[CLSA-2026:1783859504] kernel-uek: Fix of 2 CVEs
Type:
security
Severity:
Important
Release date:
2026-07-12 12:32:01 UTC
Description:
- futex/requeue: Prevent NULL pointer dereference in remove_waiter() on self-deadlock {CVE-2026-53166} - rtmutex: Use waiter::task instead of current in remove_waiter() {CVE-2026-43499} - ip6_tunnel: clear skb2->cb[] in ip4ip6_err() {CVE-2026-43037}
Updated packages:
  • bpftool-5.4.17-2136.354.4.el7uek.tuxcare.els8.x86_64.rpm
    sha:d5137166742b97d54af0d0c074dc58ecfe955f1c7356d971859806d36f9e9c41
  • kernel-uek-5.4.17-2136.354.4.el7uek.tuxcare.els8.x86_64.rpm
    sha:f6906b53ab0a7c4696898a89cade73d66a73fc755652c28b0f03761627024acc
  • kernel-uek-container-5.4.17-2136.354.4.el7uek.tuxcare.els8.x86_64.rpm
    sha:1ed86678fb7e87462c5d9163d501969d6a4527f379266dc47c245609a8258eb2
  • kernel-uek-container-debug-5.4.17-2136.354.4.el7uek.tuxcare.els8.x86_64.rpm
    sha:d102186e3459eca806b7868fcf4b7e0eae799cfff0593f63344c6c2ea3df9908
  • kernel-uek-debug-5.4.17-2136.354.4.el7uek.tuxcare.els8.x86_64.rpm
    sha:0168e113892b2e1c378c4af9c2be56f31e65edeb0fe28ba1b468a048e7a6fd79
  • kernel-uek-debug-devel-5.4.17-2136.354.4.el7uek.tuxcare.els8.x86_64.rpm
    sha:78ca4bc80aa611b3785e9ab7de0b202d00ac73303bc08843447945124104b42c
  • kernel-uek-devel-5.4.17-2136.354.4.el7uek.tuxcare.els8.x86_64.rpm
    sha:b273432abf12d2a8182513d55d2679ae1581f0ff932ad6cbf678904fc00edd02
  • kernel-uek-headers-5.4.17-2136.354.4.el7uek.tuxcare.els8.x86_64.rpm
    sha:a65b75f5dbcc184d4139f9b6e544b9ba31e79795b5744bde19ee0a83b16bcce2
  • kernel-uek-tools-5.4.17-2136.354.4.el7uek.tuxcare.els8.x86_64.rpm
    sha:edc58230a73a9d9361e97b10df49208ee82490ee9cc1b5ccecd4d0c784084f67
  • perf-5.4.17-2136.354.4.el7uek.tuxcare.els8.x86_64.rpm
    sha:e8ba14ad3347ed8ce0ba921a86be37d5bfbe41c3af46839e00b8b945f20efc65
  • python-perf-5.4.17-2136.354.4.el7uek.tuxcare.els8.x86_64.rpm
    sha:a3a27506e86501eb67cc1a9a61af5382be3a91c68dc151d9ed886869f8b46a5c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.