Canonical has issued multiple Ubuntu Security Notices fixing serious Linux kernel vulnerabilities across Oracle, Azure, and Raspberry Pi systems. The patches close subsystem flaws that could enable remote or local attackers to compromise affected machines.
Canonical’s latest security advisories USN-7801-3, USN-7810-3, USN-7810-2, USN-7808-2, USN-7821-1, and USN-7791-4 deliver kernel-level fixes for several Ubuntu variants. Each update addresses distinct vulnerability sets impacting Oracle Cloud, Microsoft Azure, and Raspberry Pi deployments.
Oracle Cloud updates (USN-7801-3 and USN-7791-4) patch the linux-oracle-6.8 and linux-oracle-6.14 kernels. The fixes cover dozens of components, including ARM and x86 architectures, GPU and network drivers, USB controllers, and file systems such as Ext4 and SMB. Networking layers like IPv4, IPv6, VLAN, and Netfilter also received stability and security improvements. Canonical confirmed that unpatched systems risk privilege escalation or full compromise.
Azure kernel fixes (USN-7810-3, USN-7810-2, and USN-7808-2) address vulnerabilities in the linux-azure-5.15, linux-azure-6.8, and linux-azure-fips kernels. These resolve flaws in packet socket handling, network traffic control, and VMware vSockets drivers. Additional patches improve the Ext4 and SMB file systems, TLS protocol handling, and the XFRM subsystem, ensuring better protection for workloads running in Azure Cloud and FIPS-compliant environments.
Raspberry Pi systems (USN-7821-1) receive updates to the linux-raspi kernel. Canonical fixed vulnerabilities in packet sockets, network traffic control, and vSockets, reducing attack vectors that could allow elevated privileges on ARM-based devices.
Canonical recommends all Ubuntu users apply the latest kernel updates immediately using the standard package management tools. These coordinated advisories highlight the continuous exposure surface within the Linux kernel’s complex architecture, particularly across multi-cloud and embedded environments.
System administrators running affected Ubuntu builds are urged to verify and update their kernels to ensure full protection.
Sources: USN-7801-3, USN-7810-3, USN-7810-2, USN-7808-2, USN-7821-1, USN-7791-4
