RHSA-2025:22072
Advisory lineage Upstream: 13 Downstream: 0
Published: 26 Nov 2025, 10:17
Last modified:12 May 2026, 10:03
Vulnerability Summary
Overall Risk (default)
medium
30/100 CVSS Score
7.5 HIGH
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
26 Nov 2025, 10:17
Published
Vulnerability first disclosed
12 May 2026, 10:03
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: kernel security update
CVSS Metrics
- v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Systems
- redhat•bpftool
< 0:4.18.0-477.120.1.el8_8
- redhat•bpftool-debuginfo
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-abi-stablelists
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-core
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-debug
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-debug-core
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-debug-debuginfo
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-debug-devel
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-debug-modules
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-debug-modules-extra
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-debuginfo
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-debuginfo-common-ppc64le
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-debuginfo-common-x86_64
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-devel
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-doc
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-modules
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-modules-extra
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-tools
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-tools-debuginfo
< 0:4.18.0-477.120.1.el8_8
- redhat•kernel-tools-libs
< 0:4.18.0-477.120.1.el8_8
- redhat•perf
< 0:4.18.0-477.120.1.el8_8
- redhat•perf-debuginfo
< 0:4.18.0-477.120.1.el8_8
- redhat•python3-perf
< 0:4.18.0-477.120.1.el8_8
- redhat•python3-perf-debuginfo
< 0:4.18.0-477.120.1.el8_8
References (68)
- https://access.redhat.com/errata/RHSA-2025:22072
- https://access.redhat.com/security/updates/classification/#moderate
- https://bugzilla.redhat.com/show_bug.cgi?id=2393164
- https://bugzilla.redhat.com/show_bug.cgi?id=2393166
- https://bugzilla.redhat.com/show_bug.cgi?id=2394615
- https://bugzilla.redhat.com/show_bug.cgi?id=2394627
- https://bugzilla.redhat.com/show_bug.cgi?id=2395681
- https://bugzilla.redhat.com/show_bug.cgi?id=2395805
- https://bugzilla.redhat.com/show_bug.cgi?id=2395879
- https://bugzilla.redhat.com/show_bug.cgi?id=2395891
- https://bugzilla.redhat.com/show_bug.cgi?id=2396130
- https://bugzilla.redhat.com/show_bug.cgi?id=2396158
- https://bugzilla.redhat.com/show_bug.cgi?id=2396419
- https://bugzilla.redhat.com/show_bug.cgi?id=2396494
- https://bugzilla.redhat.com/show_bug.cgi?id=2397553
- https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_22072.json
- https://access.redhat.com/security/cve/CVE-2022-50341
- https://www.cve.org/CVERecord?id=CVE-2022-50341
- https://nvd.nist.gov/vuln/detail/CVE-2022-50341
- https://lore.kernel.org/linux-cve-announce/2025091638-CVE-2022-50341-12c1@gregkh/T
- https://access.redhat.com/security/cve/CVE-2022-50403
- https://www.cve.org/CVERecord?id=CVE-2022-50403
- https://nvd.nist.gov/vuln/detail/CVE-2022-50403
- https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50403-0471@gregkh/T
- https://access.redhat.com/security/cve/CVE-2023-53297
- https://www.cve.org/CVERecord?id=CVE-2023-53297
- https://nvd.nist.gov/vuln/detail/CVE-2023-53297
- https://lore.kernel.org/linux-cve-announce/2025091627-CVE-2023-53297-8746@gregkh/T
- https://access.redhat.com/security/cve/CVE-2023-53322
- https://www.cve.org/CVERecord?id=CVE-2023-53322
- https://nvd.nist.gov/vuln/detail/CVE-2023-53322
- https://lore.kernel.org/linux-cve-announce/2025091644-CVE-2023-53322-45ba@gregkh/T
- https://access.redhat.com/security/cve/CVE-2023-53354
- https://www.cve.org/CVERecord?id=CVE-2023-53354
- https://nvd.nist.gov/vuln/detail/CVE-2023-53354
- https://lore.kernel.org/linux-cve-announce/2025091721-CVE-2023-53354-771f@gregkh/T
- https://access.redhat.com/security/cve/CVE-2023-53365
- https://www.cve.org/CVERecord?id=CVE-2023-53365
- https://nvd.nist.gov/vuln/detail/CVE-2023-53365
- https://lore.kernel.org/linux-cve-announce/2025091723-CVE-2023-53365-acb1@gregkh/T
- https://access.redhat.com/security/cve/CVE-2023-53386
- https://www.cve.org/CVERecord?id=CVE-2023-53386
- https://nvd.nist.gov/vuln/detail/CVE-2023-53386
- https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53386-8ab2@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-38718
- https://www.cve.org/CVERecord?id=CVE-2025-38718
- https://nvd.nist.gov/vuln/detail/CVE-2025-38718
- https://lore.kernel.org/linux-cve-announce/2025090459-CVE-2025-38718-5bb6@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-38729
- https://www.cve.org/CVERecord?id=CVE-2025-38729
- https://nvd.nist.gov/vuln/detail/CVE-2025-38729
- https://lore.kernel.org/linux-cve-announce/2025090403-CVE-2025-38729-ca88@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-39757
- https://www.cve.org/CVERecord?id=CVE-2025-39757
- https://nvd.nist.gov/vuln/detail/CVE-2025-39757
- https://lore.kernel.org/linux-cve-announce/2025091144-CVE-2025-39757-e212@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-39817
- https://www.cve.org/CVERecord?id=CVE-2025-39817
- https://nvd.nist.gov/vuln/detail/CVE-2025-39817
- https://lore.kernel.org/linux-cve-announce/2025091615-CVE-2025-39817-90b7@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-39883
- https://www.cve.org/CVERecord?id=CVE-2025-39883
- https://nvd.nist.gov/vuln/detail/CVE-2025-39883
- https://lore.kernel.org/linux-cve-announce/2025092302-CVE-2025-39883-6015@gregkh/T
- https://access.redhat.com/security/cve/CVE-2025-40300
- https://www.cve.org/CVERecord?id=CVE-2025-40300
- https://nvd.nist.gov/vuln/detail/CVE-2025-40300
- https://lore.kernel.org/linux-cve-announce/2025091128-CVE-2025-40300-5569@gregkh/