CLSA-2025:1747725447

[CLSA-2025:1747725447] kernel: Fix of 35 CVEs

Type:

security

Severity:

Important

Release date:

2025-05-20 10:24:45 UTC

Description:

- ext4: fix OOB read when checking dotdot dir {CVE-2025-37785}
- wifi: iwlwifi: limit printed string from FW file {CVE-2025-21905}
- drm/amdgpu: Fix potential out-of-bounds access in 'amdgpu_discovery_reg_base_init()' {CVE-2024-27042}
- dm-crypt: don't modify the data when using authenticated encryption {CVE-2024-26763}
- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket {CVE-2024-53168}
- cifs: Fix UAF in cifs_demultiplex_thread() {CVE-2023-52572}
- veth: Fix use after free in XDP_REDIRECT {CVE-2023-53107}
- firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier() {CVE-2024-53068}
- arm64/sve: Discard stale CPU state when handling SVE traps {CVE-2024-50275}
- Bluetooth: L2CAP: Fix slab-use-after-free Read in l2cap_send_cmd {CVE-2025-21969}
- wifi: mt76: mt7921e: fix use-after-free in free_irq() {CVE-2024-26892}
- rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read {CVE-2024-58069}
- nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu() {CVE-2025-21927}
- pfifo_tail_enqueue: Drop new packet when sch->limit == 0 {CVE-2025-21702}
- net_sched: sch_fifo: implement lockless __fifo_dump() {CVE-2025-21702}
- iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic() {CVE-2025-21993}
- vlan: enforce underlying device type {CVE-2025-21920}
- HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove() {CVE-2025-21928}
- watch_queue: Actually free the watch {CVE-2022-49256}
- can: bcm: Fix UAF in bcm_proc_show() {CVE-2023-52922}
- ALSA: hda/via: Avoid potential array out-of-bound in add_secret_dac_path() {CVE-2023-52988}
- netfilter: nf_set_pipapo: fix initial map fill {CVE-2024-57947}
- hwmon: (lm90) Prevent integer overflow/underflow in hysteresis calculations {CVE-2021-47098}
- aio: fix use-after-free due to missing POLLFREE handling {CVE-2021-47505}
- aio: keep poll requests on waitqueue until completed {CVE-2021-47505}
- smb: client: fix potential deadlock when releasing mids {CVE-2023-52757}
- cifs: remove useless DeleteMidQEntry() {CVE-2023-52757}
- media: uvcvideo: Remove dangling pointers {CVE-2024-58002}
- media: uvcvideo: Only save async fh if success {CVE-2024-58002}
- media: uvcvideo: Refactor iterators {CVE-2024-58002}
- drm: nv04: Fix out of bounds access {CVE-2024-27008}
- drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table() {CVE-2025-21780}
- arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array {CVE-2025-21785}
- net: rose: fix timer races against user threads {CVE-2025-21718}
- media: uvcvideo: Fix double free in error path {CVE-2024-57980}
- vrf: use RCU protection in l3mdev_l3_out() {CVE-2025-21791}
- geneve: Fix use-after-free in geneve_find_dev(). {CVE-2025-21858}
- afs: Increase buffer size in afs_update_volume_status() {CVE-2024-26736}
- net: atlantic: eliminate double free in error handling logic {CVE-2023-52664}
- bpf: Check validity of link->type in bpf_link_show_fdinfo() {CVE-2024-53099}

Updated packages:

bpftool-7.0.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:bca2f86066a849dc93b74d27213902212a1576011ec6c49323fd5ba4d9f20d1d
kernel-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:47bfc57dab6e29a8a5a4f5a518c0ed6040290b0aece7ca21b4271921e2d93a26
kernel-abi-stablelists-5.14.0-284.1101.el9_2.tuxcare.7.els13.noarch.rpm
sha:d9c080c26e53d2c7e2163925a2a21503a589b2c39e3d43b407df54559fd2a612
kernel-core-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:012a717dfe2685c7cccf28612688ef2cfba02967f82780dad325249a30524e19
kernel-cross-headers-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:3550d72baab2dbfc19ed976239797b5e2df41dabac89f63b6a9dd98a665ee595
kernel-debug-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:b26984c6bcab339468acc70573d1582316a4403c198cc43d9e029244e48c54f0
kernel-debug-core-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:08271e12b49c9b58ba1b10bba472a4893505b31d676f0450b65362e8ebd095b2
kernel-debug-devel-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:e8cbe2d769cd844aa77e37eb40d8b9cf644f9c46b17a68c0f74533d2cc29b8b3
kernel-debug-devel-matched-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:d695ebfcd4605c0d2dc9f4d7dfe80e28d975fe34f403bf3dfa2a950a67e68018
kernel-debug-modules-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:8c3cb2355bb29c44ce1ccda4a60b7168e0dd5ab4e08b9a29a0f46dc159fba3b0
kernel-debug-modules-core-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:2021585f2911e31216101b4b02dd7e4e93716157618c0b019fa9fcced241f8ad
kernel-debug-modules-extra-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:f72fc082bbf176905dfc7f0eed114567d94cfc028a87052b115e69f26a3934ba
kernel-debug-modules-internal-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:2692abe57bd726dcb7da6457b93b9c745576546fe379ff41c31c6fb02258604e
kernel-debug-modules-partner-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:5b5754301b3f93caccac44fca19dc5834684708c09cdbf8fe7346784e85dc410
kernel-debug-uki-virt-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:9e9296dc6bb1ce2273c44ff9e9a836422a327243a18abd069e5f68c42cfa16e2
kernel-devel-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:bf5c0b965339600ac3a0cd9152f525b136571a127fe2524f23d8ec5cc534804e
kernel-devel-matched-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:98079cb0ab952a7d619e2011b766e597d5499edc2b0831090e58986db9079483
kernel-doc-5.14.0-284.1101.el9_2.tuxcare.7.els13.noarch.rpm
sha:dac775526a0e5e6c29e0373613bc8b06b89e9cf9e9266d1c22a4b6b3497a9292
kernel-headers-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:2aebe4a06cda87fe69e4a1b9f6e7300d663328168012e97184cbd02239af109e
kernel-ipaclones-internal-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:92f7da9081ae1c70ad4002b67b6e3806b775d73b2396e417e8e3044936aac393
kernel-modules-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:6d307d2f3e3011f7b16b27d46bae30714be5bcd962a2bded1cfe1d6d6220245d
kernel-modules-core-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:fc28a5d73109287baf51207042d2d6c45898224515e4d62580bd2d9212364ad0
kernel-modules-extra-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:ba286aad101d00d90c8cadcb39f29da2751af937a290edaad7fdcb210a53007d
kernel-modules-internal-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:12929ffb509406bcd8b3e78efcadccbbae7ebf89f7985b17d55347f3216a6467
kernel-modules-partner-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:af564de135747a34c687a4d79009786d3244153191d2a24810b1681eee25f1e5
kernel-selftests-internal-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:8adaaf0b4dce9d0e2f3f33c1318d15e0e12e4ebd1459843db5f977ad4e89d997
kernel-tools-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:58629236700130d439e2a0c4c622cf80b42f32aad5ec4d723c9673627852ce40
kernel-tools-libs-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:3bf2078df8794124c07dc0bce40241032e18727c62e15189650784aff7986bbe
kernel-tools-libs-devel-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:a006f2fef8b902a4510ff92223171a917e3b5d254fb68d88565d6000992c9690
kernel-uki-virt-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:f48cac7a03df72965697860c80bae3e88b37fe6ab3c8bd11187a104824d01611
libbpf-1.0.0-2.el9_2.tuxcare.7.els13.i686.rpm
sha:6669830c6036dd17fd2dec9deb765adfd526e25e1439e722cf6e0c13f1154480
libbpf-1.0.0-2.el9_2.tuxcare.7.els13.x86_64.rpm
sha:2a39554619185567379d5d7864440b980e05f3e9d91ed87ba0adbfe2712e9623
libbpf-devel-1.0.0-2.el9_2.tuxcare.7.els13.i686.rpm
sha:0e3b894b41c27c8ebec5a9f3b0b72fa28114b81cf1b218b728ee87bffa3b861a
libbpf-devel-1.0.0-2.el9_2.tuxcare.7.els13.x86_64.rpm
sha:47157df8720f5173b0637cda1d4a8a2c46c2d8f13dd6187b4a93c699171b7cf4
libbpf-static-1.0.0-2.el9_2.tuxcare.7.els13.i686.rpm
sha:ca442951edefd50c436acdbce18421d0c8a62bd12a13e8c99418a56f47d85b2f
libbpf-static-1.0.0-2.el9_2.tuxcare.7.els13.x86_64.rpm
sha:c0d949ae11b4636b1b3578c400152990092f550b650ef7ee2504eb967a9f8b60
perf-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:e33116634ca648df03055b86f4f7efbe708c06d98a731cf4ede873ba48156b7d
python3-perf-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:e32a27f3500eef851d133ed328bdccc103023de1f50ebf856da27959634fa723
rtla-5.14.0-284.1101.el9_2.tuxcare.7.els13.x86_64.rpm
sha:9ddc14932c4be268c7473ac1a98caa63e92f36e426cfe622f63cb4bec8f65092

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.