Main Vulnerability Database SB2025041866

SB2025041866 - openEuler 22.03 LTS SP3 update for kernel

Published: April 18, 2025

Security Bulletin ID SB2025041866

Severity

Low

Patch available

YES

Number of vulnerabilities 6

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 6 secuirty vulnerabilities.

1) Memory leak (CVE-ID: CVE-2022-49246)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the snd_proto_probe() function in sound/soc/atmel/mikroe-proto.c. A local user can perform a denial of service (DoS) attack.

2) Use-after-free (CVE-ID: CVE-2022-49328)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the mt76_txq_stopped() and mt76_txq_schedule_list() functions in drivers/net/wireless/mediatek/mt76/tx.c, within the mt7921_add_interface() function in drivers/net/wireless/mediatek/mt76/mt7921/main.c, within the mt7915_add_interface() function in drivers/net/wireless/mediatek/mt76/mt7915/main.c, within the mt76x02_vif_init() and mt76x02_remove_interface() functions in drivers/net/wireless/mediatek/mt76/mt76x02_util.c, within the mt7615_add_interface() function in drivers/net/wireless/mediatek/mt76/mt7615/main.c, within the mt7603_add_interface() function in drivers/net/wireless/mediatek/mt76/mt7603/main.c, within the mt76_sta_add() function in drivers/net/wireless/mediatek/mt76/mac80211.c. A local user can escalate privileges on the system.

3) NULL pointer dereference (CVE-ID: CVE-2023-52870)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the clk_mt6765_apmixed_probe(), clk_mt6765_top_probe() and clk_mt6765_ifr_probe() functions in drivers/clk/mediatek/clk-mt6765.c. A local user can perform a denial of service (DoS) attack.

4) Use-after-free (CVE-ID: CVE-2024-57980)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the uvc_status_init() function in drivers/media/usb/uvc/uvc_status.c. A local user can escalate privileges on the system.

5) Use-after-free (CVE-ID: CVE-2025-21858)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the geneve_destroy_tunnels() function in drivers/net/geneve.c. A local user can escalate privileges on the system.

6) Use-after-free (CVE-ID: CVE-2025-21928)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ishtp_hid_remove() function in drivers/hid/intel-ish-hid/ishtp-hid.c. A local user can escalate privileges on the system.

Remediation

Install update from vendor's website.

References

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1433

Vulnerable Software

openEuler: 22.03 LTS SP3
python3-perf-debuginfo: before 5.10.0-260.0.0.162
python3-perf: before 5.10.0-260.0.0.162
perf-debuginfo: before 5.10.0-260.0.0.162
perf: before 5.10.0-260.0.0.162
kernel-tools-devel: before 5.10.0-260.0.0.162
kernel-tools-debuginfo: before 5.10.0-260.0.0.162
kernel-tools: before 5.10.0-260.0.0.162
kernel-source: before 5.10.0-260.0.0.162
kernel-headers: before 5.10.0-260.0.0.162
kernel-devel: before 5.10.0-260.0.0.162
kernel-debugsource: before 5.10.0-260.0.0.162
kernel-debuginfo: before 5.10.0-260.0.0.162
kernel: before 5.10.0-260.0.0.162

SB2025041866 - openEuler 22.03 LTS SP3 update for kernel

Breakdown by Severity

Description

Remediation

References

Please verify you're human