[Apollo] Advisories Statistics light light Login

RLSA-2025:22387

Security Mirrored from RHSA-2025:22387
Issued at: 2025-12-04
Updated at: 2025-12-07

Synopsis

Moderate: kernel-rt security update



Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* kernel: nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm() (CVE-2025-38724)

* kernel: smb: client: fix race with concurrent opens in rename(2) (CVE-2025-39825)

* kernel: mm/memory-failure: fix VM_BUG_ON_PAGE(PagePoisoned(page)) when unpoison memory (CVE-2025-39883)

* kernel: e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898)

* kernel: nbd: fix incomplete validation of ioctl arg (CVE-2023-53513)

* kernel: tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 x86_64

Fixes

2393172 2395792 2397553 2400598 2400795 2402699

CVEs

CVE-2023-53513 CVE-2025-38724 CVE-2025-39825 CVE-2025-39883 CVE-2025-39898 CVE-2025-39955

Affected packages

Rocky Linux 8 x86_64 - NFV

kernel-rt-0:4.18.0-553.87.1.rt7.428.el8_10.src.rpm kernel-rt-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-core-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-core-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-debuginfo-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-devel-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debuginfo-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debuginfo-common-x86_64-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-kvm-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-modules-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-modules-extra-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-devel-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-kvm-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-modules-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-modules-extra-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm

Rocky Linux 8 x86_64 - RT

kernel-rt-0:4.18.0-553.87.1.rt7.428.el8_10.src.rpm kernel-rt-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-core-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-core-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-debuginfo-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-devel-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debuginfo-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debuginfo-common-x86_64-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-modules-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-debug-modules-extra-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-devel-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-kvm-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-modules-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm kernel-rt-modules-extra-0:4.18.0-553.87.1.rt7.428.el8_10.x86_64.rpm