This USN addresses multiple vulnerabilities across numerous Linux kernel subsystems, including x86, networking, and filesystems, which could lead to system compromise. Specific details on attack vectors are not provided, but CVSS scores range from Medium (4.7) to High (7.8). Affected version ranges and corresponding fixed versions are detailed per CVE in the NVD data, such as CVE-2022-49267 affecting kernels prior to 5.16.19 and 5.17.2.
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - MMC subsystem; - Network drivers; - USB Device Class drivers; - BTRFS file system; - File systems infrastructure; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - Simplified Mandatory Access Control Kernel framework; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49267, CVE-2024-47659, CVE-2024-49927, CVE-2024-56548, CVE-2024-56593, CVE-2025-21704, CVE-2025-40215)