|
|
Subscribe / Log in / New account

Red Hat alert RHSA-2025:11810-01 (kernel)

An update for kernel is now available for Red Hat Enterprise Linux 9.4
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.

The kernel packages contain the Linux kernel, the core of any Linux operating
system.

Security Fix(es):

* kernel: drm/amd/display: Implement bounds check for stream encoder creation
in DCN301 (CVE-2024-26660)

* kernel: tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc
(CVE-2021-47185)

* kernel: nbd: null check for nla_nest_start (CVE-2024-27025)

* kernel: perf/core: Bail out early if the request AUX area is out of bound
(CVE-2023-52835)

* kernel: firmware: cs_dsp: Fix overflow checking of wmfw header
(CVE-2024-41039)

* kernel: powerpc/pseries: Whitelist dtl slub object for copying to userspace
(CVE-2024-41065)

* kernel: usb: xhci: prevent potential failure in handle_tx_event() for
Transfer events without TRB (CVE-2024-42226)

* kernel: blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race
(CVE-2024-50082)

* kernel: parport: Proper fix for array out-of-bounds access (CVE-2024-50074)

* kernel: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in
ovl_link_up (CVE-2025-21887)

* kernel: wifi: iwlwifi: limit printed string from FW file (CVE-2025-21905)

* kernel: ext4: avoid journaling sb update on error if journal is destroying
(CVE-2025-22113)

* kernel: ibmvnic: Use kernel helpers for hex dumps (CVE-2025-22104)

* kernel: udmabuf: fix a buf size overflow issue during udmabuf creation
(CVE-2025-37803)

* kernel: sunrpc: handle SVC_GARBAGE during svc auth processing as auth error
(CVE-2025-38089)

* kernel: net/sched: fix use-after-free in taprio_dev_notifier
(CVE-2025-38087)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

This content is licensed under the Creative Commons Attribution 4.0
International License (https://creativecommons.org/licenses/by/4.0/). If you
distribute this content, or a modified version of it, you must provide
attribution to Red Hat Inc. and provide a link to the original.


Original: https://access.redhat.com/security/data/csaf/v2/advisories/2025/rhsa-2025_11810.json
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds