rhsa-2025:15660
Vulnerability from csaf_redhat
Published
2025-09-11 01:52
Modified
2025-09-15 13:36
Summary
Red Hat Security Advisory: kernel security update
Notes
Topic
An update for kernel is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: ext4: use-after-free in ext4_xattr_set_entry() (CVE-2023-2513)
* kernel: ipv6: mcast: extend RCU protection in igmp6_send() (CVE-2025-21759)
* kernel: netfilter: flowtable: fix stuck flows on cleanup due to pending work (CVE-2022-50000)
* kernel: mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (CVE-2025-38085)
* kernel: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds (CVE-2025-38159)
* kernel: posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() (CVE-2025-38352)
* kernel: tipc: Fix use-after-free in tipc_conn_close() (CVE-2025-38464)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: ext4: use-after-free in ext4_xattr_set_entry() (CVE-2023-2513)\n\n* kernel: ipv6: mcast: extend RCU protection in igmp6_send() (CVE-2025-21759)\n\n* kernel: netfilter: flowtable: fix stuck flows on cleanup due to pending work (CVE-2022-50000)\n\n* kernel: mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (CVE-2025-38085)\n\n* kernel: wifi: rtw88: fix the \u0027para\u0027 buffer size to avoid reading out of bounds (CVE-2025-38159)\n\n* kernel: posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() (CVE-2025-38352)\n\n* kernel: tipc: Fix use-after-free in tipc_conn_close() (CVE-2025-38464)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:15660",
"url": "https://access.redhat.com/errata/RHSA-2025:15660"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2193097",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2193097"
},
{
"category": "external",
"summary": "2348596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348596"
},
{
"category": "external",
"summary": "2373543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2373543"
},
{
"category": "external",
"summary": "2375304",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2375304"
},
{
"category": "external",
"summary": "2376064",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2376064"
},
{
"category": "external",
"summary": "2382581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2382581"
},
{
"category": "external",
"summary": "2383509",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2383509"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15660.json"
}
],
"title": "Red Hat Security Advisory: kernel security update",
"tracking": {
"current_release_date": "2025-09-15T13:36:47+00:00",
"generator": {
"date": "2025-09-15T13:36:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2025:15660",
"initial_release_date": "2025-09-11T01:52:13+00:00",
"revision_history": [
{
"date": "2025-09-11T01:52:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-11T01:52:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-15T13:36:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:8.4::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "perf-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "perf-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool-debuginfo@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product": {
"name": "python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_id": "python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@4.18.0-305.172.1.el8_4?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-0:4.18.0-305.172.1.el8_4.src",
"product": {
"name": "kernel-0:4.18.0-305.172.1.el8_4.src",
"product_id": "kernel-0:4.18.0-305.172.1.el8_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.18.0-305.172.1.el8_4?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"product": {
"name": "kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"product_id": "kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-stablelists@4.18.0-305.172.1.el8_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"product": {
"name": "kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"product_id": "kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@4.18.0-305.172.1.el8_4?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-305.172.1.el8_4.src as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src"
},
"product_reference": "kernel-0:4.18.0-305.172.1.el8_4.src",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch"
},
"product_reference": "kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.18.0-305.172.1.el8_4.noarch as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
},
"product_reference": "kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "perf-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-305.172.1.el8_4.src as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src"
},
"product_reference": "kernel-0:4.18.0-305.172.1.el8_4.src",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch"
},
"product_reference": "kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.18.0-305.172.1.el8_4.noarch as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
},
"product_reference": "kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "perf-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
},
