Release date:
2026-07-07 11:39:29 UTC
Description:
- libceph: prevent potential out-of-bounds reads in handle_auth_done() {CVE-2026-22984}
- svcrdma: bound check rq_pages index in inline path {CVE-2025-71068}
- drm/i915: Fix NULL ptr deref by checking new_crtc_state {CVE-2023-53833}
- netfilter: nf_tables: release flowtable after rcu grace period on error {CVE-2026-23392}
- wifi: brcmfmac: validate bsscfg indices in IF events {CVE-2026-43110}
- xfrm: hold dev ref until after transport_finish NF_HOOK {CVE-2026-31663}
- mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() {CVE-2026-31586}
- scsi: sg: Do not sleep in atomic context {CVE-2025-40259}
- bpf, sockmap: Fix race between element replace and close() {CVE-2024-56664}
- Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp} {CVE-2023-53827}
- drm/i915/gem: add missing boundary check in vm_access {CVE-2023-28410}
- ASoC: SOF: debug: Fix potential buffer overflow by snprintf() {CVE-2022-50051}
- tipc: fix use-after-free Read in tipc_named_reinit {CVE-2022-49696}
- wifi: mac8021: fix possible oob access in ieee80211_get_rate_duration {CVE-2022-49022}
- drm/i915/gem: Really move i915_gem_context.link under ref protection {CVE-2022-48662}
- drm/i915: Release i915_gem_context from a worker {CVE-2022-48662}
- KVM: x86/mmu: Don't advance iterator after restart due to yielding {CVE-2021-47094}
- HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq {CVE-2026-43051}
- Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold {CVE-2026-31408}
- nbd: defer config unlock in nbd_genl_connect {CVE-2025-68366}
- netfilter: xt_tcpmss: check remaining length before reading optlen {CVE-2026-43190}
- media: dvb-net: fix OOB access in ULE extension header tables {CVE-2026-31405}
- net: sched: sfb: fix null pointer access issue when sfb_init() fails {CVE-2022-50356}
- skbuff: skb_segment, Call zero copy functions before using skbuff frags {CVE-2023-53354}
- nfsd: call op_release, even when op_func returns an error {CVE-2023-53241}
- icmp6: Fix null-ptr-deref of ip6_null_entry->rt6i_idev in icmp6_dev(). {CVE-2023-53343}
- RDMA/mlx5: Fix mlx5_ib_get_hw_stats when used for device {CVE-2023-53393}
- scsi: target: iscsi: Fix a race condition between login_work and the login thread {CVE-2022-50350}
- Make filldir[64]() verify the directory entry filename is valid {CVE-2019-10220}
- usb: class: cdc-wdm: fix reordering issue in read code path {CVE-2026-43427}
- crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id {CVE-2025-68724}
- nfsd: fix heap overflow in NFSv4.0 LOCK replay cache {CVE-2026-31402}
- drm/amdgpu: Fix use-after-free race in VM acquire {CVE-2026-43370}
- net: use dst_dev_rcu() in sk_setup_caps() {CVE-2025-40170}
- team: fix check for port enabled in team_queue_override_port_prio_changed() {CVE-2025-71091}
- proc/vmcore: fix clearing user buffer by properly using clear_user() {CVE-2021-47566}
- cxgb4: avoid accessing registers when clearing filters {CVE-2021-47138}
- bpf: Fix ringbuf helper function compatibility {CVE-2021-34866}
- ext4: convert inline data to extents when truncate exceeds inline size {CVE-2026-31452}
- wifi: mac80211: check tdls flag in ieee80211_tdls_oper {CVE-2026-43052}
- atm: lec: fix use-after-free in sock_def_readable() {CVE-2026-43050}
- ext4: block range must be validated before use in ext4_mb_clear_bb() {CVE-2022-50021}
- bonding: limit BOND_MODE_8023AD to Ethernet devices {CVE-2026-23099}
- net/sched: cls_u32: use skb_header_pointer_careful() {CVE-2026-23204}
- scsi: qla2xxx: Fix bsg_done() causing double free {CVE-2025-71238}
- ice: Fix memory corruption in VF driver {CVE-2022-49722}
- net: usb: cdc_ncm: add ndpoffset to NDP16 nframes bounds check {CVE-2026-23448}
- netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table() {CVE-2026-43450}
