[USN-8159-2] Linux kernel (FIPS) vulnerabilities

========================================================================== Ubuntu Security Notice USN-8159-2 April 08, 2026 linux-fips, linux-aws-fips, linux-gcp-fips vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-aws-fips: Linux kernel for Amazon Web Services (AWS) systems with FIPS - linux-fips: Linux kernel with FIPS - linux-gcp-fips: Linux kernel for Google Cloud Platform (GCP) systems with FIPS Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Cryptographic API; - Netfilter; - Network traffic control; (CVE-2025-37849, CVE-2026-23060, CVE-2026-23074, CVE-2026-23111) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS linux-image-5.15.0-1104-aws-fips 5.15.0-1104.111+fips1 Available with Ubuntu Pro linux-image-5.15.0-1104-gcp-fips 5.15.0-1104.113+fips1 Available with Ubuntu Pro linux-image-5.15.0-174-fips 5.15.0-174.184+fips1 Available with Ubuntu Pro linux-image-aws-fips 5.15.0.1104.100 Available with Ubuntu Pro linux-image-aws-fips-5.15 5.15.0.1104.100 Available with Ubuntu Pro linux-image-fips 5.15.0.174.101 Available with Ubuntu Pro linux-image-fips-5.15 5.15.0.174.101 Available with Ubuntu Pro linux-image-gcp-fips 5.15.0.1104.94 Available with Ubuntu Pro linux-image-gcp-fips-5.15 5.15.0.1104.94 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-8159-2 https://ubuntu.com/security/notices/USN-8159-1 CVE-2025-37849, CVE-2026-23060, CVE-2026-23074, CVE-2026-23111 Package Information: https://launchpad.net/ubuntu/+source/linux-aws-fips/5.15.0-1104.111+fips1 https://launchpad.net/ubuntu/+source/linux-fips/5.15.0-174.184+fips1 https://launchpad.net/ubuntu/+source/linux-gcp-fips/5.15.0-1104.113+fips1