"product_reference": "python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-50000",
"cwe": {
"id": "CWE-820",
"name": "Missing Synchronization"
},
"discovery_date": "2025-06-18T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2373543"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: flowtable: fix stuck flows on cleanup due to pending work\n\nTo clear the flow table on flow table free, the following sequence\nnormally happens in order:\n\n 1) gc_step work is stopped to disable any further stats/del requests.\n 2) All flow table entries are set to teardown state.\n 3) Run gc_step which will queue HW del work for each flow table entry.\n 4) Waiting for the above del work to finish (flush).\n 5) Run gc_step again, deleting all entries from the flow table.\n 6) Flow table is freed.\n\nBut if a flow table entry already has pending HW stats or HW add work\nstep 3 will not queue HW del work (it will be skipped), step 4 will wait\nfor the pending add/stats to finish, and step 5 will queue HW del work\nwhich might execute after freeing of the flow table.\n\nTo fix the above, this patch flushes the pending work, then it sets the\nteardown flag to all flows in the flowtable and it forces a garbage\ncollector run to queue work to remove the flows from hardware, then it\nflushes this new pending work and (finally) it forces another garbage\ncollector run to remove the entry from the software flowtable.\n\nStack trace:\n[47773.882335] BUG: KASAN: use-after-free in down_read+0x99/0x460\n[47773.883634] Write of size 8 at addr ffff888103b45aa8 by task kworker/u20:6/543704\n[47773.885634] CPU: 3 PID: 543704 Comm: kworker/u20:6 Not tainted 5.12.0-rc7+ #2\n[47773.886745] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)\n[47773.888438] Workqueue: nf_ft_offload_del flow_offload_work_handler [nf_flow_table]\n[47773.889727] Call Trace:\n[47773.890214] dump_stack+0xbb/0x107\n[47773.890818] print_address_description.constprop.0+0x18/0x140\n[47773.892990] kasan_report.cold+0x7c/0xd8\n[47773.894459] kasan_check_range+0x145/0x1a0\n[47773.895174] down_read+0x99/0x460\n[47773.899706] nf_flow_offload_tuple+0x24f/0x3c0 [nf_flow_table]\n[47773.907137] flow_offload_work_handler+0x72d/0xbe0 [nf_flow_table]\n[47773.913372] process_one_work+0x8ac/0x14e0\n[47773.921325]\n[47773.921325] Allocated by task 592159:\n[47773.922031] kasan_save_stack+0x1b/0x40\n[47773.922730] __kasan_kmalloc+0x7a/0x90\n[47773.923411] tcf_ct_flow_table_get+0x3cb/0x1230 [act_ct]\n[47773.924363] tcf_ct_init+0x71c/0x1156 [act_ct]\n[47773.925207] tcf_action_init_1+0x45b/0x700\n[47773.925987] tcf_action_init+0x453/0x6b0\n[47773.926692] tcf_exts_validate+0x3d0/0x600\n[47773.927419] fl_change+0x757/0x4a51 [cls_flower]\n[47773.928227] tc_new_tfilter+0x89a/0x2070\n[47773.936652]\n[47773.936652] Freed by task 543704:\n[47773.937303] kasan_save_stack+0x1b/0x40\n[47773.938039] kasan_set_track+0x1c/0x30\n[47773.938731] kasan_set_free_info+0x20/0x30\n[47773.939467] __kasan_slab_free+0xe7/0x120\n[47773.940194] slab_free_freelist_hook+0x86/0x190\n[47773.941038] kfree+0xce/0x3a0\n[47773.941644] tcf_ct_flow_table_cleanup_work\n\nOriginal patch description and stack trace by Paul Blakey.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: netfilter: flowtable: fix stuck flows on cleanup due to pending work",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"known_not_affected": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-50000"
},
{
"category": "external",
"summary": "RHBZ#2373543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2373543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-50000",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50000"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-50000",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-50000"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025061828-CVE-2022-50000-5753@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025061828-CVE-2022-50000-5753@gregkh/T"
}
],
"release_date": "2025-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T01:52:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15660"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: netfilter: flowtable: fix stuck flows on cleanup due to pending work"
},
{
"cve": "CVE-2023-2513",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2023-05-02T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2193097"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in the Linux kernel\u0027s ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw allows a privileged local user to cause a system crash or other undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: ext4: use-after-free in ext4_xattr_set_entry()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw has been rated as having Moderate impact because of the preconditions needed to trigger the issue. The vulnerability can be exploited by a regular user, but the filesystem should be mounted with `debug_want_extra_isize`=128 and the user must have write access to the filesystem. It\u0027s also important to emphasize that `debug_want_extra_isize` is a debug mount option and should never be used in production.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"known_not_affected": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-2513"
