CLSA-2026-1773832495
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2026-1773832495.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CLSA-2026-1773832495
- Upstream
- Published
- 2026-03-18T11:15:00Z
- Modified
- 2026-06-04T10:04:14.594783604Z
- Summary
- Fix of 114 CVEs
- Details
-
- CVE-2023-53515
- virtio-mmio: don't break lifecycle of vm_dev {CVE-2023-53515}
- CVE-2025-39967
- fbcon: fix integer overflow in fbcondoset_font {CVE-2025-39967}
- fbcon: Fix OOB access in font allocation {CVE-2025-39967}
- CVE-2025-38702
- fbdev: fix potential buffer overflow in doregisterframebuffer() {CVE-2025-38702}
- CVE-2025-38563
- perf/core: Prevent VMA split of buffer mappings {CVE-2025-38563}
- CVE-2025-39869
- dmaengine: ti: edma: Fix memory allocation size for queueprioritymap {CVE-2025-39869}
- CVE-2023-53577
- bpf, cpumap: Make sure kthread is running before map update returns {CVE-2023-53577}
- CVE-2023-53608
- nilfs2: fix potential UAF of struct nilfsscinfo in nilfssegctorthread() {CVE-2023-53608}
- CVE-2023-53604
- dm integrity: call kmemcachedestroy() in dmintegrityinit() error path {CVE-2023-53604}
- CVE-2023-53619
- netfilter: Replace printk() with pr_*() and define prfmt() {CVE-2023-53619}
- netfilter: use kvmallocarray to allocate memory for hashtable {CVE-2023-53619}
- netfilter: conntrack: Avoid nfcthelper_hash uses after free {CVE-2023-53619}
- CVE-2025-38680
- media: uvcvideo: Fix 1-byte out-of-bounds read in {CVE-2025-38680}
- CVE-2023-53454
- HID: multitouch: Correct devm device reference for hidinput {CVE-2023-53454}
- CVE-2025-38699
- scsi: bfa: Double-free fix {CVE-2025-38699}
- ubi: ensure that VID header offset + VID header size <= alloc, size {CVE-2023-53265}
- scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow() {CVE-2023-53676}
- fs: jfs: Fix UBSAN: array-index-out-of-bounds in {CVE-2025-38699}
- CVE-2023-53596
- drivers: base: Free devm resources when unregistering a {CVE-2023-53596}
- CVE-2023-53622
- gfs2: Fix possible data races in gfs2showoptions() {CVE-2023-53622}
- HSI: ssiprotocol: Fix use after free vulnerability in ssiprotocol Driver Due to Race Condition {CVE-2023-53622}
- CVE-2023-53090
- drm/amdkfd: Fix an illegal memory access {CVE-2023-53090}
- CVE-2023-53116
- nvmet: avoid potential UAF in nvmetreqcomplete() {CVE-2023-53116}
- CVE-2023-53138
- net: caif: Fix use-after-free in cfusbldevicenotify() {CVE-2023-53138}
- CVE-2023-53035
- nilfs2: fix kernel-infoleak in nilfsioctlwrap_copy() {CVE-2023-53035}
- CVE-2023-53668
- ring-buffer: Fix deadloop issue on reading trace_pipe {CVE-2023-53668}
- CVE-2023-53616
- jfs: fix invalid free of JFSIP(ipimap)->iimap in diUnmount {CVE-2023-53616}
- CVE-2023-53554
- staging: ks7010: potential buffer overflow in kswlansetencodeext() {CVE-2023-53554}
- CVE-2023-53587
- ring-buffer: Sync IRQ works before buffer destruction {CVE-2023-53587}
- CVE-2023-53541
- mtd: rawnand: brcmnand: Fix potential out-of-bounds access in oob write {CVE-2023-53541}
- CVE-2023-53559
- ipvti: fix potential slab-use-after-free in decodesession6 {CVE-2023-53559}
- CVE-2023-53484
- lib: cpu_rmap: Avoid use after free on rmap->obj array entries {CVE-2023-53484}
