RHSA-2025:18043
Advisory lineage Upstream: 10 Downstream: 0
Published: 15 Oct 2025, 10:05
Last modified:26 Mar 2026, 10:09
Vulnerability Summary
Overall Risk (default)
medium
29/100 CVSS Score
7.3 HIGH
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
15 Oct 2025, 10:05
Published
Vulnerability first disclosed
26 Mar 2026, 10:09
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: kernel security update
CVSS Metrics
- v3.1•HIGH•Score: 7.3CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H
Affected Systems
- redhat•bpftool
< 0:4.18.0-372.164.1.el8_6
- redhat•bpftool-debuginfo
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-abi-stablelists
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-core
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-debug
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-debug-core
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-debug-debuginfo
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-debug-devel
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-debug-modules
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-debug-modules-extra
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-debuginfo
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-debuginfo-common-aarch64
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-debuginfo-common-ppc64le
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-debuginfo-common-s390x
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-debuginfo-common-x86_64
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-devel
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-doc
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-modules
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-modules-extra
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-tools
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-tools-debuginfo
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-tools-libs
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-zfcpdump
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-zfcpdump-core
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-zfcpdump-debuginfo
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-zfcpdump-devel
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-zfcpdump-modules
< 0:4.18.0-372.164.1.el8_6
- redhat•kernel-zfcpdump-modules-extra
< 0:4.18.0-372.164.1.el8_6
- redhat•perf
< 0:4.18.0-372.164.1.el8_6
- redhat•perf-debuginfo
< 0:4.18.0-372.164.1.el8_6
- redhat•python3-perf
< 0:4.18.0-372.164.1.el8_6
- redhat•python3-perf-debuginfo
< 0:4.18.0-372.164.1.el8_6
References (53)
- https://access.redhat.com/errata/RHSA-2025:18043
- https://access.redhat.com/security/updates/classification/#moderate
- https://bugzilla.redhat.com/show_bug.cgi?id=2360223
- https://bugzilla.redhat.com/show_bug.cgi?id=2367500
- https://bugzilla.redhat.com/show_bug.cgi?id=2373460
- https://bugzilla.redhat.com/show_bug.cgi?id=2373539
- https://bugzilla.redhat.com/show_bug.cgi?id=2373540
- https://bugzilla.redhat.com/show_bug.cgi?id=2373635
- https://bugzilla.redhat.com/show_bug.cgi?id=2376406
- https://bugzilla.redhat.com/show_bug.cgi?id=2383513
- https://bugzilla.redhat.com/show_bug.cgi?id=2383519
- https://bugzilla.redhat.com/show_bug.cgi?id=2384422
- https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_18043.json
- https://access.redhat.com/security/cve/CVE-2022-49969
- https://www.cve.org/CVERecord?id=CVE-2022-49969
- https://nvd.nist.gov/vuln/detail/CVE-2022-49969
- https://lore.kernel.org/linux-cve-announce/2025061816-CVE-2022-49969-fd54@gregkh/T
- https://access.redhat.com/security/cve/CVE-2022-49985
- https://www.cve.org/CVERecord?id=CVE-2022-49985
- https://nvd.nist.gov/vuln/detail/CVE-2022-49985
- https://lore.kernel.org/linux-cve-announce/2025061822-CVE-2022-49985-3e41@gregkh/T
- https://access.redhat.com/security/cve/CVE-2022-50087
- https://www.cve.org/CVERecord?id=CVE-2022-50087
- https://nvd.nist.gov/vuln/detail/CVE-2022-50087
- https://lore.kernel.org/linux-cve-announce/2025061859-CVE-2022-50087-53b1@gregkh/T
- https://access.redhat.com/security/cve/CVE-2022-50229
- https://www.cve.org/CVERecord?id=CVE-2022-50229
- https://nvd.nist.gov/vuln/detail/CVE-2022-50229
- https://lore.kernel.org/linux-cve-announce/2025061850-CVE-2022-50229-702e@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-22097
- https://www.cve.org/CVERecord?id=CVE-2025-22097
- https://nvd.nist.gov/vuln/detail/CVE-2025-22097
- https://lore.kernel.org/linux-cve-announce/2025041619-CVE-2025-22097-d4f5@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-37914
- https://www.cve.org/CVERecord?id=CVE-2025-37914
- https://nvd.nist.gov/vuln/detail/CVE-2025-37914
- https://lore.kernel.org/linux-cve-announce/2025052000-CVE-2025-37914-1a4f@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-38211
- https://www.cve.org/CVERecord?id=CVE-2025-38211
- https://nvd.nist.gov/vuln/detail/CVE-2025-38211
- https://lore.kernel.org/linux-cve-announce/2025070422-CVE-2025-38211-215a@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-38449
- https://www.cve.org/CVERecord?id=CVE-2025-38449
- https://nvd.nist.gov/vuln/detail/CVE-2025-38449
- https://lore.kernel.org/linux-cve-announce/2025072504-CVE-2025-38449-cbf0@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-38461
- https://www.cve.org/CVERecord?id=CVE-2025-38461
- https://nvd.nist.gov/vuln/detail/CVE-2025-38461
- https://lore.kernel.org/linux-cve-announce/2025072507-CVE-2025-38461-33b1@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-38498
- https://www.cve.org/CVERecord?id=CVE-2025-38498
- https://nvd.nist.gov/vuln/detail/CVE-2025-38498
- https://lore.kernel.org/linux-cve-announce/2025073029-CVE-2025-38498-e3ab@gregkh/T