Oracle Linux 10 : ELSA-2025-20095-0: / kernel (ELSA-2025-200950)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-200950 advisory. - selftests: tls: add tests for zero-length records CKI Backport Bot RHEL-114328 CVE-2025-39682 - tls: fix handling of zero-length records on the...

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net: usb: smsc75xx: Limit packet length to skb-len CVE-2023-53125 kernel: usb: dwc3: gadget: check that event count does not exceed event buffer length CVE-2025-37810 kernel: dochangetype...

s390/sclp: Fix SCCB present check

...

CVE-2025-39694 s390/sclp: Fix SCCB present check

In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Fix SCCB present check Tracing code called by the SCLP interrupt handler contains early exits if the SCCB address associated with an interrupt is NULL. This check is performed after physical to virtual address...

CVE-2023-52934

In the Linux kernel, the following vulnerability has been resolved: mm/MADVCOLLAPSE: catch !none !huge !bad pmd lookups In commit 34488399fa08 "mm/madvise: add file and shmem support to MADVCOLLAPSE" we make the following change to findpmdorthpornone: - if !pmdpresentpmde - return SCANPMDNULL; + ...

SUSE CVE-2024-46679

In the Linux kernel, the following vulnerability has been resolved: ethtool: check device is present when getting link settings A sysfs reader can race with a device reset or removal, attempting to read device state when the device is not actually present. eg: exception RIP: qedgetcurrentlink+17 ...