Red Hat Security Advisory: kernel security update
🔗 CVE IDs covered (406)
📋 Description
CVE-2022-48969 — kernel: xen-netfront: Fix NULL sring after live migration CVE-2022-48989 — kernel: fscache: Fix oops due to race with cookie_lru and use_cookie CVE-2022-49006 — kernel: tracing: Free buffers when a used dynamic event is removed CVE-2022-49014 — kernel: net: tun: Fix use-after-free in tun_detach() CVE-2022-49029 — kernel: hwmon: (ibmpex) Fix possible UAF when ibmpex_register_bmc() fails CVE-2022-49747 — kernel: erofs/zmap.c: Fix incorrect offset calculation CVE-2022-49778 — kernel: arm64/mm: fix incorrect file_map_count for non-leaf pmd/pud CVE-2022-49804 — kernel: s390: avoid using global register for current_stack_pointer CVE-2022-49815 — kernel: erofs: fix missing xas_retry() in fscache mode CVE-2022-50112 — kernel: rpmsg: qcom_smd: Fix refcount leak in qcom_smd_parse_edge CVE-2022-50121 — kernel: remoteproc: k3-r5: Fix refcount leak in k3_r5_cluster_of_init CVE-2022-50159 — kernel: of: check previous kernel's ima-kexec-buffer against memory bounds CVE-2022-50214 — kernel: coresight: Clear the connection field properly CVE-2022-50319 — kernel: Linux kernel: Denial of Service in coresight: trbe CVE-2022-50421 — kernel: rpmsg: char: Avoid double destroy of default endpoint CVE-2022-50491 — kernel: coresight: cti: Fix hang in cti_disable_hw() CVE-2022-50511 — kernel: lib/fonts: fix undefined behavior in bit shift for get_default_font CVE-2022-50614 — kernel: Kernel: Denial of Service in pci_endpoint_test due to zero-length DMA mapping CVE-2022-50743 — kernel: Linux kernel: Denial of Service in erofs due to memory leak CVE-2022-50811 — kernel: erofs: fix missing unmap if z_erofs_get_extent_compressedlen() fails CVE-2023-52672 — kernel: pipe: wakeup wr_wait after setting max_usage CVE-2023-52917 — kernel: ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir() CVE-2023-53066 — kernel: qed/qed_sriov: guard against NULL derefs from qed_iov_get_vf_info CVE-2023-53117 — kernel: fs: prevent out-of-bounds array speculation when closing a file descriptor CVE-2023-53196 — kernel: usb: dwc3: qcom: Fix potential memory leak CVE-2023-53260 — kernel: ovl: fix null pointer dereference in ovl_permission() CVE-2023-53261 — kernel: coresight: Fix memory leak in acpi_buffer->pointer CVE-2023-53287 — kernel: Linux kernel: Denial of Service in the cdns3 USB driver due to improper spin lock handling CVE-2023-53510 — kernel: scsi: ufs: core: Fix handling of lrbp->cmd CVE-2023-53519 — kernel: media: v4l2-mem2mem: add lock to protect parameter num_rdy CVE-2023-53555 — kernel: mm/damon/core: initialize damo_filter->list from damos_new_filter() CVE-2023-53568 — kernel: s390/zcrypt: don't leak memory if dev_set_name() fails CVE-2023-53595 — kernel: octeontx2-pf: mcs: Fix NULL pointer dereferences CVE-2023-53654 — kernel: octeontx2-af: Add validation before accessing cgx and lmac CVE-2023-53859 — kernel: s390/idle: mark arch_cpu_idle() noinstr CVE-2023-53989 — kernel: arm64: mm: fix VA-range sanity check CVE-2023-54089 — kernel: virtio_pmem: add the missing REQ_OP_WRITE for flush bio CVE-2023-54117 — kernel: s390/dcssblk: fix kernel crash with list_add corruption CVE-2023-54230 — kernel: amba: bus: fix refcount leak CVE-2023-54278 — kernel: s390/vmem: split pages when debug pagealloc is enabled CVE-2023-54313 — kernel: Linux kernel OverlayFS: Kernel crash via null pointer dereference in ovl_get_acl_rcu() CVE-2023-54322 — kernel: arm64: set __exception_irq_entry with __irq_entry as a default CVE-2024-27008 — kernel: drm: nv04: Fix out of bounds access CVE-2024-27398 — kernel: Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout CVE-2024-35891 — kernel: net: phy: micrel: Fix potential null pointer dereference CVE-2024-35933 — kernel: Bluetooth: btintel: Fix null ptr deref in btintel_read_version CVE-2024-35934 — kernel: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() CVE-2024-35963 — kernel: Bluetooth: hci_sock: Fix not validating setsockopt user input CVE-2024-35964 — kernel: Bluetooth: ISO: Fix not validating setsockopt user input CVE-2024-35965 — kernel: Bluetooth: L2CAP: Fix not validating setsockopt user input CVE-2024-35966 — kernel: Bluetooth: RFCOMM: Fix not validating setsockopt user input CVE-2024-35967 — kernel: Bluetooth: SCO: Fix not validating setsockopt user input CVE-2024-35978 — kernel: Bluetooth: Fix memory leak in hci_req_sync_complete() CVE-2024-36011 — kernel: Bluetooth: HCI: Fix potential null-ptr-deref CVE-2024-36012 — kernel: Bluetooth: msft: fix slab-use-after-free in msft_do_close() CVE-2024-36013 — kernel: Bluetooth: L2CAP: Fix slab-use-after-free in l2cap_connect() CVE-2024-36880 — kernel: Bluetooth: qca: add missing firmware sanity checks CVE-2024-36968 — kernel: Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init() CVE-2024-38541 — kernel: of: module: add buffer overflow check in of_modalias() CVE-2024-39500 — kernel: sock_map: avoid race between sock_map_close and sk_psock_put CVE-2024-40956 — kernel: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list CVE-2024-41010 — kernel: bpf: Fix too early release of tcx_entry CVE-2024-41062 — kernel: bluetooth/l2cap: sync sock recv cb and release CVE-2024-42094 — kernel: net/iucv: Avoid explicit cpumask var allocation on stack CVE-2024-42133 — kernel: Bluetooth: Ignore too large handle values in BIG CVE-2024-42253 — kernel: gpio: pca953x: fix pca953x_irq_bus_sync_unlock race CVE-2024-42265 — kernel: protect the fetch of ->fd[fd] in do_dup2() from mispredictions CVE-2024-42278 — kernel: ASoC: TAS2781: Fix tasdev_load_calibrated_data() CVE-2024-42291 — kernel: ice: Add a per-VF limit on number of FDIR filters CVE-2024-42294 — kernel: block: fix deadlock between sd_remove & sd_release CVE-2024-42302 — kernel: PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal CVE-2024-42304 — kernel: ext4: make sure the first directory block is not a hole CVE-2024-42305 — kernel: ext4: check dot and dotdot of dx_root before making dir indexed CVE-2024-42312 — kernel: sysctl: always initialize i_uid/i_gid CVE-2024-42315 — kernel: exfat: fix potential deadlock on __exfat_get_dentry_set CVE-2024-42316 — kernel: mm/mglru: fix div-by-zero in vmpressure_calc_level() CVE-2024-42321 — kernel: net: flow_dissector: use DEBUG_NET_WARN_ON_ONCE CVE-2024-43820 — kernel: dm-raid: Fix WARN_ON_ONCE check for sync_thread in raid_resume CVE-2024-43821 — kernel: scsi: lpfc: Fix a possible null pointer dereference CVE-2024-43823 — kernel: PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() CVE-2024-43828 — kernel: ext4: fix infinite loop when replaying fast_commit CVE-2024-43834 — kernel: xdp: fix invalid wait context of page_pool_destroy() CVE-2024-43846 — kernel: lib: objagg: Fix general protection fault CVE-2024-43853 — kernel: cgroup/cpuset: Prevent UAF in proc_cpuset_show() CVE-2024-43871 — kernel: devres: Fix memory leakage caused by driver API devm_free_percpu() CVE-2024-43873 — kernel: vhost/vsock: always initialize seqpacket_allow CVE-2024-43882 — kernel: exec: Fix ToCToU between perm check and set-uid/gid usage CVE-2024-43884 — kernel: Bluetooth: MGMT: Add error handling to pair_device() CVE-2024-43889 — kernel: padata: Fix possible divide-by-0 panic in padata_mt_helper() CVE-2024-43898 — kernel: ext4: sanity check for NULL pointer after ext4_force_shutdown CVE-2024-43910 — kernel: bpf: add missing check_func_arg_reg_off() to prevent out-of-bounds memory accesses CVE-2024-43914 — kernel: md/raid5: avoid BUG_ON() while continue reshape after reassembling CVE-2024-44931 — kernel: gpio: prevent potential speculation leaks in gpio_device_get_desc() CVE-2024-44932 — kernel: idpf: fix UAFs when destroying the queues CVE-2024-44934 — kernel: net: bridge: mcast: wait for previous gc cycles when removing port CVE-2024-44952 — kernel: driver core: Fix uevent_show() vs driver detach race CVE-2024-44958 — kernel: sched/smt: Fix unbalance sched_smt_present dec/inc CVE-2024-44964 — kernel: idpf: fix memory leaks and crashes while performing a soft reset CVE-2024-44975 — kernel: cgroup/cpuset: fix panic caused by partcmd_update CVE-2024-44987 — kernel: ipv6: prevent UAF in ip6_send_skb() CVE-2024-44989 — kernel: bonding: fix xfrm real_dev null pointer dereference CVE-2024-45000 — kernel: fs/netfs/fscache_cookie: add missing "n_accesses" check CVE-2024-45009 — kernel: mptcp: pm: only decrement add_addr_accepted for MPJ req CVE-2024-45010 — kernel: mptcp: pm: only mark 'subflow' endp as available CVE-2024-45016 — kernel: netem: fix return value if duplicate enqueue fails CVE-2024-45022 — kernel: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 CVE-2024-46673 — kernel: scsi: aacraid: Fix double-free on probe failure CVE-2024-46675 — kernel: usb: dwc3: core: Prevent USB core invalid event buffer address access CVE-2024-46711 — kernel: mptcp: pm: fix ID 0 endp usage after multiple re-creations CVE-2024-46722 — kernel: drm/amdgpu: fix mc_data out-of-bounds read warning CVE-2024-46723 — kernel: drm/amdgpu: fix ucode out-of-bounds read warning CVE-2024-46724 — kernel: drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number CVE-2024-46725 — kernel: drm/amdgpu: Fix out-of-bounds write warning CVE-2024-46743 — kernel: of/irq: Prevent device address out-of-bounds read in interrupt map walk CVE-2024-46745 — kernel: Input: uinput - reject requests with unreasonable number of slots CVE-2024-46747 — kernel: HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup CVE-2024-46750 — kernel: PCI: Add missing bridge lock to pci_bus_lock() CVE-2024-46754 — kernel: bpf: Remove tst_run from lwt_seg6local_prog_ops. CVE-2024-46756 — kernel: hwmon: (w83627ehf) Fix underflows seen when writing limit attributes CVE-2024-46758 — kernel: hwmon: (lm95234) Fix underflows seen when writing limit attributes CVE-2024-46759 — kernel: hwmon: (adc128d818) Fix underflows seen when writing limit attributes CVE-2024-46761 — kernel: pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv CVE-2024-46783 — kernel: tcp_bpf: fix return value of tcp_bpf_sendmsg() CVE-2024-46786 — kernel: fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF CVE-2024-46787 — kernel: userfaultfd: fix checks for huge PMDs CVE-2024-46800 — kernel: sch/netem: fix use after free in netem_dequeue CVE-2024-46805 — kernel: drm/amdgpu: fix the waring dereferencing hive CVE-2024-46806 — kernel: drm/amdgpu: Fix the warning division or modulo by zero CVE-2024-46807 — kernel: drm/amd/amdgpu: Check tbo resource pointer CVE-2024-46819 — kernel: drm/amdgpu: the warning dereferencing obj for nbio_v7_4 CVE-2024-46820 — kernel: drm/amdgpu/vcn: remove irq disabling in vcn 5 suspend CVE-2024-46822 — kernel: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry CVE-2024-46828 — kernel: sched: sch_cake: fix bulk flow accounting logic for host fairness CVE-2024-46835 — kernel: drm/amdgpu: Fix smatch static checker warning CVE-2024-46839 — kernel: workqueue: Improve scalability of workqueue watchdog touch CVE-2024-46853 — kernel: spi: nxp-fspi: fix the KASAN report out-of-bounds bug CVE-2024-46864 — kernel: x86/hyperv: fix kexec crash due to VP assist page corruption CVE-2024-46871 — kernel: drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX CVE-2024-47141 — kernel: pinmux: Use sequential access to access desc->pinmux data CVE-2024-47660 — kernel: fsnotify: clear PARENT_WATCHED flags lazily CVE-2024-47668 — kernel: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() CVE-2024-47678 — kernel: icmp: change the order of rate limits CVE-2024-47685 — kernel: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() CVE-2024-47687 — kernel: vdpa/mlx5: Fix invalid mr resource destroy CVE-2024-47692 — kernel: nfsd: return -EINVAL when namelen is 0 CVE-2024-47700 — kernel: ext4: check stripe size compatibility on remount as well CVE-2024-47703 — kernel: bpf, lsm: Add check for BPF LSM return value CVE-2024-47705 — kernel: block: fix potential invalid pointer dereference in blk_add_partition CVE-2024-47706 — kernel: block, bfq: fix possible UAF for bfqq->bic with merge chain CVE-2024-47710 — kernel: sock_map: Add a cond_resched() in sock_hash_free() CVE-2024-47713 — kernel: wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() CVE-2024-47715 — kernel: wifi: mt76: mt7915: fix oops on non-dbdc mt7986 CVE-2024-47718 — kernel: wifi: rtw88: always wait for both firmware loading attempts CVE-2024-47719 — kernel: iommufd: Protect against overflow of ALIGN() during iova allocation CVE-2024-47737 — kernel: nfsd: call cache_put if xdr_reserve_space returns NULL CVE-2024-47738 — kernel: wifi: mac80211: don't use rate mask for offchannel TX either CVE-2024-47739 — kernel: padata: use integer wrap around to prevent deadlock on seq_nr overflow CVE-2024-47745 — kernel: mm: call the security_mmap_file() LSM hook in remap_file_pages() CVE-2024-47748 — kernel: vhost_vdpa: assign irq bypass producer token correctly CVE-2024-48873 — kernel: wifi: rtw89: check return value of ieee80211_probereq_get() for RNR CVE-2024-49569 — kernel: nvme-rdma: unquiesce admin_q before destroy it CVE-2024-49851 — kernel: tpm: Clean up TPM space after command failure CVE-2024-49856 — kernel: x86/sgx: Fix deadlock in SGX NUMA node search CVE-2024-49860 — kernel: ACPI: sysfs: validate return type of _STR method CVE-2024-49861 — kernel: bpf: Fix helper writes to read-only maps CVE-2024-49862 — kernel: powercap: intel_rapl: Fix off by one