RHSA-2025:12746

Description

Red Hat Security Advisory: kernel security update

CVSS Metrics

• v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•kernel

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-core

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-debug

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-debug-core

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-debug-debuginfo

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-debug-devel

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-debug-devel-matched

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-debug-modules

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-debug-modules-core

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-debug-modules-extra

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-debuginfo

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-devel

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-devel-matched

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-modules

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-modules-core

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-64k-modules-extra

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-abi-stablelists

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-core

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debug

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debug-core

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debug-debuginfo

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debug-devel

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debug-devel-matched

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debug-modules

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debug-modules-core

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debug-modules-extra

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debug-uki-virt

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debuginfo

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debuginfo-common-aarch64

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debuginfo-common-ppc64le

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debuginfo-common-s390x

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-debuginfo-common-x86_64

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-devel

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-devel-matched

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-doc

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-modules

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-modules-core

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-modules-extra

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-rt

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-rt-64k

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-rt-64k-core

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-rt-64k-debug

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-rt-64k-debug-core

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-rt-64k-debug-debuginfo

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-rt-64k-debug-devel

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-rt-64k-debug-modules

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-rt-64k-debug-modules-core

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-rt-64k-debug-modules-extra

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

• redhat•kernel-rt-64k-debuginfo

  < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6 | < 0:5.14.0-570.32.1.el9_6

Showing first 50 affected entries in server-rendered view.

References (53)

• https://access.redhat.com/errata/RHSA-2025:12746
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2348516
• https://bugzilla.redhat.com/show_bug.cgi?id=2356592
• https://bugzilla.redhat.com/show_bug.cgi?id=2356594
• https://bugzilla.redhat.com/show_bug.cgi?id=2356624
• https://bugzilla.redhat.com/show_bug.cgi?id=2360099
• https://bugzilla.redhat.com/show_bug.cgi?id=2363378
• https://bugzilla.redhat.com/show_bug.cgi?id=2366848
• https://bugzilla.redhat.com/show_bug.cgi?id=2373380
• https://bugzilla.redhat.com/show_bug.cgi?id=2375531
• https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_12746.json
• https://access.redhat.com/security/cve/CVE-2022-49788
• https://www.cve.org/CVERecord?id=CVE-2022-49788
• https://nvd.nist.gov/vuln/detail/CVE-2022-49788
• https://lore.kernel.org/linux-cve-announce/2025050121-CVE-2022-49788-6e84@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-21726
• https://bugzilla.redhat.com/show_bug.cgi?id=2348600
• https://www.cve.org/CVERecord?id=CVE-2025-21726
• https://nvd.nist.gov/vuln/detail/CVE-2025-21726
• https://lore.kernel.org/linux-cve-announce/2025022648-CVE-2025-21726-73b1@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-21727
• https://www.cve.org/CVERecord?id=CVE-2025-21727
• https://nvd.nist.gov/vuln/detail/CVE-2025-21727
• https://lore.kernel.org/linux-cve-announce/2025022648-CVE-2025-21727-b034@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-21928
• https://www.cve.org/CVERecord?id=CVE-2025-21928
• https://nvd.nist.gov/vuln/detail/CVE-2025-21928
• https://lore.kernel.org/linux-cve-announce/2025040133-CVE-2025-21928-e444@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-21929
• https://www.cve.org/CVERecord?id=CVE-2025-21929
• https://nvd.nist.gov/vuln/detail/CVE-2025-21929
• https://lore.kernel.org/linux-cve-announce/2025040133-CVE-2025-21929-bf29@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-21962
• https://www.cve.org/CVERecord?id=CVE-2025-21962
• https://nvd.nist.gov/vuln/detail/CVE-2025-21962
• https://lore.kernel.org/linux-cve-announce/2025040145-CVE-2025-21962-9f86@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-22020
• https://www.cve.org/CVERecord?id=CVE-2025-22020
• https://nvd.nist.gov/vuln/detail/CVE-2025-22020
• https://lore.kernel.org/linux-cve-announce/2025041642-CVE-2025-22020-70e8@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-37890
• https://www.cve.org/CVERecord?id=CVE-2025-37890
• https://nvd.nist.gov/vuln/detail/CVE-2025-37890
• https://lore.kernel.org/linux-cve-announce/2025051617-CVE-2025-37890-437b@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-38052
• https://www.cve.org/CVERecord?id=CVE-2025-38052
• https://nvd.nist.gov/vuln/detail/CVE-2025-38052
• https://lore.kernel.org/linux-cve-announce/2025061832-CVE-2025-38052-6201@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-38087
• https://www.cve.org/CVERecord?id=CVE-2025-38087
• https://nvd.nist.gov/vuln/detail/CVE-2025-38087
• https://lore.kernel.org/linux-cve-announce/2025063052-CVE-2025-38087-cd0f@gregkh/T