RHSA-2026:3360
Vulnerability from csaf_redhat - Published: 2026-02-25 15:20 - Updated: 2026-02-25 16:11Summary
Red Hat Security Advisory: kernel security update
Notes
Topic
An update for kernel is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: RDMA/core: Fix "KASAN: slab-use-after-free Read in ib_register_device" problem (CVE-2025-38022)
* kernel: Linux kernel: Memory corruption in Squashfs due to incorrect block size calculation (CVE-2025-38415)
* kernel: Linux kernel: Denial of Service in ATM CLIP module via infinite recursion (CVE-2025-38459)
* kernel: Linux kernel: Denial of Service via out-of-bounds read in USB configuration parsing (CVE-2025-39760)
* kernel: smb: client: let recv_done verify data_offset, data_length and remaining_data_length (CVE-2025-39933)
* kernel: RDMA/rxe: Fix incomplete state save in rxe_requester (CVE-2023-53539)
* kernel: net/mlx5e: Check for NOT_READY flag state after locking (CVE-2023-53581)
* kernel: Bluetooth: hci_event: call disconnect callback before deleting conn (CVE-2023-53673)
* kernel: Linux kernel: Use-after-free in proc_readdir_de() can lead to privilege escalation or denial of service. (CVE-2025-40271)
* kernel: Linux kernel: Out-of-bounds write in fbdev can lead to privilege escalation, information disclosure, or denial of service. (CVE-2025-40304)
* kernel: Linux kernel: Information disclosure and denial of service via out-of-bounds read in font glyph handling (CVE-2025-40322)
* kernel: ip6_vti: fix slab-use-after-free in decode_session6 (CVE-2023-53821)
* kernel: ext4: fix use-after-free in ext4_orphan_cleanup (CVE-2022-50673)
* kernel: drm/i915: Fix NULL ptr deref by checking new_crtc_state (CVE-2023-53833)
* kernel: Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp} (CVE-2023-53827)
* kernel: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (CVE-2025-68349)
* kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog() (CVE-2022-50865)
* kernel: Linux kernel: Use-after-free in teql queueing discipline can lead to privilege escalation (CVE-2026-23074)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: RDMA/core: Fix \"KASAN: slab-use-after-free Read in ib_register_device\" problem (CVE-2025-38022)\n\n* kernel: Linux kernel: Memory corruption in Squashfs due to incorrect block size calculation (CVE-2025-38415)\n\n* kernel: Linux kernel: Denial of Service in ATM CLIP module via infinite recursion (CVE-2025-38459)\n\n* kernel: Linux kernel: Denial of Service via out-of-bounds read in USB configuration parsing (CVE-2025-39760)\n\n* kernel: smb: client: let recv_done verify data_offset, data_length and remaining_data_length (CVE-2025-39933)\n\n* kernel: RDMA/rxe: Fix incomplete state save in rxe_requester (CVE-2023-53539)\n\n* kernel: net/mlx5e: Check for NOT_READY flag state after locking (CVE-2023-53581)\n\n* kernel: Bluetooth: hci_event: call disconnect callback before deleting conn (CVE-2023-53673)\n\n* kernel: Linux kernel: Use-after-free in proc_readdir_de() can lead to privilege escalation or denial of service. (CVE-2025-40271)\n\n* kernel: Linux kernel: Out-of-bounds write in fbdev can lead to privilege escalation, information disclosure, or denial of service. (CVE-2025-40304)\n\n* kernel: Linux kernel: Information disclosure and denial of service via out-of-bounds read in font glyph handling (CVE-2025-40322)\n\n* kernel: ip6_vti: fix slab-use-after-free in decode_session6 (CVE-2023-53821)\n\n* kernel: ext4: fix use-after-free in ext4_orphan_cleanup (CVE-2022-50673)\n\n* kernel: drm/i915: Fix NULL ptr deref by checking new_crtc_state (CVE-2023-53833)\n\n* kernel: Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp} (CVE-2023-53827)\n\n* kernel: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (CVE-2025-68349)\n\n* kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog() (CVE-2022-50865)\n\n* kernel: Linux kernel: Use-after-free in teql queueing discipline can lead to privilege escalation (CVE-2026-23074)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:3360",
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2373326",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2373326"
},
{
"category": "external",
"summary": "2383404",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2383404"
},
{
"category": "external",
"summary": "2383487",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2383487"
},
{
"category": "external",
"summary": "2394601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2394601"
},
{
"category": "external",
"summary": "2401432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2401432"
},
{
"category": "external",
"summary": "2401510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2401510"
},
{
"category": "external",
"summary": "2401545",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2401545"
},
{
"category": "external",
"summary": "2402193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402193"
},
{
"category": "external",
"summary": "2419837",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419837"
},
{
"category": "external",
"summary": "2419870",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419870"
},
{
"category": "external",
"summary": "2419902",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419902"
},
{
"category": "external",
"summary": "2420329",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2420329"
},
{
"category": "external",
"summary": "2420347",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2420347"
},
{
"category": "external",
"summary": "2420366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2420366"
},
{
"category": "external",
"summary": "2420376",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2420376"
},
{
"category": "external",
"summary": "2424880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2424880"
},
{
"category": "external",
"summary": "2426226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2426226"
},
{
"category": "external",
"summary": "2436791",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2436791"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3360.json"
}
],
"title": "Red Hat Security Advisory: kernel security update",
"tracking": {
"current_release_date": "2026-02-25T16:11:23+00:00",
"generator": {
"date": "2026-02-25T16:11:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.1"
}
},
"id": "RHSA-2026:3360",
"initial_release_date": "2026-02-25T15:20:23+00:00",
"revision_history": [
{
"date": "2026-02-25T15:20:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-02-25T15:20:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-02-25T16:11:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:8.4::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "perf-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "perf-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool-debuginfo@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product": {
"name": "python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_id": "python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@4.18.0-305.186.1.el8_4?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-0:4.18.0-305.186.1.el8_4.src",
"product": {
"name": "kernel-0:4.18.0-305.186.1.el8_4.src",
