[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-USN-8374-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-15T16:50:22.492Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":174,"duplicates":175,"related":176,"reserved_at":9,"published_at":217,"modified_at":218,"state":9,"summary":219,"references_raw":221,"kevs":389,"epss":9,"epss_history":390,"metrics":391,"affected":392},"USN-8374-1","linux-aws-6.17, linux-gcp, linux-gcp-6.17 vulnerabilities\n\nIt was discovered that the Linux kernel algif_aead module did not properly\nhandle in-place cryptographic operations. This flaw is known as Copy Fail.\nA local attacker could use this to escalate privileges, or possibly escape\na container. (CVE-2026-31431)\n\nIt was discovered that the Linux kernel did not properly handle shared page\nfragments during socket buffer operations, collectively known as Dirty\nFrag. A logic flaw existed in the XFRM ESP-in-TCP subsystem and in the\nRxRPC networking subsystem when processing paged fragments. A local\nattacker could use this to escalate privileges, or possibly escape a\ncontainer. (CVE-2026-43284, CVE-2026-43500, CVE-2026-45998, CVE-2026-46000)\n\nIt was discovered that a logic flaw existed in the XFRM ESP-in-TCP\nsubsystem in the Linux kernel when handling socket buffer fragments. This\nflaw is known as Fragnesia. A local attacker could use this to escalate\nprivileges, or possibly escape a container. (CVE-2026-43503,\nCVE-2026-46300)\n\nQualys discovered that a race condition existed in the ptrace subsystem of\nthe Linux kernel when privileged processes are exiting. An unprivileged\nlocal attacker could use this issue to expose sensitive information.\n(CVE-2026-46333)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontain a memory leak when handling AppArmor notifications. A local\nattacker could use this to cause resource exhaustion. (CVE-2026-47326)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontain a NULL pointer dereference when handling AppArmor notifications. A\nlocal attacker could use this to cause a kernel oops. (CVE-2026-47327)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained an invalid free when handling AppArmor notifications. A local\nattacker could use this to corrupt kernel memory. (CVE-2026-47328)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained insufficient validation of AppArmor notification responses. A\nlocal attacker could use this to allow crafted responses to be processed.\n(CVE-2026-47329)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0 used\nan uninitialized variable when handling AppArmor notifications. A local\nattacker could use this to cause incorrect caching of data.\n(CVE-2026-47330)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained an out-of-bounds (OOB) read when handling AppArmor notifications.\nA local attacker could use this to cause information disclosure of kernel\nmemory. (CVE-2026-47332)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained a out-of-bounds (OOB) read when handling AppArmor notifications.\nA local attacker could use this to cause kernel memory corruption and,\ntheoretically, influence processing of AppArmor policies. (CVE-2026-47333)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained incorrect holding of locks when handling AppArmor notifications.\nA local attacker could use this to cause a kernel panic or deadlock.