- kernel-5.14.0-570.18.1.0.1.el9_6 (oel9)
- 5.14.0-570.26.1.0.1.el9_6
- 2025-07-23 13:21:19
- 2025-07-24 10:02:47
- K20250723_05
- CVE-2022-3424, CVSSv2 Score: 7.8
- Description:
misc: sgi-gru: fix use-after-free error in gru_set_context_option, gru_fault and gru_handle_user_call_os
- CVE: https://access.redhat.com/security/cve/CVE-2022-3424
- Patch: rhel9/5.14.0-570.19.1.el9_6/CVE-2022-3424-misc-sgi-gru-fix-use-after-free-error-in-gru_set_con.patch
- From: 5.14.0-570.19.1.el9_6
- CVE-2025-21764, CVSSv2 Score: 7.8
- Description:
ndisc: use rcu protection in ndisc_alloc_skb()
- CVE: https://access.redhat.com/security/cve/cve-2025-21764
- Patch: rhel9/5.14.0-570.19.1.el9_6/CVE-2025-21764-ndisc-use-rcu-protection-in-ndisc-alloc-skb.patch
- From: 5.14.0-570.19.1.el9_6
- CVE-2025-21920, CVSSv2 Score: 7.1
- Description:
vlan: enforce underlying device type
- CVE: https://access.redhat.com/security/cve/CVE-2025-21920
- Patch: rhel9/5.14.0-570.21.1.el9_6/CVE-2025-21920-vlan-enforce-underlying-device-type.patch
- From: 5.14.0-570.21.1.el9_6
- CVE-2025-21926, CVSSv2 Score: 5.5
- Description:
net: gso: fix ownership in __udp_gso_segment
- CVE: https://access.redhat.com/security/cve/CVE-2025-21926
- Patch: rhel9/5.14.0-570.21.1.el9_6/CVE-2025-21926-net-gso-fix-ownership-in-udp-gso-segment.patch
- From: 5.14.0-570.21.1.el9_6
- CVE-2025-21997, CVSSv2 Score: 5.5
- Description:
xsk: fix an integer overflow in xp_create_and_assign_umem()
- CVE: https://access.redhat.com/security/cve/CVE-2025-21997
- Patch: rhel9/5.14.0-570.21.1.el9_6/CVE-2025-21997-xsk-fix-an-integer-overflow-in-xp_create_and_assign_umem.patch
- From: 5.14.0-570.21.1.el9_6
- CVE-2025-22055, CVSSv2 Score: 5.5
- Description:
net: fix geneve_opt length integer overflow
- CVE: https://access.redhat.com/security/cve/CVE-2025-22055
- Patch: rhel9/5.14.0-570.21.1.el9_6/CVE-2025-22055-net-fix-geneve-opt-length-integer-overflow.patch
- From: 5.14.0-570.21.1.el9_6
- CVE-2025-22055, CVSSv2 Score: 5.5
- Description:
net: fix geneve_opt length integer overflow
- CVE: https://access.redhat.com/security/cve/CVE-2025-22055
- Patch: rhel9/5.14.0-570.21.1.el9_6/CVE-2025-22055-net-fix-geneve-opt-length-integer-overflow-kpatch.patch
- From: 5.14.0-570.21.1.el9_6
- CVE-2025-37943, CVSSv2 Score: 7.0
- Description:
wifi: ath12k: Fix invalid data access in ath12k_dp_rx_h_undecap_nwifi
- CVE: https://access.redhat.com/security/cve/CVE-2025-37943
- Patch: rhel9/5.14.0-570.21.1.el9_6/CVE-2025-37943-wifi-ath12k-fix-invalid-data-access-in-ath12k-dp-rx-h-undecap-nwifi.patch
- From: 5.14.0-570.21.1.el9_6
- CVE-2025-37785, CVSSv2 Score: 7.1
- Description:
ext4: fix OOB read when checking dotdot dir
- CVE: https://access.redhat.com/security/cve/CVE-2025-37785
- Patch: rhel9/5.14.0-570.21.1.el9_6/CVE-2025-37785-ext4-fix-OOB-read-when-checking-dotdot-dir.patch
