Red Hat Security Advisory: kernel security update
This advisory addresses multiple vulnerabilities in the Linux kernel packages used by Red Hat Enterprise Linux 10 and related products. The issues include a use-after-free vulnerability in proc_get_inode() (CVE-2025-21999), an off-by-one error in the ext4 filesystem code (CVE-2025-23150), and improper handling of extended attributes in ext4 (CVE-2025-37738). Red Hat has released updated kernel packages to fix these vulnerabilities. Systems must be rebooted after applying the update for the fixes to take effect. The overall security impact is rated as moderate by Red Hat Product Security. No known exploits are reported in the wild at this time.
AI Analysis
Technical Summary
The Red Hat kernel security update for Red Hat Enterprise Linux 10 addresses four CVEs, including CVE-2025-21999, which is a use-after-free vulnerability in the proc_get_inode() function, CVE-2025-23150, an off-by-one error in the ext4 filesystem's do_split function, and CVE-2025-37738, which involves ignoring extended attributes past the end in ext4. These vulnerabilities affect the Linux kernel core components and could potentially lead to stability or security issues if exploited. Red Hat has issued updated kernel packages that fix these issues, requiring a system reboot to apply the changes. The advisory rates the overall impact as moderate and does not indicate any active exploitation.
Potential Impact
The vulnerabilities affect the Linux kernel, a critical component of the operating system, potentially allowing for use-after-free conditions and memory handling errors in filesystem code. These issues could lead to system instability or security risks if exploited. However, Red Hat rates the overall impact as moderate and there are no known exploits in the wild currently.
Mitigation Recommendations
Red Hat has released updated kernel packages that address these vulnerabilities. Users of Red Hat Enterprise Linux 10 and related products should apply the kernel update as detailed in Red Hat advisory RHSA-2025:9348 and reboot their systems to ensure the fixes take effect. Patch status is confirmed by the vendor advisory, and applying the official update is the recommended remediation.
Red Hat Security Advisory: kernel security update
Description
This advisory addresses multiple vulnerabilities in the Linux kernel packages used by Red Hat Enterprise Linux 10 and related products. The issues include a use-after-free vulnerability in proc_get_inode() (CVE-2025-21999), an off-by-one error in the ext4 filesystem code (CVE-2025-23150), and improper handling of extended attributes in ext4 (CVE-2025-37738). Red Hat has released updated kernel packages to fix these vulnerabilities. Systems must be rebooted after applying the update for the fixes to take effect. The overall security impact is rated as moderate by Red Hat Product Security. No known exploits are reported in the wild at this time.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The Red Hat kernel security update for Red Hat Enterprise Linux 10 addresses four CVEs, including CVE-2025-21999, which is a use-after-free vulnerability in the proc_get_inode() function, CVE-2025-23150, an off-by-one error in the ext4 filesystem's do_split function, and CVE-2025-37738, which involves ignoring extended attributes past the end in ext4. These vulnerabilities affect the Linux kernel core components and could potentially lead to stability or security issues if exploited. Red Hat has issued updated kernel packages that fix these issues, requiring a system reboot to apply the changes. The advisory rates the overall impact as moderate and does not indicate any active exploitation.
Potential Impact
The vulnerabilities affect the Linux kernel, a critical component of the operating system, potentially allowing for use-after-free conditions and memory handling errors in filesystem code. These issues could lead to system instability or security risks if exploited. However, Red Hat rates the overall impact as moderate and there are no known exploits in the wild currently.
Mitigation Recommendations
Red Hat has released updated kernel packages that address these vulnerabilities. Users of Red Hat Enterprise Linux 10 and related products should apply the kernel update as detailed in Red Hat advisory RHSA-2025:9348 and reboot their systems to ensure the fixes take effect. Patch status is confirmed by the vendor advisory, and applying the official update is the recommended remediation.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:9348
- Cve Count
- 4
- Additional Cves
- ["CVE-2025-23150","CVE-2025-37738","CVE-2025-38234"]
- Cvss Version
- null
Threat ID: 6a160985e29bf47b50651e28
Added to database: 5/26/2026, 8:58:45 PM
Last enriched: 5/26/2026, 9:22:11 PM
Last updated: 5/27/2026, 5:02:36 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.