in get_rpi() CVE-2024-49870 — kernel: cachefiles: fix dentry leak in cachefiles_open_file() CVE-2024-49875 — kernel: nfsd: map the EBADMSG to nfserr_io to avoid warning CVE-2024-49878 — kernel: resource: fix region_intersects() vs add_memory_driver_managed() CVE-2024-49881 — kernel: ext4: update orig_path in ext4_find_extent() CVE-2024-49882 — kernel: ext4: fix double brelse() the buffer of the extents path CVE-2024-49883 — kernel: ext4: aovid use-after-free in ext4_ext_insert_extent() CVE-2024-49884 — kernel: ext4: fix slab-use-after-free in ext4_split_extent_at() CVE-2024-49885 — kernel: mm, slub: avoid zeroing kmalloc redzone CVE-2024-49886 — kernel: platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug CVE-2024-49889 — kernel: ext4: avoid use-after-free in ext4_ext_show_leaf() CVE-2024-49904 — kernel: drm/amdgpu: add list empty check to avoid null pointer issue CVE-2024-49927 — kernel: x86/ioapic: Handle allocation failures gracefully CVE-2024-49928 — kernel: wifi: rtw89: avoid reading out of bounds when loading TX power FW elements CVE-2024-49929 — kernel: wifi: iwlwifi: mvm: avoid NULL pointer dereference CVE-2024-49930 — kernel: wifi: ath11k: fix array out-of-bound access in SoC stats CVE-2024-49933 — kernel: blk_iocost: fix more out of bound shifts CVE-2024-49934 — kernel: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name CVE-2024-49935 — kernel: ACPI: PAD: fix crash in exit_round_robin() CVE-2024-49937 — kernel: wifi: cfg80211: Set correct chandef when starting CAC CVE-2024-49938 — kernel: wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit CVE-2024-49939 — kernel: wifi: rtw89: avoid to add interface to list twice when SER CVE-2024-49946 — kernel: ppp: do not assume bh is held in ppp_channel_bridge_input() CVE-2024-49948 — kernel: net: add more sanity checks to qdisc_pkt_len_init() CVE-2024-49950 — kernel: Bluetooth: L2CAP: Fix uaf in l2cap_connect CVE-2024-49951 — kernel: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed CVE-2024-49954 — kernel: static_call: Replace pointless WARN_ON() in static_call_module_notify() CVE-2024-49959 — kernel: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error CVE-2024-49960 — kernel: ext4: fix timer use-after-free on failed mount CVE-2024-49962 — kernel: ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() CVE-2024-49967 — kernel: ext4: no need to continue when the number of entries is 1 CVE-2024-49968 — kernel: ext4: filesystems without casefold feature cannot be mounted with siphash CVE-2024-49971 — kernel: drm/amd/display: Increase array size of dummy_boolean CVE-2024-49973 — kernel: r8169: add tally counter fields added with RTL8125 CVE-2024-49974 — kernel: NFSD: Limit the number of concurrent async COPY operations CVE-2024-49975 — kernel: uprobes: fix kernel info leak via "[uprobes]" vma CVE-2024-49977 — kernel: net: stmmac: Fix zero-division error when disabling tc cbs CVE-2024-49983 — kernel: ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free CVE-2024-49991 — kernel: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer CVE-2024-49993 — kernel: iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count CVE-2024-49994 — kernel: block: fix integer overflow in BLKSECDISCARD CVE-2024-49995 — kernel: tipc: guard against string buffer overrun CVE-2024-49999 — kernel: afs: Fix the setting of the server responding flag CVE-2024-50002 — kernel: static_call: Handle module init failure correctly in static_call_del_module() CVE-2024-50006 — kernel: ext4: fix i_data_sem unlock order in ext4_ind_migrate() CVE-2024-50008 — kernel: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext() CVE-2024-50009 — kernel: cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value CVE-2024-50013 — kernel: exfat: fix memory leak in exfat_load_bitmap() CVE-2024-50014 — kernel: ext4: fix access to uninitialised lock in fc replay path CVE-2024-50015 — kernel: ext4: dax: fix overflowing extents beyond inode size when partially writing CVE-2024-50018 — kernel: net: napi: Prevent overflow of napi_defer_hard_irqs CVE-2024-50019 — kernel: kthread: unpark only parked kthread CVE-2024-50022 — kernel: device-dax: correct pgoff align in dax_set_mapping() CVE-2024-50023 — kernel: net: phy: Remove LED entry from LEDs list on unregister CVE-2024-50024 — kernel: net: Fix an unsafe loop on the list CVE-2024-50027 — kernel: thermal: core: Free tzp copy along with the thermal zone CVE-2024-50028 — kernel: thermal: core: Reference count the zone in thermal_zone_get_by_id() CVE-2024-50029 — kernel: Bluetooth: hci_conn: Fix UAF in hci_enhanced_setup_sync CVE-2024-50033 — kernel: slip: make slhc_remember() more robust against malicious packets CVE-2024-50035 — kernel: ppp: fix ppp_async_encode() illegal access CVE-2024-50038 — kernel: netfilter: xtables: avoid NFPROTO_UNSPEC where needed CVE-2024-50039 — kernel: net/sched: accept TCA_STAB only for root qdisc CVE-2024-50044 — kernel: Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change CVE-2024-50046 — kernel: NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies() CVE-2024-50047 — kernel: smb: client: fix UAF in async decryption CVE-2024-50055 — kernel: driver core: bus: Fix double free in driver API bus_register() CVE-2024-50057 — kernel: usb: typec: tipd: Free IRQ only if it was requested before CVE-2024-50058 — kernel: serial: protect uart_port_dtr_rts() in uart_shutdown() too CVE-2024-50064 — kernel: zram: free secondary algorithms names CVE-2024-50067 — kernel: uprobe: avoid out-of-bounds memory access of fetching args CVE-2024-50073 — kernel: tty: n_gsm: Fix use-after-free in gsm_cleanup_mux CVE-2024-50074 — kernel: parport: Proper fix for array out-of-bounds access CVE-2024-50075 — kernel: xhci: tegra: fix checked USB2 port number CVE-2024-50077 — kernel: Bluetooth: ISO: Fix multiple init when debugfs is disabled CVE-2024-50078 — kernel: Bluetooth: Call iso_exit() on module unload CVE-2024-50081 — kernel: blk-mq: setup queue ->tag_set before initializing hctx CVE-2024-50082 — kernel: blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race CVE-2024-50093 — kernel: thermal: intel: int340x: processor: Fix warning during module unload CVE-2024-50101 — kernel: iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices CVE-2024-50102 — kernel: x86: fix user address masking non-canonical speculation issue CVE-2024-50106 — kernel: nfsd: fix race between laundromat and free_stateid CVE-2024-50107 — kernel: platform/x86/intel/pmc: Fix pmc_core_iounmap to call iounmap for valid addresses CVE-2024-50109 — kernel: md/raid10: fix null ptr dereference in raid10_size() CVE-2024-50117 — kernel: drm/amd: Guard against bad data for ATIF ACPI method CVE-2024-50120 — kernel: smb: client: Handle kstrdup failures for passwords CVE-2024-50121 — kernel: nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net CVE-2024-50126 — kernel: net: sched: use RCU read-side critical section in taprio_dump() CVE-2024-50127 — kernel: net: sched: fix use-after-free in taprio_change() CVE-2024-50128 — kernel: net: wwan: fix global oob in wwan_rtnl_policy CVE-2024-50130 — kernel: netfilter: bpf: must hold reference on net namespace CVE-2024-50141 — kernel: ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context CVE-2024-50143 — kernel: udf: fix uninit-value use in udf_get_fileshortad CVE-2024-50150 — kernel: usb: typec: altmode should keep reference to parent CVE-2024-50151 — kernel: smb: client: fix OOBs when building SMB2_IOCTL request CVE-2024-50152 — kernel: smb: client: fix possible double free in smb2_set_ea() CVE-2024-50153 — kernel: scsi: target: core: Fix null-ptr-deref in target_alloc_device() CVE-2024-50162 — kernel: bpf: devmap: provide rxq after redirect CVE-2024-50163 — kernel: bpf: Make sure internal and UAPI bpf_redirect flags don't overlap CVE-2024-50169 — kernel: vsock: Update rx_bytes on read_skb() CVE-2024-50182 — kernel: secretmem: disable memfd_secret() if arch cannot set direct map CVE-2024-50186 — kernel: net: explicitly clear the sk pointer, when pf->create fails CVE-2024-50189 — kernel: HID: amd_sfh: Switch to device-managed dmam_alloc_coherent() CVE-2024-50191 — kernel: ext4: don't set SB_RDONLY after filesystem errors CVE-2024-50197 — kernel: pinctrl: intel: platform: fix error path in device_for_each_child_node() CVE-2024-50199 — kernel: mm/swapfile: skip HugeTLB pages for unuse_vma CVE-2024-50200 — kernel: maple_tree: correct tree corruption on spanning store CVE-2024-50201 — kernel: drm/radeon: Fix encoder->possible_clones CVE-2024-50215 — kernel: nvmet-auth: assign dh_key to NULL after kfree_sensitive CVE-2024-50216 — kernel: xfs: fix finding a last resort AG in xfs_filestream_pick_ag CVE-2024-50219 — kernel: mm/page_alloc: let GFP_ATOMIC order-0 allocs access highatomic reserves CVE-2024-50228 — kernel: mm: shmem: fix data-race in shmem_getattr() CVE-2024-50235 — kernel: wifi: cfg80211: clear wdev->cqm_config pointer on free CVE-2024-50236 — kernel: wifi: ath10k: Fix memory leak in management tx CVE-2024-50237 — kernel: wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower CVE-2024-50256 — kernel: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() CVE-2024-50261 — kernel: macsec: Fix use-after-free while sending the offloading packet CVE-2024-50271 — kernel: signal: restore the override_rlimit logic CVE-2024-50272 — kernel: filemap: Fix bounds checking in filemap_read() CVE-2024-50278 — kernel: dm cache: fix potential out-of-bounds access on the first resume CVE-2024-50282 — kernel: drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() CVE-2024-50299 — kernel: sctp: properly validate chunk size in sctp_sf_ootb() CVE-2024-50304 — kernel: ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_find() CVE-2024-53042 — kernel: ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow() CVE-2024-53044 — kernel: net/sched: sch_api: fix xa_insert() error path in tcf_block_get_ext() CVE-2024-53047 — kernel: mptcp: init: protect sched with rcu_read_lock CVE-2024-53050 — kernel: drm/i915/hdcp: Add encoder check in hdcp2_get_capability CVE-2024-53051 — kernel: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability CVE-2024-53055 — kernel: wifi: iwlwifi: mvm: fix 6 GHz scan construction CVE-2024-53057 — kernel: net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT CVE-2024-53059 — kernel: wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() CVE-2024-53060 — kernel: drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported CVE-2024-53070 — kernel: usb: dwc3: fix fault at system suspend if device was already runtime suspended CVE-2024-53072 — kernel: platform/x86/amd/pmc: Detect when STB is not available CVE-2024-53074 — kernel: wifi: iwlwifi: mvm: don't leak a link on AP removal CVE-2024-53082 — kernel: virtio_net: Add hash_key_length check CVE-2024-53085 — kernel: tpm: Lock TPM chip in tpm_pm_suspend() first CVE-2024-53091 — kernel: bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx CVE-2024-53093 — kernel: nvme-multipath: defer partition scanning CVE-2024-53095 — kernel: smb: client: Fix use-after-free of network namespace. CVE-2024-53096 — kernel: mm: resolve faulty mmap_region() error path behaviour CVE-2024-53097 — kernel: mm: krealloc: Fix MTE false alarm in __do_krealloc CVE-2024-53103 — kernel: hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer CVE-2024-53105 — kernel: mm: page_alloc: move mlocked flag clearance into free_pages_prepare() CVE-2024-53110 — kernel: vp_vdpa: fix id_table array not null terminated error CVE-2024-53117 — kernel: virtio/vsock: Improve MSG_ZEROCOPY error handling CVE-2024-53118 — kernel: vsock: Fix sk_error_queue memory leak CVE-2024-53120 — kernel: net/mlx5e: CT: Fix null-ptr-deref in add rule err flow CVE-2024-53121 — kernel: net/mlx5: fs, lock FTE when checking if active CVE-2024-53123 — kernel: mptcp: error out earlier on disconnect CVE-2024-53124 — kernel: net: fix data-races around sk->sk_forward_alloc CVE-2024-53134 — kernel: pmdomain: imx93-blk-ctrl: correct remove path CVE-2024-53136 — kernel: mm: revert "mm: shmem: fix data-race in shmem_getattr()" CVE-2024-53141 — kernel: netfilter: ipset: add missing range check in bitmap_ip_uadt CVE-2024-53142 — kernel: initramfs: avoid filename buffer overrun CVE-2024-53146 — kernel: NFSD: Prevent a potential integer overflow CVE-2024-53152 — kernel: PCI: tegra194: Move controller cleanups to pex_ep_event_pex_rst_deassert() CVE-2024-53156 — kernel: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() CVE-2024-53160 — kernel: rcu/kvfree: Fix data-race in mod_timer / kvfree_call_rcu CVE-2024-53161 — kernel: EDAC/bluefield: Fix potential integer overflow CVE-2024-53164 — kernel: net: sched: fix ordering of qlen adjustment CVE-2024-53166 — kernel: block, bfq: fix bfqq uaf in bfq_limit_depth() CVE-2024-53173 — kernel: NFSv4.0: Fix a use-after-free problem in the asynchronous open() CVE-2024-53174 — kernel: SUNRPC: make sure cache entry active before cache_show CVE-2024-53176 — kernel: smb: During unmount, ensure all cached dir instances drop their dentry CVE-2024-53190 — kernel: wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures CVE-2024-53194 — kernel: PCI: Fix use-after-free of slot->bus on hot remove CVE-2024-53203 — kernel: usb: typec: fix potential array underflow in ucsi_ccg_sync_control() CVE-2024-53208 — kernel: Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync CVE-2024-53213 — kernel: net: usb: lan78xx: Fix double free issue with interrupt buffer allocation CVE-2024-53216 — kernel: nfsd: release svc_expkey/svc_export with rcu_work CVE-2024-53222 — kernel: zram: fix NULL pointer in comp_algorithm_show() CVE-2024-53224 — kernel: RDMA/mlx5: Move events notifier registration to be after device registration CVE-2024-53232 — kernel: iommu/s390: Implement blocking domain CVE-2024-53237 — kernel: Bluetooth: fix use-after-free in device_for_each_child() CVE-2024-53681 — kernel: nvmet: Don't overflow subsysnqn CVE-2024-54460 — kernel: Bluetooth: iso: Fix circular lock in iso_listen_bis CVE-2024-54680 — kernel: smb: client: fix TCP timers deadlock after rmmod CVE-2024-56535 — kernel: wifi: rtw89: coex: check NULL return of kmalloc in btc_fw_set_monreg() CVE-2024-56544 — kernel: udmabuf: change folios array from kmalloc to kvmalloc CVE-2024-56551 — kernel: drm/amdgpu: fix usage slab after free CVE-2024-56558 — kernel: nfsd: make sure exp active before svc_export_show CVE-2024-56562 — kernel: i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() CVE-2024-56566 — kernel: mm/slub: Avoid list corruption when removing a slab from the full list CVE-2024-56570 — kernel: ovl: Filter invalid inodes with missing lookup function CVE-2024-56590 — kernel: Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet CVE-2024-56591 — kernel: Bluetooth: hci_conn: Use disable_delayed_work_sync CVE-2024-56600 — kernel: net: inet6: do not leave a dangling sk pointer in inet6_create() CVE-2024-56601 — kernel: net: inet: do not leave a dangling sk pointer in inet_create() CVE-2024-56602 — kernel: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() CVE-2024-56604 — kernel: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() CVE-2024-56605 — kernel: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() CVE-2024-56611 — kernel: mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM CVE-2024-56614 — kernel: xsk: fix OOB map writes when deleting elements CVE-2024-56616 — kernel: drm/dp_mst: Fix MST sideband message body length check CVE-2024-56623 — kernel: scsi: qla2xxx: Fix use after free on unload CVE-2024-56631 — kernel: scsi: sg: Fix slab-use-after-free read in sg_release() CVE-2024-56642 — kernel: tipc: Fix use-after-free of kernel socket in cleanup_bearer(). CVE-2024-56644 — kernel: net/ipv6: release expired exception dst cached in socket CVE-2024-56647 — kernel: net: Fix icmp host relookup triggering ip_rt_bug CVE-2024-56653 — kernel: Bluetooth: btmtk: avoid UAF in btmtk_process_coredump CVE-2024-56654 — kernel: Bluetooth: hci_event: Fix using rcu_read(un)lock while iterating CVE-2024-56663 — kernel: wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one CVE-2024-56664 — kernel: bpf, sockmap: Fix race between element replace and close() CVE-2024-56667 — kernel: drm/i915: Fix NULL pointer dereference in capture_engine CVE-2024-56688 — kernel: sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport CVE-2024-56693 — kernel: brd: defer automatic disk creation until module initialization succeeds CVE-2024-56729 — kernel: smb: Initialize cfid->tcon before performing network ops CVE-2024-56757 — kernel: Bluetooth: btusb: mediatek: add intf release flow when usb disconnect CVE-2024-56760 — kernel: PCI/MSI: Handle lack of irqdomain gracefully CVE-2024-56779 — kernel: nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur CVE-2024-56783 — kernel: netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level CVE-2024-57798 — kernel: drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() CVE-2024-57809 — kernel: PCI: imx6: Fix suspend/resume support on i.MX6QDL CVE-2024-57843 — kernel: virtio-net: fix overflow inside virtnet_rq_alloc CVE-2024-57852 — kernel: firmware: qcom: scm: smc: Handle missing SCM device CVE-2024-57879 — kernel: Bluetooth: iso: Always release hdev at the end of iso_listen_bis CVE-2024-57884 — kernel: mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() CVE-2024-57885 — kernel: mm/kmemleak: fix sleeping function called from invalid context at print message CVE-2024-57888 — kernel: workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker CVE-2024-57890 — kernel: RDMA/uverbs: Prevent integer overflow issue CVE-2024-57894 — kernel: Bluetooth: hci_core: Fix sleeping function called from invalid context CVE-2024-57898 — kernel: wifi: cfg80211: clear link ID from bitmap during link delete after clean up CVE-2024-57903 — kernel: net: restrict SO_REUSEPORT to inet sockets CVE-2024-57929 — kernel: dm array: fix releasing a faulty array block twice in dm_array_cursor_end CVE-2024-57931 — kernel: selinux: ignore unknown extended permissions CVE-2024-57940 — kernel: exfat: fix the infinite loop in exfat_readdir() CVE-2024-58009 — kernel: Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc CVE-2024-58064 — kernel: wifi: cfg80211: tests: Fix potential NULL dereference in test_cfg80211_parse_colocated_ap() CVE-2024-58099 — kernel: vmxnet3: Fix packet corruption in vmxnet3_xdp_xmit_frame CVE-2025-1272 — kernel: Secure Boot does not automatically enable kernel lockdown CVE-2025-21646 — kernel: afs: Fix the maximum cell name length CVE-2025-21663 — kernel: net: stmmac: dwmac-tegra: Read iommu stream id from device tree CVE-2025-21666 — kernel: vsock: prevent null-ptr-deref in vsock*[has_data|has_space] CVE-2025-21668 — kernel: pmdomain: imx8mp-blk-ctrl: add missing loop break condition CVE-2025-21669 — kernel: vsock/virtio: discard packets if the transport changes CVE-2025-21689 — kernel: USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb() CVE-2025-21694 — kernel: fs/proc: fix softlockup in __read_vmcore (part 2) CVE-2025-21888 — kernel: RDMA/mlx5: Fix a WARN during dereg_mr for DM type CVE-2025-22087 — kernel: bpf: Fix array bounds error with may_goto CVE-2025-68179 — kernel: Linux kernel (s390): Denial of service and data corruption due to improper page table updates CVE-2025-71151 — kernel: cifs: Fix memory and information leak in smb3_reconfigure()
🔗 References (347)
- selfhttps://access.redhat.com/errata/RHSA-2025:6966
- externalhttps://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.6_release_notes/index
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2278283
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2280464
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2281340
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2281687
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2281827
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2281829
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2281879
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2281905
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2281907
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2281909
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2281912
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2281914
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2282952
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2282955
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2282959
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2284280
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2292324
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2293458
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2297472
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2297540
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2298411
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2300437
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2301498
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2307840
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2307862
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2307871
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2307883
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2307887
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2307888
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2307889
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2307891
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2309783
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2309789
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2309795
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2309838
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2309850
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2309852
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2309863
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2311706
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2311707
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2311713
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2311719
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2312061
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2312063
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2312108
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313053
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313054
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313055
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313056
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313091
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313093
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313095
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313098
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313102
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313104
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313106
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313107
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313109
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313131
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313134
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313135
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313148
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315156
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315157
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315158
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315171
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315172
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315174
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315180
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315187
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315191
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315205
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315216
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2317581
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2317584
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2317601
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320168
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320169
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320173
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320187
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320200
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320209
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320210
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320212
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320213
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320214
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320220
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320225
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320235
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320238
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320239
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320240
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320242
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320245
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320246
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320248
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320249
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320268
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320274
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320425
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320432
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320443
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320454
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320459
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320462
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320468
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320471
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320475
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320480
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320481
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320484
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320486
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320488
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320489
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320497
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320500
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320501
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320502
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320503
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320506
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320509
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320510
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320515
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320520
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320527
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320529
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320531
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320541
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320543
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320544
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320546
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320547
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320549
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320550
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320552
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320554
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320556
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320557
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320559
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320562
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320563
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320565
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320570
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320571
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320572
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320573
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320574
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320576
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320577
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320586
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320587
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320589
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320590
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320594
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320596
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320598
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320601
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320602
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320610
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320611
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320612
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320615
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320620
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320625
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320629
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320635
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320636
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320658
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320670
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320693
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320707
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2320781
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2322072
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2322303
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2322308
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2322310
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2322312
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2322316
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2322320
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2322323
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323905
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323909
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323918
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323924
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323927
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323929
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323932
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323933
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323938
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323945
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323947
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323950
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2323953
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324317
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324320
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324321
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324324
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324325
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324410
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324413
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324419
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324423
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324548
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324566
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324578
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324599
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324610
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324617
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324645
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324650
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324853
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324865
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324869
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324874
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324875
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324889
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324897
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324899
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2324901
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327174
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327182
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327189
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327190
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327194
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327332
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327335
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327338
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327343
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327344
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327349
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327358
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327361
