chore(deps): rpm updates [security]

[red-hat-konflux]

This PR contains the following updates:

Package	Update	Change
kernel-headers	patch	4.18.0-553.64.1.el8_10 -> 4.18.0-553.66.1.el8_10

---

kernel: net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc

CVE-2025-37890

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-37890
• https://bugzilla.redhat.com/show_bug.cgi?id=2366848
• https://www.cve.org/CVERecord?id=CVE-2025-37890
• https://nvd.nist.gov/vuln/detail/CVE-2025-37890
• https://lore.kernel.org/linux-cve-announce/2025051617-CVE-2025-37890-437b@gregkh/T

---

kernel: net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done

CVE-2025-38052

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-38052
• https://bugzilla.redhat.com/show_bug.cgi?id=2373380
• https://www.cve.org/CVERecord?id=CVE-2025-38052
• https://nvd.nist.gov/vuln/detail/CVE-2025-38052
• https://lore.kernel.org/linux-cve-announce/2025061832-CVE-2025-38052-6201@​gregkh/T

---

kernel: crypto: algif_hash - fix double free in hash_accept

CVE-2025-38079

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-38079
• https://bugzilla.redhat.com/show_bug.cgi?id=2373383
• https://www.cve.org/CVERecord?id=CVE-2025-38079
• https://nvd.nist.gov/vuln/detail/CVE-2025-38079
• https://lore.kernel.org/linux-cve-announce/2025061841-CVE-2025-38079-7fa5@​gregkh/T

---

kernel: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove

CVE-2025-22020

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-22020
• https://bugzilla.redhat.com/show_bug.cgi?id=2360099
• https://www.cve.org/CVERecord?id=CVE-2025-22020
• https://nvd.nist.gov/vuln/detail/CVE-2025-22020
• https://lore.kernel.org/linux-cve-announce/2025041642-CVE-2025-22020-70e8@​gregkh/T

---

kernel: HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove()

CVE-2025-21928

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-21928
• https://bugzilla.redhat.com/show_bug.cgi?id=2356592
• https://www.cve.org/CVERecord?id=CVE-2025-21928
• https://nvd.nist.gov/vuln/detail/CVE-2025-21928
• https://lore.kernel.org/linux-cve-announce/2025040133-CVE-2025-21928-e444@​gregkh/T

---

kernel: ext4: avoid resizing to a partial cluster size

CVE-2022-50020

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2022-50020
• https://bugzilla.redhat.com/show_bug.cgi?id=2373630
• https://www.cve.org/CVERecord?id=CVE-2022-50020
• https://nvd.nist.gov/vuln/detail/CVE-2022-50020
• https://lore.kernel.org/linux-cve-announce/2025061835-CVE-2022-50020-6f27@​gregkh/T

---

kernel: cifs: fix potential double free during failed mount

CVE-2022-49541

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2022-49541
• https://bugzilla.redhat.com/show_bug.cgi?id=2348119
• https://www.cve.org/CVERecord?id=CVE-2022-49541
• https://nvd.nist.gov/vuln/detail/CVE-2022-49541
• https://lore.kernel.org/linux-cve-announce/2025022614-CVE-2022-49541-7460@​gregkh/T

---

kernel: ALSA: usb-audio: Fix out of bounds reads when finding clock sources

CVE-2024-53150

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2024-53150
• https://bugzilla.redhat.com/show_bug.cgi?id=2333971
• https://www.cve.org/CVERecord?id=CVE-2024-53150
• https://nvd.nist.gov/vuln/detail/CVE-2024-53150
• https://lore.kernel.org/linux-cve-announce/2024122427-CVE-2024-53150-3a7d@gregkh/T
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog

---

kernel: nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu()

CVE-2025-21927

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-21927
• https://bugzilla.redhat.com/show_bug.cgi?id=2356593
• https://www.cve.org/CVERecord?id=CVE-2025-21927
• https://nvd.nist.gov/vuln/detail/CVE-2025-21927
• https://lore.kernel.org/linux-cve-announce/2025040133-CVE-2025-21927-36d6@​gregkh/T

