Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:8333

Опубликовано: 04 окт. 2025
Источник: rocky
Оценка: Moderate

Описание

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: Use after Free in gru_set_context_option leading to kernel panic (CVE-2022-3424)

  • kernel: ndisc: use RCU protection in ndisc_alloc_skb() (CVE-2025-21764)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 9

НаименованиеАрхитектураРелизRPM
kernelx86_64570.19.1.el9_6kernel-5.14.0-570.19.1.el9_6.x86_64.rpm
kernel-abi-stablelistsnoarch570.19.1.el9_6kernel-abi-stablelists-5.14.0-570.19.1.el9_6.noarch.rpm
kernel-abi-stablelistsnoarch570.19.1.el9_6kernel-abi-stablelists-5.14.0-570.19.1.el9_6.noarch.rpm
kernel-abi-stablelistsnoarch570.19.1.el9_6kernel-abi-stablelists-5.14.0-570.19.1.el9_6.noarch.rpm
kernel-abi-stablelistsnoarch570.19.1.el9_6kernel-abi-stablelists-5.14.0-570.19.1.el9_6.noarch.rpm
kernel-corex86_64570.19.1.el9_6kernel-core-5.14.0-570.19.1.el9_6.x86_64.rpm
kernel-debugx86_64570.19.1.el9_6kernel-debug-5.14.0-570.19.1.el9_6.x86_64.rpm
kernel-debug-corex86_64570.19.1.el9_6kernel-debug-core-5.14.0-570.19.1.el9_6.x86_64.rpm
kernel-debug-modulesx86_64570.19.1.el9_6kernel-debug-modules-5.14.0-570.19.1.el9_6.x86_64.rpm
kernel-debug-modules-corex86_64570.19.1.el9_6kernel-debug-modules-core-5.14.0-570.19.1.el9_6.x86_64.rpm

Показывать по

Связанные CVE

CVE-2022-3424
CVE-2025-21764

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2025-8333

oracle-oval
7 месяцев назад

ELSA-2025-8333: kernel security update (MODERATE)

ubuntu логотип

CVE-2025-21764

CVSS3: 7.8
ubuntu
10 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: ndisc: use RCU protection in ndisc_alloc_skb() ndisc_alloc_skb() can be called without RTNL or RCU being held. Add RCU protection to avoid possible UAF.

redhat логотип

CVE-2025-21764

CVSS3: 7
redhat
10 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: ndisc: use RCU protection in ndisc_alloc_skb() ndisc_alloc_skb() can be called without RTNL or RCU being held. Add RCU protection to avoid possible UAF.

nvd логотип

CVE-2025-21764

CVSS3: 7.8
nvd
10 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: ndisc: use RCU protection in ndisc_alloc_skb() ndisc_alloc_skb() can be called without RTNL or RCU being held. Add RCU protection to avoid possible UAF.

msrc логотип

CVE-2025-21764

CVSS3: 7.8
msrc
8 месяцев назад

Описание отсутствует