},
{
"category": "external",
"summary": "RHBZ#2193097",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2193097"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-2513",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2513"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-2513",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2513"
}
],
"release_date": "2022-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T01:52:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15660"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: ext4: use-after-free in ext4_xattr_set_entry()"
},
{
"cve": "CVE-2025-21759",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-02-27T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348596"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: mcast: extend RCU protection in igmp6_send()\n\nigmp6_send() can be called without RTNL or RCU being held.\n\nExtend RCU protection so that we can safely fetch the net pointer\nand avoid a potential UAF.\n\nNote that we no longer can use sock_alloc_send_skb() because\nipv6.igmp_sk uses GFP_KERNEL allocations which can sleep.\n\nInstead use alloc_skb() and charge the net-\u003eipv6.igmp_sk\nsocket under RCU protection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: ipv6: mcast: extend RCU protection in igmp6_send()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The patch extends RCU protection in igmp6_send() to prevent a potential use-after-free (UAF) when accessing net-\u003eipv6.igmp_sk. This function could be invoked without holding RTNL or RCU, making concurrent access unsafe in network namespace contexts. The fix replaces sock_alloc_send_skb() with alloc_skb() and sets the owner under RCU to ensure safe allocation. The bug actual only if IPV6 being used and IGMPv6 (Internet Group Management Protocol for IPv6) being used too. The security impact is limited, because no known way to trigger the bug (see in the patch description: \"Extend RCU protection so that we can safely fetch the net pointer and avoid a potential UAF\").",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"known_not_affected": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-21759"
},
{
"category": "external",
"summary": "RHBZ#2348596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348596"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-21759",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21759"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-21759",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-21759"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025022604-CVE-2025-21759-ad7c@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025022604-CVE-2025-21759-ad7c@gregkh/T"
}
],
"release_date": "2025-02-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T01:52:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15660"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: ipv6: mcast: extend RCU protection in igmp6_send()"
},
{
"cve": "CVE-2025-38085",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2025-06-28T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2375304"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race\n\nhuge_pmd_unshare() drops a reference on a page table that may have\npreviously been shared across processes, potentially turning it into a\nnormal page table used in another process in which unrelated VMAs can\nafterwards be installed.\n\nIf this happens in the middle of a concurrent gup_fast(), gup_fast() could\nend up walking the page tables of another process. While I don\u0027t see any\nway in which that immediately leads to kernel memory corruption, it is\nreally weird and unexpected.\n\nFix it with an explicit broadcast IPI through tlb_remove_table_sync_one(),\njust like we do in khugepaged when removing page tables for a THP\ncollapse.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"known_not_affected": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-38085"
},
{
"category": "external",
"summary": "RHBZ#2375304",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2375304"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-38085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38085"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-38085",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38085"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025062836-CVE-2025-38085-8075@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025062836-CVE-2025-38085-8075@gregkh/T"
}
],
"release_date": "2025-06-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T01:52:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15660"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race"
},
{
