Oracle Linux 10 / 9Unbreakable Enterprise 内核 (ELSA-2025-20551)
medium Nessus 插件 ID 261833
语言:
简介
远程 Oracle Linux 主机缺少一个或多个安全更新。描述
远程 Oracle Linux 10 / 9 主机上存在安装的程序包该程序包受到 ELSA-2025-20551 公告中提及的多个漏洞的影响。- scsifnic修复 FDMI 超时时 fnic_wq_cmpl_handler 中的崩溃 (Karan Tilak Kumar) [Orabug:
38175020,38226429] {CVE-2025-38238}
- KVMx86/xen修复 Xen schedop 轮询超级调用仿真中的清理逻辑 (Manuel Andreas) [Orabug
38254220] {CVE-2025-38469}
- btrfs修复 btrfs_create_pending_block_groups() 中的区块群组引用计数争用 (Boris Burkov) [Orabug
37844509] {CVE-2025-22115}
- clone_private_mnt()确保调用程序在正确的用户中具有 CAP_SYS_ADMIN (Al Viro) [Orabug
38310005] {CVE-2025-38499}
- efivarfs修复 fs_context 错误路径中 efivarfs_fs_info 的内存泄漏 (Breno Leitao) [Orabug:
38324320] {CVE-2025-38549}
- rxrpc修复已完成调用的 recv-recv 争用 (David Howells) [Orabug: 38324205] {CVE-2025-38524}
- net/schedhtb_lookup_leaf 遇到空 rbtree 时返回 NULL (William Liu) [Orabug: 38254212] {CVE-2025-38468}
- netvlan修复运行时期间切换过滤的 VLAN 0 引用计数不平衡 (Dong Chenchen) [Orabug
38254223] {CVE-2025-38470}
- tls读取 sock 时始终刷新队列 (Jakub Kicinski) [Orabug: 38254232] {CVE-2025-38471}
- virtio-net修复 probe() 期间的递归 rtnl_lock() (Zigit Zo) [Orabug: 38324329] {CVE-2025-38551}
- netfilter: nf_conntrack修复因删除未初始化条目导致的崩溃 (Florian Westphal) [Orabug:
38254235] {CVE-2025-38472}
- ipv6mcast延迟将 pmc->idev 放入 mld_del_delrec() (Yue Haibing) [Orabug: 38324325] {CVE-2025-38550}
- Bluetooth修复 l2cap_sock_resume_cb() 中的 null-ptr-deref (Kuniyuki Iwashima) [Orabug: 38254239] {CVE-2025-38473}
- usbnetsierra无状态端点检查 (Oliver Neukum) [Orabug: 38254247] {CVE-2025-38474}
- ice在 eswitch 延迟检查中添加 NULL 检查 (Dave Ertman) [Orabug38324213] {CVE-2025-38526}
- hwmon(corsair-cpro) 验证接收输入缓冲区的大小 (Marius Zachmann) [Orabug:
38324317] {CVE-2025-38548}
- netphy不要为 genphy 注册 LED (Sean Anderson) [Orabug: 38324260] {CVE-2025-38537}
- smc修复 inet_sock 类型混淆造成的多种 oops。(Kuniyuki Iwashima) [Orabug: 38254256] {CVE-2025-38475}
- smb 客户端修复 cifs_oplock_break 中的释放后使用 (Wang Zhaolong) [Orabug38324216] {CVE-2025-38527}
- rpl修复 rpl_do_srh_inline() 中的释放后使用。(Kuniyuki Iwashima) [Orabug: 38254259] {CVE-2025-38476}
- net/schedsch_qfq修复 qfq_aggregate 上的争用条件 (Xiang Mei) [Orabug: 38254264] {CVE-2025-38477}
- bpf拒绝类似 bprintf 的帮助程序中的 %p% 格式字符串 (Paul Chaignon) [Orabug: 38324225] {CVE-2025-38528}
- comedi修复写入子设备的指令的数据初始化 (Ian Abbott) [Orabug
38254270] {CVE-2025-38478}
- comedi修复 insn_rw_emulate_bits() 中未初始化数据的使用 (Ian Abbott) [Orabug: 38254276] {CVE-2025-38480}
- comedi如果 n_insns 过大则 COMEDI_INSNLIST ioctl 失败 (Ian Abbott) [Orabug: 38254283] {CVE-2025-38481}
- comedidas6402修复位移越界 (Ian Abbott) [Orabug: 38254291] {CVE-2025-38482}