"product_id": "kernel-0:4.18.0-305.186.1.el8_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.18.0-305.186.1.el8_4?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"product": {
"name": "kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"product_id": "kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-stablelists@4.18.0-305.186.1.el8_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"product": {
"name": "kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"product_id": "kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@4.18.0-305.186.1.el8_4?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-305.186.1.el8_4.src as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src"
},
"product_reference": "kernel-0:4.18.0-305.186.1.el8_4.src",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch"
},
"product_reference": "kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.18.0-305.186.1.el8_4.noarch as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch"
},
"product_reference": "kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "perf-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-305.186.1.el8_4.src as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src"
},
"product_reference": "kernel-0:4.18.0-305.186.1.el8_4.src",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch"
},
"product_reference": "kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.18.0-305.186.1.el8_4.noarch as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch"
},
"product_reference": "kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "perf-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
},
"product_reference": "python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-50673",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-12-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2420347"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in the ext4 filesystem\u0027s orphan inode cleanup routine in the Linux kernel. When ext4_inode_attach_jinode() fails with -ENOMEM during orphan cleanup at mount time, the error is not properly propagated. The inode is freed via iput(), but the orphan list still references the same inode number. On the next loop iteration, the freed inode structure is reused, triggering a use-after-free when adding it to the orphan list.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: ext4: fix use-after-free in ext4_orphan_cleanup",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during ext4 filesystem mount when memory allocation fails at a specific point in orphan inode processing. Exploitation requires local access to mount ext4 filesystems and the ability to induce memory pressure during the mount operation, making practical exploitation difficult.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-50673"
},
{
"category": "external",
"summary": "RHBZ#2420347",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2420347"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-50673",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50673"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-50673",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-50673"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025120947-CVE-2022-50673-f920@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025120947-CVE-2022-50673-f920@gregkh/T"
}
],
"release_date": "2025-12-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: ext4: fix use-after-free in ext4_orphan_cleanup"
},
{
"cve": "CVE-2022-50865",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2025-12-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2426226"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: fix a signed-integer-overflow bug in tcp_add_backlog()\n\nThe type of sk_rcvbuf and sk_sndbuf in struct sock is int, and\nin tcp_add_backlog(), the variable limit is caculated by adding\nsk_rcvbuf, sk_sndbuf and 64 * 1024, it may exceed the max value\nof int and overflow. This patch reduces the limit budget by\nhalving the sndbuf to solve this issue since ACK packets are much\nsmaller than the payload.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A signed integer overflow in tcp_add_backlog() could occur when computing the backlog limit from sk_rcvbuf and sk_sndbuf, potentially resulting in an incorrect, reduced limit. A remote peer can trigger this condition by sending network traffic that stresses the TCP backlog, leading to premature packet drops and degraded service availability.\nThis issue is a typical network robustness bug, as the integer overflow only affects internal backlog limit calculations and can at most cause packet drops or limited service degradation (DoS), without providing a realistic path to host crashes, memory corruption, privilege escalation, or code execution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-50865"
},
{
"category": "external",
"summary": "RHBZ#2426226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2426226"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-50865",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50865"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-50865",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-50865"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025123049-CVE-2022-50865-281e@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025123049-CVE-2022-50865-281e@gregkh/T"
}
],
"release_date": "2025-12-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()"
},
{
"cve": "CVE-2023-53539",
"discovery_date": "2025-10-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2401510"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix incomplete state save in rxe_requester\n\nIf a send packet is dropped by the IP layer in rxe_requester()\nthe call to rxe_xmit_packet() can fail with err == -EAGAIN.\nTo recover, the state of the wqe is restored to the state before\nthe packet was sent so it can be resent. However, the routines\nthat save and restore the state miss a significnt part of the\nvariable state in the wqe, the dma struct which is used to process\nthrough the sge table. And, the state is not saved before the packet\nis built which modifies the dma struct.\n\nUnder heavy stress testing with many QPs on a fast node sending\nlarge messages to a slow node dropped packets are observed and\nthe resent packets are corrupted because the dma struct was not\nrestored. This patch fixes this behavior and allows the test cases\nto succeed.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: RDMA/rxe: Fix incomplete state save in rxe_requester",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability occurs when rxe_requester attempts to retransmit a packet after receiving -EAGAIN from the IP layer. The code saves work queue element state to enable retransmission, but fails to preserve the DMA structure that tracks scatter-gather list processing. Additionally, the state snapshot happens after packet construction has already modified the DMA fields. When heavy network stress causes packet drops\u2014particularly when a fast sender communicates with a slow receiver across multiple queue pairs\u2014the incomplete restoration causes retransmitted packets to carry corrupted payload data.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-53539"
},
{
"category": "external",
