{
"document": {
"aggregate_severity": {
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "TuxCare License Agreement",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Cloud Linux Inc. and provide a link to the original.",
"title": "Terms of Use"
},
{
"category": "details",
"text": "fbdev: Fix vmalloc out-of-bounds write in fast_imageblit {CVE-2025-38685}\n- cnic: Fix use-after-free bugs in cnic_delete_task {CVE-2025-39945}\n- scsi: bfa: Double-free fix {CVE-2025-38699}\n- fbdev: fix potential buffer overflow in do_register_framebuffer() {CVE-2025-38702}\n- scsi: ses: Fix slab-out-of-bounds in ses_intf_remove() {CVE-2023-53521}\n- scsi: ses: Fix possible desc_ptr out-of-bounds accesses {CVE-2023-53675}\n- usb: core: config: Prevent OOB read in SS endpoint companion parsing {CVE-2025-39760}\n- media: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format() {CVE-2025-38680}\n- fs/buffer: fix use-after-free when call bh_read() helper {CVE-2025-39691}\n- mmc: core: replace sprintf() with scnprintf() for sysfs output {CVE-2022-49267}\n- ubi: ensure that VID header offset + VID header size <= alloc, size {CVE-2023-53265}\n- scsi: lpfc: Fix use-after-free KFENCE violation during sysfs firmware write {CVE-2023-53282}\n- Revert \"Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work\" {CVE-2023-53063}\n- Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition {CVE-2023-53063}",
"title": "Details"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://tuxcare.com/contact/",
"name": "TuxCare",
"namespace": "https://tuxcare.com/"
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.tuxcare.com/csaf/v2/els_os/oraclelinux6els/advisories/2026/clsa-2026_1771237797.json"
},
{
"category": "self",
"summary": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"tracking": {
"current_release_date": "2026-02-16T10:32:04Z",
"generator": {
"date": "2026-02-16T10:32:04Z",
"engine": {
"name": "pyCSAF"
}
},
"id": "CLSA-2026:1771237797",
"initial_release_date": "2026-02-16T10:32:04Z",
"revision_history": [
{
"date": "2026-02-16T10:32:04Z",
"number": "1",
"summary": "Initial version"
}
],
"status": "final",
"version": "1"
},
"title": "kernel: Fix of 13 CVEs"
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux 6",
"product": {
"name": "Oracle Linux 6",
"product_id": "Oracle-Linux-6",
"product_identification_helper": {
"cpe": "cpe:2.3:o:oracle:linux:6:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_family",
"name": "Oracle Linux"
}
],
"category": "vendor",
"name": "Oracle Corporation"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product": {
"name": "kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_id": "kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-headers@2.6.32-754.35.8.el6.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product": {
"name": "kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_id": "kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-devel@2.6.32-754.35.8.el6.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product": {
"name": "kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_id": "kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-debug-devel@2.6.32-754.35.8.el6.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product": {
"name": "python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_id": "python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/python-perf@2.6.32-754.35.8.el6.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product": {
"name": "kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_id": "kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-debug@2.6.32-754.35.8.el6.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product": {
"name": "kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_id": "kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel@2.6.32-754.35.8.el6.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product": {
"name": "perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_id": "perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/perf@2.6.32-754.35.8.el6.tuxcare.els29?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"product": {
"name": "kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"product_id": "kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-debug-devel@2.6.32-754.35.8.el6.tuxcare.els29?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"product": {
"name": "kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"product_id": "kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-firmware@2.6.32-754.35.8.el6.tuxcare.els29?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"product": {
"name": "kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"product_id": "kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-abi-whitelists@2.6.32-754.35.8.el6.tuxcare.els29?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"product": {
"name": "kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"product_id": "kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-doc@2.6.32-754.35.8.el6.tuxcare.els29?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "CloudLinux"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64 as a component of Oracle Linux 6",
"product_id": "Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
},
"product_reference": "kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"relates_to_product_reference": "Oracle-Linux-6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64 as a component of Oracle Linux 6",
"product_id": "Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
},
"product_reference": "kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"relates_to_product_reference": "Oracle-Linux-6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686 as a component of Oracle Linux 6",
"product_id": "Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686"
},
"product_reference": "kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"relates_to_product_reference": "Oracle-Linux-6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64 as a component of Oracle Linux 6",
"product_id": "Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
},
"product_reference": "kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"relates_to_product_reference": "Oracle-Linux-6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64 as a component of Oracle Linux 6",
"product_id": "Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
},
"product_reference": "python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"relates_to_product_reference": "Oracle-Linux-6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch as a component of Oracle Linux 6",
"product_id": "Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch"
},
"product_reference": "kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"relates_to_product_reference": "Oracle-Linux-6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64 as a component of Oracle Linux 6",
"product_id": "Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
},
"product_reference": "kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"relates_to_product_reference": "Oracle-Linux-6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch as a component of Oracle Linux 6",
"product_id": "Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch"
},
"product_reference": "kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"relates_to_product_reference": "Oracle-Linux-6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch as a component of Oracle Linux 6",
"product_id": "Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch"
},
"product_reference": "kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"relates_to_product_reference": "Oracle-Linux-6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64 as a component of Oracle Linux 6",
"product_id": "Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
},
"product_reference": "kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"relates_to_product_reference": "Oracle-Linux-6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64 as a component of Oracle Linux 6",
"product_id": "Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
},
"product_reference": "perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"relates_to_product_reference": "Oracle-Linux-6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-49267",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: core: use sysfs_emit() instead of sprintf()\n\nsprintf() (still used in the MMC core for the sysfs output) is vulnerable\nto the buffer overflow. Use the new-fangled sysfs_emit() instead.\n\nFound by Linux Verification Center (linuxtesting.org) with the SVACE static\nanalysis tool.",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2022-49267"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/0f55ac683b2722714016f16daae9cab3f7f7b9f9",
"url": "https://git.kernel.org/stable/c/0f55ac683b2722714016f16daae9cab3f7f7b9f9"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/659ca56b5415c7a1d05e185c36fad80ba165d063",
"url": "https://git.kernel.org/stable/c/659ca56b5415c7a1d05e185c36fad80ba165d063"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/c4ab65738ab3e21fe519ee46b2051222bc8e32ef",
"url": "https://git.kernel.org/stable/c/c4ab65738ab3e21fe519ee46b2051222bc8e32ef"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/f5d8a5fe77ce933f53eb8f2e22bb7a1a2019ea11",
"url": "https://git.kernel.org/stable/c/f5d8a5fe77ce933f53eb8f2e22bb7a1a2019ea11"
}
],
"release_date": "2025-02-26T07:01:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2023-53282",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Fix use-after-free KFENCE violation during sysfs firmware write\n\nDuring the sysfs firmware write process, a use-after-free read warning is\nlogged from the lpfc_wr_object() routine:\n\n BUG: KFENCE: use-after-free read in lpfc_wr_object+0x235/0x310 [lpfc]\n Use-after-free read at 0x0000000000cf164d (in kfence-#111):\n lpfc_wr_object+0x235/0x310 [lpfc]\n lpfc_write_firmware.cold+0x206/0x30d [lpfc]\n lpfc_sli4_request_firmware_update+0xa6/0x100 [lpfc]\n lpfc_request_firmware_upgrade_store+0x66/0xb0 [lpfc]\n kernfs_fop_write_iter+0x121/0x1b0\n new_sync_write+0x11c/0x1b0\n vfs_write+0x1ef/0x280\n ksys_write+0x5f/0xe0\n do_syscall_64+0x59/0x90\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe driver accessed wr_object pointer data, which was initialized into\nmailbox payload memory, after the mailbox object was released back to the\nmailbox pool.\n\nFix by moving the mailbox free calls to the end of the routine ensuring\nthat we don't reference internal mailbox memory after release.",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2023-53282"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/21681b81b9ae548c5dae7ae00d931197a27f480c",
"url": "https://git.kernel.org/stable/c/21681b81b9ae548c5dae7ae00d931197a27f480c"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/51ab4eb1a25e73c7fc2ad9026520c4d8369c93cc",
"url": "https://git.kernel.org/stable/c/51ab4eb1a25e73c7fc2ad9026520c4d8369c93cc"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/8becb97918f04bb177bc9c4e00c2bdb302e00944",
"url": "https://git.kernel.org/stable/c/8becb97918f04bb177bc9c4e00c2bdb302e00944"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/8dfefa8f424ab208e552df1bfd008b732f3d0ad1",
"url": "https://git.kernel.org/stable/c/8dfefa8f424ab208e552df1bfd008b732f3d0ad1"
}
],
"release_date": "2025-09-16T08:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2023-53145",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition\n\nIn btsdio_probe, the data->work is bound with btsdio_work. It will be\nstarted in btsdio_send_frame.\n\nIf the btsdio_remove runs with a unfinished work, there may be a race\ncondition that hdev is freed but used in btsdio_work. Fix it by\ncanceling the work before do cleanup in btsdio_remove.",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2023-53145"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/179c65828593aff1f444e15debd40a477cb23cf4",
"url": "https://git.kernel.org/stable/c/179c65828593aff1f444e15debd40a477cb23cf4"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/3efcbf25e5ab4d4ad1b7e6ba0869ff85540e3f6e",
"url": "https://git.kernel.org/stable/c/3efcbf25e5ab4d4ad1b7e6ba0869ff85540e3f6e"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/6c3653627397a0d6eab19b20a59423e118985a6b",
"url": "https://git.kernel.org/stable/c/6c3653627397a0d6eab19b20a59423e118985a6b"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/73f7b171b7c09139eb3c6a5677c200dc1be5f318",
"url": "https://git.kernel.org/stable/c/73f7b171b7c09139eb3c6a5677c200dc1be5f318"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/746b363bef41cc159c051c47f9e30800bc6b520d",
"url": "https://git.kernel.org/stable/c/746b363bef41cc159c051c47f9e30800bc6b520d"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/a5c2a467e9e789ae0891de55b766daac52e3b7b3",
"url": "https://git.kernel.org/stable/c/a5c2a467e9e789ae0891de55b766daac52e3b7b3"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/a6650d27ab2c12a8ee750f396edb5ac8b4558b2e",
"url": "https://git.kernel.org/stable/c/a6650d27ab2c12a8ee750f396edb5ac8b4558b2e"
}
],
"release_date": "2025-05-10T15:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2025-38702",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: fix potential buffer overflow in do_register_framebuffer()\n\nThe current implementation may lead to buffer overflow when:\n1. Unregistration creates NULL gaps in registered_fb[]\n2. All array slots become occupied despite num_registered_fb < FB_MAX\n3. The registration loop exceeds array bounds\n\nAdd boundary check to prevent registered_fb[FB_MAX] access.",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2025-38702"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/248b2aab9b2af5ecf89d9d7955a2ff20c4b4a399",
"url": "https://git.kernel.org/stable/c/248b2aab9b2af5ecf89d9d7955a2ff20c4b4a399"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/2828a433c7d7a05b6f27c8148502095101dd0b09",
"url": "https://git.kernel.org/stable/c/2828a433c7d7a05b6f27c8148502095101dd0b09"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/523b84dc7ccea9c4d79126d6ed1cf9033cf83b05",
"url": "https://git.kernel.org/stable/c/523b84dc7ccea9c4d79126d6ed1cf9033cf83b05"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/5c3f5a25c62230b7965804ce7a2e9305c3ca3961",
"url": "https://git.kernel.org/stable/c/5c3f5a25c62230b7965804ce7a2e9305c3ca3961"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/806f85bdd3a60187c21437fc51baace11f659f35",
"url": "https://git.kernel.org/stable/c/806f85bdd3a60187c21437fc51baace11f659f35"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/cbe740de32bb0fb7a5213731ff5f26ea6718fca3",
"url": "https://git.kernel.org/stable/c/cbe740de32bb0fb7a5213731ff5f26ea6718fca3"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html",
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"
}
],
"release_date": "2025-09-04T16:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2025-39945",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncnic: Fix use-after-free bugs in cnic_delete_task\n\nThe original code uses cancel_delayed_work() in cnic_cm_stop_bnx2x_hw(),\nwhich does not guarantee that the delayed work item 'delete_task' has\nfully completed if it was already running. Additionally, the delayed work\nitem is cyclic, the flush_workqueue() in cnic_cm_stop_bnx2x_hw() only\nblocks and waits for work items that were already queued to the\nworkqueue prior to its invocation. Any work items submitted after\nflush_workqueue() is called are not included in the set of tasks that the\nflush operation awaits. This means that after the cyclic work items have\nfinished executing, a delayed work item may still exist in the workqueue.\nThis leads to use-after-free scenarios where the cnic_dev is deallocated\nby cnic_free_dev(), while delete_task remains active and attempt to\ndereference cnic_dev in cnic_delete_task().