- comedidas16m1修复位移越界 (Ian Abbott) [Orabug: 38254299] {CVE-2025-38483}
- comediaio_iiro_16修复位移越界 (Ian Abbott) [Orabug: 38324229] {CVE-2025-38529}
- comedipcl812修复位移越界 (Ian Abbott) [Orabug38324236] {CVE-2025-38530}
- iiocommon st_传感器修复使用未初始化设备结构 (Maud Spierings) [Orabug: 38324242] {CVE-2025-38531}
- iiobackend修复越界写入 (Markus Burri) [Orabug: 38254383] {CVE-2025-38484}
- iioadcaxp20x_adc将缺少的 sentinel 添加到 AXP717 ADC 通道映射 (Chen-Yu Tsai) [Orabug: 38324314] {CVE-2025-38547}
- iioaccelfxls8962af修复 fxls8962af_fifo_flush 中的释放后使用 (Sean Nyekjaer) [Orabug: 38254306] {CVE-2025-38485}
- smb: client修复使用异步 crypto 时 crypt_message 中的释放后使用 (Wang Zhaolong) [Orabug:
38254322] {CVE-2025-38488}
- s390/bpf再次通过 new_addr == NULL 修复 bpf_arch_text_poke() (Ilya Leoshkevich) [Orabug: 38254325] {CVE-2025-38489}
- netlibwx正确重置 Rx 环描述符 (Jiawen Wu) [Orabug: 38324251] {CVE-2025-38532}
- netlibwx修复 Rx 缓冲区 DMA 的使用 (Jiawen Wu) [Orabug38324253] {CVE-2025-38533}
- netlibwx删除重复的 page_pool_put_full_page() (Jiawen Wu) [Orabug: 38254327] {CVE-2025-38490}
- dmaenginenbpfaxi修复 probe() 中的内存损坏 (Dan Carpenter) [Orabug: 38324262] {CVE-2025-38538}
- mptcp子流失败与子流创建之间的插件争用 (Paolo Abeni) [Orabug: 38324332] {CVE-2025-38552}
- mptcp使回退操作和回退决策原子化 (Paolo Abeni) [Orabug38254329] {CVE-2025-38491}
- tracing/osnoise修复 timerlat_dump_stack() 中的崩溃 (Tomas Glozar) [Orabug: 38254335] {CVE-2025-38493}
- tracing添加跟踪事件时添加 down_write(trace_event_sem) (Steven Rostedt) [Orabug: 38324268] {CVE-2025-38539}
- HIDcore不绕过 hid_hw_raw_request (Benjamin Tissoires) [Orabug38254338] {CVE-2025-38494}
- HID核心确保分配的报告缓冲区可包含保留的报告 ID (Benjamin Tissoires) [Orabug: 38254346] {CVE-2025-38495}
- dm-bufio修复 atomic 上下文中的 sched (Sheng Yong) [Orabug: 38254353] {CVE-2025-38496}
- usbgadgetconfigfs修复空字符串写入上的 OOB 读取 (Xinyu Liu) [Orabug: 38254356] {CVE-2025-38497}
- phytegra: xusb修复 UTMI PHY 模式下不平衡的调节器禁用 (Wane Chang) [Orabug: 38324256] {CVE-2025-38535}
- rseq修复 rseq_cs 非零时注册的段错误 (Michael Jeanson) [Orabug: 38095070] {CVE-2025-38067}
- cryptoecdsa - 强化 DIV_ROUND_UP() 中的整数溢出 (Lukas Wunner) [Orabug: 37977089] {CVE-2025-37984}
- ksmbd修复 oplock/lease 中断 ack 中潜在的释放后使用 (Namjae Jeon) [Orabug: 38254080] {CVE-2025-38437}
- kasan删除 kasan_find_vm_area() 以防止可能的死锁 (Levi Yun) [Orabug: 38324146] {CVE-2025-38510}
- HIDintendo避免蓝牙暂停/恢复停止 (Daniel J. Ogorchock) [Orabug: 38324137] {CVE-2025-38507}
- HIDquirks为 2 Chicony Elasticsearch HP 5MP 摄像头添加 quirk (Chia-Lin Kao) [Orabug: 38324277] {CVE-2025-38540}
- btrfs修复构建可用空间树时的断言 (Filipe Manana) [Orabug38324119] {CVE-2025-38503}
