CLSA-2025-1760546935

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1760546935.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2025-1760546935
Upstream
Published
2025-10-15T16:49:07Z
Modified
2026-05-29T01:37:43.199938632Z
Summary
kernel: Fix of 43 CVEs
Details
  • locking/ww_mutex/test: Fix potential workqueue corruption {CVE-2023-52836}
  • netfilter: ipset: Fix suspicious rcudereferenceprotected() {CVE-2024-40993}
  • netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type {CVE-2024-39503}
  • netfilter: ipset: Missing gc cancellations fixed {CVE-2024-39503}
  • netfilter: ipset: Add list flush to cancel_gc {CVE-2024-39503}
  • netfilter: ipset: fix performance regression in swap operation {CVE-2024-26910}
  • netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test {CVE-2024-26910}
  • scsi: ses: Fix slab-out-of-bounds in sesintfremove() {CVE-2023-53521}
  • scsi: mpt3sas: Fix a memory leak {CVE-2023-53512}
  • scsi: iscsitcp: Check that sock is valid before iscsiset_param() {CVE-2023-53464}
  • wifi: ath11k: fix deinitialization of firmware resources {CVE-2023-53532}
  • mt76: mt7915: Fix PCI device refcount leak in mt7915pciinit_hif2() {CVE-2022-50464}
  • ionic: catch failure from devlink_alloc {CVE-2023-53470}
  • enic: Validate length of nl attributes in enicsetvf_port {CVE-2024-38659}
  • gpiolib: cdev: fix uninitialised kfifo {CVE-2024-36898}
  • Bluetooth: hciconn: Fix crash on hcicreatecissync {CVE-2022-50447}
  • net/sched: taprio: always validate TCATAPRIOATTR_PRIOMAP {CVE-2024-36974}
  • ext4: Fix function prototype mismatch for ext4featktype {CVE-2023-53224}
  • ipv6: Add lwtunnel encap size of all siblings in nexthop calculation {CVE-2023-53477}
  • netfilter: nftables: prefer nftchain_validate {CVE-2024-41042}
  • netfilter: nf_conntrack: fix crash due to removal of uninitialised entry {CVE-2025-38472}
  • Bluetooth: qca: add missing firmware sanity checks {CVE-2024-36880}
  • Bluetooth: qca: fix info leak when fetching fw build id {CVE-2024-36032}
  • Bluetooth: L2CAP: fix "bad unlock balance" in l2capdisconnectrsp {CVE-2023-53297}
  • drm/amd/display: Skip finding free audio for unknown engine_id {CVE-2024-42119}
  • drm/dp_mst: Fix resetting msg rx state after topology removal {CVE-2024-57876}
  • drm/vc4: don't check if plane->state->fb == state->fb {CVE-2024-35932}
  • drm/nouveau/disp: fix use-after-free in error handling of nouveauconnectorcreate {CVE-2023-53263}
  • cifs: fix oops during encryption {CVE-2022-50341}
  • smb: client: fix use-after-free in cifsoplockbreak {CVE-2025-38527}
  • smb: client: fix race with concurrent opens in rename(2) {CVE-2025-39825}
  • ASoC: Intel: sofsdwrtsdcajackcommon: ctx->headsetcodec_dev = NULL {CVE-2023-52697}
  • blk-mq: fix NULL dereference on q->elevator in blkmqelvswitchnone {CVE-2023-53292}
  • mlx5: fix possible ptp queue fifo use-after-free {CVE-2023-53398}
  • sctp: check send stream number after waitforsndbuf {CVE-2023-53296}
  • sctp: linearize cloned gso packets in sctp_rcv {CVE-2025-38718}
  • ip6mr: Fix skbunderpanic in ip6mrcachereport() {CVE-2023-53365}
  • scsi: mpi3mr: Use number of bits to manage bitmap sizes {CVE-2023-53376}
  • scsi: qla2xxx: Remove unused nvmelswaitq wait queue {CVE-2023-53280}
  • mt76: mt7921: fix kernel panic by accessing unallocated eeprom.data {CVE-2023-53232}
  • wifi: ath9k: don't allow to overwrite ENDPOINT0 attributes {CVE-2023-53185}
  • fbdev: Fix invalid page access after closing deferred I/O devices {CVE-2023-52731}
  • ACPICA: Add AMLNOOPERAND_RESOLVE flag to Timer {CVE-2023-53395}
  • ACPI: processor: idle: Check acpifetchacpi_dev() return value {CVE-2022-50327}
  • media: az6007: Fix null-ptr-deref in az6007i2cxfer() {CVE-2023-53220}
  • media: dvb-usb: az6027: fix null-ptr-deref in az6027i2cxfer() {CVE-2022-50272}
References

Affected packages