"summary": "RHBZ#2401510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2401510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-53539",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-53539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53539"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025100443-CVE-2023-53539-4411@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025100443-CVE-2023-53539-4411@gregkh/T"
}
],
"release_date": "2025-10-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the rdma_rxe module from being loaded. See https://access.redhat.com/solutions/41278 for instructions on blacklisting kernel modules.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: RDMA/rxe: Fix incomplete state save in rxe_requester"
},
{
"cve": "CVE-2023-53581",
"discovery_date": "2025-10-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2401545"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Check for NOT_READY flag state after locking\n\nCurrently the check for NOT_READY flag is performed before obtaining the\nnecessary lock. This opens a possibility for race condition when the flow\nis concurrently removed from unready_flows list by the workqueue task,\nwhich causes a double-removal from the list and a crash[0]. Fix the issue\nby moving the flag check inside the section protected by\nuplink_priv-\u003eunready_flows_lock mutex.\n\n[0]:\n[44376.389654] general protection fault, probably for non-canonical address 0xdead000000000108: 0000 [#1] SMP\n[44376.391665] CPU: 7 PID: 59123 Comm: tc Not tainted 6.4.0-rc4+ #1\n[44376.392984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n[44376.395342] RIP: 0010:mlx5e_tc_del_fdb_flow+0xb3/0x340 [mlx5_core]\n[44376.396857] Code: 00 48 8b b8 68 ce 02 00 e8 8a 4d 02 00 4c 8d a8 a8 01 00 00 4c 89 ef e8 8b 79 88 e1 48 8b 83 98 06 00 00 48 8b 93 90 06 00 00 \u003c48\u003e 89 42 08 48 89 10 48 b8 00 01 00 00 00 00 ad de 48 89 83 90 06\n[44376.399167] RSP: 0018:ffff88812cc97570 EFLAGS: 00010246\n[44376.399680] RAX: dead000000000122 RBX: ffff8881088e3800 RCX: ffff8881881bac00\n[44376.400337] RDX: dead000000000100 RSI: ffff88812cc97500 RDI: ffff8881242f71b0\n[44376.401001] RBP: ffff88811cbb0940 R08: 0000000000000400 R09: 0000000000000001\n[44376.401663] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88812c944000\n[44376.402342] R13: ffff8881242f71a8 R14: ffff8881222b4000 R15: 0000000000000000\n[44376.402999] FS: 00007f0451104800(0000) GS:ffff88852cb80000(0000) knlGS:0000000000000000\n[44376.403787] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[44376.404343] CR2: 0000000000489108 CR3: 0000000123a79003 CR4: 0000000000370ea0\n[44376.405004] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[44376.405665] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[44376.406339] Call Trace:\n[44376.406651] \u003cTASK\u003e\n[44376.406939] ? die_addr+0x33/0x90\n[44376.407311] ? exc_general_protection+0x192/0x390\n[44376.407795] ? asm_exc_general_protection+0x22/0x30\n[44376.408292] ? mlx5e_tc_del_fdb_flow+0xb3/0x340 [mlx5_core]\n[44376.408876] __mlx5e_tc_del_fdb_peer_flow+0xbc/0xe0 [mlx5_core]\n[44376.409482] mlx5e_tc_del_flow+0x42/0x210 [mlx5_core]\n[44376.410055] mlx5e_flow_put+0x25/0x50 [mlx5_core]\n[44376.410529] mlx5e_delete_flower+0x24b/0x350 [mlx5_core]\n[44376.411043] tc_setup_cb_reoffload+0x22/0x80\n[44376.411462] fl_reoffload+0x261/0x2f0 [cls_flower]\n[44376.411907] ? mlx5e_rep_indr_setup_ft_cb+0x160/0x160 [mlx5_core]\n[44376.412481] ? mlx5e_rep_indr_setup_ft_cb+0x160/0x160 [mlx5_core]\n[44376.413044] tcf_block_playback_offloads+0x76/0x170\n[44376.413497] tcf_block_unbind+0x7b/0xd0\n[44376.413881] tcf_block_setup+0x17d/0x1c0\n[44376.414269] tcf_block_offload_cmd.isra.0+0xf1/0x130\n[44376.414725] tcf_block_offload_unbind+0x43/0x70\n[44376.415153] __tcf_block_put+0x82/0x150\n[44376.415532] ingress_destroy+0x22/0x30 [sch_ingress]\n[44376.415986] qdisc_destroy+0x3b/0xd0\n[44376.416343] qdisc_graft+0x4d0/0x620\n[44376.416706] tc_get_qdisc+0x1c9/0x3b0\n[44376.417074] rtnetlink_rcv_msg+0x29c/0x390\n[44376.419978] ? rep_movs_alternative+0x3a/0xa0\n[44376.420399] ? rtnl_calcit.isra.0+0x120/0x120\n[44376.420813] netlink_rcv_skb+0x54/0x100\n[44376.421192] netlink_unicast+0x1f6/0x2c0\n[44376.421573] netlink_sendmsg+0x232/0x4a0\n[44376.421980] sock_sendmsg+0x38/0x60\n[44376.422328] ____sys_sendmsg+0x1d0/0x1e0\n[44376.422709] ? copy_msghdr_from_user+0x6d/0xa0\n[44376.423127] ___sys_sendmsg+0x80/0xc0\n[44376.423495] ? ___sys_recvmsg+0x8b/0xc0\n[44376.423869] __sys_sendmsg+0x51/0x90\n[44376.424226] do_syscall_64+0x3d/0x90\n[44376.424587] entry_SYSCALL_64_after_hwframe+0x46/0xb0\n[44376.425046] RIP: 0033:0x7f045134f887\n[44376.425403] Code: 0a 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00\n---truncated---",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: net/mlx5e: Check for NOT_READY flag state after locking",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The issue arises because of incorrect lock ordering in the flow deletion path. When mlx5e_tc_del_fdb_flow() processes a flow deletion, it first checks the NOT_READY flag to determine if the flow is on the unready_flows list, then acquires the uplink_priv-\u003eunready_flows_lock mutex to remove it. However, between the flag check and lock acquisition, a workqueue task can acquire the same lock and remove the flow from the list. When the original thread then acquires the lock and attempts list removal, it performs a double-removal on an entry that is no longer in the list. This corrupts the linked list pointers, causing subsequent list operations to access freed memory containing poison values (0xdead000000000100). The race window is narrow, requiring the workqueue to execute between the flag check and lock acquisition. While this reliably causes kernel crashes when the race occurs, the underlying list corruption represents a memory safety violation that could potentially be leveraged for more sophisticated attacks with careful timing and heap manipulation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-53581"
},
{
"category": "external",
"summary": "RHBZ#2401545",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2401545"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-53581",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53581"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-53581",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53581"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025100424-CVE-2023-53581-80fa@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025100424-CVE-2023-53581-80fa@gregkh/T"
}
],
"release_date": "2025-10-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the mlx5_core module from loading. See https://access.redhat.com/solutions/41278 for instructions on blacklisting kernel modules.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: net/mlx5e: Check for NOT_READY flag state after locking"
},
{
