Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:8669

Опубликовано: 03 окт. 2025
Источник: rocky
Оценка: Important

Описание

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: vsock/virtio: discard packets if the transport changes (CVE-2025-21669)

  • kernel: net: gso: fix ownership in __udp_gso_segment (CVE-2025-21926)

  • kernel: xsk: fix an integer overflow in xp_create_and_assign_umem() (CVE-2025-21997)

  • kernel: net: fix geneve_opt length integer overflow (CVE-2025-22055)

  • kernel: wifi: ath12k: Fix invalid data access in ath12k_dp_rx_h_undecap_nwifi (CVE-2025-37943)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
kernelx86_6455.16.1.el10_0kernel-6.12.0-55.16.1.el10_0.x86_64.rpm
kernel-abi-stablelistsnoarch55.16.1.el10_0kernel-abi-stablelists-6.12.0-55.16.1.el10_0.noarch.rpm
kernel-corex86_6455.16.1.el10_0kernel-core-6.12.0-55.16.1.el10_0.x86_64.rpm
kernel-debugx86_6455.16.1.el10_0kernel-debug-6.12.0-55.16.1.el10_0.x86_64.rpm
kernel-debug-corex86_6455.16.1.el10_0kernel-debug-core-6.12.0-55.16.1.el10_0.x86_64.rpm
kernel-debuginfo-common-x86_64x86_6455.16.1.el10_0kernel-debuginfo-common-x86_64-6.12.0-55.16.1.el10_0.x86_64.rpm
kernel-debug-modulesx86_6455.16.1.el10_0kernel-debug-modules-6.12.0-55.16.1.el10_0.x86_64.rpm
kernel-debug-modules-corex86_6455.16.1.el10_0kernel-debug-modules-core-6.12.0-55.16.1.el10_0.x86_64.rpm
kernel-debug-modules-extrax86_6455.16.1.el10_0kernel-debug-modules-extra-6.12.0-55.16.1.el10_0.x86_64.rpm
kernel-debug-uki-virtx86_6455.16.1.el10_0kernel-debug-uki-virt-6.12.0-55.16.1.el10_0.x86_64.rpm

Показывать по

Связанные CVE

CVE-2025-21669
CVE-2025-21926
CVE-2025-21997
CVE-2025-22055
CVE-2025-37943

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2025-8669

oracle-oval
4 месяца назад

ELSA-2025-8669: kernel security update (IMPORTANT)

oracle-oval логотип

ELSA-2025-8643

oracle-oval
5 месяцев назад

ELSA-2025-8643: kernel security update (IMPORTANT)

ubuntu логотип

CVE-2025-21669

CVSS3: 5.5
ubuntu
9 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: discard packets if the transport changes If the socket has been de-assigned or assigned to another transport, we must discard any packets received because they are not expected and would cause issues when we access vsk->transport. A possible scenario is described by Hyunwoo Kim in the attached link, where after a first connect() interrupted by a signal, and a second connect() failed, we can find `vsk->transport` at NULL, leading to a NULL pointer dereference.

redhat логотип

CVE-2025-21669

CVSS3: 5.5
redhat
9 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: discard packets if the transport changes If the socket has been de-assigned or assigned to another transport, we must discard any packets received because they are not expected and would cause issues when we access vsk->transport. A possible scenario is described by Hyunwoo Kim in the attached link, where after a first connect() interrupted by a signal, and a second connect() failed, we can find `vsk->transport` at NULL, leading to a NULL pointer dereference.

nvd логотип

CVE-2025-21669

CVSS3: 5.5
nvd
9 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: discard packets if the transport changes If the socket has been de-assigned or assigned to another transport, we must discard any packets received because they are not expected and would cause issues when we access vsk->transport. A possible scenario is described by Hyunwoo Kim in the attached link, where after a first connect() interrupted by a signal, and a second connect() failed, we can find `vsk->transport` at NULL, leading to a NULL pointer dereference.