CLSA-2025:1764151168

[CLSA-2025:1764151168] kernel: Fix of 39 CVEs

Type:

security

Severity:

Important

Release date:

2025-11-27 09:45:02 UTC

Description:

- perf/aux: Fix AUX buffer serialization {CVE-2024-46713}
- block: fix uaf for flush rq while iterating tags {CVE-2024-53170}
- zram: fix potential UAF of zram table {CVE-2025-21671}
- sched: sch_cake: add bounds checks to host bulk flow fairness counts {CVE-2025-21647}
- bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors {CVE-2024-56675}
- net: openvswitch: fix nested key length validation in the set() action {CVE-2025-37789}
- isofs: Prevent the use of too small fid {CVE-2025-37780}
- net: ppp: Add bound checking for skb data on ppp_sync_txmung {CVE-2025-37749}
- sctp: detect and prevent references to a freed transport in sendmsg {CVE-2025-23142}
- ipv6: sr: Fix MAC comparison to be constant-time {CVE-2025-39702}
- RDMA/rxe: Fix incomplete state save in rxe_requester {CVE-2023-53539}
- crypto: xts - Handle EBUSY correctly {CVE-2023-53494}
- Bluetooth: use RCU for hci_conn_params and iterate safely in hci_sync {CVE-2023-53252}
- af_unix: Fix data-races around user->unix_inflight. {CVE-2023-53204}
- fs: fix UAF/GPF bug in nilfs_mdt_destroy {CVE-2022-50367}
- wifi: rtlwifi: remove unused check_buddy_priv {CVE-2024-58072}
- wifi: rtlwifi: remove unused dualmac control leftovers
- wifi: rtlwifi: remove unused timer and related code
- partitions: mac: fix handling of bogus partition table {CVE-2025-21772}
- ipmr: do not call mr_mfc_uses_dev() for unres entries {CVE-2025-21719}
- wifi: brcmsmac: add gain range check to wlc_phy_iqcal_gainparams_nphy() {CVE-2024-58014}
- net: mdio: validate parameter addr in mdiobus_get_phy() {CVE-2023-53019}
- ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control {CVE-2025-39751}
- NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() {CVE-2025-39730}
- net/mlx5e: Check for NOT_READY flag state after locking {CVE-2023-53581}
- null_blk: Always check queue mode setting from configfs {CVE-2023-53576}
- ip_vti: fix potential slab-use-after-free in decode_session6 {CVE-2023-53559}
- rcu-tasks: Avoid pr_info() with spin lock in cblist_init_generic() {CVE-2023-53558}
- pstore/ram: Check start of empty przs during init {CVE-2023-53331}
- wifi: ath11k: fix memory leak in WMI firmware stats {CVE-2023-53602}
- wifi: mac80211: fix invalid drv_sta_pre_rcu_remove calls for non-uploaded sta {CVE-2023-53229}
- net: ethernet: ti: Fix return type of netcp_ndo_start_xmit() {CVE-2022-50486}
- RDMA/core: Make sure "ib_port" is valid when access sysfs node {CVE-2022-50475}
- RDMA/rxe: Fix mr->map double free {CVE-2022-50543}
- scsi: qla2xxx: Fix end of loop test
- scsi: qla2xxx: Fix mem access after free
- scsi: qla2xxx: Wait for io return on terminate rport {CVE-2023-53322}
- scsi: target: Fix multiple LUN_RESET handling {CVE-2023-53586}
- scsi: ses: Fix possible desc_ptr out-of-bounds accesses {CVE-2023-53675}
- scsi: ses: Fix possible addl_desc_ptr out-of-bounds accesses {CVE-2023-53675}
- scsi: ses: Fix slab-out-of-bounds in ses_enclosure_data_process() {CVE-2023-53675}
- scsi: lpfc: Fix buffer free/clear order in deferred receive path {CVE-2025-39841}
- nbd: fix incomplete validation of ioctl arg {CVE-2023-53513}
- efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare {CVE-2025-39817}
- bnxt: avoid overflow in bnxt_get_nvram_directory() {CVE-2023-53661}

Updated packages:

