- kernel-4.18.0-553.32.1.el8_10 (almalinux8)
- 4.18.0-553.56.1.el8_10
- 2025-06-19 14:10:23
- 2025-06-25 13:11:45
- K20250619_14
- CVE-2024-53088, CVSSv2 Score: 5.5
- Description:
i40e: fix i40e_count_filters() to count only active/new filters
- CVE: https://access.redhat.com/security/cve/CVE-2024-53088
- Patch: rhel8/4.18.0-553.34.1.el8_10/CVE-2024-53088-i40e-fix-i40e_count_filters-to-count-only-active-new.patch
- From: 4.18.0-553.34.1.el8_10
- CVE-2024-53088, CVSSv2 Score: 5.5
- Description:
i40e: fix race condition by adding filter's intermediate sync state
- CVE: https://access.redhat.com/security/cve/CVE-2024-53088
- Patch: rhel8/4.18.0-553.34.1.el8_10/CVE-2024-53088-i40e-fix-race-condition-by-adding-filter-s-intermediate-sync-state.patch
- From: 4.18.0-553.34.1.el8_10
- CVE-2024-53088, CVSSv2 Score: 5.5
- Description:
i40e: fix race condition by adding filter's intermediate sync state
- CVE: https://access.redhat.com/security/cve/CVE-2024-53088
- Patch: rhel8/4.18.0-553.34.1.el8_10/CVE-2024-53088-i40e-fix-race-condition-by-adding-filter-s-intermediate-sync-state-kpatch.patch
- From: 4.18.0-553.34.1.el8_10
- CVE-2024-53122, CVSSv2 Score: 5.5
- Description:
mptcp: cope racing subflow creation in mptcp_rcv_space_adjust
- CVE: https://access.redhat.com/security/cve/CVE-2024-53122
- Patch: rhel8/4.18.0-553.34.1.el8_10/CVE-2024-53122-mptcp-cope-racing-subflow-creation-in-mptcp-rcv-space-adjust.patch
- From: 4.18.0-553.34.1.el8_10
- CVE-2024-26935, CVSSv2 Score: 5.5
- Description:
scsi: core: Fix unremoved procfs host directory regression
- CVE: https://access.redhat.com/security/cve/CVE-2024-26935
- Patch: rhel8/4.18.0-553.37.1.el8_10/CVE-2024-26935-scsi-core-fix-unremoved-procfs-host-directory-regression.patch
- From: 4.18.0-553.37.1.el8_10
- CVE-2024-53104, CVSSv2 Score: 7.3
- Description:
media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format
- CVE: https://access.redhat.com/security/cve/CVE-2024-53104
- Patch: rhel8/4.18.0-553.40.1.el8_10/CVE-2024-53104-media-uvcvideo-Skip-parsing-frames-of-type-UVC_VS_UNDEFINED.patch
- From: 4.18.0-553.40.1.el8_10
- CVE-2024-50302, CVSSv2 Score: 7.8
- Description:
HID: core: zero-initialize the report buffer
- CVE: https://access.redhat.com/security/cve/cve-2024-50302
- Patch: 2024/CVE-2024-50302/CVE-2024-50302-hid-core-zero-initialize-the-report-buffer.patch
- From: 4.18.0-553.44.1.el8_10
- CVE-2024-53197, CVSSv2 Score: 5.5
- Description:
ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices
- CVE: https://access.redhat.com/security/cve/cve-2024-53197
- Patch: 2024/CVE-2024-53197/CVE-2024-53197-alsa-usb-audio-fix-potential-out-of-bound-accesses-for-extigy-and-mbox-devices.patch
- From: 4.18.0-553.44.1.el8_10
- CVE-2024-57807, CVSSv2 Score: 5.5
- Description:
scsi: megaraid_sas: Fix for a potential deadlock
- CVE: https://access.redhat.com/security/cve/cve-2024-57807
- Patch: 2024/CVE-2024-57807/CVE-2024-57807-scsi-megaraid-sas-fix-for-a-potential-deadlock.patch
- From: 4.18.0-553.44.1.el8_10
- CVE-2024-57979, CVSSv2 Score:
- Description:
PPS for embedded GPS devices. Irrelevant for servers.
