{"id":"CLSA-2026-1773046198","summary":"kernel: Fix of 31 CVEs","details":"- smb3: fix for slab out of bounds on mount to ksmbd {CVE-2025-38728}\n- netfilter: nft_set_pipapo: clamp maximum map bucket size to INT_MAX {CVE-2025-38201}\n- ALSA: usb-audio: Validate UAC3 power domain descriptors, too {CVE-2025-38729}\n- net: atm: fix /proc/net/atm/lec handling {CVE-2025-38180}\n- tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-\u003ecork. {CVE-2025-39913}\n- fs: writeback: fix use-after-free in __mark_inode_dirty() {CVE-2025-39866}\n- KVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost migration {CVE-2023-54296}\n- mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats {CVE-2025-68800}\n- net/sched: Enforce that teql can only be used as root qdisc {CVE-2026-23074}\n- net: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment() {CVE-2023-54114}\n- isofs: Prevent the use of too small fid {CVE-2025-37780}\n- media: dvb-frontends: avoid stack overflow warnings with clang {CVE-2024-27075}\n- ipv6: Fix infinite recursion in fib6_dump_done(). {CVE-2024-35886}\n- HID: core: do not bypass hid_hw_raw_request {CVE-2025-38494}\n- fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds {CVE-2025-40304}\n- HID: asus: fix UAF via HID_CLAIMED_INPUT validation {CVE-2025-39824}\n- cnic: Fix use-after-free bugs in cnic_delete_task {CVE-2025-39945}\n- ALSA: usb-audio: Fix potential overflow of PCM transfer buffer {CVE-2025-40269}\n- NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid {CVE-2025-68349}\n- pptp: ensure minimal skb length in pptp_xmit() {CVE-2025-38574}\n- ipv6: reject malicious packets in ipv6_gso_segment() {CVE-2025-38572}\n- fbdev: fix potential buffer overflow in do_register_framebuffer() {CVE-2025-38702}\n- i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path {CVE-2025-39911}\n- wifi: mwifiex: Initialize the chan_stats array to zero {CVE-2025-39891}\n- i40e: Fix potential invalid access when MAC list is empty {CVE-2025-39853}\n- media: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format() {CVE-2025-38680}\n- fs/buffer: fix use-after-free when call bh_read() helper {CVE-2025-39691}\n- fbdev: bitblit: bound-check glyph index in bit_putcs* {CVE-2025-40322}\n- usb: core: config: Prevent OOB read in SS endpoint companion parsing {CVE-2025-39760}\n- mptcp: fix race condition in mptcp_schedule_work() {CVE-2025-40258}\n- KVM: x86: Reset IRTE to host control if *new* route isn't postable {CVE-2025-37885}","modified":"2026-05-27T11:34:41.204820389Z","published":"2026-03-09T08:50:02Z","upstream":["CVE-2023-54114","CVE-2023-54296","CVE-2024-27075","CVE-2024-35886","CVE-2025-37780","CVE-2025-37885","CVE-2025-38180","CVE-2025-38201","CVE-2025-38494","CVE-2025-38572","CVE-2025-38574","CVE-2025-38680","CVE-2025-38702","CVE-2025-38728","CVE-2025-38729","CVE-2025-39691","CVE-2025-39760","CVE-2025-39824","CVE-2025-39853","CVE-2025-39866","CVE-2025-39891","CVE-2025-39911","CVE-2025-39913","CVE-2025-39945","CVE-2025-40258","CVE-2025-40269","CVE-2025-40304","CVE-2025-40322","CVE-2025-68349","CVE-2025-68800","CVE-2026-23074"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/centos-stream8els/CLSA-2026-1773046198.html"}],"affected":[{"package":{"name":"bpftool","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/bpftool?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-core","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-core?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-cross-headers","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-cross-headers?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-debug","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-debug-core","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug-core?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-debug-devel","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug-devel?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-debug-modules","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug-modules?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-debug-modules-extra","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug-modules-extra?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-debug-modules-internal","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-debug-modules-internal?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-devel","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-devel?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-headers","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-headers?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-ipaclones-internal","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-ipaclones-internal?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-modules","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-modules?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-modules-extra","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-modules-extra?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-modules-internal","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-modules-internal?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-selftests-internal","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-selftests-internal?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-tools","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-tools?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-tools-libs","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-tools-libs?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"kernel-tools-libs-devel","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/kernel-tools-libs-devel?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"perf","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/perf?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}},{"package":{"name":"python3-perf","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/python3-perf?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.18.0-553.6.1.el8_10.tuxcare.els16"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"}}],"schema_version":"1.7.5"}