PT-2025-18541

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc3+ Description A vulnerability in the Linux kernel has been resolved, specifically in the libata-transport module. The issue arises from the lack of error handling in the ata tlink add function, where the...

Amazon Linux AMI : kernel (ALAS-2025-1975)

The version of kernel installed on the remote host is prior to 4.14.330-176.540. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1975 advisory. A use-after-free flaw was found in vcsread in drivers/tty/vt/vcscreen.c in vcscreen in the Linux Kernel. In this fl...

Amazon Linux 2 : kernel (ALASKERNEL-5.4-2025-100)

The version of kernel installed on the remote host is prior to 5.4.292-208.414. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-100 advisory. In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap...

AZL-61685 CVE-2025-22062 affecting package kernel for versions less than 6.6.92.2-1

In the Linux kernel, the following vulnerability has been resolved: sctp: add mutual exclusion in procsctpdoudpport We must serialize calls to sctpudpsockstop and sctpudpsockstart or risk a crash as syzbot reported: Oops: general protection fault, probably for non-canonical address...

SUSE SLES15 Security Update : kernel (Live Patch 49 for SLE 15 SP3) (SUSE-SU-2025:1225-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1225-1 advisory. This update for the Linux Kernel 5.3.18-15030059179 fixes several issues. The following security issues were fixed: - CVE-2022-49014: net: tun:...

Unbreakable Enterprise kernel security update

5.4.17-2136.342.5 - ima: Fix use-after-free on a dentry's dname.name Stefan Berger Orabug: 36835558 CVE-2024-39494 5.4.17-2136.342.4 - sched: schcake: add bounds checks to host bulk flow fairness counts Toke Hoiland-Jorgensen - udf: Fix use of checkaddoverflow with mixed type arguments Ben...

CVE-2025-21848 affecting package kernel for versions less than 6.6.82.1-1

CVE-2025-21848 affecting package kernel for versions less than 6.6.82.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-26686 affecting package kernel for versions less than 6.6.82.1-1

CVE-2024-26686 affecting package kernel for versions less than 6.6.82.1-1. A patched version of the package is available...

CVE-2025-22013 KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There are several problems with the way hyp code lazily saves the host's FPSIMD/SVE state, including: Host SVE being discarded unexpectedly due to inconsistent...

AZL-60270 CVE-2025-21969 affecting package kernel for versions less than 6.6.85.1-2

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix slab-use-after-free Read in l2capsendcmd After the hci sync command releases l2capconn, the hci receive data work queue references the released l2capconn when sending to the upper layer. Add hci dev lock to...

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2025-097 (ALASKERNEL-5.4-2025-097)

The version of kernel installed on the remote host is prior to 5.4.291-206.400. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-097 advisory. In the Linux kernel, the following vulnerability has been resolved: Squashfs: check the inode number is no...

CVE-2024-26687 affecting package kernel for versions less than 5.15.176.3-3

CVE-2024-26687 affecting package kernel for versions less than 5.15.176.3-3. A patched version of the package is available...

AZL-59405 CVE-2025-21887 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: ovl: fix UAF in ovldentryupdatereval by moving dput in ovllinkup The issue was caused by dputupper being called before ovldentryupdatereval, while upper-dflags was still accessed in ovldentryremote. Move dputupper after its last...

AZL-69494 CVE-2025-21881 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: uprobes: Reject the shared zeropage in uprobewriteopcode We triggered the following crash in syzkaller tests: BUG: Bad page state in process syz.7.38 pfn:1eff3 page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0...

Important: Red Hat Security Advisory: kpatch-patch-5_14_0-427_13_1, kpatch-patch-5_14_0-427_31_1, kpatch-patch-5_14_0-427_44_1, and kpatch-patch-5_14_0-427_55_1 security update

An update for kpatch-patch-5140-427131, kpatch-patch-5140-427311, kpatch-patch-5140-427441, and kpatch-patch-5140-427551 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

CentOS 9 : kernel-5.14.0-572.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-572.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array The...

CVE-2024-47736 affecting package kernel for versions less than 6.6.76.1-1

CVE-2024-47736 affecting package kernel for versions less than 6.6.76.1-1. A patched version of the package is available...

CVE-2024-46859 affecting package kernel for versions less than 5.15.176.3-1

CVE-2024-46859 affecting package kernel for versions less than 5.15.176.3-1. A patched version of the package is available...

CVE-2024-53135 affecting package kernel for versions less than 5.15.176.3-1

CVE-2024-53135 affecting package kernel for versions less than 5.15.176.3-1. A patched version of the package is available...

PT-2025-18419

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.13.0-rc2+ Description A slab-use-after-free bug has been identified in the Linux kernel, specifically in the ext4 file system. The issue arises when the kernel fails to ignore extended attributes past the 'end'...