INFSA-2025:9080: kernel security update
Information about definition
Identificator: INFSA-2025:9080
Type: security
Release date: 2025-07-07 11:43:40 UTC
Information about package
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Vulnerabilities description
- CVE-2025-21961
In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix truesize for mb-xdp-pass case.
- CVE-2025-21963
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acdirmax mount option.
- CVE-2025-21969
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix slab-use-after-free.
- CVE-2025-21979
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: cancel wiphy_work before freeing wiphy.
- CVE-2025-21999
In the Linux kernel, the following vulnerability has been resolved: proc: fix UAF in proc_get_inode().
- CVE-2025-22126
In the Linux kernel, the following vulnerability has been resolved: md: fix mddev uaf while iterating all_mddevs list.
- CVE-2025-37750
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in decryption with multichannel.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2025-21961
|
no information | 7.0 | no information |
|
NIST — CVE-2025-21963
|
no information | 7.1 | no information |
|
NIST — CVE-2025-21969
|
no information | 7.1 | no information |
|
NIST — CVE-2025-21979
|
no information | 7.1 | no information |
|
NIST — CVE-2025-21999
|
no information | 6.4 | no information |
|
NIST — CVE-2025-22126
|
no information | 7.0 | no information |
|
NIST — CVE-2025-37750
|
no information | 7.3 | no information |
Updated packages