Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:15005

Опубликовано: 03 окт. 2025
Источник: rocky
Оценка: Moderate

Описание

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: udp: Fix memory accounting leak. (CVE-2025-22058)

  • kernel: net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too (CVE-2025-37823)

  • kernel: ext4: only dirty folios when data journaling regular files (CVE-2025-38220)

  • kernel: RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction (CVE-2025-38211)

  • kernel: tipc: Fix use-after-free in tipc_conn_close() (CVE-2025-38464)

  • kernel: vsock: Fix transport_* TOCTOU (CVE-2025-38461)

  • kernel: netfilter: nf_conntrack: fix crash due to removal of uninitialised entry (CVE-2025-38472)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
kernelx86_6455.30.1.el10_0kernel-6.12.0-55.30.1.el10_0.x86_64.rpm
kernel-abi-stablelistsnoarch55.30.1.el10_0kernel-abi-stablelists-6.12.0-55.30.1.el10_0.noarch.rpm
kernel-corex86_6455.30.1.el10_0kernel-core-6.12.0-55.30.1.el10_0.x86_64.rpm
kernel-debugx86_6455.30.1.el10_0kernel-debug-6.12.0-55.30.1.el10_0.x86_64.rpm
kernel-debug-corex86_6455.30.1.el10_0kernel-debug-core-6.12.0-55.30.1.el10_0.x86_64.rpm
kernel-debuginfo-common-x86_64x86_6455.30.1.el10_0kernel-debuginfo-common-x86_64-6.12.0-55.30.1.el10_0.x86_64.rpm
kernel-debug-modulesx86_6455.30.1.el10_0kernel-debug-modules-6.12.0-55.30.1.el10_0.x86_64.rpm
kernel-debug-modules-corex86_6455.30.1.el10_0kernel-debug-modules-core-6.12.0-55.30.1.el10_0.x86_64.rpm
kernel-debug-modules-extrax86_6455.30.1.el10_0kernel-debug-modules-extra-6.12.0-55.30.1.el10_0.x86_64.rpm
kernel-debug-uki-virtx86_6455.30.1.el10_0kernel-debug-uki-virt-6.12.0-55.30.1.el10_0.x86_64.rpm

Показывать по

Связанные CVE

CVE-2025-22058
CVE-2025-37823
CVE-2025-38211
CVE-2025-38220
CVE-2025-38461
CVE-2025-38464
CVE-2025-38472

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2025-15005

oracle-oval
2 месяца назад

ELSA-2025-15005: kernel security update (MODERATE)

ubuntu логотип

CVE-2025-22058

CVSS3: 5.5
ubuntu
7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: udp: Fix memory accounting leak. Matt Dowling reported a weird UDP memory usage issue. Under normal operation, the UDP memory usage reported in /proc/net/sockstat remains close to zero. However, it occasionally spiked to 524,288 pages and never dropped. Moreover, the value doubled when the application was terminated. Finally, it caused intermittent packet drops. We can reproduce the issue with the script below [0]: 1. /proc/net/sockstat reports 0 pages # cat /proc/net/sockstat | grep UDP: UDP: inuse 1 mem 0 2. Run the script till the report reaches 524,288 # python3 test.py & sleep 5 # cat /proc/net/sockstat | grep UDP: UDP: inuse 3 mem 524288 <-- (INT_MAX + 1) >> PAGE_SHIFT 3. Kill the socket and confirm the number never drops # pkill python3 && sleep 5 # cat /proc/net/sockstat | grep UDP: UDP: inuse 1 mem 524288 4. (necessary since v6.0) Trigger proto_memory_pcpu_drain() # python3 test.py & sleep 1 && pkill py...

redhat логотип

CVE-2025-22058

CVSS3: 7.1
redhat
7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: udp: Fix memory accounting leak. Matt Dowling reported a weird UDP memory usage issue. Under normal operation, the UDP memory usage reported in /proc/net/sockstat remains close to zero. However, it occasionally spiked to 524,288 pages and never dropped. Moreover, the value doubled when the application was terminated. Finally, it caused intermittent packet drops. We can reproduce the issue with the script below [0]: 1. /proc/net/sockstat reports 0 pages # cat /proc/net/sockstat | grep UDP: UDP: inuse 1 mem 0 2. Run the script till the report reaches 524,288 # python3 test.py & sleep 5 # cat /proc/net/sockstat | grep UDP: UDP: inuse 3 mem 524288 <-- (INT_MAX + 1) >> PAGE_SHIFT 3. Kill the socket and confirm the number never drops # pkill python3 && sleep 5 # cat /proc/net/sockstat | grep UDP: UDP: inuse 1 mem 524288 4. (necessary since v6.0) Trigger proto_memory_pcpu_drain() # python3 test.py & sleep 1 && pkill py...

nvd логотип

CVE-2025-22058

CVSS3: 5.5
nvd
7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: udp: Fix memory accounting leak. Matt Dowling reported a weird UDP memory usage issue. Under normal operation, the UDP memory usage reported in /proc/net/sockstat remains close to zero. However, it occasionally spiked to 524,288 pages and never dropped. Moreover, the value doubled when the application was terminated. Finally, it caused intermittent packet drops. We can reproduce the issue with the script below [0]: 1. /proc/net/sockstat reports 0 pages # cat /proc/net/sockstat | grep UDP: UDP: inuse 1 mem 0 2. Run the script till the report reaches 524,288 # python3 test.py & sleep 5 # cat /proc/net/sockstat | grep UDP: UDP: inuse 3 mem 524288 <-- (INT_MAX + 1) >> PAGE_SHIFT 3. Kill the socket and confirm the number never drops # pkill python3 && sleep 5 # cat /proc/net/sockstat | grep UDP: UDP: inuse 1 mem 524288 4. (necessary since v6.0) Trigger proto_memory_pcpu

msrc логотип

CVE-2025-22058

msrc
4 месяца назад

Описание отсутствует