RHSA-2025:11298MediumCVSS 7.3
Red Hat Security Advisory: kernel security update
🔗 CVE IDs covered (8)
📋 Description
CVE-2022-49058 — kernel: cifs: potential buffer overflow in handling symlinks CVE-2022-49788 — kernel: misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram() CVE-2024-57980 — kernel: media: uvcvideo: Fix double free in error path CVE-2024-58002 — kernel: media: uvcvideo: Remove dangling pointers CVE-2025-21991 — kernel: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes CVE-2025-22004 — kernel: net: atm: fix use after free in lec_send() CVE-2025-23150 — kernel: ext4: fix off-by-one error in do_split CVE-2025-37738 — kernel: ext4: ignore xattrs past end
🔗 References (11)
- selfhttps://access.redhat.com/errata/RHSA-2025:11298
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2348254
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2348513
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2348599
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2356917
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2357142
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2363268
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2363305
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2363378
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11298.json