Release date:
2026-07-11 17:31:39 UTC
Description:
* CVE-2026-31607
- usbip: validate number_of_packets in usbip_pack_ret_submit()
{CVE-2026-31607}
* CVE-2026-31527
- driver core: platform: use generic driver_override infrastructure
{CVE-2026-31527}
* CVE-2026-43493
- crypto: pcrypt - Fix handling of MAY_BACKLOG requests {CVE-2026-43493}
* CVE-2026-43038
- ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach()
{CVE-2026-43038}
* CVE-2026-43037
- ip6_tunnel: clear skb2->cb[] in ip4ip6_err() {CVE-2026-43037}
* CVE-2026-23083
- fou: Don't allow 0 for FOU_ATTR_IPPROTO. {CVE-2026-23083}
* CVE-2024-57982
- xfrm: state: fix out-of-bounds read during lookup {CVE-2024-57982}
* CVE-2024-50115
- KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory
{CVE-2024-50115}
* CVE-2026-53166
- futex/requeue: Prevent NULL pointer dereference in remove_waiter() on
self-deadlock {CVE-2026-53166}
* CVE-2026-43499
- rtmutex: Use waiter::task instead of current in remove_waiter()
{CVE-2026-43499}
* CVE-2023-6546
- tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux
{CVE-2023-6546}
* CVE-2023-53510
- scsi: ufs: core: Fix handling of lrbp->cmd {CVE-2023-53510}
* CVE-2023-53286
- RDMA/mlx5: Return the firmware result upon destroying QP/RQ
{CVE-2023-53286}
* CVE-2023-53259
- VMCI: check context->notify_page after call to get_user_pages_fast() to
avoid GPF {CVE-2023-53259}
* CVE-2026-31500
- Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock
{CVE-2026-31500}
* CVE-2023-52916
- media: aspeed: Fix memory overwrite if timing is 1600x900 {CVE-2023-52916}
* CVE-2022-50021
- ext4: block range must be validated before use in ext4_mb_clear_bb()
{CVE-2022-50021}
* CVE-2022-49799
- tracing: Fix wild-memory-access in register_synth_event() {CVE-2022-49799}
* CVE-2022-49234
- net: dsa: Avoid cross-chip syncing of VLAN filtering {CVE-2022-49234}
* CVE-2022-48744
- net/mlx5e: Avoid field-overflowing memcpy() {CVE-2022-48744}
* CVE-2026-23164
- rocker: fix memory leak in rocker_world_port_post_fini() {CVE-2026-23164}
* CVE-2026-23150
- nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame(). {CVE-2026-23150}
* CVE-2026-23133
- wifi: ath10k: fix dma_free_coherent() pointer {CVE-2026-23133}
* CVE-2026-23121
- mISDN: annotate data-race around dev->work {CVE-2026-23121}
* CVE-2026-23108
- can: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak
{CVE-2026-23108}
* CVE-2026-23103
- ipvlan: Make the addrs_lock be per port {CVE-2026-23103}
* CVE-2026-23101
- leds: led-class: Only Add LED to leds_list when it is fully ready
{CVE-2026-23101}
* CVE-2026-23095
- gue: Fix skb memleak with inner IP protocol 0. {CVE-2026-23095}
* CVE-2026-23084
- be2net: Fix NULL pointer dereference in be_cmd_get_mac_from_list
{CVE-2026-23084}
* CVE-2026-23080
- can: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak
{CVE-2026-23080}
* CVE-2026-23071
- regmap: Fix race condition in hwspinlock irqsave routine {CVE-2026-23071}
* CVE-2026-23058
- can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak
{CVE-2026-23058}
* CVE-2026-23038
- pnfs/flexfiles: Fix memory leak in nfs4_ff_alloc_deviceid_node()
{CVE-2026-23038}
* CVE-2026-23011
- ipv4: ip_gre: make ipgre_header() robust {CVE-2026-23011}
* CVE-2026-23003
- ip6_tunnel: use skb_vlan_inet_prepare() in __ip6_tnl_rcv()
{CVE-2026-23003}
* CVE-2025-71194
- btrfs: fix deadlock in wait_current_trans() due to ignored transaction
type {CVE-2025-71194}
* CVE-2026-31417
- net/x25: Fix overflow when accumulating packets {CVE-2026-31417}
* CVE-2026-31396
- net: macb: fix use-after-free access to PTP clock {CVE-2026-31396}
* CVE-2025-68769
