kernel: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats

In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats Cited commit added a dedicated mutex instead of RTNL to protect the multicast route list, so that it will not change while the driver periodically traverse...

RLSA-2026:4759 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: HID: intel-thc-hid: intel-thc: Fix incorrect pointer arithmetic in I2C regs save CVE-2025-39818 kernel: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats...

RockyLinux 9 : kernel (RLSA-2026:4759)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:4759 advisory. kernel: HID: intel-thc-hid: intel-thc: Fix incorrect pointer arithmetic in I2C regs save CVE-2025-39818 kernel: mlxsw: spectrummr: Fix use-after-free whe...

AlmaLinux 10 : kernel (ALSA-2026:3275)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:3275 advisory. kernel: Kernel: Double free vulnerability in exFAT filesystem can lead to denial of service CVE-2025-38206 kernel: drm/sched: Fix potential double free i...

MiracleLinux 8 : kernel-4.18.0-553.107.1.el8_10 (AXSA:2026-222:15)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-222:15 advisory. kernel: pagepool: Fix use-after-free in pagepoolrecycleinring CVE-2025-38129 kernel: Linux kernel:A use-after-free in bridge multicast in...

AlmaLinux 8 : kernel-rt (ALSA-2026:3110)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:3110 advisory. kernel: pagepool: Fix use-after-free in pagepoolrecycleinring CVE-2025-38129 kernel: Linux kernel:A use-after-free in bridge multicast in...

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

CVE-2025-68800

In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats Cited commit added a dedicated mutex instead of RTNL to protect the multicast route list, so that it will not change while the driver periodically traverse...

UBUNTU-CVE-2025-68800

In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats Cited commit added a dedicated mutex instead of RTNL to protect the multicast route list, so that it will not change while the driver periodically traverse...

CVE-2025-68800

The CVE-2025-68800 issue affects the Linux kernel mlxsw spectrum_mr component. It arises from a use-after-free in multicast route stats updates when the driver traverses the multicast route list. A dedicated mutex was added (replacing the previous RTNL-based protection) to guard the list during u...

CVE-2025-68800

In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats Cited commit added a dedicated mutex instead of RTNL to protect the multicast route list, so that it will not change while the driver periodically traverse...

Linux Distros Unpatched Vulnerability : CVE-2025-68800

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats Cited commit added...

PT-2026-2532

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.18.0-rc1-custom-g1a3d6d7cd014 Description The Linux kernel contained a use-after-free issue within the mlxsw spectrum mr module. A missing mutex acquisition during multicast route deletion could lead to this...