---

kernel: vsock: Keep the binding until socket destruction

CVE-2025-21756

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-21756
• https://bugzilla.redhat.com/show_bug.cgi?id=2348609
• https://www.cve.org/CVERecord?id=CVE-2025-21756
• https://nvd.nist.gov/vuln/detail/CVE-2025-21756
• https://lore.kernel.org/linux-cve-announce/2025022603-CVE-2025-21756-5e09@​gregkh/T

---

kernel: netfilter: ipset: add missing range check in bitmap_ip_uadt

CVE-2024-53141

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2024-53141
• https://bugzilla.redhat.com/show_bug.cgi?id=2330763
• https://www.cve.org/CVERecord?id=CVE-2024-53141
• https://nvd.nist.gov/vuln/detail/CVE-2024-53141
• https://lore.kernel.org/linux-cve-announce/2024120606-CVE-2024-53141-195b@gregkh/T

---

kernel: ndisc: use RCU protection in ndisc_alloc_skb()

CVE-2025-21764

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2025-21764
• https://bugzilla.redhat.com/show_bug.cgi?id=2348575
• https://www.cve.org/CVERecord?id=CVE-2025-21764
• https://nvd.nist.gov/vuln/detail/CVE-2025-21764
• https://lore.kernel.org/linux-cve-announce/2025022605-CVE-2025-21764-1061@​gregkh/T

---

kernel: tipc: fix use-after-free Read in tipc_named_reinit

CVE-2022-49696

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2022-49696
• https://bugzilla.redhat.com/show_bug.cgi?id=2347851
• https://www.cve.org/CVERecord?id=CVE-2022-49696
• https://nvd.nist.gov/vuln/detail/CVE-2022-49696
• https://lore.kernel.org/linux-cve-announce/2025022628-CVE-2022-49696-c188@​gregkh/T

---

kernel: mt76: fix use-after-free by removing a non-RCU wcid pointer

CVE-2022-49328

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2022-49328
• https://bugzilla.redhat.com/show_bug.cgi?id=2348217
• https://www.cve.org/CVERecord?id=CVE-2022-49328
• https://nvd.nist.gov/vuln/detail/CVE-2022-49328
• https://lore.kernel.org/linux-cve-announce/2025022638-CVE-2022-49328-ec2f@gregkh/T

---

Kernel: use-after-free in nfsd4_ssc_setup_dul in fs/nfsd/nfs4proc.c

CVE-2023-1652

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2023-1652
• https://bugzilla.redhat.com/show_bug.cgi?id=2182031
• https://www.cve.org/CVERecord?id=CVE-2023-1652
• https://nvd.nist.gov/vuln/detail/CVE-2023-1652
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=e6cf91b7b47ff82b624bdfe2fdcde32bb52e71dd

---

kernel: blk-mq: don't touch ->tagset in blk_mq_get_sq_hctx

CVE-2022-49377

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2022-49377
• https://bugzilla.redhat.com/show_bug.cgi?id=2347929
• https://www.cve.org/CVERecord?id=CVE-2022-49377
• https://nvd.nist.gov/vuln/detail/CVE-2022-49377
• https://lore.kernel.org/linux-cve-announce/2025022647-CVE-2022-49377-4fdf@gregkh/T

---

kernel: scsi: libfc: Fix use after free in fc_exch_abts_resp()

CVE-2022-49114

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2022-49114
• https://bugzilla.redhat.com/show_bug.cgi?id=2348136
• https://www.cve.org/CVERecord?id=CVE-2022-49114
• https://nvd.nist.gov/vuln/detail/CVE-2022-49114
• https://lore.kernel.org/linux-cve-announce/2025022602-CVE-2022-49114-86bb@gregkh/T

---

kernel: dlm: fix plock invalid read

CVE-2022-49407

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2022-49407
• https://bugzilla.redhat.com/show_bug.cgi?id=2347662
• https://www.cve.org/CVERecord?id=CVE-2022-49407
• https://nvd.nist.gov/vuln/detail/CVE-2022-49407
• https://lore.kernel.org/linux-cve-announce/2025022652-CVE-2022-49407-2755@​gregkh/T

