Details
-
Task
-
Resolution: Won't Fix
-
Medium
-
None
-
Lustre 2.18.0, Lustre 2.15.9
-
None
-
3
-
9223372036854775807
Description
Security Fix(es) for kernel 5.14.0-611.34.1.el9_7:
- kernel: ntb_hw_switchtec: Fix shift-out-of-bounds in switchtec_ntb_mw_set_trans (CVE-2023-53034)
- kernel: smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064)
- kernel: Linux kernel: Out-of-bounds write in fbdev can lead to privilege escalation, information disclosure, or denial of service. (CVE-2025-40304)
- kernel: Linux kernel: Information disclosure and denial of service via out-of-bounds read in font glyph handling (CVE-2025-40322)
- kernel: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (CVE-2025-68349)
- kernel: svcrdma: use rc_pageoff for memcpy byte offset (CVE-2025-68811)
- kernel: nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec (CVE-2026-22998)
https://access.redhat.com/errata/product/479/ver=/rhel---9/x86_64/RHSA-2026:2722
Security Fix(es) for kernel 5.14.0-611.36.1.el9_7:
- kernel: smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168)
- kernel: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (CVE-2025-71085)
- kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration (CVE-2026-23097)
https://access.redhat.com/errata/product/479/ver=/rhel---9/x86_64/RHSA-2026:3488