- ASoCSOFIntelhda使用 devm_kstrdup() 避免内存泄漏。(Tamura Dai) [Orabug: 38254084] {CVE-2025-38438}
- bnxt_en为 XDP_REDIRECT 正确设置 DMA 取消映射长度 (Somnath Kotur) [Orabug: 38254088] {CVE-2025-38439}
- net/mlx5e修复 DIM 禁用与 net_dim() 之间的争用 (Carolina Jubran) [Orabug: 38254092] {CVE-2025-38440}
- netappletalk修复 attrtr_create() 中的设备引用计数泄漏 (Kito Xu) [Orabug: 38324288] {CVE-2025-38542}
- netfilterflowtable考虑 nf_flow_pppoe_proto() 中的以太网标头 (Eric Dumazet) [Orabug
38254094] {CVE-2025-38441}
- drm/xe/pf清除 alloc 上的所有 LMTT 页面 (Michal Wajdeczko) [Orabug: 38324148] {CVE-2025-38511}
- nbd修复 nbd_genl_connect() 错误路径中的 uaf (Zheng Qixing) [Orabug: 38254100] {CVE-2025-38443}
- wifimt76mt7925修复 mt7925_thermal_init() 中的 null-ptr-deref (Henry Martin) [Orabug: 38324286] {CVE-2025-38541}
- raid10清除 raid10_make_request 中的内存泄漏 (Nigel Croxon) [Orabug: 38254103] {CVE-2025-38444}
- md/raid1修复 raid1_reshape 中返回后堆栈内存的使用 (Wang Jinchao) [Orabug: 38254107] {CVE-2025-38445}
- drm/tegranvdec修复 dma_alloc_coherent 错误检查 (Mikko Perttunen) [Orabug: 38324294] {CVE-2025-38543}
- wifizd1211rw修复 zd_mac_tx_to_dev() 中潜在的空指针取消引用 (Daniil Dulov) [Orabug
38324159] {CVE-2025-38513}
- clkimx修复 dispmix_csr_clk_dev_data 中的越界访问 (Xiaolei Wang) [Orabug: 38254112] {CVE-2025-38446}
- lib/alloc_tag不在 alloc_tag_top_users() 中获取不存在的锁定 (Harry Yoo) [Orabug: 38324192] {CVE-2025-38517}
- usbgadgetu_serial修复 TTY 唤醒中的争用条件 (Kuen-Han Tsai) [Orabug: 38254116] {CVE-2025-38448}
- drm/sched交换尾部 spsc 队列前增加作业计数 (Matthew Brost) [Orabug38324178] {CVE-2025-38515}
- drm/gem获取 GEM 句柄上的引用以用于帧缓冲区 (Thomas Zimmermann) [Orabug: 38254122] {CVE-2025-38449}
- drm/amdkfd不要从 MMU 通知程序回调调用 mmput (Philip Yang) [Orabug: 38324196] {CVE-2025-38520}
- drm/imagination修复硬重置 GPU 时的内核崩溃 (Alessio Belle) [Orabug: 38324199] {CVE-2025-38521}
- wifimt76mt7925防止 mt7925_sta_set_decap_offload() 中的空指针取消引用 (Deren Wu) [Orabug: 38254130] {CVE-2025-38450}
- wifimwifiex丢弃 STA 接口上错误的 disassoc 帧 (Vitor Soares) [Orabug38324132] {CVE-2025-38505}
- wifi防止网状网络中的 A-MSDU 攻击 (Mathy Vanhoef) [Orabug38324151] {CVE-2025-38512}
- pinctrlqcommsm将某些引脚标记为对中断无效 (Bartosz Golaszewski) [Orabug: 38324184] {CVE-2025-38516}
- netethernetrtsn修复 rtsn_probe() 中的空指针取消引用 (Haoxiang Li) [Orabug: 38254133] {CVE-2025-38452}
- ALSAad1816a修复 snd_card_ad1816a_pnp() 中潜在的空指针取消引用 (Thorsten Blum) [Orabug
38254137] {CVE-2025-38454}
- KVM设置每页内存属性时允许 CPU 重新计划 (Liam Merwick) [Orabug: 38324134] {CVE-2025-38506}
- KVMSVM如果 vCPU 创建正在进行中则拒绝 SEV{-ES} 内部主机迁移 (Sean Christopherson) [Orabug: 38254139] {CVE-2025-38455}
- ipmi:msghandler修复 ipmi_create_user() 中可能的内存损坏 (Dan Carpenter) [Orabug
