RHSA-2025:13962

Description

Red Hat Security Advisory: kernel security update

CVSS Metrics

• v3.1•HIGH•Score: 7.4CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

Affected Systems

• redhat•kernel

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-core

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-debug

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-debug-core

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-debug-debuginfo

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-debug-devel

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-debug-devel-matched

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-debug-modules

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-debug-modules-core

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-debug-modules-extra

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-debuginfo

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-devel

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-devel-matched

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-modules

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-modules-core

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-64k-modules-extra

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-abi-stablelists

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-core

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debug

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debug-core

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debug-debuginfo

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debug-devel

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debug-devel-matched

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debug-modules

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debug-modules-core

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debug-modules-extra

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debug-uki-virt

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debuginfo

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debuginfo-common-aarch64

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debuginfo-common-ppc64le

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debuginfo-common-s390x

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-debuginfo-common-x86_64

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-devel

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-devel-matched

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-doc

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-modules

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-modules-core

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-modules-extra

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-rt

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-rt-64k

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-rt-64k-core

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-rt-64k-debug

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-rt-64k-debug-core

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-rt-64k-debug-debuginfo

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-rt-64k-debug-devel

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-rt-64k-debug-modules

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-rt-64k-debug-modules-core

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-rt-64k-debug-modules-extra

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

• redhat•kernel-rt-64k-debuginfo

  < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6 | < 0:5.14.0-570.35.1.el9_6

Showing first 50 affected entries in server-rendered view.

References (49)

• https://access.redhat.com/errata/RHSA-2025:13962
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2355334
• https://bugzilla.redhat.com/show_bug.cgi?id=2366125
• https://bugzilla.redhat.com/show_bug.cgi?id=2375303
• https://bugzilla.redhat.com/show_bug.cgi?id=2375304
• https://bugzilla.redhat.com/show_bug.cgi?id=2376041
• https://bugzilla.redhat.com/show_bug.cgi?id=2376064
• https://bugzilla.redhat.com/show_bug.cgi?id=2378982
• https://bugzilla.redhat.com/show_bug.cgi?id=2383381
• https://bugzilla.redhat.com/show_bug.cgi?id=2383893
• https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_13962.json
• https://access.redhat.com/security/cve/CVE-2024-28956
• https://www.cve.org/CVERecord?id=CVE-2024-28956
• https://nvd.nist.gov/vuln/detail/CVE-2024-28956
• https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01153.html
• https://www.vusec.net/projects/training-solo/
• https://access.redhat.com/security/cve/CVE-2025-21867
• https://www.cve.org/CVERecord?id=CVE-2025-21867
• https://nvd.nist.gov/vuln/detail/CVE-2025-21867
• https://lore.kernel.org/linux-cve-announce/2025032732-CVE-2025-21867-3138@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-38084
• https://www.cve.org/CVERecord?id=CVE-2025-38084
• https://nvd.nist.gov/vuln/detail/CVE-2025-38084
• https://lore.kernel.org/linux-cve-announce/2025062834-CVE-2025-38084-9121@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-38085
• https://www.cve.org/CVERecord?id=CVE-2025-38085
• https://nvd.nist.gov/vuln/detail/CVE-2025-38085
• https://lore.kernel.org/linux-cve-announce/2025062836-CVE-2025-38085-8075@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-38124
• https://www.cve.org/CVERecord?id=CVE-2025-38124
• https://nvd.nist.gov/vuln/detail/CVE-2025-38124
• https://lore.kernel.org/linux-cve-announce/2025070328-CVE-2025-38124-bc19@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-38159
• https://www.cve.org/CVERecord?id=CVE-2025-38159
• https://nvd.nist.gov/vuln/detail/CVE-2025-38159
• https://lore.kernel.org/linux-cve-announce/2025070339-CVE-2025-38159-0c95@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-38250
• https://www.cve.org/CVERecord?id=CVE-2025-38250
• https://nvd.nist.gov/vuln/detail/CVE-2025-38250
• https://lore.kernel.org/linux-cve-announce/2025070934-CVE-2025-38250-3145@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-38380
• https://www.cve.org/CVERecord?id=CVE-2025-38380
• https://nvd.nist.gov/vuln/detail/CVE-2025-38380
• https://lore.kernel.org/linux-cve-announce/2025072505-CVE-2025-38380-d1a9@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-38471
• https://www.cve.org/CVERecord?id=CVE-2025-38471
• https://nvd.nist.gov/vuln/detail/CVE-2025-38471
• https://lore.kernel.org/linux-cve-announce/2025072812-CVE-2025-38471-ca92@gregkh/T