cri-tools1.31-1.31.1-4.fc43
Automatic update for cri-tools1.31-1.31.1-4.fc43.
* Thu Mar 27 2025 Bradley G Smith <bradley.g.smith@gmail.com> – 1.31.1-4
– Resolve rhbz#2352150
– Resolve: rhbz#2352150
– Change license scan to scancode for consistent scan across Fedora
releases
Attila Szász discovered that the HFS+ file system implementation in the
Linux Kernel contained a heap overflow vulnerability. An attacker could use
a specially crafted file system image that, when mounted, could cause a
denial of service (system crash) or possibly execute arbitrary code.
(CVE-2025-0927)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– ARM64 architecture;
– MIPS architecture;
– PowerPC architecture;
– RISC-V architecture;
– S390 architecture;
– SuperH RISC architecture;
– User-Mode Linux (UML);
– x86 architecture;
– Block layer subsystem;
– Cryptographic API;
– ACPI drivers;
– Drivers core;
– RAM backed block device driver;
– Virtio block driver;
– Data acquisition framework and drivers;
– Hardware crypto device drivers;
– DMA engine subsystem;
– EDAC drivers;
– ARM SCPI message protocol;
– GPIO subsystem;
– GPU drivers;
– HID subsystem;
– Microsoft Hyper-V drivers;
– I2C subsystem;
– I3C subsystem;
– IIO ADC drivers;
– IIO subsystem;
– InfiniBand drivers;
– IOMMU subsystem;
– IRQ chip drivers;
– LED subsystem;
– Multiple devices driver;
– Media drivers;
– Multifunction device drivers;
– MMC subsystem;
– MTD block device drivers;
– Network drivers;
– Mellanox network drivers;
– Microsoft Azure Network Adapter (MANA) driver;
– STMicroelectronics network drivers;
– NVME drivers;
– Parport drivers;
– PCI subsystem;
– Pin controllers subsystem;
– x86 platform drivers;
– Power supply drivers;
– Real Time Clock drivers;
– SCSI subsystem;
– SuperH / SH-Mobile drivers;
– i.MX SoC drivers;
– QCOM SoC drivers;
– SPI subsystem;
– Direct Digital Synthesis drivers;
– Media staging drivers;
– TCM subsystem;
– TTY drivers;
– UFS subsystem;
– DesignWare USB3 driver;
– USB Gadget drivers;
– USB Dual Role (OTG-ready) Controller drivers;
– USB Serial drivers;
– USB Type-C support driver;
– USB Type-C Port Controller Manager driver;
– USB Type-C Connector System Software Interface driver;
– VFIO drivers;
– Framebuffer layer;
– Xen hypervisor drivers;
– AFS file system;
– BTRFS file system;
– Ceph distributed file system;
– File systems infrastructure;
– F2FS file system;
– GFS2 file system;
– JFFS2 file system;
– JFS file system;
– Network file system (NFS) client;
– Network file system (NFS) server daemon;
– NILFS2 file system;
– NTFS3 file system;
– Overlay file system;
– Proc file system;
– Diskquota system;
– SMB network file system;
– UBI file system;
– Timer subsystem;
– VLANs driver;
– LAPB network protocol;
– User-space API (UAPI);
– Kernel init infrastructure;
– io_uring subsystem;
– BPF subsystem;
– Kernel CPU control infrastructure;
– DMA mapping infrastructure;
– KCSAN framework;
– Tracing infrastructure;
– Closures library;
– Memory management;
– 9P file system network protocol;
– Amateur Radio drivers;
– Bluetooth subsystem;
– CAN network layer;
– Networking core;
– DCCP (Datagram Congestion Control Protocol);
– Distributed Switch Architecture;
– HSR network protocol;
– IEEE802154.4 network protocol;
– IPv4 networking;
– IPv6 networking;
– MAC80211 subsystem;
– IEEE 802.15.4 subsystem;
– Multipath TCP;
– Netfilter;
– Netlink;
– NET/ROM layer;
– Packet sockets;
– Network traffic control;
– SCTP protocol;
– SMC sockets;
– Sun RPC protocol;
– TIPC protocol;
– VMware vSockets driver;
– eXpress Data Path;
– XFRM subsystem;
– Key management;
– SELinux security module;
– ALSA framework;
– FireWire sound drivers;
– HD-audio driver;
– QCOM ASoC drivers;
– STMicroelectronics SoC drivers;
– USB sound devices;
– KVM core;
(CVE-2024-56622, CVE-2024-42252, CVE-2024-53101, CVE-2025-21664,
CVE-2024-50168, CVE-2024-53214, CVE-2024-56670, CVE-2024-53146,
CVE-2024-50302, CVE-2024-56629, CVE-2024-53680, CVE-2024-53124,
CVE-2024-56610, CVE-2024-50259, CVE-2024-47408, CVE-2024-53217,
CVE-2025-21683, CVE-2024-50196, CVE-2025-21694, CVE-2024-56596,
CVE-2024-53161, CVE-2024-53061, CVE-2024-57940, CVE-2024-41066,
CVE-2024-53122, CVE-2024-56776, CVE-2024-50268, CVE-2024-53184,
CVE-2024-53088, CVE-2024-56590, CVE-2024-50182, CVE-2024-56705,
CVE-2024-50103, CVE-2024-57938, CVE-2024-53155, CVE-2024-50282,
CVE-2024-50209, CVE-2024-53150, CVE-2024-56532, CVE-2024-57910,
CVE-2024-56678, CVE-2024-53181, CVE-2024-50230, CVE-2024-42291,
CVE-2024-50233, CVE-2024-53130, CVE-2024-56756, CVE-2024-53113,
CVE-2024-56623, CVE-2024-41080, CVE-2024-53197, CVE-2024-53142,
CVE-2024-50251, CVE-2024-50237, CVE-2024-47143, CVE-2024-56633,
CVE-2024-57889, CVE-2024-53127, CVE-2024-46871, CVE-2024-56640,
CVE-2024-50193, CVE-2024-53148, CVE-2025-21669, CVE-2024-53690,
CVE-2024-50279, CVE-2024-56780, CVE-2024-56769, CVE-2024-53125,
CVE-2024-53052, CVE-2024-56601, CVE-2024-56778, CVE-2024-50198,
CVE-2025-21665, CVE-2024-53227, CVE-2024-40953, CVE-2024-50295,
CVE-2024-53194, CVE-2024-56777, CVE-2024-56770, CVE-2025-21697,
CVE-2024-57904, CVE-2024-56691, CVE-2024-56787, CVE-2024-57948,
CVE-2024-53140, CVE-2024-50051, CVE-2025-21648, CVE-2024-56754,
CVE-2024-50156, CVE-2024-50205, CVE-2024-57911, CVE-2024-50290,
CVE-2024-56715, CVE-2024-56643, CVE-2024-49974, CVE-2024-50287,
CVE-2024-50162, CVE-2024-57849, CVE-2024-50142, CVE-2024-53198,
CVE-2024-56568, CVE-2024-56704, CVE-2024-35887, CVE-2024-57908,
CVE-2024-56767, CVE-2024-56701, CVE-2025-21680, CVE-2024-57913,
CVE-2024-50171, CVE-2024-56558, CVE-2024-50121, CVE-2024-50036,
CVE-2024-53180, CVE-2024-53096, CVE-2024-57897, CVE-2024-56746,
CVE-2024-55881, CVE-2024-57874, CVE-2024-56774, CVE-2024-57946,
CVE-2024-56531, CVE-2024-56698, CVE-2024-56650, CVE-2025-21637,
CVE-2024-50242, CVE-2024-49996, CVE-2024-53136, CVE-2024-56575,
CVE-2024-56642, CVE-2024-56763, CVE-2024-57802, CVE-2024-57929,
CVE-2024-56726, CVE-2024-56615, CVE-2024-56619, CVE-2024-50234,
CVE-2024-50299, CVE-2024-56569, CVE-2024-57792, CVE-2024-50150,
CVE-2024-56728, CVE-2024-53173, CVE-2024-56630, CVE-2025-21639,
