What is the severity of USN-7463-1?

USN-7463-1 is classified as a critical vulnerability due to its potential to cause a denial of service or execute arbitrary code.

How do I fix USN-7463-1?

To fix USN-7463-1, update your system to the latest version of the affected package, specifically linux-image-5.4.0-1090-ibm for Ubuntu 18.04.

What causes the vulnerability USN-7463-1?

The vulnerability USN-7463-1 is caused by a use-after-free issue in the CEC driver within the Linux kernel.

Who discovered USN-7463-1?

USN-7463-1 was discovered by Chenyuan Yang and Attila Szász.

What versions of Ubuntu are affected by USN-7463-1?

USN-7463-1 affects Ubuntu 18.04 systems running specific versions of the linux-image packages.

Vulnerability/
USN-7463-1

CWE

416

24/4/2025

USN-7463-1: Linux kernel (IBM) vulnerabilities

First published: Thu Apr 24 2025(Updated: )

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2024-23848) Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2025-0927) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems:

Affected Software	Affected Version	How to fix
All of
ubuntu/linux-image-5.4.0-1090-ibm	<5.4.0-1090.95~18.04.1	5.4.0-1090.95~18.04.1
Ubuntu	=18.04
All of
ubuntu/linux-image-ibm	<5.4.0.1090.95~18.04.1	5.4.0.1090.95~18.04.1
Ubuntu	=18.04

Never miss a vulnerability like this again

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

CVE-2024-53237
CVE-2024-56633
CVE-2024-35958
CVE-2024-56724
CVE-2024-57951
CVE-2025-21653
CVE-2024-56562
CVE-2024-56670
CVE-2024-56779
CVE-2024-53145
CVE-2024-49884
CVE-2024-56601
CVE-2024-56602
CVE-2024-56700
CVE-2024-53183
CVE-2024-53142
CVE-2024-57901
CVE-2024-56747
CVE-2024-56658
CVE-2025-21664
CVE-2024-38588
CVE-2024-53148
CVE-2025-21639
CVE-2024-56619
CVE-2024-48881
CVE-2024-56586
CVE-2024-53131
CVE-2024-53136
CVE-2024-56593
CVE-2025-21697
CVE-2024-57892
CVE-2024-56681
CVE-2024-43098
CVE-2024-56574
CVE-2025-21687
CVE-2024-56581
CVE-2024-57900
CVE-2024-53146
CVE-2024-56569
CVE-2024-50051
CVE-2024-53112
CVE-2024-57946
CVE-2024-56659
CVE-2024-57884
CVE-2024-57849
CVE-2024-53155
CVE-2024-53157
CVE-2024-57910
CVE-2024-53172
CVE-2024-56598
CVE-2024-53173
CVE-2024-56548
CVE-2024-56600
CVE-2024-56645
CVE-2024-53121
CVE-2024-57922
CVE-2024-53198
CVE-2024-53150
CVE-2024-53130
CVE-2024-56587
CVE-2024-49996
CVE-2024-56570
CVE-2024-53140
CVE-2024-56637
CVE-2024-56603
CVE-2024-56770
CVE-2024-53124
CVE-2024-56644
CVE-2024-53214
CVE-2024-55916
CVE-2025-21678
CVE-2024-56688
CVE-2024-50256
CVE-2024-46826
CVE-2024-57906
CVE-2024-56576
CVE-2024-56567
CVE-2024-57889
CVE-2024-23848
CVE-2024-49936
CVE-2024-57938
CVE-2024-44938
CVE-2024-53680
CVE-2024-57931
CVE-2024-56630
CVE-2024-49925
CVE-2024-56723
CVE-2024-56532
CVE-2024-57913
CVE-2024-56606
CVE-2024-56720
CVE-2024-56596
CVE-2024-53690
CVE-2024-56739
CVE-2024-53171
CVE-2025-21640
CVE-2024-49974
CVE-2024-52332
CVE-2024-56781
CVE-2024-56746
CVE-2024-56748
CVE-2024-56631
CVE-2024-56651
CVE-2024-26928
CVE-2024-56643
CVE-2024-53194
CVE-2024-53127
CVE-2024-53217
CVE-2025-21638
CVE-2022-49034
CVE-2024-35864
CVE-2024-53156
CVE-2024-57902
CVE-2024-56690
CVE-2024-57929
CVE-2024-57912
CVE-2024-47707
CVE-2024-43900
CVE-2024-56595
CVE-2024-56614
CVE-2024-56650
CVE-2024-57850
CVE-2024-53174
CVE-2024-56769
CVE-2024-56694
CVE-2024-56704
CVE-2021-47119
CVE-2024-53181
CVE-2024-53184
CVE-2024-53197
CVE-2021-47219
CVE-2024-57948
CVE-2025-0927
CVE-2024-56634
CVE-2024-53135
CVE-2024-56539
CVE-2024-53165
CVE-2024-56691
CVE-2024-56594
CVE-2024-56531
CVE-2024-56558
CVE-2025-21694
CVE-2024-57890
CVE-2025-21700
CVE-2024-53158
CVE-2024-53239
CVE-2024-57904
CVE-2024-56756
CVE-2024-57802
CVE-2024-57911
CVE-2025-21689
CVE-2024-26915
CVE-2024-56597
CVE-2024-56615
CVE-2024-56629
CVE-2024-53138
CVE-2024-53161
CVE-2024-56572
CVE-2024-56767
CVE-2024-56642
CVE-2024-56780
CVE-2024-53227
CVE-2024-56605
CVE-2024-57807
CVE-2025-21699
CVE-2025-21702
CVE-2024-57908

Frequently Asked Questions

What is the severity of USN-7463-1?
USN-7463-1 is classified as a critical vulnerability due to its potential to cause a denial of service or execute arbitrary code.
How do I fix USN-7463-1?
To fix USN-7463-1, update your system to the latest version of the affected package, specifically linux-image-5.4.0-1090-ibm for Ubuntu 18.04.
What causes the vulnerability USN-7463-1?
The vulnerability USN-7463-1 is caused by a use-after-free issue in the CEC driver within the Linux kernel.
Who discovered USN-7463-1?
USN-7463-1 was discovered by Chenyuan Yang and Attila Szász.
What versions of Ubuntu are affected by USN-7463-1?
USN-7463-1 affects Ubuntu 18.04 systems running specific versions of the linux-image packages.

agent/weakness
agent/title
agent/source
agent/references
agent/last-modified-date
agent/softwarecombine
agent/tags
agent/type
agent/description
agent/first-publish-date
agent/event
collector/usn
source/Ubuntu
agent/software-canonical-lookup
package-manager/ubuntu
vendor/ubuntu
canonical/ubuntu
version/ubuntu/18.04

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.