- kernel-5.14.0-503.29.1.el9_5 (rockylinux9)
- 5.14.0-503.35.1.el9_5
- 2025-04-16 23:00:55
- 2025-04-18 11:01:18
- K20250417_01
- CVE-2024-53113, CVSSv2 Score: 5.5
- Description:
mm: fix NULL pointer dereference in alloc_pages_bulk_noprof
- CVE: https://access.redhat.com/security/cve/CVE-2024-53113
- Patch: rhel9/5.14.0-503.31.1.el9_5/CVE-2024-53113-mm-fix-null-pointer-dereference-in-alloc-pages-bulk-noprof.patch
- From: 5.14.0-503.31.1.el9_5
- CVE-2024-53197, CVSSv2 Score: 5.5
- Description:
ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices
- CVE: https://access.redhat.com/security/cve/CVE-2024-53197
- Patch: rhel9/5.14.0-503.31.1.el9_5/CVE-2024-53197-ALSA-usb-audio-Fix-potential-out-of-bound-accesses-for-Extigy-and-Mbox-devices.patch
- From: 5.14.0-503.31.1.el9_5
- CVE-2023-52922, CVSSv2 Score: 7.8
- Description:
can: bcm: Fix UAF in bcm_proc_show()
- CVE: https://access.redhat.com/security/cve/CVE-2023-52922
- Patch: rhel9/5.14.0-503.31.1.el9_5/CVE-2023-52922-can-bcm-fix-uaf-in-bcm-proc-show.patch
- From: 5.14.0-503.31.1.el9_5
- CVE-2023-52605, CVSSv2 Score:
- Description:
CVE Rejected
- CVE:
- Patch: skipped/CVE-2023-52605.patch
- From:
- CVE-2024-50264, CVSSv2 Score: 7.8
- Description:
vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans
- CVE: https://access.redhat.com/security/cve/CVE-2024-50264
- Patch: rhel9/5.14.0-503.31.1.el9_5/CVE-2024-50264-vsock-virtio-initialization-of-the-dangling-pointer-occurring-in-vsk-trans.patch
- From: 5.14.0-503.31.1.el9_5
- CVE-2024-50302, CVSSv2 Score: 7.8
- Description:
HID: core: zero-initialize the report buffer
- CVE: https://access.redhat.com/security/cve/CVE-2024-50302
- Patch: rhel9/5.14.0-503.31.1.el9_5/CVE-2024-50302-hid-core-zero-initialize-the-report-buffer.patch
- From: 5.14.0-503.31.1.el9_5
- CVE-2025-21785, CVSSv2 Score:
- Description:
Out of scope: ARM64 architecture isn't supported for current kernel
- CVE:
- Patch: skipped/CVE-2025-21785.patch
- From:
- CVE-2024-43855, CVSSv2 Score: 5.5
- Description:
md: fix deadlock between mddev_suspend and flush bio
- CVE: https://access.redhat.com/security/cve/CVE-2024-43855
- Patch: rhel9/5.14.0-503.35.1.el9_5/CVE-2024-43855-md-fix-deadlock-between-mddev-suspend-and-flush-bio.patch
- From: 5.14.0-503.35.1.el9_5