Home / mailingsPDF  

[USN-8489-1] Linux kernel (OEM) vulnerabilities

Posted on 01 July 2026
Ubuntu Security

==========================================================================Ubuntu Security Notice USN-8489-1
July 01, 2026

linux-oem-7.0 vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 26.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:
- linux-oem-7.0: Linux kernel for OEM systems

Details:

It was discovered that the Linux kernel did not properly handle shared page
fragments during socket buffer operations, collectively known as Dirty
Frag. A logic flaw existed in the XFRM ESP-in-TCP subsystem and in the
RxRPC networking subsystem when processing paged fragments. A local
attacker could use this to escalate privileges, or possibly escape a
container. (CVE-2026-43284, CVE-2026-43500, CVE-2026-45998, CVE-2026-46000)

It was discovered that a logic flaw existed in the XFRM ESP-in-TCP
subsystem in the Linux kernel when handling socket buffer fragments. This
flaw is known as Fragnesia. A local attacker could use this to escalate
privileges, or possibly escape a container. (CVE-2026-43503,
CVE-2026-46300)

Qualys discovered that a race condition existed in the ptrace subsystem of
the Linux kernel when privileged processes are exiting. An unprivileged
local attacker could use this issue to expose sensitive information.
(CVE-2026-46333)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contain a memory leak when handling AppArmor notifications. A local
attacker could use this to cause resource exhaustion. (CVE-2026-47326)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contain a NULL pointer dereference when handling AppArmor notifications. A
local attacker could use this to cause a kernel oops. (CVE-2026-47327)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained an invalid free when handling AppArmor notifications. A local
attacker could use this to corrupt kernel memory. (CVE-2026-47328)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained insufficient validation of AppArmor notification responses. A
local attacker could use this to allow crafted responses to be processed.
(CVE-2026-47329)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0 used
an uninitialized variable when handling AppArmor notifications. A local
attacker could use this to cause incorrect caching of data.
(CVE-2026-47330)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained an out-of-bounds (OOB) read when handling AppArmor notifications.
A local attacker could use this to cause information disclosure of kernel
memory. (CVE-2026-47332)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained a out-of-bounds (OOB) read when handling AppArmor notifications.
A local attacker could use this to cause kernel memory corruption and,
theoretically, influence processing of AppArmor policies. (CVE-2026-47333)

Tristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0
contained incorrect holding of locks when handling AppArmor notifications.
A local attacker could use this to cause a kernel panic or deadlock.
(CVE-2026-47334)

