INFSA-2025:19440: kernel-rt security update
Information about definition
Identificator: INFSA-2025:19440
Type: security
Release date: 2025-11-11 15:49:43 UTC
Information about package
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Vulnerabilities description
- CVE-2023-53226
A vulnerability in the Marvell mwifiex driver (mwifiex, Marvell Wi-Fi) allows malformed over-the-air frames to trigger out-of-bounds reads and an integer underflow in the RX path, which can crash the kernel or drop packets.
- CVE-2023-53257
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check S1G action frame size.
- CVE-2025-39864
A use-after-free issue was discovered in the cfg80211 subsystem, caused by freeing beacon_ies structures even when they were still referenced through hidden_beacon_bss.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2023-53226
|
no information | 7.1 | no information |
|
NIST — CVE-2023-53257
|
no information | 7.5 | no information |
|
NIST — CVE-2025-39864
|
no information | 7.0 | no information |
Updated packages
Preparing to download...