Skip to content

chore(deps): update rpm updates to v5.14.0-570.44.1.el9_6 [security] (rhoai-2.24) #1394

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Sep 15, 2025
Merged

chore(deps): update rpm updates to v5.14.0-570.44.1.el9_6 [security] (rhoai-2.24) #1394

merged 1 commit into from
Sep 15, 2025

Conversation

konflux-internal-p02[bot]
Copy link

@konflux-internal-p02 konflux-internal-p02 bot commented Sep 11, 2025
edited
Loading

This PR contains the following updates:

Package Update Change
kernel-headers patch 5.14.0-570.42.2.el9_6 -> 5.14.0-570.44.1.el9_6

kernel: iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic()

CVE-2025-21993

More information

Severity

Moderate

References

kernel: dm-flakey: Fix memory corruption in optional corrupt_bio_byte feature

CVE-2025-21966

More information

Severity

Moderate

References

kernel: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format

CVE-2024-53104

More information

Severity

Important

References

kernel: vsock: Keep the binding until socket destruction

CVE-2025-21756

More information

Severity

Important

References

kernel: sched/fair: Fix potential memory corruption in child_cfs_rq_on_list

CVE-2025-21919

More information

Severity

Moderate

References

kernel: cifs: Fix integer overflow while processing acregmax mount option

CVE-2025-21964

More information

Severity

Moderate

References

kernel: ext4: fix OOB read when checking dotdot dir

CVE-2025-37785

More information

Severity

Moderate

References

kernel: wifi: ath12k: Fix invalid data access in ath12k_dp_rx_h_undecap_nwifi

CVE-2025-37943

More information

Severity

Important

References

kernel: net: gso: fix ownership in __udp_gso_segment

CVE-2025-21926

More information

Severity

Important

References

kernel: net: fix geneve_opt length integer overflow

CVE-2025-22055

More information

Severity

Important

References

kernel: xsk: fix an integer overflow in xp_create_and_assign_umem()

CVE-2025-21997

More information

Severity

Important

References

kernel: vsock/virtio: discard packets if the transport changes

CVE-2025-21669

More information

Severity

Important

References

kernel: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up

CVE-2025-21887

More information

Severity

Important

References

kernel: wifi: cfg80211: cancel wiphy_work before freeing wiphy

CVE-2025-21979

More information

Severity

Important

References

kernel: cifs: Fix integer overflow while processing acdirmax mount option

CVE-2025-21963

More information

Severity

Important

References

kernel: keys: Fix UAF in key_put()

CVE-2025-21893

More information

Severity

Important

References

kernel: Bluetooth: L2CAP: Fix slab-use-after-free Read in l2cap_send_cmd

CVE-2025-21969

More information

Severity

Important

References

kernel: cifs: Fix integer overflow while processing closetimeo mount option

CVE-2025-21962

More information

Severity

Important

References

kernel: smb: client: fix UAF in decryption with multichannel

CVE-2025-37750

More information

Severity

Important

References

kernel: ndisc: use RCU protection in ndisc_alloc_skb()

CVE-2025-21764

More information

Severity

Important

References

kernel: ext4: fix off-by-one error in do_split

CVE-2025-23150

More information

Severity

Moderate

References

kernel: ext4: ignore xattrs past end

CVE-2025-37738

More information

Severity

Moderate

References

kernel: sched/rt: Fix race in push_rt_task

CVE-2025-38234

More information

Severity

Moderate

References

kernel: proc: fix UAF in proc_get_inode()

CVE-2025-21999

More information

Severity

Moderate

References

kernel: ibmvnic: Use kernel helpers for hex dumps

CVE-2025-22104

More information

Severity

Moderate

References

kernel: ice: Fix deinitializing VF in error path

CVE-2025-21883

More information

Severity

Moderate

References

kernel: eth: bnxt: fix truesize for mb-xdp-pass case

CVE-2025-21961

More information

Severity

Moderate

References

kernel: vmxnet3: Fix malformed packet sizing in vmxnet3_process_xdp

CVE-2025-37799

More information

Severity

Important

References

kernel: ipv6: mcast: extend RCU protection in igmp6_send()

CVE-2025-21759

More information

Severity

Important

References

kernel: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes

CVE-2025-21991

More information

Severity

Important

References

kernel: exfat: fix random stack corruption after get_block

CVE-2025-22036

More information

Severity

Important

References

kernel: media: uvcvideo: Remove dangling pointers

CVE-2024-58002

More information

Severity

Important

References

kernel: media: uvcvideo: Fix double free in error path

CVE-2024-57980

More information

Severity

Important

References

kernel: wifi: iwlwifi: limit printed string from FW file

CVE-2025-21905

More information

Severity

Important

References

kernel: mm/huge_memory: fix dereferencing invalid pmd migration entry

CVE-2025-37958

More information

Severity

Important

References

kernel: sunrpc: handle SVC_GARBAGE during svc auth processing as auth error

CVE-2025-38089

More information

Severity

Important

References

kernel: powerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmap

CVE-2025-38088

More information

Severity

Moderate

References

kernel: net_sched: hfsc: Fix a UAF vulnerability in class handling

CVE-2025-37797

More information

Severity

Moderate

References

kernel: RDMA/mlx5: Fix page_size variable overflow

CVE-2025-22091

More information

Severity

Moderate

References

kernel: net/mdiobus: Fix potential out-of-bounds clause 45 read/write access

CVE-2025-38110

More information

Severity

Moderate

References

kernel: ext4: fix out-of-bound read in ext4_xattr_inode_dec_ref_all()