CVE-2024-53183, CVE-2024-56681, CVE-2024-46809, CVE-2024-53165,
CVE-2024-53215, CVE-2024-50296, CVE-2024-50267, CVE-2024-53097,
CVE-2024-56369, CVE-2024-56578, CVE-2024-56562, CVE-2025-21699,
CVE-2024-50134, CVE-2024-56589, CVE-2024-50232, CVE-2024-53685,
CVE-2024-50265, CVE-2024-53206, CVE-2024-50257, CVE-2024-57925,
CVE-2024-50269, CVE-2024-56570, CVE-2024-50278, CVE-2024-56595,
CVE-2024-56720, CVE-2024-50085, CVE-2024-50201, CVE-2024-56693,
CVE-2023-52913, CVE-2025-21666, CVE-2024-50249, CVE-2024-50247,
CVE-2024-47730, CVE-2024-49925, CVE-2025-21690, CVE-2024-56606,
CVE-2024-53172, CVE-2024-53119, CVE-2024-56602, CVE-2024-50262,
CVE-2024-50127, CVE-2024-50115, CVE-2024-57901, CVE-2024-50185,
CVE-2024-53058, CVE-2025-21631, CVE-2024-56574, CVE-2024-56539,
CVE-2025-21678, CVE-2024-56659, CVE-2024-56594, CVE-2024-56708,
CVE-2024-56662, CVE-2024-55916, CVE-2024-53042, CVE-2024-50229,
CVE-2024-56616, CVE-2024-50074, CVE-2024-57838, CVE-2024-50160,
CVE-2024-50218, CVE-2024-56597, CVE-2024-36476, CVE-2024-49571,
CVE-2024-53112, CVE-2024-50128, CVE-2024-53157, CVE-2024-56747,
CVE-2024-56779, CVE-2024-50143, CVE-2024-42315, CVE-2024-56688,
CVE-2024-57903, CVE-2024-50283, CVE-2025-21640, CVE-2024-53099,
CVE-2024-57902, CVE-2024-57912, CVE-2024-56567, CVE-2024-56637,
CVE-2024-50086, CVE-2024-56679, CVE-2024-56598, CVE-2024-50236,
CVE-2024-56593, CVE-2024-50058, CVE-2024-53239, CVE-2024-57906,
CVE-2024-43098, CVE-2024-53138, CVE-2024-50208, CVE-2024-49950,
CVE-2024-53174, CVE-2024-50072, CVE-2024-45828, CVE-2024-56759,
CVE-2024-56533, CVE-2024-50117, CVE-2024-53131, CVE-2024-47707,
CVE-2025-21689, CVE-2025-21636, CVE-2024-56605, CVE-2024-57807,
CVE-2024-56724, CVE-2024-57841, CVE-2024-53120, CVE-2024-50304,
CVE-2024-56748, CVE-2024-58087, CVE-2024-57917, CVE-2024-44938,
CVE-2024-57896, CVE-2024-56600, CVE-2024-57922, CVE-2024-53066,
CVE-2024-56634, CVE-2024-53171, CVE-2024-56700, CVE-2024-57939,
CVE-2024-53151, CVE-2024-50202, CVE-2024-56572, CVE-2024-40965,
CVE-2024-56716, CVE-2024-46841, CVE-2024-50292, CVE-2024-57907,
CVE-2024-53145, CVE-2024-50192, CVE-2024-53055, CVE-2025-21646,
CVE-2024-56690, CVE-2024-57882, CVE-2024-56576, CVE-2024-50301,
CVE-2024-53059, CVE-2024-56745, CVE-2024-57890, CVE-2024-50055,
CVE-2024-56739, CVE-2024-50099, CVE-2024-50131, CVE-2024-50194,
CVE-2024-57884, CVE-2024-43900, CVE-2024-52332, CVE-2024-57931,
CVE-2024-50163, CVE-2024-53063, CVE-2024-53104, CVE-2024-57951,
CVE-2025-21638, CVE-2024-53129, CVE-2024-56781, CVE-2024-50195,
CVE-2024-56548, CVE-2024-56603, CVE-2024-56586, CVE-2024-50167,
CVE-2024-56648, CVE-2024-56581, CVE-2024-53158, CVE-2024-56587,
CVE-2024-49998, CVE-2024-50148, CVE-2024-56694, CVE-2024-50110,
CVE-2024-50244, CVE-2024-46784, CVE-2024-50273, CVE-2024-50116,
CVE-2024-56614, CVE-2024-50154, CVE-2024-56672, CVE-2025-21692,
CVE-2024-56636, CVE-2024-56626, CVE-2024-50010, CVE-2024-39497,
CVE-2024-50101, CVE-2024-50141, CVE-2024-57791, CVE-2024-50082,
CVE-2024-53226, CVE-2024-53135, CVE-2024-50275, CVE-2024-56723,
CVE-2024-53121, CVE-2024-50199, CVE-2024-56631, CVE-2024-50083,
CVE-2024-50245, CVE-2025-21687, CVE-2024-50151, CVE-2022-49034,
CVE-2024-57900, CVE-2024-53156, CVE-2024-36899, CVE-2024-50153,
CVE-2024-53237, CVE-2024-56645, CVE-2024-26718, CVE-2024-57892,
CVE-2025-21653, CVE-2024-56627, CVE-2024-48881, CVE-2024-56625,
CVE-2024-57850, CVE-2024-56644, CVE-2024-56785)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– ARM64 architecture;
– MIPS architecture;
– PowerPC architecture;
– RISC-V architecture;
– S390 architecture;
– SuperH RISC architecture;
– User-Mode Linux (UML);
– x86 architecture;
– Block layer subsystem;
– Cryptographic API;
– ACPI drivers;
– Drivers core;
– RAM backed block device driver;
– Virtio block driver;
– Data acquisition framework and drivers;
– Hardware crypto device drivers;
– DMA engine subsystem;
– EDAC drivers;
– ARM SCPI message protocol;
– GPIO subsystem;
– GPU drivers;
– HID subsystem;
– Microsoft Hyper-V drivers;
– I3C subsystem;
– IIO ADC drivers;
– IIO subsystem;
– InfiniBand drivers;
– IOMMU subsystem;
– LED subsystem;
– Multiple devices driver;
– Media drivers;
– Multifunction device drivers;
– MMC subsystem;
– MTD block device drivers;
– Network drivers;
– Mellanox network drivers;
– Microsoft Azure Network Adapter (MANA) driver;
– NVME drivers;
– PCI subsystem;
– Pin controllers subsystem;
– x86 platform drivers;
– Power supply drivers;
– Real Time Clock drivers;
– SCSI subsystem;
– SuperH / SH-Mobile drivers;
– i.MX SoC drivers;
– QCOM SoC drivers;
– SPI subsystem;
– Media staging drivers;
– UFS subsystem;
– DesignWare USB3 driver;
– USB Gadget drivers;
– USB Serial drivers;
– USB Type-C Port Controller Manager driver;
– VFIO drivers;
– Framebuffer layer;
– Xen hypervisor drivers;
– AFS file system;
– BTRFS file system;
– Ceph distributed file system;
– File systems infrastructure;
– F2FS file system;
– GFS2 file system;
– JFFS2 file system;
– JFS file system;
– Network file system (NFS) client;
– Network file system (NFS) server daemon;
– NILFS2 file system;
– NTFS3 file system;
– Overlay file system;
– Proc file system;
– Diskquota system;
– SMB network file system;
– UBI file system;
– Timer subsystem;
– VLANs driver;
– LAPB network protocol;
– Kernel init infrastructure;
– BPF subsystem;
– Kernel CPU control infrastructure;
– DMA mapping infrastructure;
– KCSAN framework;
– Tracing infrastructure;
– Memory management;
– 9P file system network protocol;
– Bluetooth subsystem;
– CAN network layer;
– Networking core;
– DCCP (Datagram Congestion Control Protocol);
– Distributed Switch Architecture;
– HSR network protocol;
– IEEE802154.4 network protocol;
– IPv4 networking;
– IPv6 networking;
– IEEE 802.15.4 subsystem;
– Multipath TCP;
– Netfilter;
– Netlink;
– NET/ROM layer;
– Packet sockets;
– Network traffic control;
– SCTP protocol;
– SMC sockets;
– Sun RPC protocol;
– TIPC protocol;
– VMware vSockets driver;
– eXpress Data Path;
– SELinux security module;
– ALSA framework;
– USB sound devices;
(CVE-2024-56558, CVE-2024-53227, CVE-2024-53130, CVE-2025-21664,
