{
"document":{
"aggregate_severity":{
"namespace":"https://nvd.nist.gov/vuln-metrics/cvss",
"text":"High"
},
"category":"csaf_vex",
"csaf_version":"2.0",
"distribution":{
"tlp":{
"label":"WHITE",
"url":"https:/www.first.org/tlp/"
}
},
"lang":"en",
"notes":[
{
"text":"kernel security update",
"category":"general",
"title":"Synopsis"
},
{
"text":"An update for kernel is now available for openEuler-24.03-LTS",
"category":"general",
"title":"Summary"
},
{
"text":"The Linux Kernel, the operating system core itself.\n\nSecurity Fix(es):\n\nIn the Linux kernel, the following vulnerability has been resolved:sunrpc: fix one UAF issue caused by sunrpc kernel tcp socketBUG: KASAN: slab-use-after-free in tcp_write_timer_handler+0x156/0x3e0Read of size 1 at addr ffff888111f322cd by task swapper/0/0CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-rc4-dirty #7Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1Call Trace: dump_stack_lvl+0x68/0xa0 print_address_description.constprop.0+0x2c/0x3d0 print_report+0xb4/0x270 kasan_report+0xbd/0xf0 tcp_write_timer_handler+0x156/0x3e0 tcp_write_timer+0x66/0x170 call_timer_fn+0xfb/0x1d0 __run_timers+0x3f8/0x480 run_timer_softirq+0x9b/0x100 handle_softirqs+0x153/0x390 __irq_exit_rcu+0x103/0x120 irq_exit_rcu+0xe/0x20 sysvec_apic_timer_interrupt+0x76/0x90 asm_sysvec_apic_timer_interrupt+0x1a/0x20RIP: 0010:default_idle+0xf/0x20Code: 4c 01 c7 4c 29 c2 e9 72 ff ff ff 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 f8 25 00 fb f4 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90RSP: 0018:ffffffffa2007e28 EFLAGS: 00000242RAX: 00000000000f3b31 RBX: 1ffffffff4400fc7 RCX: ffffffffa09c3196RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9f00590fRBP: 0000000000000000 R08: 0000000000000001 R09: ffffed102360835dR10: ffff88811b041aeb R11: 0000000000000001 R12: 0000000000000000R13: ffffffffa202d7c0 R14: 0000000000000000 R15: 00000000000147d0 default_idle_call+0x6b/0xa0 cpuidle_idle_call+0x1af/0x1f0 do_idle+0xbc/0x130 cpu_startup_entry+0x33/0x40 rest_init+0x11f/0x210 start_kernel+0x39a/0x420 x86_64_start_reservations+0x18/0x30 x86_64_start_kernel+0x97/0xa0 common_startup_64+0x13e/0x141 Allocated by task 595: kasan_save_stack+0x24/0x50 kasan_save_track+0x14/0x30 __kasan_slab_alloc+0x87/0x90 kmem_cache_alloc_noprof+0x12b/0x3f0 copy_net_ns+0x94/0x380 create_new_namespaces+0x24c/0x500 unshare_nsproxy_namespaces+0x75/0xf0 ksys_unshare+0x24e/0x4f0 __x64_sys_unshare+0x1f/0x30 do_syscall_64+0x70/0x180 entry_SYSCALL_64_after_hwframe+0x76/0x7eFreed by task 100: kasan_save_stack+0x24/0x50 kasan_save_track+0x14/0x30 kasan_save_free_info+0x3b/0x60 __kasan_slab_free+0x54/0x70 kmem_cache_free+0x156/0x5d0 cleanup_net+0x5d3/0x670 process_one_work+0x776/0xa90 worker_thread+0x2e2/0x560 kthread+0x1a8/0x1f0 ret_from_fork+0x34/0x60 ret_from_fork_asm+0x1a/0x30Reproduction script:mkdir -p /mnt/nfssharemkdir -p /mnt/nfs/netns_1mkfs.ext4 /dev/sdbmount /dev/sdb /mnt/nfssharesystemctl restart nfs-serverchmod 777 /mnt/nfsshareexportfs -i -o rw,no_root_squash *:/mnt/nfsshareip netns add netns_1ip link add name veth_1_peer type veth peer veth_1ifconfig veth_1_peer 11.11.0.254 upip link set veth_1 netns netns_1ip netns exec netns_1 ifconfig veth_1 11.11.0.1ip netns exec netns_1 /root/iptables -A OUTPUT -d 11.11.0.254 -p tcp --tcp-flags FIN FIN -j DROP(note: In my environment, a DESTROY_CLIENTID operation is always sent immediately, breaking the nfs tcp connection.)ip netns exec netns_1 timeout -s 9 300 mount -t nfs -o proto=tcp,vers=4.1 11.11.0.254:/mnt/nfsshare /mnt/nfs/netns_1ip netns del netns_1The reason here is that the tcp socket in netns_1 (nfs side) has beenshutdown and closed (done in xs_destroy), but the FIN message (with ack)is discarded, and the nfsd side keeps sending retransmission messages.As a result, when the tcp sock in netns_1 processes the received message,it sends the message (FIN message) in the sending queue, and the tcp timeris re-established. When the network namespace is deleted, the net structureaccessed by tcp s timer handler function causes problems.To fix this problem, let s hold netns refcnt for the tcp kernel socket asdone in other modules. This is an ugly hack which can easily be backportedto earlier kernels. A proper fix which cleans up the interfaces willfollow, but may not be so easy to backport.(CVE-2024-53168)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nx86/amd_nb: Use rdmsr_safe() in amd_get_mmconfig_range()\n\nXen doesn't offer MSR_FAM10H_MMIO_CONF_BASE to all guests. This results\nin the following warning:\n\n unchecked MSR access error: RDMSR from 0xc0010058 at rIP: 0xffffffff8101d19f (xen_do_read_msr+0x7f/0xa0)\n Call Trace:\n xen_read_msr+0x1e/0x30\n amd_get_mmconfig_range+0x2b/0x80\n quirk_amd_mmconfig_area+0x28/0x100\n pnp_fixup_device+0x39/0x50\n __pnp_add_device+0xf/0x150\n pnp_add_device+0x3d/0x100\n pnpacpi_add_device_handler+0x1f9/0x280\n acpi_ns_get_device_callback+0x104/0x1c0\n acpi_ns_walk_namespace+0x1d0/0x260\n acpi_get_devices+0x8a/0xb0\n pnpacpi_init+0x50/0x80\n do_one_initcall+0x46/0x2e0\n kernel_init_freeable+0x1da/0x2f0\n kernel_init+0x16/0x1b0\n ret_from_fork+0x30/0x50\n ret_from_fork_asm+0x1b/0x30\n\nbased on quirks for a \"PNP0c01\" device. Treating MMCFG as disabled is the\nright course of action, so no change is needed there.\n\nThis was most likely exposed by fixing the Xen MSR accessors to not be\nsilently-safe.(CVE-2025-21913)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\npds_core: Prevent possible adminq overflow/stuck condition\n\nThe pds_core's adminq is protected by the adminq_lock, which prevents\nmore than 1 command to be posted onto it at any one time. This makes it\nso the client drivers cannot simultaneously post adminq commands.\nHowever, the completions happen in a different context, which means\nmultiple adminq commands can be posted sequentially and all waiting\non completion.\n\nOn the FW side, the backing adminq request queue is only 16 entries\nlong and the retry mechanism and/or overflow/stuck prevention is\nlacking. This can cause the adminq to get stuck, so commands are no\nlonger processed and completions are no longer sent by the FW.\n\nAs an initial fix, prevent more than 16 outstanding adminq commands so\nthere's no way to cause the adminq from getting stuck. This works\nbecause the backing adminq request queue will never have more than 16\npending adminq commands, so it will never overflow. This is done by\nreducing the adminq depth to 16.(CVE-2025-37987)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nmodule: ensure that kobject_put() is safe for module type kobjects\n\nIn 'lookup_or_create_module_kobject()', an internal kobject is created\nusing 'module_ktype'. So call to 'kobject_put()' on error handling\npath causes an attempt to use an uninitialized completion pointer in\n'module_kobject_release()'. In this scenario, we just want to release\nkobject without an extra synchronization required for a regular module\nunloading process, so adding an extra check whether 'complete()' is\nactually required makes 'kobject_put()' safe.(CVE-2025-37995)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nregulator: core: fix NULL dereference on unbind due to stale coupling data\n\nFailing to reset coupling_desc.n_coupled after freeing coupled_rdevs can\nlead to NULL pointer dereference when regulators are accessed post-unbind.\n\nThis can happen during runtime PM or other regulator operations that rely\non coupling metadata.\n\nFor example, on ridesx4, unbinding the 'reg-dummy' platform device triggers\na panic in regulator_lock_recursive() due to stale coupling state.\n\nEnsure n_coupled is set to 0 to prevent access to invalid pointers.(CVE-2025-38668)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/nvif: Fix potential memory leak in nvif_vmm_ctor().\n\nWhen the nvif_vmm_type is invalid, we will return error directly\nwithout freeing the args in nvif_vmm_ctor(), which leading a memory\nleak. Fix it by setting the ret -EINVAL and goto done.(CVE-2025-39679)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nserial: 8250: fix panic due to PSLVERR\n\nWhen the PSLVERR_RESP_EN parameter is set to 1, the device generates\nan error response if an attempt is made to read an empty RBR (Receive\nBuffer Register) while the FIFO is enabled.\n\nIn serial8250_do_startup(), calling serial_port_out(port, UART_LCR,\nUART_LCR_WLEN8) triggers dw8250_check_lcr(), which invokes\ndw8250_force_idle() and serial8250_clear_and_reinit_fifos(). The latter\nfunction enables the FIFO via serial_out(p, UART_FCR, p->fcr).\nExecution proceeds to the serial_port_in(port, UART_RX).\nThis satisfies the PSLVERR trigger condition.\n\nWhen another CPU (e.g., using printk()) is accessing the UART (UART\nis busy), the current CPU fails the check (value & ~UART_LCR_SPAR) ==\n(lcr & ~UART_LCR_SPAR) in dw8250_check_lcr(), causing it to enter\ndw8250_force_idle().\n\nPut serial_port_out(port, UART_LCR, UART_LCR_WLEN8) under the port->lock\nto fix this issue.\n\nPanic backtrace:\n[ 0.442336] Oops - unknown exception [#1]\n[ 0.442343] epc : dw8250_serial_in32+0x1e/0x4a\n[ 0.442351] ra : serial8250_do_startup+0x2c8/0x88e\n...\n[ 0.442416] console_on_rootfs+0x26/0x70(CVE-2025-39724)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nHID: multitouch: fix slab out-of-bounds access in mt_report_fixup()\n\nA malicious HID device can trigger a slab out-of-bounds during\nmt_report_fixup() by passing in report descriptor smaller than\n607 bytes. mt_report_fixup() attempts to patch byte offset 607\nof the descriptor with 0x25 by first checking if byte offset\n607 is 0x15 however it lacks bounds checks to verify if the\ndescriptor is big enough before conducting this check. Fix\nthis bug by ensuring the descriptor size is at least 608\nbytes before accessing it.\n\nBelow is the KASAN splat after the out of bounds access happens:\n\n[ 13.671954] ==================================================================\n[ 13.672667] BUG: KASAN: slab-out-of-bounds in mt_report_fixup+0x103/0x110\n[ 13.673297] Read of size 1 at addr ffff888103df39df by task kworker/0:1/10\n[ 13.673297]\n[ 13.673297] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Not tainted 6.15.0-00005-gec5d573d83f4-dirty #3\n[ 13.673297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/04\n[ 13.673297] Call Trace:\n[ 13.673297] \n[ 13.673297] dump_stack_lvl+0x5f/0x80\n[ 13.673297] print_report+0xd1/0x660\n[ 13.673297] kasan_report+0xe5/0x120\n[ 13.673297] __asan_report_load1_noabort+0x18/0x20\n[ 13.673297] mt_report_fixup+0x103/0x110\n[ 13.673297] hid_open_report+0x1ef/0x810\n[ 13.673297] mt_probe+0x422/0x960\n[ 13.673297] hid_device_probe+0x2e2/0x6f0\n[ 13.673297] really_probe+0x1c6/0x6b0\n[ 13.673297] __driver_probe_device+0x24f/0x310\n[ 13.673297] driver_probe_device+0x4e/0x220\n[ 13.673297] __device_attach_driver+0x169/0x320\n[ 13.673297] bus_for_each_drv+0x11d/0x1b0\n[ 13.673297] __device_attach+0x1b8/0x3e0\n[ 13.673297] device_initial_probe+0x12/0x20\n[ 13.673297] bus_probe_device+0x13d/0x180\n[ 13.673297] device_add+0xe3a/0x1670\n[ 13.673297] hid_add_device+0x31d/0xa40\n[...](CVE-2025-39806)\n\nRejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.(CVE-2025-39898)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nfbcon: fix integer overflow in fbcon_do_set_font\n\nFix integer overflow vulnerabilities in fbcon_do_set_font() where font\nsize calculations could overflow when handling user-controlled font\nparameters.\n\nThe vulnerabilities occur when:\n1. CALC_FONTSZ(h, pitch, charcount) performs h * pith * charcount\n multiplication with user-controlled values that can overflow.\n2. FONT_EXTRA_WORDS * sizeof(int) + size addition can also overflow\n3. This results in smaller allocations than expected, leading to buffer\n overflows during font data copying.