38254142] {CVE-2025-38456}
- rxrpc修复因不存在 prealloc backlog 结构而导致的 oops (David Howells) [Orabug: 38324168] {CVE-2025-38514}
- rxrpc修复因 prealloc 冲突而导致的缺陷 (David Howells) [Orabug: 38324296] {CVE-2025-38544}
- net/sched如果父类不存在则中止 __tc_modify_qdisc (Victor Nogueira) [Orabug: 38254145] {CVE-2025-38457}
- netethernettiam65-cpsw-nuss通过考虑 skb_shared_info 修复 skb 大小 (Chintan Vankar) [Orabug: 38324304] {CVE-2025-38545}
- atmclip修复 vcc_sendmsg() 中的空指针取消引用 (Yue Haibing) [Orabug: 38254151] {CVE-2025-38458}
- atmclip修复 clip_push() 的无限递归调用。(Kuniyuki Iwashima) [Orabug: 38254159] {CVE-2025-38459}
- atmclip修复 struct clip_vcc 的内存泄漏。(Kuniyuki Iwashima) [Orabug: 38324307] {CVE-2025-38546}
- atmclip修复 to_atmarpd() 中潜在的 null-ptr-deref。(Kuniyuki Iwashima) [Orabug: 38254165] {CVE-2025-38460}
- vsock修复 transport_* TOCTOU (Michal Luczaj) [Orabug: 38254171] {CVE-2025-38461}
- vsock修复 transport_{g2h,h2g} TOCTOU (Michal Luczaj) [Orabug: 38254174] {CVE-2025-38462}
- tcp修正 skb 剩余空间计算中的符号 (Jiayuan Chen) [Orabug: 38254177] {CVE-2025-38463}
- tipc修复 tipc_conn_close() 中的释放后使用。(Kuniyuki Iwashima) [Orabug: 38254179] {CVE-2025-38464}
- netlink修复 sk->sk_rmem_alloc 的回绕。(Kuniyuki Iwashima) [Orabug38254186] {CVE-2025-38465}
- perf恢复 uprobe 时需要 CAP_SYS_ADMIN (Peter Zijlstra) [Orabug: 38254195] {CVE-2025-38466}
- drm/amdgpu针对 RLCG 寄存器访问将 Mutex 替换为 spinlock 以避免 SRIOV 中的优先级反转 (Srinivasan Shanmugam) [Orabug: 37855415] {CVE-2025-38104}
- drm/exynosexynos7_drm_decon在 IRQ 处理中添加 vblank 检查 (Kaustabh Chakraborty) [Orabug
38254201] {CVE-2025-38467}
- eventpoll仍然保留 ep 互斥体时不减少 ep refcount (Linus Torvalds) [Orabug
38209551] {CVE-2025-38349}
- x86/缺陷添加临时计划程序攻击缓解措施 (Borislav Petkov) [Orabug38023239、38129827] {CVE-2024-36350、CVE-2024-36357}
- x86/缺陷将 MDS 机制重命名为更通用的名称 (Borislav Petkov) [Orabug38023239,38129827] {CVE-2024-36350,CVE-2024-36357}
- mmuserfaultfd修复 userfaultfd_move 和交换缓存的争用 (Kairui Song) [Orabug: 38175034] {CVE-2025-38242}
- mm/vmalloc修复 show_numa_info() 中的数据争用 (Jeongjun Park) [Orabug38253860] {CVE-2025-38383}
- usbtypecdisplayport修复潜在死锁 (Andrei Kuchynski) [Orabug: 38254393] {CVE-2025-38404}
- riscvcpu_ops_sbi将静态数组用于 boot_data (Vivia Wang) [Orabug: 38253953] {CVE-2025-38407}
- opteeffa修复 atomic 上下文中的休眠 (Jens Wiklander) [Orabug: 38253830] {CVE-2025-38374}
- i2c/designware修复初始化问题 (Michael J. Ruhl) [Orabug: 38253849] {CVE-2025-38380}
- usbchipidea: udc暂停/恢复时与主机的断开连接/重新连接 (Xu Yang) [Orabug: 38253838] {CVE-2025-38376}
- IB/mlx5修复 MR 取消注册中的潜在死锁或 Har-Toov[Orabug38253826] {CVE-2025-38373}
- fs导出 anon_inode_make_secure_inode() 并修复 secretmem LSM 绕过 (Shivank Garg) [Orabug: 38253909] {CVE-2025-38396}