CVE-2024-53142, CVE-2024-55881, CVE-2024-57906, CVE-2024-46809,
CVE-2024-53198, CVE-2024-53184, CVE-2024-53237, CVE-2024-56770,
CVE-2024-53150, CVE-2024-56700, CVE-2024-50242, CVE-2024-53181,
CVE-2024-56574, CVE-2024-56681, CVE-2024-56678, CVE-2024-53119,
CVE-2024-53129, CVE-2024-56567, CVE-2024-56688, CVE-2024-49925,
CVE-2025-21687, CVE-2024-56643, CVE-2025-21631, CVE-2024-52332,
CVE-2024-53226, CVE-2025-21665, CVE-2024-56615, CVE-2024-57911,
CVE-2024-53136, CVE-2024-56603, CVE-2024-56690, CVE-2024-47730,
CVE-2024-56586, CVE-2024-46784, CVE-2024-56596, CVE-2024-53172,
CVE-2024-57901, CVE-2024-56693, CVE-2024-56605, CVE-2024-57896,
CVE-2024-56698, CVE-2024-56724, CVE-2024-49998, CVE-2024-53239,
CVE-2024-53206, CVE-2024-56636, CVE-2024-56597, CVE-2024-56533,
CVE-2024-42315, CVE-2024-56701, CVE-2024-56587, CVE-2024-57791,
CVE-2024-56619, CVE-2024-50051, CVE-2024-56569, CVE-2025-21694,
CVE-2025-21699, CVE-2024-53214, CVE-2024-57904, CVE-2024-49571,
CVE-2024-56754, CVE-2024-56572, CVE-2024-49974, CVE-2024-53140,
CVE-2025-21639, CVE-2024-56369, CVE-2024-56601, CVE-2024-56642,
CVE-2024-57792, CVE-2024-57838, CVE-2024-53127, CVE-2025-21690,
CVE-2024-56548, CVE-2024-53155, CVE-2024-47143, CVE-2024-56691,
CVE-2024-57938, CVE-2025-21692, CVE-2024-56648, CVE-2024-46841,
CVE-2024-57807, CVE-2024-57908, CVE-2024-50121, CVE-2024-57841,
CVE-2024-53135, CVE-2024-53180, CVE-2025-21683, CVE-2024-56568,
CVE-2024-56575, CVE-2024-56774, CVE-2024-56589, CVE-2024-36899,
CVE-2024-57889, CVE-2024-50275, CVE-2024-56606, CVE-2024-56578,
CVE-2024-56726, CVE-2024-36476, CVE-2024-53122, CVE-2024-56594,
CVE-2024-56562, CVE-2024-53690, CVE-2024-56769, CVE-2024-57910,
CVE-2024-56720, CVE-2024-56581, CVE-2024-56723, CVE-2025-21669,
CVE-2024-56627, CVE-2024-57925, CVE-2024-56600, CVE-2024-56631,
CVE-2024-56595, CVE-2024-53685, CVE-2024-53157, CVE-2024-57931,
CVE-2024-56644, CVE-2024-53215, CVE-2024-57897, CVE-2024-56748,
CVE-2024-53138, CVE-2025-21646, CVE-2024-47707, CVE-2024-56781,
CVE-2024-57922, CVE-2024-53197, CVE-2024-56777, CVE-2024-56625,
CVE-2024-56650, CVE-2024-56704, CVE-2025-21638, CVE-2024-56623,
CVE-2024-57890, CVE-2024-56630, CVE-2024-53680, CVE-2025-21637,
CVE-2024-56539, CVE-2024-56532, CVE-2024-53217, CVE-2024-53120,
CVE-2024-56780, CVE-2022-49034, CVE-2024-43098, CVE-2024-56590,
CVE-2024-50283, CVE-2024-57917, CVE-2024-56776, CVE-2024-53151,
CVE-2024-49950, CVE-2024-57850, CVE-2024-44938, CVE-2024-47408,
CVE-2024-56778, CVE-2024-56779, CVE-2024-56637, CVE-2024-56640,
CVE-2024-57907, CVE-2024-57940, CVE-2025-21697, CVE-2024-57946,
CVE-2024-53156, CVE-2024-56759, CVE-2024-53146, CVE-2024-56610,
CVE-2024-56670, CVE-2024-57912, CVE-2024-57874, CVE-2024-57884,
CVE-2024-56745, CVE-2024-56715, CVE-2024-56746, CVE-2024-53112,
CVE-2024-53145, CVE-2024-56614, CVE-2024-53174, CVE-2024-57849,
CVE-2024-56767, CVE-2024-53173, CVE-2025-21689, CVE-2024-56739,
CVE-2024-56694, CVE-2024-57939, CVE-2024-56622, CVE-2024-56570,
CVE-2024-56634, CVE-2024-53161, CVE-2024-53121, CVE-2024-56705,
CVE-2024-56756, CVE-2024-53183, CVE-2024-56629, CVE-2025-21636,
CVE-2024-56763, CVE-2024-56593, CVE-2025-21640, CVE-2024-53148,
CVE-2025-21678, CVE-2024-56602, CVE-2024-57882, CVE-2024-56576,
CVE-2024-53096, CVE-2024-53165, CVE-2024-57903, CVE-2024-57802,
CVE-2025-21653, CVE-2024-56662, CVE-2024-56626, CVE-2024-56645,
CVE-2024-48881, CVE-2024-57892, CVE-2024-56531, CVE-2024-56716,
CVE-2024-56787, CVE-2024-57929, CVE-2024-50055, CVE-2024-49996,
CVE-2024-53171, CVE-2025-21648, CVE-2024-57948, CVE-2024-53099,
CVE-2024-56785, CVE-2024-57913, CVE-2024-53131, CVE-2024-53194,
CVE-2024-56659, CVE-2024-55916, CVE-2024-56616, CVE-2024-56728,
CVE-2024-43900, CVE-2025-21680, CVE-2024-53113, CVE-2024-58087,
CVE-2024-56598, CVE-2024-57902, CVE-2024-56679, CVE-2025-21666,
CVE-2024-57951, CVE-2024-56708, CVE-2024-56633, CVE-2024-56747,
CVE-2024-53125, CVE-2024-45828, CVE-2024-53124, CVE-2024-46871,
CVE-2024-57900, CVE-2024-50304, CVE-2024-53158)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– ARM64 architecture;
– x86 architecture;
– Block layer subsystem;
– Drivers core;
– Ublk userspace block driver;
– Compressed RAM block device driver;
– CPU frequency scaling framework;
– DAX dirext access to differentiated memory framework;
– GPU drivers;
– HID subsystem;
– I3C subsystem;
– IIO subsystem;
– InfiniBand drivers;
– IOMMU subsystem;
– IRQ chip drivers;
– Network drivers;
– NTB driver;
– Virtio pmem driver;
– Parport drivers;
– Pin controllers subsystem;
– SCSI subsystem;
– SuperH / SH-Mobile drivers;
– Direct Digital Synthesis drivers;
– Thermal drivers;
– TTY drivers;
– UFS subsystem;
– USB Gadget drivers;
– USB Host Controller drivers;
– TI TPS6598x USB Power Delivery controller driver;
– Framebuffer layer;
– BTRFS file system;
– Ext4 file system;
– F2FS file system;
– Network file system (NFS) client;
– NILFS2 file system;
– NTFS3 file system;
– SMB network file system;
– BPF subsystem;
– Network file system (NFS) superblock;
– Network traffic control;
– Network sockets;
– User-space API (UAPI);
– io_uring subsystem;
– Kernel thread helper (kthread);
– RCU subsystem;
– Timer subsystem;
– Maple Tree data structure library;
– Memory management;
– Bluetooth subsystem;
– Ethernet bridge;
– Networking core;
– IPv4 networking;
– Multipath TCP;
– Netfilter;
– Netlink;
– Unix domain sockets;
– Wireless networking;
– eXpress Data Path;
(CVE-2024-50182, CVE-2024-50020, CVE-2024-50060, CVE-2024-50074,
CVE-2024-50193, CVE-2024-50117, CVE-2024-50201, CVE-2024-50033,
CVE-2024-50056, CVE-2024-50026, CVE-2024-50059, CVE-2024-50041,
CVE-2024-50083, CVE-2024-50038, CVE-2024-50229, CVE-2024-50028,
CVE-2024-50183, CVE-2024-50196, CVE-2024-50029, CVE-2024-50093,
CVE-2024-50188, CVE-2024-50025, CVE-2024-50200, CVE-2024-50068,
CVE-2024-49920, CVE-2024-50198, CVE-2024-50035, CVE-2024-50042,
CVE-2024-50023, CVE-2024-50047, CVE-2024-56582, CVE-2024-50090,
CVE-2024-50062, CVE-2024-50073, CVE-2024-50063, CVE-2024-50098,
CVE-2024-50197, CVE-2024-50040, CVE-2024-50180, CVE-2024-53170,
