CLSA-2025-1738853271
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2025-1738853271.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CLSA-2025-1738853271
- Upstream
- Published
- 2025-02-06T14:47:56Z
- Modified
- 2026-06-04T10:04:03.827091631Z
- Summary
- Fix of 54 CVEs
- Details
-
- CVE-url: https://ubuntu.com/security/CVE-2024-26595
- mlxsw: spectrumacltcam: Fix NULL pointer dereference in error path
- CVE-url: https://ubuntu.com/security/CVE-2024-38553/CVE-2024-38597
- netpoll: make ndopollcontroller() optional
- bonding: use netpollpolldev() helper
- netpoll: do not test NAPISTATESCHED in pollonenapi()
- CVE-url: https://ubuntu.com/security/CVE-2024-38597
- eth: sungem: remove .ndopollcontroller to avoid deadlocks
- CVE-url: https://ubuntu.com/security/CVE-2024-38553
- net: fec: remove .ndopollcontroller to avoid deadlocks
- CVE-url: https://ubuntu.com/security/CVE-2024-42252
- closures: Change BUGON() to WARNON()
- CVE-url: https://ubuntu.com/security/CVE-2024-41066
- ibmvnic: Add tx check to prevent skb leak
- CVE-url: https://ubuntu.com/security/CVE-2024-40982
- ssb: Fix potential NULL pointer dereference in ssbdeviceuevent()
- CVE-url: https://ubuntu.com/security/CVE-2024-26689
- ceph: prevent use-after-free in encodecapmsg()
- fixup! ceph: prevent use-after-free in encodecapmsg()
- CVE-url: https://ubuntu.com/security/CVE-2024-56595
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree
- CVE-url: https://ubuntu.com/security/CVE-2024-57892
- ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv
- CVE-url: https://ubuntu.com/security/CVE-2024-57896
- btrfs: fix hang during unmount when stopping a space reclaim worker
- btrfs: wait for fixup workers before stopping cleaner kthread during umount
- btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount
- CVE-url: https://ubuntu.com/security/CVE-2024-56598
- jfs: array-index-out-of-bounds fix in dtReadFirst
- CVE-url: https://ubuntu.com/security/CVE-2024-56551
- drm/amdgpu: fix usage slab after free
- CVE-url: https://ubuntu.com/security/CVE-2024-56596
- jfs: fix array-index-out-of-bounds in jfs_readdir
- CVE-url: https://ubuntu.com/security/CVE-2024-56615
- bpf: fix OOB devmap writes when deleting elements
- CVE-url: https://ubuntu.com/security/CVE-2024-57887
- drm: adv7511: Fix use-after-free in adv7533attachdsi()
- CVE-url: https://ubuntu.com/security/CVE-2024-50154
- tcp/dccp: Don't use timerpending() in reqskqueue_unlink().
- CVE-url: https://ubuntu.com/security/CVE-2024-56775
- drm/amd/display: Fix handling of plane refcount
- CVE-url: https://ubuntu.com/security/CVE-2024-57900
- ila: serialize calls to nfregisternet_hooks()
- CVE-url: https://ubuntu.com/security/CVE-2024-35887
- ax25: fix use-after-free bugs caused by ax25dsdel_timer
- CVE-url: https://ubuntu.com/security/CVE-2022-48739
- ASoC: hdmi-codec: Fix OOB memory accesses
- CVE-url: https://ubuntu.com/security/CVE-2024-56704
- 9p/xen: fix release of IRQ
- CVE-url: https://ubuntu.com/security/CVE-2024-56606
- afpacket: avoid erroring out after sockinitdata() in packetcreate()
- CVE-url: https://ubuntu.com/security/CVE-2024-53141
- netfilter: ipset: add missing range check in bitmapipuadt
- CVE-url: https://ubuntu.com/security/CVE-2023-52691
- drm/amd/pm: fix a double-free in sidpminit
- CVE-url: https://ubuntu.com/security/CVE-2024-53165
- sh: intc: Fix use-after-free bug in registerintccontroller()
- CVE-url: https://ubuntu.com/security/CVE-2023-52818
- drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7
- CVE-url: https://ubuntu.com/security/CVE-2024-56603
- net: afcan: do not leave a dangling sk pointer in cancreate()
- CVE-url: https://ubuntu.com/security/CVE-2024-53173
- NFSv4.0: Fix a use-after-free problem in the asynchronous open()
- CVE-url: https://ubuntu.com/security/CVE-2024-56602
- net: ieee802154: do not leave a dangling sk pointer in ieee802154_create()
