ALSA-2025:14009
- Source
- https://errata.almalinux.org/10/ALSA-2025-14009.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2025:14009.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/ALSA-2025:14009
- Related
- Published
- 2025-08-18T00:00:00Z
- Modified
- 2025-11-28T19:27:11.106151Z
- Summary
- Important: kernel security update
- Details
-
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
- kernel: bpf, testrun: Fix use-after-free issue in ethskbpkttype() (CVE-2025-21867)
- kernel: net: fix udp gso skbsegment after pull from fraglist (CVE-2025-38124)
- kernel: Bluetooth: hcicore: Fix use-after-free in vhciflush() (CVE-2025-38250)
- kernel: i2c/designware: Fix an initialization issue (CVE-2025-38380)
- kernel: tls: always refresh the queue when reading sock (CVE-2025-38471)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- References
-
- https://access.redhat.com/errata/RHSA-2025:14009
- https://access.redhat.com/security/cve/CVE-2025-21867
- https://access.redhat.com/security/cve/CVE-2025-38124
- https://access.redhat.com/security/cve/CVE-2025-38250
- https://access.redhat.com/security/cve/CVE-2025-38380
- https://access.redhat.com/security/cve/CVE-2025-38471
- https://bugzilla.redhat.com/2355334
- https://bugzilla.redhat.com/2376041
- https://bugzilla.redhat.com/2378982
- https://bugzilla.redhat.com/2383381
- https://bugzilla.redhat.com/2383893
- https://errata.almalinux.org/10/ALSA-2025-14009.html
Affected packages
AlmaLinux:10 / kernel-abi-stablelists
Package
- Name
- kernel-abi-stablelists
- Purl
- pkg:rpm/almalinux/kernel-abi-stablelists