Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:3260

Опубликовано: 29 июл. 2025
Источник: rocky
Оценка: Important

Описание

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array (CVE-2025-21785)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
bpftoolx86_64553.46.1.el8_10bpftool-4.18.0-553.46.1.el8_10.x86_64.rpm
kernelx86_64553.46.1.el8_10kernel-4.18.0-553.46.1.el8_10.x86_64.rpm
kernel-abi-stablelistsnoarch553.46.1.el8_10kernel-abi-stablelists-4.18.0-553.46.1.el8_10.noarch.rpm
kernel-corex86_64553.46.1.el8_10kernel-core-4.18.0-553.46.1.el8_10.x86_64.rpm
kernel-cross-headersx86_64553.46.1.el8_10kernel-cross-headers-4.18.0-553.46.1.el8_10.x86_64.rpm
kernel-debugx86_64553.46.1.el8_10kernel-debug-4.18.0-553.46.1.el8_10.x86_64.rpm
kernel-debug-corex86_64553.46.1.el8_10kernel-debug-core-4.18.0-553.46.1.el8_10.x86_64.rpm
kernel-debug-develx86_64553.46.1.el8_10kernel-debug-devel-4.18.0-553.46.1.el8_10.x86_64.rpm
kernel-debuginfo-common-x86_64x86_64553.46.1.el8_10kernel-debuginfo-common-x86_64-4.18.0-553.46.1.el8_10.x86_64.rpm
kernel-debug-modulesx86_64553.46.1.el8_10kernel-debug-modules-4.18.0-553.46.1.el8_10.x86_64.rpm

Показывать по

Связанные CVE

CVE-2025-21785

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2025-21785

CVSS3: 7.8
ubuntu
6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array The loop that detects/populates cache information already has a bounds check on the array size but does not account for cache levels with separate data/instructions cache. Fix this by incrementing the index for any populated leaf (instead of any populated level).

redhat логотип

CVE-2025-21785

CVSS3: 7
redhat
6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array The loop that detects/populates cache information already has a bounds check on the array size but does not account for cache levels with separate data/instructions cache. Fix this by incrementing the index for any populated leaf (instead of any populated level).

nvd логотип

CVE-2025-21785

CVSS3: 7.8
nvd
6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array The loop that detects/populates cache information already has a bounds check on the array size but does not account for cache levels with separate data/instructions cache. Fix this by incrementing the index for any populated leaf (instead of any populated level).

msrc логотип

CVE-2025-21785

CVSS3: 7.8
msrc
5 месяцев назад

Описание отсутствует

debian логотип

CVE-2025-21785

CVSS3: 7.8
debian
6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: a ...