RLSA-2025:13589

Опубликовано: 08 сент. 2025

Источник: rocky

Оценка: Moderate

Описание

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)
kernel: ipv6: mcast: extend RCU protection in igmp6_send() (CVE-2025-21759)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)
kernel: ipv6: mcast: extend RCU protection in igmp6_send() (CVE-2025-21759)
kernel: can: peak_usb: fix use after free bugs (CVE-2021-47670)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)
kernel: ipv6: mcast: extend RCU protection in igmp6_send() (CVE-2025-21759)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)
kernel: ipv6: mcast: extend RCU protection in igmp6_send() (CVE-2025-21759)
kernel: can: peak_usb: fix use after free bugs (CVE-2021-47670)
kernel: mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (CVE-2025-38085)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)
kernel: ipv6: mcast: extend RCU protection in igmp6_send() (CVE-2025-21759)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)
kernel: ipv6: mcast: extend RCU protection in igmp6_send() (CVE-2025-21759)
kernel: can: peak_usb: fix use after free bugs (CVE-2021-47670)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)
kernel: ipv6: mcast: extend RCU protection in igmp6_send() (CVE-2025-21759)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: padata: fix UAF in padata_reorder (CVE-2025-21727)
kernel: ipv6: mcast: extend RCU protection in igmp6_send() (CVE-2025-21759)
kernel: can: peak_usb: fix use after free bugs (CVE-2021-47670)
kernel: mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (CVE-2025-38085)
kernel: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds (CVE-2025-38159)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 8

Наименование	Архитектура	Релиз	RPM
bpftool	x86_64	553.69.1.el8_10	bpftool-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel	x86_64	553.69.1.el8_10	kernel-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-abi-stablelists	noarch	553.69.1.el8_10	kernel-abi-stablelists-4.18.0-553.69.1.el8_10.noarch.rpm
kernel-core	x86_64	553.69.1.el8_10	kernel-core-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-cross-headers	x86_64	553.69.1.el8_10	kernel-cross-headers-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-debug	x86_64	553.69.1.el8_10	kernel-debug-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-debug-core	x86_64	553.69.1.el8_10	kernel-debug-core-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-debug-devel	x86_64	553.69.1.el8_10	kernel-debug-devel-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-debuginfo-common-x86_64	x86_64	553.69.1.el8_10	kernel-debuginfo-common-x86_64-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-debug-modules	x86_64	553.69.1.el8_10	kernel-debug-modules-4.18.0-553.69.1.el8_10.x86_64.rpm

Показывать по

Связанные CVE

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=2334551
Red Hat - 2334551
https://bugzilla.redhat.com/show_bug.cgi?id=2348516
Red Hat - 2348516
https://bugzilla.redhat.com/show_bug.cgi?id=2348596
Red Hat - 2348596
https://bugzilla.redhat.com/show_bug.cgi?id=2360786
Red Hat - 2360786
https://bugzilla.redhat.com/show_bug.cgi?id=2375304
Red Hat - 2375304
https://bugzilla.redhat.com/show_bug.cgi?id=2376064
Red Hat - 2376064

Связанные уязвимости

ELSA-2025-13589

oracle-oval

около 2 месяцев назад

ELSA-2025-13589: kernel security update (MODERATE)

CVE-2021-47670

CVSS3: 7.8

ubuntu

6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: can: peak_usb: fix use after free bugs After calling peak_usb_netif_rx_ni(skb), dereferencing skb is unsafe. Especially, the can_frame cf which aliases skb memory is accessed after the peak_usb_netif_rx_ni(). Reordering the lines solves the issue.

CVE-2021-47670

CVSS3: 7

redhat

6 месяцев назад

CVE-2021-47670

CVSS3: 7.8

nvd

6 месяцев назад

CVE-2021-47670

CVSS3: 7.8

debian

6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: c ...

exploitDog

RLSA-2025:13589

Описание

Затронутые продукты

Rocky Linux 8: обновленные пакеты

Связанные CVE

Ссылки на источники

Исправления

Связанные уязвимости