"cve": "CVE-2023-53673",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-10-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2402193"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: call disconnect callback before deleting conn\n\nIn hci_cs_disconnect, we do hci_conn_del even if disconnection failed.\n\nISO, L2CAP and SCO connections refer to the hci_conn without\nhci_conn_get, so disconn_cfm must be called so they can clean up their\nconn, otherwise use-after-free occurs.\n\nISO:\n==========================================================\niso_sock_connect:880: sk 00000000eabd6557\niso_connect_cis:356: 70:1a:b8:98:ff:a2 -\u003e 28:3d:c2:4a:7e:da\n...\niso_conn_add:140: hcon 000000001696f1fd conn 00000000b6251073\nhci_dev_put:1487: hci0 orig refcnt 17\n__iso_chan_add:214: conn 00000000b6251073\niso_sock_clear_timer:117: sock 00000000eabd6557 state 3\n...\nhci_rx_work:4085: hci0 Event packet\nhci_event_packet:7601: hci0: event 0x0f\nhci_cmd_status_evt:4346: hci0: opcode 0x0406\nhci_cs_disconnect:2760: hci0: status 0x0c\nhci_sent_cmd_data:3107: hci0 opcode 0x0406\nhci_conn_del:1151: hci0 hcon 000000001696f1fd handle 2560\nhci_conn_unlink:1102: hci0: hcon 000000001696f1fd\nhci_conn_drop:1451: hcon 00000000d8521aaf orig refcnt 2\nhci_chan_list_flush:2780: hcon 000000001696f1fd\nhci_dev_put:1487: hci0 orig refcnt 21\nhci_dev_put:1487: hci0 orig refcnt 20\nhci_req_cmd_complete:3978: opcode 0x0406 status 0x0c\n... \u003cno iso_* activity on sk/conn\u003e ...\niso_sock_sendmsg:1098: sock 00000000dea5e2e0, sk 00000000eabd6557\nBUG: kernel NULL pointer dereference, address: 0000000000000668\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP PTI\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-1.fc38 04/01/2014\nRIP: 0010:iso_sock_sendmsg (net/bluetooth/iso.c:1112) bluetooth\n==========================================================\n\nL2CAP:\n==================================================================\nhci_cmd_status_evt:4359: hci0: opcode 0x0406\nhci_cs_disconnect:2760: hci0: status 0x0c\nhci_sent_cmd_data:3085: hci0 opcode 0x0406\nhci_conn_del:1151: hci0 hcon ffff88800c999000 handle 3585\nhci_conn_unlink:1102: hci0: hcon ffff88800c999000\nhci_chan_list_flush:2780: hcon ffff88800c999000\nhci_chan_del:2761: hci0 hcon ffff88800c999000 chan ffff888018ddd280\n...\nBUG: KASAN: slab-use-after-free in hci_send_acl+0x2d/0x540 [bluetooth]\nRead of size 8 at addr ffff888018ddd298 by task bluetoothd/1175\n\nCPU: 0 PID: 1175 Comm: bluetoothd Tainted: G E 6.4.0-rc4+ #2\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-1.fc38 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5b/0x90\n print_report+0xcf/0x670\n ? __virt_addr_valid+0xf8/0x180\n ? hci_send_acl+0x2d/0x540 [bluetooth]\n kasan_report+0xa8/0xe0\n ? hci_send_acl+0x2d/0x540 [bluetooth]\n hci_send_acl+0x2d/0x540 [bluetooth]\n ? __pfx___lock_acquire+0x10/0x10\n l2cap_chan_send+0x1fd/0x1300 [bluetooth]\n ? l2cap_sock_sendmsg+0xf2/0x170 [bluetooth]\n ? __pfx_l2cap_chan_send+0x10/0x10 [bluetooth]\n ? lock_release+0x1d5/0x3c0\n ? mark_held_locks+0x1a/0x90\n l2cap_sock_sendmsg+0x100/0x170 [bluetooth]\n sock_write_iter+0x275/0x280\n ? __pfx_sock_write_iter+0x10/0x10\n ? __pfx___lock_acquire+0x10/0x10\n do_iter_readv_writev+0x176/0x220\n ? __pfx_do_iter_readv_writev+0x10/0x10\n ? find_held_lock+0x83/0xa0\n ? selinux_file_permission+0x13e/0x210\n do_iter_write+0xda/0x340\n vfs_writev+0x1b4/0x400\n ? __pfx_vfs_writev+0x10/0x10\n ? __seccomp_filter+0x112/0x750\n ? populate_seccomp_data+0x182/0x220\n ? __fget_light+0xdf/0x100\n ? do_writev+0x19d/0x210\n do_writev+0x19d/0x210\n ? __pfx_do_writev+0x10/0x10\n ? mark_held_locks+0x1a/0x90\n do_syscall_64+0x60/0x90\n ? lockdep_hardirqs_on_prepare+0x149/0x210\n ? do_syscall_64+0x6c/0x90\n ? lockdep_hardirqs_on_prepare+0x149/0x210\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\nRIP: 0033:0x7ff45cb23e64\nCode: 15 d1 1f 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b8 0f 1f 00 f3 0f 1e fa 80 3d 9d a7 0d 00 00 74 13 b8 14 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 54 c3 0f 1f 00 48 83 ec 28 89 54 24 1c 48 89\nRSP: 002b:00007fff21ae09b8 EFLAGS: 00000202 ORIG_RAX: 0000000000000014\nRAX: ffffffffffffffda RBX: \n---truncated---",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Bluetooth: hci_event: call disconnect callback before deleting conn",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw has been fixed in RHEL versions 9.4 and later.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-53673"
},
{
"category": "external",
"summary": "RHBZ#2402193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-53673",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53673"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-53673",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53673"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025100706-CVE-2023-53673-36b9@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025100706-CVE-2023-53673-36b9@gregkh/T"
}
],
"release_date": "2025-10-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Bluetooth: hci_event: call disconnect callback before deleting conn"
},
{
"cve": "CVE-2023-53821",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-12-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2420329"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_vti: fix slab-use-after-free in decode_session6\n\nWhen ipv6_vti device is set to the qdisc of the sfb type, the cb field\nof the sent skb may be modified during enqueuing. Then,\nslab-use-after-free may occur when ipv6_vti device sends IPv6 packets.\n\nThe stack information is as follows:\nBUG: KASAN: slab-use-after-free in decode_session6+0x103f/0x1890\nRead of size 1 at addr ffff88802e08edc2 by task swapper/0/0\nCPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.4.0-next-20230707-00001-g84e2cad7f979 #410\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.14.0-1.fc33 04/01/2014\nCall Trace:\n\u003cIRQ\u003e\ndump_stack_lvl+0xd9/0x150\nprint_address_description.constprop.0+0x2c/0x3c0\nkasan_report+0x11d/0x130\ndecode_session6+0x103f/0x1890\n__xfrm_decode_session+0x54/0xb0\nvti6_tnl_xmit+0x3e6/0x1ee0\ndev_hard_start_xmit+0x187/0x700\nsch_direct_xmit+0x1a3/0xc30\n__qdisc_run+0x510/0x17a0\n__dev_queue_xmit+0x2215/0x3b10\nneigh_connected_output+0x3c2/0x550\nip6_finish_output2+0x55a/0x1550\nip6_finish_output+0x6b9/0x1270\nip6_output+0x1f1/0x540\nndisc_send_skb+0xa63/0x1890\nndisc_send_rs+0x132/0x6f0\naddrconf_rs_timer+0x3f1/0x870\ncall_timer_fn+0x1a0/0x580\nexpire_timers+0x29b/0x4b0\nrun_timer_softirq+0x326/0x910\n__do_softirq+0x1d4/0x905\nirq_exit_rcu+0xb7/0x120\nsysvec_apic_timer_interrupt+0x97/0xc0\n\u003c/IRQ\u003e\nAllocated by task 9176:\nkasan_save_stack+0x22/0x40\nkasan_set_track+0x25/0x30\n__kasan_slab_alloc+0x7f/0x90\nkmem_cache_alloc_node+0x1cd/0x410\nkmalloc_reserve+0x165/0x270\n__alloc_skb+0x129/0x330\nnetlink_sendmsg+0x9b1/0xe30\nsock_sendmsg+0xde/0x190\n____sys_sendmsg+0x739/0x920\n___sys_sendmsg+0x110/0x1b0\n__sys_sendmsg+0xf7/0x1c0\ndo_syscall_64+0x39/0xb0\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nFreed by task 9176:\nkasan_save_stack+0x22/0x40\nkasan_set_track+0x25/0x30\nkasan_save_free_info+0x2b/0x40\n____kasan_slab_free+0x160/0x1c0\nslab_free_freelist_hook+0x11b/0x220\nkmem_cache_free+0xf0/0x490\nskb_free_head+0x17f/0x1b0\nskb_release_data+0x59c/0x850\nconsume_skb+0xd2/0x170\nnetlink_unicast+0x54f/0x7f0\nnetlink_sendmsg+0x926/0xe30\nsock_sendmsg+0xde/0x190\n____sys_sendmsg+0x739/0x920\n___sys_sendmsg+0x110/0x1b0\n__sys_sendmsg+0xf7/0x1c0\ndo_syscall_64+0x39/0xb0\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nThe buggy address belongs to the object at ffff88802e08ed00\nwhich belongs to the cache skbuff_small_head of size 640\nThe buggy address is located 194 bytes inside of\nfreed 640-byte region [ffff88802e08ed00, ffff88802e08ef80)\n\nAs commit f855691975bb (\"xfrm6: Fix the nexthdr offset in\n_decode_session6.\") showed, xfrm_decode_session was originally intended\nonly for the receive path. IP6CB(skb)-\u003enhoff is not set during\ntransmission. Therefore, set the cb field in the skb to 0 before\nsending packets.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: ip6_vti: fix slab-use-after-free in decode_session6",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a use-after-free vulnerability in IPv6 VTI tunnel handling that can be triggered when specific qdisc configurations are used. The vulnerability requires local access and specific network configuration involving VTI tunnels with SFB qdisc.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-53821"