- From: 5.14.0-570.21.1.el9_6
- CVE-2025-21961, CVSSv2 Score: 5.5
- Description:
eth: bnxt: fix truesize for mb-xdp-pass case
- CVE: https://access.redhat.com/security/cve/CVE-2025-21961
- Patch: rhel9/5.14.0-570.22.1.el9_6/CVE-2025-21961-eth-bnxt-fix-truesize-for-mb-xdp-pass-case.patch
- From: 5.14.0-570.22.1.el9_6
- CVE-2025-21963, CVSSv2 Score: 5.5
- Description:
cifs: Fix integer overflow while processing acdirmax mount option
- CVE: https://access.redhat.com/security/cve/CVE-2025-21963
- Patch: rhel9/5.14.0-570.22.1.el9_6/CVE-2025-21963-cifs-fix-integer-overflow-while-processing-acdirmax-mount-option.patch
- From: 5.14.0-570.22.1.el9_6
- CVE-2025-21979, CVSSv2 Score: 7.8
- Description:
wifi: cfg80211: cancel wiphy_work before freeing wiphy
- CVE: https://access.redhat.com/security/cve/CVE-2025-21979
- Patch: rhel9/5.14.0-570.22.1.el9_6/CVE-2025-21979-wifi-cfg80211-cancel-wiphy-work-before-freeing-wiphy.patch
- From: 5.14.0-570.22.1.el9_6
- CVE-2025-21999, CVSSv2 Score: 7.8
- Description:
proc: fix UAF in proc_get_inode()
- CVE: https://access.redhat.com/security/cve/CVE-2025-21999
- Patch: rhel9/5.14.0-570.22.1.el9_6/CVE-2025-21999-proc-fix-uaf-in-proc-get-inode.patch
- From: 5.14.0-570.22.1.el9_6
- CVE-2025-21999, CVSSv2 Score: 7.8
- Description:
proc: fix UAF in proc_get_inode()
- CVE: https://access.redhat.com/security/cve/CVE-2025-21999
- Patch: rhel9/5.14.0-570.22.1.el9_6/CVE-2025-21999-proc-fix-uaf-in-proc-get-inode-kpatch.patch
- From: 5.14.0-570.22.1.el9_6
- CVE-2025-22126, CVSSv2 Score: 5.5
- Description:
md: fix mddev uaf while iterating all_mddevs list
- CVE: https://access.redhat.com/security/cve/CVE-2025-22126
- Patch: rhel9/5.14.0-570.22.1.el9_6/CVE-2025-22126-md-fix-mddev-uaf-while-iterating-all-mddevs-list.patch
- From: 5.14.0-570.22.1.el9_6
- CVE-2025-21969, CVSSv2 Score: 7.8
- Description:
Bluetooth: L2CAP: Fix slab-use-after-free Read in l2cap_send_cmd
- CVE: https://access.redhat.com/security/cve/CVE-2025-21969
- Patch: rhel9/5.14.0-570.22.1.el9_6/CVE-2025-21969-Bluetooth-L2CAP-Fix-slab-use-after-free-Read-in-l2cap.patch
- From: 5.14.0-570.22.1.el9_6
- CVE-2025-23150, CVSSv2 Score: 5.5
- Description:
ext4: fix off-by-one error in do_split
- CVE: https://access.redhat.com/security/cve/CVE-2025-23150
- Patch: rhel9/5.14.0-570.23.1.el9_6/CVE-2025-23150-ext4-fix-off-by-one-error-in-do-split.patch
- From: 5.14.0-570.23.1.el9_6
- CVE-2025-21919, CVSSv2 Score: 7.8
- Description:
sched/fair: Fix potential memory corruption in child_cfs_rq_on_list
- CVE: https://access.redhat.com/security/cve/CVE-2025-21919
- Patch: rhel9/5.14.0-570.23.1.el9_6/CVE-2025-21919-sched-fair-fix-potential-memory-corruption-in-child-cfs-rq-on-list.patch
- From: 5.14.0-570.23.1.el9_6
- CVE-2025-21883, CVSSv2 Score:
- Description:
Complex adaptation required. Low impact CVE.
