ALAS2023-2026-1423

Package updates are available for Amazon Linux 2023 that fix the following vulnerabilities: CVE-2025-71157: In the Linux kernel, the following vulnerability has been resolved:

RDMA/core: always drop device refcount in ib_del_sub_device_and_put()

CVE-2025-71151: In the Linux kernel, the following vulnerability has been resolved:

cifs: Fix memory and information leak in smb3_reconfigure()

CVE-2025-71149: In the Linux kernel, the following vulnerability has been resolved:

io_uring/poll: correctly handle io_poll_add() return value on update

CVE-2025-71148: In the Linux kernel, the following vulnerability has been resolved:

net/handshake: restore destructor on submit failure

CVE-2025-71147: In the Linux kernel, the following vulnerability has been resolved:

KEYS: trusted: Fix a memory leak in tpm2_load_cmd

CVE-2025-71146: In the Linux kernel, the following vulnerability has been resolved:

netfilter: nf_conncount: fix leaked ct in error paths

CVE-2025-71143: In the Linux kernel, the following vulnerability has been resolved:

clk: samsung: exynos-clkout: Assign .num before accessing .hws

CVE-2025-71135: In the Linux kernel, the following vulnerability has been resolved:

md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()

CVE-2025-71132: In the Linux kernel, the following vulnerability has been resolved:

smc91x: fix broken irq-context in PREEMPT_RT

CVE-2025-71131: In the Linux kernel, the following vulnerability has been resolved:

crypto: seqiv - Do not use req->iv after crypto_aead_encrypt

CVE-2025-71130: In the Linux kernel, the following vulnerability has been resolved:

drm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer

CVE-2025-71126: In the Linux kernel, the following vulnerability has been resolved:

mptcp: avoid deadlock on fallback while reinjecting

CVE-2025-71125: In the Linux kernel, the following vulnerability has been resolved:

tracing: Do not register unsupported perf...