},
{
"category": "external",
"summary": "RHBZ#2420329",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2420329"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-53821",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-53821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53821"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025120950-CVE-2023-53821-9542@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025120950-CVE-2023-53821-9542@gregkh/T"
}
],
"release_date": "2025-12-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: ip6_vti: fix slab-use-after-free in decode_session6"
},
{
"cve": "CVE-2023-53827",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-12-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2420376"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp}\n\nSimilar to commit d0be8347c623 (\"Bluetooth: L2CAP: Fix use-after-free\ncaused by l2cap_chan_put\"), just use l2cap_chan_hold_unless_zero to\nprevent referencing a channel that is about to be destroyed.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp}",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A race in the L2CAP disconnect request/response handlers could access a channel that is being destroyed, causing a use-after-free and kernel crash. The fix uses l2cap_chan_hold_unless_zero() and proper locking around channel deletion to avoid referencing freed objects. An adjacent attacker over Bluetooth can trigger this during disconnect handling on an active link. Likely only denial-of-service kind of attack possible, but cannot prove this.\nThe complexity of attack is high, because it requires a precise race condition between the local channel teardown (triggered by the kernel) and a crafted L2CAP_DisconnectReq or L2CAP_DisconnectRsp message sent by the remote peer at exactly the same time. The timing window is very narrow \u2014 the attacker must send or respond to the disconnect while the kernel is already in the process of releasing the l2cap_chan structure but before the reference count reaches zero. Achieving this reliably would require repeated connect/disconnect cycles or fuzzing at the signaling layer, making stable exploitation unlikely outside of a controlled test setup.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-53827"
},
{
"category": "external",
"summary": "RHBZ#2420376",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2420376"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-53827",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53827"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-53827",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53827"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025120952-CVE-2023-53827-b045@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025120952-CVE-2023-53827-b045@gregkh/T"
}
],
"release_date": "2025-12-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp}"
},
{
"cve": "CVE-2023-53833",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2025-12-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2420366"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference vulnerability was found in the Intel i915 graphics driver in the Linux kernel. The intel_atomic_get_new_crtc_state() function can return NULL if the CRTC state was not previously obtained via intel_atomic_get_crtc_state(), but the return value was not checked before use. This leads to a kernel crash when display mode changes are performed under certain conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: drm/i915: Fix NULL ptr deref by checking new_crtc_state",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a NULL pointer dereference in the Intel i915 graphics driver that can cause a kernel crash during display configuration changes. The vulnerability requires local access and affects systems with Intel integrated graphics.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-53833"
},
{
"category": "external",
"summary": "RHBZ#2420366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2420366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-53833",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53833"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-53833",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53833"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025120954-CVE-2023-53833-09d9@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025120954-CVE-2023-53833-09d9@gregkh/T"
}
],
"release_date": "2025-12-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the i915 module from being loaded. See https://access.redhat.com/solutions/41278 for instructions on how to blacklist a kernel module. Note that this will disable Intel integrated graphics.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: drm/i915: Fix NULL ptr deref by checking new_crtc_state"
},
{
"cve": "CVE-2025-38022",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2373326"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: Fix \"KASAN: slab-use-after-free Read in ib_register_device\" problem\n\nCall Trace:\n\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:408 [inline]\n print_report+0xc3/0x670 mm/kasan/report.c:521\n kasan_report+0xe0/0x110 mm/kasan/report.c:634\n strlen+0x93/0xa0 lib/string.c:420\n __fortify_strlen include/linux/fortify-string.h:268 [inline]\n get_kobj_path_length lib/kobject.c:118 [inline]\n kobject_get_path+0x3f/0x2a0 lib/kobject.c:158\n kobject_uevent_env+0x289/0x1870 lib/kobject_uevent.c:545\n ib_register_device drivers/infiniband/core/device.c:1472 [inline]\n ib_register_device+0x8cf/0xe00 drivers/infiniband/core/device.c:1393\n rxe_register_device+0x275/0x320 drivers/infiniband/sw/rxe/rxe_verbs.c:1552\n rxe_net_add+0x8e/0xe0 drivers/infiniband/sw/rxe/rxe_net.c:550\n rxe_newlink+0x70/0x190 drivers/infiniband/sw/rxe/rxe.c:225\n nldev_newlink+0x3a3/0x680 drivers/infiniband/core/nldev.c:1796\n rdma_nl_rcv_msg+0x387/0x6e0 drivers/infiniband/core/netlink.c:195\n rdma_nl_rcv_skb.constprop.0.isra.0+0x2e5/0x450\n netlink_unicast_kernel net/netlink/af_netlink.c:1313 [inline]\n netlink_unicast+0x53a/0x7f0 net/netlink/af_netlink.c:1339\n netlink_sendmsg+0x8d1/0xdd0 net/netlink/af_netlink.c:1883\n sock_sendmsg_nosec net/socket.c:712 [inline]\n __sock_sendmsg net/socket.c:727 [inline]\n ____sys_sendmsg+0xa95/0xc70 net/socket.c:2566\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2620\n __sys_sendmsg+0x16d/0x220 net/socket.c:2652\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0x260 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThis problem is similar to the problem that the\ncommit 1d6a9e7449e2 (\"RDMA/core: Fix use-after-free when rename device name\")\nfixes.\n\nThe root cause is: the function ib_device_rename() renames the name with\nlock. But in the function kobject_uevent(), this name is accessed without\nlock protection at the same time.\n\nThe solution is to add the lock protection when this name is accessed in\nthe function kobject_uevent().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: RDMA/core: Fix \"KASAN: slab-use-after-free Read in ib_register_device\" problem",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-38022"
