- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1736778412.json
- JSON Data
-
https://api.osv.dev/v1/vulns/CLSA-2025-1736778412
- Upstream
- Published
- 2025-01-13T23:55:12Z
- Modified
- 2026-05-29T01:36:41.037192262Z
- Summary
-
kernel: Fix of 17 CVEs
- Details
-
- tracing: Free buffers when a used dynamic event is removed {CVE-2022-49006}
- ASoC: ops: Check bounds for second channel in sndsocputvolswsx() {CVE-2022-48951}
- ext4: fix slab-use-after-free in ext4splitextent_at() {CVE-2024-49884}
- ext4: fix bug on in ext4escacheextent as ext4splitextentat failed {CVE-2024-49884}
- media: edia: dvbdev: fix a use-after-free {CVE-2024-27043}
- media: dvbdev: remove double-unlock {CVE-2024-27043}
- mptcp: pm: Fix uaf in __timerdeletesync {CVE-2024-46858}
- Input: powermate - fix use-after-free in powermateconfigcomplete {CVE-2023-52475}
- x86/alternatives: Disable KASAN in apply_alternatives() {CVE-2023-52504}
- ieee802154: ca8210: Fix a potential UAF in ca8210_probe {CVE-2023-52510}
- wifi: iwlwifi: mvm: Fix a memory corruption issue {CVE-2023-52531}
- vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans {CVE-2024-50264}
- net/sched: stop qdisctreereducebacklog on TCH_ROOT {CVE-2024-53057}
- bpf: Fix out-of-bounds write in triegetnext_key() {CVE-2024-50262}
- KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory {CVE-2024-50115}
- KVM: nSVM: Don't strip host's C-bit from guest's CR3 when reading PDPTRs {CVE-2024-50115}
- Bluetooth: L2CAP: Fix uaf in l2cap_connect {CVE-2024-49950}
- drm/amd/display: Fix index out of bounds in degamma hardware format translation {CVE-2024-49894}
- drm/amd/display: Fix index out of bounds in DCN30 color transformation {CVE-2024-49969}
- drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation {CVE-2024-49895}
- References
-
Affected packages
CLSA-2025-1736778412 - OSV