\n\nA typical race condition is illustrated below:\n\nCPU 0 (cleanup) | CPU 1 (delayed work callback)\ncnic_netdev_event() |\n cnic_stop_hw() | cnic_delete_task()\n cnic_cm_stop_bnx2x_hw() | ...\n cancel_delayed_work() | /* the queue_delayed_work()\n flush_workqueue() | executes after flush_workqueue()*/\n | queue_delayed_work()\n cnic_free_dev(dev)//free | cnic_delete_task() //new instance\n | dev = cp->dev; //use\n\nReplace cancel_delayed_work() with cancel_delayed_work_sync() to ensure\nthat the cyclic delayed work item is properly canceled and that any\nongoing execution of the work item completes before the cnic_dev is\ndeallocated. Furthermore, since cancel_delayed_work_sync() uses\n__flush_work(work, true) to synchronously wait for any currently\nexecuting instance of the work item to finish, the flush_workqueue()\nbecomes redundant and should be removed.\n\nThis bug was identified through static analysis. To reproduce the issue\nand validate the fix, I simulated the cnic PCI device in QEMU and\nintroduced intentional delays — such as inserting calls to ssleep()\nwithin the cnic_delete_task() function — to increase the likelihood\nof triggering the bug.",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2025-39945"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/0405055930264ea8fd26f4131466fa7652e5e47d",
"url": "https://git.kernel.org/stable/c/0405055930264ea8fd26f4131466fa7652e5e47d"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/0627e1481676669cae2df0d85b5ff13e7d24c390",
"url": "https://git.kernel.org/stable/c/0627e1481676669cae2df0d85b5ff13e7d24c390"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/6e33a7eed587062ca8161ad1f4584882a860d697",
"url": "https://git.kernel.org/stable/c/6e33a7eed587062ca8161ad1f4584882a860d697"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/7b6a5b0a6b392263c3767fc945b311ea04b34bbd",
"url": "https://git.kernel.org/stable/c/7b6a5b0a6b392263c3767fc945b311ea04b34bbd"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/8eeb2091e72d75df8ceaa2172638d61b4cf8929a",
"url": "https://git.kernel.org/stable/c/8eeb2091e72d75df8ceaa2172638d61b4cf8929a"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/cfa7d9b1e3a8604afc84e9e51d789c29574fb216",
"url": "https://git.kernel.org/stable/c/cfa7d9b1e3a8604afc84e9e51d789c29574fb216"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/e1fcd4a9c09feac0902a65615e866dbf22616125",
"url": "https://git.kernel.org/stable/c/e1fcd4a9c09feac0902a65615e866dbf22616125"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/fde6e73189f40ebcf0633aed2b68e731c25f3aa3",
"url": "https://git.kernel.org/stable/c/fde6e73189f40ebcf0633aed2b68e731c25f3aa3"
}
],
"release_date": "2025-10-04T08:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2025-38699",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bfa: Double-free fix\n\nWhen the bfad_im_probe() function fails during initialization, the memory\npointed to by bfad->im is freed without setting bfad->im to NULL.\n\nSubsequently, during driver uninstallation, when the state machine enters\nthe bfad_sm_stopping state and calls the bfad_im_probe_undo() function,\nit attempts to free the memory pointed to by bfad->im again, thereby\ntriggering a double-free vulnerability.\n\nSet bfad->im to NULL if probing fails.",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2025-38699"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/13f613228cf3c96a038424cd97aa4d6aadc66294",
"url": "https://git.kernel.org/stable/c/13f613228cf3c96a038424cd97aa4d6aadc66294"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/39cfe2c83146aad956318f866d0ee471b7a61fa5",
"url": "https://git.kernel.org/stable/c/39cfe2c83146aad956318f866d0ee471b7a61fa5"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/50d9bd48321038bd6e15af5a454bbcd180cf6f80",
"url": "https://git.kernel.org/stable/c/50d9bd48321038bd6e15af5a454bbcd180cf6f80"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/684c92bb08a25ed3c0356bc7eb532ed5b19588dd",
"url": "https://git.kernel.org/stable/c/684c92bb08a25ed3c0356bc7eb532ed5b19588dd"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/8456f862cb95bcc3a831e1ba87c0c17068be0f3f",
"url": "https://git.kernel.org/stable/c/8456f862cb95bcc3a831e1ba87c0c17068be0f3f"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/8e03dd9fadf76db5b9799583074a1a2a54f787f1",
"url": "https://git.kernel.org/stable/c/8e03dd9fadf76db5b9799583074a1a2a54f787f1"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/9337c2affbaebe00b75fdf84ea0e2fcf93c140af",
"url": "https://git.kernel.org/stable/c/9337c2affbaebe00b75fdf84ea0e2fcf93c140af"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/add4c4850363d7c1b72e8fce9ccb21fdd2cf5dc9",
"url": "https://git.kernel.org/stable/c/add4c4850363d7c1b72e8fce9ccb21fdd2cf5dc9"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/ba024d92564580bb90ec367248ace8efe16ce815",
"url": "https://git.kernel.org/stable/c/ba024d92564580bb90ec367248ace8efe16ce815"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html",
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html",
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"
}
],
"release_date": "2025-09-04T16:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2023-53063",
"notes": [