- CVE-url: https://ubuntu.com/security/CVE-2024-26996
- usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error
- CVE-url: https://ubuntu.com/security/CVE-2024-56650
- netfilter: xtables: fix LED ID check in ledtg_check()
- CVE-url: https://ubuntu.com/security/CVE-2024-56600
- net: inet6: do not leave a dangling sk pointer in inet6_create()
- CVE-url: https://ubuntu.com/security/CVE-2024-53227
- scsi: bfa: Fix use-after-free in bfadimmodule_exit()
- CVE-url: https://ubuntu.com/security/CVE-2021-47328
- scsi: iscsi: Fix conn use after free during resets
- CVE-url: https://ubuntu.com/security/CVE-2024-53155
- ocfs2: fix uninitialized value in ocfs2fileread_iter()
- CVE-url: https://ubuntu.com/security/CVE-2024-56651
- can: hi311x: hi3110canist(): fix potential use-after-free
- CVE-url: https://ubuntu.com/security/CVE-2021-47281
- ALSA: timer: Fix possible race at assigning a timer instance
- ALSA: seq: Fix race of sndseqtimer_open()
- CVE-url: https://ubuntu.com/security/CVE-2024-56605
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2capsockcreate()
- CVE-url: https://ubuntu.com/security/CVE-2024-53156
- wifi: ath9k: add range check for connrspepid in htcconnectservice()
- CVE-url: https://ubuntu.com/security/CVE-2023-52741
- cifs: Fix use-after-free in rdata->readintopages()
- CVE-url: https://ubuntu.com/security/CVE-2024-56759
- btrfs: fix use-after-free when COWing tree bock and tracing is enabled
- CVE-url: https://ubuntu.com/security/CVE-2024-56604
- Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcommsockalloc()
- CVE-url: https://ubuntu.com/security/CVE-2024-53142
- initramfs: avoid filename buffer overrun
- CVE-url: https://ubuntu.com/security/CVE-2024-56601
- net: inet: do not leave a dangling sk pointer in inet_create()
- CVE-url: https://ubuntu.com/security/CVE-2024-56662
- acpi: nfit: vmalloc-out-of-bounds Read in acpinfitctl
- CVE-url: https://ubuntu.com/security/CVE-2024-56631
- scsi: sg: Fix slab-use-after-free read in sg_release()
- CVE-url: https://ubuntu.com/security/CVE-2024-53103
- hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer
- CVE-url: https://ubuntu.com/security/CVE-2024-56581
- btrfs: ref-verify: fix use-after-free after invalid ref action
- CVE-url: https://ubuntu.com/security/CVE-2021-47191
- scsi: scsidebug: Fix out-of-bound read in respreadcap16()
- CVE-url: https://ubuntu.com/security/CVE-2023-52478
- HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect
- CVE-url: https://ubuntu.com/security/CVE-2024-36924
- scsi: lpfc: Release hbalock before calling lpfcworkerwake_up()
- CVE-url: https://ubuntu.com/security/CVE-2023-52476
- perf/x86/lbr: Filter vsyscall addresses
- CVE-url: https://ubuntu.com/security/CVE-2024-27011
- netfilter: nf_tables: fix memleak in map from abort path
- CVE-url: https://ubuntu.com/security/CVE-2024-53088
- i40e: fix race condition by adding filter's intermediate sync state
- CVE-url: https://ubuntu.com/security/CVE-2024-26595
- References
Affected packages
TuxCare:Ubuntu:18.04
linux-buildinfo-4.15.0-243-tuxcare.els31-generic
linux-buildinfo-4.15.0-243-tuxcare.els31-lowlatency
linux-cloud-tools-4.15.0-243-tuxcare.els31
linux-cloud-tools-4.15.0-243-tuxcare.els31-generic
linux-cloud-tools-4.15.0-243-tuxcare.els31-lowlatency
linux-cloud-tools-common
linux-cloud-tools-generic
linux-cloud-tools-lowlatency
linux-crashdump
linux-doc
linux-generic
linux-headers-4.15.0-243-tuxcare.els31
linux-headers-4.15.0-243-tuxcare.els31-generic
linux-headers-4.15.0-243-tuxcare.els31-lowlatency
linux-headers-generic
linux-headers-lowlatency
linux-image-generic
linux-image-lowlatency
linux-image-unsigned-4.15.0-243-tuxcare.els31-generic
linux-image-unsigned-4.15.0-243-tuxcare.els31-lowlatency
Package
- Name
- linux-image-unsigned-4.15.0-243-tuxcare.els31-lowlatency
- Purl
- pkg:deb/tuxcare/linux-image-unsigned-4.15.0-243-tuxcare.els31-lowlatency?distro=ubuntu-18.04