Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:16354

Опубликовано: 03 окт. 2025
Источник: rocky
Оценка: Moderate

Описание

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: usb: dwc3: gadget: check that event count does not exceed event buffer length (CVE-2025-37810)

  • kernel: sunrpc: fix handling of server side tls alerts (CVE-2025-38566)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
kernelx86_6455.34.1.el10_0kernel-6.12.0-55.34.1.el10_0.x86_64.rpm
kernel-abi-stablelistsnoarch55.34.1.el10_0kernel-abi-stablelists-6.12.0-55.34.1.el10_0.noarch.rpm
kernel-corex86_6455.34.1.el10_0kernel-core-6.12.0-55.34.1.el10_0.x86_64.rpm
kernel-debugx86_6455.34.1.el10_0kernel-debug-6.12.0-55.34.1.el10_0.x86_64.rpm
kernel-debug-corex86_6455.34.1.el10_0kernel-debug-core-6.12.0-55.34.1.el10_0.x86_64.rpm
kernel-debuginfo-common-x86_64x86_6455.34.1.el10_0kernel-debuginfo-common-x86_64-6.12.0-55.34.1.el10_0.x86_64.rpm
kernel-debug-modulesx86_6455.34.1.el10_0kernel-debug-modules-6.12.0-55.34.1.el10_0.x86_64.rpm
kernel-debug-modules-corex86_6455.34.1.el10_0kernel-debug-modules-core-6.12.0-55.34.1.el10_0.x86_64.rpm
kernel-debug-modules-extrax86_6455.34.1.el10_0kernel-debug-modules-extra-6.12.0-55.34.1.el10_0.x86_64.rpm
kernel-debug-uki-virtx86_6455.34.1.el10_0kernel-debug-uki-virt-6.12.0-55.34.1.el10_0.x86_64.rpm

Показывать по

Связанные CVE

CVE-2025-37810
CVE-2025-38566

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2025-16354

oracle-oval
около 1 месяца назад

ELSA-2025-16354: kernel security update (MODERATE)

ubuntu логотип

CVE-2025-37810

ubuntu
6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: check that event count does not exceed event buffer length The event count is read from register DWC3_GEVNTCOUNT. There is a check for the count being zero, but not for exceeding the event buffer length. Check that event count does not exceed event buffer length, avoiding an out-of-bounds access when memcpy'ing the event. Crash log: Unable to handle kernel paging request at virtual address ffffffc0129be000 pc : __memcpy+0x114/0x180 lr : dwc3_check_event_buf+0xec/0x348 x3 : 0000000000000030 x2 : 000000000000dfc4 x1 : ffffffc0129be000 x0 : ffffff87aad60080 Call trace: __memcpy+0x114/0x180 dwc3_interrupt+0x24/0x34

redhat логотип

CVE-2025-37810

CVSS3: 7.1
redhat
6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: check that event count does not exceed event buffer length The event count is read from register DWC3_GEVNTCOUNT. There is a check for the count being zero, but not for exceeding the event buffer length. Check that event count does not exceed event buffer length, avoiding an out-of-bounds access when memcpy'ing the event. Crash log: Unable to handle kernel paging request at virtual address ffffffc0129be000 pc : __memcpy+0x114/0x180 lr : dwc3_check_event_buf+0xec/0x348 x3 : 0000000000000030 x2 : 000000000000dfc4 x1 : ffffffc0129be000 x0 : ffffff87aad60080 Call trace: __memcpy+0x114/0x180 dwc3_interrupt+0x24/0x34

nvd логотип

CVE-2025-37810

nvd
6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: check that event count does not exceed event buffer length The event count is read from register DWC3_GEVNTCOUNT. There is a check for the count being zero, but not for exceeding the event buffer length. Check that event count does not exceed event buffer length, avoiding an out-of-bounds access when memcpy'ing the event. Crash log: Unable to handle kernel paging request at virtual address ffffffc0129be000 pc : __memcpy+0x114/0x180 lr : dwc3_check_event_buf+0xec/0x348 x3 : 0000000000000030 x2 : 000000000000dfc4 x1 : ffffffc0129be000 x0 : ffffff87aad60080 Call trace: __memcpy+0x114/0x180 dwc3_interrupt+0x24/0x34

msrc логотип

CVE-2025-37810

CVSS3: 5.5
msrc
4 месяца назад

usb: dwc3: gadget: check that event count does not exceed event buffer length