INFSA-2025:14009: kernel security update
Information about definition
Identificator: INFSA-2025:14009
Type: security
Release date: 2025-10-14 17:43:56 UTC
Information about package
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Vulnerabilities description
- CVE-2025-21867
In the Linux kernel, the following vulnerability has been resolved: bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type().
- CVE-2025-38124
A denial of service vulnerability has been discovered in the Linux kernel's UDP Generic Segmentation Offload (GSO) functionality. This flaw allows a local, unprivileged user to trigger a kernel crash by generating UDP packets with a specially malformed frag_list geometry. Successful exploitation of this vulnerability could lead to a system crash, severely impacting the availability and stability of the affected system.
- CVE-2025-38250
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_core: Fix use-after-free in vhci_flush().
- CVE-2025-38380
In the Linux kernel, the following vulnerability has been resolved: i2c/designware: Fix an initialization issue.
- CVE-2025-38471
In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2025-21867
|
no information | 7.0 | no information |
|
NIST — CVE-2025-38124
|
no information | 7.0 | no information |
|
NIST — CVE-2025-38250
|
no information | 7.3 | no information |
|
NIST — CVE-2025-38380
|
no information | 7.0 | no information |
|
NIST — CVE-2025-38471
|
no information | 7.4 | no information |
Updated packages
Preparing to download...