ALSA-2025%3A1068 — Vulnetix

ALSA-2025%3A1068 PUBLISHED

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: scsi: core: Fix unremoved procfs host directory regression (CVE-2024-26935) * kernel: arm64/sve: Discard stale CPU state when handling SVE traps (CVE-2024-50275) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected Products

Vendor	Product	Versions
AlmaLinux:8	kernel-zfcpdump-modules-extra	0, 0
AlmaLinux:8	bpftool	0, 0
AlmaLinux:8	kernel	0, 0
AlmaLinux:8	kernel-debug-modules	0, 0
AlmaLinux:8	kernel-headers	0, 0
AlmaLinux:8	kernel-zfcpdump-core	0, 0
AlmaLinux:8	kernel-tools-libs-devel	0, 0
AlmaLinux:8	kernel-zfcpdump	0, 0
AlmaLinux:8	kernel-debug-core	0, 0
AlmaLinux:8	perf	0, 0
AlmaLinux:8	kernel-modules	0, 0
AlmaLinux:8	kernel-cross-headers	0, 0
AlmaLinux:8	python3-perf	0, 0
AlmaLinux:8	kernel-doc	0, 0
AlmaLinux:8	kernel-zfcpdump-modules	0, 0
AlmaLinux:8	kernel-zfcpdump-devel	0, 0
AlmaLinux:8	kernel-devel	0, 0
AlmaLinux:8	kernel-abi-stablelists	0, 0
AlmaLinux:8	kernel-modules-extra	0, 0
AlmaLinux:8	kernel-debug-modules-extra	0, 0

…and 5 more

Exploit Intelligence

USN-7389-1.json (github-poc)
USN-7389-1.json (github-poc)

Timeline

Feb 5, 2025 CVE Published
Feb 8, 2025 CVE Updated
Mar 6, 2026 Distribution Patch
Mar 6, 2026 Distribution Patch
Mar 6, 2026 Security Advisory

References

https://access.redhat.com/errata/RHSA-2025:1068 vendor-advisory
https://access.redhat.com/security/cve/CVE-2024-26935 third-party-advisory
https://access.redhat.com/security/cve/CVE-2024-50275 third-party-advisory
https://bugzilla.redhat.com/2278235 third-party-advisory
https://bugzilla.redhat.com/2327198 third-party-advisory
https://errata.almalinux.org/8/ALSA-2025-1068.html vendor-advisory

Open in Interactive Console →