\n\nAdd explicit overflow checking using check_mul_overflow() and\ncheck_add_overflow() kernel helpers to safety validate all size\ncalculations before allocation.(CVE-2025-39967)\n\nIn the Linux kernel, the following vulnerability has been resolved:Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_syncThis fixes the following UFA in hci_acl_create_conn_sync where aconnection still pending is command submission (conn->state == BT_OPEN)maybe freed, also since this also can happen with the likes ofhci_le_create_conn_sync fix it as well:BUG: KASAN: slab-use-after-free in hci_acl_create_conn_sync+0x5ef/0x790 net/bluetooth/hci_sync.c:6861Write of size 2 at addr ffff88805ffcc038 by task kworker/u11:2/9541CPU: 1 UID: 0 PID: 9541 Comm: kworker/u11:2 Not tainted 6.16.0-rc7 #3 PREEMPT(full)Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1ubuntu1 04/01/2014Workqueue: hci3 hci_cmd_sync_workCall Trace: dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120 print_address_description mm/kasan/report.c:378 [inline] print_report+0xca/0x230 mm/kasan/report.c:480 kasan_report+0x118/0x150 mm/kasan/report.c:593 hci_acl_create_conn_sync+0x5ef/0x790 net/bluetooth/hci_sync.c:6861 hci_cmd_sync_work+0x210/0x3a0 net/bluetooth/hci_sync.c:332 process_one_work kernel/workqueue.c:3238 [inline] process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3321 worker_thread+0x8a0/0xda0 kernel/workqueue.c:3402 kthread+0x70e/0x8a0 kernel/kthread.c:464 ret_from_fork+0x3fc/0x770 arch/x86/kernel/process.c:148 ret_from_fork_asm+0x1a/0x30 home/kwqcheii/source/fuzzing/kernel/kasan/linux-6.16-rc7/arch/x86/entry/entry_64.S:245 Allocated by task 123736: kasan_save_stack mm/kasan/common.c:47 [inline] kasan_save_track+0x3e/0x80 mm/kasan/common.c:68 poison_kmalloc_redzone mm/kasan/common.c:377 [inline] __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:394 kasan_kmalloc include/linux/kasan.h:260 [inline] __kmalloc_cache_noprof+0x230/0x3d0 mm/slub.c:4359 kmalloc_noprof include/linux/slab.h:905 [inline] kzalloc_noprof include/linux/slab.h:1039 [inline] __hci_conn_add+0x233/0x1b30 net/bluetooth/hci_conn.c:939 hci_conn_add_unset net/bluetooth/hci_conn.c:1051 [inline] hci_connect_acl+0x16c/0x4e0 net/bluetooth/hci_conn.c:1634 pair_device+0x418/0xa70 net/bluetooth/mgmt.c:3556 hci_mgmt_cmd+0x9c9/0xef0 net/bluetooth/hci_sock.c:1719 hci_sock_sendmsg+0x6ca/0xef0 net/bluetooth/hci_sock.c:1839 sock_sendmsg_nosec net/socket.c:712 [inline] __sock_sendmsg+0x219/0x270 net/socket.c:727 sock_write_iter+0x258/0x330 net/socket.c:1131 new_sync_write fs/read_write.c:593 [inline] vfs_write+0x54b/0xa90 fs/read_write.c:686 ksys_write+0x145/0x250 fs/read_write.c:738 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xfa/0x3b0 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7fFreed by task 103680: kasan_save_stack mm/kasan/common.c:47 [inline] kasan_save_track+0x3e/0x80 mm/kasan/common.c:68 kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:576 poison_slab_object mm/kasan/common.c:247 [inline] __kasan_slab_free+0x62/0x70 mm/kasan/common.c:264 kasan_slab_free include/linux/kasan.h:233 [inline] slab_free_hook mm/slub.c:2381 [inline] slab_free mm/slub.c:4643 [inline] kfree+0x18e/0x440 mm/slub.c:4842 device_release+0x9c/0x1c0 kobject_cleanup lib/kobject.c:689 [inline] kobject_release lib/kobject.c:720 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x22b/0x480 lib/kobject.c:737 hci_conn_cleanup net/bluetooth/hci_conn.c:175 [inline] hci_conn_del+0x8ff/0xcb0 net/bluetooth/hci_conn.c:1173 hci_conn_complete_evt+0x3c7/0x1040 net/bluetooth/hci_event.c:3199 hci_event_func net/bluetooth/hci_event.c:7477 [inline] hci_event_packet+0x7e0/0x1200 net/bluetooth/hci_event.c:7531 hci_rx_work+0x46a/0xe80 net/bluetooth/hci_core.c:4070 process_one_work kernel/workqueue.c:3238 [inline] process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3321 worker_thread+0x8a0/0xda0 kernel/workqueue.c:3402 kthread+0x70e/0x8a0 kernel/kthread.c:464 ret_from_fork+0x3fc/0x770 arch/x86/kernel/process.c:148 ret_from_fork_asm+0x1a/0x30 home/kwqcheii/sour---truncated---(CVE-2025-39982)\n\nIn the Linux kernel, the iMON driver has a race condition vulnerability. The issue stems from imon_disconnect() improperly releasing the usb_device reference without coordinating with active users of the device. Specifically, the fields usbdev_intf0 and usbdev_intf1 are not protected by the users counter (ictx->users). During probe, imon_init_intf0 or imon_init_intf1 increments the usb_device reference count depending on the interface. However, during disconnect, usb_put_dev is called unconditionally, regardless of actual usage. This can lead to a use-after-free (UAF) of the usb_device pointer if vfd_write or other operations are still in progress after disconnect.(CVE-2025-39993)\n\nIn the Linux kernel, a buffer overflow vulnerability exists in the target_lu_gp_members_show function in target_core_configfs.c. The vulnerability arises from the usage of snprintf to write into the buffer \"buf\" without checking the return value length. When the total formatted string length exceeds LU_GROUP_NAME_BUF (256 bytes), it may cause a buffer overflow. Since snprintf() returns the total number of bytes that would have been written, this value may exceed the buffer length (256 bytes) passed to memcpy(), ultimately causing the memcpy function to report a buffer overflow error. Adding an additional check of the return value of snprintf() can avoid this buffer overflow.(CVE-2025-39998)\n\nIn the Linux kernel, the following vulnerability has been resolved:crypto: essiv - Check ssize for decryption and in-place encryptionMove the ssize check to the start in essiv_aead_crypt so thatit s also checked for decryption and in-place encryption.(CVE-2025-40019)",
"category":"general",
"title":"Description"
},
{
"text":"An update for kernel is now available for openEuler-24.03-LTS.\n\nopenEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.",
"category":"general",
"title":"Topic"
},
{
"text":"High",