Tristan Madani and Trevor Lawrence have each independently discovered that
Ubuntu Linux kernel 6.8, 6.17 and 7.0 contained a NULL pointer dereference
when handling AppArmor network socket mediation. A local attacker could use
this to cause a kernel oops. (CVE-2026-47337)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- ARM64 architecture;
- x86 architecture;
- Block layer subsystem;
- Cryptographic API;
- Rados block device (RBD) driver;
- Compressed RAM block device driver;
- Character device driver;
- TPM device driver;
- Hardware crypto device drivers;
- EDAC drivers;
- GPU drivers;
- Greybus drivers;
- Hardware monitoring drivers;
- IIO subsystem;
- InfiniBand drivers;
- Input Device core drivers;
- LED subsystem;
- Multiple devices driver;
- Media drivers;
- IBM Advanced System Management driver;
- MTD block device drivers;
- Network drivers;
- Microsoft Azure Network Adapter (MANA) driver;
- NVME drivers;
- Device tree and open firmware driver;
- PCI subsystem;
- Remote Processor subsystem;
- SCSI subsystem;
- SPI subsystem;
- Thermal drivers;
- VFIO drivers;
- Framebuffer layer;
- 9P distributed file system;
- AFS file system;
- Ceph distributed file system;
- EROFS file system;
- File systems infrastructure;
- Ext4 file system;
- Journaling layer for block devices (JBD2);
- File system notification infrastructure;
- NTFS3 file system;
- OCFS2 file system;
- Overlay file system;
- SMB network file system;
- UDF file system;
- XFS file system;
- Codetag library;
- Memory management;
- Tracing infrastructure;
- io_uring subsystem;
- Locking primitives;
- Scatterlist API;
- Heterogeneous memory management;
- Bluetooth subsystem;
- Ethernet bridge;
- CAIF protocol;
- Ceph Core library;
- Networking core;
- IPv4 networking;
- IPv6 networking;
- Multipath TCP;
- Netfilter;
- Qualcomm IPC Router (QRTR);
- RDS protocol;
- RxRPC session sockets;
- SMC sockets;
- Stream parser;
- Landlock security;
- SELinux security module;
- ALSA framework;
- Generic PCM loopback sound driver;
- Creative Sound Blaster X-Fi driver;
- USB sound devices;
(CVE-2026-43491, CVE-2026-43493, CVE-2026-43494, CVE-2026-43499,
CVE-2026-43501, CVE-2026-45986, CVE-2026-45987, CVE-2026-45988,
CVE-2026-45989, CVE-2026-45990, CVE-2026-45991, CVE-2026-45994,
CVE-2026-45995, CVE-2026-45996, CVE-2026-45997, CVE-2026-45999,
CVE-2026-46001, CVE-2026-46002, CVE-2026-46003, CVE-2026-46004,
CVE-2026-46005, CVE-2026-46006, CVE-2026-46007, CVE-2026-46008,
CVE-2026-46009, CVE-2026-46010, CVE-2026-46011, CVE-2026-46012,
CVE-2026-46013, CVE-2026-46014, CVE-2026-46015, CVE-2026-46016,
CVE-2026-46018, CVE-2026-46019, CVE-2026-46020, CVE-2026-46021,
CVE-2026-46022, CVE-2026-46023, CVE-2026-46024, CVE-2026-46025,
CVE-2026-46026, CVE-2026-46027, CVE-2026-46028, CVE-2026-46029,
CVE-2026-46030, CVE-2026-46031, CVE-2026-46032, CVE-2026-46033,
CVE-2026-46034, CVE-2026-46035, CVE-2026-46036, CVE-2026-46037,
CVE-2026-46038, CVE-2026-46039, CVE-2026-46040, CVE-2026-46041,
CVE-2026-46042, CVE-2026-46043, CVE-2026-46044, CVE-2026-46045,
CVE-2026-46046, CVE-2026-46047, CVE-2026-46048, CVE-2026-46049,
CVE-2026-46050, CVE-2026-46051, CVE-2026-46052, CVE-2026-46053,
CVE-2026-46054, CVE-2026-46056, CVE-2026-46057, CVE-2026-46058,
CVE-2026-46059, CVE-2026-46060, CVE-2026-46061, CVE-2026-46062,
CVE-2026-46063, CVE-2026-46064, CVE-2026-46065, CVE-2026-46066,
CVE-2026-46067, CVE-2026-46068, CVE-2026-46069, CVE-2026-46070,
CVE-2026-46071, CVE-2026-46072, CVE-2026-46073, CVE-2026-46074,
CVE-2026-46075, CVE-2026-46076, CVE-2026-46077, CVE-2026-46078,
CVE-2026-46079, CVE-2026-46080, CVE-2026-46081, CVE-2026-46082,
CVE-2026-46083, CVE-2026-46084, CVE-2026-46085, CVE-2026-46086,
CVE-2026-46087, CVE-2026-46088, CVE-2026-46089, CVE-2026-46090,
CVE-2026-46091, CVE-2026-46092, CVE-2026-46093, CVE-2026-46094,
CVE-2026-46095, CVE-2026-46096, CVE-2026-46097, CVE-2026-46098,
CVE-2026-46099, CVE-2026-46100, CVE-2026-46101, CVE-2026-46102,
CVE-2026-46103, CVE-2026-46115, CVE-2026-46119, CVE-2026-46135,
CVE-2026-46137, CVE-2026-46155, CVE-2026-46185, CVE-2026-46195,
CVE-2026-46243, CVE-2026-46244, CVE-2026-46276, CVE-2026-46277,
CVE-2026-46278, CVE-2026-46279, CVE-2026-46280, CVE-2026-46281,
CVE-2026-46282, CVE-2026-46283, CVE-2026-46284, CVE-2026-46285,
CVE-2026-46286, CVE-2026-46287, CVE-2026-46288, CVE-2026-46289,
CVE-2026-46316, CVE-2026-46323, CVE-2026-46332, CVE-2026-52904,
CVE-2026-52905, CVE-2026-52906, CVE-2026-52907, CVE-2026-52933,
CVE-2026-53174)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
linux-image-7.0.0-1008-oem 7.0.0-1008.8
linux-image-oem-26.04 7.0.0-1008.8
linux-image-oem-26.04a 7.0.0-1008.8
linux-image-oem-7.0 7.0.0-1008.8