\n(CVE-2026-47334)\n\nTristan Madani and Trevor Lawrence have each independently discovered that\nUbuntu Linux kernel 6.8, 6.17 and 7.0 contained a NULL pointer dereference\nwhen handling AppArmor network socket mediation. A local attacker could use\nthis to cause a kernel oops. (CVE-2026-47337)\n\nSeveral security issues were discovered in the Linux kernel.\nAn attacker could possibly use these to compromise the system.\nThis update corrects flaws in the following subsystems:\n  - S390 architecture;\n  - Cryptographic API;\n  - GPU drivers;\n  - Ethernet bonding driver;\n  - Network file system (NFS) server daemon;\n  - Distributed Switch Architecture;\n  - Netfilter;\n  - Control group (cgroup);\n  - Kernel kexec() syscall;\n  - Memory management;\n  - MAC80211 subsystem;\n  - Multipath TCP;\n  - Packet sockets;\n  - RDS protocol;\n  - RxRPC session sockets;\n  - TLS protocol;\n  - Unix domain sockets;\n  - AppArmor security module;\n(CVE-2025-71088, CVE-2025-71090, CVE-2025-71127, CVE-2025-71134,\nCVE-2025-71139, CVE-2025-71141, CVE-2025-71142, CVE-2025-71144,\nCVE-2025-71152, CVE-2025-71155, CVE-2026-23274, CVE-2026-23351,\nCVE-2026-23394, CVE-2026-31419, CVE-2026-31504, CVE-2026-31533,\nCVE-2026-31676, CVE-2026-43033, CVE-2026-43077, CVE-2026-43078,\nCVE-2026-43494, CVE-2026-45966, CVE-2026-46028)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110,112,114,116,118,120,122,124,126,128,130,132,134,136,138,140,142,144,146,148,150,152,154,156,158,160,162,164,166,168,170,172],{"_key":15},"CVE-2025-71088",{"_key":17},"CVE-2025-71090",{"_key":19},"CVE-2025-71127",{"_key":21},"CVE-2025-71134",{"_key":23},"CVE-2025-71139",{"_key":25},"CVE-2025-71141",{"_key":27},"CVE-2025-71142",{"_key":29},"CVE-2025-71144",{"_key":31},"CVE-2025-71152",{"_key":33},"CVE-2025-71155",{"_key":35},"CVE-2026-23274",{"_key":37},"CVE-2026-23351",{"_key":39},"CVE-2026-23394",{"_key":41},"CVE-2026-31419",{"_key":43},"CVE-2026-31431",{"_key":45},"CVE-2026-31504",{"_key":47},"CVE-2026-31533",{"_key":49},"CVE-2026-31676",{"_key":51},"CVE-2026-43033",{"_key":53},"CVE-2026-43077",{"_key":55},"CVE-2026-43078",{"_key":57},"CVE-2026-43284",{"_key":59},"CVE-2026-43494",{"_key":61},"CVE-2026-43500",{"_key":63},"CVE-2026-43503",{"_key":65},"CVE-2026-45966",{"_key":67},"CVE-2026-45998",{"_key":69},"CVE-2026-46000",{"_key":71},"CVE-2026-46028",{"_key":73},"CVE-2026-46300",{"_key":75},"CVE-2026-46333",{"_key":77},"CVE-2026-47326",{"_key":79},"CVE-2026-47327",{"_key":81},"CVE-2026-47328",{"_key":83},"CVE-2026-47329",{"_key":85},"CVE-2026-47330",{"_key":87},"CVE-2026-47332",{"_key":89},"CVE-2026-47333",{"_key":91},"CVE-2026-47334",{"_key":93},"CVE-2026-47337",{"_key":95},"UBUNTU-CVE-2025-71088",{"_key":97},"UBUNTU-CVE-2025-71090",{"_key":99},"UBUNTU-CVE-2025-71127",{"_key":101},"UBUNTU-CVE-2025-71134",{"_key":103},"UBUNTU-CVE-2025-71139",{"_key":105},"UBUNTU-CVE-2025-71141",{"_key":107},"UBUNTU-CVE-2025-71142",{"_key":109},"UBUNTU-CVE-2025-71144",{"_key":111},"UBUNTU-CVE-2025-71152",{"_key":113},"UBUNTU-CVE-2025-71155",{"_key":115},"UBUNTU-CVE-2026-23274",{"_key":117},"UBUNTU-CVE-2026-23351",{"_key":119},"UBUNTU-CVE-2026-23394",{"_key":121},"UBUNTU-CVE-2026-31419",{"_key":123},"UBUNTU-CVE-2026-31431",{"_key":125},"UBUNTU-CVE-2026-31504",{"_key":127},"UBUNTU-CVE-2026-31533",{"_key":129},"UBUNTU-CVE-2026-31676",{"_key":131},"UBUNTU-CVE-2026-43033",{"_key":133},"UBUNTU-CVE-2026-43077