Sunday , July 20 2025
Linux

126 Linux kernel Vulns Allow Attackers Exploit 78 Linux Sub-Systems

infosecbulletin Tuesday , January 21 2025 Uncategorized

Ubuntu 22.04 LTS users are advised to update their systems right away due to a crucial security patch from Canonical that fixes critical vulnerabilities in the Linux kernel for Xilinx ZynqMP processors.

The Linux kernel for Xilinx Zynq UltraScale+ MPSoC is customized to support the features and hardware of these processors.

HPE alerts of hardcoded passwords in Aruba access points

By infosecbulletin / Sunday , July 20 2025
Hewlett-Packard Enterprise (HPE) warns that Aruba Instant On Access Points have hardcoded credentials, enabling attackers to skip normal authentication and...
Read More
HPE alerts of hardcoded passwords in Aruba access points

Akira Ransomware Allegedly Compromise 12 Companies in 72 Hours

By infosecbulletin / Sunday , July 20 2025
The Akira ransomware group increased its attacks, adding 12 new victims to its dark web portal from July 15 to...
Read More
Akira Ransomware Allegedly Compromise 12 Companies in 72 Hours

Singapore urgently engage military force to tackle ‘serious’ cyberattack

By infosecbulletin / Saturday , July 19 2025
Defence Minister Chan Chun Sing said these select units will work with the Cyber Security Agency (CSA) in a united...
Read More
Singapore urgently engage military force to tackle ‘serious’ cyberattack

Hackers infect 10M Androids with BADBOX 2.0

By infosecbulletin / Saturday , July 19 2025
Google is suing 25 unidentified cybercriminals thought to be from China for running BADBOX 2.0, a major global botnet with...
Read More
Hackers infect 10M Androids with BADBOX 2.0

Oracle Patched 200 Vulns With July 2025 CPU

By infosecbulletin / Saturday , July 19 2025
Oracle's July 2025 Critical Patch Update includes 309 new security patches, with 127 addressing remotely exploitable vulnerabilities. SecurityWeek found about...
Read More
Oracle Patched 200 Vulns With July 2025 CPU

Ivanti Zero-Days Exploited to Drop MDifyLoader

By infosecbulletin / Saturday , July 19 2025
Cybersecurity researchers have revealed a new malware named MDifyLoader, linked to cyber attacks using security vulnerabilities in Ivanti Connect Secure...
Read More
Ivanti Zero-Days Exploited to Drop MDifyLoader

CISA added Fortinet FortiWeb vul to KEV catalog

By infosecbulletin / Saturday , July 19 2025
U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a crucial vulnerability in Fortinet FortiWeb in its Known Exploited Vulnerabilities...
Read More
CISA added Fortinet FortiWeb vul to KEV catalog

Adoption Agency Exposes One Million+ Records

By infosecbulletin / Saturday , July 19 2025
Security researcher Jeremiah Fowler discovered an online database exposing sensitive information from an adoption agency. Jeremiah Fowler Jeremiah specializes in...
Read More
Adoption Agency Exposes One Million+ Records

CVE-2025-20337
Patch Now! Cisco ISE bug allows pre-auth command execution

By infosecbulletin / Friday , July 18 2025
A critical vulnerability in Cisco Identity Services Engine (ISE) and Cisco ISE-PIC, identified as CVE-2025-20337, has a CVSS score of...
Read More
CVE-2025-20337 Patch Now! Cisco ISE bug allows pre-auth command execution

BD Bank Honours PABC Officials for Foiling $20 Million Cyber Fraud Attempt

By infosecbulletin / Thursday , July 17 2025
On Tuesday, Bangladesh Bank organized a special award ceremony at its headquarters in Dhaka to formally recognize and honor a...
Read More
BD Bank Honours PABC Officials for Foiling $20 Million Cyber Fraud Attempt

These processors feature a quad-core ARM Cortex-A53 (64-bit) application processor, a dual-core ARM Cortex-R5 (32-bit) real-time processor, an ARM Mali-400 GPU, and programmable logic (FPGA).

The Linux kernel is a strong foundation for embedded and general-purpose applications on devices. If unpatched, these flaws could let attackers gain unauthorized access or disrupt systems.

“Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system”.

The patch fixes hundreds of CVEs across various subsystems, architectures, drivers, and protocols. A full list of fixed CVEs can be found in the official security notice.

The new Linux kernel update brings important security fixes and performance enhancements across several subsystems:

Architectures: Updates for ARM32, x86, RISC-V, and S390.
File Systems: Enhanced security and performance for BTRFS, Ext4, GFS2, Ceph, NFS, JFS, and F2FS.
Drivers: Fixes for GPU, USB, Bluetooth, GPIO, Ethernet bonding, and InfiniBand drivers.
Networking: Improvements to TCP, SCTP, IPv4, IPv6, Netfilter, and more.
Security Frameworks: Updates for SELinux and access control modules.
Core Components: Optimizations for memory management and tracing infrastructure.

Source: Ubuntu

Ubuntu has released security updates for vulnerabilities in other systems, along with subsystem updates.

Source: Ubuntu
The vulnerabilities impact various subsystems in the Linux kernel, highlighting their complexity. For the complete list, refer to the Ubuntu Security Notice (USN-7166-4). Canonical has released a kernel update for the linux-xilinx-zynqmp package, version 5.15.0-1039.43. Users should check their current version and upgrade to enhance system security.

Check Also

FortiGate

Hackers retain access to patched FortiGate VPNs using symlinks

Recent incidents continue to bring this into focus with active exploitations of known vulnerabilities as …

Leave a Reply

Your email address will not be published. Required fields are marked *

Mail: [email protected]
© Copyright 2025, All Rights Reserved InfoSecBulletin