Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:14420

Опубликовано: 04 окт. 2025
Источник: rocky
Оценка: Important

Описание

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: udp: Fix memory accounting leak. (CVE-2025-22058)

  • kernel: net_sched: ets: Fix double list add in class with netem as child qdisc (CVE-2025-37914)

  • kernel: ice: fix eswitch code memory leak in reset scenario (CVE-2025-38417)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 9

НаименованиеАрхитектураРелизRPM
kernelx86_64570.37.1.el9_6kernel-5.14.0-570.37.1.el9_6.x86_64.rpm
kernel-abi-stablelistsnoarch570.37.1.el9_6kernel-abi-stablelists-5.14.0-570.37.1.el9_6.noarch.rpm
kernel-abi-stablelistsnoarch570.37.1.el9_6kernel-abi-stablelists-5.14.0-570.37.1.el9_6.noarch.rpm
kernel-abi-stablelistsnoarch570.37.1.el9_6kernel-abi-stablelists-5.14.0-570.37.1.el9_6.noarch.rpm
kernel-abi-stablelistsnoarch570.37.1.el9_6kernel-abi-stablelists-5.14.0-570.37.1.el9_6.noarch.rpm
kernel-corex86_64570.37.1.el9_6kernel-core-5.14.0-570.37.1.el9_6.x86_64.rpm
kernel-debugx86_64570.37.1.el9_6kernel-debug-5.14.0-570.37.1.el9_6.x86_64.rpm
kernel-debug-corex86_64570.37.1.el9_6kernel-debug-core-5.14.0-570.37.1.el9_6.x86_64.rpm
kernel-debug-modulesx86_64570.37.1.el9_6kernel-debug-modules-5.14.0-570.37.1.el9_6.x86_64.rpm
kernel-debug-modules-corex86_64570.37.1.el9_6kernel-debug-modules-core-5.14.0-570.37.1.el9_6.x86_64.rpm

Показывать по

Связанные CVE

CVE-2025-22058
CVE-2025-37914
CVE-2025-38417

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2025-14420

oracle-oval
4 месяца назад

ELSA-2025-14420: kernel security update (IMPORTANT)

rocky логотип

RLSA-2025:14510

rocky
3 месяца назад

Important: kernel security update

oracle-oval логотип

ELSA-2025-14510

oracle-oval
4 месяца назад

ELSA-2025-14510: kernel security update (IMPORTANT)

ubuntu логотип

CVE-2025-22058

CVSS3: 5.5
ubuntu
8 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: udp: Fix memory accounting leak. Matt Dowling reported a weird UDP memory usage issue. Under normal operation, the UDP memory usage reported in /proc/net/sockstat remains close to zero. However, it occasionally spiked to 524,288 pages and never dropped. Moreover, the value doubled when the application was terminated. Finally, it caused intermittent packet drops. We can reproduce the issue with the script below [0]: 1. /proc/net/sockstat reports 0 pages # cat /proc/net/sockstat | grep UDP: UDP: inuse 1 mem 0 2. Run the script till the report reaches 524,288 # python3 test.py & sleep 5 # cat /proc/net/sockstat | grep UDP: UDP: inuse 3 mem 524288 <-- (INT_MAX + 1) >> PAGE_SHIFT 3. Kill the socket and confirm the number never drops # pkill python3 && sleep 5 # cat /proc/net/sockstat | grep UDP: UDP: inuse 1 mem 524288 4. (necessary since v6.0) Trigger proto_memory_pcpu_drain() # python3 test.py & sleep 1 && pkill py...

redhat логотип

CVE-2025-22058

CVSS3: 7.1
redhat
8 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: udp: Fix memory accounting leak. Matt Dowling reported a weird UDP memory usage issue. Under normal operation, the UDP memory usage reported in /proc/net/sockstat remains close to zero. However, it occasionally spiked to 524,288 pages and never dropped. Moreover, the value doubled when the application was terminated. Finally, it caused intermittent packet drops. We can reproduce the issue with the script below [0]: 1. /proc/net/sockstat reports 0 pages # cat /proc/net/sockstat | grep UDP: UDP: inuse 1 mem 0 2. Run the script till the report reaches 524,288 # python3 test.py & sleep 5 # cat /proc/net/sockstat | grep UDP: UDP: inuse 3 mem 524288 <-- (INT_MAX + 1) >> PAGE_SHIFT 3. Kill the socket and confirm the number never drops # pkill python3 && sleep 5 # cat /proc/net/sockstat | grep UDP: UDP: inuse 1 mem 524288 4. (necessary since v6.0) Trigger proto_memory_pcpu_drain() # python3 test.py & sleep 1 && pkill py...