{
"category": "description",
"text": "[REJECTED CVE] In the Linux kernel, the following vulnerability has been resolved:\nBluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2023-53063"
}
],
"release_date": "2025-05-02T00:00:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
]
},
{
"cve": "CVE-2025-39691",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/buffer: fix use-after-free when call bh_read() helper\n\nThere's issue as follows:\nBUG: KASAN: stack-out-of-bounds in end_buffer_read_sync+0xe3/0x110\nRead of size 8 at addr ffffc9000168f7f8 by task swapper/3/0\nCPU: 3 UID: 0 PID: 0 Comm: swapper/3 Not tainted 6.16.0-862.14.0.6.x86_64\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996)\nCall Trace:\n \n dump_stack_lvl+0x55/0x70\n print_address_description.constprop.0+0x2c/0x390\n print_report+0xb4/0x270\n kasan_report+0xb8/0xf0\n end_buffer_read_sync+0xe3/0x110\n end_bio_bh_io_sync+0x56/0x80\n blk_update_request+0x30a/0x720\n scsi_end_request+0x51/0x2b0\n scsi_io_completion+0xe3/0x480\n ? scsi_device_unbusy+0x11e/0x160\n blk_complete_reqs+0x7b/0x90\n handle_softirqs+0xef/0x370\n irq_exit_rcu+0xa5/0xd0\n sysvec_apic_timer_interrupt+0x6e/0x90\n \n\n Above issue happens when do ntfs3 filesystem mount, issue may happens\n as follows:\n mount IRQ\nntfs_fill_super\n read_cache_page\n do_read_cache_folio\n filemap_read_folio\n mpage_read_folio\n\t do_mpage_readpage\n\t ntfs_get_block_vbo\n\t bh_read\n\t submit_bh\n\t wait_on_buffer(bh);\n\t blk_complete_reqs\n\t\t\t\t scsi_io_completion\n\t\t\t\t scsi_end_request\n\t\t\t\t blk_update_request\n\t\t\t\t end_bio_bh_io_sync\n\t\t\t\t\t end_buffer_read_sync\n\t\t\t\t\t __end_buffer_read_notouch\n\t\t\t\t\t unlock_buffer\n\n wait_on_buffer(bh);--> return will return to caller\n\n\t\t\t\t\t put_bh\n\t\t\t\t\t --> trigger stack-out-of-bounds\nIn the mpage_read_folio() function, the stack variable 'map_bh' is\npassed to ntfs_get_block_vbo(). Once unlock_buffer() unlocks and\nwait_on_buffer() returns to continue processing, the stack variable\nis likely to be reclaimed. Consequently, during the end_buffer_read_sync()\nprocess, calling put_bh() may result in stack overrun.\n\nIf the bh is not allocated on the stack, it belongs to a folio. Freeing\na buffer head which belongs to a folio is done by drop_buffers() which\nwill fail to free buffers which are still locked. So it is safe to call\nput_bh() before __end_buffer_read_notouch().",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2025-39691"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/03b40bf5d0389ca23ae6857ee25789f0e0b47ce8",
"url": "https://git.kernel.org/stable/c/03b40bf5d0389ca23ae6857ee25789f0e0b47ce8"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/042cf48ecf67f72c8b3846c7fac678f472712ff3",
"url": "https://git.kernel.org/stable/c/042cf48ecf67f72c8b3846c7fac678f472712ff3"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/3169edb8945c295cf89120fc6b2c35cfe3ad4c9e",
"url": "https://git.kernel.org/stable/c/3169edb8945c295cf89120fc6b2c35cfe3ad4c9e"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/70a09115da586bf662c3bae9c0c4a1b99251fad9",
"url": "https://git.kernel.org/stable/c/70a09115da586bf662c3bae9c0c4a1b99251fad9"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/7375f22495e7cd1c5b3b5af9dcc4f6dffe34ce49",
"url": "https://git.kernel.org/stable/c/7375f22495e7cd1c5b3b5af9dcc4f6dffe34ce49"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/90b5193edb323fefbee0e4e5bc39ed89dcc37719",
"url": "https://git.kernel.org/stable/c/90b5193edb323fefbee0e4e5bc39ed89dcc37719"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/c58c6b532b7b69537cfd9ef701c7e37cdcf79dc4",
"url": "https://git.kernel.org/stable/c/c58c6b532b7b69537cfd9ef701c7e37cdcf79dc4"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/c5aa6ba1127307ab5dc3773eaf40d73a3423841f",
"url": "https://git.kernel.org/stable/c/c5aa6ba1127307ab5dc3773eaf40d73a3423841f"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html",
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html",
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"
}
],
"release_date": "2025-09-05T18:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2023-53521",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ses: Fix slab-out-of-bounds in ses_intf_remove()\n\nA fix for:\n\nBUG: KASAN: slab-out-of-bounds in ses_intf_remove+0x23f/0x270 [ses]\nRead of size 8 at addr ffff88a10d32e5d8 by task rmmod/12013\n\nWhen edev->components is zero, accessing edev->component[0] members is\nwrong.",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2023-53521"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/0595cdb587726b4f0fa780eb7462e3679d141e82",
"url": "https://git.kernel.org/stable/c/0595cdb587726b4f0fa780eb7462e3679d141e82"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/2fb1fa8425cce2dc4dce298275d22d7077694b73",
"url": "https://git.kernel.org/stable/c/2fb1fa8425cce2dc4dce298275d22d7077694b73"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/40af9a6deed723485e05b7d3255a28750692e8db",
"url": "https://git.kernel.org/stable/c/40af9a6deed723485e05b7d3255a28750692e8db"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/578797f0c8cbc2e3ec5fc0dab87087b4c7073686",
