INFSA-2025:17397: kernel security update
Information about definition
Identificator: INFSA-2025:17397
Type: security
Release date: 2025-10-09 12:07:52 UTC
Information about package
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Vulnerabilities description
- CVE-2025-38527
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in cifs_oplock_break.
- CVE-2025-39730
A flaw out of boundary read in the Linux kernel NFS functionality was found in the way connected user sends malicious data to the server. A remote user could use this flaw to crash the system.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2025-38527
|
no information | 7.0 | no information |
|
NIST — CVE-2025-39730
|
no information | 7.5 | no information |
Updated packages
Preparing to download...