bpftool-7.0.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:685966f315ee86e81d9feb28b05f01286e00ff24e8002afb585081c4b21a5a7e
kernel-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:a032e996d2a31cca3128b5502db8574c188863695430a303a1da94a9fadac3c0
kernel-abi-stablelists-5.14.0-284.1101.el9_2.tuxcare.7.els24.noarch.rpm
sha:bf18a2d450050efd94f77c8eefe3b5e8e95384b2fee62ea11ad66912f05301f0
kernel-core-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:fc1b1b5738caf34831891b0494b46826aa37aafc46724639fb5dd2fad858eb29
kernel-cross-headers-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:de7662e6dbf6abbdc48b7095b743f8a1966e7159010f8b2cd98062c43acec059
kernel-debug-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:4fa88889e9146f614bfcdd5c584d220a9baba2827095fd83e38a3c2bd1ba3ba7
kernel-debug-core-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:ecdd0f19f7e6cf5a6b19bccae01bc2adb608826674fb0a9bc368caa638730fb1
kernel-debug-devel-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:5aad67c497aafee7b61cec08427df1fc03df2e519b7b2b506768f84d208384de
kernel-debug-devel-matched-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:37f590cdeac369beab1252b752c7874560ba26bc88a6768ec766e287d9c45224
kernel-debug-modules-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:9269de1c60d206c92d5b91b51f805e77b7181d3ce786acee014196ea692c326e
kernel-debug-modules-core-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:4eab84a14c703b71150da3486ecae7f63e932eaba76ce23bd49453effed853a0
kernel-debug-modules-extra-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:c8e80c2b9a39dd79b0d3e0a00fc0ea69518fe96983ff1d7a034c83d2a66b6cf6
kernel-debug-modules-internal-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:321b3e519d84981563af9774484bea3f5699ed951ab81b803f2b7ecbf5f02c3f
kernel-debug-modules-partner-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:fc67ded22dbe3edb772895d724a1fd97c94b6b7d4d36e9220d49be004b0754f9
kernel-debug-uki-virt-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:02753b58650e56b1aa7e87ca48fd3bbc461ea3870957270bba1d4fcabe4db8f9
kernel-devel-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:01a1ee99dbfb586b8e3afd1ba5f7a909f12f29d14657a6359ffd05016db9f572
kernel-devel-matched-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:e63562bd7ce847171e9143936064610385f9001bd835e72a316559af609827a4
kernel-doc-5.14.0-284.1101.el9_2.tuxcare.7.els24.noarch.rpm
sha:285d118ac8690adcbf9fb13e127cb7b1da85fabae734cf00e720366d0a8e9f8b
kernel-headers-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:056931e534a6577bf48f983be11ce04ee3e530fa8fce53db11eebe0b1e4b7b45
kernel-ipaclones-internal-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:c92fc041b915003e60350c7dcc3339ed6adc454a35a62871b5234c2e87307f78
kernel-modules-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:7e320c3e1a9efdba159586627827ebdb3bd6cd19ff548d009914e27e5ac1a91f
kernel-modules-core-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:0c6fe53cbc8172460f7a55704d46edc3e845360131cb8b29a5303f638e6c96fe
kernel-modules-extra-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:1f34d7bdd4813331319977eeaf6cc9250a93c842f16eb62240b8ef6fd86785fe
kernel-modules-internal-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:645e6cd2b5662ce9fa31f14683d01c4dd927f206cfc09763bfef827386d3fb47
kernel-modules-partner-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:4c58ab1778ef376221c4c5328d9ebe35282f2e38fc80c98d67379c7d7e6423dd
kernel-selftests-internal-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:37b37f6eb30b1064667c5a2c4e51cae5d13d03a50e4866ce4daaa4025dcdeafa
kernel-tools-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:0a37e4296ce4edd03642319b72cb63ce164ccea425352cdb5360318a66df1324
kernel-tools-libs-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:bbce6041fa0ce679a4717b74865f9f0a09e1a2d05109b48fe97c214594d76b83
kernel-tools-libs-devel-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:f605f46555f24be277aac9f82a9955e508607b058a842daee2e9ab56af584944
kernel-uki-virt-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:68a0070e229c3de7e38bf2554351562769fb2223662de7b2e228f0959527cf7b
libbpf-1.0.0-2.el9_2.tuxcare.7.els24.i686.rpm
sha:4b4a6c9f83a0a6982219b1f98c8ac7747f64543e092e599f508230863070bf17
libbpf-1.0.0-2.el9_2.tuxcare.7.els24.x86_64.rpm
sha:cd3bc6fa7dd737814271e53197d714f6a844a4e5b67312b16b837c2161957f66
libbpf-devel-1.0.0-2.el9_2.tuxcare.7.els24.i686.rpm
sha:8d3d42adaf9c0eb617d8e39380d6a93ee7d28670a71b91aa3cae2c1d169cd087
libbpf-devel-1.0.0-2.el9_2.tuxcare.7.els24.x86_64.rpm
sha:0a70d4d46c545b71ae9e524f09ebedc97dff54f2dd9f69a5ab8ac2abd9983171
libbpf-static-1.0.0-2.el9_2.tuxcare.7.els24.i686.rpm
sha:e182f155cae14a3594e91f7a66313161c0f15694906b35789cdca43ef609c55a
libbpf-static-1.0.0-2.el9_2.tuxcare.7.els24.x86_64.rpm
sha:8a99d4b1e56080ae830d63f3e8637baf5095a2d3171d137da88425e89f1afe30
perf-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:84c22fcab59deb16805e1d3b247f93b7f6d5b98c11cdf3070d112785ba308302
python3-perf-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:fbc3ae1aa2e692d919ce10ea0f4a9379717366f62edeb51f77332a18a7bb62d4
rtla-5.14.0-284.1101.el9_2.tuxcare.7.els24.x86_64.rpm
sha:80e1a5d3409e9712eb501edd6bf13c0d5d50941bbd1d18e11dc95b6f35f26da4

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.