USN-7862-1

Details

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this to expose sensitive information from the host OS.

Affected Packages(17 packages)

linux

Ubuntu 22.04 LTS

Fixed in:

5.15.0-161.171

linux-aws

Ubuntu 22.04 LTS

Fixed in:

5.15.0-1096.103

linux-gcp

Ubuntu 22.04 LTS

Fixed in:

5.15.0-1096.105

linux-gke

Ubuntu 22.04 LTS

Fixed in:

5.15.0-1092.98

linux-gkeop

Ubuntu 22.04 LTS

Fixed in:

5.15.0-1079.87

linux-ibm

Ubuntu 22.04 LTS

Fixed in:

5.15.0-1090.93

linux-intel-iotg

Ubuntu 22.04 LTS

Fixed in:

5.15.0-1091.97

linux-lowlatency

Ubuntu 22.04 LTS

Fixed in:

5.15.0-161.171

linux-nvidia

Ubuntu 22.04 LTS

Fixed in:

5.15.0-1091.92

linux-oracle

Ubuntu 22.04 LTS

Fixed in:

5.15.0-1093.99

References

REPORThttps://ubuntu.com/security/CVE-2025-40300 ADVISORYhttps://ubuntu.com/security/notices/USN-7862-1

USN-7862-1

Details

Affected Packages(17 packages)

References

Upstream

Ecosystems

Timeline