- lib: cpurmap: Fix potential use-after-free in irqcpurmaprelease() {CVE-2023-53484}
- CVE-2025-39824
- HID: asus: fix UAF via HIDCLAIMEDINPUT validation {CVE-2025-39824}
- CVE-2025-38715
- hfs: fix slab-out-of-bounds in hfsbnoderead() {CVE-2025-38715}
- CVE-2023-53153
- wifi: cfg80211: Fix use after free for wext {CVE-2023-53153}
- CVE-2025-38555
- usb: gadget : fix use-after-free in compositedevcleanup() {CVE-2025-38555}
- CVE-2025-39743
- jfs: truncate good inode pages when hard link is 0 {CVE-2025-39743}
- CVE-2025-39945
- cnic: Fix use-after-free bugs in cnicdeletetask {CVE-2025-39945}
- CVE-2023-53506
- udf: Do not bother merging very long extents {CVE-2023-53506}
- CVE-2025-38714
- hfsplus: fix slab-out-of-bounds in hfsplusbnoderead() {CVE-2025-38714}
- CVE-2025-39685
- comedi: pcl726: Prevent invalid irq number {CVE-2025-39685}
- CVE-2025-39839
- batman-adv: fix OOB read/write in network-coding decode {CVE-2025-39839}
- CVE-2025-38708
- drbd: add missing krefget in handlewrite_conflicts {CVE-2025-38708}
- CVE-2023-53521
- scsi: ses: Fix slab-out-of-bounds in sesintfremove() {CVE-2023-53521}
- CVE-2025-38713
- hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc() {CVE-2025-38713}
- CVE-2023-53675
- scsi: ses: Fix possible desc_ptr out-of-bounds accesses {CVE-2023-53675}
- CVE-2025-39691
- fs/buffer: fix use-after-free when call bh_read() helper {CVE-2025-39691}
- CVE-2023-53259
- VMCI: check context->notifypage after call to getuserpagesfast() to avoid GPF {CVE-2023-53259}
- CVE-2023-53285
- ext4: add bounds checking in getmaxinlinexattrvalue_size() {CVE-2023-53285}
- CVE-2023-53148
- igb: Fix igb_down hung on surprise removal {CVE-2023-53148}
- CVE-2023-53219
- media: netupunidvb: fix use-after-free at deltimer() {CVE-2023-53219}
- CVE-2023-53215
- sched/fair: Don't balance task to its current running CPU {CVE-2023-53215}
- CVE-2023-53305
- Bluetooth: L2CAP: Fix use-after-free {CVE-2023-53305}
- CVE-2025-38103
- HID: usbhid: Eliminate recurrent out-of-bounds bug in usbhid_parse() {CVE-2025-38103}
- CVE-2025-38051
- smb: client: Fix use-after-free in cifsfilldirent {CVE-2025-38051}
- CVE-2025-38157
- wifi: ath9k_htc: Abort software beacon handling if disabled {CVE-2025-38157}
- CVE-2023-53373
- crypto: seqiv - Handle EBUSY correctly {CVE-2023-53373}
- CVE-2025-38079
- crypto: algifhash - fix double free in hashaccept {CVE-2025-38079}
- CVE-2025-38212
- ipc: fix to protect IPCS lookups using RCU {CVE-2025-38212}
- CVE-2025-38313
- bus: fsl-mc: fix double-free on mc_dev {CVE-2025-38313}
- CVE-2023-53311
- nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput {CVE-2023-53311}
- CVE-2023-53307
- rbd: avoid use-after-free in dorbdadd() when rbddevcreate() fails {CVE-2023-53307}
- CVE-2025-38403
- vsock/vmci: Clear the vmci transport packet properly when initializing it {CVE-2025-38403}
- CVE-2025-39683
- tracing: Limit access to parser->buffer when tracegetuser failed {CVE-2025-39683}
- CVE-2025-38697
- jfs: upper bound check of tree index in dbAllocAG {CVE-2025-38697}
- CVE-2025-39689
- ftrace: Also allocate and copy hash for reading of filter files {CVE-2025-39689}
- CVE-2025-38574