---

kernel: Bluetooth: Fix use after free in hci_send_acl

CVE-2022-49111

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2022-49111
• https://bugzilla.redhat.com/show_bug.cgi?id=2347952
• https://www.cve.org/CVERecord?id=CVE-2022-49111
• https://nvd.nist.gov/vuln/detail/CVE-2022-49111
• https://lore.kernel.org/linux-cve-announce/2025022602-CVE-2022-49111-8795@​gregkh/T

---

kernel: ipv6: mcast: extend RCU protection in igmp6_send()

CVE-2025-21759

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-21759
• https://bugzilla.redhat.com/show_bug.cgi?id=2348596
• https://www.cve.org/CVERecord?id=CVE-2025-21759
• https://nvd.nist.gov/vuln/detail/CVE-2025-21759
• https://lore.kernel.org/linux-cve-announce/2025022604-CVE-2025-21759-ad7c@gregkh/T

---

kernel: Squashfs: fix handling and sanity checking of xattr_ids count

CVE-2023-52933

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2023-52933
• https://bugzilla.redhat.com/show_bug.cgi?id=2355476
• https://www.cve.org/CVERecord?id=CVE-2023-52933
• https://nvd.nist.gov/vuln/detail/CVE-2023-52933
• https://lore.kernel.org/linux-cve-announce/2025032720-CVE-2023-52933-f292@​gregkh/T

---

kernel: ext4: ignore xattrs past end

CVE-2025-37738

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-37738
• https://bugzilla.redhat.com/show_bug.cgi?id=2363305
• https://www.cve.org/CVERecord?id=CVE-2025-37738
• https://nvd.nist.gov/vuln/detail/CVE-2025-37738
• https://lore.kernel.org/linux-cve-announce/2025050132-CVE-2025-37738-deb1@​gregkh/T

---

kernel: um: Fix out-of-bounds read in LDT setup

CVE-2022-49395

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2022-49395
• https://bugzilla.redhat.com/show_bug.cgi?id=2347899
• https://www.cve.org/CVERecord?id=CVE-2022-49395
• https://nvd.nist.gov/vuln/detail/CVE-2022-49395
• https://lore.kernel.org/linux-cve-announce/2025022650-CVE-2022-49395-7419@​gregkh/T

---

kernel: net: atm: fix use after free in lec_send()

CVE-2025-22004

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-22004
• https://bugzilla.redhat.com/show_bug.cgi?id=2357142
• https://www.cve.org/CVERecord?id=CVE-2025-22004
• https://nvd.nist.gov/vuln/detail/CVE-2025-22004
• https://lore.kernel.org/linux-cve-announce/2025040349-CVE-2025-22004-64f9@​gregkh/T

---

kernel: ext4: fix out-of-bound read in ext4_xattr_inode_dec_ref_all()

CVE-2025-22121

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-22121
• https://bugzilla.redhat.com/show_bug.cgi?id=2360199
• https://www.cve.org/CVERecord?id=CVE-2025-22121
• https://nvd.nist.gov/vuln/detail/CVE-2025-22121
• https://lore.kernel.org/linux-cve-announce/2025041628-CVE-2025-22121-52fd@gregkh/T

---

kernel: net: atlantic: fix aq_vec index out of range error

CVE-2022-50066

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2022-50066
• https://bugzilla.redhat.com/show_bug.cgi?id=2373683
• https://www.cve.org/CVERecord?id=CVE-2022-50066
• https://nvd.nist.gov/vuln/detail/CVE-2022-50066
• https://lore.kernel.org/linux-cve-announce/2025061851-CVE-2022-50066-a2ad@gregkh/T