"url": "https://git.kernel.org/stable/c/578797f0c8cbc2e3ec5fc0dab87087b4c7073686"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/76f7050537476ac062ec23a544fbca8270f2d08b",
"url": "https://git.kernel.org/stable/c/76f7050537476ac062ec23a544fbca8270f2d08b"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/82143faf01dda831b89eccef60c39ef8575ab08a",
"url": "https://git.kernel.org/stable/c/82143faf01dda831b89eccef60c39ef8575ab08a"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/87e47be38d205df338c52ead43f23b2864567423",
"url": "https://git.kernel.org/stable/c/87e47be38d205df338c52ead43f23b2864567423"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/8f9542cad6c27297c8391de3a659f0b7948495d0",
"url": "https://git.kernel.org/stable/c/8f9542cad6c27297c8391de3a659f0b7948495d0"
}
],
"release_date": "2025-10-01T12:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2025-38680",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format()\n\nThe buffer length check before calling uvc_parse_format() only ensured\nthat the buffer has at least 3 bytes (buflen > 2), buf the function\naccesses buffer[3], requiring at least 4 bytes.\n\nThis can lead to an out-of-bounds read if the buffer has exactly 3 bytes.\n\nFix it by checking that the buffer has at least 4 bytes in\nuvc_parse_format().",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2025-38680"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/1e269581b3aa5962fdc52757ab40da286168c087",
"url": "https://git.kernel.org/stable/c/1e269581b3aa5962fdc52757ab40da286168c087"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/424980d33b3f816485513e538610168b03fab9f1",
"url": "https://git.kernel.org/stable/c/424980d33b3f816485513e538610168b03fab9f1"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/6d4a7c0b296162354b6fc759a1475b9d57ddfaa6",
"url": "https://git.kernel.org/stable/c/6d4a7c0b296162354b6fc759a1475b9d57ddfaa6"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/782b6a718651eda3478b1824b37a8b3185d2740c",
"url": "https://git.kernel.org/stable/c/782b6a718651eda3478b1824b37a8b3185d2740c"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/8343f3fe0b755925f83d60b05e92bf4396879758",
"url": "https://git.kernel.org/stable/c/8343f3fe0b755925f83d60b05e92bf4396879758"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/9ad554217c9b945031c73df4e8176a475e2dea57",
"url": "https://git.kernel.org/stable/c/9ad554217c9b945031c73df4e8176a475e2dea57"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/a97e062e4ff3dab84a2f1eb811e9eddc6699e2a9",
"url": "https://git.kernel.org/stable/c/a97e062e4ff3dab84a2f1eb811e9eddc6699e2a9"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/cac702a439050df65272c49184aef7975fe3eff2",
"url": "https://git.kernel.org/stable/c/cac702a439050df65272c49184aef7975fe3eff2"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/ffdd82182953df643aa63d999b6f1653d0c93778",
"url": "https://git.kernel.org/stable/c/ffdd82182953df643aa63d999b6f1653d0c93778"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html",
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html",
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"
}
],
"release_date": "2025-09-04T16:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2023-53675",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ses: Fix possible desc_ptr out-of-bounds accesses\n\nSanitize possible desc_ptr out-of-bounds accesses in\nses_enclosure_data_process().",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2023-53675"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/414418abc19fa4ccf730d273061a426c07a061d6",
"url": "https://git.kernel.org/stable/c/414418abc19fa4ccf730d273061a426c07a061d6"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/4b8cae410472653a59e15af62c57c49b8e0a1201",
"url": "https://git.kernel.org/stable/c/4b8cae410472653a59e15af62c57c49b8e0a1201"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/584892fd29a41ef424a148118a3103b16b94fb8c",
"url": "https://git.kernel.org/stable/c/584892fd29a41ef424a148118a3103b16b94fb8c"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/72021ae61a2bc6ca73cd593e255a10ed5f5dc5e7",
"url": "https://git.kernel.org/stable/c/72021ae61a2bc6ca73cd593e255a10ed5f5dc5e7"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/79ec5dd5fb07ecaea2f978c2d7a9f2f3526e4d19",
"url": "https://git.kernel.org/stable/c/79ec5dd5fb07ecaea2f978c2d7a9f2f3526e4d19"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/801ab13d50cf3d26170ee073ea8bb4eececb76ab",
"url": "https://git.kernel.org/stable/c/801ab13d50cf3d26170ee073ea8bb4eececb76ab"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/c315560e3ef77c1d822249f1743e647dc9c9912a",
"url": "https://git.kernel.org/stable/c/c315560e3ef77c1d822249f1743e647dc9c9912a"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/cffe09ca0555e235a42d6fa065e463c4b3d5b657",
"url": "https://git.kernel.org/stable/c/cffe09ca0555e235a42d6fa065e463c4b3d5b657"
}
],
"release_date": "2025-10-07T16:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2023-53265",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nubi: ensure that VID header offset + VID header size <= alloc, size\n\nEnsure that the VID header offset + VID header size does not exceed\nthe allocated area to avoid slab OOB.\n\nBUG: KASAN: slab-out-of-bounds in crc32_body lib/crc32.c:111 [inline]\nBUG: KASAN: slab-out-of-bounds in crc32_le_generic lib/crc32.c:179 [inline]\nBUG: KASAN: slab-out-of-bounds in crc32_le_base+0x58c/0x626 lib/crc32.c:197\nRead of size 4 at addr ffff88802bb36f00 by task syz-executor136/1555\n\nCPU: 2 PID: 1555 Comm: syz-executor136 Tainted: G W\n6.0.0-1868 #1\nHardware name: Red Hat KVM, BIOS 1.13.0-2.module+el8.3.0+7860+a7792d29\n04/01/2014\nCall Trace:\n \n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x85/0xad lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:317 [inline]\n print_report.cold.13+0xb6/0x6bb mm/kasan/report.c:433\n kasan_report+0xa7/0x11b mm/kasan/report.c:495\n crc32_body lib/crc32.c:111 [inline]\n crc32_le_generic lib/crc32.c:179 [inline]\n crc32_le_base+0x58c/0x626 lib/crc32.c:197\n ubi_io_write_vid_hdr+0x1b7/0x472 drivers/mtd/ubi/io.c:1067\n create_vtbl+0x4d5/0x9c4 drivers/mtd/ubi/vtbl.c:317\n create_empty_lvol drivers/mtd/ubi/vtbl.c:500 [inline]\n ubi_read_volume_table+0x67b/0x288a drivers/mtd/ubi/vtbl.c:812\n ubi_attach+0xf34/0x1603 drivers/mtd/ubi/attach.c:1601\n ubi_attach_mtd_dev+0x6f3/0x185e drivers/mtd/ubi/build.c:965\n ctrl_cdev_ioctl+0x2db/0x347 drivers/mtd/ubi/cdev.c:1043\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl fs/ioctl.c:856 [inline]\n __x64_sys_ioctl+0x193/0x213 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3e/0x86 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0x0\nRIP: 0033:0x7f96d5cf753d\nCode:\nRSP: 002b:00007fffd72206f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f96d5cf753d\nRDX: 0000000020000080 RSI: 0000000040186f40 RDI: 0000000000000003\nRBP: 0000000000400cd0 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000400be0\nR13: 00007fffd72207e0 R14: 0000000000000000 R15: 0000000000000000\n \n\nAllocated by task 1555:\n kasan_save_stack+0x20/0x3d mm/kasan/common.c:38\n kasan_set_track mm/kasan/common.c:45 [inline]\n set_alloc_info mm/kasan/common.c:437 [inline]\n ____kasan_kmalloc mm/kasan/common.c:516 [inline]\n __kasan_kmalloc+0x88/0xa3 mm/kasan/common.c:525\n kasan_kmalloc include/linux/kasan.h:234 [inline]\n __kmalloc+0x138/0x257 mm/slub.c:4429\n kmalloc include/linux/slab.h:605 [inline]\n ubi_alloc_vid_buf drivers/mtd/ubi/ubi.h:1093 [inline]\n create_vtbl+0xcc/0x9c4 drivers/mtd/ubi/vtbl.c:295\n create_empty_lvol drivers/mtd/ubi/vtbl.c:500 [inline]\n ubi_read_volume_table+0x67b/0x288a drivers/mtd/ubi/vtbl.c:812\n ubi_attach+0xf34/0x1603 drivers/mtd/ubi/attach.c:1601\n ubi_attach_mtd_dev+0x6f3/0x185e drivers/mtd/ubi/build.c:965\n ctrl_cdev_ioctl+0x2db/0x347 drivers/mtd/ubi/cdev.c:1043\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl fs/ioctl.c:856 [inline]\n __x64_sys_ioctl+0x193/0x213 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3e/0x86 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0x0\n\nThe buggy address belongs to the object at ffff88802bb36e00\n which belongs to the cache kmalloc-256 of size 256\nThe buggy address is located 0 bytes to the right of\n 256-byte region [ffff88802bb36e00, ffff88802bb36f00)\n\nThe buggy address belongs to the physical page:\npage:00000000ea4d1263 refcount:1 mapcount:0 mapping:0000000000000000\nindex:0x0 pfn:0x2bb36\nhead:00000000ea4d1263 order:1 compound_mapcount:0 compound_pincount:0\nflags: 0xfffffc0010200(slab|head|node=0|zone=1|lastcpupid=0x1fffff)\nraw: 000fffffc0010200 ffffea000066c300 dead000000000003 ffff888100042b40\nraw: 0000000000000000 00000000001\n---truncated---",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2023-53265"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/1b42b1a36fc946f0d7088425b90d491b4257ca3e",
"url": "https://git.kernel.org/stable/c/1b42b1a36fc946f0d7088425b90d491b4257ca3e"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/61aeba0e4b4124cfe3c5427feaf29c626dfa89e5",
"url": "https://git.kernel.org/stable/c/61aeba0e4b4124cfe3c5427feaf29c626dfa89e5"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/61e04db3bec87f7dd10074296deb7d083e2ccade",
"url": "https://git.kernel.org/stable/c/61e04db3bec87f7dd10074296deb7d083e2ccade"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/701bb3ed5a88a73ebbe1266895bdeff065226dca",
"url": "https://git.kernel.org/stable/c/701bb3ed5a88a73ebbe1266895bdeff065226dca"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/771e207a839a29ba943e89f473b0fecd16089e2e",
"url": "https://git.kernel.org/stable/c/771e207a839a29ba943e89f473b0fecd16089e2e"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/846bfba34175c23b13cc2023c2d67b96e8c14c43",
"url": "https://git.kernel.org/stable/c/846bfba34175c23b13cc2023c2d67b96e8c14c43"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/e1b73fe4f4c6bb80755eb4bf4b867a8fd8b1a7fe",
"url": "https://git.kernel.org/stable/c/e1b73fe4f4c6bb80755eb4bf4b867a8fd8b1a7fe"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/f7adb740f97b6fa84e658892dcb08e37a31a4e77",
"url": "https://git.kernel.org/stable/c/f7adb740f97b6fa84e658892dcb08e37a31a4e77"
}
],