},
{
"category": "external",
"summary": "RHBZ#2373326",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2373326"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-38022",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38022"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-38022",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38022"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025061846-CVE-2025-38022-41b3@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025061846-CVE-2025-38022-41b3@gregkh/T"
}
],
"release_date": "2025-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: RDMA/core: Fix \"KASAN: slab-use-after-free Read in ib_register_device\" problem"
},
{
"cve": "CVE-2025-38415",
"cwe": {
"id": "CWE-252",
"name": "Unchecked Return Value"
},
"discovery_date": "2025-07-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2383404"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSquashfs: check return result of sb_min_blocksize\n\nSyzkaller reports an \"UBSAN: shift-out-of-bounds in squashfs_bio_read\" bug.\n\nSyzkaller forks multiple processes which after mounting the Squashfs\nfilesystem, issues an ioctl(\"/dev/loop0\", LOOP_SET_BLOCK_SIZE, 0x8000). \nNow if this ioctl occurs at the same time another process is in the\nprocess of mounting a Squashfs filesystem on /dev/loop0, the failure\noccurs. When this happens the following code in squashfs_fill_super()\nfails.\n\n----\nmsblk-\u003edevblksize = sb_min_blocksize(sb, SQUASHFS_DEVBLK_SIZE);\nmsblk-\u003edevblksize_log2 = ffz(~msblk-\u003edevblksize);\n----\n\nsb_min_blocksize() returns 0, which means msblk-\u003edevblksize is set to 0.\n\nAs a result, ffz(~msblk-\u003edevblksize) returns 64, and msblk-\u003edevblksize_log2\nis set to 64.\n\nThis subsequently causes the\n\nUBSAN: shift-out-of-bounds in fs/squashfs/block.c:195:36\nshift exponent 64 is too large for 64-bit type \u0027u64\u0027 (aka\n\u0027unsigned long long\u0027)\n\nThis commit adds a check for a 0 return by sb_min_blocksize().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Linux kernel: Memory corruption in Squashfs due to incorrect block size calculation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-38415"
},
{
"category": "external",
"summary": "RHBZ#2383404",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2383404"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-38415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38415"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-38415",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38415"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025072513-CVE-2025-38415-c634@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025072513-CVE-2025-38415-c634@gregkh/T"
}
],
"release_date": "2025-07-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Linux kernel: Memory corruption in Squashfs due to incorrect block size calculation"
},
{
"cve": "CVE-2025-38459",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2025-07-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2383487"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natm: clip: Fix infinite recursive call of clip_push().\n\nsyzbot reported the splat below. [0]\n\nThis happens if we call ioctl(ATMARP_MKIP) more than once.\n\nDuring the first call, clip_mkip() sets clip_push() to vcc-\u003epush(),\nand the second call copies it to clip_vcc-\u003eold_push().\n\nLater, when the socket is close()d, vcc_destroy_socket() passes\nNULL skb to clip_push(), which calls clip_vcc-\u003eold_push(),\ntriggering the infinite recursion.\n\nLet\u0027s prevent the second ioctl(ATMARP_MKIP) by checking\nvcc-\u003euser_back, which is allocated by the first call as clip_vcc.\n\nNote also that we use lock_sock() to prevent racy calls.\n\n[0]:\nBUG: TASK stack guard page was hit at ffffc9000d66fff8 (stack is ffffc9000d670000..ffffc9000d678000)\nOops: stack guard page: 0000 [#1] SMP KASAN NOPTI\nCPU: 0 UID: 0 PID: 5322 Comm: syz.0.0 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:clip_push+0x5/0x720 net/atm/clip.c:191\nCode: e0 8f aa 8c e8 1c ad 5b fa eb ae 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 \u003c41\u003e 57 41 56 41 55 41 54 53 48 83 ec 20 48 89 f3 49 89 fd 48 bd 00\nRSP: 0018:ffffc9000d670000 EFLAGS: 00010246\nRAX: 1ffff1100235a4a5 RBX: ffff888011ad2508 RCX: ffff8880003c0000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888037f01000\nRBP: dffffc0000000000 R08: ffffffff8fa104f7 R09: 1ffffffff1f4209e\nR10: dffffc0000000000 R11: ffffffff8a99b300 R12: ffffffff8a99b300\nR13: ffff888037f01000 R14: ffff888011ad2500 R15: ffff888037f01578\nFS: 000055557ab6d500(0000) GS:ffff88808d250000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffffc9000d66fff8 CR3: 0000000043172000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n clip_push+0x6dc/0x720 net/atm/clip.c:200\n clip_push+0x6dc/0x720 net/atm/clip.c:200\n clip_push+0x6dc/0x720 net/atm/clip.c:200\n...\n clip_push+0x6dc/0x720 net/atm/clip.c:200\n clip_push+0x6dc/0x720 net/atm/clip.c:200\n clip_push+0x6dc/0x720 net/atm/clip.c:200\n vcc_destroy_socket net/atm/common.c:183 [inline]\n vcc_release+0x157/0x460 net/atm/common.c:205\n __sock_release net/socket.c:647 [inline]\n sock_close+0xc0/0x240 net/socket.c:1391\n __fput+0x449/0xa70 fs/file_table.c:465\n task_work_run+0x1d1/0x260 kernel/task_work.c:227\n resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]\n exit_to_user_mode_loop+0xec/0x110 kernel/entry/common.c:114\n exit_to_user_mode_prepare include/linux/entry-common.h:330 [inline]\n syscall_exit_to_user_mode_work include/linux/entry-common.h:414 [inline]\n syscall_exit_to_user_mode include/linux/entry-common.h:449 [inline]\n do_syscall_64+0x2bd/0x3b0 arch/x86/entry/syscall_64.c:100\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7ff31c98e929\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fffb5aa1f78 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4\nRAX: 0000000000000000 RBX: 0000000000012747 RCX: 00007ff31c98e929\nRDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003\nRBP: 00007ff31cbb7ba0 R08: 0000000000000001 R09: 0000000db5aa226f\nR10: 00007ff31c7ff030 R11: 0000000000000246 R12: 00007ff31cbb608c\nR13: 00007ff31cbb6080 R14: ffffffffffffffff R15: 00007fffb5aa2090\n \u003c/TASK\u003e\nModules linked in:",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Linux kernel: Denial of Service in ATM CLIP module via infinite recursion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-38459"