---

kernel: ibmvnic: Use kernel helpers for hex dumps

CVE-2025-22104

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-22104
• https://bugzilla.redhat.com/show_bug.cgi?id=2360265
• https://www.cve.org/CVERecord?id=CVE-2025-22104
• https://nvd.nist.gov/vuln/detail/CVE-2025-22104
• https://lore.kernel.org/linux-cve-announce/2025041622-CVE-2025-22104-0a82@​gregkh/T

---

kernel: udf: Fix a slab-out-of-bounds write bug in udf_find_entry()

CVE-2022-49846

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2022-49846
• https://bugzilla.redhat.com/show_bug.cgi?id=2363432
• https://www.cve.org/CVERecord?id=CVE-2022-49846
• https://nvd.nist.gov/vuln/detail/CVE-2022-49846
• https://lore.kernel.org/linux-cve-announce/2025050142-CVE-2022-49846-728c@gregkh/T

---

kernel: dm ioctl: prevent potential spectre v1 gadget

CVE-2022-49122

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2022-49122
• https://bugzilla.redhat.com/show_bug.cgi?id=2348154
• https://www.cve.org/CVERecord?id=CVE-2022-49122
• https://nvd.nist.gov/vuln/detail/CVE-2022-49122
• https://lore.kernel.org/linux-cve-announce/2025022604-CVE-2022-49122-b139@​gregkh/T

---

kernel: wifi: iwlwifi: limit printed string from FW file

CVE-2025-21905

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2025-21905
• https://bugzilla.redhat.com/show_bug.cgi?id=2356613
• https://www.cve.org/CVERecord?id=CVE-2025-21905
• https://nvd.nist.gov/vuln/detail/CVE-2025-21905
• https://lore.kernel.org/linux-cve-announce/2025040129-CVE-2025-21905-348b@gregkh/T

---

kernel: media: uvcvideo: Fix double free in error path

CVE-2024-57980

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-57980
• https://bugzilla.redhat.com/show_bug.cgi?id=2348599
• https://www.cve.org/CVERecord?id=CVE-2024-57980
• https://nvd.nist.gov/vuln/detail/CVE-2024-57980
• https://lore.kernel.org/linux-cve-announce/2025022634-CVE-2024-57980-4b5a@gregkh/T

---

kernel: ext4: fix off-by-one error in do_split

CVE-2025-23150

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2025-23150
• https://bugzilla.redhat.com/show_bug.cgi?id=2363268
• https://www.cve.org/CVERecord?id=CVE-2025-23150
• https://nvd.nist.gov/vuln/detail/CVE-2025-23150
• https://lore.kernel.org/linux-cve-announce/2025050127-CVE-2025-23150-15b8@​gregkh/T

---

kernel: writeback: avoid use-after-free after removing device

CVE-2022-49995

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2022-49995
• https://bugzilla.redhat.com/show_bug.cgi?id=2373560
• https://www.cve.org/CVERecord?id=CVE-2022-49995
• https://nvd.nist.gov/vuln/detail/CVE-2022-49995
• https://lore.kernel.org/linux-cve-announce/2025061826-CVE-2022-49995-2d74@​gregkh/T

---

kernel: mm/huge_memory: fix dereferencing invalid pmd migration entry

CVE-2025-37958

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2025-37958
• https://bugzilla.redhat.com/show_bug.cgi?id=2367572
• https://www.cve.org/CVERecord?id=CVE-2025-37958
• https://nvd.nist.gov/vuln/detail/CVE-2025-37958
• https://lore.kernel.org/linux-cve-announce/2025052003-CVE-2025-37958-02de@gregkh/T

---

kernel: ext4: avoid journaling sb update on error if journal is destroying

CVE-2025-22113

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2025-22113
• https://bugzilla.redhat.com/show_bug.cgi?id=2360212
• https://www.cve.org/CVERecord?id=CVE-2025-22113
• https://nvd.nist.gov/vuln/detail/CVE-2025-22113
• https://lore.kernel.org/linux-cve-announce/2025041625-CVE-2025-22113-34cd@gregkh/T