- mtdspinand修复 ECC 引擎配置的内存泄漏 (Pablo Martin-Gomez) [Orabug38253862] {CVE-2025-38384}
- ACPICA如果缺少参数则拒绝评估方法 (Rafael J. Wysocki) [Orabug: 38253873] {CVE-2025-38386}
- wifiath6kl删除有关错误固件输入的 WARN (Johannes Berg) [Orabug: 38253944] {CVE-2025-38406}
- scsitarget修复 core_scsi3_decode_spec_i_port() 中的空指针取消引用 (Maurizio Lombardi) [Orabug: 38253913] {CVE-2025-38399}
- genirq/irq_sim正确初始化工作环境指针 (Gyeyoung Baek) [Orabug: 38253955] {CVE-2025-38408}
- drm/msm修复提交错误路径中的其他泄漏 (Rob Clark) [Orabug38253959] {CVE-2025-38409}
- drm/msm修复提交错误路径中的隔离泄漏 (Rob Clark) [Orabug38253966] {CVE-2025-38410}
- drm/amd/display为 DSC / HUBP ONO 保证添加更多检查 (Nicholas Kazlauskas) [Orabug: 38253787] {CVE-2025-38360}
- drm/xe/guc展开时明确退出 CT 安全模式 (Michal Wajdeczko) [Orabug: 38253775] {CVE-2025-38356}
- netfs修复写入重试中因错误重置 subreq 迭代器而造成的 oops (David Howells) [Orabug: 38153033] {CVE-2025-38139}
- bpf在精确回溯簿记中不包括堆栈 ptr 寄存器 (Yonghong Song) [Orabug
38180467] {CVE-2025-38279}
- scsilpfc避免 dev_loss_tmo_callbk 中可能发生的 ndlp 释放后使用 (Justin Tee) [Orabug: 38180503] {CVE-2025-38289}
- net/sched当子类变为空时始终传递通知 (Lion Ackermann) [Orabug: 38217337] {CVE-2025-38350}
- rose修复 rose_rt_device_down() 中的悬摆邻居指针 (Kohei Enju) [Orabug: 38253840] {CVE-2025-38377}
- idpf将控制队列互斥体转换为旋转锁 (Ahmed Zaki) [Orabug: 38253897] {CVE-2025-38392}
- idpf如果不受支持则为 RSS 密钥返回 0 大小 (Michal Swiatkowski) [Orabug: 38253932] {CVE-2025-38402}
- drm/i915/gt修复 VMA 分配错误上保留的时间线 (Janusz Krzysztofik) [Orabug38253885] {CVE-2025-38389}
- netusblan78xx修复断开连接时 __netif_napi_del_locked 中的 WARN (Oleksij Rempel) [Orabug: 38253870] {CVE-2025-38385}
- smb 客户端重新连接通道时修复警告 (Paulo Alcantara) [Orabug: 38254386] {CVE-2025-38379}
- platform/x86dell-wmi-sysman修复 sysfs 回调中的 WMI 数据块检索 (Kurt Borja) [Orabug
38253975] {CVE-2025-38412}
- nvmet修复 bio 完整性的内存泄漏 (Dmitry Bogdanov) [Orabug38253942] {CVE-2025-38405}
- btrfs修复日志重播期间无效的 inode 指针取消引用 (Filipe Manana) [Orabug38288149] {CVE-2025-38243}
- btrfs修复日志重播期间的 extrefs 迭代 (Filipe Manana) [Orabug38253858] {CVE-2025-38382}
- NFSv4/pNFS修复 NFS_LAYOUT_DRAIN 上的唤醒争用 (Benjamin Coddington) [Orabug: 38253899] {CVE-2025-38393}
- nfs当 nfs_fs_proc_net_init() 失败时清理 /proc/net/rpc/nfs。(Kuniyuki Iwashima) [Orabug
38253921] {CVE-2025-38400}
- RDMA/mlx5xa_insert 之前初始化 obj_event->obj_sub_list (Mark Zhang) [Orabug: 38253879] {CVE-2025-38387}
- RDMA/mlx5修复隐式 ODP 处理中不安全的 xarray 访问 (Or Har-Toov) [Orabug38253824] {CVE-2025-38372}
- firmwarearm_ffa将互斥体替换为 rwlock以避免 atomic 上下文中的休眠 (Sudeep Holla) [Orabug
38253883] {CVE-2025-38388}
