[CLSA-2025:1765463110] kernel: Fix of 51 CVEs
Type:
security
Severity:
Important
Release date:
2025-12-11 14:25:14 UTC
Description:
- Bluetooth: MGMT: Protect mgmt_pending list with its own lock {CVE-2025-38117} - padata: Fix pd UAF once and for all {CVE-2025-38584} - wifi: cfg80211: Fix use after free for wext {CVE-2023-53153} - padata: Fix list iterator in padata_do_serial() - padata: do not leak refcount in reorder_work {CVE-2025-38031} - padata: avoid UAF for reorder_work {CVE-2025-21726} - padata: add pd get/put refcnt helper - net/smc: fix UAF on smcsk after smc_listen_out() {CVE-2025-38734} - scsi: mpi3mr: Bad drive in topology results kernel crash {CVE-2023-53037} - scsi: mpi3mr: Driver unload crashes host when enhanced logging is enabled - wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds() {CVE-2022-50258} - igb: Fix igb_down hung on surprise removal {CVE-2023-53148} - drm/i915/sseu: fix max_subslices array-index-out-of-bounds access {CVE-2023-53112} - i40e: fix idx validation in config queues msg {CVE-2025-39971} - dm-bufio: don't schedule in atomic context {CVE-2025-37928} - fs: prevent out-of-bounds array speculation when closing a file descriptor {CVE-2023-53117} - vhost-scsi: Fix handling of multiple calls to vhost_scsi_set_endpoint {CVE-2025-22083} - iommu/amd: Fix potential buffer overflow in parse_ivrs_acpihid {CVE-2025-37927} - tracing: Fix oob write in trace_seq_to_buffer() {CVE-2025-37923} - KVM: x86: Reset IRTE to host control if *new* route isn't postable {CVE-2025-37885} - KVM: arm64: Tear down vGIC on failed vCPU creation {CVE-2025-37849} - KVM: Reject attempts to consume or refresh inactive gfn_to_pfn_cache {CVE-2022-49882} - jbd2: remove wrong sb->s_sequence check {CVE-2025-37839} - power: supply: gpio-charger: Fix set charge current limits {CVE-2024-57792} - ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object {CVE-2024-46798} - ipv6: prevent possible UAF in ip6_xmit() {CVE-2024-44985} - ipv6: fix possible UAF in ip6_finish_output2() {CVE-2024-44986} - netfilter: flowtable: validate vlan header {CVE-2024-44983} - usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() {CVE-2024-50268} - usb: vhci-hcd: Do not drop references before new references are gained {CVE-2024-43883} - drm/amd/display: Fix slab-use-after-free on hdcp_work {CVE-2025-21968} - drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] {CVE-2024-46815} - drm/amd/display: Check index msg_id before read or write {CVE-2024-42121} - drm/amd/display: Check pipe offset before setting vblank {CVE-2024-42120} - drm/amdkfd: don't allow mapping the MMIO HDP page with large pages {CVE-2024-41011} - drm/amdkfd: Fix an illegal memory access {CVE-2023-53090} - drm/shmem-helper: Remove another errant put in error path {CVE-2023-53084} - drm/amd/display: fix shift-out-of-bounds in CalculateVMAndRowBytes {CVE-2023-53077} - drm/i915: mark requests for GuC virtual engines to avoid use-after-free {CVE-2023-53552} - ptp: fix integer overflow in max_vclocks_store {CVE-2024-40994} - nvmet: avoid potential UAF in nvmet_req_complete() {CVE-2023-53116} - loop: Fix use-after-free issues {CVE-2023-53111} - ftrace: Fix invalid address access in lookup_rec() when index is 0 {CVE-2023-53075} - mptcp: use the workqueue to destroy unaccepted sockets {CVE-2023-53072} - perf/core: Fix perf_output_begin parameter is incorrectly invoked in perf_event_bpf_output {CVE-2023-53065} - erspan: do not use skb_mac_header() in ndo_start_xmit() {CVE-2023-53053} - HID: intel-ish-hid: ipc: Fix potential use-after-free in work function {CVE-2023-53039} - netlink: prevent potential spectre v1 gadgets {CVE-2023-53000} - coresight: Clear the connection field properly {CVE-2022-50214} - Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition {CVE-2023-53145} - Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_sync {CVE-2025-39982} - x86/tdx: Fix "in-kernel MMIO" check {CVE-2024-47727} - arm64: sme: Use STR P to clear FFR context field in streaming SVE mode {CVE-2023-53713} - wifi: mt76: mt7921: fix error code of return in mt7921_acpi_read {CVE-2023-53710}
Updated packages:
  • bpftool-7.0.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:236c0b6fc84d5a284885fde85c12bf6a7d39e70e046389bde28c7bda13314fe1
  • kernel-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:525cfa624e907bf0f70f2823c5d40c25214be62da15edcb01f5e4d86afef7a80
  • kernel-abi-stablelists-5.14.0-284.1101.el9_2.tuxcare.7.els25.noarch.rpm
    sha:30e0a63769558d394fb6481cda84ddad893343125658320c8beccbeee192444c
  • kernel-core-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:4d2a6dbb623d888d94dc06f75923cb58c0628d01f51d2e361d9bd73d2a2282e8
  • kernel-cross-headers-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:399ee59c16b0e7ccb3b08655059f5a19dc8798edd14c6fd1cdd6c7ef9446fae2