- CVE:
- Patch: skipped/CVE-2025-21883.patch
- From:
- CVE-2025-22104, CVSSv2 Score: 5.5
- Description:
ibmvnic: Use kernel helpers for hex dumps
- CVE: https://access.redhat.com/security/cve/CVE-2025-22104
- Patch: rhel9/5.14.0-570.23.1.el9_6/CVE-2025-22104-ibmvnic-use-kernel-helpers-for-hex-dumps.patch
- From: 5.14.0-570.23.1.el9_6
- CVE-2025-37738, CVSSv2 Score: 5.5
- Description:
ext4: ignore xattrs past end
- CVE: https://access.redhat.com/security/cve/CVE-2025-37738
- Patch: rhel9/5.14.0-570.23.1.el9_6/CVE-2025-37738-ext4-ignore-xattrs-past-end.patch
- From: 5.14.0-570.23.1.el9_6
- CVE-2023-52933, CVSSv2 Score: 5.5
- Description:
Squashfs: fix handling and sanity checking of xattr_ids count
- CVE: https://access.redhat.com/security/cve/CVE-2023-52933
- Patch: rhel9/5.14.0-570.24.1.el9_6/CVE-2023-52933-squashfs-fix-handling-and-sanity-checking-of-xattr-ids-count.patch
- From: 5.14.0-570.24.1.el9_6
- CVE-2025-22004, CVSSv2 Score: 7.8
- Description:
net: atm: fix use after free in lec_send()
- CVE: https://access.redhat.com/security/cve/CVE-2025-22004
- Patch: rhel9/5.14.0-570.25.1.el9_6/CVE-2025-22004-net-atm-fix-use-after-free-in-lec-send.patch
- From: 5.14.0-570.25.1.el9_6
- CVE-2025-21887, CVSSv2 Score: 7.8
- Description:
ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up
- CVE: https://access.redhat.com/security/cve/CVE-2025-21887
- Patch: rhel9/5.14.0-570.25.1.el9_6/CVE-2025-21887-ovl-fix-uaf-in-ovl-dentry-update-reval-by-moving-dput-in-ovl-link-up.patch
- From: 5.14.0-570.25.1.el9_6
- CVE-2025-37799, CVSSv2 Score: 5.5
- Description:
vmxnet3: Fix malformed packet sizing in vmxnet3_process_xdp
- CVE: https://access.redhat.com/security/cve/CVE-2025-37799
- Patch: rhel9/5.14.0-570.25.1.el9_6/CVE-2025-37799-vmxnet3-fix-malformed-packet-sizing-in-vmxnet3-process-xdp.patch
- From: 5.14.0-570.25.1.el9_6
- CVE-2025-21759, CVSSv2 Score: 7.8
- Description:
ipv6: mcast: extend RCU protection in igmp6_send()
- CVE: https://access.redhat.com/security/cve/CVE-2025-21759
- Patch: rhel9/5.14.0-570.25.1.el9_6/CVE-2025-21759-ipv6-mcast-add-dev_net_rcu-helper.patch
- From: 5.14.0-570.25.1.el9_6
- CVE-2025-21759, CVSSv2 Score: 7.8
- Description:
ipv6: mcast: extend RCU protection in igmp6_send()
- CVE: https://access.redhat.com/security/cve/CVE-2025-21759
- Patch: rhel9/5.14.0-570.25.1.el9_6/CVE-2025-21759-ipv6-mcast-extend-RCU-protection-in-igmp6_send.patch
- From: 5.14.0-570.25.1.el9_6
- CVE-2022-49846, CVSSv2 Score: 7.8
- Description:
udf: Fix a slab-out-of-bounds write bug in udf_find_entry()
- CVE: https://access.redhat.com/security/cve/CVE-2022-49846
- Patch: rhel9/5.14.0-570.25.1.el9_6/CVE-2022-49846-udf-Fix-a-slab-out-of-bounds-write-bug-in-udf_find_entry.patch
- From: 5.14.0-570.25.1.el9_6
- CVE-2025-21991, CVSSv2 Score: 7.8
- Description:
x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes
- CVE: https://access.redhat.com/security/cve/CVE-2025-21991
- Patch: rhel9/5.14.0-570.26.1.el9_6/CVE-2025-21991-x86-microcode-amd-fix-out-of-bounds-on-systems-with-cpu-less-numa-nodes.patch
- From: 5.14.0-570.26.1.el9_6