Release date:
2026-05-28 18:09:59 UTC
Description:
- smb: client: reject userspace cifs.spnego descriptions
- mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash {CVE-2024-35854}
- cifs: Fix memory leak when build ntlmssp negotiate blob failed {CVE-2022-50372}
- scsi: lpfc: Check kzalloc() in lpfc_sli4_cgn_params_read() {CVE-2023-53038}
- drm/amd/display: Do not set DRR on pipe Commit {CVE-2023-53042}
- tcp: fix skb_copy_ubufs() vs BIG TCP {CVE-2023-53669}
- clk: Fix clk_core_get NULL dereference {CVE-2024-27038}
- drm/amd/display: Check null pointers before using dc->clk_mgr {CVE-2024-49907}
- bpf: reject unhashed sockets in bpf_sk_assign {CVE-2023-53585}
- driver core: fix resource leak in device_add() {CVE-2023-53594}
- wifi: ath9k: hif_usb: fix memory leak of remain_skbs {CVE-2023-53641}
- wifi: ath9k: verify the expected usb_endpoints are present {CVE-2022-50297}
- drm/amd/display: Fix potential null-deref in dm_resume {CVE-2022-50535}
- ext4: don't allow journal inode to have encrypt flag {CVE-2022-50277}
- tls: get psock ref after taking rxlock to avoid leak {CVE-2024-35908}
- cpumap: Zero-initialise xdp_rxq_info struct before running XDP program {CVE-2024-27431}
- bpf: Guard stack limits against 32bit overflow {CVE-2023-52676}
- can: isotp: isotp_sendmsg(): add result check for wait_event_interruptible() {CVE-2021-47457}
- serial: core: fix transmit-buffer reset and memleak {CVE-2021-47527}
- cpufreq: exit() callback is optional {CVE-2024-38615}
- ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() {CVE-2024-39276}
- tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets {CVE-2024-36905}
- wifi: nl80211: reject iftype change with mesh ID change {CVE-2024-27410}
- tcp: do not accept ACK of bytes we never sent {CVE-2023-52881}
- crypto: pcrypt - Fix hungtask for PADATA_RESET {CVE-2023-52813}
- net/mlx5: Properly link new fs rules into the tree {CVE-2024-35960}
- usb: ulpi: fix memory leak on ulpi_register() error paths
- usb: ulpi: fix double free in ulpi_register_interface() error path {CVE-2026-31759}
- wifi: ath11k: fix htt pktlog locking {CVE-2023-52800}
- net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute {CVE-2025-21653}
- calipso: fix memory leak in netlbl_calipso_add_pass() {CVE-2023-52698}
- wifi: iwlwifi: mvm: avoid NULL pointer dereference {CVE-2024-49929}
- ext4: update orig_path in ext4_find_extent() {CVE-2024-49881}
- drm/vmwgfx: Fix a deadlock in dma buf fence polling {CVE-2024-43863}
- RDMA/restrack: Fix potential invalid address access {CVE-2024-42080}
- net: can: j1939: Initialize unused data in j1939_send_one() {CVE-2024-42076}
- nfsd: clear acl_access/acl_default after releasing them {CVE-2025-21796}
- rtc: pl031: fix rtc features null pointer dereference {CVE-2022-49273}
- net: veth: clear GRO when clearing XDP even when down {CVE-2024-26803}
- coresight: cti: Fix hang in cti_disable_hw() {CVE-2022-50491}
- scsi: qla2xxx: Fix deletion race condition {CVE-2023-53615}
- iw_cxgb4: Fix potential NULL dereference in c4iw_fill_res_cm_id_entry() {CVE-2023-53476}
- scsi: qla2xxx: Fix potential NULL pointer dereference {CVE-2023-53451}
- usb: ucsi_acpi: Increase the command completion timeout {CVE-2023-53168}
- drivers: base: dd: fix memory leak with using debugfs_lookup() {CVE-2023-53390}
- USB: fix memory leak with using debugfs_lookup() {CVE-2023-53359}