---

kernel: ALSA: usb-audio: Fix out of bounds reads when finding clock sources

CVE-2024-53150

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-53150
• https://bugzilla.redhat.com/show_bug.cgi?id=2333971
• https://www.cve.org/CVERecord?id=CVE-2024-53150
• https://nvd.nist.gov/vuln/detail/CVE-2024-53150
• https://lore.kernel.org/linux-cve-announce/2024122427-CVE-2024-53150-3a7d@gregkh/T
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog

---

kernel: mm: call the security_mmap_file() LSM hook in remap_file_pages()

CVE-2024-47745

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-47745
• https://bugzilla.redhat.com/show_bug.cgi?id=2320248
• https://www.cve.org/CVERecord?id=CVE-2024-47745
• https://nvd.nist.gov/vuln/detail/CVE-2024-47745
• https://lore.kernel.org/linux-cve-announce/2024102111-CVE-2024-47745-42e6@​gregkh/T

---

kernel: vsock: Keep the binding until socket destruction

CVE-2025-21756

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2025-21756
• https://bugzilla.redhat.com/show_bug.cgi?id=2348609
• https://www.cve.org/CVERecord?id=CVE-2025-21756
• https://nvd.nist.gov/vuln/detail/CVE-2025-21756
• https://lore.kernel.org/linux-cve-announce/2025022603-CVE-2025-21756-5e09@​gregkh/T

---

kernel: veth: Fix use after free in XDP_REDIRECT

CVE-2023-53107

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2023-53107
• https://bugzilla.redhat.com/show_bug.cgi?id=2363720
• https://www.cve.org/CVERecord?id=CVE-2023-53107
• https://nvd.nist.gov/vuln/detail/CVE-2023-53107
• https://lore.kernel.org/linux-cve-announce/2025050226-CVE-2023-53107-ef59@​gregkh/T

---

kernel: md: fix mddev uaf while iterating all_mddevs list

CVE-2025-22126

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2025-22126
• https://bugzilla.redhat.com/show_bug.cgi?id=2360236
• https://www.cve.org/CVERecord?id=CVE-2025-22126
• https://nvd.nist.gov/vuln/detail/CVE-2025-22126
• https://lore.kernel.org/linux-cve-announce/2025041629-CVE-2025-22126-50e3@​gregkh/T

---

kernel: bpf: fix OOB devmap writes when deleting elements

CVE-2024-56615

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-56615
• https://bugzilla.redhat.com/show_bug.cgi?id=2334493
• https://www.cve.org/CVERecord?id=CVE-2024-56615
• https://nvd.nist.gov/vuln/detail/CVE-2024-56615
• https://lore.kernel.org/linux-cve-announce/2024122708-CVE-2024-56615-5148@​gregkh/T

---

kernel: xsk: fix OOB map writes when deleting elements

CVE-2024-56614

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-56614
• https://bugzilla.redhat.com/show_bug.cgi?id=2334573
• https://www.cve.org/CVERecord?id=CVE-2024-56614
• https://nvd.nist.gov/vuln/detail/CVE-2024-56614
• https://lore.kernel.org/linux-cve-announce/2024122707-CVE-2024-56614-17c4@​gregkh/T

---

Kernel: use-after-free in nfsd4_ssc_setup_dul in fs/nfsd/nfs4proc.c

CVE-2023-1652

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2023-1652
• https://bugzilla.redhat.com/show_bug.cgi?id=2182031
• https://www.cve.org/CVERecord?id=CVE-2023-1652
• https://nvd.nist.gov/vuln/detail/CVE-2023-1652
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=e6cf91b7b47ff82b624bdfe2fdcde32bb52e71dd

---

kernel: Squashfs: fix handling and sanity checking of xattr_ids count

CVE-2023-52933

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2023-52933
• https://bugzilla.redhat.com/show_bug.cgi?id=2355476
• https://www.cve.org/CVERecord?id=CVE-2023-52933
• https://nvd.nist.gov/vuln/detail/CVE-2023-52933
• https://lore.kernel.org/linux-cve-announce/2025032720-CVE-2023-52933-f292@​gregkh/T

