CLSA-2025-1747430081
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2025-1747430081.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CLSA-2025-1747430081
- Upstream
- Published
- 2025-05-16T21:14:45Z
- Modified
- 2026-06-04T10:04:21.014051025Z
- Summary
- Fix of 50 CVEs
- Details
-
- CVE-url: https://ubuntu.com/security/CVE-2021-47352
- virtio-net: Add validation for used length
- CVE-url: https://ubuntu.com/security/CVE-2024-46745
- Input: uinput - reject requests with unreasonable number of slots
- CVE-url: https://ubuntu.com/security/CVE-2024-44952
- driver core: Fix uevent_show() vs driver detach race
- CVE-url: https://ubuntu.com/security/CVE-2024-42304
- ext4: make sure the first directory block is not a hole
- CVE-url: https://ubuntu.com/security/CVE-2024-42305
- ext4: check dot and dotdot of dx_root before making dir indexed
- CVE-url: https://ubuntu.com/security/CVE-2024-53168
- sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket
- CVE-url: https://ubuntu.com/security/CVE-2024-49925
- driver core: add devgroups to all drivers
- driver core: Fix error return code in reallyprobe()
- fbdev: efifb: Register sysfs groups through driver core
- CVE-url: https://ubuntu.com/security/CVE-2024-56661
- tipc: fix NULL deref in cleanup_bearer()
- CVE-url: https://ubuntu.com/security/CVE-2024-56642
- tipc: Fix use-after-free of kernel socket in cleanup_bearer().
- CVE-url: https://ubuntu.com/security/CVE-2021-47163
- tipc: wait and exit until all work queues are done
- CVE-url: https://ubuntu.com/security/CVE-2024-26915
- drm/amdgpu: fix IH overflow on Vega10 v2
- drm/amdgpu: Add check to prevent IH overflow
- drm/amdgpu: Reset IH OVERFLOW_CLEAR bit
- CVE-url: https://ubuntu.com/security/CVE-2024-56770
- net/sched: netem: account for backlog updates from child qdisc
- netem: Update sch->q.qlen before qdisctreereduce_backlog()
- CVE-url: https://ubuntu.com/security/CVE-2024-50296
- net: hns3: fix kernel crash when uninstalling driver
- CVE-url: https://ubuntu.com/security/CVE-2024-53066
- nfs: Fix KMSAN warning in decodegetfattrattrs()
- CVE-url: https://ubuntu.com/security/CVE-2024-49944
- sctp: set skstate back to CLOSED if autobind fails in sctplisten_start
- CVE-url: https://ubuntu.com/security/CVE-2024-50237
- wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower
- CVE-url: https://ubuntu.com/security/CVE-2024-46780
- nilfs2: protect references to superblock parameters exposed in sysfs
- CVE-url: https://ubuntu.com/security/CVE-2024-53063
- media: dvbdev: prevent the risk of out of memory access
- media: dvbdev: fix the logic when DVBDYNAMICMINORS is not set
- CVE-url: https://ubuntu.com/security/CVE-2023-52927
- netfilter: allow exp not to be removed in nfctfind_expectation
- CVE-url: https://ubuntu.com/security/CVE-2021-47150
- net: fec: fix the potential memory leak in fecenetinit()
- CVE-url: https://ubuntu.com/security/CVE-2024-53140
- netlink: terminate outstanding dump on socket close
- CVE-url: https://ubuntu.com/security/CVE-2025-21971
- netsched: Prevent creation of classes with TCH_ROOT
- CVE-url: https://ubuntu.com/security/CVE-2025-37785
- ext4: fix OOB read when checking dotdot dir
- CVE-url: https://ubuntu.com/security/CVE-2023-52572
- cifs: Fix UAF in cifsdemultiplexthread()
- CVE-url: https://ubuntu.com/security/CVE-2022-49738
- f2fs: fix to do sanity check on summary info
- f2fs: should put a page when checking the summary info
- f2fs: fix to do sanity check on iextraisize in is_alive()
- CVE-url: https://ubuntu.com/security/CVE-2022-49740
- wifi: brcmfmac: Check the count value of channel spec to prevent out-of- bounds reads
- CVE-url: https://ubuntu.com/security/
- ipv6: Define dscp_t and stop taking ECN bits into account in fib6-rules
