[CLSA-2025:1760647898] Fix of 22 CVEs
Type:
security
Severity:
Important
Release date:
2025-10-16 20:51:42 UTC
Description:
* CVE-url: https://ubuntu.com/security/CVE-2022-43945 - NFSD: Protect against send buffer overflow in NFSv3 READ * Focal update: v5.4.285 upstream stable release (LP: #2089233) // CVE-2024-49924 // CVE-url: https://ubuntu.com/security/CVE-2024-49924 - fbdev: pxafb: Fix possible use after free in pxafb_task() * CVE-url: https://ubuntu.com/security/CVE-2025-38477 - net/sched: sch_qfq: Fix race condition on qfq_aggregate - net/sched: sch_qfq: Avoid triggering might_sleep in atomic context in qfq_delete_class * CVE-url: https://ubuntu.com/security/CVE-2025-38618 - vsock: Do not allow binding to VMADDR_PORT_ANY * CVE-url: https://ubuntu.com/security/CVE-2025-38617 - net/packet: fix a race in packet_set_ring() and packet_notifier() * CVE-url: https://ubuntu.com/security/CVE-2025-21796 - nfsd: clear acl_access/acl_default after releasing them * CVE-url: https://ubuntu.com/security/CVE-2022-48827 - NFSD: Fix the behavior of READ near OFFSET_MAX * CVE-url: https://ubuntu.com/security/CVE-2021-47391 - RDMA/cma: Ensure rdma_addr_cancel() happens before issuing more requests * CVE-url: https://ubuntu.com/security/CVE-2024-41069 - ASoC: topology: Fix references to freed memory - ASoC: topology: Do not assign fields that are already set - ASoC: topology: Clean up route loading * CVE-url: https://ubuntu.com/security/CVE-2024-56616 - drm/dp_mst: Fix MST sideband message body length check * Focal update: v5.4.261 upstream stable release (LP: #2049049) // CVE-url: https://ubuntu.com/security/CVE-2023-52868 - thermal: core: prevent potential string overflow * Focal update: v5.4.262 upstream stable release (LP: #2049069) // CVE-url: https://ubuntu.com/security/CVE-2023-52836 - locking/ww_mutex/test: Fix potential workqueue corruption * CVE-2024-35965 // CVE-url: https://ubuntu.com/security/CVE-2024-35965 - Bluetooth: L2CAP: uninitialized variables in l2cap_sock_setsockopt() - Bluetooth: L2CAP: Fix not validating setsockopt user input * Focal update: v5.4.188 upstream stable release (LP: #1971496) // CVE-url: https://ubuntu.com/security/CVE-2022-49292 - ALSA: oss: Fix PCM OSS buffer allocation overflow * Focal update: v5.4.262 upstream stable release (LP: #2049069) // CVE-url: https://ubuntu.com/security/CVE-2023-52835 - perf/core: Bail out early if the request AUX area is out of bound * Focal update: v5.4.262 upstream stable release (LP: #2049069) // CVE-url: https://ubuntu.com/security/CVE-2023-52764 - media: gspca: cpia1: shift-out-of-bounds in set_flicker * Focal update: v5.4.261 upstream stable release (LP: #2049049) // CVE-url: https://ubuntu.com/security/CVE-2023-52864 - platform/x86: wmi: Fix probe failure when failing to register WMI devices - platform/x86: wmi: remove unnecessary initializations - platform/x86: wmi: Fix opening of char device * CVE-2024-35966 // CVE-url: https://ubuntu.com/security/CVE-2024-35966 - Bluetooth: RFCOMM: Fix not validating setsockopt user input * CVE-2024-35967 // CVE-url: https://ubuntu.com/security/CVE-2024-35966 - Bluetooth: SCO: Fix not validating setsockopt user input * Focal update: v5.4.291 upstream stable release (LP: #2106002) // CVE-2025-21704 // CVE-url: https://ubuntu.com/security/CVE-2025-21704 - usb: cdc-acm: Check control transfer buffer size before access * CVE-url: https://ubuntu.com/security/CVE-2025-38350 - net/sched: Always pass notifications when child class becomes empty * CVE-url: https://ubuntu.com/security/CVE-2025-37798 - sch_htb: make htb_qlen_notify() idempotent
Updated packages:
  • linux-buildinfo-4.15.0-252-tuxcare.els40-generic_4.15.0-252.263_amd64.deb
    sha:d5a0d26c21cce8bb8b3d4cd0989c74a5e43d73b8