- firmwarearm_ffa通过释放通知程序回调节点修复内存泄漏 (Sudeep Holla) [Orabug38253890] {CVE-2025-38390}
- drm/v3d重置 GPU 之前禁用中断 (Maira Canal) [Orabug: 38253819] {CVE-2025-38371}
- mtk-sd防止 DMA 映射失败导致的内存损坏 (Masami Hiramatsu) [Orabug: 38253926] {CVE-2025-38401}
- usbtypecaltmodes/displayport不为无效的 pin_assignments 编制索引 (Rd Babiera) [Orabug: 38253892] {CVE-2025-38391}
- Inputcs40l50-vibra - 修复 cs40l50_upload_owt() 中潜在的空取消引用 (Yunshui) [Orabug
38253852] {CVE-2025-38381}
- regulatorgpio修复对 drvdata::gpiods 的越界访问 (Manivannan Sadhasivam) [Orabug
38253905] {CVE-2025-38395}
- vsock/vmci在初始化 vmci 传输数据包时正确清除 vmci 传输数据包 (Harshavardhana SA) [Orabug:
38253935] {CVE-2025-38403}
- virtio-net确保接收的长度不超过分配的大小 (Bui Quang Minh) [Orabug:
38253832] {CVE-2025-38375}
- virtio-netxskrx修复帧的长度检查 (Bui Quang Minh) [Orabug: 38253978] {CVE-2025-38413}
Tenable 已直接从 Oracle Linux 安全公告中提取上述描述块。
请注意,Nessus 尚未测试这些问题,而是只依据应用程序自我报告的版本号进行判断。
解决方案
更新受影响的程序包。另见
插件详情
严重性: Medium
ID: 261833
文件名: oraclelinux_ELSA-2025-20551.nasl
版本: 1.2
类型: local
代理: unix
发布时间: 2025/9/9
最近更新时间: 2025/9/10
支持的传感器: Frictionless Assessment Agent, Nessus Agent, Continuous Assessment, Nessus
风险信息
VPR
风险因素: Critical
分数: 9.0
CVSS v2
风险因素: Medium
基本分数: 4.6
时间分数: 3.8
矢量: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C
CVSS 分数来源: CVE-2025-23137
CVSS v3
风险因素: Medium
基本分数: 5.5
时间分数: 5.1
矢量: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
时间矢量: CVSS:3.0/E:F/RL:O/RC:C
漏洞信息
CPE: p-cpe:/a:oracle:linux:kernel-uek-debug-modules-usb, p-cpe:/a:oracle:linux:kernel-uek-modules-deprecated, p-cpe:/a:oracle:linux:kernel-uek-modules-desktop, p-cpe:/a:oracle:linux:kernel-uek-modules-wireless, p-cpe:/a:oracle:linux:kernel-uek64k-core, p-cpe:/a:oracle:linux:kernel-uek-debug-modules-wireless, p-cpe:/a:oracle:linux:kernel-uek64k-modules-extra-netfilter, p-cpe:/a:oracle:linux:kernel-uek64k-modules-desktop, p-cpe:/a:oracle:linux:kernel-uek-debug-modules-extra, p-cpe:/a:oracle:linux:kernel-uek-doc, cpe:/o:oracle:linux:9, p-cpe:/a:oracle:linux:kernel-uek-debug-core, p-cpe:/a:oracle:linux:kernel-uek-modules, p-cpe:/a:oracle:linux:kernel-uek64k-modules-usb, p-cpe:/a:oracle:linux:kernel-uek-debug-modules-extra-netfilter, p-cpe:/a:oracle:linux:kernel-uek-debug-modules, p-cpe:/a:oracle:linux:kernel-uek-debug, p-cpe:/a:oracle:linux:kernel-uek64k-modules-core, p-cpe:/a:oracle:linux:kernel-uek-devel, p-cpe:/a:oracle:linux:kernel-uek-tools, p-cpe:/a:oracle:linux:kernel-uek64k-modules-wireless, p-cpe:/a:oracle:linux:kernel-uek-debug-modules-deprecated, p-cpe:/a:oracle:linux:kernel-uek64k-modules-deprecated, p-cpe:/a:oracle:linux:kernel-uek-modules-core, p-cpe:/a:oracle:linux:kernel-uek, p-cpe:/a:oracle:linux:kernel-uek-debug-modules-core, p-cpe:/a:oracle:linux:kernel-uek64k-modules, p-cpe:/a:oracle:linux:kernel-uek-modules-extra, p-cpe:/a:oracle:linux:kernel-uek64k-modules-extra, p-cpe:/a:oracle:linux:kernel-uek-modules-usb, cpe:/o:oracle:linux:10, p-cpe:/a:oracle:linux:kernel-uek-debug-devel, p-cpe:/a:oracle:linux:kernel-uek-debug-modules-desktop, p-cpe:/a:oracle:linux:kernel-uek64k-devel, p-cpe:/a:oracle:linux:kernel-uek-modules-extra-netfilter, p-cpe:/a:oracle:linux:kernel-uek-core, p-cpe:/a:oracle:linux:kernel-uek64k
必需的 KB 项: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/OracleLinux
可利用: true
易利用性: Exploits are available
补丁发布日期: 2025/9/8
漏洞发布日期: 2024/10/21
CISA 已知可遭利用的漏洞到期日期: 2025/9/25
参考资料信息
CVE: CVE-2024-36350, CVE-2024-36357, CVE-2024-49929, CVE-2024-57976, CVE-2024-58091, CVE-2025-21879, CVE-2025-21942, CVE-2025-22112, CVE-2025-22115, CVE-2025-22119, CVE-2025-23137, CVE-2025-23155, CVE-2025-37984, CVE-2025-38067, CVE-2025-38083, CVE-2025-38084, CVE-2025-38085, CVE-2025-38086, CVE-2025-38087, CVE-2025-38091, CVE-2025-38094, CVE-2025-38095, CVE-2025-38096, CVE-2025-38097, CVE-2025-38098, CVE-2025-38099, CVE-2025-38100, CVE-2025-38101, CVE-2025-38102, CVE-2025-38103, CVE-2025-38104, CVE-2025-38106, CVE-2025-38107, CVE-2025-38108, CVE-2025-38109, CVE-2025-38110, CVE-2025-38111, CVE-2025-38112, CVE-2025-38113, CVE-2025-38115, CVE-2025-38117, CVE-2025-38118, CVE-2025-38119, CVE-2025-38120, CVE-2025-38122, CVE-2025-38124, CVE-2025-38125, CVE-2025-38126, CVE-2025-38127, CVE-2025-38129, CVE-2025-38134, CVE-2025-38141, CVE-2025-38146, CVE-2025-38147, CVE-2025-38148, CVE-2025-38149, CVE-2025-38151, CVE-2025-38154, CVE-2025-38155, CVE-2025-38157, CVE-2025-38159, CVE-2025-38160, CVE-2025-38161, CVE-2025-38162, CVE-2025-38165, CVE-2025-38166, CVE-2025-38169, CVE-2025-38170, CVE-2025-38174, CVE-2025-38177, CVE-2025-38179, CVE-2025-38180, CVE-2025-38181, CVE-2025-38184, CVE-2025-38185, CVE-2025-38186, CVE-2025-38188, CVE-2025-38190, CVE-2025-38192, CVE-2025-38193, CVE-2025-38194, CVE-2025-38197, CVE-2025-38198, CVE-2025-38200, CVE-2025-38201, CVE-2025-38202, CVE-2025-38208, CVE-2025-38210, CVE-2025-38211, CVE-2025-38212, CVE-2025-38214, CVE-2025-38215, CVE-2025-38216, CVE-2025-38217, CVE-2025-38220, CVE-2025-38222, CVE-2025-38223, CVE-2025-38229, CVE-2025-38231, CVE-2025-38232, CVE-2025-38236, CVE-2025-38238, CVE-2025-38239, CVE-2025-38242, CVE-2025-38243, CVE-2025-38244, CVE-2025-38245, CVE-2025-38246, CVE-2025-38