CVE-2025-22121

More information

Severity

Moderate

References

kernel: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove

CVE-2025-22020

More information

Severity

Important

References

kernel: RDMA/core: Fix use-after-free when rename device name

CVE-2025-22085

More information

Severity

Important

References

kernel: nvme-tcp: sanitize request list handling

CVE-2025-38264

More information

Severity

Important

References

kernel: HID: intel-ish-hid: Fix use-after-free issue in hid_ishtp_cl_remove()

CVE-2025-21929

More information

Severity

Important

References

kernel: net: ch9200: fix uninitialised access during mii_nway_restart

CVE-2025-38086

More information

Severity

Important

References

kernel: net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc

CVE-2025-37890

More information

Severity

Important

References

kernel: HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove()

CVE-2025-21928

More information

Severity

Important

References

kernel: net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done

CVE-2025-38052

More information

Severity

Important

References

kernel: padata: fix UAF in padata_reorder

CVE-2025-21727

More information

Severity

Important

References

kernel: ext4: avoid journaling sb update on error if journal is destroying

CVE-2025-22113

More information

Severity

Important

References

kernel: net/sched: fix use-after-free in taprio_dev_notifier

CVE-2025-38087

More information

Severity

Important

References

kernel: mm/hugetlb: unshare page tables during VMA split, not before

CVE-2025-38084

More information

Severity

Moderate

References

kernel: crypto: algif_hash - fix double free in hash_accept

CVE-2025-38079

More information

Severity

Moderate

References

kernel: x86/CPU/AMD: Terminate the erratum_1386_microcode array

CVE-2024-56721

More information

Severity

Moderate

References

kernel: wifi: ath12k: fix invalid access to memory

CVE-2025-38292

More information

Severity

Moderate

References

kernel: PCI/pwrctrl: Cancel outstanding rescan work when unregistering

CVE-2025-38137

More information

Severity

Moderate

References

kernel: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds

CVE-2025-38159

More information

Severity

Moderate

References

kernel: mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race

CVE-2025-38085

More information

Severity

Moderate

References

kernel: tls: always refresh the queue when reading sock

CVE-2025-38471

More information

Severity

Important

References

kernel: i2c/designware: Fix an initialization issue

CVE-2025-38380

More information

Severity

Important

References

kernel: net: fix udp gso skb_segment after pull from frag_list

CVE-2025-38124

More information

Severity

Important

References

kernel: bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type()

CVE-2025-21867

More information

Severity

Important

References

kernel: Bluetooth: hci_core: Fix use-after-free in vhci_flush()

CVE-2025-38250

More information

Severity

Important

References

kernel: i40e: fix MMIO write access to an invalid page in i40e_clear_hw

CVE-2025-38200

More information

Severity

Important

References

kernel: ice: fix eswitch code memory leak in reset scenario

CVE-2025-38417

More information

Severity

Important

References

kernel: net_sched: ets: Fix double list add in class with netem as child qdisc

CVE-2025-37914

More information

Severity

Important

References

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

To execute skipped test pipelines write comment /ok-to-test.

This PR has been generated by MintMaker (powered by Renovate Bot).

@konflux-internal-p02 konflux-internal-p02 bot force-pushed the renovate/rpm/rhoai-2.24/rpm-lockfile-kernel-headers-vulnerability branch 2 times, most recently from 58fe056 to 78c1f10 Compare September 11, 2025 09:02
@konflux-internal-p02
chore(deps): update rpm updates to v5.14.0-570.44.1.el9_6 [security]
b43e339 
Signed-off-by: konflux-internal-p02 <170854209+konflux-internal-p02[bot]@users.noreply.github.com>
@konflux-internal-p02 konflux-internal-p02 bot changed the title chore(deps): update rpm updates to v5.14.0-570.42.2.el9_6 [security] (rhoai-2.24) chore(deps): update rpm updates to v5.14.0-570.44.1.el9_6 [security] (rhoai-2.24) Sep 15, 2025
@konflux-internal-p02 konflux-internal-p02 bot force-pushed the renovate/rpm/rhoai-2.24/rpm-lockfile-kernel-headers-vulnerability branch from 78c1f10 to b43e339 Compare September 15, 2025 16:51
@konflux-internal-p02 konflux-internal-p02 bot merged commit 7182b6f into rhoai-2.24 Sep 15, 2025
@konflux-internal-p02 konflux-internal-p02 bot deleted the renovate/rpm/rhoai-2.24/rpm-lockfile-kernel-headers-vulnerability branch September 15, 2025 16:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants