CLSA-2025:1747251218

[CLSA-2025:1747251218] kernel: Fix of 5 CVEs

Type:

security

Severity:

Important

Release date:

2025-05-14 19:33:43 UTC

Description:

- ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices {CVE-2024-53197}
- Bluetooth: L2CAP: Fix slab-use-after-free Read in l2cap_send_cmd {CVE-2025-21969}
- ext4: fix OOB read when checking dotdot dir {CVE-2025-37785}
- iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic() {CVE-2025-21993}
- vlan: enforce underlying device type {CVE-2025-21920}

Updated packages:

bpftool-3.10.0-1160.119.1.0.5.el7.tuxcare.els20.x86_64.rpm
sha:e6f059f51309a7b14d867ce79cdd139685a609bb59739be2fe6ce6e9c47f8694
kernel-3.10.0-1160.119.1.0.5.el7.tuxcare.els20.x86_64.rpm
sha:c9f7e07f4e782a375a507f482019a85178f4f11121098c606ce057a9ed828450
kernel-debug-3.10.0-1160.119.1.0.5.el7.tuxcare.els20.x86_64.rpm
sha:390080fba6d8cc1e502804d9baf15d0b1a0d6c8c7ca54780f679ba1c997076fe
kernel-debug-devel-3.10.0-1160.119.1.0.5.el7.tuxcare.els20.x86_64.rpm
sha:214de9e4fe4f01fd50a4c5dfcb649f71786edb3c6cb10f2fe51efd6483ac1543
kernel-devel-3.10.0-1160.119.1.0.5.el7.tuxcare.els20.x86_64.rpm
sha:3c3fb4a30dd8e4fd6587a7d5ae0af61ba76a8a3c94513454aec93d93a5e5c2c5
kernel-headers-3.10.0-1160.119.1.0.5.el7.tuxcare.els20.x86_64.rpm
sha:da4497fdabda74c8319d61f0305708eb5338282ee0c13bf9c1acc85eb07568b0
kernel-tools-3.10.0-1160.119.1.0.5.el7.tuxcare.els20.x86_64.rpm
sha:d060cf45635795b4d51a6c12f99c4e428f96edeacbbc1d7a7abaa3d83d8717d8
kernel-tools-libs-3.10.0-1160.119.1.0.5.el7.tuxcare.els20.x86_64.rpm
sha:ab5b45e15f2d79c3a219f66dd94110af7f184fdb5a524c46f9dfd59e85c7a642
kernel-tools-libs-devel-3.10.0-1160.119.1.0.5.el7.tuxcare.els20.x86_64.rpm
sha:7c6b405e60280cb2362b698ae39f64f44fa6f14acee98b19eda2f623fdbf457c
perf-3.10.0-1160.119.1.0.5.el7.tuxcare.els20.x86_64.rpm
sha:dcf097ccbe102158eaf801d7d2e5c986c162435907583c531dd2701241db7ad3
python-perf-3.10.0-1160.119.1.0.5.el7.tuxcare.els20.x86_64.rpm
sha:d271115de6ba481bf38c6a0ecef3582719fa54f5a179864a5a5966afcf8195d7

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.