ALSA-2026:2721

See a problem?
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:2721.json
JSON Data
https://api.osv.dev/v1/vulns/ALSA-2026:2721
Related
Published
2026-02-16T00:00:00Z
Modified
2026-05-26T16:45:16.569024518Z
Summary
Moderate: kernel security update
Details

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: ntbhwswitchtec: Fix shift-out-of-bounds in switchtecntbmwsettrans (CVE-2023-53034)
  • kernel: Linux kernel erofs: Use-After-Free due to device type mismatch (CVE-2025-38172)
  • kernel: smc: Fix use-after-free in _pnetfindbasendev() (CVE-2025-40064)
  • kernel: Bluetooth: ISO: Fix possible UAF on isoconnfree (CVE-2025-40141)
  • kernel: Linux kernel ALSA USB audio driver: Buffer overflow leading to information disclosure and denial of service (CVE-2025-40269)
  • kernel: NFSv4/pNFS: Clear NFSINOLAYOUTCOMMIT in pnfsmarklayoutstateidinvalid (CVE-2025-68349)
  • kernel: nvme-tcp: fix NULL pointer dereferences in nvmettcpbuildpduiovec (CVE-2026-22998)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:10 / kernel-abi-stablelists

Package

Name
kernel-abi-stablelists
Purl
pkg:rpm/almalinux/kernel-abi-stablelists

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.12.0-124.38.1.el10_1

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:2721.json"

AlmaLinux:10 / kernel-doc

Package

Name
kernel-doc
Purl
pkg:rpm/almalinux/kernel-doc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.12.0-124.38.1.el10_1

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:2721.json"