Public bug reported: RE: https://launchpad.net/ubuntu/+source/linux- aws-6.14/6.14.0-1018.18~24.04.1
CVE-2025-37959 (bpf: Scrub packet on bpf_redirect_peer) has been backported to linux-aws 6.8.0-1046.49 but is missing from linux-aws-6.14 (6.14.0-1018.18~24.04.1) This causes complete pod networking failure on AWS EKS clusters running Ubuntu Noble 24.04 with Cilium CNI. Upstream fix commit: c4327229948879814229b46aa26a750718888503 Fixed in mainline: 6.14.7, 6.15-rc6+ NVD: https://nvd.nist.gov/vuln/detail/CVE-2025-37959 Package: linux-aws-6.14 Version: 6.14.0-1018.18~24.04.1 Architecture: amd64 ** Affects: linux-aws-6.14 (Ubuntu) Importance: Undecided Status: New ** Tags: aws cve kernel networking ** Description changed: RE: https://launchpad.net/ubuntu/+source/linux- aws-6.14/6.14.0-1018.18~24.04.1 CVE-2025-37959 (bpf: Scrub packet on bpf_redirect_peer) has been backported to linux-aws 6.8.0-1046.49 but is missing from linux-aws-6.14 (6.14.0-1018.18~24.04.1) - This causes complete pod networking failure on AWS EKS clusters running Ubuntu Noble 24.04 with Cilium CNI. - Upstream fix commit: c4327229948879814229b46aa26a750718888503 + This causes complete pod networking failure on AWS EKS clusters running + Ubuntu Noble 24.04 with Cilium CNI. + + Upstream fix commit: c4327229948879814229b46aa26a750718888503 Fixed in mainline: 6.14.7, 6.15-rc6+ NVD: https://nvd.nist.gov/vuln/detail/CVE-2025-37959 Package: linux-aws-6.14 Version: 6.14.0-1018.18~24.04.1 Architecture: amd64 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2142060 Title: CVE-2025-37959 missing from linux-aws-6.14 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux-aws-6.14/+bug/2142060/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