",{"_key":135},"UBUNTU-CVE-2026-43078",{"_key":137},"UBUNTU-CVE-2026-43284",{"_key":139},"UBUNTU-CVE-2026-43494",{"_key":141},"UBUNTU-CVE-2026-43500",{"_key":143},"UBUNTU-CVE-2026-43503",{"_key":145},"UBUNTU-CVE-2026-45966",{"_key":147},"UBUNTU-CVE-2026-45998",{"_key":149},"UBUNTU-CVE-2026-46000",{"_key":151},"UBUNTU-CVE-2026-46028",{"_key":153},"UBUNTU-CVE-2026-46300",{"_key":155},"UBUNTU-CVE-2026-46333",{"_key":157},"UBUNTU-CVE-2026-47326",{"_key":159},"UBUNTU-CVE-2026-47327",{"_key":161},"UBUNTU-CVE-2026-47328",{"_key":163},"UBUNTU-CVE-2026-47329",{"_key":165},"UBUNTU-CVE-2026-47330",{"_key":167},"UBUNTU-CVE-2026-47332",{"_key":169},"UBUNTU-CVE-2026-47333",{"_key":171},"UBUNTU-CVE-2026-47334",{"_key":173},"UBUNTU-CVE-2026-47337",[],[],[177,178,179,180,181,182,183,184,185,186,187,188,189,190,191,192,193,194,195,196,197,198,199,200,201,202,203,204,205,206,207,208,209,210,211,212,213,214,215,216],{"_key":97},{"_key":101},{"_key":103},{"_key":107},{"_key":113},{"_key":145},{"_key":95},{"_key":99},{"_key":105},{"_key":109},{"_key":111},{"_key":119},{"_key":129},{"_key":147},{"_key":149},{"_key":157},{"_key":159},{"_key":161},{"_key":163},{"_key":165},{"_key":167},{"_key":169},{"_key":171},{"_key":173},{"_key":115},{"_key":117},{"_key":121},{"_key":123},{"_key":125},{"_key":127},{"_key":131},{"_key":133},{"_key":135},{"_key":137},{"_key":139},{"_key":141},{"_key":143},{"_key":151},{"_key":153},{"_key":155},"2026-06-02T18:00:00Z","2026-06-03T20:03:13.913711872Z",{"cisa_kev":220,"cisa_ransomware":220,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[222,228,233,237,241,245,249,253,257,261,265,269,273,277,281,285,289,293,297,301,305,309,313,317,321,325,329,333,337,341,345,349,353,357,361,365,369,373,377,381,385],{"url":223,"sources":224,"tags":226},"https://ubuntu.com/security/notices/USN-8374-1",[225],"osv_ubuntu",[227],"Advisory",{"url":229,"sources":230,"tags":231},"https://ubuntu.com/security/CVE-2025-71088",[225],[232],"REPORT",{"url":234,"sources":235,"tags":236},"https://ubuntu.com/security/CVE-2025-71090",[225],[232],{"url":238,"sources":239,"tags":240},"https://ubuntu.com/security/CVE-2025-71127",[225],[232],{"url":242,"sources":243,"tags":244},"https://ubuntu.com/security/CVE-2025-71134",[225],[232],{"url":246,"sources":247,"tags":248},"https://ubuntu.com/security/CVE-2025-71139",[225],[232],{"url":250,"sources":251,"tags":252},"https://ubuntu.com/security/CVE-2025-71141",[225],[232],{"url":254,"sources":255,"tags":256},"https://ubuntu.com/security/CVE-2025-71142",[225],[232],{"url":258,"sources":259,"tags":260},"https://ubuntu.com/security/CVE-2025-71144",[225],[232],{"url":262,"sources":263,"tags":264},"https://ubuntu.com/security/CVE-2025-71152",[225],[232],{"url":266,"sources":267,"tags":268},"https://ubuntu.com/security/CVE-2025-71155",[225],[232],{"url":270,"sources":271,"tags":272},"https://ubuntu.com/security/CVE-2026-23274",[225],[232],{"url":274,"sources":275,"tags":276},"https://ubuntu.com/security/CVE-2026-23351",[225],[232],{"url":278,"sources":279,"tags":280},"https://ubuntu.com/security/CVE-2026-23394",[225],[232],{"url":282,"sources":283,"tags":284},"https://ubuntu.com/security/CVE-2026-31419",[225],[232],{"url":286,"sources":287,"tags":288},"https://ubuntu.com/security/CVE-2026-31431",[225],[232],{"url":290,"sources":291,"tags":292},"https://ubuntu.com/security/CVE-2026-31504",[225],[232],{"url":294,"sources