- PM: domains: fix memory leak with using debugfs_lookup() {CVE-2023-53202}
- drm/client: Fix memory leak in drm_client_modeset_probe {CVE-2023-53288}
- drivers: base: component: fix memory leak with using debugfs_lookup() {CVE-2023-53409}
- USB: uhci: fix memory leak with using debugfs_lookup() {CVE-2023-53197}
- media: uvcvideo: Handle cameras with invalid descriptors {CVE-2023-53437}
- arm64: csum: Fix OoB access in IP checksum code for negative lengths {CVE-2023-53726}
- bnxt: Do not read past the end of test names {CVE-2023-53010}
- dax: make sure inodes are flushed before destroy cache {CVE-2022-49220}
- cifs: Fix oops due to uncleared server->smbd_conn in reconnect {CVE-2023-53006}
- net: flow_dissector: use DEBUG_NET_WARN_ON_ONCE {CVE-2024-42321}
- PCI: Fix use-after-free of slot->bus on hot remove {CVE-2024-53194}
- net/ipv6: release expired exception dst cached in socket {CVE-2024-56644}
- net: sched: fix ordering of qlen adjustment {CVE-2024-53164}
- watch_queue: Fix NULL dereference in error cleanup {CVE-2022-49257}
- lz4: fix LZ4_decompress_safe_partial read out of bound {CVE-2022-49078}
- vmxnet3: disable rx data ring on dma allocation failure {CVE-2024-40923}
- ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node() {CVE-2024-36955}
- Bluetooth: hci_{ldisc,serdev}: check percpu_init_rwsem() failure {CVE-2022-50374}
- drm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag {CVE-2024-35817}
- dm snapshot: fix lockup in dm_exception_table_exit {CVE-2024-35805}
- nouveau: fix instmem race condition around ptr stores {CVE-2024-26984}
- wireguard: netlink: access device through ctx instead of peer {CVE-2024-26950}
- drm/i915/gt: Reset queue_priority_hint on parking {CVE-2024-26937}
- netfilter: nft_set_pipapo: do not free live element {CVE-2024-26924}
- dmaengine: fix NULL pointer in channel unregistration function {CVE-2023-52492}
- PCI/PM: Drain runtime-idle callbacks before driver removal {CVE-2024-35809}
- nvme-fc: do not wait in vain when unloading module {CVE-2024-26846}
- netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp {CVE-2026-31427}
- phylib: fix potential use-after-free {CVE-2022-48754}
- mm/filemap: skip to create PMD-sized page cache if needed {CVE-2024-41031}
- VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() {CVE-2024-35944}
- mlxsw: spectrum_acl_tcam: Fix incorrect list API usage {CVE-2024-36006}
- wifi: ath11k: decrease MHI channel buffer length to 8KB {CVE-2024-35938}
- dyndbg: fix old BUG_ON in >control parser {CVE-2024-35947}
- ALSA: core: Fix NULL module pointer assignment at card init {CVE-2024-38605}
- wifi: iwlwifi: mvm: rfi: fix potential response leaks {CVE-2024-35912}
- x86/fpu: Keep xfd_state in sync with MSR_IA32_XFD {CVE-2024-35801}
- ipv6: avoid overflows in ip6_datagram_send_ctl() {CVE-2026-31415}
- wifi: mac80211: don't return unset power in ieee80211_get_tx_power() {CVE-2023-52832}
- i2c: core: Run atomic i2c xfer when !preemptible {CVE-2023-52791}
- mmc: sdio: fix possible resource leaks in some error paths {CVE-2023-52730}
- protect the fetch of ->fd[fd] in do_dup2() from mispredictions {CVE-2024-42265}
- wifi: mac80211: fix potential sta-link leak {CVE-2024-35838}
- octeontx2-af: avoid off-by-one read from userspace {CVE-2024-36957}
- xen-netfront: Add missing skb_mark_for_recycle {CVE-2024-27393}
- net: hns3: do not allow call hns3_nic_net_open repeatedly {CVE-2021-47400}
- HID: sony: Fix a potential memory leak in sony_probe() {CVE-2023-52529}
- netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD {CVE-2026-31428}
- mm/gup: fix gup_pud_range() for dax {CVE-2022-48986}
- drm/virtio: Fix GEM handle creation UAF {CVE-2022-48899}
- ipv4: ip_gre: make ipgre_header() robust {CVE-2026-23011}
- ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() {CVE-2024-26894}
- RDMA/umad: Reject negative data_len in ib_umad_write {CVE-2026-23243}
- HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure {CVE-2026-43049}
- usb: class: cdc-wdm: fix reordering issue in read code path {CVE-2026-43427}
- bpf, cpumap: Make sure kthread is running before map update returns {CVE-2023-53577}
- wifi: mac80211: check tdls flag in ieee80211_tdls_oper {CVE-2026-43052}
- net/sched: Only allow act_ct to bind to clsact/ingress qdiscs and shared blocks {CVE-2026-23270}
- net/sched: act_ct: fix skb leak and crash on ooo frags {CVE-2023-52610}
- Bluetooth: L2CAP: Fix user-after-free {CVE-2022-50386}
- mm/mempolicy: fix memory leak in set_mempolicy_home_node system call {CVE-2022-50391}
- mm/kasan: fix double free for kasan pXds {CVE-2026-31686}
- ext4: convert inline data to extents when truncate exceeds inline size {CVE-2026-31452}
- nfsd: fix heap overflow in NFSv4.0 LOCK replay cache {CVE-2026-31402}
- dax: Fix dax_mapping_release() use after free {CVE-2023-53613}
Updated packages:
-
bpftool-7.0.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:6bd4376ff0ca8ae45867713c04ac203e6c7788e4683258332acdb847d3da117f
-
kernel-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:5b67084c50d556d3c093e24462d6708b6bb9a8dad0695f7946e4cbbabdbd8250
-
kernel-abi-stablelists-5.14.0-284.1101.el9_2.tuxcare.11.els2.noarch.rpm
sha:3044e024d831a3a7e436d4664d18651fec7d9f4d874ec99fb702e57bb46f24ba
-
kernel-core-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:fdbc3867d726ae1a192fc3c15f9abc31aa884f52221d51d0e303b2de7974c236
-
kernel-cross-headers-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:ec0d74af18ca9c6823dbeba25ea1e39e9a25fd15df0cde2e9ee36b11ca044452
-
kernel-debug-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:124fdb1461f1b50ffb833c3ac05c533e2e957c444d0414c78e54145509889d38
-
kernel-debug-core-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:a113b3618809541f41dbf47064414c92996aca9408be03dd47605a7fcabe44da
-
kernel-debug-devel-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:299ccdc02f4517aef1128d6a3ee6b4dc386375eeb13971d14670e36d2ebcd8f0
-
kernel-debug-devel-matched-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:0a10ce1beba0d28fe15b8c8741b2a82927e3a98b8565ebb2081d2f2813f2c2a0
-
kernel-debug-modules-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:6fbfad3a99c0139fc6a6b4454a4143cba659a24a5c49da847c0051fde5866c83
-
kernel-debug-modules-core-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:a613b4b44617643e46bc94570c6d47a0627fd1bf8b3293947d28b4230def73a3
-
kernel-debug-modules-extra-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:beabf2bf003c4e0d9349a585d8eb8fbb4947a6596ca0394338b1ae1875e866d3
-
kernel-debug-modules-internal-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:2fa62de85bdacf0fd90a1acf5870256bcc447b8ffd731c3a54325a9668a3dc06
-
kernel-debug-modules-partner-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:27713b2ec36eb47ae58fa35d9a49dc093e37bbe7382230188245eb4e44e5ffff
-
