INFSA-2025:13590: kernel-rt security update
Information about definition
Identificator: INFSA-2025:13590
Type: security
Release date: 2025-08-15 15:59:24 UTC
Information about package
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Vulnerabilities description
- CVE-2025-21759
In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: extend RCU protection in igmp6_send().
- CVE-2025-21727
In the Linux kernel, the following vulnerability has been resolved: padata: fix UAF in padata_reorder.
- CVE-2021-47670
Linux Kernel could allow a local authenticated attacker to execute arbitrary code on the system, caused by an use-after-free in can: peak_usb.
- CVE-2025-38085
In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race.
- CVE-2025-38159
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2021-47670
|
no information | 7.0 | no information |
|
NIST — CVE-2025-21727
|
no information | 7.0 | no information |
|
NIST — CVE-2025-21759
|
no information | 6.6 | no information |
|
NIST — CVE-2025-38085
|
no information | 7.1 | no information |
|
NIST — CVE-2025-38159
|
no information | 7.1 | no information |
Updated packages