"category":"general",
"title":"Severity"
},
{
"text":"kernel",
"category":"general",
"title":"Affected Component"
}
],
"publisher":{
"issuing_authority":"openEuler security committee",
"name":"openEuler",
"namespace":"https://www.openeuler.org",
"contact_details":"openeuler-security@openeuler.org",
"category":"vendor"
},
"references":[
{
"summary":"openEuler-SA-2025-2556",
"category":"self",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
},
{
"summary":"CVE-2024-53168",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-53168&packageName=kernel"
},
{
"summary":"CVE-2025-21913",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-21913&packageName=kernel"
},
{
"summary":"CVE-2025-37987",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-37987&packageName=kernel"
},
{
"summary":"CVE-2025-37995",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-37995&packageName=kernel"
},
{
"summary":"CVE-2025-38668",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-38668&packageName=kernel"
},
{
"summary":"CVE-2025-39679",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-39679&packageName=kernel"
},
{
"summary":"CVE-2025-39724",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-39724&packageName=kernel"
},
{
"summary":"CVE-2025-39806",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-39806&packageName=kernel"
},
{
"summary":"CVE-2025-39898",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-39898&packageName=kernel"
},
{
"summary":"CVE-2025-39967",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-39967&packageName=kernel"
},
{
"summary":"CVE-2025-39982",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-39982&packageName=kernel"
},
{
"summary":"CVE-2025-39993",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-39993&packageName=kernel"
},
{
"summary":"CVE-2025-39998",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-39998&packageName=kernel"
},
{
"summary":"CVE-2025-40019",
"category":"self",
"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-40019&packageName=kernel"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-53168"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-21913"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-37987"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-37995"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-38668"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-39679"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-39724"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-39806"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-39898"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-39967"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-39982"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-39993"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-39998"
},
{
"summary":"nvd cve",
"category":"external",
"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-40019"
},
{
"summary":"openEuler-SA-2025-2556 vex file",
"category":"self",
"url":"https://repo.openeuler.org/security/data/csaf/advisories/2025/csaf-openEuler-SA-2025-2556.json"
}
],
"title":"An update for kernel is now available for openEuler-24.03-LTS",
"tracking":{
"initial_release_date":"2025-11-06T17:04:02+08:00",
"revision_history":[
{
"date":"2025-11-06T17:04:02+08:00",
"summary":"Initial",
"number":"1.0.0"
}
],
"generator":{
"date":"2025-11-06T17:04:02+08:00",
"engine":{
"name":"openEuler CSAF Tool V1.0"
}
},
"current_release_date":"2025-11-06T17:04:02+08:00",
"id":"openEuler-SA-2025-2556",
"version":"1.0.0",
"status":"final"
}
},
"product_tree":{
"branches":[
{
"name":"openEuler",
"category":"vendor",
"branches":[
{
"name":"openEuler",
"branches":[
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"openEuler-24.03-LTS",
"name":"openEuler-24.03-LTS"
},
"name":"openEuler-24.03-LTS",
"category":"product_version"
}
],
"category":"product_name"
},
{
"name":"aarch64",
"branches":[
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"bpftool-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"bpftool-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"bpftool-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"kernel-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"kernel-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-source-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"kernel-source-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"kernel-source-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"perf-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"perf-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"perf-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"python3-perf-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"python3-perf-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"python3-perf-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"name":"python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm"
},
"name":"python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"category":"product_version"
}
],
"category":"architecture"
},
{
"name":"x86_64",
"branches":[
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"bpftool-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"bpftool-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"bpftool-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"kernel-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"kernel-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-source-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"kernel-source-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"kernel-source-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"perf-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"perf-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"perf-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"python3-perf-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"python3-perf-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"python3-perf-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
