INFSA-2025:7423: kernel security update
Information about definition
Identificator: INFSA-2025:7423
Type: security
Release date: 2025-06-10 09:02:14 UTC
Information about package
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Vulnerabilities description
- CVE-2025-21927
In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu().
- CVE-2024-58005
In the Linux kernel, the following vulnerability has been resolved: tpm: Change to kvalloc() in eventlog/acpi.c.
- CVE-2024-58007
In the Linux kernel, the following vulnerability has been resolved: soc: qcom: socinfo: Avoid out of bounds read of serial number.
- CVE-2024-58069
In the Linux kernel, the following vulnerability has been resolved: rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read.
- CVE-2025-21633
In the Linux kernel, the following vulnerability has been resolved: kernel: io_uring/sqpoll: zero sqd->thread on tctx errors.
- CVE-2025-21993
In the Linux kernel, the following vulnerability has been resolved: iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic().
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2024-58005
|
no information | 4.4 | no information |
|
NIST — CVE-2024-58007
|
no information | 7.1 | no information |
|
NIST — CVE-2024-58069
|
no information | 7.0 | no information |
|
NIST — CVE-2025-21633
|
no information | 7.0 | no information |
|
NIST — CVE-2025-21927
|
no information | 8.1 | no information |
|
NIST — CVE-2025-21993
|
no information | 7.1 | no information |
Updated packages