{"id":"CLSA-2025-1757967705","summary":"kernel: Fix of 42 CVEs","details":"- x86/kvm: Disable kvmclock on all CPUs on shutdown {CVE-2021-47110}\n- posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() {CVE-2025-38352}\n- cifs: fix double free race when mount fails in cifs_get_root() {CVE-2022-48919}\n- aio: mark AIO pseudo-fs noexec {CVE-2016-10044}\n- cifs: potential buffer overflow in handling symlinks {CVE-2022-49058}\n- NFSD: fix race between nfsd registration and exports_proc {CVE-2025-38232}\n- nfsd: register pernet ops last, unregister first {CVE-2025-38232}\n- net: atm: fix use after free in lec_send() {CVE-2025-22004}\n- net: atlantic: fix aq_vec index out of range error {CVE-2022-50066}\n- do_change_type(): refuse to operate on unmounted/not ours mounts {CVE-2025-38498}\n- net: atm: fix /proc/net/atm/lec handling {CVE-2025-38180}\n- net: atm: add lec_mutex {CVE-2025-38180}\n- SUNRPC: make sure cache entry active before cache_show {CVE-2024-53174}\n- scsi: target: Fix NULL pointer dereference in core_scsi3_decode_spec_i_port() {CVE-2025-38399}\n- scsi: target: Fix crash during SPEC_I_PT handling {CVE-2025-38399}\n- mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race {CVE-2025-38085}\n- drivers:md:fix a potential use-after-free bug {CVE-2022-50022}\n- ext4: avoid resizing to a partial cluster size {CVE-2022-50020}\n- HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove() {CVE-2025-21928}\n- net/sched: Abort __tc_modify_qdisc if parent class does not exist {CVE-2025-38457}\n- misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram() {CVE-2022-49788}\n- dlm: fix plock invalid read {CVE-2022-49407}\n- net: usb: smsc75xx: Limit packet length to skb-\u003elen {CVE-2023-53125}\n- scsi: libfc: Fix use after free in fc_exch_abts_resp() {CVE-2022-49114}\n- crypto: algif_hash - fix double free in hash_accept {CVE-2025-38079}\n- HID: core: Harden s32ton() against conversion to 0 bits {CVE-2025-38556}\n- HID: core: ensure the allocated report buffer can contain the reserved report ID {CVE-2025-38495}\n- ext4: Fix possible corruption when moving a directory {CVE-2023-53137}\n- ceph: avoid putting the realm twice when decoding snaps fails {CVE-2022-49770}\n- vsock/vmci: Clear the vmci transport packet properly when initializing it {CVE-2025-38403}\n- HID: core: do not bypass hid_hw_raw_request {CVE-2025-38494}\n- sch_hfsc: make hfsc_qlen_notify() idempotent {CVE-2025-38177}\n- ext4: check dot and dotdot of dx_root before making dir indexed {CVE-2024-42305}\n- ALSA: bcd2000: Fix a UAF bug on the error path of probing {CVE-2022-50229}\n- dm ioctl: prevent potential spectre v1 gadget {CVE-2022-49122}\n- net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too {CVE-2025-37823}\n- md-raid10: fix KASAN warning {CVE-2022-50211}\n- scsi: lpfc: Use memcpy() for BIOS version {CVE-2025-38332}\n- ACPICA: Refuse to evaluate a method if arguments are missing {CVE-2025-38386}\n- media: cxusb: no longer judge rbuf when the write fails {CVE-2025-38229}\n- ipc: fix to protect IPCS lookups using RCU {CVE-2025-38212}\n- ext4: fix off-by-one error in do_split {CVE-2025-23150}\n- perf/core: Fix WARN_ON(!ctx) in __free_event() for partial init {CVE-2025-37878}\n- sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() {CVE-2025-38000}\n- i40e: fix MMIO write access to an invalid page in i40e_clear_hw {CVE-2025-38200}","modified":"2026-05-27T11:35:58.956580159Z","published":"2025-09-15T20:21:49Z","upstream":["CVE-2016-10044","CVE-2021-47110","CVE-2022-48919","CVE-2022-49058","CVE-2022-49114","CVE-2022-49122","CVE-2022-49407","CVE-2022-49770","CVE-2022-49788","CVE-2022-50020","CVE-2022-50022","CVE-2022-50066","CVE-2022-50211","CVE-2022-50229","CVE-2023-53125","CVE-2023-53137","CVE-2024-42305","CVE-2024-53174","CVE-2025-21928","CVE-2025-22004","CVE-2025-23150","CVE-2025-37823","CVE-2025-37878","CVE-2025-38000","CVE-2025-38079","CVE-2025-38085","CVE-2025-38177","CVE-2025-38180","CVE-2025-38200","CVE-2025-38212","CVE-2025-38229","CVE-2025-38232","CVE-2025-38332","CVE-2025-38352","CVE-2025-38386","CVE-2025-38399","CVE-2025-38403","CVE-2025-38457","CVE-2025-38494","CVE-2025-38495","CVE-2025-38498","CVE-2025-38556"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/centos7els/CLSA-2025-1757967705.html"}],"affected":[{"package":{"name":"bpftool","ecosystem":"TuxCare:CentOS:7","purl":"pkg:rpm/tuxcare/bpftool?distro=centos-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.10.0-1160.119.1.el7.tuxcare.els24"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1757967705.json"}},{"package":{"name":"kernel","ecosystem":"TuxCare:CentOS:7","purl":"pkg:rpm/tuxcare/kernel?distro=centos-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.10.0-1160.119.1.el7.tuxcare.els24"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1757967705.json"}},{"package":{"name":"kernel-debug","ecosystem":"TuxCare:CentOS:7","purl":"pkg:rpm/tuxcare/kernel-debug?distro=centos-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.10.0-1160.119.1.el7.tuxcare.els24"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1757967705.json"}},{"package":{"name":"kernel-debug-devel","ecosystem":"TuxCare:CentOS:7","purl":"pkg:rpm/tuxcare/kernel-debug-devel?distro=centos-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.10.0-1160.119.1.el7.tuxcare.els24"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1757967705.json"}},{"package":{"name":"kernel-devel","ecosystem":"TuxCare:CentOS:7","purl":"pkg:rpm/tuxcare/kernel-devel?distro=centos-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.10.0-1160.119.1.el7.tuxcare.els24"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1757967705.json"}},{"package":{"name":"kernel-headers","ecosystem":"TuxCare:CentOS:7","purl":"pkg:rpm/tuxcare/kernel-headers?distro=centos-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.10.0-1160.119.1.el7.tuxcare.els24"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1757967705.json"}},{"package":{"name":"kernel-tools","ecosystem":"TuxCare:CentOS:7","purl":"pkg:rpm/tuxcare/kernel-tools?distro=centos-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.10.0-1160.119.1.el7.tuxcare.els24"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1757967705.json"}},{"package":{"name":"kernel-tools-libs","ecosystem":"TuxCare:CentOS:7","purl":"pkg:rpm/tuxcare/kernel-tools-libs?distro=centos-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.10.0-1160.119.1.el7.tuxcare.els24"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1757967705.json"}},{"package":{"name":"kernel-tools-libs-devel","ecosystem":"TuxCare:CentOS:7","purl":"pkg:rpm/tuxcare/kernel-tools-libs-devel?distro=centos-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.10.0-1160.119.1.el7.tuxcare.els24"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1757967705.json"}},{"package":{"name":"perf","ecosystem":"TuxCare:CentOS:7","purl":"pkg:rpm/tuxcare/perf?distro=centos-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.10.0-1160.119.1.el7.tuxcare.els24"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1757967705.json"}},{"package":{"name":"python-perf","ecosystem":"TuxCare:CentOS:7","purl":"pkg:rpm/tuxcare/python-perf?distro=centos-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.10.0-1160.119.1.el7.tuxcare.els24"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1757967705.json"}}],"schema_version":"1.7.5"}