},
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"name":"python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm"
},
"name":"python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"category":"product_version"
}
],
"category":"architecture"
},
{
"name":"src",
"branches":[
{
"product":{
"product_identification_helper":{
"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS"
},
"product_id":"kernel-6.6.0-114.0.0.106.oe2403.src.rpm",
"name":"kernel-6.6.0-114.0.0.106.oe2403.src.rpm"
},
"name":"kernel-6.6.0-114.0.0.106.oe2403.src.rpm",
"category":"product_version"
}
],
"category":"architecture"
}
]
}
],
"relationships":[
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"bpftool-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"bpftool-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"kernel-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-source-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"kernel-source-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"perf-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"perf-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"python3-perf-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"python3-perf-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"name":"python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"bpftool-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"bpftool-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"kernel-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-source-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"kernel-source-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"perf-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"perf-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"python3-perf-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"python3-perf-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"name":"python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64 as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
},
{
"relates_to_product_reference":"openEuler-24.03-LTS",
"product_reference":"kernel-6.6.0-114.0.0.106.oe2403.src.rpm",
"full_product_name":{
"product_id":"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src",
"name":"kernel-6.6.0-114.0.0.106.oe2403.src as a component of openEuler-24.03-LTS"
},
"category":"default_component_of"
}
]
},
"vulnerabilities":[
{
"cve":"CVE-2024-53168",
"notes":[
{
"text":"In the Linux kernel, the following vulnerability has been resolved:sunrpc: fix one UAF issue caused by sunrpc kernel tcp socketBUG: KASAN: slab-use-after-free in tcp_write_timer_handler+0x156/0x3e0Read of size 1 at addr ffff888111f322cd by task swapper/0/0CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-rc4-dirty #7Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1Call Trace: dump_stack_lvl+0x68/0xa0 print_address_description.constprop.0+0x2c/0x3d0 print_report+0xb4/0x270 kasan_report+0xbd/0xf0 tcp_write_timer_handler+0x156/0x3e0 tcp_write_timer+0x66/0x170 call_timer_fn+0xfb/0x1d0 __run_timers+0x3f8/0x480 run_timer_softirq+0x9b/0x100 handle_softirqs+0x153/0x390 __irq_exit_rcu+0x103/0x120 irq_exit_rcu+0xe/0x20 sysvec_apic_timer_interrupt+0x76/0x90 asm_sysvec_apic_timer_interrupt+0x1a/0x20RIP: 0010:default_idle+0xf/0x20Code: 4c 01 c7 4c 29 c2 e9 72 ff ff ff 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 f8 25 00 fb f4 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90RSP: 0018:ffffffffa2007e28 EFLAGS: 00000242RAX: 00000000000f3b31 RBX: 1ffffffff4400fc7 RCX: ffffffffa09c3196RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9f00590fRBP: 0000000000000000 R08: 0000000000000001 R09: ffffed102360835dR10: ffff88811b041aeb R11: 0000000000000001 R12: 0000000000000000R13: ffffffffa202d7c0 R14: 0000000000000000 R15: 00000000000147d0 default_idle_call+0x6b/0xa0 cpuidle_idle_call+0x1af/0x1f0 do_idle+0xbc/0x130 cpu_startup_entry+0x33/0x40 rest_init+0x11f/0x210 start_kernel+0x39a/0x420 x86_64_start_reservations+0x18/0x30 x86_64_start_kernel+0x97/0xa0 common_startup_64+0x13e/0x141 Allocated by task 595: kasan_save_stack+0x24/0x50 kasan_save_track+0x14/0x30 __kasan_slab_alloc+0x87/0x90 kmem_cache_alloc_noprof+0x12b/0x3f0 copy_net_ns+0x94/0x380 create_new_namespaces+0x24c/0x500 unshare_nsproxy_namespaces+0x75/0xf0 ksys_unshare+0x24e/0x4f0 __x64_sys_unshare+0x1f/0x30 do_syscall_64+0x70/0x180 entry_SYSCALL_64_after_hwframe+0x76/0x7eFreed by task 100: kasan_save_stack+0x24/0x50 kasan_save_track+0x14/0x30 kasan_save_free_info+0x3b/0x60 __kasan_slab_free+0x54/0x70 kmem_cache_free+0x156/0x5d0 cleanup_net+0x5d3/0x670 process_one_work+0x776/0xa90 worker_thread+0x2e2/0x560 kthread+0x1a8/0x1f0 ret_from_fork+0x34/0x60 ret_from_fork_asm+0x1a/0x30Reproduction script:mkdir -p /mnt/nfssharemkdir -p /mnt/nfs/netns_1mkfs.ext4 /dev/sdbmount /dev/sdb /mnt/nfssharesystemctl restart nfs-serverchmod 777 /mnt/nfsshareexportfs -i -o rw,no_root_squash *:/mnt/nfsshareip netns add netns_1ip link add name veth_1_peer type veth peer veth_1ifconfig veth_1_peer 11.11.0.254 upip link set veth_1 netns netns_1ip netns exec netns_1 ifconfig veth_1 11.11.0.1ip netns exec netns_1 /root/iptables -A OUTPUT -d 11.11.0.254 -p tcp --tcp-flags FIN FIN -j DROP(note: In my environment, a DESTROY_CLIENTID operation is always sent immediately, breaking the nfs tcp connection.)ip netns exec netns_1 timeout -s 9 300 mount -t nfs -o proto=tcp,vers=4.1 11.11.0.254:/mnt/nfsshare /mnt/nfs/netns_1ip netns del netns_1The reason here is that the tcp socket in netns_1 (nfs side) has beenshutdown and closed (done in xs_destroy), but the FIN message (with ack)is discarded, and the nfsd side keeps sending retransmission messages.As a result, when the tcp sock in netns_1 processes the received message,it sends the message (FIN message) in the sending queue, and the tcp timeris re-established. When the network namespace is deleted, the net structureaccessed by tcp s timer handler function causes problems.To fix this problem, let s hold netns refcnt for the tcp kernel socket asdone in other modules. This is an ugly hack which can easily be backportedto earlier kernels. A proper fix which cleans up the interfaces willfollow, but may not be so easy to backport.",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"MEDIUM",
"baseScore":5.5,
"vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"Medium",
"category":"impact"
}
],
"title":"CVE-2024-53168"
},
{
"cve":"CVE-2025-21913",
"notes":[
{
"text":"In the Linux kernel, the following vulnerability has been resolved:\n\nx86/amd_nb: Use rdmsr_safe() in amd_get_mmconfig_range()\n\nXen doesn't offer MSR_FAM10H_MMIO_CONF_BASE to all guests. This results\nin the following warning:\n\n unchecked MSR access error: RDMSR from 0xc0010058 at rIP: 0xffffffff8101d19f (xen_do_read_msr+0x7f/0xa0)\n Call Trace:\n xen_read_msr+0x1e/0x30\n amd_get_mmconfig_range+0x2b/0x80\n quirk_amd_mmconfig_area+0x28/0x100\n pnp_fixup_device+0x39/0x50\n __pnp_add_device+0xf/0x150\n pnp_add_device+0x3d/0x100\n pnpacpi_add_device_handler+0x1f9/0x280\n acpi_ns_get_device_callback+0x104/0x1c0\n acpi_ns_walk_namespace+0x1d0/0x260\n acpi_get_devices+0x8a/0xb0\n pnpacpi_init+0x50/0x80\n do_one_initcall+0x46/0x2e0\n kernel_init_freeable+0x1da/0x2f0\n kernel_init+0x16/0x1b0\n ret_from_fork+0x30/0x50\n ret_from_fork_asm+0x1b/0x30\n\nbased on quirks for a \"PNP0c01\" device. Treating MMCFG as disabled is the\nright course of action, so no change is needed there.\n\nThis was most likely exposed by fixing the Xen MSR accessors to not be\nsilently-safe.",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"MEDIUM",
"baseScore":5.3,
"vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"Medium",
"category":"impact"
}
],
"title":"CVE-2025-21913"
},
{
"cve":"CVE-2025-37987",
"notes":[
{
"text":"In the Linux kernel, the following vulnerability has been resolved:\n\npds_core: Prevent possible adminq overflow/stuck condition\n\nThe pds_core's adminq is protected by the adminq_lock, which prevents\nmore than 1 command to be posted onto it at any one time. This makes it\nso the client drivers cannot simultaneously post adminq commands.\nHowever, the completions happen in a different context, which means\nmultiple adminq commands can be posted sequentially and all waiting\non completion.\n\nOn the FW side, the backing adminq request queue is only 16 entries\nlong and the retry mechanism and/or overflow/stuck prevention is\nlacking. This can cause the adminq to get stuck, so commands are no\nlonger processed and completions are no longer sent by the FW.\n\nAs an initial fix, prevent more than 16 outstanding adminq commands so\nthere's no way to cause the adminq from getting stuck. This works\nbecause the backing adminq request queue will never have more than 16\npending adminq commands, so it will never overflow. This is done by\nreducing the adminq depth to 16.",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"LOW",
"baseScore":3.9,
"vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"Low",
"category":"impact"
}
],
"title":"CVE-2025-37987"
},
{
"cve":"CVE-2025-37995",
"notes":[
{
"text":"In the Linux kernel, the following vulnerability has been resolved:\n\nmodule: ensure that kobject_put() is safe for module type kobjects\n\nIn 'lookup_or_create_module_kobject()', an internal kobject is created\nusing 'module_ktype'. So call to 'kobject_put()' on error handling\npath causes an attempt to use an uninitialized completion pointer in\n'module_kobject_release()'. In this scenario, we just want to release\nkobject without an extra synchronization required for a regular module\nunloading process, so adding an extra check whether 'complete()' is\nactually required makes 'kobject_put()' safe.",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"HIGH",
"baseScore":7.0,
"vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"High",
"category":"impact"
}
],
"title":"CVE-2025-37995"
},
{
"cve":"CVE-2025-38668",
"notes":[
{
"text":"In the Linux kernel, the following vulnerability has been resolved:\n\nregulator: core: fix NULL dereference on unbind due to stale coupling data\n\nFailing to reset coupling_desc.n_coupled after freeing coupled_rdevs can\nlead to NULL pointer dereference when regulators are accessed post-unbind.\n\nThis can happen during runtime PM or other regulator operations that rely\non coupling metadata.\n\nFor example, on ridesx4, unbinding the 'reg-dummy' platform device triggers\na panic in regulator_lock_recursive() due to stale coupling state.\n\nEnsure n_coupled is set to 0 to prevent access to invalid pointers.",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"MEDIUM",
"baseScore":4.4,
"vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"Medium",
"category":"impact"
}
],
"title":"CVE-2025-38668"
},
{
"cve":"CVE-2025-39679",
"notes":[
{
"text":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/nvif: Fix potential memory leak in nvif_vmm_ctor().\n\nWhen the nvif_vmm_type is invalid, we will return error directly\nwithout freeing the args in nvif_vmm_ctor(), which leading a memory\nleak. Fix it by setting the ret -EINVAL and goto done.",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"MEDIUM",
"baseScore":5.5,
"vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"Medium",
"category":"impact"
}
],
"title":"CVE-2025-39679"
},
{
"cve":"CVE-2025-39724",
"notes":[
{
"text":"In the Linux kernel, the following vulnerability has been resolved:\n\nserial: 8250: fix panic due to PSLVERR\n\nWhen the PSLVERR_RESP_EN parameter is set to 1, the device generates\nan error response if an attempt is made to read an empty RBR (Receive\nBuffer Register) while the FIFO is enabled.\n\nIn serial8250_do_startup(), calling serial_port_out(port, UART_LCR,\nUART_LCR_WLEN8) triggers dw8250_check_lcr(), which invokes\ndw8250_force_idle() and serial8250_clear_and_reinit_fifos(). The latter\nfunction enables the FIFO via serial_out(p, UART_FCR, p->fcr).\nExecution proceeds to the serial_port_in(port, UART_RX).\nThis satisfies the PSLVERR trigger condition.\n\nWhen another CPU (e.g., using printk()) is accessing the UART (UART\nis busy), the current CPU fails the check (value & ~UART_LCR_SPAR) ==\n(lcr & ~UART_LCR_SPAR) in dw8250_check_lcr(), causing it to enter\ndw8250_force_idle().\n\nPut serial_port_out(port, UART_LCR, UART_LCR_WLEN8) under the port->lock\nto fix this issue.\n\nPanic backtrace:\n[ 0.442336] Oops - unknown exception [#1]\n[ 0.442343] epc : dw8250_serial_in32+0x1e/0x4a\n[ 0.442351] ra : serial8250_do_startup+0x2c8/0x88e\n...\n[ 0.442416] console_on_rootfs+0x26/0x70",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"MEDIUM",
"baseScore":4.4,
"vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"Medium",
"category":"impact"
}
],
"title":"CVE-2025-39724"
},
{
"cve":"CVE-2025-39806",
"notes":[
{
"text":"In the Linux kernel, the following vulnerability has been resolved:\n\nHID: multitouch: fix slab out-of-bounds access in mt_report_fixup()\n\nA malicious HID device can trigger a slab out-of-bounds during\nmt_report_fixup() by passing in report descriptor smaller than\n607 bytes. mt_report_fixup() attempts to patch byte offset 607\nof the descriptor with 0x25 by first checking if byte offset\n607 is 0x15 however it lacks bounds checks to verify if the\ndescriptor is big enough before conducting this check. Fix\nthis bug by ensuring the descriptor size is at least 608\nbytes before accessing it.\n\nBelow is the KASAN splat after the out of bounds access happens:\n\n[ 13.671954] ==================================================================\n[ 13.672667] BUG: KASAN: slab-out-of-bounds in mt_report_fixup+0x103/0x110\n[ 13.673297] Read of size 1 at addr ffff888103df39df by task kworker/0:1/10\n[ 13.673297]\n[ 13.673297] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Not tainted 6.15.0-00005-gec5d573d83f4-dirty #3\n[ 13.673297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/04\n[ 13.673297] Call Trace:\n[ 13.673297] \n[ 13.673297] dump_stack_lvl+0x5f/0x80\n[ 13.673297] print_report+0xd1/0x660\n[ 13.673297] kasan_report+0xe5/0x120\n[ 13.673297] __asan_report_load1_noabort+0x18/0x20\n[ 13.673297] mt_report_fixup+0x103/0x110\n[ 13.673297] hid_open_report+0x1ef/0x810\n[ 13.673297] mt_probe+0x422/0x960\n[ 13.673297] hid_device_probe+0x2e2/0x6f0\n[ 13.673297] really_probe+0x1c6/0x6b0\n[ 13.673297] __driver_probe_device+0x24f/0x310\n[ 13.673297] driver_probe_device+0x4e/0x220\n[ 13.673297] __device_attach_driver+0x169/0x320\n[ 13.673297] bus_for_each_drv+0x11d/0x1b0\n[ 13.673297] __device_attach+0x1b8/0x3e0\n[ 13.673297] device_initial_probe+0x12/0x20\n[ 13.673297] bus_probe_device+0x13d/0x180\n[ 13.673297] device_add+0xe3a/0x1670\n[ 13.673297] hid_add_device+0x31d/0xa40\n[...]",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"HIGH",
"baseScore":7.0,
"vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"High",
"category":"impact"
}
],
"title":"CVE-2025-39806"
},
{
"cve":"CVE-2025-39898",
"notes":[
{
"text":"Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"HIGH",
"baseScore":7.0,
"vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"High",
"category":"impact"
}
],
"title":"CVE-2025-39898"
},
{
"cve":"CVE-2025-39967",
"notes":[
{
"text":"In the Linux kernel, the following vulnerability has been resolved:\n\nfbcon: fix integer overflow in fbcon_do_set_font\n\nFix integer overflow vulnerabilities in fbcon_do_set_font() where font\nsize calculations could overflow when handling user-controlled font\nparameters.\n\nThe vulnerabilities occur when:\n1. CALC_FONTSZ(h, pitch, charcount) performs h * pith * charcount\n multiplication with user-controlled values that can overflow.\n2. FONT_EXTRA_WORDS * sizeof(int) + size addition can also overflow\n3. This results in smaller allocations than expected, leading to buffer\n overflows during font data copying.\n\nAdd explicit overflow checking using check_mul_overflow() and\ncheck_add_overflow() kernel helpers to safety validate all size\ncalculations before allocation.",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"MEDIUM",
"baseScore":5.5,
"vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"Medium",
"category":"impact"
}
],
"title":"CVE-2025-39967"
},
{
"cve":"CVE-2025-39982",
"notes":[
{
"text":"In the Linux kernel, the following vulnerability has been resolved:Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_syncThis fixes the following UFA in hci_acl_create_conn_sync where aconnection still pending is command submission (conn->state == BT_OPEN)maybe freed, also since this also can happen with the likes ofhci_le_create_conn_sync fix it as well:BUG: KASAN: slab-use-after-free in hci_acl_create_conn_sync+0x5ef/0x790 net/bluetooth/hci_sync.c:6861Write of size 2 at addr ffff88805ffcc038 by task kworker/u11:2/9541CPU: 1 UID: 0 PID: 9541 Comm: kworker/u11:2 Not tainted 6.16.0-rc7 #3 PREEMPT(full)Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1ubuntu1 04/01/2014Workqueue: hci3 hci_cmd_sync_workCall Trace: dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120 print_address_description mm/kasan/report.c:378 [inline] print_report+0xca/0x230 mm/kasan/report.c:480 kasan_report+0x118/0x150 mm/kasan/report.c:593 hci_acl_create_conn_sync+0x5ef/0x790 net/bluetooth/hci_sync.c:6861 hci_cmd_sync_work+0x210/0x3a0 net/bluetooth/hci_sync.c:332 process_one_work kernel/workqueue.c:3238 [inline] process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3321 worker_thread+0x8a0/0xda0 kernel/workqueue.c:3402 kthread+0x70e/0x8a0 kernel/kthread.c:464 ret_from_fork+0x3fc/0x770 arch/x86/kernel/process.c:148 ret_from_fork_asm+0x1a/0x30 home/kwqcheii/source/fuzzing/kernel/kasan/linux-6.16-rc7/arch/x86/entry/entry_64.S:245 Allocated by task 123736: kasan_save_stack