":295,"tags":296},"https://ubuntu.com/security/CVE-2026-31533",[225],[232],{"url":298,"sources":299,"tags":300},"https://ubuntu.com/security/CVE-2026-31676",[225],[232],{"url":302,"sources":303,"tags":304},"https://ubuntu.com/security/CVE-2026-43033",[225],[232],{"url":306,"sources":307,"tags":308},"https://ubuntu.com/security/CVE-2026-43077",[225],[232],{"url":310,"sources":311,"tags":312},"https://ubuntu.com/security/CVE-2026-43078",[225],[232],{"url":314,"sources":315,"tags":316},"https://ubuntu.com/security/CVE-2026-43284",[225],[232],{"url":318,"sources":319,"tags":320},"https://ubuntu.com/security/CVE-2026-43494",[225],[232],{"url":322,"sources":323,"tags":324},"https://ubuntu.com/security/CVE-2026-43500",[225],[232],{"url":326,"sources":327,"tags":328},"https://ubuntu.com/security/CVE-2026-43503",[225],[232],{"url":330,"sources":331,"tags":332},"https://ubuntu.com/security/CVE-2026-45966",[225],[232],{"url":334,"sources":335,"tags":336},"https://ubuntu.com/security/CVE-2026-45998",[225],[232],{"url":338,"sources":339,"tags":340},"https://ubuntu.com/security/CVE-2026-46000",[225],[232],{"url":342,"sources":343,"tags":344},"https://ubuntu.com/security/CVE-2026-46028",[225],[232],{"url":346,"sources":347,"tags":348},"https://ubuntu.com/security/CVE-2026-46300",[225],[232],{"url":350,"sources":351,"tags":352},"https://ubuntu.com/security/CVE-2026-46333",[225],[232],{"url":354,"sources":355,"tags":356},"https://ubuntu.com/security/CVE-2026-47326",[225],[232],{"url":358,"sources":359,"tags":360},"https://ubuntu.com/security/CVE-2026-47327",[225],[232],{"url":362,"sources":363,"tags":364},"https://ubuntu.com/security/CVE-2026-47328",[225],[232],{"url":366,"sources":367,"tags":368},"https://ubuntu.com/security/CVE-2026-47329",[225],[232],{"url":370,"sources":371,"tags":372},"https://ubuntu.com/security/CVE-2026-47330",[225],[232],{"url":374,"sources":375,"tags":376},"https://ubuntu.com/security/CVE-2026-47332",[225],[232],{"url":378,"sources":379,"tags":380},"https://ubuntu.com/security/CVE-2026-47333",[225],[232],{"url":382,"sources":383,"tags":384},"https://ubuntu.com/security/CVE-2026-47334",[225],[232],{"url":386,"sources":387,"tags":388},"https://ubuntu.com/security/CVE-2026-47337",[225],[232],[],[],[],[393,405,411],{"ecosystem":394,"name":395,"vendor":396,"product":395,"cpe_part":9,"purl_type":397,"purl_namespace":396,"purl_name":395,"source":9,"versions":398},"Ubuntu","linux-aws-6.17","ubuntu","deb",[399],{"version":400,"is_range":401,"range_type":402,"version_start":9,"version_start_type":9,"version_end":403,"version_end_type":404,"fixed_in":9},"lt6_17_0_1017_17~24_04_1",true,"ecosystem","6.17.0-1017.17~24.04.1","excluding",{"ecosystem":394,"name":406,"vendor":396,"product":406,"cpe_part":9,"purl_type":397,"purl_namespace":396,"purl_name":406,"source":9,"versions":407},"linux-gcp",[408],{"version":409,"is_range":401,"range_type":402,"version_start":9,"version_start_type":9,"version_end":410,"version_end_type":404,"fixed_in":9},"lt6_17_0_1018_19","6.17.0-1018.19",{"ecosystem":394,"name":412,"vendor":396,"product":412,"cpe_part":9,"purl_type":397,"purl_namespace":396,"purl_name":412,"source":9,"versions":413},"linux-gcp-6.17",[414],{"version":415,"is_range":401,"range_type":402,"version_start":9,"version_start_type":9,"version_end":416,"version_end_type":404,"fixed_in":9},"lt6_17_0_1018_19~24_04_1","6.17.0-1018.19~24.04.1"]