- f2fs: fix return value of f2fs_recover_fsync_data() {CVE-2025-68769}
* CVE-2025-68289
- usb: gadget: f_eem: Fix memory leak in eem_unwrap {CVE-2025-68289}
* Miscellaneous upstream changes
- xen/privcmd: fix double free via VMA splitting
- net: do not delay dst_entries_add() in dst_release()
- drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer
- drm/amd/pm: Fix negative array index read
- drm/amd/display: Check link_index before accessing dc->links[]
- xfs: don't walk off the end of a directory data block
- wifi: cfg80211: check A-MSDU format more carefully
- smb: client: fix potential UAF in cifs_stats_proc_write()
- f2fs: fix to tag gcing flag on page during block migration
- ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_find()
- drivers core: Use sysfs_emit for shared_cpu_map_show and
shared_cpu_list_show
* Bump ABI 5.4.0-235
Updated packages:
-
linux-buildinfo-5.4.0-235-generic_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:f2eebd16338ed597211ceb0db0c7c62bb992b538
-
linux-buildinfo-5.4.0-235-lowlatency_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:778f6adaa68bbd37343edd4eeb479b0d0e156fc2
-
linux-cloud-tools-5.4.0-235_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:ffb0ba64ce2747cf073c44030670f04eb18eabc7
-
linux-cloud-tools-5.4.0-235-generic_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:888ce9871b37f27367704fe61b63d8cd3445e375
-
linux-cloud-tools-5.4.0-235-lowlatency_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:49ce24ebe269459507db0b4fb5920a01efd7ff45
-
linux-cloud-tools-common_5.4.0-235.255+tuxcare.els1_all.deb
sha:0799331f9373118a80e2c6cf9be83e05440fc9a2
-
linux-doc_5.4.0-235.255+tuxcare.els1_all.deb
sha:2bc18f2270993daad7971524109d83037bc1a002
-
linux-headers-5.4.0-235_5.4.0-235.255+tuxcare.els1_all.deb
sha:3273fc77733e5f8361664a71e327478297d4a0c7
-
linux-headers-5.4.0-235-generic_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:f21e1d4d20c2535da028286cca914616a2557f10
-
linux-headers-5.4.0-235-lowlatency_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:0851717377b4d105862e2419de93e13f0a507b17
-
linux-image-unsigned-5.4.0-235-generic_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:fb1daf4c2078cede21a54767ea10ea3419a4e542
-
linux-image-unsigned-5.4.0-235-lowlatency_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:fed5f5a8264516c934332bad46ab926e2a72a3aa
-
linux-libc-dev_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:d652bd750135a697db36a1d5c0be57b9eb6f285e
-
linux-modules-5.4.0-235-generic_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:05215944a0ac34126b8f2837834cef0e917d1091
-
linux-modules-5.4.0-235-lowlatency_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:e035b46c1f721097b5114590d36eb8bd5af358f8
-
linux-modules-extra-5.4.0-235-generic_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:1a515573eb91cf2614ccce4c78399d921a4eb430
-
linux-source-5.4.0_5.4.0-235.255+tuxcare.els1_all.deb
sha:f6ea323eb3548d595e9ce70babb2641c0128a3e5
-
linux-tools-5.4.0-235_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:6ffba2e4ab0a9b5a7de70c181f59a18cf8bf26cd
-
linux-tools-5.4.0-235-generic_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:24e7e6201035ea8687e3ff288e77b7cf5178b5fa
-
linux-tools-5.4.0-235-lowlatency_5.4.0-235.255+tuxcare.els1_amd64.deb
sha:1f5a904c871f6d4e4501b7c244d3488aabf98ca9
-
linux-tools-common_5.4.0-235.255+tuxcare.els1_all.deb
sha:1cce5aa6f90c43aafec42009ddbfb2f85c642603
-
linux-tools-host_5.4.0-235.255+tuxcare.els1_all.deb
sha:9b48dd849be8c421067603b31262072f3bd78ece
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.