- CVE-url: https://ubuntu.com/security/CVE-2023-53020
- l2tp: close all race conditions in l2tptunnelregister()
- CVE-url: https://ubuntu.com/security/CVE-2025-21957
- scsi: qla1280: Fix kernel oops when debug level > 2
- CVE-url: https://ubuntu.com/security/CVE-2025-21948
- HID: appleir: Fix potential NULL dereference at raw event handle
- CVE-url: https://ubuntu.com/security/CVE-2023-52936
- debugfs: add debugfslookupandremove()
- kernel/irq/irqdomain.c: fix memory leak with using debugfslookup()
- CVE-url: https://ubuntu.com/security/CVE-2025-21912
- gpio: rcar: Use raw_spinlock to protect register access
- CVE-url: https://ubuntu.com/security/CVE-2025-21922
- ppp: Fix KMSAN uninit-value warning with bpf
- CVE-url: https://ubuntu.com/security/CVE-2025-21891
- ipvlan: ensure network headers are in skb linear part
- CVE-url: https://ubuntu.com/security/CVE-2025-21959
- netfilter: nfconncount: Fully initialize struct nfconncounttuple in inserttree()
- CVE-url: https://ubuntu.com/security/CVE-2025-21996
- drm/radeon: fix uninitialized size issue in radeonvcecs_parse()
- CVE-url: https://ubuntu.com/security/CVE-2025-21928
- HID: intel-ish-hid: Fix use-after-free issue in ishtphidremove()
- CVE-url: https://ubuntu.com/security/CVE-2025-21917
- usb: renesasusbhs: Flush the notifyhotplug_work
- CVE-url: https://ubuntu.com/security/CVE-2023-53001
- drm/drmvmamanager: Add drmvmanodeallowonce()
- CVE-url: https://ubuntu.com/security/CVE-2025-21969
- Bluetooth: L2CAP: Fix slab-use-after-free Read in l2capsendcmd
- CVE-url: https://ubuntu.com/security/CVE-2025-21920
- vlan: enforce underlying device type
- CVE-url: https://ubuntu.com/security/CVE-2025-21904
- caifvirtio: fix wrong pointer check in cfvprobe()
- CVE-url: https://ubuntu.com/security/CVE-2024-56658
- net: defer final 'struct net' free in netns dismantle
- CVE-url: https://ubuntu.com/security/CVE-2022-23041
- xen/pvcalls: use alloc/freepagesexact()
- CVE-url: https://ubuntu.com/security/CVE-2024-50265
- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2xaremove()
- CVE-url: https://ubuntu.com/security/CVE-2024-46826
- ELF: fix kernel.randomizevaspace double read
- CVE-url: https://ubuntu.com/security/CVE-2025-21700
- net: sched: Disallow replacing of child qdisc from one parent to another
- CVE-url: https://ubuntu.com/security/CVE-2025-21702
- pfifotailenqueue: Drop new packet when sch->limit == 0
- CVE-url: https://ubuntu.com/security/CVE-2024-50167
- be2net: fix potential memory leak in be_xmit()
- CVE-url: https://ubuntu.com/security/CVE-2024-49952
- netfilter: nftables: prevent nfskb_duplicated corruption
- CVE-url: https://ubuntu.com/security/CVE-2024-49948
- net: add more sanity checks to qdiscpktlen_init()
- CVE-url: https://ubuntu.com/security/CVE-2021-47352
- References
Affected packages
TuxCare:Ubuntu:18.04
linux-buildinfo-4.15.0-247-tuxcare.els35-generic
linux-buildinfo-4.15.0-247-tuxcare.els35-lowlatency
linux-cloud-tools-4.15.0-247-tuxcare.els35
linux-cloud-tools-4.15.0-247-tuxcare.els35-generic
linux-cloud-tools-4.15.0-247-tuxcare.els35-lowlatency
linux-cloud-tools-common
linux-cloud-tools-generic
linux-cloud-tools-lowlatency
linux-crashdump
linux-doc
linux-generic
linux-headers-4.15.0-247-tuxcare.els35
linux-headers-4.15.0-247-tuxcare.els35-generic
linux-headers-4.15.0-247-tuxcare.els35-lowlatency
linux-headers-generic
linux-headers-lowlatency
linux-image-generic
linux-image-lowlatency
linux-image-unsigned-4.15.0-247-tuxcare.els35-generic
linux-image-unsigned-4.15.0-247-tuxcare.els35-lowlatency
Package
- Name
- linux-image-unsigned-4.15.0-247-tuxcare.els35-lowlatency
- Purl
- pkg:deb/tuxcare/linux-image-unsigned-4.15.0-247-tuxcare.els35-lowlatency?distro=ubuntu-18.04