CLSA-2026-1773048865

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1773048865.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2026-1773048865
Upstream
Published
2026-03-09T09:34:28Z
Modified
2026-05-29T01:35:54.275584775Z
Summary
kernel: Fix of 53 CVEs
Details
  • xhci: Remove device endpoints from bandwidth list when freeing the device {CVE-2022-50470}
  • HID: multitouch: Add NULL check in mtinputconfigured {CVE-2024-58020}
  • netfilter: nftsetpipapo: clamp maximum map bucket size to INT_MAX {CVE-2025-38201}
  • fs: writeback: fix use-after-free in __markinodedirty() {CVE-2025-39866}
  • tracing/histograms: Add histograms to hist_vars if they have referenced variables {CVE-2023-53560}
  • netfilter: conntrack: Avoid nfcthelper_hash uses after free {CVE-2023-53619}
  • scsi: ses: Fix slab-out-of-bounds in sesintfremove() {CVE-2023-53521}
  • dm cache: Fix UAF in destroy() {CVE-2022-50496}
  • Bluetooth: L2CAP: Fix user-after-free {CVE-2022-50386}
  • VMCI: fix race between vmcihostsetupnotify and vmcictxunsetnotify {CVE-2025-38102}
  • sctp: avoid NULL dereference when chunk data buffer is missing {CVE-2025-40240}
  • wifi: iwlwifi: pcie: Fix integer overflow in iwlwritetouserbuf {CVE-2023-53524}
  • xfrm: fix slab-use-after-free in decode_session6 {CVE-2023-53500}
  • ring-buffer: Sync IRQ works before buffer destruction {CVE-2023-53587}
  • Bluetooth: RFCOMM: Fix not validating setsockopt user input {CVE-2024-35966}
  • Bluetooth: L2CAP: Fix not validating setsockopt user input {CVE-2024-35965}
  • Bluetooth: SCO: Fix not validating setsockopt user input {CVE-2024-35967}
  • NFSD: Fix the behavior of READ near OFFSET_MAX {CVE-2022-48827}
  • NFSD: Avoid calling OPDESC() with ops->opnum == OP_ILLEGAL {CVE-2023-53680}
  • mm/memory-failure: fix VMBUGON_PAGE(PagePoisoned(page)) when unpoison memory {CVE-2025-39883}
  • fbdev: Fix vmalloc out-of-bounds write in fast_imageblit {CVE-2025-38685}
  • erspan: do not use skbmacheader() in ndostartxmit() {CVE-2023-53053}
  • net/mlx5e: Avoid field-overflowing memcpy() {CVE-2022-48744}
  • usb: core: config: Prevent OOB read in SS endpoint companion parsing {CVE-2025-39760}
  • i40e: fix IRQ freeing in i40evsirequestirqmsix error path {CVE-2025-39911}
  • scsi: libsas: Fix use-after-free bug in smpexecutetask_sg() {CVE-2022-50422}
  • i40e: remove read access to debugfs files {CVE-2025-39901}
  • Bluetooth: hci_sock: Prevent race in socket write iter and sock bind {CVE-2025-68305}
  • RDMA/core: Fix "KASAN: slab-use-after-free Read in ibregisterdevice" problem {CVE-2025-38022}
  • usb: xhci: Apply the link chain quirk on NEC isoc endpoints {CVE-2025-22022}
  • netfilter: allow exp not to be removed in nfctfind_expectation {CVE-2023-52927}
  • dm-bufio: don't schedule in atomic context {CVE-2025-37928}
  • ACPI: EC: Fix oops when removing custom query handlers {CVE-2023-54244}
  • mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats {CVE-2025-68800}
  • net/sched: Enforce that teql can only be used as root qdisc {CVE-2026-23074}
  • net: nsh: Use correct macoffset to unwind gso skb in nshgso_segment() {CVE-2023-54114}
  • igb: Do not bring the device up after non-fatal error {CVE-2024-50040}
  • HID: core: do not bypass hidhwraw_request {CVE-2025-38494}
  • drm/amdgpu/gfx: disable gfx9 cpeccerror_irq only when enabling legacy gfx ras {CVE-2023-53471}
  • wifi: mwifiex: Initialize the chan_stats array to zero {CVE-2025-39891}
  • HID: asus: fix UAF via HIDCLAIMEDINPUT validation {CVE-2025-39824}
  • fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds {CVE-2025-40304}
  • HID: multitouch: Correct devm device reference for hidinput input_dev name {CVE-2023-53454}
  • udf: Do not bother merging very long extents {CVE-2023-53506}
  • wifi: brcmfmac: Fix potential shift-out-of-bounds in brcmffwalloc_request() {CVE-2022-50551}
  • dm integrity: call kmemcachedestroy() in dmintegrityinit() error path {CVE-2023-53604}
  • gfs2: Fix possible data races in gfs2showoptions() {CVE-2023-53622}
  • iavf: Fix use-after-free in free_netdev {CVE-2023-53556}
  • cnic: Fix use-after-free bugs in cnicdeletetask {CVE-2025-39945}
  • kernfs: fix use-after-free in _kernfsremove {CVE-2022-50432}
  • net/sched: act_mirred: don't override retval if we already lost the skb {CVE-2024-26739}
  • tcpbpf: Call skmsgfree() when tcpbpfsendverdict() fails to allocate psock->cork. {CVE-2025-39913}
  • igb: Fix igb_down hung on surprise removal {CVE-2023-53148}
References

Affected packages