---

kernel: um: Fix out-of-bounds read in LDT setup

CVE-2022-49395

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2022-49395
• https://bugzilla.redhat.com/show_bug.cgi?id=2347899
• https://www.cve.org/CVERecord?id=CVE-2022-49395
• https://nvd.nist.gov/vuln/detail/CVE-2022-49395
• https://lore.kernel.org/linux-cve-announce/2025022650-CVE-2022-49395-7419@​gregkh/T

---

kernel: ext4: fix off-by-one error in do_split

CVE-2025-23150

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-23150
• https://bugzilla.redhat.com/show_bug.cgi?id=2363268
• https://www.cve.org/CVERecord?id=CVE-2025-23150
• https://nvd.nist.gov/vuln/detail/CVE-2025-23150
• https://lore.kernel.org/linux-cve-announce/2025050127-CVE-2025-23150-15b8@​gregkh/T

---

kernel: udmabuf: fix a buf size overflow issue during udmabuf creation

CVE-2025-37803

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-37803
• https://bugzilla.redhat.com/show_bug.cgi?id=2365013
• https://www.cve.org/CVERecord?id=CVE-2025-37803
• https://nvd.nist.gov/vuln/detail/CVE-2025-37803
• https://lore.kernel.org/linux-cve-announce/2025050814-CVE-2025-37803-0c5c@gregkh/T

---

net/http: Request smuggling due to acceptance of invalid chunked data in net/http

CVE-2025-22871

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2025-22871
• https://bugzilla.redhat.com/show_bug.cgi?id=2358493
• https://www.cve.org/CVERecord?id=CVE-2025-22871
• https://nvd.nist.gov/vuln/detail/CVE-2025-22871
• https://go.dev/cl/652998
• https://go.dev/issue/71988
• https://groups.google.com/g/golang-announce/c/Y2uBTVKjBQk
• https://pkg.go.dev/vuln/GO-2025-3563

---

kernel: mm/huge_memory: fix dereferencing invalid pmd migration entry

CVE-2025-37958

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-37958
• https://bugzilla.redhat.com/show_bug.cgi?id=2367572
• https://www.cve.org/CVERecord?id=CVE-2025-37958
• https://nvd.nist.gov/vuln/detail/CVE-2025-37958
• https://lore.kernel.org/linux-cve-announce/2025052003-CVE-2025-37958-02de@gregkh/T

---

kernel: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice

CVE-2025-38001

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-38001
• https://bugzilla.redhat.com/show_bug.cgi?id=2370776
• https://www.cve.org/CVERecord?id=CVE-2025-38001
• https://nvd.nist.gov/vuln/detail/CVE-2025-38001
• https://lore.kernel.org/linux-cve-announce/2025060650-CVE-2025-38001-f921@​gregkh/T

---

kernel: media: uvcvideo: Fix double free in error path

CVE-2024-57980

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2024-57980
• https://bugzilla.redhat.com/show_bug.cgi?id=2348599
• https://www.cve.org/CVERecord?id=CVE-2024-57980
• https://nvd.nist.gov/vuln/detail/CVE-2024-57980
• https://lore.kernel.org/linux-cve-announce/2025022634-CVE-2024-57980-4b5a@gregkh/T

---

kernel: wifi: iwlwifi: limit printed string from FW file

CVE-2025-21905

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-21905
• https://bugzilla.redhat.com/show_bug.cgi?id=2356613
• https://www.cve.org/CVERecord?id=CVE-2025-21905
• https://nvd.nist.gov/vuln/detail/CVE-2025-21905
• https://lore.kernel.org/linux-cve-announce/2025040129-CVE-2025-21905-348b@gregkh/T

---

kernel: ext4: avoid journaling sb update on error if journal is destroying

CVE-2025-22113

More information

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2025-22113
• https://bugzilla.redhat.com/show_bug.cgi?id=2360212
• https://www.cve.org/CVERecord?id=CVE-2025-22113
• https://nvd.nist.gov/vuln/detail/CVE-2025-22113
• https://lore.kernel.org/linux-cve-announce/2025041625-CVE-2025-22113-34cd@gregkh/T

---

kernel: igb: Fix string truncation warnings in igb_set_fw_version

CVE-2024-36010

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-36010
• https://bugzilla.redhat.com/show_bug.cgi?id=2282950
• https://www.cve.org/CVERecord?id=CVE-2024-36010
• https://nvd.nist.gov/vuln/detail/CVE-2024-36010
• https://lore.kernel.org/linux-cve-announce/2024052237-CVE-2024-36010-c98b@gregkh/T

---

kernel: wifi: ath11k: decrease MHI channel buffer length to 8KB

CVE-2024-35938

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-35938
• https://bugzilla.redhat.com/show_bug.cgi?id=2281819
• https://www.cve.org/CVERecord?id=CVE-2024-35938
• https://nvd.nist.gov/vuln/detail/CVE-2024-35938
• https://lore.kernel.org/linux-cve-announce/2024051918-CVE-2024-35938-0100@​gregkh/T

---

kernel: tcp: make sure init the accept_queue&#​39;s spinlocks once

CVE-2024-26614

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-26614
• https://bugzilla.redhat.com/show_bug.cgi?id=2269211
• https://www.cve.org/CVERecord?id=CVE-2024-26614
• https://nvd.nist.gov/vuln/detail/CVE-2024-26614
• https://lore.kernel.org/linux-cve-announce/[email protected]/T

---

kernel: virtio-blk: fix implicit overflow on virtio_max_dma_size

CVE-2023-52762

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2023-52762
• https://bugzilla.redhat.com/show_bug.cgi?id=2282623
• https://www.cve.org/CVERecord?id=CVE-2023-52762
• https://nvd.nist.gov/vuln/detail/CVE-2023-52762
• https://lore.kernel.org/linux-cve-announce/2024052147-CVE-2023-52762-fe90@​gregkh/T

---

kernel: asix: fix uninit-value in asix_mdio_read()

CVE-2021-47101

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2021-47101
• https://bugzilla.redhat.com/show_bug.cgi?id=2267916
• https://www.cve.org/CVERecord?id=CVE-2021-47101
• https://nvd.nist.gov/vuln/detail/CVE-2021-47101
• https://lore.kernel.org/linux-cve-announce/2024030415-CVE-2021-47101-f3fa@gregkh/T

---

kernel: netfilter: nf_tables: reject new basechain after table flag update

CVE-2024-35900

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-35900
• https://bugzilla.redhat.com/show_bug.cgi?id=2281664
• https://www.cve.org/CVERecord?id=CVE-2024-35900
• https://nvd.nist.gov/vuln/detail/CVE-2024-35900
• https://lore.kernel.org/linux-cve-announce/2024051952-CVE-2024-35900-c2c9@​gregkh/T

---

kernel: irqchip/gic-v4: Don't allow a VMOVP on a dying VPE

CVE-2024-50192

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-50192
• https://bugzilla.redhat.com/show_bug.cgi?id=2324612
• https://www.cve.org/CVERecord?id=CVE-2024-50192
• https://nvd.nist.gov/vuln/detail/CVE-2024-50192
• https://git.kernel.org/pub/scm/linux/security/vulns.git/tree/cve/published/2024/.CVE-2024-50192mbox

---

kernel: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action()

CVE-2024-36902

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-36902
• https://bugzilla.redhat.com/show_bug.cgi?id=2284545
• https://www.cve.org/CVERecord?id=CVE-2024-36902
• https://nvd.nist.gov/vuln/detail/CVE-2024-36902

---

kernel: wifi: mac80211: fix race condition on enabling fast-xmit

CVE-2024-26779

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-26779
• https://bugzilla.redhat.com/show_bug.cgi?id=2273223
• https://www.cve.org/CVERecord?id=CVE-2024-26779
• https://nvd.nist.gov/vuln/detail/CVE-2024-26779
• https://lore.kernel.org/linux-cve-announce/2024040310-CVE-2024-26779-8030@​gregkh/T

---

kernel: bonding: stop the device in bond_setup_by_slave()

CVE-2023-52784

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2023-52784
• https://bugzilla.redhat.com/show_bug.cgi?id=2282772
• https://www.cve.org/CVERecord?id=CVE-2023-52784
• https://nvd.nist.gov/vuln/detail/CVE-2023-52784
• https://lore.kernel.org/linux-cve-announce/2024052154-CVE-2023-52784-80ad@gregkh/T

---

kernel: nfs: Handle error of rpc_proc_register() in nfs_net_init().

