Details:
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
kernel: net: gso: fix ownership in __udp_gso_segment (CVE-2025-21926)
kernel: vlan: enforce underlying device type (CVE-2025-21920)
kernel: xsk: fix an integer overflow in xp_create_and_assign_umem() (CVE-2025-21997)
kernel: net: fix geneve_opt length integer overflow (CVE-2025-22055)
kernel: ext4: fix OOB read when checking dotdot dir (CVE-2025-37785)
kernel: wifi: ath12k: Fix invalid data access in ath12k_dp_rx_h_undecap_nwifi (CVE-2025-37943)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
0:5.14.0-570.21.1.el9_60:5.14.0-570.21.1.el9_60:5.14.0-570.21.1.el9_60:5.14.0-570.21.1.el9_60:5.14.0-570.21.1.el9_60:5.14.0-570.21.1.el9_60:5.14.0-570.21.1.el9_60:5.14.0-570.21.1.el9_60:5.14.0-570.21.1.el9_60:5.14.0-570.21.1.el9_6Exploitability
AV:LAC:LPR:LUI:NScope
S:UImpact
C:HI:NA:H7.1/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H