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327362
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327365
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327369
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327370
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327373
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327381
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327383
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327888
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327890
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2327893
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2328791
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2328792
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2329818
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2329919
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2329927
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2329928
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2329929
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2329930
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2329935
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2329936
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2329937
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2330346
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2330357
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2330765
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2333973
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2333974
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2333976
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2333977
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2333982
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334350
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334367
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334373
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334384
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334386
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334388
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334392
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334398
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334399
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334408
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334409
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334419
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334426
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334430
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334432
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334441
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334458
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334461
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334463
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334469
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334472
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334479
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334483
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334486
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334495
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334501
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334503
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334528
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334538
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334539
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334542
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334551
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334561
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334562
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334563
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334573
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334575
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334577
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334667
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334683
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2334809
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2335899
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2335906
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2336546
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2336550
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2337104
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2337113
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2337117
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2337118
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2337136
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2337148
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2337152
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2337328
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2337333
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2338195
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2338197
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2338199
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2338204
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2338208
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2338214
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2338830
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2338858
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2339126
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2339140
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2339143
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2343169
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2343173
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2343183
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2344683
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2345243
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2345615
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2362882
- externalhttps://issues.redhat.com/browse/RHEL-12439
- externalhttps://issues.redhat.com/browse/RHEL-28791
- externalhttps://issues.redhat.com/browse/RHEL-58641
- externalhttps://issues.redhat.com/browse/RHEL-60028
- externalhttps://issues.redhat.com/browse/RHEL-61203
- externalhttps://issues.redhat.com/browse/RHEL-62339
- externalhttps://issues.redhat.com/browse/RHEL-67304
- externalhttps://issues.redhat.com/browse/RHEL-71541
- externalhttps://issues.redhat.com/browse/RHEL-8810
- externalhttps://issues.redhat.com/browse/RHEL-9279
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_6966.json