Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2025-1521)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ALSA-2025:7423 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: iouring/sqpoll: zero sqd-thread on tctx errors CVE-2025-21633 kernel: soc: qcom: socinfo: Avoid out of bounds read of serial number CVE-2024-58007 kernel: tpm: Change to kvalloc in...

Amazon Linux 2 : kernel (ALASKERNEL-5.10-2025-091)

The version of kernel installed on the remote host is prior to 5.10.236-228.935. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2025-091 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: do not clean up repair bio if...

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: iouring/sqpoll: zero sqd-thread on tctx errors CVE-2025-21633 kernel: soc: qcom: socinfo: Avoid out of bounds read of serial number CVE-2024-58007 kernel: tpm: Change to kvalloc in...

CVE-2025-24155

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.3, macOS Ventura 13.7.6, macOS Sonoma 14.7.6. An app may be able to disclose kernel memory...

Unbreakable Enterprise kernel security update

5.15.0-308.179.6.2 - x86/bhi: Do not set BHIDISS in 32-bit mode Pawan Gupta Orabug: 37920681 - x86/bpf: Add IBHF call at end of classic BPF Daniel Sneddon Orabug: 37920681 - x86/bpf: Call branch history clearing sequence on exit Daniel Sneddon Orabug: 37920681 - selftest/x86/bugs: Add selftests f...

Unbreakable Enterprise kernel security update

6.12.0-1.23.3.1 - x86/bhi: Do not set BHIDISS in 32-bit mode Pawan Gupta Orabug: 37920680 - x86/bpf: Add IBHF call at end of classic BPF Daniel Sneddon Orabug: 37920680 - x86/bpf: Call branch history clearing sequence on exit Daniel Sneddon Orabug: 37920680 - selftest/x86/bugs: Add selftests for...

CVE-2025-37889

In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Consistently treat platformmax as control value This reverts commit 9bdd10d57a88 "ASoC: ops: Shift tested values in sndsocputvolsw by +min", and makes some additional related updates. There are two ways the platformmax...

Unbreakable Enterprise kernel security update

5.15.0-308.179.6 - net: bridge: IP defragmentation failing for jumboframes Venkat Venkatsubra Orabug: 37847171 - uek-rpm: remove .el9 from shim version Samasth Norway Ananda Orabug: 37834731 - RDS: avoid using offlined CPU during reconnect Arumugam Kolappan Orabug: 37783021 - net/mlx5e: Rely on...

Unbreakable Enterprise kernel security update

5.4.17-2136.343.5.1 - nvme: fix deadlock between reset and scan Bitao Hu Orabug: 37920457 5.4.17-2136.343.5 - sctp: sysctl: authenable: avoid using current-nsproxy Matthieu Baerts NGI0 Orabug: 37846673 - sctp: sysctl: cookiehmacalg: avoid using current-nsproxy Matthieu Baerts NGI0 Orabug: 3784666...

CVE-2023-53145 Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btsdio: fix use after free bug in btsdioremove due to race condition In btsdioprobe, the data-work is bound with btsdiowork. It will be started in btsdiosendframe. If the btsdioremove runs with a unfinished work, there...

OESA-2025-1466 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: jfs: add check read-only before truncation in jfstruncatenolock Added a check for "read-only" mode in the jfstruncatenolock function to avoid errors related to...

CVE-2025-37852

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: handle amdgpucgscreatedevice errors in amdpowerplaycreate Add error handling to propagate amdgpucgscreatedevice failures to the caller. When amdgpucgscreatedevice fails, release hwmgr and return -ENOMEM to prevent nul...

CVE-2025-37878 perf/core: Fix WARN_ON(!ctx) in __free_event() for partial init

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix WARNON!ctx in freeevent for partial init Move the getctxchildctx call and the childevent-ctx assignment to occur immediately after the child event is allocated. Ensure that childevent-ctx is non-NULL before any...

CVE-2025-37867 RDMA/core: Silence oversized kvmalloc() warning

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Silence oversized kvmalloc warning syzkaller triggered an oversized kvmalloc warning. Silence it by adding GFPNOWARN. syzkaller log: WARNING: CPU: 7 PID: 518 at mm/util.c:665 kvmallocnodenoprof+0x175/0x180 CPU: 7 UID: ...

CVE-2025-37864 net: dsa: clean up FDB, MDB, VLAN entries on unbind

In the Linux kernel, the following vulnerability has been resolved: net: dsa: clean up FDB, MDB, VLAN entries on unbind As explained in many places such as commit b117e1e8a86d "net: dsa: delete dsalegacyfdbadd and dsalegacyfdbdel", DSA is written given the assumption that higher layers have...

CVE-2025-37859

The CVE-2025-37859 issue affects the Linux kernel page_pool subsystem. The root cause was a bug where page_pool_release_retry() could wake up the kworker repeatedly when inflight became negative, causing an infinite reschedule loop and flooding logs. The published fix mitigates this by not resche...

CVE-2025-37855 drm/amd/display: Guard Possible Null Pointer Dereference

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Guard Possible Null Pointer Dereference WHY In some situations, dc-respool may be null. HOW Check if pointer is null before dereference...

CVE-2025-37841 pm: cpupower: bench: Prevent NULL dereference on malloc failure

In the Linux kernel, the following vulnerability has been resolved: pm: cpupower: bench: Prevent NULL dereference on malloc failure If malloc returns NULL due to low memory, 'config' pointer can be NULL. Add a check to prevent NULL dereference...

CVE-2025-37837

CVE-2025-37837 addresses warnings in the Linux kernel: iommu/tegra241-cmdqv dmam_free_coherent() warnings during SMMU rollback and a memory-usage warning (128 pages) from free_contig_range, traced to devres-managed LVCMDQ resources freed by devm_action_release. The fix removes the unwind path in ...