CVE-2024-50087, CVE-2024-50031, CVE-2024-50202, CVE-2024-50058,
CVE-2024-50186, CVE-2024-50134, CVE-2024-50194, CVE-2024-50075,
CVE-2024-50046, CVE-2024-50078, CVE-2024-50066, CVE-2024-53156,
CVE-2024-49893, CVE-2024-50021, CVE-2024-47711, CVE-2024-47726,
CVE-2024-50024, CVE-2024-49865, CVE-2024-50064, CVE-2024-50049,
CVE-2024-50171, CVE-2024-50019, CVE-2024-50077, CVE-2024-50199,
CVE-2024-50072, CVE-2024-50069, CVE-2024-50048, CVE-2024-49972,
CVE-2024-53165, CVE-2024-50022, CVE-2024-50084, CVE-2024-50185,
CVE-2024-50055, CVE-2024-50187, CVE-2024-50009, CVE-2024-50082,
CVE-2024-50085, CVE-2024-50095, CVE-2024-50195, CVE-2024-50080,
CVE-2024-50076, CVE-2024-50088, CVE-2024-50039, CVE-2024-50044,
CVE-2024-50030, CVE-2024-49968, CVE-2024-50148, CVE-2024-50192,
CVE-2024-50032, CVE-2024-50061, CVE-2024-50233, CVE-2024-50099,
CVE-2024-49921, CVE-2024-50184, CVE-2024-50065, CVE-2024-49914,
CVE-2024-50027, CVE-2024-50070, CVE-2024-50086, CVE-2024-50189,
CVE-2024-56614, CVE-2024-50057, CVE-2024-50096, CVE-2024-50045,
CVE-2024-50036, CVE-2024-56663, CVE-2024-50191, CVE-2024-50101)
Michael Randrianantenaina discovered that the Bluetooth driver in the Linux
Kernel contained an improper access control vulnerability. A nearby
attacker could use this to connect a rougue device and possibly execute
arbitrary code. (CVE-2024-8805)
Attila Szász discovered that the HFS+ file system implementation in the
Linux Kernel contained a heap overflow vulnerability. An attacker could use
a specially crafted file system image that, when mounted, could cause a
denial of service (system crash) or possibly execute arbitrary code.
(CVE-2025-0927)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– ARM32 architecture;
– ARM64 architecture;
– x86 architecture;
– Block layer subsystem;
– Cryptographic API;
– ACPI drivers;
– Drivers core;
– ATA over ethernet (AOE) driver;
– Network block device driver;
– Ublk userspace block driver;
– Compressed RAM block device driver;
– TPM device driver;
– CPU frequency scaling framework;
– Hardware crypto device drivers;
– DAX dirext access to differentiated memory framework;
– ARM SCMI message protocol;
– EFI core;
– GPU drivers;
– HID subsystem;
– I2C subsystem;
– I3C subsystem;
– IIO subsystem;
– InfiniBand drivers;
– Input Device core drivers;
– IOMMU subsystem;
– IRQ chip drivers;
– Mailbox framework;
– Media drivers;
– Ethernet bonding driver;
– Network drivers;
– Mellanox network drivers;
– STMicroelectronics network drivers;
– NTB driver;
– Virtio pmem driver;
– Parport drivers;
– PCI subsystem;
– Alibaba DDR Sub-System Driveway PMU driver;
– Pin controllers subsystem;
– x86 platform drivers;
– Powercap sysfs driver;
– Remote Processor subsystem;
– SCSI subsystem;
– SuperH / SH-Mobile drivers;
– Direct Digital Synthesis drivers;
– Thermal drivers;
– TTY drivers;
– UFS subsystem;
– USB Device Class drivers;
– USB Gadget drivers;
– USB Host Controller drivers;
– TI TPS6598x USB Power Delivery controller driver;
– vDPA drivers;
– Virtio Host (VHOST) subsystem;
– Framebuffer layer;
– AFS file system;
– BTRFS file system;
– File systems infrastructure;
– Ceph distributed file system;
– Ext4 file system;
– F2FS file system;
– JFS file system;
– Network file systems library;
– Network file system (NFS) client;
– Network file system (NFS) server daemon;
– NILFS2 file system;
– NTFS3 file system;
– SMB network file system;
– BPF subsystem;
– Network file system (NFS) superblock;
– Virtio network driver;
– Network traffic control;
– Network sockets;
– TCP network protocol;
– User-space API (UAPI);
– io_uring subsystem;
– Perf events;
– Kernel thread helper (kthread);
– Padata parallel execution mechanism;
– RCU subsystem;
– Arbitrary resource management;
– Static call mechanism;
– Timer subsystem;
– Tracing infrastructure;
– Maple Tree data structure library;
– Memory management;
– Bluetooth subsystem;
– Ethernet bridge;
– CAN network layer;
– Networking core;
– Distributed Switch Architecture;
– IPv4 networking;
– IPv6 networking;
– MAC80211 subsystem;
– IEEE 802.15.4 subsystem;
– Multipath TCP;
– NCSI (Network Controller Sideband Interface) driver;
– Netfilter;
– Netlink;
– RxRPC session sockets;
– SCTP protocol;
– TIPC protocol;
– Unix domain sockets;
– Wireless networking;
– eXpress Data Path;
– AudioScience HPI driver;
– KVM core;
(CVE-2024-49952, CVE-2024-49920, CVE-2024-49945, CVE-2024-50180,
CVE-2024-49944, CVE-2024-49987, CVE-2024-50148, CVE-2024-49959,
CVE-2024-50063, CVE-2024-50083, CVE-2024-49878, CVE-2024-49870,
CVE-2024-49863, CVE-2024-49921, CVE-2024-49992, CVE-2024-47691,
CVE-2024-49913, CVE-2024-47712, CVE-2024-49948, CVE-2024-49976,
CVE-2024-50085, CVE-2024-49891, CVE-2024-56614, CVE-2024-47713,
CVE-2024-47703, CVE-2024-50191, CVE-2024-50087, CVE-2024-49958,
CVE-2024-49868, CVE-2024-49922, CVE-2024-49960, CVE-2024-50019,
CVE-2024-47749, CVE-2024-49996, CVE-2024-47677, CVE-2024-50065,
CVE-2024-47744, CVE-2024-49968, CVE-2024-49985, CVE-2024-47752,
CVE-2024-50017, CVE-2024-50183, CVE-2024-47709, CVE-2024-49938,
CVE-2024-49876, CVE-2024-49893, CVE-2024-50134, CVE-2024-49972,
CVE-2024-49934, CVE-2024-50015, CVE-2024-49856, CVE-2024-49853,
CVE-2024-47711, CVE-2024-49949, CVE-2024-50026, CVE-2024-47681,
CVE-2024-50000, CVE-2024-50189, CVE-2024-47716, CVE-2024-47723,
CVE-2024-50044, CVE-2024-50179, CVE-2024-49871, CVE-2024-50008,
CVE-2024-49955, CVE-2024-50007, CVE-2024-47695, CVE-2024-49889,
CVE-2024-49954, CVE-2024-49894, CVE-2024-50014, CVE-2024-47731,
CVE-2024-50055, CVE-2024-50098, CVE-2024-49930, CVE-2024-47684,
CVE-2024-47705, CVE-2024-50029, CVE-2024-49901, CVE-2024-47689,
CVE-2024-50022, CVE-2024-50009, CVE-2024-49937, CVE-2024-50197,
CVE-2024-49911, CVE-2024-50076, CVE-2024-50002, CVE-2024-50077,
CVE-2024-47679, CVE-2024-50025, CVE-2024-50069, CVE-2024-50101,
CVE-2024-49942, CVE-2024-49986, CVE-2024-50012, CVE-2024-49858,
CVE-2024-49884, CVE-2024-50201, CVE-2024-47701, CVE-2024-49994,
CVE-2024-49897, CVE-2024-47687, CVE-2024-47751, CVE-2024-50001,
CVE-2024-50117, CVE-2024-49909, CVE-2024-50086, CVE-2024-50064,
CVE-2024-50088, CVE-2024-50005, CVE-2024-50184, CVE-2024-49882,
CVE-2024-49936, CVE-2024-49933, CVE-2024-49995, CVE-2024-47704,
CVE-2024-50066, CVE-2024-49898, CVE-2024-50068, CVE-2024-50192,
CVE-2024-53104, CVE-2024-49860, CVE-2024-47741, CVE-2024-50039,
CVE-2024-47699, CVE-2024-49861, CVE-2024-49969, CVE-2024-49950,
CVE-2024-50194, CVE-2024-49929, CVE-2024-50006, CVE-2024-49997,
CVE-2024-49983, CVE-2024-47710, CVE-2024-50200, CVE-2024-47692,
CVE-2024-47748, CVE-2024-49855, CVE-2024-50182, CVE-2024-47706,
CVE-2024-50188, CVE-2024-47732, CVE-2024-47707, CVE-2024-50048,
CVE-2024-50058, CVE-2024-49912, CVE-2024-49966, CVE-2024-49852,
CVE-2024-47753, CVE-2024-50202, CVE-2024-50062, CVE-2024-50056,
CVE-2024-49946, CVE-2024-49902, CVE-2024-50033, CVE-2024-47750,
CVE-2024-50021, CVE-2024-49939, CVE-2024-50072, CVE-2024-49851,
CVE-2024-49928, CVE-2024-50061, CVE-2024-49885, CVE-2024-50047,
CVE-2024-47672, CVE-2024-47734, CVE-2024-47714, CVE-2024-49886,
CVE-2024-47730, CVE-2024-47697, CVE-2024-49973, CVE-2024-47718,
CVE-2024-49862, CVE-2024-49963, CVE-2024-49881, CVE-2024-53165,
CVE-2024-49998, CVE-2024-47757, CVE-2024-49982, CVE-2024-50186,
CVE-2024-50016, CVE-2024-47675, CVE-2024-50090, CVE-2024-49917,
CVE-2024-50031, CVE-2024-50093, CVE-2024-49859, CVE-2024-49890,
CVE-2024-47670, CVE-2024-49919, CVE-2024-53156, CVE-2024-49924,
CVE-2024-50078, CVE-2024-49864, CVE-2024-49962, CVE-2024-47720,
CVE-2024-49874, CVE-2024-41016, CVE-2024-49991, CVE-2024-47726,
CVE-2024-50171, CVE-2024-47682, CVE-2024-49865, CVE-2024-49988,
CVE-2024-49903, CVE-2024-50035, CVE-2024-50229, CVE-2024-50075,
CVE-2024-50195, CVE-2024-49947, CVE-2024-49900, CVE-2024-50040,
CVE-2024-50176, CVE-2024-47686, CVE-2024-49978, CVE-2024-49923,
CVE-2024-50199, CVE-2024-49999, CVE-2024-50070, CVE-2024-49953,
CVE-2024-47733, CVE-2024-49888, CVE-2024-49977, CVE-2024-50080,
CVE-2024-49905, CVE-2024-47737, CVE-2024-49961, CVE-2024-50030,
CVE-2024-49951, CVE-2024-49892, CVE-2024-50096, CVE-2024-47735,
CVE-2024-47673, CVE-2024-56663, CVE-2024-49981, CVE-2024-50049,
CVE-2024-50193, CVE-2024-49957, CVE-2024-47742, CVE-2024-49880,
CVE-2024-49965, CVE-2024-49927, CVE-2024-47690, CVE-2024-50057,
CVE-2024-50073, CVE-2024-49931, CVE-2024-49875, CVE-2024-50041,
CVE-2024-47700, CVE-2024-47719, CVE-2024-56582, CVE-2024-47738,
CVE-2024-47754, CVE-2024-49850, CVE-2024-47678, CVE-2024-49935,
CVE-2024-47739, CVE-2024-50028, CVE-2024-47727, CVE-2024-47728,
CVE-2024-50084, CVE-2024-50095, CVE-2024-50175, CVE-2024-50198,
CVE-2024-47702, CVE-2024-50187, CVE-2024-50032, CVE-2024-50074,
CVE-2024-50020, CVE-2024-53144, CVE-2024-50233, CVE-2024-47698,
CVE-2024-49879, CVE-2024-49896, CVE-2024-47747, CVE-2024-49877,
CVE-2024-50046, CVE-2024-49866, CVE-2024-47740, CVE-2024-50042,
CVE-2024-50060, CVE-2024-49925, CVE-2024-50013, CVE-2024-49867,
CVE-2024-47685, CVE-2024-47743, CVE-2024-49883, CVE-2024-53170,
CVE-2024-50038, CVE-2024-47756, CVE-2024-47696, CVE-2024-49980,
CVE-2024-50185, CVE-2024-47693, CVE-2024-49915, CVE-2024-49914,
CVE-2024-49907, CVE-2024-49989, CVE-2024-50196, CVE-2024-50027,
CVE-2024-47745, CVE-2024-50045, CVE-2024-50024, CVE-2024-49918,
CVE-2024-49975, CVE-2024-49974, CVE-2024-50082, CVE-2024-49895,
CVE-2024-47671, CVE-2024-50059, CVE-2024-50099, CVE-2024-50023,
CVE-2024-47688, CVE-2024-49926, CVE-2024-50036)
Michael Randrianantenaina discovered that the Bluetooth driver in the Linux
Kernel contained an improper access control vulnerability. A nearby
attacker could use this to connect a rougue device and possibly execute
arbitrary code. (CVE-2024-8805)
Attila Szász discovered that the HFS+ file system implementation in the
Linux Kernel contained a heap overflow vulnerability. An attacker could use
a specially crafted file system image that, when mounted, could cause a
denial of service (system crash) or possibly execute arbitrary code.
(CVE-2025-0927)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– ARM32 architecture;
– ARM64 architecture;
– x86 architecture;
– Block layer subsystem;
– Cryptographic API;
– ACPI drivers;
– Drivers core;
– ATA over ethernet (AOE) driver;
– Network block device driver;
– Ublk userspace block driver;
– Compressed RAM block device driver;
– TPM device driver;
– CPU frequency scaling framework;
– Hardware crypto device drivers;
– DAX dirext access to differentiated memory framework;
– ARM SCMI message protocol;
– EFI core;
– GPU drivers;
– HID subsystem;
– I2C subsystem;
– I3C subsystem;
– IIO subsystem;
– InfiniBand drivers;
– Input Device core drivers;
– IOMMU subsystem;
– IRQ chip drivers;
– Mailbox framework;
– Media drivers;
– Ethernet bonding driver;
– Network drivers;
– Mellanox network drivers;
– STMicroelectronics network drivers;
– NTB driver;
– Virtio pmem driver;
– Parport drivers;
– PCI subsystem;
– Alibaba DDR Sub-System Driveway PMU driver;
– Pin controllers subsystem;
– x86 platform drivers;
– Powercap sysfs driver;
– Remote Processor subsystem;
– SCSI subsystem;
– SuperH / SH-Mobile drivers;
– Direct Digital Synthesis drivers;
– Thermal drivers;
– TTY drivers;
– UFS subsystem;
– USB Device Class drivers;
– USB Gadget drivers;
– USB Host Controller drivers;
– TI TPS6598x USB Power Delivery controller driver;
– vDPA drivers;
– Virtio Host (VHOST) subsystem;
– Framebuffer layer;
– AFS file system;
– BTRFS file system;
– File systems infrastructure;
– Ceph distributed file system;
– Ext4 file system;
– F2FS file system;
– JFS file system;
– Network file systems library;
– Network file system (NFS) client;
– Network file system (NFS) server daemon;
– NILFS2 file system;
– NTFS3 file system;
– SMB network file system;
– BPF subsystem;
– Network file system (NFS) superblock;
– Virtio network driver;
– Network traffic control;
– Network sockets;
– TCP network protocol;
– User-space API (UAPI);
– io_uring subsystem;
– Perf events;
– Kernel thread helper (kthread);
– Padata parallel execution mechanism;
– RCU subsystem;
– Arbitrary resource management;
– Static call mechanism;
– Timer subsystem;
– Tracing infrastructure;
– Maple Tree data structure library;
– Memory management;
– Bluetooth subsystem;
– Ethernet bridge;
– CAN network layer;
– Networking core;
– Distributed Switch Architecture;
– IPv4 networking;
– IPv6 networking;
– MAC80211 subsystem;
– IEEE 802.15.4 subsystem;
– Multipath TCP;
– NCSI (Network Controller Sideband Interface) driver;
– Netfilter;
– Netlink;
– RxRPC session sockets;
– SCTP protocol;
– TIPC protocol;
– Unix domain sockets;
– Wireless networking;
– eXpress Data Path;
– AudioScience HPI driver;
– KVM core;
(CVE-2024-49927, CVE-2024-47719, CVE-2024-49878, CVE-2024-50200,
CVE-2024-50013, CVE-2024-50187, CVE-2024-49852, CVE-2024-49913,
CVE-2024-50080, CVE-2024-49903, CVE-2024-47745, CVE-2024-50184,
CVE-2024-50117, CVE-2024-49863, CVE-2024-49973, CVE-2024-47727,
CVE-2024-53170, CVE-2024-49933, CVE-2024-49900, CVE-2024-50095,
CVE-2024-49928, CVE-2024-49858, CVE-2024-47731, CVE-2024-49896,
CVE-2024-53104, CVE-2024-49972, CVE-2024-49969, CVE-2024-50176,
CVE-2024-47739, CVE-2024-49995, CVE-2024-49982, CVE-2024-50044,
CVE-2024-49957, CVE-2024-47748, CVE-2024-47744, CVE-2024-49978,
CVE-2024-49879, CVE-2024-49987, CVE-2024-49929, CVE-2024-49905,
CVE-2024-47723, CVE-2024-53144, CVE-2024-50066, CVE-2024-47735,
CVE-2024-50057, CVE-2024-49890, CVE-2024-49963, CVE-2024-49955,
CVE-2024-49974, CVE-2024-50049, CVE-2024-47710, CVE-2024-47682,
CVE-2024-47734, CVE-2024-47691, CVE-2024-49999, CVE-2024-50098,
CVE-2024-47672, CVE-2024-50056, CVE-2024-49983, CVE-2024-50005,
CVE-2024-50045, CVE-2024-49866, CVE-2024-49953, CVE-2024-47750,
CVE-2024-49917, CVE-2024-50026, CVE-2024-50009, CVE-2024-47718,
CVE-2024-50070, CVE-2024-47700, CVE-2024-49986, CVE-2024-49907,
CVE-2024-49884, CVE-2024-50085, CVE-2024-50087, CVE-2024-49875,
CVE-2024-47728, CVE-2024-49861, CVE-2024-49851, CVE-2024-49980,
CVE-2024-49898, CVE-2024-47681, CVE-2024-49965, CVE-2024-49960,
CVE-2024-50020, CVE-2024-50012, CVE-2024-50186, CVE-2024-49889,
CVE-2024-50030, CVE-2024-50046, CVE-2024-50180, CVE-2024-49966,
CVE-2024-49897, CVE-2024-49985, CVE-2024-49918, CVE-2024-47754,
CVE-2024-50082, CVE-2024-47757, CVE-2024-47711, CVE-2024-47737,
CVE-2024-47716, CVE-2024-50069, CVE-2024-47696, CVE-2024-50031,
CVE-2024-50202, CVE-2024-47713, CVE-2024-49894, CVE-2024-49921,
CVE-2024-50022, CVE-2024-49856, CVE-2024-47740, CVE-2024-49868,
CVE-2024-49919, CVE-2024-47679, CVE-2024-47695, CVE-2024-47714,
CVE-2024-49996, CVE-2024-50196, CVE-2024-49997, CVE-2024-49883,
CVE-2024-49936, CVE-2024-49962, CVE-2024-47673, CVE-2024-56663,
CVE-2024-49892, CVE-2024-47685, CVE-2024-50233, CVE-2024-49891,
CVE-2024-47738, CVE-2024-49870, CVE-2024-49885, CVE-2024-50025,
CVE-2024-50006, CVE-2024-49968, CVE-2024-47709, CVE-2024-47751,
CVE-2024-50058, CVE-2024-50086, CVE-2024-50072, CVE-2024-50195,
CVE-2024-56582, CVE-2024-50014, CVE-2024-49886, CVE-2024-47743,
CVE-2024-50185, CVE-2024-50193, CVE-2024-49909, CVE-2024-50077,
CVE-2024-49930, CVE-2024-49946, CVE-2024-50192, CVE-2024-50041,
CVE-2024-47698, CVE-2024-50188, CVE-2024-49977, CVE-2024-47687,
CVE-2024-49945, CVE-2024-50008, CVE-2024-49859, CVE-2024-50062,
CVE-2024-49880, CVE-2024-47671, CVE-2024-49867, CVE-2024-49912,
CVE-2024-56614, CVE-2024-49862, CVE-2024-50021, CVE-2024-47670,
CVE-2024-49911, CVE-2024-49855, CVE-2024-47712, CVE-2024-50229,
CVE-2024-50096, CVE-2024-49895, CVE-2024-47677, CVE-2024-49934,
CVE-2024-53156, CVE-2024-49893, CVE-2024-49925, CVE-2024-50063,
CVE-2024-49926, CVE-2024-50201, CVE-2024-50033, CVE-2024-50199,
CVE-2024-49874, CVE-2024-47732, CVE-2024-50078, CVE-2024-49935,
CVE-2024-49902, CVE-2024-49989, CVE-2024-47675, CVE-2024-50064,
CVE-2024-50015, CVE-2024-41016, CVE-2024-49949, CVE-2024-50090,
CVE-2024-49860, CVE-2024-50036, CVE-2024-50084, CVE-2024-50182,
CVE-2024-50061, CVE-2024-47702, CVE-2024-47730, CVE-2024-49951,
CVE-2024-49938, CVE-2024-50088, CVE-2024-50198, CVE-2024-49998,
CVE-2024-49931, CVE-2024-49944, CVE-2024-50000, CVE-2024-49954,
CVE-2024-47753, CVE-2024-49976, CVE-2024-50048, CVE-2024-49881,
CVE-2024-50093, CVE-2024-50019, CVE-2024-50059, CVE-2024-50016,
CVE-2024-50068, CVE-2024-49920, CVE-2024-50035, CVE-2024-50197,
CVE-2024-47699, CVE-2024-49914, CVE-2024-50191, CVE-2024-50083,
CVE-2024-47701, CVE-2024-49877, CVE-2024-50017, CVE-2024-49915,
CVE-2024-50001, CVE-2024-49864, CVE-2024-50189, CVE-2024-50101,
CVE-2024-47704, CVE-2024-50024, CVE-2024-50038, CVE-2024-49850,
CVE-2024-50027, CVE-2024-49952, CVE-2024-50074, CVE-2024-50171,
CVE-2024-53165, CVE-2024-47689, CVE-2024-49865, CVE-2024-49853,
CVE-2024-47742, CVE-2024-49994, CVE-2024-50179, CVE-2024-47686,
CVE-2024-49975, CVE-2024-49948, CVE-2024-50099, CVE-2024-50175,
CVE-2024-50028, CVE-2024-49947, CVE-2024-47741, CVE-2024-49888,
CVE-2024-50055, CVE-2024-47749, CVE-2024-49992, CVE-2024-47715,
CVE-2024-49922, CVE-2024-47756, CVE-2024-50023, CVE-2024-47720,
CVE-2024-50194, CVE-2024-47688, CVE-2024-49991, CVE-2024-47705,
CVE-2024-49942, CVE-2024-50047, CVE-2024-49981, CVE-2024-49950,
CVE-2024-47684, CVE-2024-50065, CVE-2024-49939, CVE-2024-47726,
CVE-2024-47697, CVE-2024-49959, CVE-2024-47690, CVE-2024-50040,
CVE-2024-50002, CVE-2024-50029, CVE-2024-47752, CVE-2024-49924,
CVE-2024-50073, CVE-2024-47733, CVE-2024-50075, CVE-2024-49937,
CVE-2024-47707, CVE-2024-47692, CVE-2024-47703, CVE-2024-49988,
CVE-2024-50060, CVE-2024-50039, CVE-2024-49961, CVE-2024-50042,
CVE-2024-50148, CVE-2024-47678, CVE-2024-49923, CVE-2024-49901,
CVE-2024-47706, CVE-2024-49882, CVE-2024-47693, CVE-2024-49876,
CVE-2024-47747, CVE-2024-49871, CVE-2024-50076, CVE-2024-50183,
CVE-2024-50007, CVE-2024-49958, CVE-2024-50134)
Michael Randrianantenaina discovered that the Bluetooth driver in the Linux
Kernel contained an improper access control vulnerability. A nearby
attacker could use this to connect a rougue device and possibly execute
arbitrary code. (CVE-2024-8805)
Attila Szász discovered that the HFS+ file system implementation in the
Linux Kernel contained a heap overflow vulnerability. An attacker could use
a specially crafted file system image that, when mounted, could cause a
denial of service (system crash) or possibly execute arbitrary code.
