CLSA-2026-1773046198

smb3: fix for slab out of bounds on mount to ksmbd {CVE-2025-38728}
netfilter: nftsetpipapo: clamp maximum map bucket size to INT_MAX {CVE-2025-38201}
ALSA: usb-audio: Validate UAC3 power domain descriptors, too {CVE-2025-38729}
net: atm: fix /proc/net/atm/lec handling {CVE-2025-38180}
tcpbpf: Call skmsgfree() when tcpbpfsendverdict() fails to allocate psock->cork. {CVE-2025-39913}
fs: writeback: fix use-after-free in __markinodedirty() {CVE-2025-39866}
KVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost migration {CVE-2023-54296}
mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats {CVE-2025-68800}
net/sched: Enforce that teql can only be used as root qdisc {CVE-2026-23074}
net: nsh: Use correct macoffset to unwind gso skb in nshgso_segment() {CVE-2023-54114}
isofs: Prevent the use of too small fid {CVE-2025-37780}
media: dvb-frontends: avoid stack overflow warnings with clang {CVE-2024-27075}
ipv6: Fix infinite recursion in fib6dumpdone(). {CVE-2024-35886}
HID: core: do not bypass hidhwraw_request {CVE-2025-38494}
fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds {CVE-2025-40304}
HID: asus: fix UAF via HIDCLAIMEDINPUT validation {CVE-2025-39824}
cnic: Fix use-after-free bugs in cnicdeletetask {CVE-2025-39945}
ALSA: usb-audio: Fix potential overflow of PCM transfer buffer {CVE-2025-40269}
NFSv4/pNFS: Clear NFSINOLAYOUTCOMMIT in pnfsmarklayoutstateidinvalid {CVE-2025-68349}
pptp: ensure minimal skb length in pptp_xmit() {CVE-2025-38574}
ipv6: reject malicious packets in ipv6gsosegment() {CVE-2025-38572}
fbdev: fix potential buffer overflow in doregisterframebuffer() {CVE-2025-38702}
i40e: fix IRQ freeing in i40evsirequestirqmsix error path {CVE-2025-39911}
wifi: mwifiex: Initialize the chan_stats array to zero {CVE-2025-39891}
i40e: Fix potential invalid access when MAC list is empty {CVE-2025-39853}
media: uvcvideo: Fix 1-byte out-of-bounds read in uvcparseformat() {CVE-2025-38680}
fs/buffer: fix use-after-free when call bh_read() helper {CVE-2025-39691}
fbdev: bitblit: bound-check glyph index in bit_putcs* {CVE-2025-40322}
usb: core: config: Prevent OOB read in SS endpoint companion parsing {CVE-2025-39760}
mptcp: fix race condition in mptcpschedulework() {CVE-2025-40258}
KVM: x86: Reset IRTE to host control if new route isn't postable {CVE-2025-37885}

References

https://errata.tuxcare.com/els_os/centos-stream8els/CLSA-2026-1773046198.html

Affected packages

TuxCare:CentOS-Stream:8

bpftool

Package

Name: bpftool
Purl: pkg:rpm/tuxcare/bpftool?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel

Package

Name: kernel
Purl: pkg:rpm/tuxcare/kernel?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-core

Package

Name: kernel-core
Purl: pkg:rpm/tuxcare/kernel-core?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-cross-headers

Package

Name: kernel-cross-headers
Purl: pkg:rpm/tuxcare/kernel-cross-headers?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-debug

Package

Name: kernel-debug
Purl: pkg:rpm/tuxcare/kernel-debug?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-debug-core

Package

Name: kernel-debug-core
Purl: pkg:rpm/tuxcare/kernel-debug-core?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-debug-devel

Package

Name: kernel-debug-devel
Purl: pkg:rpm/tuxcare/kernel-debug-devel?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-debug-modules

Package

Name: kernel-debug-modules
Purl: pkg:rpm/tuxcare/kernel-debug-modules?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-debug-modules-extra

Package

Name: kernel-debug-modules-extra
Purl: pkg:rpm/tuxcare/kernel-debug-modules-extra?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-debug-modules-internal

Package

Name: kernel-debug-modules-internal
Purl: pkg:rpm/tuxcare/kernel-debug-modules-internal?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-devel

Package

Name: kernel-devel
Purl: pkg:rpm/tuxcare/kernel-devel?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-headers

Package

Name: kernel-headers
Purl: pkg:rpm/tuxcare/kernel-headers?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-ipaclones-internal

Package

Name: kernel-ipaclones-internal
Purl: pkg:rpm/tuxcare/kernel-ipaclones-internal?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-modules

Package

Name: kernel-modules
Purl: pkg:rpm/tuxcare/kernel-modules?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-modules-extra

Package

Name: kernel-modules-extra
Purl: pkg:rpm/tuxcare/kernel-modules-extra?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-modules-internal

Package

Name: kernel-modules-internal
Purl: pkg:rpm/tuxcare/kernel-modules-internal?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-selftests-internal

Package

Name: kernel-selftests-internal
Purl: pkg:rpm/tuxcare/kernel-selftests-internal?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-tools

Package

Name: kernel-tools
Purl: pkg:rpm/tuxcare/kernel-tools?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-tools-libs

Package

Name: kernel-tools-libs
Purl: pkg:rpm/tuxcare/kernel-tools-libs?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

kernel-tools-libs-devel

Package

Name: kernel-tools-libs-devel
Purl: pkg:rpm/tuxcare/kernel-tools-libs-devel?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

perf

Package

Name: perf
Purl: pkg:rpm/tuxcare/perf?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"

python3-perf

Package

Name: python3-perf
Purl: pkg:rpm/tuxcare/python3-perf?distro=centos-stream-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-553.6.1.el8_10.tuxcare.els16

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1773046198.json"