"cve": "CVE-2025-38159",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2025-07-03T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2376064"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: fix the \u0027para\u0027 buffer size to avoid reading out of bounds\n\nSet the size to 6 instead of 2, since \u0027para\u0027 array is passed to\n\u0027rtw_fw_bt_wifi_control(rtwdev, para[0], \u0026para[1])\u0027, which reads\n5 bytes:\n\nvoid rtw_fw_bt_wifi_control(struct rtw_dev *rtwdev, u8 op_code, u8 *data)\n{\n ...\n SET_BT_WIFI_CONTROL_DATA1(h2c_pkt, *data);\n SET_BT_WIFI_CONTROL_DATA2(h2c_pkt, *(data + 1));\n ...\n SET_BT_WIFI_CONTROL_DATA5(h2c_pkt, *(data + 4));\n\nDetected using the static analysis tool - Svace.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: wifi: rtw88: fix the \u0027para\u0027 buffer size to avoid reading out of bounds",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The bug in the rtw88 driver causes an out-of-bounds read due to incorrect buffer size (para[2] instead of the required para[6]). Since the buffer is passed to rtw_fw_bt_wifi_control(), which accesses up to 5 additional bytes, this can lead to memory disclosure or a kernel crash. This issue can be triggered by local users with the ability to manipulate Bluetooth/Wi-Fi coexistence settings.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"known_not_affected": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-38159"
},
{
"category": "external",
"summary": "RHBZ#2376064",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2376064"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-38159",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38159"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-38159",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38159"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025070339-CVE-2025-38159-0c95@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025070339-CVE-2025-38159-0c95@gregkh/T"
}
],
"release_date": "2025-07-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T01:52:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15660"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent module rtw88 from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: wifi: rtw88: fix the \u0027para\u0027 buffer size to avoid reading out of bounds"
},
{
"cve": "CVE-2025-38352",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2025-07-22T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2382581"
}
],
"notes": [
{
"category": "description",
"text": "A race condition was found in the Linux kernel\u2019s POSIX CPU timer handling, where handle_posix_cpu_timers() may run concurrently with posix_cpu_timer_del() on an exiting task which could result in use-after-free scenarios. An attacker with local user access could use this flaw to crash or escalate their privileges on a system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is rated with Important severity because it may allow an attacker with local user access to escalate their privileges on a target system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"known_not_affected": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-38352"
},
{
"category": "external",
"summary": "RHBZ#2382581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2382581"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-38352",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38352"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-38352",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38352"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025072229-CVE-2025-38352-f1de@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025072229-CVE-2025-38352-f1de@gregkh/T"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T01:52:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15660"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-09-04T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del()"
},
{
"cve": "CVE-2025-38464",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-25T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2383509"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Fix use-after-free in tipc_conn_close().\n\nsyzbot reported a null-ptr-deref in tipc_conn_close() during netns\ndismantle. [0]\n\ntipc_topsrv_stop() iterates tipc_net(net)-\u003etopsrv-\u003econn_idr and calls\ntipc_conn_close() for each tipc_conn.\n\nThe problem is that tipc_conn_close() is called after releasing the\nIDR lock.\n\nAt the same time, there might be tipc_conn_recv_work() running and it\ncould call tipc_conn_close() for the same tipc_conn and release its\nlast -\u003ekref.\n\nOnce we release the IDR lock in tipc_topsrv_stop(), there is no\nguarantee that the tipc_conn is alive.\n\nLet\u0027s hold the ref before releasing the lock and put the ref after\ntipc_conn_close() in tipc_topsrv_stop().