(CVE-2025-0927)
It was discovered that the CIFS network file system implementation in the
Linux kernel did not properly verify the target namespace when handling
upcalls. An attacker could use this to expose sensitive information.
(CVE-2025-2312)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– ARM32 architecture;
– ARM64 architecture;
– x86 architecture;
– Block layer subsystem;
– Cryptographic API;
– ACPI drivers;
– Drivers core;
– ATA over ethernet (AOE) driver;
– Network block device driver;
– Ublk userspace block driver;
– Compressed RAM block device driver;
– TPM device driver;
– CPU frequency scaling framework;
– Hardware crypto device drivers;
– DAX dirext access to differentiated memory framework;
– ARM SCMI message protocol;
– EFI core;
– GPU drivers;
– HID subsystem;
– I2C subsystem;
– I3C subsystem;
– IIO subsystem;
– InfiniBand drivers;
– Input Device core drivers;
– IOMMU subsystem;
– IRQ chip drivers;
– Mailbox framework;
– Media drivers;
– Ethernet bonding driver;
– Network drivers;
– Mellanox network drivers;
– STMicroelectronics network drivers;
– NTB driver;
– Virtio pmem driver;
– Parport drivers;
– PCI subsystem;
– Alibaba DDR Sub-System Driveway PMU driver;
– Pin controllers subsystem;
– x86 platform drivers;
– Powercap sysfs driver;
– Remote Processor subsystem;
– SCSI subsystem;
– SuperH / SH-Mobile drivers;
– Direct Digital Synthesis drivers;
– Thermal drivers;
– TTY drivers;
– UFS subsystem;
– USB Device Class drivers;
– USB Gadget drivers;
– USB Host Controller drivers;
– TI TPS6598x USB Power Delivery controller driver;
– vDPA drivers;
– Virtio Host (VHOST) subsystem;
– Framebuffer layer;
– AFS file system;
– BTRFS file system;
– File systems infrastructure;
– Ceph distributed file system;
– Ext4 file system;
– F2FS file system;
– JFS file system;
– Network file systems library;
– Network file system (NFS) client;
– Network file system (NFS) server daemon;
– NILFS2 file system;
– NTFS3 file system;
– SMB network file system;
– BPF subsystem;
– Network file system (NFS) superblock;
– Virtio network driver;
– Network traffic control;
– Network sockets;
– TCP network protocol;
– User-space API (UAPI);
– io_uring subsystem;
– Perf events;
– Kernel thread helper (kthread);
– Padata parallel execution mechanism;
– RCU subsystem;
– Arbitrary resource management;
– Static call mechanism;
– Timer subsystem;
– Tracing infrastructure;
– Maple Tree data structure library;
– Memory management;
– Bluetooth subsystem;
– Ethernet bridge;
– CAN network layer;
– Networking core;
– Distributed Switch Architecture;
– IPv4 networking;
– IPv6 networking;
– MAC80211 subsystem;
– IEEE 802.15.4 subsystem;
– Multipath TCP;
– NCSI (Network Controller Sideband Interface) driver;
– Netfilter;
– Netlink;
– RxRPC session sockets;
– SCTP protocol;
– TIPC protocol;
– Unix domain sockets;
– Wireless networking;
– eXpress Data Path;
– AudioScience HPI driver;
– KVM core;
(CVE-2024-49994, CVE-2024-47740, CVE-2024-49936, CVE-2024-47716,
CVE-2024-47733, CVE-2024-50075, CVE-2024-49870, CVE-2024-50007,
CVE-2024-49897, CVE-2024-49915, CVE-2024-47756, CVE-2024-47700,
CVE-2024-49946, CVE-2024-50012, CVE-2024-47750, CVE-2024-49863,
CVE-2024-50059, CVE-2024-50026, CVE-2024-49995, CVE-2024-50035,
CVE-2024-47751, CVE-2024-50096, CVE-2024-50082, CVE-2024-50090,
CVE-2024-50000, CVE-2024-47690, CVE-2024-47741, CVE-2024-49898,
CVE-2024-47685, CVE-2024-50038, CVE-2024-49957, CVE-2024-47682,
CVE-2024-50002, CVE-2024-47709, CVE-2024-50201, CVE-2024-49927,
CVE-2024-50076, CVE-2024-56582, CVE-2024-47742, CVE-2024-47734,
CVE-2024-50040, CVE-2024-49862, CVE-2024-49942, CVE-2024-50193,
CVE-2024-49880, CVE-2024-50008, CVE-2024-49949, CVE-2024-50056,
CVE-2024-50099, CVE-2024-50180, CVE-2024-50045, CVE-2024-49923,
CVE-2024-49987, CVE-2024-49884, CVE-2024-50031, CVE-2024-47705,
CVE-2024-47728, CVE-2024-49969, CVE-2024-50077, CVE-2024-50188,
CVE-2024-49852, CVE-2024-49890, CVE-2024-47745, CVE-2024-50058,
CVE-2024-50186, CVE-2024-47749, CVE-2024-56614, CVE-2024-50021,
CVE-2024-50055, CVE-2024-47727, CVE-2024-47677, CVE-2024-49922,
CVE-2024-50015, CVE-2024-50084, CVE-2024-47689, CVE-2024-50101,
CVE-2024-47699, CVE-2024-49947, CVE-2024-49999, CVE-2024-49868,
CVE-2024-50184, CVE-2024-50187, CVE-2024-47757, CVE-2024-49900,
CVE-2024-47703, CVE-2024-49975, CVE-2024-47692, CVE-2024-49980,
CVE-2024-49951, CVE-2024-49930, CVE-2024-49867, CVE-2024-49860,
CVE-2024-50009, CVE-2024-50072, CVE-2024-50229, CVE-2024-49954,
CVE-2024-50183, CVE-2024-49858, CVE-2024-49909, CVE-2024-49926,
CVE-2024-47754, CVE-2024-50027, CVE-2024-50200, CVE-2024-50196,
CVE-2024-50086, CVE-2024-47739, CVE-2024-49978, CVE-2024-49983,
CVE-2024-49894, CVE-2024-49973, CVE-2024-49888, CVE-2024-49974,
CVE-2024-47672, CVE-2024-49977, CVE-2024-47738, CVE-2024-49893,
CVE-2024-49876, CVE-2024-49960, CVE-2024-49955, CVE-2024-47670,
CVE-2024-47706, CVE-2024-49931, CVE-2024-47686, CVE-2024-49855,
CVE-2024-49901, CVE-2024-47752, CVE-2024-47675, CVE-2024-47704,
CVE-2024-47735, CVE-2024-47744, CVE-2024-50088, CVE-2024-50070,
CVE-2024-47707, CVE-2024-50176, CVE-2024-50080, CVE-2024-50175,
CVE-2024-47731, CVE-2024-49853, CVE-2024-49929, CVE-2024-49989,
CVE-2024-49921, CVE-2024-49965, CVE-2024-49891, CVE-2024-50005,
CVE-2024-47715, CVE-2024-50085, CVE-2024-50189, CVE-2024-47723,
CVE-2024-50020, CVE-2024-49902, CVE-2024-47730, CVE-2024-53156,
CVE-2024-49895, CVE-2024-49997, CVE-2024-50192, CVE-2024-49850,
CVE-2024-50062, CVE-2024-50033, CVE-2024-49972, CVE-2024-49945,
CVE-2024-50036, CVE-2024-50202, CVE-2024-50095, CVE-2024-49913,
CVE-2024-50049, CVE-2024-50148, CVE-2024-49948, CVE-2024-49866,
CVE-2024-49963, CVE-2024-49907, CVE-2024-50117, CVE-2024-49885,
CVE-2024-49874, CVE-2024-50198, CVE-2024-49856, CVE-2024-49986,
CVE-2024-49871, CVE-2024-50028, CVE-2024-49889, CVE-2024-50024,
CVE-2024-47687, CVE-2024-50065, CVE-2024-49953, CVE-2024-47748,
