{ "document":{ "aggregate_severity":{ "namespace":"https://nvd.nist.gov/vuln-metrics/cvss", "text":"High" }, "category":"csaf_vex", "csaf_version":"2.0", "distribution":{ "tlp":{ "label":"WHITE", "url":"https:/www.first.org/tlp/" } }, "lang":"en", "notes":[ { "text":"kernel security update", "category":"general", "title":"Synopsis" }, { "text":"An update for kernel is now available for openEuler-22.03-LTS-SP3", "category":"general", "title":"Summary" }, { "text":"The Linux Kernel, the operating system core itself.\n\nSecurity Fix(es):\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: Fix WRITE_SAME No Data Buffer crash\n\nIn newer version of the SBC specs, we have a NDOB bit that indicates there\nis no data buffer that gets written out. If this bit is set using commands\nlike \"sg_write_same --ndob\" we will crash in target_core_iblock/file's\nexecute_write_same handlers when we go to access the se_cmd->t_data_sg\nbecause its NULL.\n\nThis patch adds a check for the NDOB bit in the common WRITE SAME code\nbecause we don't support it. And, it adds a check for zero SG elements in\neach handler in case the initiator tries to send a normal WRITE SAME with\nno data buffer.(CVE-2022-21546)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nHID: intel-ish-hid: ipc: Fix potential use-after-free in work function\n\nWhen a reset notify IPC message is received, the ISR schedules a work\nfunction and passes the ISHTP device to it via a global pointer\nishtp_dev. If ish_probe() fails, the devm-managed device resources\nincluding ishtp_dev are freed, but the work is not cancelled, causing a\nuse-after-free when the work function tries to access ishtp_dev. Use\ndevm_work_autocancel() instead, so that the work is automatically\ncancelled if probe fails.(CVE-2023-53039)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nKVM: Explicitly verify target vCPU is online in kvm_get_vcpu()\n\nExplicitly verify the target vCPU is fully online _prior_ to clamping the\nindex in kvm_get_vcpu(). If the index is \"bad\", the nospec clamping will\ngenerate '0', i.e. KVM will return vCPU0 instead of NULL.\n\nIn practice, the bug is unlikely to cause problems, as it will only come\ninto play if userspace or the guest is buggy or misbehaving, e.g. KVM may\nsend interrupts to vCPU0 instead of dropping them on the floor.\n\nHowever, returning vCPU0 when it shouldn't exist per online_vcpus is\nproblematic now that KVM uses an xarray for the vCPUs array, as KVM needs\nto insert into the xarray before publishing the vCPU to userspace (see\ncommit c5b077549136 (\"KVM: Convert the kvm->vcpus array to a xarray\")),\ni.e. before vCPU creation is guaranteed to succeed.\n\nAs a result, incorrectly providing access to vCPU0 will trigger a\nuse-after-free if vCPU0 is dereferenced and kvm_vm_ioctl_create_vcpu()\nbails out of vCPU creation due to an error and frees vCPU0. Commit\nafb2acb2e3a3 (\"KVM: Fix vcpu_array[0] races\") papered over that issue, but\nin doing so introduced an unsolvable teardown conundrum. Preventing\naccesses to vCPU0 before it's fully online will allow reverting commit\nafb2acb2e3a3, without re-introducing the vcpu_array[0] UAF race.(CVE-2024-58083)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nusb: cdc-acm: Check control transfer buffer size before access\n\nIf the first fragment is shorter than struct usb_cdc_notification, we can't\ncalculate an expected_size. Log an error and discard the notification\ninstead of reading lengths from memory outside the received data, which can\nlead to memory corruption when the expected_size decreases between\nfragments, causing `expected_size - acm->nb_index` to wrap.\n\nThis issue has been present since the beginning of git history; however,\nit only leads to memory corruption since commit ea2583529cd1\n(\"cdc-acm: reassemble fragmented notifications\").\n\nA mitigating factor is that acm_ctrl_irq() can only execute after userspace\nhas opened /dev/ttyACM*; but if ModemManager is running, ModemManager will\ndo that automatically depending on the USB device's vendor/product IDs and\nits other interfaces.(CVE-2025-21704)", "category":"general", "title":"Description" }, { "text":"An update for kernel is now available for openEuler-20.03-LTS-SP4/openEuler-22.03-LTS-SP3/openEuler-22.03-LTS-SP4/openEuler-22.03-LTS-SP3.\n\nopenEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.", "category":"general", "title":"Topic" }, { "text":"High", "category":"general", "title":"Severity" }, { "text":"kernel", "category":"general", "title":"Affected Component" } ], "publisher":{ "issuing_authority":"openEuler security committee", "name":"openEuler", "namespace":"https://www.openeuler.org", "contact_details":"openeuler-security@openeuler.org", "category":"vendor" }, "references":[ { "summary":"openEuler-SA-2025-1648", "category":"self", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1648" }, { "summary":"CVE-2022-21546", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2022-21546&packageName=kernel" }, { "summary":"CVE-2023-53039", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2023-53039&packageName=kernel" }, { "summary":"CVE-2024-58083", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-58083&packageName=kernel" }, { "summary":"CVE-2025-21704", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-21704&packageName=kernel" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2022-21546" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2023-53039" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-58083" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2025-21704" }, { "summary":"openEuler-SA-2025-1648 vex file", "category":"self", "url":"https://repo.openeuler.org/security/data/csaf/advisories/2025/csaf-openeuler-sa-2025-1648.json" } ], "title":"An update for kernel is now available for openEuler-22.03-LTS-SP3", "tracking":{ "initial_release_date":"2025-06-20T21:40:06+08:00", "revision_history":[ { "date":"2025-06-20T21:40:06+08:00", "summary":"Initial", "number":"1.0.0" } ], "generator":{ "date":"2025-06-20T21:40:06+08:00", "engine":{ "name":"openEuler CSAF Tool V1.0" } }, "current_release_date":"2025-06-20T21:40:06+08:00", "id":"openEuler-SA-2025-1648", "version":"1.0.0", "status":"final" } }, "product_tree":{ "branches":[ { "name":"openEuler", "category":"vendor", "branches":[ { "name":"openEuler", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openEuler-22.03-LTS-SP3", "name":"openEuler-22.03-LTS-SP3" }, "name":"openEuler-22.03-LTS-SP3", "category":"product_version" } ], "category":"product_name" }, { "name":"x86_64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"perf-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"perf-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "name":"python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm" }, "name":"python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"aarch64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"perf-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"perf-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "name":"python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm" }, "name":"python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"src", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-5.10.0-268.0.0.170.oe2203sp3.src.rpm", "name":"kernel-5.10.0-268.0.0.170.oe2203sp3.src.rpm" }, "name":"kernel-5.10.0-268.0.0.170.oe2203sp3.src.rpm", "category":"product_version" } ], "category":"architecture" } ] } ], "relationships":[ { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"perf-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "name":"python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"perf-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "name":"python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-5.10.0-268.0.0.170.oe2203sp3.src.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src", "name":"kernel-5.10.0-268.0.0.170.oe2203sp3.src as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" } ] }, "vulnerabilities":[ { "cve":"CVE-2022-21546", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: Fix WRITE_SAME No Data Buffer crash\n\nIn newer version of the SBC specs, we have a NDOB bit that indicates there\nis no data buffer that gets written out. If this bit is set using commands\nlike \"sg_write_same --ndob\" we will crash in target_core_iblock/file's\nexecute_write_same handlers when we go to access the se_cmd->t_data_sg\nbecause its NULL.\n\nThis patch adds a check for the NDOB bit in the common WRITE SAME code\nbecause we don't support it. And, it adds a check for zero SG elements in\neach handler in case the initiator tries to send a normal WRITE SAME with\nno data buffer.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1648" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.7, "vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2022-21546" }, { "cve":"CVE-2023-53039", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nHID: intel-ish-hid: ipc: Fix potential use-after-free in work function\n\nWhen a reset notify IPC message is received, the ISR schedules a work\nfunction and passes the ISHTP device to it via a global pointer\nishtp_dev. If ish_probe() fails, the devm-managed device resources\nincluding ishtp_dev are freed, but the work is not cancelled, causing a\nuse-after-free when the work function tries to access ishtp_dev. Use\ndevm_work_autocancel() instead, so that the work is automatically\ncancelled if probe fails.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1648" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2023-53039" }, { "cve":"CVE-2024-58083", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: Explicitly verify target vCPU is online in kvm_get_vcpu()\n\nExplicitly verify the target vCPU is fully online _prior_ to clamping the\nindex in kvm_get_vcpu(). If the index is \"bad\", the nospec clamping will\ngenerate '0', i.e. KVM will return vCPU0 instead of NULL.\n\nIn practice, the bug is unlikely to cause problems, as it will only come\ninto play if userspace or the guest is buggy or misbehaving, e.g. KVM may\nsend interrupts to vCPU0 instead of dropping them on the floor.\n\nHowever, returning vCPU0 when it shouldn't exist per online_vcpus is\nproblematic now that KVM uses an xarray for the vCPUs array, as KVM needs\nto insert into the xarray before publishing the vCPU to userspace (see\ncommit c5b077549136 (\"KVM: Convert the kvm->vcpus array to a xarray\")),\ni.e. before vCPU creation is guaranteed to succeed.\n\nAs a result, incorrectly providing access to vCPU0 will trigger a\nuse-after-free if vCPU0 is dereferenced and kvm_vm_ioctl_create_vcpu()\nbails out of vCPU creation due to an error and frees vCPU0. Commit\nafb2acb2e3a3 (\"KVM: Fix vcpu_array[0] races\") papered over that issue, but\nin doing so introduced an unsolvable teardown conundrum. Preventing\naccesses to vCPU0 before it's fully online will allow reverting commit\nafb2acb2e3a3, without re-introducing the vcpu_array[0] UAF race.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1648" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-58083" }, { "cve":"CVE-2025-21704", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nusb: cdc-acm: Check control transfer buffer size before access\n\nIf the first fragment is shorter than struct usb_cdc_notification, we can't\ncalculate an expected_size. Log an error and discard the notification\ninstead of reading lengths from memory outside the received data, which can\nlead to memory corruption when the expected_size decreases between\nfragments, causing `expected_size - acm->nb_index` to wrap.\n\nThis issue has been present since the beginning of git history; however,\nit only leads to memory corruption since commit ea2583529cd1\n(\"cdc-acm: reassemble fragmented notifications\").\n\nA mitigating factor is that acm_ctrl_irq() can only execute after userspace\nhas opened /dev/ttyACM*; but if ModemManager is running, ModemManager will\ndo that automatically depending on the USB device's vendor/product IDs and\nits other interfaces.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1648" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.9, "vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-268.0.0.170.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-268.0.0.170.oe2203sp3.src" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2025-21704" } ] }