},
{
"category": "external",
"summary": "RHBZ#2383487",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2383487"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-38459",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38459"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-38459",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38459"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025072507-CVE-2025-38459-e941@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025072507-CVE-2025-38459-e941@gregkh/T"
}
],
"release_date": "2025-07-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Linux kernel: Denial of Service in ATM CLIP module via infinite recursion"
},
{
"cve": "CVE-2025-39760",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-09-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2394601"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: core: config: Prevent OOB read in SS endpoint companion parsing\n\nusb_parse_ss_endpoint_companion() checks descriptor type before length,\nenabling a potentially odd read outside of the buffer size.\n\nFix this up by checking the size first before looking at any of the\nfields in the descriptor.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Linux kernel: Denial of Service via out-of-bounds read in USB configuration parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-39760"
},
{
"category": "external",
"summary": "RHBZ#2394601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2394601"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-39760",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39760"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-39760",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-39760"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025091145-CVE-2025-39760-2d5f@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025091145-CVE-2025-39760-2d5f@gregkh/T"
}
],
"release_date": "2025-09-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Linux kernel: Denial of Service via out-of-bounds read in USB configuration parsing"
},
{
"cve": "CVE-2025-39933",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2025-10-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2401432"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: let recv_done verify data_offset, data_length and remaining_data_length\n\nThis is inspired by the related server fixes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: smb: client: let recv_done verify data_offset, data_length and remaining_data_length",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "SMB Direct client failed to validate data_offset, data_length, and remaining_data_length in SMBD \u201cdata transfer\u201d messages. A malicious server can craft values that cause out-of-bounds access in the kernel receive path, leading to memory corruption and potential code execution.\nA malicious SMB Direct server can trigger a kernel crash on a connected and authenticated Linux client by sending malformed data transfer packets over an active RDMA session.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-39933"
},
{
"category": "external",
"summary": "RHBZ#2401432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2401432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-39933",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39933"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-39933",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-39933"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025100417-CVE-2025-39933-e224@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025100417-CVE-2025-39933-e224@gregkh/T"
}
],
"release_date": "2025-10-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: smb: client: let recv_done verify data_offset, data_length and remaining_data_length"
},
{
"cve": "CVE-2025-40271",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-12-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419837"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/proc: fix uaf in proc_readdir_de()\n\nPde is erased from subdir rbtree through rb_erase(), but not set the node\nto EMPTY, which may result in uaf access. We should use RB_CLEAR_NODE()\nset the erased node to EMPTY, then pde_subdir_next() will return NULL to\navoid uaf access.\n\nWe found an uaf issue while using stress-ng testing, need to run testcase\ngetdent and tun in the same time. The steps of the issue is as follows:\n\n1) use getdent to traverse dir /proc/pid/net/dev_snmp6/, and current\n pde is tun3;\n\n2) in the [time windows] unregister netdevice tun3 and tun2, and erase\n them from rbtree. erase tun3 first, and then erase tun2. the\n pde(tun2) will be released to slab;\n\n3) continue to getdent process, then pde_subdir_next() will return\n pde(tun2) which is released, it will case uaf access.\n\nCPU 0 | CPU 1\n-------------------------------------------------------------------------\ntraverse dir /proc/pid/net/dev_snmp6/ | unregister_netdevice(tun-\u003edev) //tun3 tun2\nsys_getdents64() |\n iterate_dir() |\n proc_readdir() |\n proc_readdir_de() | snmp6_unregister_dev()\n pde_get(de); | proc_remove()\n read_unlock(\u0026proc_subdir_lock); | remove_proc_subtree()\n | write_lock(\u0026proc_subdir_lock);\n [time window] | rb_erase(\u0026root-\u003esubdir_node, \u0026parent-\u003esubdir);\n | write_unlock(\u0026proc_subdir_lock);\n read_lock(\u0026proc_subdir_lock); |\n next = pde_subdir_next(de); |\n pde_put(de); |\n de = next; //UAF |\n\nrbtree of dev_snmp6\n |\n pde(tun3)\n / \\\n NULL pde(tun2)",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Linux kernel: Use-after-free in proc_readdir_de() can lead to privilege escalation or denial of service.",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability is a race condition in /proc directory enumeration, where a proc_dir_entry can be freed after rb_erase() but still referenced because the rbtree node is not cleared. A local unprivileged attacker can trigger a use-after-free by running getdents() (that calls proc_readdir_de()) in parallel with rapid creation and removal of network-related proc entries (e.g., tun devices). In practice this leads to a kernel NULL-pointer dereference or slab-UAF crash. Reliable exploitation beyond denial-of-service is unlikely due to the narrow timing window, but theoretically possible.\nThe bug could be triggered by the local attacker with the ability to create and remove network devices (e.g. CAP_NET_ADMIN).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-40271"
},
{
"category": "external",
"summary": "RHBZ#2419837",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419837"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-40271",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40271"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-40271",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-40271"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025120716-CVE-2025-40271-7612@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025120716-CVE-2025-40271-7612@gregkh/T"
}
],
"release_date": "2025-12-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Linux kernel: Use-after-free in proc_readdir_de() can lead to privilege escalation or denial of service."