- CVE:
- Patch: skipped/CVE-2024-57979.patch
- From:
- CVE-2023-52922, CVSSv2 Score: 7.8
- Description:
can: bcm: Fix UAF in bcm_proc_show()
- CVE: https://access.redhat.com/security/cve/CVE-2023-52922
- Patch: rhel8/4.18.0-553.45.1.el8_10/CVE-2023-52922-can-bcm-Fix-UAF-in-bcm_proc_show.patch
- From: 4.18.0-553.45.1.el8_10
- CVE-2025-21785, CVSSv2 Score:
- Description:
Out of scope: ARM64 architecture isn't supported for current kernel
- CVE:
- Patch: skipped/CVE-2025-21785.patch
- From:
- CVE-2024-53150, CVSSv2 Score: 7.8
- Description:
ALSA: usb-audio: Fix out of bounds reads when finding clock sources
- CVE: https://access.redhat.com/security/cve/CVE-2024-53150
- Patch: rhel8/4.18.0-553.50.1.el8_10/CVE-2024-53150-alsa-usb-audio-fix-out-of-bounds-reads-when-finding-clock-sources.patch
- From: 4.18.0-553.50.1.el8_10
- CVE-2024-53141, CVSSv2 Score: 7.8
- Description:
netfilter: ipset: add missing range check in bitmap_ip_uadt
- CVE: https://access.redhat.com/security/cve/CVE-2024-53141
- Patch: rhel8/4.18.0-553.52.1.el8_10/CVE-2024-53141-netfilter-ipset-add-missing-range-check-in-bitmap-ip-uadt.patch
- From: 4.18.0-553.52.1.el8_10
- CVE-2022-49011, CVSSv2 Score: 7.8
- Description:
hwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new()
- CVE: https://access.redhat.com/security/cve/CVE-2022-49011
- Patch: rhel8/4.18.0-553.52.1.el8_10/CVE-2022-49011-hwmon-coretemp-fix-pci-device-refcount-leak-in-nv1a_.patch
- From: 4.18.0-553.52.1.el8_10
- CVE-2024-40906, CVSSv2 Score: 7.8
- Description:
net/mlx5: Always stop health timer during driver removal
- CVE: https://access.redhat.com/security/cve/CVE-2024-40906
- Patch: rhel8/4.18.0-553.53.1.el8_10/CVE-2024-40906-net-mlx5-always-stop-health-timer-during-driver-removal.patch
- From: 4.18.0-553.53.1.el8_10
- CVE-2024-44970, CVSSv2 Score: 5.5
- Description:
net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink
- CVE: https://access.redhat.com/security/cve/CVE-2024-44970
- Patch: rhel8/4.18.0-553.53.1.el8_10/CVE-2024-44970-net-mlx5e-SHAMPO-Fix-invalid-WQ-linked-list-unlink.patch
- From: 4.18.0-553.53.1.el8_10
- CVE-2025-21756, CVSSv2 Score: 7.8
- Description:
vsock: Keep the binding until socket destruction
- CVE: https://access.redhat.com/security/cve/CVE-2025-21756
- Patch: rhel8/4.18.0-553.53.1.el8_10/CVE-2025-21756-vsock-keep-the-binding-until-socket-destruction.patch
- From: 4.18.0-553.53.1.el8_10
- CVE-2025-21756, CVSSv2 Score: 7.8
- Description:
vsock: Orphan socket after transport release
- CVE: https://access.redhat.com/security/cve/CVE-2025-21756
- Patch: rhel8/4.18.0-553.53.1.el8_10/CVE-2025-21756-vsock-orphan-socket-after-transport-release.patch
- From: 4.18.0-553.53.1.el8_10
- CVE-2024-43842, CVSSv2 Score: 7.8
- Description:
wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter()
- CVE: https://access.redhat.com/security/cve/CVE-2024-43842
- Patch: rhel8/4.18.0-553.54.1.el8_10/CVE-2024-43842-wifi-rtw89-Fix-array-index-mistake-in-rtw89_sta_info_get_iter.patch
- From: 4.18.0-553.54.1.el8_10
- CVE-2022-49395, CVSSv2 Score:
- Description:
Out of scope: User-mode Linux isn't supported for current kernel
- CVE:
- Patch: skipped/CVE-2022-49395.patch
- From:
- N/A, CVSSv2 Score: N/A
- Description:
x86 xen add xenpv restore regs and return to usermode
- CVE: N/A
- Patch: 4.18.0/x86-xen-Add-xenpv_restore_regs_and_return_to_usermode-el8-372.patch
- From: N/A
- N/A, CVSSv2 Score: N/A
- Description:
kpatch add alt asm definitions
- CVE: https://www.kernel.org
- Patch: 4.18.0/kpatch-add-alt-asm-definitions-el8-372.patch
- From: N/A