CVE-2024-36939

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-36939
• https://bugzilla.redhat.com/show_bug.cgi?id=2284628
• https://www.cve.org/CVERecord?id=CVE-2024-36939
• https://nvd.nist.gov/vuln/detail/CVE-2024-36939
• https://lore.kernel.org/linux-cve-announce/2024053043-CVE-2024-36939-8453@​gregkh/T

---

kernel: wifi: brcm80211: handle pmk_op allocation failure

CVE-2024-27048

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-27048
• https://bugzilla.redhat.com/show_bug.cgi?id=2278431
• https://www.cve.org/CVERecord?id=CVE-2024-27048
• https://nvd.nist.gov/vuln/detail/CVE-2024-27048
• https://lore.kernel.org/linux-cve-announce/2024050114-CVE-2024-27048-016f@gregkh/T

---

kernel: wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values

CVE-2024-42114

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-42114
• https://bugzilla.redhat.com/show_bug.cgi?id=2301477
• https://www.cve.org/CVERecord?id=CVE-2024-42114
• https://nvd.nist.gov/vuln/detail/CVE-2024-42114
• https://lore.kernel.org/linux-cve-announce/2024073022-CVE-2024-42114-4585@​gregkh/T

---

kernel: dev/parport: fix the array out-of-bounds risk

CVE-2024-42301

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-42301
• https://bugzilla.redhat.com/show_bug.cgi?id=2305446
• https://www.cve.org/CVERecord?id=CVE-2024-42301
• https://nvd.nist.gov/vuln/detail/CVE-2024-42301
• https://lore.kernel.org/linux-cve-announce/2024081749-CVE-2024-42301-4026@​gregkh/T

---

kernel: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers

CVE-2024-42070

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-42070
• https://bugzilla.redhat.com/show_bug.cgi?id=2300508
• https://www.cve.org/CVERecord?id=CVE-2024-42070
• https://nvd.nist.gov/vuln/detail/CVE-2024-42070
• https://lore.kernel.org/linux-cve-announce/2024072952-CVE-2024-42070-b271@​gregkh/T

---

kernel: dma-direct: Leak pages on dma_set_decrypted() failure

CVE-2024-35939

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-35939
• https://bugzilla.redhat.com/show_bug.cgi?id=2281817
• https://www.cve.org/CVERecord?id=CVE-2024-35939
• https://nvd.nist.gov/vuln/detail/CVE-2024-35939
• https://lore.kernel.org/linux-cve-announce/2024051919-CVE-2024-35939-f877@​gregkh/T

---

kernel: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue

CVE-2024-36004

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-36004
• https://bugzilla.redhat.com/show_bug.cgi?id=2281953
• https://www.cve.org/CVERecord?id=CVE-2024-36004
• https://nvd.nist.gov/vuln/detail/CVE-2024-36004
• https://lore.kernel.org/linux-cve-announce/2024052024-CVE-2024-36004-fb45@​gregkh/T

---

kernel: RDMA/qedr: Fix qedr_create_user_qp error flow

CVE-2024-26743

More information

Severity

Moderate

References

• https://access.redhat.com/security/cve/CVE-2024-26743
• https://bugzilla.redhat.com/show_bug.cgi?id=2273262
• https://www.cve.org/CVERecord?id=CVE-2024-26743
• [https://nvd.nist.gov/vuln/detail/CVE-2024-26743](https://nvd.

[rhacs-bot]

Auto-approved by automation.