},
{
"cve": "CVE-2025-40304",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2025-12-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419870"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds\n\nAdd bounds checking to prevent writes past framebuffer boundaries when\nrendering text near screen edges. Return early if the Y position is off-screen\nand clip image height to screen boundary. Break from the rendering loop if the\nX position is off-screen. When clipping image width to fit the screen, update\nthe character count to match the clipped width to prevent buffer size\nmismatches.\n\nWithout the character count update, bit_putcs_aligned and bit_putcs_unaligned\nreceive mismatched parameters where the buffer is allocated for the clipped\nwidth but cnt reflects the original larger count, causing out-of-bounds writes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Linux kernel: Out-of-bounds write in fbdev can lead to privilege escalation, information disclosure, or denial of service.",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-40304"
},
{
"category": "external",
"summary": "RHBZ#2419870",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419870"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-40304",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40304"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-40304",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-40304"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025120820-CVE-2025-40304-47b3@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025120820-CVE-2025-40304-47b3@gregkh/T"
}
],
"release_date": "2025-12-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Linux kernel: Out-of-bounds write in fbdev can lead to privilege escalation, information disclosure, or denial of service."
},
{
"cve": "CVE-2025-40322",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-12-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419902"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: bitblit: bound-check glyph index in bit_putcs*\n\nbit_putcs_aligned()/unaligned() derived the glyph pointer from the\ncharacter value masked by 0xff/0x1ff, which may exceed the actual font\u0027s\nglyph count and read past the end of the built-in font array.\nClamp the index to the actual glyph count before computing the address.\n\nThis fixes a global out-of-bounds read reported by syzbot.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Linux kernel: Information disclosure and denial of service via out-of-bounds read in font glyph handling",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-40322"
},
{
"category": "external",
"summary": "RHBZ#2419902",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419902"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-40322",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-40322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-40322"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025120823-CVE-2025-40322-6355@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025120823-CVE-2025-40322-6355@gregkh/T"
}
],
"release_date": "2025-12-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the `fbdev` kernel module from loading if it is not required for system operation. Create a file named `/etc/modprobe.d/disable-fbdev.conf` with the following content:\n\n```\ninstall fbdev /bin/true\nblacklist fbdev\n```\n\nAfter creating the file, regenerate the initramfs using `dracut -f -v` and reboot the system for the changes to take effect. This mitigation may impact systems that rely on `fbdev` for console display or specific graphics hardware, requiring careful evaluation before implementation.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Linux kernel: Information disclosure and denial of service via out-of-bounds read in font glyph handling"
},
{
"cve": "CVE-2025-68349",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2025-12-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2424880"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid\n\nFixes a crash when layout is null during this call stack:\n\nwrite_inode\n -\u003e nfs4_write_inode\n -\u003e pnfs_layoutcommit_inode\n\npnfs_set_layoutcommit relies on the lseg refcount to keep the layout\naround. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt\nto reference a null layout.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This bug is caused by a stale state flag (NFS_INO_LAYOUTCOMMIT) remaining set after the pNFS layout has been invalidated, leading to a NULL pointer dereference during layout commit handling. The issue results in a kernel crash when specific NFS writeback paths are executed. As it involves no memory corruption or attacker-controlled data, it represents a denial-of-service condition only.\nThe issue is triggered by a connected NFS client through normal pNFS writeback flows and affects the NFS server kernel, requiring an established NFSv4 session rather than unauthenticated network access.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68349"
},
{
"category": "external",
"summary": "RHBZ#2424880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2424880"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68349",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68349"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025122453-CVE-2025-68349-12d5@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025122453-CVE-2025-68349-12d5@gregkh/T"
}
],
"release_date": "2025-12-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
},
{
"category": "workaround",
"details": "If NFS service not being used, then disable it to prevent possibility of triggering this bug (and usually it is disabled by default):\nsudo systemctl stop nfs-server\nsudo systemctl disable nfs-server",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid"
},
{
"cve": "CVE-2026-23074",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2026-02-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2436791"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s networking component. A local attacker with low privileges could exploit a design issue in the teql queueing discipline, which is responsible for managing network traffic. By sending specially crafted network packets, an attacker could trigger a use-after-free (UAF) vulnerability, which is a type of memory corruption. This could lead to a system crash, or potentially allow the attacker to execute unauthorized code or gain elevated system access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Linux kernel: Use-after-free in teql queueing discipline can lead to privilege escalation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-23074"
},
{
"category": "external",
"summary": "RHBZ#2436791",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2436791"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-23074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23074"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-23074",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23074"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2026020419-CVE-2026-23074-6bb8@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2026020419-CVE-2026-23074-6bb8@gregkh/T"
}
],
"release_date": "2026-02-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-25T15:20:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3360"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.AUS:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.AUS:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.AUS:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:bpftool-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-abi-stablelists-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-core-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debug-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-debuginfo-common-x86_64-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-devel-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-doc-0:4.18.0-305.186.1.el8_4.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-modules-extra-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:kernel-tools-libs-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-0:4.18.0-305.186.1.el8_4.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:python3-perf-debuginfo-0:4.18.0-305.186.1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: Linux kernel: Use-after-free in teql queueing discipline can lead to privilege escalation"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…