Oracle alert ELSA-2025-17161 (kernel)
| From: | Errata Announcements for Oracle Linux via El-errata <el-errata@oss.oracle.com> | |
| To: | el-errata@oss.oracle.com | |
| Subject: | [El-errata] ELSA-2025-17161 Moderate: Oracle Linux 7 kernel security update | |
| Date: | Thu, 23 Oct 2025 06:01:42 -0700 | |
| Message-ID: | <mailman.435.1761224512.31.el-errata@oss.oracle.com> |
Oracle Linux Security Advisory ELSA-2025-17161 http://linux.oracle.com/errata/ELSA-2025-17161.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-3.10.0-1160.119.1.0.13.el7.x86_64.rpm kernel-3.10.0-1160.119.1.0.13.el7.x86_64.rpm kernel-abi-whitelists-3.10.0-1160.119.1.0.13.el7.noarch.rpm kernel-debug-3.10.0-1160.119.1.0.13.el7.x86_64.rpm kernel-debug-devel-3.10.0-1160.119.1.0.13.el7.x86_64.rpm kernel-devel-3.10.0-1160.119.1.0.13.el7.x86_64.rpm kernel-doc-3.10.0-1160.119.1.0.13.el7.noarch.rpm kernel-headers-3.10.0-1160.119.1.0.13.el7.x86_64.rpm kernel-tools-3.10.0-1160.119.1.0.13.el7.x86_64.rpm kernel-tools-libs-3.10.0-1160.119.1.0.13.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-1160.119.1.0.13.el7.x86_64.rpm perf-3.10.0-1160.119.1.0.13.el7.x86_64.rpm python-perf-3.10.0-1160.119.1.0.13.el7.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates/kernel-3.10.0-116... Related CVEs: CVE-2022-48701 CVE-2022-50211 CVE-2022-50229 CVE-2023-53125 CVE-2025-38200 CVE-2025-38477 Description of changes: [3.10.0-1160.119.1.0.13] - ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() {CVE-2022-48701} [Orabug: 38493400] - md-raid10: fix KASAN warning {CVE-2022-50211} [Orabug: 38493400] - ALSA: bcd2000: Fix a UAF bug on the error path of probing {CVE-2022-50229} [Orabug: 38493400] - net: usb: smsc75xx: Limit packet length to skb->len {CVE-2023-53125} [Orabug: 38493400] - i40e: fix MMIO write access to an invalid page in i40e_clear_hw {CVE-2025-38200} [Orabug: 38493400] - net/sched: sch_qfq: Fix race condition on qfq_aggregate {CVE-2025-38477} [Orabug: 38493400] [3.10.0-1160.119.1.0.12] - scsi: lpfc: Use memcpy() for BIOS version (CVE-2025-38332) [Orabug: 38414589] - posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() (CVE-2025-38352) [Orabug: 38414589] [3.10.0-1160.119.1.0.11] - kernel: media: uvcvideo: Fix double free in error path (CVE-2024-57980) - kernel: HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove() (CVE-2025-21928) - kernel: ext4: fix off-by-one error in do_split (CVE-2025-23150) - kernel: misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram() (CVE-2022-49788) - kernel: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (CVE-2025-38000) - kernel: ext4: avoid resizing to a partial cluster size (CVE-2022-50020) - kernel: drivers:md:fix a potential use-after-free bug (CVE-2022-50022) - kernel: sch_hfsc: make hfsc_qlen_notify() idempotent (CVE-2025-38177) - kernel: net/sched: Always pass notifications when child class becomes empty (CVE-2025-38350) - crypto: algif_hash - fix double free in hash_accept (CVE-2025-38079) [3.10.0-1160.119.1.0.10] - net: atlantic: fix aq_vec index out of range error (Chia-Lin Kao) {CVE-2022-50066} [Orabug: 38201271] - net: atm: fix use after free in lec_send() (Dan Carpenter) {CVE-2025-22004} [Orabug: 38201271] [3.10.0-1160.119.1.0.9] - netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park) {CVE-2024-53141} [Orabug: 37964173] - Update OL SB certificates - Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985797] [3.10.0-1160.119.1.0.8] - ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai) {CVE-2024-53150} [Orabug: 37830084] [3.10.0-1160.119.1.0.7] - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Benoît Sevens) {CVE-2024-53197} [Orabug: 37686305] - can: bcm: Fix UAF in bcm_proc_show() (YueHaibing) {CVE-2023-52922} [Orabug: 37686305] - HID: core: zero-initialize the report buffer (Benoît Sevens) {CVE-2024-50302} [Orabug: 37686305] [3.10.0-1160.119.1.0.6] - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens) {CVE-2024-53104} [Orabug: 37584712] _______________________________________________ El-errata mailing list El-errata@oss.oracle.com https://oss.oracle.com/mailman/listinfo/el-errata