\n\n[0]:\nBUG: KASAN: use-after-free in tipc_conn_close+0x122/0x140 net/tipc/topsrv.c:165\nRead of size 8 at addr ffff888099305a08 by task kworker/u4:3/435\n\nCPU: 0 PID: 435 Comm: kworker/u4:3 Not tainted 4.19.204-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011\nWorkqueue: netns cleanup_net\nCall Trace:\n __dump_stack lib/dump_stack.c:77 [inline]\n dump_stack+0x1fc/0x2ef lib/dump_stack.c:118\n print_address_description.cold+0x54/0x219 mm/kasan/report.c:256\n kasan_report_error.cold+0x8a/0x1b9 mm/kasan/report.c:354\n kasan_report mm/kasan/report.c:412 [inline]\n __asan_report_load8_noabort+0x88/0x90 mm/kasan/report.c:433\n tipc_conn_close+0x122/0x140 net/tipc/topsrv.c:165\n tipc_topsrv_stop net/tipc/topsrv.c:701 [inline]\n tipc_topsrv_exit_net+0x27b/0x5c0 net/tipc/topsrv.c:722\n ops_exit_list+0xa5/0x150 net/core/net_namespace.c:153\n cleanup_net+0x3b4/0x8b0 net/core/net_namespace.c:553\n process_one_work+0x864/0x1570 kernel/workqueue.c:2153\n worker_thread+0x64c/0x1130 kernel/workqueue.c:2296\n kthread+0x33f/0x460 kernel/kthread.c:259\n ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415\n\nAllocated by task 23:\n kmem_cache_alloc_trace+0x12f/0x380 mm/slab.c:3625\n kmalloc include/linux/slab.h:515 [inline]\n kzalloc include/linux/slab.h:709 [inline]\n tipc_conn_alloc+0x43/0x4f0 net/tipc/topsrv.c:192\n tipc_topsrv_accept+0x1b5/0x280 net/tipc/topsrv.c:470\n process_one_work+0x864/0x1570 kernel/workqueue.c:2153\n worker_thread+0x64c/0x1130 kernel/workqueue.c:2296\n kthread+0x33f/0x460 kernel/kthread.c:259\n ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415\n\nFreed by task 23:\n __cache_free mm/slab.c:3503 [inline]\n kfree+0xcc/0x210 mm/slab.c:3822\n tipc_conn_kref_release net/tipc/topsrv.c:150 [inline]\n kref_put include/linux/kref.h:70 [inline]\n conn_put+0x2cd/0x3a0 net/tipc/topsrv.c:155\n process_one_work+0x864/0x1570 kernel/workqueue.c:2153\n worker_thread+0x64c/0x1130 kernel/workqueue.c:2296\n kthread+0x33f/0x460 kernel/kthread.c:259\n ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415\n\nThe buggy address belongs to the object at ffff888099305a00\n which belongs to the cache kmalloc-512 of size 512\nThe buggy address is located 8 bytes inside of\n 512-byte region [ffff888099305a00, ffff888099305c00)\nThe buggy address belongs to the page:\npage:ffffea000264c140 count:1 mapcount:0 mapping:ffff88813bff0940 index:0x0\nflags: 0xfff00000000100(slab)\nraw: 00fff00000000100 ffffea00028b6b88 ffffea0002cd2b08 ffff88813bff0940\nraw: 0000000000000000 ffff888099305000 0000000100000006 0000000000000000\npage dumped because: kasan: bad access detected\n\nMemory state around the buggy address:\n ffff888099305900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ffff888099305980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n\u003effff888099305a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ^\n ffff888099305a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ffff888099305b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: tipc: Fix use-after-free in tipc_conn_close()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A Use-After-Free vulnerability was found in tipc_conn_close() in the TIPC subsystem during the cleanup of network namespaces. The race condition between tipc_topsrv_stop() and tipc_conn_recv_work() could result in accessing a freed tipc_conn structure, leading to kernel crash or potential memory corruption. The bug was triggered by syzbot and fixed by ensuring proper reference counting.\n\nThe most straightforward exploitation scenario is a local Denial of Service (DoS), where an unprivileged user with the ability to create user and network namespaces spawns TIPC connections and then triggers network namespace teardown, creating a race condition that causes a use-after-free in tipc_conn_close(). This reliably leads to a kernel panic.\n\nA hypothetical future scenario involves local privilege escalation, if the attacker can win the race and reallocate the freed object in a controlled way (e.g., via kmalloc-512 slab reusage), leading to memory corruption or hijacking of kernel control flow.\n\nImportantly, this can be triggered without root privileges if the system allows unprivileged creation of user and net namespaces, which is the case on many Linux distributions (/proc/sys/user/max_user_namespaces \u003e 0 and kernel.unprivileged_userns_clone=1).\nIn such environments, a regular user can execute the TIPC socket creation, manipulate netns teardown, and provoke the race condition required for exploitation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"known_not_affected": [
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-38464"
},
{
"category": "external",
"summary": "RHBZ#2383509",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2383509"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-38464",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38464"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-38464",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38464"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025072508-CVE-2025-38464-44a1@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025072508-CVE-2025-38464-44a1@gregkh/T"
}
],
"release_date": "2025-07-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T01:52:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15660"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent module tipc from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.172.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.172.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.172.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: tipc: Fix use-after-free in tipc_conn_close()"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…