE-2025-38135, CVE-2025-38173, CVE-2025-38079, CVE-2025-38296, CVE-2025-38108, CVE-2025-38175, CVE-2025-38066, CVE-2025-38286, CVE-2025-38160, CVE-2025-38498, CVE-2025-38281, CVE-2025-38268, CVE-2025-38270, CVE-2025-38153, CVE-2025-38042, CVE-2025-38114, CVE-2025-38284, CVE-2025-38297, CVE-2025-38306, CVE-2025-38071, CVE-2025-38307, CVE-2025-38091, CVE-2025-38314, CVE-2025-38145, CVE-2025-38113)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected kernel package.

See Also

https://ubuntu.com/security/notices/USN-7771-1

Plugin Details

Severity: High

ID: 265926

File Name: ubuntu_USN-7771-1.nasl

Version: 1.1

Type: local

Agent: unix

Published: 9/25/2025

Updated: 9/25/2025

Supported Sensors: Nessus Agent, Continuous Assessment, Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.2

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2025-38352

CVSS v3

Risk Factor: High

Base Score: 7.4

Temporal Score: 6.9

Vector: CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:canonical:ubuntu_linux:linux-image-6.14.0-1012-oem, cpe:/o:canonical:ubuntu_linux:24.04:-:lts

Required KB Items: Host/cpu, Host/Debian/dpkg-l, Host/Ubuntu, Host/Ubuntu/release

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 9/24/2025

Vulnerability Publication Date: 6/8/2025

CISA Known Exploited Vulnerability Due Dates: 9/25/2025

Reference Information

CVE: CVE-2025-38003, CVE-2025-38004, CVE-2025-38029, CVE-2025-38031, CVE-2025-38032, CVE-2025-38033, CVE-2025-38034, CVE-2025-38035, CVE-2025-38036, CVE-2025-38037, CVE-2025-38038, CVE-2025-38039, CVE-2025-38040, CVE-2025-38041, CVE-2025-38042, CVE-2025-38043, CVE-2025-38044, CVE-2025-38045, CVE-2025-38047, CVE-2025-38048, CVE-2025-38050, CVE-2025-38051, CVE-2025-38052, CVE-2025-38053, CVE-2025-38054, CVE-2025-38055, CVE-2025-38057, CVE-2025-38058, CVE-2025-38059, CVE-2025-38060, CVE-2025-38061, CVE-2025-38062, CVE-2025-38063, CVE-2025-38064, CVE-2025-38065, CVE-2025-38066, CVE-2025-38067, CVE-2025-38068, CVE-2025-38069, CVE-2025-38070, CVE-2025-38071, CVE-2025-38072, CVE-2025-38073, CVE-2025-38074, CVE-2025-38075, CVE-2025-38076, CVE-2025-38077, CVE-2025-38078, CVE-2025-38079, CVE-2025-38080, CVE-2025-38081, CVE-2025-38082, CVE-2025-38088, CVE-2025-38091, CVE-2025-38092, CVE-2025-38096, CVE-2025-38097, CVE-2025-38098, CVE-2025-38099, CVE-2025-38100, CVE-2025-38101, CVE-2025-38102, CVE-2025-38103, CVE-2025-38105, CVE-2025-38106, CVE-2025-38107, CVE-2025-38108, CVE-2025-38109, CVE-2025-38110, CVE-2025-38111, CVE-2025-38112, CVE-2025-38113, CVE-2025-38114, CVE-2025-38115, CVE-2025-38116, CVE-2025-38117, CVE-2025-38118, CVE-2025-38119, CVE-2025-38120, CVE-2025-38122, CVE-2025-38123, CVE-2025-38124, CVE-2025-38125, CVE-2025-38126, CVE-2025-38127, CVE-2025-38128, CVE-2025-38129, CVE-2025-38130, CVE-2025-38131, CVE-2025-38132, CVE-2025-38134, CVE-2025-38135, CVE-2025-38136, CVE-2025-38137, CVE-2025-38138, CVE-2025-38139, CVE-2025-38140, CVE-2025-38141, CVE-2025-38142, CVE-2025-38143, CVE-2025-38145, CVE-2025-38146, CVE-2025-38147, CVE-2025-38148, CVE-2025-38149, CVE-2025-38151, CVE-2025-38153, CVE-2025-38154, CVE-2025-38155, CVE-2025-38156, CVE-2025-38157, CVE-2025-38158, CVE-2025-38159, CVE-2025-38160, CVE-2025-38161, CVE-2025-38162, CVE-2025-38163, CVE-2025-38164, CVE-2025-38165, CVE-2025-38166, CVE-2025-38167, CVE-2025-38168, CVE-2025-38169, CVE-2025-38170, CVE-2025-38172, CVE-2025-38173, CVE-2025-38175, CVE-2025-38176, CVE-2025-38265, CVE-2025-38267, CVE-2025-38268, CVE-2025-38269, CVE-2025-38270, CVE-2025-38272, CVE-2025-38274, CVE-2025-38275, CVE-2025-38277, CVE-2025-38278, CVE-2025-38279, CVE-2025-38280, CVE-2025-38281, CVE-2025-38282, CVE-2025-38283, CVE-2025-38284, CVE-2025-38285, CVE-2025-38286, CVE-2025-38287, CVE-2025-38288, CVE-2025-38289, CVE-2025-38290, CVE-2025-38291, CVE-2025-38292, CVE-2025-38293, CVE-2025-38294, CVE-2025-38295, CVE-2025-38296, CVE-2025-38297, CVE-2025-38298, CVE-2025-38299, CVE-2025-38300, CVE-2025-38301, CVE-2025-38302, CVE-2025-38303, CVE-2025-38304, CVE-2025-38305, CVE-2025-38306, CVE-2025-38307, CVE-2025-38310, CVE-2025-38311, CVE-2025-38312, CVE-2025-38313, CVE-2025-38314, CVE-2025-38315, CVE-2025-38316, CVE-2025-38317, CVE-2025-38318, CVE-2025-38319, CVE-2025-38352, CVE-2025-38414, CVE-2025-38415, CVE-2025-38498, CVE-2025-38499

USN: 7771-1