CLSA-2025-1764151168

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1764151168.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2025-1764151168
Upstream
Published
2025-11-27T09:45:02Z
Modified
2026-05-29T01:37:37.556282250Z
Summary
kernel: Fix of 39 CVEs
Details
  • perf/aux: Fix AUX buffer serialization {CVE-2024-46713}
  • block: fix uaf for flush rq while iterating tags {CVE-2024-53170}
  • zram: fix potential UAF of zram table {CVE-2025-21671}
  • sched: sch_cake: add bounds checks to host bulk flow fairness counts {CVE-2025-21647}
  • bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors {CVE-2024-56675}
  • net: openvswitch: fix nested key length validation in the set() action {CVE-2025-37789}
  • isofs: Prevent the use of too small fid {CVE-2025-37780}
  • net: ppp: Add bound checking for skb data on pppsynctxmung {CVE-2025-37749}
  • sctp: detect and prevent references to a freed transport in sendmsg {CVE-2025-23142}
  • ipv6: sr: Fix MAC comparison to be constant-time {CVE-2025-39702}
  • RDMA/rxe: Fix incomplete state save in rxe_requester {CVE-2023-53539}
  • crypto: xts - Handle EBUSY correctly {CVE-2023-53494}
  • Bluetooth: use RCU for hciconnparams and iterate safely in hci_sync {CVE-2023-53252}
  • afunix: Fix data-races around user->unixinflight. {CVE-2023-53204}
  • fs: fix UAF/GPF bug in nilfsmdtdestroy {CVE-2022-50367}
  • wifi: rtlwifi: remove unused checkbuddypriv {CVE-2024-58072}
  • wifi: rtlwifi: remove unused dualmac control leftovers
  • wifi: rtlwifi: remove unused timer and related code
  • partitions: mac: fix handling of bogus partition table {CVE-2025-21772}
  • ipmr: do not call mrmfcuses_dev() for unres entries {CVE-2025-21719}
  • wifi: brcmsmac: add gain range check to wlcphyiqcalgainparamsnphy() {CVE-2024-58014}
  • net: mdio: validate parameter addr in mdiobusgetphy() {CVE-2023-53019}
  • ALSA: hda/ca0132: Fix buffer overflow in addtuningcontrol {CVE-2025-39751}
  • NFS: Fix filehandle bounds checking in nfsfhto_dentry() {CVE-2025-39730}
  • net/mlx5e: Check for NOT_READY flag state after locking {CVE-2023-53581}
  • null_blk: Always check queue mode setting from configfs {CVE-2023-53576}
  • ipvti: fix potential slab-use-after-free in decodesession6 {CVE-2023-53559}
  • rcu-tasks: Avoid prinfo() with spin lock in cblistinit_generic() {CVE-2023-53558}
  • pstore/ram: Check start of empty przs during init {CVE-2023-53331}
  • wifi: ath11k: fix memory leak in WMI firmware stats {CVE-2023-53602}
  • wifi: mac80211: fix invalid drvstaprercuremove calls for non-uploaded sta {CVE-2023-53229}
  • net: ethernet: ti: Fix return type of netcpndostart_xmit() {CVE-2022-50486}
  • RDMA/core: Make sure "ib_port" is valid when access sysfs node {CVE-2022-50475}
  • RDMA/rxe: Fix mr->map double free {CVE-2022-50543}
  • scsi: qla2xxx: Fix end of loop test
  • scsi: qla2xxx: Fix mem access after free
  • scsi: qla2xxx: Wait for io return on terminate rport {CVE-2023-53322}
  • scsi: target: Fix multiple LUN_RESET handling {CVE-2023-53586}
  • scsi: ses: Fix possible desc_ptr out-of-bounds accesses {CVE-2023-53675}
  • scsi: ses: Fix possible addldescptr out-of-bounds accesses {CVE-2023-53675}
  • scsi: ses: Fix slab-out-of-bounds in sesenclosuredata_process() {CVE-2023-53675}
  • scsi: lpfc: Fix buffer free/clear order in deferred receive path {CVE-2025-39841}
  • nbd: fix incomplete validation of ioctl arg {CVE-2023-53513}
  • efivarfs: Fix slab-out-of-bounds in efivarfsdcompare {CVE-2025-39817}
  • bnxt: avoid overflow in bnxtgetnvram_directory() {CVE-2023-53661}
References

Affected packages