CVE-2024-47747, CVE-2024-47673, CVE-2024-49928, CVE-2024-50191,
CVE-2024-50016, CVE-2024-53170, CVE-2024-49933, CVE-2024-50029,
CVE-2024-50098, CVE-2024-49988, CVE-2024-49985, CVE-2024-50042,
CVE-2024-50171, CVE-2024-50233, CVE-2024-49976, CVE-2024-49996,
CVE-2024-49950, CVE-2024-49968, CVE-2024-50083, CVE-2024-49966,
CVE-2024-49851, CVE-2024-50066, CVE-2024-49864, CVE-2024-50048,
CVE-2024-50069, CVE-2024-50001, CVE-2024-50194, CVE-2024-47693,
CVE-2024-49905, CVE-2024-50134, CVE-2024-49944, CVE-2024-50060,
CVE-2024-49892, CVE-2024-49982, CVE-2024-49883, CVE-2024-49875,
CVE-2024-47691, CVE-2024-47714, CVE-2024-47712, CVE-2024-50025,
CVE-2024-50023, CVE-2024-47726, CVE-2024-50041, CVE-2024-49896,
CVE-2024-50195, CVE-2024-47679, CVE-2024-47678, CVE-2024-49877,
CVE-2024-47684, CVE-2024-47719, CVE-2024-49937, CVE-2024-53144,
CVE-2024-47737, CVE-2024-49998, CVE-2024-49879, CVE-2024-50019,
CVE-2024-50093, CVE-2024-50073, CVE-2024-50064, CVE-2024-50006,
CVE-2024-47695, CVE-2024-49882, CVE-2024-50179, CVE-2024-49865,
CVE-2024-47702, CVE-2024-50046, CVE-2024-49919, CVE-2024-47697,
CVE-2024-50017, CVE-2024-50014, CVE-2024-49861, CVE-2024-50197,
CVE-2024-49886, CVE-2024-49938, CVE-2024-49991, CVE-2024-49981,
CVE-2024-56663, CVE-2024-49914, CVE-2024-49920, CVE-2024-47671,
CVE-2024-49961, CVE-2024-47698, CVE-2024-49952, CVE-2024-47688,
CVE-2024-50078, CVE-2024-50199, CVE-2024-49918, CVE-2024-50044,
CVE-2024-50013, CVE-2024-47711, CVE-2024-49917, CVE-2024-50057,
CVE-2024-47718, CVE-2024-49911, CVE-2024-49912, CVE-2024-53165,
CVE-2024-50068, CVE-2024-50087, CVE-2024-47720, CVE-2024-49958,
CVE-2024-49934, CVE-2024-49859, CVE-2024-47710, CVE-2024-49903,
CVE-2024-49925, CVE-2024-50061, CVE-2024-41016, CVE-2024-47696,
CVE-2024-47701, CVE-2024-49939, CVE-2024-49924, CVE-2024-49935,
CVE-2024-50030, CVE-2024-50074, CVE-2024-47681, CVE-2024-47743,
CVE-2024-49992, CVE-2024-49881, CVE-2024-50063, CVE-2024-47713,
CVE-2024-50039, CVE-2024-50185, CVE-2024-49962, CVE-2024-50182,
CVE-2024-50022, CVE-2024-49959, CVE-2024-50047, CVE-2024-53104,
CVE-2024-49878, CVE-2024-47732, CVE-2024-47753)
It was discovered that Smarty did not properly sanitize template file
names. An attacker could possibly use this issue to cause Smarty to
crash, resulting in a denial of service, or possibly execute arbitrary
code.
Posted by Qualys Security Advisory via Fulldisclosure on Mar 27
Qualys Security Advisory
Three bypasses of Ubuntu’s unprivileged user namespace restrictions
========================================================================
Contents
========================================================================
Summary
Bypass via aa-exec
Bypass via busybox
Bypass via LD_PRELOAD
Acknowledgments
Timeline (advisory sent to the Ubuntu Security Team on January 15, 2025)…
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– ARM64 architecture;
– x86 architecture;
– Block layer subsystem;
– Drivers core;
– Ublk userspace block driver;
– Compressed RAM block device driver;
– CPU frequency scaling framework;
– DAX dirext access to differentiated memory framework;
– GPU drivers;
– HID subsystem;
– I3C subsystem;
– IIO subsystem;
– InfiniBand drivers;
– IOMMU subsystem;
– IRQ chip drivers;
– Network drivers;
– NTB driver;
– Virtio pmem driver;
– Parport drivers;
– Pin controllers subsystem;
– SCSI subsystem;
– SuperH / SH-Mobile drivers;
– Direct Digital Synthesis drivers;
– Thermal drivers;
– TTY drivers;
– UFS subsystem;
– USB Gadget drivers;
– USB Host Controller drivers;
– TI TPS6598x USB Power Delivery controller driver;
– Framebuffer layer;
– BTRFS file system;
– Ext4 file system;
– F2FS file system;
– Network file system (NFS) client;
– NILFS2 file system;
– NTFS3 file system;
– SMB network file system;
– BPF subsystem;
– Network file system (NFS) superblock;
– Network traffic control;
– Network sockets;
– User-space API (UAPI);
– io_uring subsystem;
– Kernel thread helper (kthread);
– RCU subsystem;
– Timer subsystem;
– Maple Tree data structure library;
– Memory management;
– Bluetooth subsystem;
– Ethernet bridge;
– Networking core;
– IPv4 networking;
– Multipath TCP;
– Netfilter;
– Netlink;
– Unix domain sockets;
– Wireless networking;
– eXpress Data Path;
(CVE-2024-50182, CVE-2024-50020, CVE-2024-50060, CVE-2024-50074,
CVE-2024-50193, CVE-2024-50117, CVE-2024-50201, CVE-2024-50033,
CVE-2024-50056, CVE-2024-50026, CVE-2024-50059, CVE-2024-50041,
CVE-2024-50083, CVE-2024-50038, CVE-2024-50229, CVE-2024-50028,
CVE-2024-50183, CVE-2024-50196, CVE-2024-50029, CVE-2024-50093,
CVE-2024-50188, CVE-2024-50025, CVE-2024-50200, CVE-2024-50068,
CVE-2024-49920, CVE-2024-50198, CVE-2024-50035, CVE-2024-50042,
CVE-2024-50023, CVE-2024-50047, CVE-2024-56582, CVE-2024-50090,
CVE-2024-50062, CVE-2024-50073, CVE-2024-50063, CVE-2024-50098,
CVE-2024-50197, CVE-2024-50040, CVE-2024-50180, CVE-2024-53170,
CVE-2024-50087, CVE-2024-50031, CVE-2024-50202, CVE-2024-50058,
CVE-2024-50186, CVE-2024-50134, CVE-2024-50194, CVE-2024-50075,
CVE-2024-50046, CVE-2024-50078, CVE-2024-50066, CVE-2024-53156,
CVE-2024-49893, CVE-2024-50021, CVE-2024-47711, CVE-2024-47726,
CVE-2024-50024, CVE-2024-49865, CVE-2024-50064, CVE-2024-50049,
CVE-2024-50171, CVE-2024-50019, CVE-2024-50077, CVE-2024-50199,
CVE-2024-50072, CVE-2024-50069, CVE-2024-50048, CVE-2024-49972,
CVE-2024-53165, CVE-2024-50022, CVE-2024-50084, CVE-2024-50185,
CVE-2024-50055, CVE-2024-50187, CVE-2024-50009, CVE-2024-50082,
CVE-2024-50085, CVE-2024-50095, CVE-2024-50195, CVE-2024-50080,
CVE-2024-50076, CVE-2024-50088, CVE-2024-50039, CVE-2024-50044,
CVE-2024-50030, CVE-2024-49968, CVE-2024-50148, CVE-2024-50192,
CVE-2024-50032, CVE-2024-50061, CVE-2024-50233, CVE-2024-50099,
CVE-2024-49921, CVE-2024-50184, CVE-2024-50065, CVE-2024-49914,
CVE-2024-50027, CVE-2024-50070, CVE-2024-50086, CVE-2024-50189,
CVE-2024-56614, CVE-2024-50057, CVE-2024-50096, CVE-2024-50045,
CVE-2024-50036, CVE-2024-56663, CVE-2024-50191, CVE-2024-50101)
