ELSA-2025-17396

Опубликовано: 07 окт. 2025

Источник: oracle-oval

Платформа: Oracle Linux 10

Описание

ELSA-2025-17396: kernel security update (MODERATE)

[6.12.0-55.38.1.0.1_0.OL10]

nvme-pci: remove two deallocate zeroes quirks [Orabug: 37756650]
Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985782]
Disable UKI signing [Orabug: 36571828]
Update Oracle Linux certificates (Kevin Lyons)
Disable signing for aarch64 (Ilya Okomin)
Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
Update x509.genkey [Orabug: 24817676]
Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.5]
Remove upstream reference during boot (Kevin Lyons) [Orabug: 34729535]
Add Oracle Linux IMA certificates
Update module name for cryptographic module [Orabug: 37400433]

Обновленные пакеты

Oracle Linux 10

Oracle Linux aarch64

kernel-headers

6.12.0-55.38.1.0.1.el10_0

perf

6.12.0-55.38.1.0.1.el10_0

python3-perf

6.12.0-55.38.1.0.1.el10_0

rtla

6.12.0-55.38.1.0.1.el10_0

kernel-tools

6.12.0-55.38.1.0.1.el10_0

kernel-tools-libs

6.12.0-55.38.1.0.1.el10_0

kernel-cross-headers

6.12.0-55.38.1.0.1.el10_0

kernel-tools-libs-devel

6.12.0-55.38.1.0.1.el10_0

libperf

6.12.0-55.38.1.0.1.el10_0

Oracle Linux x86_64

kernel

6.12.0-55.38.1.0.1.el10_0

kernel-abi-stablelists

6.12.0-55.38.1.0.1.el10_0

kernel-core

6.12.0-55.38.1.0.1.el10_0

kernel-debug

6.12.0-55.38.1.0.1.el10_0

kernel-debug-core

6.12.0-55.38.1.0.1.el10_0

kernel-debug-modules

6.12.0-55.38.1.0.1.el10_0

kernel-debug-modules-core

6.12.0-55.38.1.0.1.el10_0

kernel-debug-modules-extra

6.12.0-55.38.1.0.1.el10_0

kernel-debug-uki-virt

6.12.0-55.38.1.0.1.el10_0

kernel-modules

6.12.0-55.38.1.0.1.el10_0

kernel-modules-core

6.12.0-55.38.1.0.1.el10_0

kernel-modules-extra

6.12.0-55.38.1.0.1.el10_0

kernel-tools

6.12.0-55.38.1.0.1.el10_0

kernel-tools-libs

6.12.0-55.38.1.0.1.el10_0

kernel-uki-virt

6.12.0-55.38.1.0.1.el10_0

kernel-uki-virt-addons

6.12.0-55.38.1.0.1.el10_0

kernel-debug-devel

6.12.0-55.38.1.0.1.el10_0

kernel-debug-devel-matched

6.12.0-55.38.1.0.1.el10_0

kernel-devel

6.12.0-55.38.1.0.1.el10_0

kernel-devel-matched

6.12.0-55.38.1.0.1.el10_0

kernel-doc

6.12.0-55.38.1.0.1.el10_0

kernel-headers

6.12.0-55.38.1.0.1.el10_0

perf

6.12.0-55.38.1.0.1.el10_0

python3-perf

6.12.0-55.38.1.0.1.el10_0

rtla

6.12.0-55.38.1.0.1.el10_0

kernel-cross-headers

6.12.0-55.38.1.0.1.el10_0

kernel-tools-libs-devel

6.12.0-55.38.1.0.1.el10_0

libperf

6.12.0-55.38.1.0.1.el10_0

Связанные CVE

CVE-2025-38718

CVE-2025-22026

Ссылки на источники

Связанные уязвимости

RLSA-2025:16919

rocky

3 месяца назад

Moderate: kernel security update

ELSA-2025-16919

oracle-oval

3 месяца назад

ELSA-2025-16919: kernel security update (MODERATE)

CVE-2025-22026

CVSS3: 5.5

ubuntu

8 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: nfsd: don't ignore the return code of svc_proc_register() Currently, nfsd_proc_stat_init() ignores the return value of svc_proc_register(). If the procfile creation fails, then the kernel will WARN when it tries to remove the entry later. Fix nfsd_proc_stat_init() to return the same type of pointer as svc_proc_register(), and fix up nfsd_net_init() to check that and fail the nfsd_net construction if it occurs. svc_proc_register() can fail if the dentry can't be allocated, or if an identical dentry already exists. The second case is pretty unlikely in the nfsd_net construction codepath, so if this happens, return -ENOMEM.

CVE-2025-22026

CVSS3: 7.1

redhat

8 месяцев назад

CVE-2025-22026

CVSS3: 5.5

nvd

8 месяцев назад