- pptp: ensure minimal skb length in pptp_xmit() {CVE-2025-38574}
- CVE-2025-38572
- ipv6: reject malicious packets in ipv6gsosegment() {CVE-2025-38572}
- CVE-2025-38685
- fbdev: Fix vmalloc out-of-bounds write in fast_imageblit {CVE-2025-38685}
- CVE-2025-39911
- i40e: fix IRQ freeing in i40evsirequestirqmsix error path {CVE-2025-39911}
- CVE-2025-39973
- i40e: increase max descriptors for XL710 {CVE-2025-39973}
- i40e: add validation for ring_len param {CVE-2025-39973}
- CVE-2025-38724
- nfsd: handle getclientlocked() failure in nfsd4setclientidconfirm() {CVE-2025-38724}
- CVE-2025-39860
- Bluetooth: Fix use-after-free in l2capsockcleanup_listen() {CVE-2025-39860}
- CVE-2025-38530
- comedi: pcl812: Fix bit shift out of bounds {CVE-2025-38530}
- CVE-2025-38529
- comedi: aioiiro16: Fix bit shift out of bounds {CVE-2025-38529}
- CVE-2025-38497
- usb: gadget: configfs: Fix OOB read on empty string write {CVE-2025-38497}
- CVE-2025-38483
- comedi: das16m1: Fix bit shift out of bounds {CVE-2025-38483}
- CVE-2025-38482
- comedi: das6402: Fix bit shift out of bounds {CVE-2025-38482}
- CVE-2025-39702
- ipv6: sr: Fix MAC comparison to be constant-time {CVE-2025-39702}
- CVE-2025-39730
- NFS: Fix filehandle bounds checking in nfsfhto_dentry() {CVE-2025-39730}
- CVE-2025-39817
- efivarfs: Fix slab-out-of-bounds in efivarfsdcompare {CVE-2025-39817}
- CVE-2025-38494
- HID: core: ensure the allocated report buffer can contain the reserved report ID {CVE-2025-38494}
- HID: core: ensure hidrequest reserves the report ID as the first byte {CVE-2025-38494}
- HID: core: do not bypass hidhwrawrequest {CVE-2025-38494}
- CVE-2025-38527
- smb: client: fix use-after-free in cifsoplockbreak {CVE-2025-38527}
- CVE-2025-39965
- xfrm: Duplicate SPI Handling {CVE-2025-39965}
- CVE-2025-37927
- iommu/amd: Fix potential buffer overflow in parseivrsacpihid {CVE-2025-37927}
- CVE-2025-37817
- mcb: fix error handling for different scenarios when parsing {CVE-2025-37817}
- mcb: fix a double free bug in chameleonparsegdd() {CVE-2025-37817}
- CVE-2025-38204
- jfs: fix array-index-out-of-bounds read in addmissingindices {CVE-2025-38204}
- CVE-2025-38323
- net: atm: add lec_mutex {CVE-2025-38323}
- CVE-2025-38346
- ftrace: Fix UAF when lookup kallsym after ftrace disabled {CVE-2025-38346}
- CVE-2025-38348
- wifi: p54: prevent buffer-overflow in p54rxeeprom_readback() {CVE-2025-38348}
- CVE-2025-38416
- NFC: nci: uart: Set tty->disc_data only in success path {CVE-2025-38416}
- CVE-2025-38428
- Input: ims-pcu - check record size in imspcuflash_firmware() {CVE-2025-38428}
- CVE-2025-38245
- atm: Release atmdevmutex after removing procfs in atmdevderegister(). {CVE-2025-38245}
- CVE-2025-38377
- rose: fix dangling neighbour pointers in rosertdevice_down() {CVE-2025-38377}
- CVE-2025-38459
- atm: clip: Fix infinite recursive call of clip_push(). {CVE-2025-38459}
- CVE-2025-39863
- wifi: brcmfmac: fix use-after-free when rescheduling brcmfbtcoexinfo work {CVE-2025-39863}
- CVE-2025-21726
- padata: avoid UAF for reorder_work {CVE-2025-21726}
- CVE-2025-39760
- usb: core: config: Prevent OOB read in SS endpoint companion parsing {CVE-2025-39760}
- CVE-2025-38198