mm/kasan/common.c:47 [inline] kasan_save_track+0x3e/0x80 mm/kasan/common.c:68 poison_kmalloc_redzone mm/kasan/common.c:377 [inline] __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:394 kasan_kmalloc include/linux/kasan.h:260 [inline] __kmalloc_cache_noprof+0x230/0x3d0 mm/slub.c:4359 kmalloc_noprof include/linux/slab.h:905 [inline] kzalloc_noprof include/linux/slab.h:1039 [inline] __hci_conn_add+0x233/0x1b30 net/bluetooth/hci_conn.c:939 hci_conn_add_unset net/bluetooth/hci_conn.c:1051 [inline] hci_connect_acl+0x16c/0x4e0 net/bluetooth/hci_conn.c:1634 pair_device+0x418/0xa70 net/bluetooth/mgmt.c:3556 hci_mgmt_cmd+0x9c9/0xef0 net/bluetooth/hci_sock.c:1719 hci_sock_sendmsg+0x6ca/0xef0 net/bluetooth/hci_sock.c:1839 sock_sendmsg_nosec net/socket.c:712 [inline] __sock_sendmsg+0x219/0x270 net/socket.c:727 sock_write_iter+0x258/0x330 net/socket.c:1131 new_sync_write fs/read_write.c:593 [inline] vfs_write+0x54b/0xa90 fs/read_write.c:686 ksys_write+0x145/0x250 fs/read_write.c:738 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xfa/0x3b0 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7fFreed by task 103680: kasan_save_stack mm/kasan/common.c:47 [inline] kasan_save_track+0x3e/0x80 mm/kasan/common.c:68 kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:576 poison_slab_object mm/kasan/common.c:247 [inline] __kasan_slab_free+0x62/0x70 mm/kasan/common.c:264 kasan_slab_free include/linux/kasan.h:233 [inline] slab_free_hook mm/slub.c:2381 [inline] slab_free mm/slub.c:4643 [inline] kfree+0x18e/0x440 mm/slub.c:4842 device_release+0x9c/0x1c0 kobject_cleanup lib/kobject.c:689 [inline] kobject_release lib/kobject.c:720 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x22b/0x480 lib/kobject.c:737 hci_conn_cleanup net/bluetooth/hci_conn.c:175 [inline] hci_conn_del+0x8ff/0xcb0 net/bluetooth/hci_conn.c:1173 hci_conn_complete_evt+0x3c7/0x1040 net/bluetooth/hci_event.c:3199 hci_event_func net/bluetooth/hci_event.c:7477 [inline] hci_event_packet+0x7e0/0x1200 net/bluetooth/hci_event.c:7531 hci_rx_work+0x46a/0xe80 net/bluetooth/hci_core.c:4070 process_one_work kernel/workqueue.c:3238 [inline] process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3321 worker_thread+0x8a0/0xda0 kernel/workqueue.c:3402 kthread+0x70e/0x8a0 kernel/kthread.c:464 ret_from_fork+0x3fc/0x770 arch/x86/kernel/process.c:148 ret_from_fork_asm+0x1a/0x30 home/kwqcheii/sour---truncated---",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"HIGH",
"baseScore":7.0,
"vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"High",
"category":"impact"
}
],
"title":"CVE-2025-39982"
},
{
"cve":"CVE-2025-39993",
"notes":[
{
"text":"In the Linux kernel, the iMON driver has a race condition vulnerability. The issue stems from imon_disconnect() improperly releasing the usb_device reference without coordinating with active users of the device. Specifically, the fields usbdev_intf0 and usbdev_intf1 are not protected by the users counter (ictx->users). During probe, imon_init_intf0 or imon_init_intf1 increments the usb_device reference count depending on the interface. However, during disconnect, usb_put_dev is called unconditionally, regardless of actual usage. This can lead to a use-after-free (UAF) of the usb_device pointer if vfd_write or other operations are still in progress after disconnect.",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"HIGH",
"baseScore":7.0,
"vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"High",
"category":"impact"
}
],
"title":"CVE-2025-39993"
},
{
"cve":"CVE-2025-39998",
"notes":[
{
"text":"In the Linux kernel, a buffer overflow vulnerability exists in the target_lu_gp_members_show function in target_core_configfs.c. The vulnerability arises from the usage of snprintf to write into the buffer \"buf\" without checking the return value length. When the total formatted string length exceeds LU_GROUP_NAME_BUF (256 bytes), it may cause a buffer overflow. Since snprintf() returns the total number of bytes that would have been written, this value may exceed the buffer length (256 bytes) passed to memcpy(), ultimately causing the memcpy function to report a buffer overflow error. Adding an additional check of the return value of snprintf() can avoid this buffer overflow.",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"HIGH",
"baseScore":7.0,
"vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"High",
"category":"impact"
}
],
"title":"CVE-2025-39998"
},
{
"cve":"CVE-2025-40019",
"notes":[
{
"text":"In the Linux kernel, the following vulnerability has been resolved:crypto: essiv - Check ssize for decryption and in-place encryptionMove the ssize check to the start in essiv_aead_crypt so thatit s also checked for decryption and in-place encryption.",
"category":"description",
"title":"Vulnerability Description"
}
],
"product_status":{
"fixed":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
},
"remediations":[
{
"product_ids":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
],
"details":"kernel security update",
"category":"vendor_fix",
"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2556"
}
],
"scores":[
{
"cvss_v3":{
"baseSeverity":"MEDIUM",
"baseScore":6.1,
"vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version":"3.1"
},
"products":[
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.aarch64",
"openEuler-24.03-LTS:bpftool-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:bpftool-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-debugsource-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-headers-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-source-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-tools-devel-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:python3-perf-debuginfo-6.6.0-114.0.0.106.oe2403.x86_64",
"openEuler-24.03-LTS:kernel-6.6.0-114.0.0.106.oe2403.src"
]
}
],
"threats":[
{
"details":"Medium",
"category":"impact"
}
],
"title":"CVE-2025-40019"
}
]
}