Threats Tagged 'cve-2025-37914'

This Red Hat security advisory addresses three vulnerabilities in the Linux kernel packages used by Red Hat Enterprise Linux 9. The issues include a memory accounting leak in the UDP implementation (CVE-2025-22058), a double list addition bug in the net_sched subsystem with netem as a child qdisc (CVE-2025-37914), and a memory leak in the ice driver eswitch code during reset scenarios (CVE-2025-38417). These vulnerabilities have been rated with a security impact of Important by Red Hat. The advisory provides updated kernel packages to fix these issues and requires a system reboot to apply the updates. No known exploits in the wild have been reported at this time.

This Red Hat security advisory addresses multiple vulnerabilities in the Linux kernel packages used in Red Hat Enterprise Linux 10 and related products. The issues include a double list addition in the net_sched subsystem with netem as a child qdisc (CVE-2025-37914), an invalid MMIO write access in the i40e driver (CVE-2025-38200), and a memory leak in the ice driver's eswitch code during reset scenarios (CVE-2025-38417). These vulnerabilities have been rated as important by Red Hat and affect various architectures including x86_64, s390x, ppc64le, and aarch64. A kernel update is available that fixes these issues, and a system reboot is required to apply the update.

Red Hat has issued a security advisory for multiple vulnerabilities in the Linux kernel packages included in Red Hat Enterprise Linux 9.4 Extended Update Support. The update addresses ten distinct security issues including use-after-free, double free, race conditions, buffer overflows, and speculation side-channel fixes across various kernel subsystems such as networking, Bluetooth, SCSI, and WiFi. The advisory rates the update as important and requires a system reboot after applying the update. Detailed CVE references are provided for each fixed vulnerability.