"release_date": "2025-09-16T08:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2025-38685",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: Fix vmalloc out-of-bounds write in fast_imageblit\n\nThis issue triggers when a userspace program does an ioctl\nFBIOPUT_CON2FBMAP by passing console number and frame buffer number.\nIdeally this maps console to frame buffer and updates the screen if\nconsole is visible.\n\nAs part of mapping it has to do resize of console according to frame\nbuffer info. if this resize fails and returns from vc_do_resize() and\ncontinues further. At this point console and new frame buffer are mapped\nand sets display vars. Despite failure still it continue to proceed\nupdating the screen at later stages where vc_data is related to previous\nframe buffer and frame buffer info and display vars are mapped to new\nframe buffer and eventully leading to out-of-bounds write in\nfast_imageblit(). This bheviour is excepted only when fg_console is\nequal to requested console which is a visible console and updates screen\nwith invalid struct references in fbcon_putcs().",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2025-38685"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/078e62bffca4b7e72e8f3550eb063ab981c36c7a",
"url": "https://git.kernel.org/stable/c/078e62bffca4b7e72e8f3550eb063ab981c36c7a"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/27b118aebdd84161c8ff5ce49d9d536f2af10754",
"url": "https://git.kernel.org/stable/c/27b118aebdd84161c8ff5ce49d9d536f2af10754"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/4c4d7ddaf1d43780b106bedc692679f965dc5a3a",
"url": "https://git.kernel.org/stable/c/4c4d7ddaf1d43780b106bedc692679f965dc5a3a"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/56701bf9eeb63219e378cb7fcbd066ea4eaeeb50",
"url": "https://git.kernel.org/stable/c/56701bf9eeb63219e378cb7fcbd066ea4eaeeb50"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/af0db3c1f898144846d4c172531a199bb3ca375d",
"url": "https://git.kernel.org/stable/c/af0db3c1f898144846d4c172531a199bb3ca375d"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/cfec17721265e72e50cc69c6004fe3475cd38df2",
"url": "https://git.kernel.org/stable/c/cfec17721265e72e50cc69c6004fe3475cd38df2"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/ed9b8e5016230868c8d813d9179523f729fec8c6",
"url": "https://git.kernel.org/stable/c/ed9b8e5016230868c8d813d9179523f729fec8c6"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html",
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"
}
],
"release_date": "2025-09-04T16:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
},
{
"cve": "CVE-2025-39760",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: core: config: Prevent OOB read in SS endpoint companion parsing\n\nusb_parse_ss_endpoint_companion() checks descriptor type before length,\nenabling a potentially odd read outside of the buffer size.\n\nFix this up by checking the size first before looking at any of the\nfields in the descriptor.",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2025-39760"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/058ad2b722812708fe90567875704ae36563e33b",
"url": "https://git.kernel.org/stable/c/058ad2b722812708fe90567875704ae36563e33b"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/4fe6f472f0beef4281e6f03bc38a910a33be663f",
"url": "https://git.kernel.org/stable/c/4fe6f472f0beef4281e6f03bc38a910a33be663f"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/5badd56c711e2c8371d1670f9bd486697575423c",
"url": "https://git.kernel.org/stable/c/5badd56c711e2c8371d1670f9bd486697575423c"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/5c3097ede7835d3caf6543eb70ff689af4550cd2",
"url": "https://git.kernel.org/stable/c/5c3097ede7835d3caf6543eb70ff689af4550cd2"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/9512510cee7d1becdb0e9413fdd3ab783e4e30ee",
"url": "https://git.kernel.org/stable/c/9512510cee7d1becdb0e9413fdd3ab783e4e30ee"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/9843bcb187cb933861f7805022e6873905f669e4",
"url": "https://git.kernel.org/stable/c/9843bcb187cb933861f7805022e6873905f669e4"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/b10e0f868067c6f25bbfabdcf3e1e6432c24ca55",
"url": "https://git.kernel.org/stable/c/b10e0f868067c6f25bbfabdcf3e1e6432c24ca55"
},
{
"category": "external",
"summary": "https://git.kernel.org/stable/c/cf16f408364efd8a68f39011a3b073c83a03612d",
"url": "https://git.kernel.org/stable/c/cf16f408364efd8a68f39011a3b073c83a03612d"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html",
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html",
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"
}
],
"release_date": "2025-09-11T17:15:00Z",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-16T10:29:59.672029Z",
"details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797",
"product_ids": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
],
"url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1771237797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"Oracle-Linux-6:kernel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-abi-whitelists-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-debug-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.i686",
"Oracle-Linux-6:kernel-debug-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-devel-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:kernel-doc-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-firmware-0:2.6.32-754.35.8.el6.tuxcare.els29.noarch",
"Oracle-Linux-6:kernel-headers-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64",
"Oracle-Linux-6:python-perf-0:2.6.32-754.35.8.el6.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
]
}
]
}