CLSA-2025:1759866837

[CLSA-2025:1759866837] kernel: Fix of 44 CVEs

Type:

security

Severity:

Important

Release date:

2025-10-07 19:54:01 UTC

Description:

- mm: zswap: fix missing folio cleanup in writeback race path {CVE-2024-26832}
- mm: fix zswap writeback race condition {CVE-2023-53178}
- dm array: fix releasing a faulty array block twice in dm_array_cursor_end {CVE-2024-57929}
- drm/dp_mst: Fix MST sideband message body length check {CVE-2024-56616}
- gpio: davinci: Validate the obtained number of IRQs {CVE-2024-42092}
- ASoC: topology: Fix references to freed memory {CVE-2024-41069}
- Bluetooth: hci_sock: Fix not validating setsockopt user input {CVE-2024-35963}
- Bluetooth: ISO: Fix not validating setsockopt user input {CVE-2024-35964}
- Bluetooth: L2CAP: Fix not validating setsockopt user input {CVE-2024-35965}
- Bluetooth: RFCOMM: Fix not validating setsockopt user input {CVE-2024-35966}
- Bluetooth: SCO: Fix not validating setsockopt user input {CVE-2024-35967}
- dma-direct: Leak pages on dma_set_decrypted() failure {CVE-2024-35939}
- wifi: mwifiex: avoid possible NULL skb pointer dereference {CVE-2023-53384}
- md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request {CVE-2023-53380}
- icmp6: Fix null-ptr-deref of ip6_null_entry->rt6i_idev in icmp6_dev(). {CVE-2023-53343}
- thermal: core: prevent potential string overflow {CVE-2023-52868}
- drm/amdkfd: Fix shift out-of-bounds issue {CVE-2023-52816}
- drm/vkms: Fix null-ptr-deref in vkms_release() {CVE-2022-50369}
- nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells {CVE-2021-47497}
- net/mlx5: Fix tainted pointer delete is case of flow rules creation fail {CVE-2024-40940}
- ipvlan: add ipvlan_route_v6_outbound() helper {CVE-2023-52796}
- platform/x86: wmi: Fix opening of char device {CVE-2023-52864}
- platform/x86: wmi: remove unnecessary initializations
- perf/core: Bail out early if the request AUX area is out of bound {CVE-2023-52835}
- do_change_type(): refuse to operate on unmounted/not ours mounts {CVE-2025-38498}
- net_sched: hfsc: Address reentrant enqueue adding class to eltree twice {CVE-2025-38001}
- usb: cdc-acm: Check control transfer buffer size before access {CVE-2025-21704}
- vfio/pci: Properly hide first-in-list PCIe extended capability {CVE-2024-53214}
- igb: Fix potential invalid memory access in igb_init_module() {CVE-2024-52332}
- kobject_uevent: Fix OOB access within zap_modalias_env() {CVE-2024-42292}
- mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required() {CVE-2023-53401}
- net: usb: smsc75xx: Limit packet length to skb->len {CVE-2023-53125}
- drm/radeon: possible buffer overflow {CVE-2023-52867}
- media: gspca: cpia1: shift-out-of-bounds in set_flicker {CVE-2023-52764}
- wifi: mac80211_hwsim: Fix possible NULL dereference {CVE-2023-53209}
- vmci: prevent speculation leaks by sanitizing event in event_deliver() {CVE-2024-39499}
- wifi: iwlwifi: fw: fix memory leak in debugfs {CVE-2023-53422}
- drm/amdgpu: fix memory leak in mes self test {CVE-2023-53370}
- skbuff: skb_segment, Call zero copy functions before using skbuff frags {CVE-2023-53354}
- md/raid10: fix leak of 'r10bio->remaining' for recovery {CVE-2023-53299}
- nfsd: call op_release, even when op_func returns an error {CVE-2023-53241}
- ppdev: Add an error check in register_device {CVE-2024-36015}
- wifi: cfg80211: check A-MSDU format more carefully {CVE-2024-35937}
- net: bridge: use DEV_STATS_INC() {CVE-2023-52578}
- net: add atomic_long_t to net_device_stats fields {CVE-2024-26882}

Updated packages:

