Thursday , September 11 2025
Linux

126 Linux kernel Vulns Allow Attackers Exploit 78 Linux Sub-Systems

infosecbulletin Tuesday , January 21 2025 Uncategorized

Ubuntu 22.04 LTS users are advised to update their systems right away due to a crucial security patch from Canonical that fixes critical vulnerabilities in the Linux kernel for Xilinx ZynqMP processors.

The Linux kernel for Xilinx Zynq UltraScale+ MPSoC is customized to support the features and hardware of these processors.

Microsoft warns of active directory and office vulnarability

By infosecbulletin / Wednesday , September 10 2025
Microsoft has issued a new warning about a critical security vulnerability in Active Directory Domain Services, known as CVE-2025-21293. An...
Read More
Microsoft warns of active directory and office vulnarability

(CVE-2025-10159)
Sophos Addressed Critical Auth Bypass flaw in Wireless Access Points

By infosecbulletin / Wednesday , September 10 2025
Sophos fixed an authentication bypass vulnerability in its AP6 Series Wireless Access Points, preventing attackers from obtaining admin privileges. The...
Read More
(CVE-2025-10159) Sophos Addressed Critical Auth Bypass flaw in Wireless Access Points

1.6M fitness phone call recordings exposed online

By infosecbulletin / Wednesday , September 10 2025
Security researcher Jeremiah Fowler discovered a database containing sensitive information from gym customers and staff, including names, financial details, and...
Read More
1.6M fitness phone call recordings exposed online

Microsoft September Patch Tuesday 2025 fixes 81 flaws, two zero-days

By infosecbulletin / Wednesday , September 10 2025
Microsoft patched September 2025 Patch Tuesday 81 flaws, including two publicly disclosed zero-day vulnerabilities. This Patch Tuesday addresses nine critical...
Read More
Microsoft September Patch Tuesday 2025 fixes 81 flaws, two zero-days

Elastic Security Incident : Hackers Accessed Email Account Contains Valid Credentials

By infosecbulletin / Tuesday , September 9 2025
Elastic reported a security incident caused by a breach at Salesloft Drift, leading to unauthorized access to an internal email...
Read More
Elastic Security Incident : Hackers Accessed Email Account Contains Valid Credentials

Hacker Exploit Amazon SES to Send 50K Phishing Emails

By infosecbulletin / Tuesday , September 9 2025
Researchers at Wiz discovered a complex phishing campaign using Amazon's Simple Email Service (SES) for large-scale attacks, showing how hacked...
Read More
Hacker Exploit Amazon SES to Send 50K Phishing Emails

SafePay Ransomware
SafePay Ransomware Attacks 73 Orgs in a Single Month

By infosecbulletin / Monday , September 8 2025
The global ransomware landscape continues to shift in 2025, with SafePay rapidly emerging as one of the most active and...
Read More
SafePay Ransomware SafePay Ransomware Attacks 73 Orgs in a Single Month

Bangladesh Cyber Threat Landscape- 2024
602 Vuln exploited: Afftected daily 905 IP In Bangladesh in 2024

By infosecbulletin / Sunday , September 7 2025
Bangladesh Cyber Threat Landscape 2024, by BGD e-GOV CIRT, reveals a sharp escalation in cyber threats across Bangladesh. The year...
Read More
Bangladesh Cyber Threat Landscape- 2024 602 Vuln exploited: Afftected daily 905 IP In Bangladesh in 2024

AI-powered malware hit 2,180 GitHub accounts in “s1ngularity” attack

By infosecbulletin / Sunday , September 7 2025
Investigations into the Nx "s1ngularity" NPM supply chain attack have unveiled a massive fallout, with thousands of account tokens and...
Read More
AI-powered malware hit 2,180 GitHub accounts in “s1ngularity” attack

ISC2 Aims to Bridge DFIR Skill Gap with New Certificate

By infosecbulletin / Saturday , September 6 2025
ISC2 has launched a Threat Handling Foundations Certificate to assist cybersecurity experts in enhancing Digital Forensics and Incident Response (DFIR)...
Read More
ISC2 Aims to Bridge DFIR Skill Gap with New Certificate

These processors feature a quad-core ARM Cortex-A53 (64-bit) application processor, a dual-core ARM Cortex-R5 (32-bit) real-time processor, an ARM Mali-400 GPU, and programmable logic (FPGA).

The Linux kernel is a strong foundation for embedded and general-purpose applications on devices. If unpatched, these flaws could let attackers gain unauthorized access or disrupt systems.

“Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system”.

The patch fixes hundreds of CVEs across various subsystems, architectures, drivers, and protocols. A full list of fixed CVEs can be found in the official security notice.

The new Linux kernel update brings important security fixes and performance enhancements across several subsystems:

Architectures: Updates for ARM32, x86, RISC-V, and S390.
File Systems: Enhanced security and performance for BTRFS, Ext4, GFS2, Ceph, NFS, JFS, and F2FS.
Drivers: Fixes for GPU, USB, Bluetooth, GPIO, Ethernet bonding, and InfiniBand drivers.
Networking: Improvements to TCP, SCTP, IPv4, IPv6, Netfilter, and more.
Security Frameworks: Updates for SELinux and access control modules.
Core Components: Optimizations for memory management and tracing infrastructure.

Source: Ubuntu

Ubuntu has released security updates for vulnerabilities in other systems, along with subsystem updates.

Source: Ubuntu
The vulnerabilities impact various subsystems in the Linux kernel, highlighting their complexity. For the complete list, refer to the Ubuntu Security Notice (USN-7166-4). Canonical has released a kernel update for the linux-xilinx-zynqmp package, version 5.15.0-1039.43. Users should check their current version and upgrade to enhance system security.

Check Also

2024

Google reports 97 zero-days exploited in 2024, 50% in spyware attacks

Google’s Threat Intelligence Group (GTIG) reported that in the year 2024, attackers exploited 75 zero-day …

Mail: [email protected]
© Copyright 2025, All Rights Reserved InfoSecBulletin