[CLSA-2026:1782148597] Fix of 33 CVEs
Type:
security
Severity:
Important
Release date:
2026-07-07 11:39:09 UTC
Description:
* CVE-2022-49267 - mmc: core: use sysfs_emit() instead of sprintf() {CVE-2022-49267} - mmc: sdio: Export SDIO revision and info strings to userspace {CVE-2022-49267} * CVE-2026-43040 - net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info-leak {CVE-2026-43040} * CVE-2026-43027 - netfilter: nf_conntrack_helper: pass helper to expect cleanup {CVE-2026-43027} * CVE-2025-71091 - team: fix check for port enabled in team_queue_override_port_prio_changed() {CVE-2025-71091} * CVE-2025-71075 - scsi: aic94xx: fix use-after-free in device removal path {CVE-2025-71075} * CVE-2025-38565 - perf/core: Exit early on perf_mmap() fail {CVE-2025-38565} * CVE-2025-38401 - mtk-sd: Prevent memory corruption from DMA map failure {CVE-2025-38401} * CVE-2023-53218 - rxrpc: Make it so that a waiting process can be aborted {CVE-2023-53218} * CVE-2025-38230 - jfs: validate AG parameters in dbMount() to prevent crashes {CVE-2025-38230} * CVE-2023-52867 - drm/radeon: possible buffer overflow {CVE-2023-52867} * CVE-2023-53432 - firewire: net: fix use after free in fwnet_finish_incoming_packet() {CVE-2023-53432} * CVE-2025-39891 - wifi: mwifiex: Initialize the chan_stats array to zero {CVE-2025-39891} * CVE-2025-38666 - net: appletalk: Fix use-after-free in AARP proxy probe {CVE-2025-38666} * CVE-2025-39828 - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() {CVE-2025-39828} * CVE-2026-43020 - Bluetooth: MGMT: validate LTK enc_size on load {CVE-2026-43020} * CVE-2026-43011 - net/x25: Fix potential double free of skb {CVE-2026-43011} * CVE-2026-31778 - ALSA: caiaq: fix stack out-of-bounds read in init_card {CVE-2026-31778} * CVE-2026-31748 - comedi: me_daq: Fix potential overrun of firmware buffer {CVE-2026-31748} * CVE-2026-31747 - comedi: me4000: Fix potential overrun of firmware buffer {CVE-2026-31747} * CVE-2026-31720 - usb: gadget: f_uac1_legacy: validate control request size {CVE-2026-31720} * CVE-2026-31696 - rxrpc: Fix missing validation of ticket length in non-XDR key preparsing {CVE-2026-31696} * CVE-2026-31659 - batman-adv: reject oversized global TT response buffers {CVE-2026-31659} * CVE-2026-31629 - nfc: llcp: add missing return after LLCP_CLOSED checks {CVE-2026-31629} * CVE-2026-31626 - staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() {CVE-2026-31626} * CVE-2026-31622 - NFC: digital: Bounds check NFC-A cascade depth in SDD response handler {CVE-2026-31622} * CVE-2026-31602 - ALSA: ctxfi: Limit PTP to a single page {CVE-2026-31602} * CVE-2026-31583 - media: em28xx: fix use-after-free in em28xx_v4l2_open() {CVE-2026-31583} * CVE-2026-31581 - ALSA: 6fire: fix use-after-free on disconnect {CVE-2026-31581} * CVE-2026-31576 - media: hackrf: fix to not free memory after the device is registered in hackrf_probe() {CVE-2026-31576} * CVE-2026-31504 - net: fix fanout UAF in packet_release() via NETDEV_UP race {CVE-2026-31504} * CVE-2026-23388 - Squashfs: check metadata block offset is within range {CVE-2026-23388} * CVE-2026-23372 - nfc: rawsock: cancel tx_work before socket teardown {CVE-2026-23372} * Bump ABI 4.15.0-259
Updated packages:
  • linux-buildinfo-4.15.0-259-generic_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:bf2bcb9e7a67232b51aee41c0a4767c51305b8f1
  • linux-buildinfo-4.15.0-259-lowlatency_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:4a3ffb6a0896700d9c026cebea106c7084f37a56
  • linux-cloud-tools-4.15.0-259_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:bd1edff693dfb9dcf0dc9d22873d82f615ee9939
  • linux-cloud-tools-4.15.0-259-generic_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:939fc6ae77f33f4d1ca39d7b7066d27974343a90
  • linux-cloud-tools-4.15.0-259-lowlatency_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:bae5803ad77068ba27921d826b82e91ef4c5b282
  • linux-cloud-tools-common_4.15.0-259.270+tuxcare.els1_all.deb
    sha:033803ab292423c9969939940c813e31c8bc2ffe
  • linux-doc_4.15.0-259.270+tuxcare.els1_all.deb
    sha:52353cae1b61d9b74a6d3aea242495efb62db3f9
  • linux-headers-4.15.0-259_4.15.0-259.270+tuxcare.els1_all.deb
    sha:035149643cdbbd6003c209013319fd2a747cbe1d
  • linux-headers-4.15.0-259-generic_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:790bc5b68dd9b410e32a03e9dc816fbdd06e26af
  • linux-headers-4.15.0-259-lowlatency_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:606ee7cf3a58f7f5717fd52578892f2090ac97b7
  • linux-image-unsigned-4.15.0-259-generic_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:78ac9f92dcfea8a7566efc8ddcd57dd790c5fe8b
  • linux-image-unsigned-4.15.0-259-lowlatency_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:369967ec2b91ed5cb66af9931fdca86e63900dd0
  • linux-libc-dev_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:b30c4feb955387633d1d0590b8a01c641ef57082
  • linux-modules-4.15.0-259-generic_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:61c6418e30fc48ab63b3c3e074c850cd081f1332
  • linux-modules-4.15.0-259-lowlatency_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:4832b4ba6308b6356d270602c93e9cf677300f83
  • linux-modules-extra-4.15.0-259-generic_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:d6e41e13e5aa4e4f061a73d890357722b792f327
  • linux-source-4.15.0_4.15.0-259.270+tuxcare.els1_all.deb
    sha:20f5ff90bccafe126cb1daea811fb01acafd31a2
  • linux-tools-4.15.0-259_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:aeb2b3ecf14957b736aca753888e9e33135c0782
  • linux-tools-4.15.0-259-generic_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:a8917fe191570e42fa8dc86c4138132653c43ae0
  • linux-tools-4.15.0-259-lowlatency_4.15.0-259.270+tuxcare.els1_amd64.deb
    sha:3962dbd5d73a3ada9cb6fdde3ef32fd9ca630f43
  • linux-tools-common_4.15.0-259.270+tuxcare.els1_all.deb
    sha:3da2712ef8e26c15fe1f4dfb4205f122d96a96c1
  • linux-tools-host_4.15.0-259.270+tuxcare.els1_all.deb
    sha:45bcee889a3aa474fc7b479a102964ff4b73500e
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.