RHSA-2025:3935

Description

Red Hat Security Advisory: kernel security update

CVSS Metrics

• v3.1•HIGH•Score: 7.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Affected Systems

• redhat•bpftool

  < 0:7.3.0-427.65.1.el9_4 | < 0:7.3.0-427.65.1.el9_4 | < 0:7.3.0-427.65.1.el9_4 | < 0:7.3.0-427.65.1.el9_4 | < 0:7.3.0-427.65.1.el9_4

• redhat•bpftool-debuginfo

  < 0:7.3.0-427.65.1.el9_4 | < 0:7.3.0-427.65.1.el9_4 | < 0:7.3.0-427.65.1.el9_4 | < 0:7.3.0-427.65.1.el9_4 | < 0:7.3.0-427.65.1.el9_4

• redhat•kernel

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-core

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-debug

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-debug-core

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-debug-debuginfo

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-debug-devel

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-debug-devel-matched

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-debug-modules

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-debug-modules-core

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-debug-modules-extra

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-debuginfo

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-devel

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-devel-matched

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-modules

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-modules-core

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-64k-modules-extra

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-abi-stablelists

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-core

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debug

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debug-core

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debug-debuginfo

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debug-devel

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debug-devel-matched

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debug-modules

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debug-modules-core

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debug-modules-extra

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debug-uki-virt

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debuginfo

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debuginfo-common-aarch64

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debuginfo-common-ppc64le

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debuginfo-common-s390x

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-debuginfo-common-x86_64

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-devel

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-devel-matched

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-doc

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-modules

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-modules-core

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-modules-extra

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-rt

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-rt-core

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-rt-debug

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-rt-debug-core

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-rt-debug-debuginfo

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-rt-debug-devel

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-rt-debug-kvm

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-rt-debug-modules

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

• redhat•kernel-rt-debug-modules-core

  < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4 | < 0:5.14.0-427.65.1.el9_4

Showing first 50 affected entries in server-rendered view.

References (69)

• https://access.redhat.com/errata/RHSA-2025:3935
• https://access.redhat.com/security/updates/classification/#moderate
• https://bugzilla.redhat.com/show_bug.cgi?id=2267916
• https://bugzilla.redhat.com/show_bug.cgi?id=2269211
• https://bugzilla.redhat.com/show_bug.cgi?id=2273223
• https://bugzilla.redhat.com/show_bug.cgi?id=2278431
• https://bugzilla.redhat.com/show_bug.cgi?id=2281664
• https://bugzilla.redhat.com/show_bug.cgi?id=2281819
• https://bugzilla.redhat.com/show_bug.cgi?id=2282623
• https://bugzilla.redhat.com/show_bug.cgi?id=2282772
• https://bugzilla.redhat.com/show_bug.cgi?id=2282950
• https://bugzilla.redhat.com/show_bug.cgi?id=2284545
• https://bugzilla.redhat.com/show_bug.cgi?id=2284628
• https://bugzilla.redhat.com/show_bug.cgi?id=2324612
• https://bugzilla.redhat.com/show_bug.cgi?id=2333971
• https://issues.redhat.com/browse/RHEL-83039
• https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3935.json
• https://access.redhat.com/security/cve/CVE-2021-47101
• https://www.cve.org/CVERecord?id=CVE-2021-47101
• https://nvd.nist.gov/vuln/detail/CVE-2021-47101
• https://lore.kernel.org/linux-cve-announce/2024030415-CVE-2021-47101-f3fa@gregkh/T
• https://access.redhat.com/security/cve/CVE-2023-52762
• https://www.cve.org/CVERecord?id=CVE-2023-52762
• https://nvd.nist.gov/vuln/detail/CVE-2023-52762
• https://lore.kernel.org/linux-cve-announce/2024052147-CVE-2023-52762-fe90@gregkh/T
• https://access.redhat.com/security/cve/CVE-2023-52784
• https://www.cve.org/CVERecord?id=CVE-2023-52784
• https://nvd.nist.gov/vuln/detail/CVE-2023-52784
• https://lore.kernel.org/linux-cve-announce/2024052154-CVE-2023-52784-80ad@gregkh/T
• https://access.redhat.com/security/cve/CVE-2024-26614
• https://www.cve.org/CVERecord?id=CVE-2024-26614
• https://nvd.nist.gov/vuln/detail/CVE-2024-26614
• https://lore.kernel.org/linux-cve-announce/20240229155245.1571576-46-lee@kernel.org/T
• https://access.redhat.com/security/cve/CVE-2024-26779
• https://www.cve.org/CVERecord?id=CVE-2024-26779
• https://nvd.nist.gov/vuln/detail/CVE-2024-26779
• https://lore.kernel.org/linux-cve-announce/2024040310-CVE-2024-26779-8030@gregkh/T
• https://access.redhat.com/security/cve/CVE-2024-27048
• https://www.cve.org/CVERecord?id=CVE-2024-27048
• https://nvd.nist.gov/vuln/detail/CVE-2024-27048
• https://lore.kernel.org/linux-cve-announce/2024050114-CVE-2024-27048-016f@gregkh/T
• https://access.redhat.com/security/cve/CVE-2024-35900
• https://www.cve.org/CVERecord?id=CVE-2024-35900
• https://nvd.nist.gov/vuln/detail/CVE-2024-35900
• https://lore.kernel.org/linux-cve-announce/2024051952-CVE-2024-35900-c2c9@gregkh/T
• https://access.redhat.com/security/cve/CVE-2024-35938
• https://www.cve.org/CVERecord?id=CVE-2024-35938
• https://nvd.nist.gov/vuln/detail/CVE-2024-35938
• https://lore.kernel.org/linux-cve-announce/2024051918-CVE-2024-35938-0100@gregkh/T
• https://access.redhat.com/security/cve/CVE-2024-36010
• https://www.cve.org/CVERecord?id=CVE-2024-36010
• https://nvd.nist.gov/vuln/detail/CVE-2024-36010
• https://lore.kernel.org/linux-cve-announce/2024052237-CVE-2024-36010-c98b@gregkh/T
• https://access.redhat.com/security/cve/CVE-2024-36902
• https://www.cve.org/CVERecord?id=CVE-2024-36902
• https://nvd.nist.gov/vuln/detail/CVE-2024-36902
• https://access.redhat.com/security/cve/CVE-2024-36939
• https://www.cve.org/CVERecord?id=CVE-2024-36939
• https://nvd.nist.gov/vuln/detail/CVE-2024-36939
• https://lore.kernel.org/linux-cve-announce/2024053043-CVE-2024-36939-8453@gregkh/T
• https://access.redhat.com/security/cve/CVE-2024-50192
• https://www.cve.org/CVERecord?id=CVE-2024-50192
• https://nvd.nist.gov/vuln/detail/CVE-2024-50192
• https://git.kernel.org/pub/scm/linux/security/vulns.git/tree/cve/published/2024/.CVE-2024-50192mbox
• https://access.redhat.com/security/cve/CVE-2024-53150
• https://www.cve.org/CVERecord?id=CVE-2024-53150
• https://nvd.nist.gov/vuln/detail/CVE-2024-53150
• https://lore.kernel.org/linux-cve-announce/2024122427-CVE-2024-53150-3a7d@gregkh/T
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog