ALSA-2025:18318
- Source
- https://errata.almalinux.org/10/ALSA-2025-18318.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2025:18318.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/ALSA-2025:18318
- Related
- Published
- 2025-10-20T00:00:00Z
- Modified
- 2025-11-28T22:21:51.994470Z
- Summary
- Moderate: kernel security update
- Details
-
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
- kernel: KVM: x86/hyper-v: Skip non-canonical addresses during PV TLB flush (CVE-2025-38351)
- kernel: sunrpc: fix client side handling of tls alerts (CVE-2025-38571)
- kernel: eventpoll: Fix semi-unbounded recursion (CVE-2025-38614)
- kernel: ipv6: reject malicious packets in ipv6gsosegment() (CVE-2025-38572)
- kernel: efivarfs: Fix slab-out-of-bounds in efivarfsdcompare (CVE-2025-39817)
- kernel: scsi: lpfc: Fix buffer free/clear order in deferred receive path (CVE-2025-39841)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- References
-
- https://access.redhat.com/errata/RHSA-2025:18318
- https://access.redhat.com/security/cve/CVE-2025-38351
- https://access.redhat.com/security/cve/CVE-2025-38571
- https://access.redhat.com/security/cve/CVE-2025-38572
- https://access.redhat.com/security/cve/CVE-2025-38614
- https://access.redhat.com/security/cve/CVE-2025-39817
- https://access.redhat.com/security/cve/CVE-2025-39841
- https://bugzilla.redhat.com/2382059
- https://bugzilla.redhat.com/2389480
- https://bugzilla.redhat.com/2389491
- https://bugzilla.redhat.com/2389517
- https://bugzilla.redhat.com/2395805
- https://bugzilla.redhat.com/2396944
- https://errata.almalinux.org/10/ALSA-2025-18318.html
Affected packages
AlmaLinux:10 / kernel-abi-stablelists
Package
- Name
- kernel-abi-stablelists
- Purl
- pkg:rpm/almalinux/kernel-abi-stablelists