  • linux-buildinfo-4.15.0-252-tuxcare.els40-lowlatency_4.15.0-252.263_amd64.deb
    sha:8d329980d0897d48e2033e60ef7f43d586c4b207
  • linux-cloud-tools-4.15.0-252-tuxcare.els40_4.15.0-252.263_amd64.deb
    sha:bd85411eba2583ac2791d8fc4da2e47fab607396
  • linux-cloud-tools-4.15.0-252-tuxcare.els40-generic_4.15.0-252.263_amd64.deb
    sha:394897f74fef885cc64b04f9db67d9d5ac41168f
  • linux-cloud-tools-4.15.0-252-tuxcare.els40-lowlatency_4.15.0-252.263_amd64.deb
    sha:488b30c8afe1eb44e3f5dc356e867afa3158d7aa
  • linux-cloud-tools-common_4.15.0-252.263_all.deb
    sha:70e4aac04c0d12c8f1873582b9c91c06383945ca
  • linux-cloud-tools-generic_4.15.0.252.263_amd64.deb
    sha:ef35cc3c2b53b46fd885cc0e4f8cc10134d108a3
  • linux-cloud-tools-lowlatency_4.15.0.252.263_amd64.deb
    sha:39cf8b80e303b4095c020d104e2d80d4dd8cceac
  • linux-crashdump_4.15.0.252.263_amd64.deb
    sha:ee6cb8a729e7080a0a7abbdd1eed692f8f4fae18
  • linux-doc_4.15.0-252.263_all.deb
    sha:45b66c9e47045c69ce1c41b1131f2cbc88e59bf2
  • linux-generic_4.15.0.252.263_amd64.deb
    sha:b9c131ef4f2a0936e00396d39325ba9449bf19c0
  • linux-headers-4.15.0-252-tuxcare.els40_4.15.0-252.263_all.deb
    sha:ac48a98eb9ec149e3669b5327cfbd2a91e2a4be4
  • linux-headers-4.15.0-252-tuxcare.els40-generic_4.15.0-252.263_amd64.deb
    sha:77bfd46e3e2c4ff2ba3c4408753855a7f4872008
  • linux-headers-4.15.0-252-tuxcare.els40-lowlatency_4.15.0-252.263_amd64.deb
    sha:6afbed7e2718ea7eeede43a6bd7e2bd7a9ed3d7a
  • linux-headers-generic_4.15.0.252.263_amd64.deb
    sha:d96e856f9e764bd90dc10241b650da8cefbec64b
  • linux-headers-lowlatency_4.15.0.252.263_amd64.deb
    sha:8a9c91cf87de09db3befb7fe5adbd8c9aedf9cca
  • linux-image-generic_4.15.0.252.263_amd64.deb
    sha:33ba992a8b84baca95654cc54ab789949fffa614
  • linux-image-lowlatency_4.15.0.252.263_amd64.deb
    sha:9c41d4d8d71e8e76032b0279a835b6371bb78754
  • linux-image-unsigned-4.15.0-252-tuxcare.els40-generic_4.15.0-252.263_amd64.deb
    sha:72e8ce568c5161ecf3122727d608db75fd6974db
  • linux-image-unsigned-4.15.0-252-tuxcare.els40-lowlatency_4.15.0-252.263_amd64.deb
    sha:48c50382b628244a3ea2b907a4e1559d48b52001
  • linux-libc-dev_4.15.0-252.263_amd64.deb
    sha:7b1cd462f491813826007f6cd23d966e3fc7d90b
  • linux-lowlatency_4.15.0.252.263_amd64.deb
    sha:fb4fb946f244ac89eedb68e9b874d00dab361193
  • linux-modules-4.15.0-252-tuxcare.els40-generic_4.15.0-252.263_amd64.deb
    sha:5d8920bbda3bf4fa2aeded8f2b35eea4d79ffac1
  • linux-modules-4.15.0-252-tuxcare.els40-lowlatency_4.15.0-252.263_amd64.deb
    sha:8c2918c4d161bdb1cd870ea7c106c10e8acf91b8
  • linux-modules-extra-4.15.0-252-tuxcare.els40-generic_4.15.0-252.263_amd64.deb
    sha:7515cbdc269e112aa92d698443d06a84664109a5
  • linux-source_4.15.0.252.263_all.deb
    sha:0c3642d650d169c65914144f8a106ef6056d50c0
  • linux-source-4.15.0_4.15.0-252.263_all.deb
    sha:430644abaa0c03561235d1082951cc6bd4757e28
  • linux-tools-4.15.0-252-tuxcare.els40_4.15.0-252.263_amd64.deb
    sha:b95f9f0958f6075314b36bdcc421589afb15a4c7
  • linux-tools-4.15.0-252-tuxcare.els40-generic_4.15.0-252.263_amd64.deb
    sha:8edda45f13f5b1f667687e5c08c2879f000b4cba
  • linux-tools-4.15.0-252-tuxcare.els40-lowlatency_4.15.0-252.263_amd64.deb
    sha:6c0862aec127ae6b479df992c0afee4e519c73b8
  • linux-tools-common_4.15.0-252.263_all.deb
    sha:a879bbd1e7c946b164fb592b0fdf3cf576cef61e
  • linux-tools-generic_4.15.0.252.263_amd64.deb
    sha:cfa1a1c06828b79ef63b3303211d4303dc03b265
  • linux-tools-host_4.15.0-252.263_all.deb
    sha:34accbf633766499eb50d463977b8016327f38bb
  • linux-tools-lowlatency_4.15.0.252.263_amd64.deb
    sha:1b1362314f957c9703531b26ef167b3facc3f0b7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.