249, CVE-2025-38250, CVE-2025-38251, CVE-2025-38253, CVE-2025-38255, CVE-2025-38256, CVE-2025-38258, CVE-2025-38260, CVE-2025-38263, CVE-2025-38264, CVE-2025-38265, CVE-2025-38267, CVE-2025-38268, CVE-2025-38269, CVE-2025-38270, CVE-2025-38273, CVE-2025-38279, CVE-2025-38280, CVE-2025-38282, CVE-2025-38285, CVE-2025-38288, CVE-2025-38289, CVE-2025-38293, CVE-2025-38298, CVE-2025-38302, CVE-2025-38303, CVE-2025-38304, CVE-2025-38305, CVE-2025-38307, CVE-2025-38310, CVE-2025-38312, CVE-2025-38315, CVE-2025-38319, CVE-2025-38320, CVE-2025-38321, CVE-2025-38323, CVE-2025-38324, CVE-2025-38326, CVE-2025-38328, CVE-2025-38332, CVE-2025-38334, CVE-2025-38336, CVE-2025-38337, CVE-2025-38338, CVE-2025-38342, CVE-2025-38344, CVE-2025-38345, CVE-2025-38346, CVE-2025-38348, CVE-2025-38349, CVE-2025-38350, CVE-2025-38352, CVE-2025-38354, CVE-2025-38360, CVE-2025-38361, CVE-2025-38362, CVE-2025-38363, CVE-2025-38364, CVE-2025-38365, CVE-2025-38369, CVE-2025-38372, CVE-2025-38373, CVE-2025-38374, CVE-2025-38375, CVE-2025-38379, CVE-2025-38380, CVE-2025-38382, CVE-2025-38383, CVE-2025-38385, CVE-2025-38386, CVE-2025-38387, CVE-2025-38389, CVE-2025-38391, CVE-2025-38392, CVE-2025-38393, CVE-2025-38395, CVE-2025-38396, CVE-2025-38399, CVE-2025-38400, CVE-2025-38402, CVE-2025-38403, CVE-2025-38404, CVE-2025-38405, CVE-2025-38406, CVE-2025-38409, CVE-2025-38410, CVE-2025-38412, CVE-2025-38413, CVE-2025-38415, CVE-2025-38417, CVE-2025-38418, CVE-2025-38419, CVE-2025-38420, CVE-2025-38424, CVE-2025-38425, CVE-2025-38427, CVE-2025-38430, CVE-2025-38436, CVE-2025-38438, CVE-2025-38439, CVE-2025-38440, CVE-2025-38441, CVE-2025-38443, CVE-2025-38444, CVE-2025-38445, CVE-2025-38449, CVE-2025-38451, CVE-2025-38455, CVE-2025-38456, CVE-2025-38457, CVE-2025-38458, CVE-2025-38459, CVE-2025-38460, CVE-2025-38461, CVE-2025-38462, CVE-2025-38463, CVE-2025-38464, CVE-2025-38465, CVE-2025-38466, CVE-2025-38467, CVE-2025-38468, CVE-2025-38470, CVE-2025-38471, CVE-2025-38472, CVE-2025-38473, CVE-2025-38474, CVE-2025-38477, CVE-2025-38488, CVE-2025-38491, CVE-2025-38493, CVE-2025-38494, CVE-2025-38495, CVE-2025-38496, CVE-2025-38498, CVE-2025-38499, CVE-2025-38503, CVE-2025-38505, CVE-2025-38506, CVE-2025-38512, CVE-2025-38513, CVE-2025-38515, CVE-2025-38516, CVE-2025-38520, CVE-2025-38523, CVE-2025-38526, CVE-2025-38527, CVE-2025-38528, CVE-2025-38531, CVE-2025-38535, CVE-2025-38537, CVE-2025-38539, CVE-2025-38540, CVE-2025-38543, CVE-2025-38546, CVE-2025-38547, CVE-2025-38549, CVE-2025-38550, CVE-2025-38551, CVE-2025-38552