Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2026:2282

Опубликовано: 15 фев. 2026
Источник: rocky
Оценка: Moderate

Описание

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: Linux kernel: Memory corruption in Squashfs due to incorrect block size calculation (CVE-2025-38415)

  • kernel: vsock/vmci: Clear the vmci transport packet properly when initializing it (CVE-2025-38403)

  • kernel: Linux kernel: Data corruption and system instability due to improper io_uring/net buffer handling (CVE-2025-38730)

  • kernel: smb: client: let recv_done verify data_offset, data_length and remaining_data_length (CVE-2025-39933)

  • kernel: mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133)

  • kernel: Linux kernel: Out-of-bounds write in fbdev can lead to privilege escalation, information disclosure, or denial of service. (CVE-2025-40304)

  • kernel: Linux kernel: Information disclosure and denial of service via out-of-bounds read in font glyph handling (CVE-2025-40322)

  • kernel: svcrdma: use rc_pageoff for memcpy byte offset (CVE-2025-68811)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
kernel-tools-libsaarch64124.35.1.el10_1kernel-tools-libs-6.12.0-124.35.1.el10_1.aarch64.rpm
kernel-uki-virtaarch64124.35.1.el10_1kernel-uki-virt-6.12.0-124.35.1.el10_1.aarch64.rpm
kernel-modulesaarch64124.35.1.el10_1kernel-modules-6.12.0-124.35.1.el10_1.aarch64.rpm
kernel-debug-modules-coreaarch64124.35.1.el10_1kernel-debug-modules-core-6.12.0-124.35.1.el10_1.aarch64.rpm
kernel-abi-stablelistsnoarch124.35.1.el10_1kernel-abi-stablelists-6.12.0-124.35.1.el10_1.noarch.rpm
kernel-toolsaarch64124.35.1.el10_1kernel-tools-6.12.0-124.35.1.el10_1.aarch64.rpm
kernel-uki-virt-addonsaarch64124.35.1.el10_1kernel-uki-virt-addons-6.12.0-124.35.1.el10_1.aarch64.rpm
kernel-64k-debug-modules-extraaarch64124.35.1.el10_1kernel-64k-debug-modules-extra-6.12.0-124.35.1.el10_1.aarch64.rpm
kernel-64k-coreaarch64124.35.1.el10_1kernel-64k-core-6.12.0-124.35.1.el10_1.aarch64.rpm
kernel-modules-extra-matchedaarch64124.35.1.el10_1kernel-modules-extra-matched-6.12.0-124.35.1.el10_1.aarch64.rpm

Показывать по

Связанные CVE

CVE-2025-40133
CVE-2025-39933
CVE-2025-68811
CVE-2025-38403
CVE-2025-38415
CVE-2025-40322
CVE-2025-40304
CVE-2025-38730

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2026-2282

oracle-oval
4 месяца назад

ELSA-2026-2282: kernel security update (MODERATE)

ubuntu логотип

CVE-2025-40133

ubuntu
7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable(). mptcp_active_enable() is called from subflow_finish_connect(), which is icsk->icsk_af_ops->sk_rx_dst_set() and it's not always under RCU. Using sk_dst_get(sk)->dev could trigger UAF. Let's use __sk_dst_get() and dst_dev_rcu().

redhat логотип

CVE-2025-40133

CVSS3: 7
redhat
7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable(). mptcp_active_enable() is called from subflow_finish_connect(), which is icsk->icsk_af_ops->sk_rx_dst_set() and it's not always under RCU. Using sk_dst_get(sk)->dev could trigger UAF. Let's use __sk_dst_get() and dst_dev_rcu().

nvd логотип

CVE-2025-40133

nvd
7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable(). mptcp_active_enable() is called from subflow_finish_connect(), which is icsk->icsk_af_ops->sk_rx_dst_set() and it's not always under RCU. Using sk_dst_get(sk)->dev could trigger UAF. Let's use __sk_dst_get() and dst_dev_rcu().

debian логотип

CVE-2025-40133

debian
7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: m ...