[Apollo] Advisories Statistics light light Login

RLSA-2025:12753

Security Mirrored from RHSA-2025:12753
Issued at: 2025-09-08
Updated at: 2025-09-08

Synopsis

Important: kernel-rt security update



Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* kernel: HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove() (CVE-2025-21928)

* kernel: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove (CVE-2025-22020)

* kernel: net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc (CVE-2025-37890)

* kernel: net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done (CVE-2025-38052)

* kernel: crypto: algif_hash - fix double free in hash_accept (CVE-2025-38079)

* kernel: ext4: avoid resizing to a partial cluster size (CVE-2022-50020)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 x86_64

Fixes

2356592 2360099 2366848 2373380 2373383 2373630

CVEs

CVE-2022-50020 CVE-2025-21928 CVE-2025-22020 CVE-2025-37890 CVE-2025-38052 CVE-2025-38079

Affected packages

Rocky Linux 8 x86_64 - NFV

kernel-rt-0:4.18.0-553.66.1.rt7.407.el8_10.src.rpm kernel-rt-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-core-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-core-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-debuginfo-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-devel-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debuginfo-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debuginfo-common-x86_64-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-kvm-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-modules-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-modules-extra-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-devel-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-kvm-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-modules-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-modules-extra-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm

Rocky Linux 8 x86_64 - RT

kernel-rt-0:4.18.0-553.66.1.rt7.407.el8_10.src.rpm kernel-rt-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-core-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-core-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-debuginfo-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-devel-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debuginfo-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debuginfo-common-x86_64-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-modules-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-debug-modules-extra-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-devel-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-kvm-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-modules-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm kernel-rt-modules-extra-0:4.18.0-553.66.1.rt7.407.el8_10.x86_64.rpm