[CLSA-2026:1783790425] kernel: Fix of 40 CVEs
Type:
security
Severity:
Critical
Release date:
2026-07-11 17:21:30 UTC
Description:
- ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr {CVE-2025-68183} - futex/requeue: Prevent NULL pointer dereference in remove_waiter() on self-deadlock {CVE-2026-53166} - rtmutex: Use waiter::task instead of current in remove_waiter() {CVE-2026-43499} - net: bonding: fix use-after-free in bond_xmit_broadcast() {CVE-2026-31419} - Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold {CVE-2026-31408} - mptcp: fix slab-use-after-free in __inet_lookup_established {CVE-2026-31669} - svcrdma: bound check rq_pages index in inline path {CVE-2025-71068} - ALSA: scarlett2: Fix buffer overflow in config retrieval {CVE-2026-23078} - cpufreq: governor: fix double free in cpufreq_dbs_governor_init() error path {CVE-2026-43328} - drm/amd/display: Do not skip unrelated mode changes in DSC validation {CVE-2026-31488} - HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq {CVE-2026-43051} - net: usb: cdc_ncm: add ndpoffset to NDP16 nframes bounds check {CVE-2026-23448} - bpf, sockmap: Fix race between element replace and close() {CVE-2024-56664} - mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() {CVE-2026-31586} - crypto: pcrypt - Fix handling of MAY_BACKLOG requests {CVE-2026-43493} - atm: lec: fix use-after-free in sock_def_readable() {CVE-2026-43050} - driver core: enforce device_lock for driver_match_device() {CVE-2026-31688} - driver core: platform: use generic driver_override infrastructure {CVE-2026-31527} - nfsd: fix heap overflow in NFSv4.0 LOCK replay cache {CVE-2026-31402} - ext4: convert inline data to extents when truncate exceeds inline size {CVE-2026-31452} - usb: class: cdc-wdm: fix reordering issue in read code path {CVE-2026-43427} - xen/privcmd: fix double free via VMA splitting {CVE-2026-31787} - netfilter: nf_tables: release flowtable after rcu grace period on error {CVE-2026-23392} - wifi: mac80211: check tdls flag in ieee80211_tdls_oper {CVE-2026-43052} - netfilter: conntrack: switch to siphash {CVE-2021-3773} - gpiolib: cdev: fix NULL-pointer dereferences {CVE-2022-50453} - tracing: Free buffers when a used dynamic event is removed {CVE-2022-49006} - dlm: validate length in dlm_search_rsb_tree {CVE-2026-43125} - Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock {CVE-2026-31500} - tpm: fix reference counting for struct tpm_chip {CVE-2022-2977} - tracing: Fix wild-memory-access in register_synth_event() {CVE-2022-49799} - nfnetlink_osf: validate individual option lengths in fingerprints {CVE-2026-23397} - ext4: block range must be validated before use in ext4_mb_clear_bb() {CVE-2022-50021} - netfilter: flowtable: strictly check for maximum number of actions {CVE-2026-43329} - crypto: lzo - Fix compression buffer overrun {CVE-2025-38068} - xen: fix buffer overflow in buildid_show() {CVE-2026-31786} - NTB: fix possible name leak in ntb_register_device() {CVE-2023-52652} - ALSA: ctxfi: Fix potential OOB access in audio mixer handling {CVE-2026-23076} - erspan: do not use skb_mac_header() in ndo_start_xmit() {CVE-2023-53053} - net: af_key: zero aligned sockaddr tail in PF_KEY exports {CVE-2026-43088} - ata: libata-transport: fix double ata_host_put() in ata_tport_add() {CVE-2022-49826}
Updated packages:
  • bpftool-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:b4688e39845e585f2f63cf2c99dad16b696c119a882e4aab909e28392a78b80b
  • kernel-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:4508c78fa1f86329a56c36617794d5c637b12549f1172e300d501995d3822a95
  • kernel-core-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:8b89a37bbe43a463eee0bcb78a21cf6b2249eac534eb420f846e9574bd1d610f
  • kernel-cross-headers-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:355f3a1380c1ba348d9d687e5bc9ffeb1cf4f57b3e503b3995172cac8686d5f9
  • kernel-debug-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:dbcfd78827ace4ca13cf655d1fd71c968490c6d95d0b14a2fe30e12ec1b9371a
  • kernel-debug-core-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:3866353d2ed281226644d9efc633534d4e2382d10f09179df538cc18c498f5e2
  • kernel-debug-devel-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:6daea7027524471a2f81d8ad2c2760a625e6ad26ebc384afae3383b655359cf2
  • kernel-debug-modules-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:d1c8e89ec7607b55d5e840f3ece5130b313d1a106674c63e33d9224317de8f7c
  • kernel-debug-modules-extra-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:9bc851f5501e32eb9d8e3194d18b13e26f9b03721942dcd6e5161f51feba3af2
  • kernel-debug-modules-internal-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:6f324fe11bced01383e1276706707d731c69ab38a3a42a212bdbe8ac57f3a644
  • kernel-devel-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:d768b391945940eca472588cc24fa345114668a26f5f0d4ab964bfe186347822
  • kernel-headers-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:3cbf796c526a865f676c5d293646c10534e10970f61e549fd214ff1f9d87b155
  • kernel-ipaclones-internal-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:f815a91f05dc4997fdd3dec85fe185d3cc411789223fecd506c1dd01331bb1b3
  • kernel-modules-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:501f0110d684985b11ee645f16c248e23593821573e4adbce8a0c1668f921da0
  • kernel-modules-extra-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:0c6f19e039349e46c8d7028a665754a034691454e541dc308b13024eaf6d441c
  • kernel-modules-internal-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:d6794a80200c0d635b768404363f8500f78d8c94cb762269cf5bb9f979460eda
  • kernel-selftests-internal-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:80154b9c85b0718d11a75e20c9a622876e0566e5ed728bd209026f25ca0a5ea6
  • kernel-tools-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:c0dc43ae579e6a5c28d18de3b22be17945a0687aec7738022edd2df38a9c6d2a
  • kernel-tools-libs-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:ba4e3bdc2960bbf99437e30529baea55973a6fa555e1e037322e02fbe7aa9d6b
  • kernel-tools-libs-devel-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:0e90308a17a187b62e55b467222e67b2bf998c36963c428df766430384f50da0
  • perf-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:d046a6c1b0bab64d8bcf39fb0b80b7a053448f2e0f25a6a8f85b9e6788eddd2a
  • python3-perf-4.18.0-553.6.1.el8_10.tuxcare.els26.x86_64.rpm
    sha:e5fec7de39bf893ea6ee5cf0a9c2b8e66df9535392de995f336726e27a2dddfe
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.