- kernel-4.18.0-553.44.1.el8_10 (rockylinux8)
- 4.18.0-553.56.1.el8_10
- 2025-06-19 14:20:34
- 2025-06-25 12:01:49
- K20250619_15
- CVE-2023-52922, CVSSv2 Score: 7.8
- Description:
can: bcm: Fix UAF in bcm_proc_show()
- CVE: https://access.redhat.com/security/cve/CVE-2023-52922
- Patch: rhel8/4.18.0-553.45.1.el8_10/CVE-2023-52922-can-bcm-Fix-UAF-in-bcm_proc_show.patch
- From: 4.18.0-553.45.1.el8_10
- CVE-2025-21785, CVSSv2 Score:
- Description:
Out of scope: ARM64 architecture isn't supported for current kernel
- CVE:
- Patch: skipped/CVE-2025-21785.patch
- From:
- CVE-2024-53150, CVSSv2 Score: 7.8
- Description:
ALSA: usb-audio: Fix out of bounds reads when finding clock sources
- CVE: https://access.redhat.com/security/cve/CVE-2024-53150
- Patch: rhel8/4.18.0-553.50.1.el8_10/CVE-2024-53150-alsa-usb-audio-fix-out-of-bounds-reads-when-finding-clock-sources.patch
- From: 4.18.0-553.50.1.el8_10
- CVE-2024-53141, CVSSv2 Score: 7.8
- Description:
netfilter: ipset: add missing range check in bitmap_ip_uadt
- CVE: https://access.redhat.com/security/cve/CVE-2024-53141
- Patch: rhel8/4.18.0-553.52.1.el8_10/CVE-2024-53141-netfilter-ipset-add-missing-range-check-in-bitmap-ip-uadt.patch
- From: 4.18.0-553.52.1.el8_10
- CVE-2022-49011, CVSSv2 Score: 7.8
- Description:
hwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new()
- CVE: https://access.redhat.com/security/cve/CVE-2022-49011
- Patch: rhel8/4.18.0-553.52.1.el8_10/CVE-2022-49011-hwmon-coretemp-fix-pci-device-refcount-leak-in-nv1a_.patch
- From: 4.18.0-553.52.1.el8_10
- CVE-2024-40906, CVSSv2 Score: 7.8
- Description:
net/mlx5: Always stop health timer during driver removal
- CVE: https://access.redhat.com/security/cve/CVE-2024-40906
- Patch: rhel8/4.18.0-553.53.1.el8_10/CVE-2024-40906-net-mlx5-always-stop-health-timer-during-driver-removal.patch
- From: 4.18.0-553.53.1.el8_10
- CVE-2024-44970, CVSSv2 Score: 5.5
- Description:
net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink
- CVE: https://access.redhat.com/security/cve/CVE-2024-44970
- Patch: rhel8/4.18.0-553.53.1.el8_10/CVE-2024-44970-net-mlx5e-SHAMPO-Fix-invalid-WQ-linked-list-unlink.patch
- From: 4.18.0-553.53.1.el8_10
- CVE-2025-21756, CVSSv2 Score: 7.8
- Description:
vsock: Keep the binding until socket destruction
- CVE: https://access.redhat.com/security/cve/CVE-2025-21756
- Patch: rhel8/4.18.0-553.53.1.el8_10/CVE-2025-21756-vsock-keep-the-binding-until-socket-destruction.patch
- From: 4.18.0-553.53.1.el8_10
- CVE-2025-21756, CVSSv2 Score: 7.8
- Description:
vsock: Orphan socket after transport release
- CVE: https://access.redhat.com/security/cve/CVE-2025-21756
- Patch: rhel8/4.18.0-553.53.1.el8_10/CVE-2025-21756-vsock-orphan-socket-after-transport-release.patch
- From: 4.18.0-553.53.1.el8_10
- CVE-2024-43842, CVSSv2 Score: 7.8
- Description:
wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter()
- CVE: https://access.redhat.com/security/cve/CVE-2024-43842
- Patch: rhel8/4.18.0-553.54.1.el8_10/CVE-2024-43842-wifi-rtw89-Fix-array-index-mistake-in-rtw89_sta_info_get_iter.patch
- From: 4.18.0-553.54.1.el8_10
- CVE-2022-49395, CVSSv2 Score:
- Description:
Out of scope: User-mode Linux isn't supported for current kernel
- CVE:
- Patch: skipped/CVE-2022-49395.patch
- From:
- N/A, CVSSv2 Score: N/A
- Description:
x86 xen add xenpv restore regs and return to usermode
- CVE: N/A
- Patch: 4.18.0/x86-xen-Add-xenpv_restore_regs_and_return_to_usermode-el8-372.patch
- From: N/A
- N/A, CVSSv2 Score: N/A
- Description:
kpatch add alt asm definitions
- CVE: https://www.kernel.org
- Patch: 4.18.0/kpatch-add-alt-asm-definitions-el8-372.patch
- From: N/A