{"id":"CLSA-2025-1757961864","summary":"kernel: Fix of 32 CVEs","details":"- inet: fully convert sk-\u003esk_rx_dst to RCU rules {CVE-2021-47103}\n- ALSA: usb-audio: Fix out of bounds reads when finding clock sources {CVE-2024-53150}\n- posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() {CVE-2025-38352}\n- can: peak_usb: fix use after free bugs {CVE-2021-47670}\n- wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds {CVE-2025-38159}\n- RDMA/rxe: Fix error unwind in rxe_create_qp() {CVE-2022-50127}\n- i40e: fix MMIO write access to an invalid page in i40e_clear_hw {CVE-2025-38200}\n- udp: Fix memory accounting leak. {CVE-2025-22058}\n- ALSA: bcd2000: Fix a UAF bug on the error path of probing {CVE-2022-50083}\n- ext4: correct the misjudgment in ext4_iget_extra_inode {CVE-2022-50083}\n- ext4: correct max_inline_xattr_value_size computing {CVE-2022-50083}\n- ext4: fix use-after-free in ext4_xattr_set_entry {CVE-2022-50083}\n- ext4: add EXT4_INODE_HAS_XATTR_SPACE macro in xattr.h {CVE-2022-50083}\n- Bluetooth: hci_core: Fix use-after-free in vhci_flush() {CVE-2025-38250}\n- net_sched: ets: Fix double list add in class with netem as child qdisc {CVE-2025-38085}\n- mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race {CVE-2025-38085}\n- padata: fix UAF in padata_reorder {CVE-2025-21727}\n- net/sched: Always pass notifications when child class becomes empty {CVE-2025-38350}\n- codel: remove sch-\u003eq.qlen check before qdisc_tree_reduce_backlog() {CVE-2025-38177}\n- sch_ets: make est_qlen_notify() idempotent {CVE-2025-38177}\n- sch_qfq: make qfq_qlen_notify() idempotent {CVE-2025-38177}\n- sch_hfsc: make hfsc_qlen_notify() idempotent {CVE-2025-38177}\n- sch_drr: make drr_qlen_notify() idempotent {CVE-2025-38177}\n- sch_htb: make htb_qlen_notify() idempotent {CVE-2025-38177}\n- sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() {CVE-2025-38000}\n- mptcp: do not queue data on closed subflows {CVE-2022-50070}\n- mptcp: export mptcp_subflow_active {CVE-2022-50070}\n- net/sched: sch_qfq: Fix race condition on qfq_aggregate {CVE-2025-38477}\n- tipc: Fix use-after-free in tipc_conn_close(). {CVE-2025-38464}\n- RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction {CVE-2025-38211}\n- scsi: lpfc: Use memcpy() for BIOS version {CVE-2025-38332}\n- crypto: algif_hash - fix double free in hash_accept {CVE-2025-38079}\n- net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc {CVE-2025-37890}\n- ext4: avoid resizing to a partial cluster size {CVE-2022-50020}\n- net: tipc: fix refcount warning in tipc_aead_encrypt {CVE-2025-38273}\n- ice: xsk: prohibit usage of non-balanced queue id {CVE-2022-50003}\n- net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done {CVE-2025-38052}\n- virtio-gpu: fix a missing check to avoid NULL dereference {CVE-2022-50181}\n- usb: xhci_plat_remove: avoid NULL dereference {CVE-2022-50133}\n- ASoC: SOF: Intel: hda-ipc: Do not process IPC reply before firmware boot {CVE-2022-50015}\n- netfilter: nft_tproxy: restrict to prerouting hook {CVE-2022-50001}\n- scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq {CVE-2022-49986}\n- ath11k: fix netdev open race {CVE-2022-50187}","modified":"2026-06-01T00:33:12.113379111Z","published":"2025-09-15T18:44:28Z","upstream":["CVE-2021-47103","CVE-2024-53150","CVE-2025-38352","CVE-2021-47670","CVE-2025-38159","CVE-2022-50127","CVE-2025-38200","CVE-2025-22058","CVE-2022-50083","CVE-2025-38250","CVE-2025-38085","CVE-2025-21727","CVE-2025-38350","CVE-2025-38177","CVE-2025-38000","CVE-2022-50070","CVE-2025-38477","CVE-2025-38464","CVE-2025-38211","CVE-2025-38332","CVE-2025-38079","CVE-2025-37890","CVE-2022-50020","CVE-2025-38273","CVE-2022-50003","CVE-2025-38052","CVE-2022-50181","CVE-2022-50133","CVE-2022-50015","CVE-2022-50001","CVE-2022-49986","CVE-2022-50187"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/centos8.4els/CLSA-2025-1757961864.html"}],"affected":[{"package":{"name":"bpftool","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/bpftool?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-core","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-core?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-cross-headers","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-cross-headers?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-debug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-debug-core","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-core?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-debug-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-debug-modules","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-modules?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-debug-modules-extra","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-modules-extra?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-debug-modules-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-debug-modules-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-headers","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-headers?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-ipaclones-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-ipaclones-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-modules","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-modules?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-modules-extra","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-modules-extra?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-modules-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-modules-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-selftests-internal","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-selftests-internal?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-tools","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-tools?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-tools-libs","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-tools-libs?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"kernel-tools-libs-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/kernel-tools-libs-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"perf","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/perf?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}},{"package":{"name":"python3-perf","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/python3-perf?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-305.25.1.el8_4.tuxcare.els31"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1757961864.json"}}],"schema_version":"1.7.5"}