  • kernel-debug-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:7fa1489c6f61771e4117e929f5a43eab263ccbd243f733e5f5b05a7a65987884
  • kernel-debug-core-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:721c180eef412e1813d21047ddb68551036131866f35363377df092215b10813
  • kernel-debug-devel-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:419a7f692d63c28a5921fae2f04a5887bf450afafe2224df99c2d7101e4494fc
  • kernel-debug-devel-matched-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:8955235662f14d2107d0b7cc9cd0f0b35c3f22474f3cd881b0ee03dbc6a36a14
  • kernel-debug-modules-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:3180ec76873fc499c9ba2cd9f2e90f15114a334cdd3dd241678b1386c94ab2ea
  • kernel-debug-modules-core-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:2badc58c14babbd2b09c7c55c20ca3ef789e6636e135434bb8cc2a8854db3ef8
  • kernel-debug-modules-extra-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:80061021a2b2050e50d7ffb6e981eee3ca63af99235b60d85a940d490cb5863c
  • kernel-debug-modules-internal-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:1986ee69f43a993533e0adeb7d0be8ade2df7732e461648761a53f09da128eb0
  • kernel-debug-modules-partner-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:c4a908454ce28d6486a02f287e0aabf4b67f5102c10af0c8987343fa704a0eaf
  • kernel-debug-uki-virt-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:dd87ba21c36b18e5d6925ab84c479f114a323bed51553938087256ad6263fb57
  • kernel-devel-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:b34dba04c1dce571fe360ffcb4bb250e0b4426ffb1b7ca6ab076b02fa248ce83
  • kernel-devel-matched-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:527d0f86886565aa704e35939bef5fe5b1e61110cbee561db54b204f8594a2cc
  • kernel-doc-5.14.0-284.1101.el9_2.tuxcare.7.els25.noarch.rpm
    sha:1cf7159aac1480af276137e13c961b978a5264f68c6c0565c5c7ad86ebeeed99
  • kernel-headers-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:1c7022d060b6c8c764a263cff48d32b958ff8f94c04a8e274a2da24d65e4a9b1
  • kernel-ipaclones-internal-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:1da11227f9d5cd2318d3125e02475ac1028c3c35257ef047b96b14f3c8f6744e
  • kernel-modules-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:2b5617a7eb2fc6609b0975a4c85a6f7ab43a4d0f461b4f51bb69e5c9c72dd09b
  • kernel-modules-core-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:3b60a8cdce52b62098af073d04a7575f5b93dde8ce209b229b98e445111787e2
  • kernel-modules-extra-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:db530a7725a287b8d1967a049b0cfd5b6ace9b7ed101171b8c76cf3740844cf6
  • kernel-modules-internal-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:d7c35998058aae0e22d9c75b4b39079aeb118e974bfa25f092546ddfc7716df7
  • kernel-modules-partner-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:0a1b687dabc845a6e254c7bcd1487e46f064d91b536feeb3b67fe7e75af1a4fe
  • kernel-selftests-internal-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:2ec79ab49b310d381a97752e56c05a04cd2a03264c59501323b5c74067d48f88
  • kernel-tools-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:be368efd76854de2db37cc5e324be797fe625edf88fd650489de901e02c0244a
  • kernel-tools-libs-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:6be77bfd2cf37cbd2fc5c5bc9344411ce7950ea44b58330790df7c5ebd27986b
  • kernel-tools-libs-devel-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:34395132d4a32a808a5bd3756181b12bb88ae5ae9bd6b6ef690a53c87e734ccb
  • kernel-uki-virt-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:5b5558a99110b21c8489bc08ac9acea19ac36dd7a5e42e4b1964a576b1542613
  • libbpf-1.0.0-2.el9_2.tuxcare.7.els25.i686.rpm
    sha:670a77bd224f0b96d4056546d32d85b14638399885e711771ba5f94551a1b3f7
  • libbpf-1.0.0-2.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:bf9ff70efcce2a34918884160d87660e459c4888a84bf420cb4e6eda699998fe
  • libbpf-devel-1.0.0-2.el9_2.tuxcare.7.els25.i686.rpm
    sha:f2f09bd13acaa4efe27676c91cc281514a98041b5a2a8d92f54f4b2d6d143e0e
  • libbpf-devel-1.0.0-2.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:b620a54607980f587fdedadff1cf141104a7cdf92a953483b71fa4f439bf4c31
  • libbpf-static-1.0.0-2.el9_2.tuxcare.7.els25.i686.rpm
    sha:2176cf9e2aaf8eb8ed7991c26f979412f16b51bf2405fc4b7cd6c54b0636f16f
  • libbpf-static-1.0.0-2.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:2083bed3a680547e7e3b9862cdf4433918b89da8a54388705cf3354bddf80a82
  • perf-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:5620524533bf87c917cea4c0848ef045f2f554a3c27de2658c508a446b52dd96
  • python3-perf-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:526fe0e70696acafa090038cb2270bb70bba2234bbb2ef52caa86eec67c47815
  • rtla-5.14.0-284.1101.el9_2.tuxcare.7.els25.x86_64.rpm
    sha:96cf3fe8066871b630a14b343b15b50725de22d516b387ef681bb0dd286e8e10
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.