Details
-
Task
-
Resolution: Fixed
-
Medium
-
Lustre 2.17.0
-
None
-
3
-
9223372036854775807
Description
Security Fix(es) for kernel 6.12.0-124.16.1.el10_1:
- kernel: ublk: make sure ubq->canceling is set when queue is frozen (CVE-2025-22068)
- kernel: nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm() (CVE-2025-38724)
- kernel: mm/memory-failure: fix VM_BUG_ON_PAGE(PagePoisoned(page)) when unpoison memory (CVE-2025-39883)
- kernel: e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898)
- kernel: wifi: mt76: fix linked list corruption (CVE-2025-39918)
- kernel: i40e: fix idx validation in config queues msg (CVE-2025-39971)
https://access.redhat.com/errata/product/479/ver=/rhel---10/x86_64/RHSA-2025:22395
Security Fix(es) for kernel 6.12.0-124.20.1.el10_1:
- kernel: cifs: Fix oops due to uninitialised variable (CVE-2025-38737)
- kernel: can: j1939: implement NETDEV_UNREGISTER notification handler (CVE-2025-39925)
- kernel: Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_sync (CVE-2025-39982)
- kernel: Bluetooth: MGMT: Fix possible UAFs (CVE-2025-39981)
- kernel: net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979)
- kernel: Bluetooth: hci_event: Fix UAF in hci_conn_tx_dequeue (CVE-2025-39983)
- kernel: io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047)
- kernel: iommu/vt-d: Disallow dirty tracking if incoherent page walk (CVE-2025-40058)
- kernel: ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185)
https://access.redhat.com/errata/product/479/ver=/rhel---10/x86_64/RHSA-2025:22854