bpftool-7.0.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:ea9cc09a961585ff2a9dc9e7d6d3e7a88b9b004ca9e6c8f289de3211761fafa7
kernel-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:5280d6077ffe415ece5c8ce09daaa48944c7579c6bc816884ad71a4c6154ec12
kernel-abi-stablelists-5.14.0-284.1101.el9_2.tuxcare.7.els21.noarch.rpm
sha:5a20ecf3cf2d0e526b27fbc016cfb81ec2ee860096a4c7a7e5013f5d7dd330f8
kernel-core-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:ca6ef396168a1098d1ba822fe01bda343d37b32fbba3bf8948fe4d73a71b7746
kernel-cross-headers-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:91cda85b71ceb37144138b14c82a423d7d4e994e781c61fdbb79e431264e1692
kernel-debug-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:fb77f48d478a4235b6aba50bd00ecc3b6f008f48742662ca53d76d9272bf2e18
kernel-debug-core-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:c9db1792ef319199c3c05b0e918cece59286e6d778d94bf70269c137d31cbfad
kernel-debug-devel-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:988994ea38e2df82b3b67aa385dbeafbe1fdc13e7176ebae72f54adde2158e35
kernel-debug-devel-matched-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:5f573beb6a2e5b2b794424e78e54c9744494fc0917ea329d4cdc3c5cf3942b69
kernel-debug-modules-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:0fc83fb7e122f25f38bdcde8bbedcef1a064b7ff1370bf4bf605ab19ef786d33
kernel-debug-modules-core-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:eee6db15c52917f428911a545a33555649bc0d6329834b2295321863ecbd4318
kernel-debug-modules-extra-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:9f788d7b628097d01d8788f5e6f8e552a18dd4863f809748d6b7676cac7acaef
kernel-debug-modules-internal-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:d03a1ac35b091fd9fa600f9200900024c477760e229d04fd7da974031789373c
kernel-debug-modules-partner-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:aa77b110f5332bdfc71ae543f7d2775d990f3b48abf5a117e51bf29151e196d9
kernel-debug-uki-virt-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:644aad4974223f461cf6bae0d497e9ca1139c8771fcb420c469ad81485dfdfe7
kernel-devel-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:4adec118587ced8299942d32d5548ca9641a6666f63c7048e313c46b08c8e1b4
kernel-devel-matched-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:650d9cf08222964f90ab31f381064750a0dab0625f5ab6027dc2f0e9639e8551
kernel-doc-5.14.0-284.1101.el9_2.tuxcare.7.els21.noarch.rpm
sha:bd1cd0de304f206f1ceb43f63ca5ff8da69f37d7d6c102853aaf872a4ce962a9
kernel-headers-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:f747b1a71b288c2e395f77c9b44e77693d7db621a6a56c907da149c74112d6f2
kernel-ipaclones-internal-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:515386f66afd23e1b47697e1f9a79fe667f011c6c29e5eff9a53bf1eea120ed4
kernel-modules-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:e254951f22373cfe8447ebde9ade545d37a1bb3a5708fb94865905b7fbef7856
kernel-modules-core-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:41ce36e91731499baa904997c5ee9389fdcfbd051000c6bdb4590b2253fffad0
kernel-modules-extra-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:184d1daa29c0126775233a81f087505ebc5eaa56b5dd067c00afdb2a6847677a
kernel-modules-internal-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:a940a976852b07915dbd7b35f0ed4ad2be9293007945b63770849bf710f11073
kernel-modules-partner-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:d983004ceb1b02d5ff8157eba7d337977be2a7d04d5550d0e02d34d8083e8b84
kernel-selftests-internal-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:7bc503cef9c11748f5d309bde97040956ab9a511f8ff0313b6a3156c822492dc
kernel-tools-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:cc897cd354f0f6972fb1f3dfde5a3c02a22b65fe966cca8d604c9a4191ca3639
kernel-tools-libs-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:605263b2dd48a068aadf948709b22d894e5191ffd44abc1245f0666908e44c13
kernel-tools-libs-devel-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:7cbf2f017164c98c4c74d3828c64f56b1a2df4a2ca7d07bbefdd097296f00c15
kernel-uki-virt-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:ba6af4f960933ea2a2e1ca5cd1ef283e7658e0e5ed9a3255bc4218297769629a
libbpf-1.0.0-2.el9_2.tuxcare.7.els21.i686.rpm
sha:7ebbde2c95ef0578fbd4c3eb1c265aa9ae51229178b5abcf9a6f72214a1540ec
libbpf-1.0.0-2.el9_2.tuxcare.7.els21.x86_64.rpm
sha:e5fe7d56761d10d9633b622f78d77af9edc387e5b468542d64efa63ad2a078ab
libbpf-devel-1.0.0-2.el9_2.tuxcare.7.els21.i686.rpm
sha:fbc7e5859412f0de0963a46ce3cd20d8594968236dd0effdc7c667e2274d49cf
libbpf-devel-1.0.0-2.el9_2.tuxcare.7.els21.x86_64.rpm
sha:801f28e850173a3a223bb1947fcb9c88aef700bd531c3ffb23e80c127c0732dc
libbpf-static-1.0.0-2.el9_2.tuxcare.7.els21.i686.rpm
sha:6d5e77345a16ad80cb8a30314f638b93a8f291664a6db300a4f80e4d2b5bee38
libbpf-static-1.0.0-2.el9_2.tuxcare.7.els21.x86_64.rpm
sha:89ef5b337c63eb1888772429294c06fd6335a44af310a53d56f6986469ac6005
perf-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:a5d2f24360f7e1abe70f7bb43f08266d4ddd30c911cde074a7a7a95d299eee37
python3-perf-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:355e4a8c96a7796006e6ff7aae28dd2dc72ea071f59e06c1026f982107e768d8
rtla-5.14.0-284.1101.el9_2.tuxcare.7.els21.x86_64.rpm
sha:49c779d92eeeea269d5108798ecbf365e167214a9c1489d9d5ad2a25c21c4914

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.