CLSA-2025-1757698145

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLSA-2025-1757698145
Upstream
Published
2025-09-12T17:29:09Z
Modified
2026-05-27T11:35:19.882347986Z
Summary
kernel: Fix of 42 CVEs
Details
  • x86/kvm: Disable kvmclock on all CPUs on shutdown {CVE-2021-47110}
  • posix-cpu-timers: fix race between handleposixcputimers() and posixcputimerdel() {CVE-2025-38352}
  • cifs: fix double free race when mount fails in cifsgetroot() {CVE-2022-48919}
  • aio: mark AIO pseudo-fs noexec {CVE-2016-10044}
  • cifs: potential buffer overflow in handling symlinks {CVE-2022-49058}
  • NFSD: fix race between nfsd registration and exports_proc {CVE-2025-38232}
  • nfsd: register pernet ops last, unregister first {CVE-2025-38232}
  • net: atm: fix use after free in lec_send() {CVE-2025-22004}
  • net: atlantic: fix aq_vec index out of range error {CVE-2022-50066}
  • dochangetype(): refuse to operate on unmounted/not ours mounts {CVE-2025-38498}
  • net: atm: fix /proc/net/atm/lec handling {CVE-2025-38180}
  • net: atm: add lec_mutex {CVE-2025-38180}
  • SUNRPC: make sure cache entry active before cache_show {CVE-2024-53174}
  • scsi: target: Fix NULL pointer dereference in corescsi3decodespeci_port() {CVE-2025-38399}
  • scsi: target: Fix crash during SPECIPT handling {CVE-2025-38399}
  • mm/hugetlb: fix hugepmdunshare() vs GUP-fast race {CVE-2025-38085}
  • drivers:md:fix a potential use-after-free bug {CVE-2022-50022}
  • ext4: avoid resizing to a partial cluster size {CVE-2022-50020}
  • HID: intel-ish-hid: Fix use-after-free issue in ishtphidremove() {CVE-2025-21928}
  • net/sched: Abort __tcmodifyqdisc if parent class does not exist {CVE-2025-38457}
  • misc/vmwvmci: fix an infoleak in vmcihostdoreceive_datagram() {CVE-2022-49788}
  • dlm: fix plock invalid read {CVE-2022-49407}
  • net: usb: smsc75xx: Limit packet length to skb->len {CVE-2023-53125}
  • scsi: libfc: Fix use after free in fcexchabts_resp() {CVE-2022-49114}
  • crypto: algifhash - fix double free in hashaccept {CVE-2025-38079}
  • HID: core: Harden s32ton() against conversion to 0 bits {CVE-2025-38556}
  • HID: core: ensure the allocated report buffer can contain the reserved report ID {CVE-2025-38495}
  • ext4: Fix possible corruption when moving a directory {CVE-2023-53137}
  • ceph: avoid putting the realm twice when decoding snaps fails {CVE-2022-49770}
  • vsock/vmci: Clear the vmci transport packet properly when initializing it {CVE-2025-38403}
  • HID: core: do not bypass hidhwraw_request {CVE-2025-38494}
  • schhfsc: make hfscqlen_notify() idempotent {CVE-2025-38177}
  • ext4: check dot and dotdot of dx_root before making dir indexed {CVE-2024-42305}
  • ALSA: bcd2000: Fix a UAF bug on the error path of probing {CVE-2022-50229}
  • dm ioctl: prevent potential spectre v1 gadget {CVE-2022-49122}
  • netsched: hfsc: Fix a potential UAF in hfscdequeue() too {CVE-2025-37823}
  • md-raid10: fix KASAN warning {CVE-2022-50211}
  • scsi: lpfc: Use memcpy() for BIOS version {CVE-2025-38332}
  • ACPICA: Refuse to evaluate a method if arguments are missing {CVE-2025-38386}
  • media: cxusb: no longer judge rbuf when the write fails {CVE-2025-38229}
  • ipc: fix to protect IPCS lookups using RCU {CVE-2025-38212}
  • ext4: fix off-by-one error in do_split {CVE-2025-23150}
  • perf/core: Fix WARN_ON(!ctx) in _freeevent() for partial init {CVE-2025-37878}
  • schhfsc: Fix qlen accounting bug when using peek in hfscenqueue() {CVE-2025-38000}
  • i40e: fix MMIO write access to an invalid page in i40eclearhw {CVE-2025-38200}
References

Affected packages

TuxCare:OracleLinux:7
bpftool

Package

Name
bpftool
Purl
pkg:rpm/tuxcare/bpftool?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.10.0-1160.119.1.0.5.el7.tuxcare.els24

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json"
kernel

Package

Name
kernel
Purl
pkg:rpm/tuxcare/kernel?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.10.0-1160.119.1.0.5.el7.tuxcare.els24

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json"
kernel-debug

Package

Name
kernel-debug
Purl
pkg:rpm/tuxcare/kernel-debug?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.10.0-1160.119.1.0.5.el7.tuxcare.els24

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json"
kernel-debug-devel

Package

Name
kernel-debug-devel
Purl
pkg:rpm/tuxcare/kernel-debug-devel?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.10.0-1160.119.1.0.5.el7.tuxcare.els24

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json"
kernel-devel

Package

Name
kernel-devel
Purl
pkg:rpm/tuxcare/kernel-devel?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.10.0-1160.119.1.0.5.el7.tuxcare.els24

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json"
kernel-headers

Package

Name
kernel-headers
Purl
pkg:rpm/tuxcare/kernel-headers?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.10.0-1160.119.1.0.5.el7.tuxcare.els24

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json"
kernel-tools

Package

Name
kernel-tools
Purl
pkg:rpm/tuxcare/kernel-tools?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.10.0-1160.119.1.0.5.el7.tuxcare.els24

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json"
kernel-tools-libs

Package

Name
kernel-tools-libs
Purl
pkg:rpm/tuxcare/kernel-tools-libs?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.10.0-1160.119.1.0.5.el7.tuxcare.els24

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json"
kernel-tools-libs-devel

Package

Name
kernel-tools-libs-devel
Purl
pkg:rpm/tuxcare/kernel-tools-libs-devel?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.10.0-1160.119.1.0.5.el7.tuxcare.els24

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json"
perf

Package

Name
perf
Purl
pkg:rpm/tuxcare/perf?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.10.0-1160.119.1.0.5.el7.tuxcare.els24

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json"
python-perf

Package

Name
python-perf
Purl
pkg:rpm/tuxcare/python-perf?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.10.0-1160.119.1.0.5.el7.tuxcare.els24

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1757698145.json"