Aggregator

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ACPI drivers; - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; (CVE-2024-53051, CVE-2024-46787, CVE-2024-50047, CVE-2024-56662, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-37932, CVE-2025-37798, CVE-2025-38177, CVE-2025-38000)

FEDORA-2025-6a7aa95984 Packages in this update:

• glibc-2.41-9.fc42

Update description:

This update fixes CVE-2025-8058, a low-impact security vulnerability in the regcomp function. It also includes a fix for the iconv; it no longer creates executable files.

FEDORA-2025-9a83222bca Packages in this update:

• glibc-2.40-27.fc41

Update description:

This update fixes CVE-2025-8058, a low-impact security vulnerability in the regcomp function.

Version:next-20250725 (linux-next) Released:2025-07-25

FEDORA-EPEL-2025-9c73449be0 Packages in this update:

• botan2-2.19.5-7.el10_1

Update description:

fix vulnerability CVE-2024-50383 (rhbz#2321555)

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PowerPC architecture; - S390 architecture; - Block layer subsystem; - Serial ATA and Parallel ATA drivers; - Drivers core; - Network block device driver; - Character device driver; - TPM device driver; - Clock framework and drivers; - FireWire subsystem; - GPU drivers; - HID subsystem; - I3C subsystem; - InfiniBand drivers; - IOMMU subsystem; - Media drivers; - NVIDIA Tegra memory controller driver; - Fastrpc Driver; - Network drivers; - Operating Performance Points (OPP) driver; - PCI subsystem; - x86 platform drivers; - PPS (Pulse Per Second) driver; - PTP clock framework; - Remote Processor subsystem; - Real Time Clock drivers; - SCSI subsystem; - QCOM SoC drivers; - Media staging drivers; - TTY drivers; - UFS subsystem; - USB Gadget drivers; - USB Host Controller drivers; - File systems infrastructure; - BTRFS file system; - F2FS file system; - NILFS2 file system; - SMB network file system; - UBI file system; - Timer subsystem; - KVM subsystem; - Networking core; - ptr_ring data structure definitions; - Networking subsytem; - Amateur Radio drivers; - XFRM subsystem; - Tracing infrastructure; - BPF subsystem; - Padata parallel execution mechanism; - printk logging mechanism; - Memory management; - Bluetooth subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - Multipath TCP; - Netfilter; - NFC subsystem; - Rose network layer; - RxRPC session sockets; - Network traffic control; - Landlock security; - Linux Security Modules (LSM) Framework; - Tomoyo security module; - SoC audio core drivers; (CVE-2025-21829, CVE-2025-21753, CVE-2024-58051, CVE-2025-21738, CVE-2025-21727, CVE-2025-21719, CVE-2024-57982, CVE-2025-21745, CVE-2024-58003, CVE-2025-21716, CVE-2025-21728, CVE-2024-58001, CVE-2024-58069, CVE-2025-21754, CVE-2025-21812, CVE-2025-21816, CVE-2024-58071, CVE-2024-58018, CVE-2025-21708, CVE-2024-58078, CVE-2025-21707, CVE-2025-21741, CVE-2024-57996, CVE-2024-58019, CVE-2024-58014, CVE-2024-58058, CVE-2024-57953, CVE-2025-21710, CVE-2024-58061, CVE-2025-21808, CVE-2025-21826, CVE-2025-21725, CVE-2025-21722, CVE-2025-21733, CVE-2024-58034, CVE-2025-21718, CVE-2025-21714, CVE-2025-21723, CVE-2025-21743, CVE-2025-21736, CVE-2024-58056, CVE-2025-21810, CVE-2024-58077, CVE-2024-58002, CVE-2024-49887, CVE-2025-21739, CVE-2024-57980, CVE-2025-21721, CVE-2025-21815, CVE-2025-21811, CVE-2024-57974, CVE-2024-58005, CVE-2025-21814, CVE-2024-58055, CVE-2025-21744, CVE-2025-21798, CVE-2024-58082, CVE-2024-58081, CVE-2025-21832, CVE-2024-58053, CVE-2025-21828, CVE-2024-58076, CVE-2025-21820, CVE-2024-58083, CVE-2024-58054, CVE-2024-57984, CVE-2025-21742, CVE-2024-58013, CVE-2025-21799, CVE-2025-21715, CVE-2025-21750, CVE-2025-21804, CVE-2024-57994, CVE-2024-58010, CVE-2024-58007, CVE-2024-58011, CVE-2024-57975, CVE-2025-37750, CVE-2025-21731, CVE-2025-21726, CVE-2024-58052, CVE-2024-57979, CVE-2025-21720, CVE-2025-21724, CVE-2024-57986, CVE-2024-58057, CVE-2024-58080, CVE-2024-58079, CVE-2024-57990, CVE-2025-21748, CVE-2025-21806, CVE-2025-21825, CVE-2024-58016, CVE-2025-21711, CVE-2024-58072, CVE-2025-21732, CVE-2024-57999, CVE-2024-57981, CVE-2024-58068, CVE-2025-21734, CVE-2024-58017, CVE-2024-57997, CVE-2025-21749, CVE-2025-37974, CVE-2025-21802, CVE-2024-58070, CVE-2025-21809, CVE-2024-58063, CVE-2024-58085, CVE-2025-21735, CVE-2024-57973, CVE-2024-58006, CVE-2024-57993, CVE-2025-21705, CVE-2024-57998, CVE-2025-21830, CVE-2025-21801)

It was discovered that the iputils ping utility incorrectly handled certain ICMP Echo Reply packets. A remote attacker could possibly use this issue to cause iputils to consume resources, leading to a denial of service.

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PA-RISC architecture; - PowerPC architecture; - S390 architecture; - x86 architecture; - Compute Acceleration Framework; - Ublk userspace block driver; - Bluetooth drivers; - ARM SCMI message protocol; - GPU drivers; - IOMMU subsystem; - IRQ chip drivers; - Multiple devices driver; - Network drivers; - PCI subsystem; - PTP clock framework; - SPI subsystem; - BTRFS file system; - SMB network file system; - eXpress Data Path; - Universal MIDI packet (UMP) support module; - Tracing infrastructure; - Memory management; - IPv4 networking; - IPv6 networking; - Netfilter; - Network traffic control; - AMD SoC Alsa drivers; - SoC Audio generic drivers; (CVE-2025-37900, CVE-2025-37912, CVE-2025-37904, CVE-2025-37924, CVE-2025-37907, CVE-2025-37894, CVE-2025-37909, CVE-2025-37891, CVE-2025-37990, CVE-2025-37991, CVE-2025-37910, CVE-2025-37930, CVE-2025-37895, CVE-2025-37898, CVE-2025-37935, CVE-2025-37931, CVE-2025-37906, CVE-2025-37997, CVE-2025-37946, CVE-2025-37896, CVE-2025-37933, CVE-2025-37920, CVE-2025-37890, CVE-2025-37899, CVE-2025-37974, CVE-2025-37919, CVE-2025-37916, CVE-2025-38177, CVE-2025-37908, CVE-2025-37913, CVE-2025-37911, CVE-2025-37901, CVE-2025-37927, CVE-2025-38000, CVE-2025-38001, CVE-2025-37897, CVE-2025-37918, CVE-2025-37923, CVE-2025-37914, CVE-2025-37929, CVE-2025-37903, CVE-2025-37932, CVE-2025-37926, CVE-2025-37905, CVE-2025-37928, CVE-2025-37915, CVE-2025-38216, CVE-2025-37917, CVE-2025-37936, CVE-2025-37934, CVE-2025-37921, CVE-2025-37922)