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
https://ubuntu.com/security/notices/USN-8489-1
CVE-2026-43284, CVE-2026-43491, CVE-2026-43493, CVE-2026-43494,
CVE-2026-43499, CVE-2026-43500, CVE-2026-43501, CVE-2026-43503,
CVE-2026-45986, CVE-2026-45987, CVE-2026-45988, CVE-2026-45989,
CVE-2026-45990, CVE-2026-45991, CVE-2026-45994, CVE-2026-45995,
CVE-2026-45996, CVE-2026-45997, CVE-2026-45998, CVE-2026-45999,
CVE-2026-46000, CVE-2026-46001, CVE-2026-46002, CVE-2026-46003,
CVE-2026-46004, CVE-2026-46005, CVE-2026-46006, CVE-2026-46007,
CVE-2026-46008, CVE-2026-46009, CVE-2026-46010, CVE-2026-46011,
CVE-2026-46012, CVE-2026-46013, CVE-2026-46014, CVE-2026-46015,
CVE-2026-46016, CVE-2026-46018, CVE-2026-46019, CVE-2026-46020,
CVE-2026-46021, CVE-2026-46022, CVE-2026-46023, CVE-2026-46024,
CVE-2026-46025, CVE-2026-46026, CVE-2026-46027, CVE-2026-46028,
CVE-2026-46029, CVE-2026-46030, CVE-2026-46031, CVE-2026-46032,
CVE-2026-46033, CVE-2026-46034, CVE-2026-46035, CVE-2026-46036,
CVE-2026-46037, CVE-2026-46038, CVE-2026-46039, CVE-2026-46040,
CVE-2026-46041, CVE-2026-46042, CVE-2026-46043, CVE-2026-46044,
CVE-2026-46045, CVE-2026-46046, CVE-2026-46047, CVE-2026-46048,
CVE-2026-46049, CVE-2026-46050, CVE-2026-46051, CVE-2026-46052,
CVE-2026-46053, CVE-2026-46054, CVE-2026-46056, CVE-2026-46057,
CVE-2026-46058, CVE-2026-46059, CVE-2026-46060, CVE-2026-46061,
CVE-2026-46062, CVE-2026-46063, CVE-2026-46064, CVE-2026-46065,
CVE-2026-46066, CVE-2026-46067, CVE-2026-46068, CVE-2026-46069,
CVE-2026-46070, CVE-2026-46071, CVE-2026-46072, CVE-2026-46073,
CVE-2026-46074, CVE-2026-46075, CVE-2026-46076, CVE-2026-46077,
CVE-2026-46078, CVE-2026-46079, CVE-2026-46080, CVE-2026-46081,
CVE-2026-46082, CVE-2026-46083, CVE-2026-46084, CVE-2026-46085,
CVE-2026-46086, CVE-2026-46087, CVE-2026-46088, CVE-2026-46089,
CVE-2026-46090, CVE-2026-46091, CVE-2026-46092, CVE-2026-46093,
CVE-2026-46094, CVE-2026-46095, CVE-2026-46096, CVE-2026-46097,
CVE-2026-46098, CVE-2026-46099, CVE-2026-46100, CVE-2026-46101,
CVE-2026-46102, CVE-2026-46103, CVE-2026-46115, CVE-2026-46119,
CVE-2026-46135, CVE-2026-46137, CVE-2026-46155, CVE-2026-46185,
CVE-2026-46195, CVE-2026-46243, CVE-2026-46244, CVE-2026-46276,
CVE-2026-46277, CVE-2026-46278, CVE-2026-46279, CVE-2026-46280,
CVE-2026-46281, CVE-2026-46282, CVE-2026-46283, CVE-2026-46284,
CVE-2026-46285, CVE-2026-46286, CVE-2026-46287, CVE-2026-46288,
CVE-2026-46289, CVE-2026-46300, CVE-2026-46316, CVE-2026-46323,
CVE-2026-46332, CVE-2026-46333, CVE-2026-47326, CVE-2026-47327,
CVE-2026-47328, CVE-2026-47329, CVE-2026-47330, CVE-2026-47332,
CVE-2026-47333, CVE-2026-47334, CVE-2026-47337, CVE-2026-52904,
CVE-2026-52905, CVE-2026-52906, CVE-2026-52907, CVE-2026-52933,
CVE-2026-53174

Package Information:
https://launchpad.net/ubuntu/+source/linux-oem-7.0/7.0.0-1008.8


--=-=-=Content-Type: application/pgp-signature; name="signature.asc"

 

TOP