- tunnels: fix kasan splat when generating ipv4 pmtu error {CVE-2023-53600}
- Bluetooth: MGMT: validate LTK enc_size on load {CVE-2026-43020}
- netfilter: nf_conntrack_helper: pass helper to expect cleanup {CVE-2026-43027}
- KVM: nVMX: unconditionally cancel preemption timer in free_nested (CVE-2019-7221) {CVE-2019-7221}
- RDMA/umad: Reject negative data_len in ib_umad_write {CVE-2026-23243}
- netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() {CVE-2026-23455}
- netfilter: ip6t_eui64: reject invalid MAC header for all packets {CVE-2026-31685}
- can: raw: fix ro->uniq use-after-free in raw_rcv() {CVE-2026-31532}
- can: af_can: export can_sock_destruct()
Updated packages:
-
bpftool-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:ebd435f486d52dfc20ceb9e31108a0e67cd1594ed49c1cc96cf566897f704a26
-
kernel-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:5c97fb37c5241528e7112d3260373436de52fc3aa59947c9d62e7d907a059995
-
kernel-core-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:ff28380bb1510b35d67c7fadebeb7214670532fb8418633f1f56f0f4a74aef49
-
kernel-cross-headers-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:abd9ad567155baa6276fb9058b0854d0da7789db177204972bae10e30f3603c1
-
kernel-debug-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:7339f381abe6a4c8ccecea654d51d223a9fae09f832fdde423f4dced12b32618
-
kernel-debug-core-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:f919b8af838223dc00f8639ea9bacf31c06e224e23dbf33d269a9df7335fbec4
-
kernel-debug-devel-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:2d74970da9d1adcaedeb9b42ae80ca3f882735b8938b1a86b7ccd323413c4c2d
-
kernel-debug-modules-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:a7bcea99e10fd253e6cb983de2c84e3eb6d144c99a8a8df1f84fce62ee2121d8
-
kernel-debug-modules-extra-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:931b0441a2a58f792e62a89a635d005caedd9834a9ea18f6df7004d1da4c586b
-
kernel-debug-modules-internal-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:7fcdf7534bb898765bcf09c33a1757b3df4bf951bbe1831373f42e51623300a3
-
kernel-devel-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:702226772ca86d14ab9cde11182023f0b8306f4328366897694b4bdbfd1288e4
-
kernel-headers-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:c449407f7217c01a88790600c647f94403e2c0ef3eaf29e04eddf12a11c7baa4
-
kernel-ipaclones-internal-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:2df972767b27e7a6a9e394047febe25c39c7a20c211bea27d74ba0cdbfe15322
-
kernel-modules-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:fcc4af421334f610e58f629f1f5b84f966ef8d5d72cd8a7cf51ff5f1e97cd5f2
-
kernel-modules-extra-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:0ced944393b3951c676384822f7ddb241b0cd2febc54a44c1ac0eadaf58ae545
-
kernel-modules-internal-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:ec8e18a6a9d850d8c424a0fc2903ef6303c7dd7fc7ca7096e2206448b8877405
-
kernel-selftests-internal-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:b390c00ed3be507621a89b6fba7a186afb403583824fbadf20435304795621a2
-
kernel-tools-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:2c3fdcbcf0cd62c4f1d4e07d166b5f89ba7033a7e0f29f98f577e8fd2929f675
-
kernel-tools-libs-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:7186fda6027987805bfaa39c297f83d69f2ec1233d2a2f9f2cdcd8b14b2cb0b0
-
kernel-tools-libs-devel-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:63a26d5c5f4d4a120d41bdb8620d068ab2983bbb84b968fcdcd30d6496a366a8
-
perf-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:edce4943de715ae07515cf384cab39847b071482f9df58cc360857d13c95e285
-
python3-perf-4.18.0-348.7.1.el8_5.tuxcare.els42.x86_64.rpm
sha:b36121669905c8910aadcfb40768710d52051092ab1ec0b55cc8fe90ec0f197a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.