- fbcon: Make sure modelist not set on unregistered console {CVE-2025-38198}
- CVE-2025-38375
- virtio-net: ensure the received length does not exceed allocated size {CVE-2025-38375}
- CVE-2025-39993
- media: imon: reorganize serialization {CVE-2025-39993}
- media: rc: fix races with imon_disconnect() {CVE-2025-39993}
- CVE-2025-39883
- mm/memory-failure: fix VMBUGON_PAGE(PagePoisoned(page)) when unpoison memory {CVE-2025-39883}
- Focal update: v5.4.211 upstream stable release (LP: #1990190)
- scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input
- Focal update: v5.4.231 upstream stable release (LP: #2011226) //
CVE-2023-53000
- netlink: prevent potential spectre v1 gadgets
- CVE-2022-49980
- USB: gadget: Fix use-after-free Read in usbudcuevent()
- CVE-2022-21546
- scsi: target: Fix WRITE_SAME No Data Buffer crash
- Focal update: v5.4.225 upstream stable release (LP: #2002347) //
CVE-2022-49763
- ntfs: fix use-after-free in ntfsattrfind()
- Focal update: Focal update: v5.4.235 upstream stable release
(LP: #2017706) // CVE-2022-50258
- wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmfcpreinit_dcmds()
- CVE-2025-21727
- padata: fix UAF in padata_reorder
- CVE-2025-37882
- usb: xhci: Fix isochronous Ring Underrun/Overrun event handling
- CVE-2025-38250
- Bluetooth: hcicore: Fix use-after-free in vhciflush()
- CVE-2025-39751
- ALSA: hda/ca0132: Fix buffer overflow in addtuningcontrol
- CVE-2025-37810
- usb: dwc3: gadget: check that event count does not exceed event buffer length
- CVE-2025-37839
- jbd2: remove wrong sb->s_sequence check
- CVE-2025-37892
- mtd: inftlcore: Add error check for inftlreadoob()
- CVE-2025-37923
- tracing: Fix oob write in traceseqto_buffer()
- CVE-2024-43883
- usb: vhci-hcd: Do not drop references before new references are gained
- CVE-2025-37739
- f2fs: lost matching-pair of trace in f2fstruncateinodeblocks
- f2fs: fix to avoid out-of-bounds access in f2fstruncateinodeblocks()
- CVE-2025-38069
- PCI: endpoint: pci-epf-test: Fix double free that causes kernel to oops
- CVE-2025-22083
- vhost-scsi: Fix handling of multiple calls to vhostscsiset_endpoint
- Miscellaneous upstream changes
- netsched: hfsc: Fix a potential UAF in hfscdequeue() too
- HID: core: Harden s32ton() against conversion to 0 bits
- fbcon: Introduce wrapper for console->fb_info lookup {CVE-2025-38198}
- net: atm: fix /proc/net/atm/lec handling {CVE-2025-38323}
- CVE-2023-53515
- References
Affected packages
TuxCare:Ubuntu:18.04
linux-buildinfo-4.15.0-254-tuxcare.els42-generic
linux-buildinfo-4.15.0-254-tuxcare.els42-lowlatency
linux-cloud-tools-4.15.0-254-tuxcare.els42
linux-cloud-tools-4.15.0-254-tuxcare.els42-generic
linux-cloud-tools-4.15.0-254-tuxcare.els42-lowlatency
linux-cloud-tools-common
linux-doc
linux-headers-4.15.0-254-tuxcare.els42
linux-headers-4.15.0-254-tuxcare.els42-generic
linux-headers-4.15.0-254-tuxcare.els42-lowlatency
linux-image-unsigned-4.15.0-254-tuxcare.els42-generic
linux-image-unsigned-4.15.0-254-tuxcare.els42-lowlatency
Package
- Name
- linux-image-unsigned-4.15.0-254-tuxcare.els42-lowlatency
- Purl
- pkg:deb/tuxcare/linux-image-unsigned-4.15.0-254-tuxcare.els42-lowlatency?distro=ubuntu-18.04