Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:19106

Опубликовано: 02 нояб. 2025
Источник: rocky
Оценка: Moderate

Описание

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: NFS: Fix a race when updating an existing write (CVE-2025-39697)

  • kernel: vsock/virtio: Validate length in packet header before skb_put() (CVE-2025-39718)

  • kernel: NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() (CVE-2025-39730)

  • kernel: mm: swap: fix potential buffer overflow in setup_clusters() (CVE-2025-39727)

  • kernel: ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control (CVE-2025-39751)

  • kernel: wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result() (CVE-2025-39849)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
kernelx86_6455.41.1.el10_0kernel-6.12.0-55.41.1.el10_0.x86_64.rpm
kernel-abi-stablelistsnoarch55.41.1.el10_0kernel-abi-stablelists-6.12.0-55.41.1.el10_0.noarch.rpm
kernel-abi-stablelistsnoarch55.41.1.el10_0kernel-abi-stablelists-6.12.0-55.41.1.el10_0.noarch.rpm
kernel-abi-stablelistsnoarch55.41.1.el10_0kernel-abi-stablelists-6.12.0-55.41.1.el10_0.noarch.rpm
kernel-abi-stablelistsnoarch55.41.1.el10_0kernel-abi-stablelists-6.12.0-55.41.1.el10_0.noarch.rpm
kernel-corex86_6455.41.1.el10_0kernel-core-6.12.0-55.41.1.el10_0.x86_64.rpm
kernel-debugx86_6455.41.1.el10_0kernel-debug-6.12.0-55.41.1.el10_0.x86_64.rpm
kernel-debug-corex86_6455.41.1.el10_0kernel-debug-core-6.12.0-55.41.1.el10_0.x86_64.rpm
kernel-debuginfo-common-x86_64x86_6455.41.1.el10_0kernel-debuginfo-common-x86_64-6.12.0-55.41.1.el10_0.x86_64.rpm
kernel-debug-modulesx86_6455.41.1.el10_0kernel-debug-modules-6.12.0-55.41.1.el10_0.x86_64.rpm

Показывать по

Связанные CVE

CVE-2025-39697
CVE-2025-39718
CVE-2025-39727
CVE-2025-39730
CVE-2025-39751
CVE-2025-39849

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2025-19106

oracle-oval
около 2 месяцев назад

ELSA-2025-19106: kernel security update (MODERATE)

oracle-oval логотип

ELSA-2025-21118

oracle-oval
17 дней назад

ELSA-2025-21118: kernel security update (MODERATE)

ubuntu логотип

CVE-2025-39697

ubuntu
3 месяца назад

In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a race when updating an existing write After nfs_lock_and_join_requests() tests for whether the request is still attached to the mapping, nothing prevents a call to nfs_inode_remove_request() from succeeding until we actually lock the page group. The reason is that whoever called nfs_inode_remove_request() doesn't necessarily have a lock on the page group head. So in order to avoid races, let's take the page group lock earlier in nfs_lock_and_join_requests(), and hold it across the removal of the request in nfs_inode_remove_request().

redhat логотип

CVE-2025-39697

CVSS3: 7.5
redhat
4 месяца назад

In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a race when updating an existing write After nfs_lock_and_join_requests() tests for whether the request is still attached to the mapping, nothing prevents a call to nfs_inode_remove_request() from succeeding until we actually lock the page group. The reason is that whoever called nfs_inode_remove_request() doesn't necessarily have a lock on the page group head. So in order to avoid races, let's take the page group lock earlier in nfs_lock_and_join_requests(), and hold it across the removal of the request in nfs_inode_remove_request().

nvd логотип

CVE-2025-39697

nvd
3 месяца назад

In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a race when updating an existing write After nfs_lock_and_join_requests() tests for whether the request is still attached to the mapping, nothing prevents a call to nfs_inode_remove_request() from succeeding until we actually lock the page group. The reason is that whoever called nfs_inode_remove_request() doesn't necessarily have a lock on the page group head. So in order to avoid races, let's take the page group lock earlier in nfs_lock_and_join_requests(), and hold it across the removal of the request in nfs_inode_remove_request().