INFSA-2025:13589: kernel security update
Information about definition
Identificator: INFSA-2025:13589
Type: security
Release date: 2025-08-15 16:02:48 UTC
Information about package
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Vulnerabilities description
- CVE-2024-56644
Linux Kernel is vulnerable to a denial of service, caused by a dst objects leak in ip6_negative_advice() when executed for an expired IPv6 route located in the exception table.
- CVE-2025-21759
In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: extend RCU protection in igmp6_send().
- CVE-2025-21727
In the Linux kernel, the following vulnerability has been resolved: padata: fix UAF in padata_reorder.
- CVE-2021-47670
Linux Kernel could allow a local authenticated attacker to execute arbitrary code on the system, caused by an use-after-free in can: peak_usb.
- CVE-2025-38085
In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race.
- CVE-2025-38159
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2021-47670
|
no information | 7.0 | no information |
|
NIST — CVE-2024-56644
|
no information | 4.7 | no information |
|
NIST — CVE-2025-21727
|
no information | 7.0 | no information |
|
NIST — CVE-2025-21759
|
no information | 6.6 | no information |
|
NIST — CVE-2025-38085
|
no information | 7.1 | no information |
|
NIST — CVE-2025-38159
|
no information | 7.1 | no information |
Updated packages