kernel-debug-uki-virt-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:ac126bf1c7d2d3f0ee554c31d8883828bb820752076b3429b5510a989ce64a45
-
kernel-devel-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:a115bdae5ca8ccdbe19d2b905abd658663743c656461826fa118d617784e8be2
-
kernel-devel-matched-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:7b9b5a96ba101dfd5cb9f6e862cb57c7d8985dca440ddbda0e52f825db83c2b7
-
kernel-doc-5.14.0-284.1101.el9_2.tuxcare.11.els2.noarch.rpm
sha:08d16c3d090c80bb724beb08686fc85dbd06f1db267d2ab2c16da6a2ef5a4ddc
-
kernel-headers-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:de2b8c96d5b9c3b7bed2e2e9b8834699023591a998aa9da04af76ef4ea8ab5f7
-
kernel-ipaclones-internal-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:22825ec7a4211d0d97c6b7ee94d5a6c69850a437b5d27703835ee1ff5ec5c177
-
kernel-modules-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:8fbae9421200ae2da727106bb97c076c416a10460ee84be0406954a6e267605c
-
kernel-modules-core-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:bde27d7a5c82428d0129d23e104b616f7b4755f49dac42ea66355be1431d0b50
-
kernel-modules-extra-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:0dcf2decf59e888c583e02f9afad0b34d2af8caa6012a1fdfbb5bf2130b65d28
-
kernel-modules-internal-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:8357ba46d0eacf5dd2280c4b6b8144e8bc561c82635cbc7227cdf390f01f3553
-
kernel-modules-partner-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:bc3dcfde456922247270fea15fed43f3476b3e485ae3e15e7bf233eaae3d11e2
-
kernel-selftests-internal-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:eae6eb42f79bb897c8a60b3a91aa932701abf0885d9414e9510b49076effc0d0
-
kernel-tools-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:cd2d485c8a9e0a7aae9baa6c0f76cadae940fc23283054436de5f1d056b83e2e
-
kernel-tools-libs-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:1c1d6aeab61df85d2b10f24038a5d8d69a1a847ace4f29e5d9c2fa50e7e8e9ed
-
kernel-tools-libs-devel-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:c684e29cacc291a77b84100287258fcf21975162b1d3e6922dd5f3f8cb34f018
-
kernel-uki-virt-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:11b9b2123cbfed20470418b72f6a542d9d9db50465f2756a3459e84b2e8cab5c
-
libbpf-1.0.0-2.el9_2.tuxcare.11.els2.i686.rpm
sha:cfff9392d5f18a6f330c0b1c2dfad8e8374970d4846b07c1934ed74383434a92
-
libbpf-1.0.0-2.el9_2.tuxcare.11.els2.x86_64.rpm
sha:6978163bb43ccca3a5444356b9172352f06f072ea1c29305818f402baa677809
-
libbpf-devel-1.0.0-2.el9_2.tuxcare.11.els2.i686.rpm
sha:efc9f63e2adb988c34d46d2b1fae97b08e0cae60f958d65ccf4f9c03f9d38582
-
libbpf-devel-1.0.0-2.el9_2.tuxcare.11.els2.x86_64.rpm
sha:0661631ff3cd764e978248e866629c82c99b68627ef54ee8cfaab0fb9c7d4ed8
-
libbpf-static-1.0.0-2.el9_2.tuxcare.11.els2.i686.rpm
sha:df165ea71088c5645826de5a998da2a1ebe4cf1930c80b80aa63b8de5a3a4480
-
libbpf-static-1.0.0-2.el9_2.tuxcare.11.els2.x86_64.rpm
sha:863d3ac38fd4c47a2701ae7edbc9cbeb27590b0667b01b71ccbd2d941c86bd41
-
perf-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:981835dd04d135ee0374cf584729ed6605d6c8880de44816e2b15cb7b57053d6
-
python3-perf-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:e5f0f1ab642d5d248be272bc4e56d4a3366ffb535d823a9c6021801451594487
-
rtla-5.14.0-284.1101.el9_2.tuxcare.11.els2.x86_64.rpm
sha:e9c73308d622076f3d1f4b18a3d5d4c0506cc82161c20a37c4011a28b5c0fcff
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
