SB2025052345 - openEuler 20.03 LTS SP4 update for kernel

Main Vulnerability Database SB2025052345

SB2025052345 - openEuler 20.03 LTS SP4 update for kernel

Published: May 23, 2025

Security Bulletin ID SB2025052345

Severity

Low

Patch available

YES

Number of vulnerabilities 7

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 7 secuirty vulnerabilities.

1) Memory leak (CVE-ID: CVE-2022-49821)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the mISDN_dsp_element_register() and device_unregister() functions in drivers/isdn/mISDN/dsp_pipeline.c. A local user can perform a denial of service (DoS) attack.

2) NULL pointer dereference (CVE-ID: CVE-2022-49832)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the pinctrl_dt_to_map() function in drivers/pinctrl/devicetree.c. A local user can perform a denial of service (DoS) attack.

3) Out-of-bounds read (CVE-ID: CVE-2022-49846)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the udf_find_entry() function in fs/udf/namei.c. A local user can perform a denial of service (DoS) attack.

4) NULL pointer dereference (CVE-ID: CVE-2023-53091)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ext4_load_journal() function in fs/ext4/super.c. A local user can perform a denial of service (DoS) attack.

5) Out-of-bounds read (CVE-ID: CVE-2024-57982)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the xfrm_state_deref_prot(), xfrm_dst_hash(), xfrm_src_hash(), xfrm_spi_hash(), xfrm_init_tempstate(), __xfrm_state_lookup_all(), xfrm_input_state_lookup(), EXPORT_SYMBOL(), __xfrm_state_lookup_byaddr(), xfrm_state_find(), xfrm_state_lookup() and xfrm_state_lookup_byaddr() functions in net/xfrm/xfrm_state.c. A local user can perform a denial of service (DoS) attack.

6) Use-after-free (CVE-ID: CVE-2025-23150)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the do_split() function in fs/ext4/namei.c. A local user can escalate privileges on the system.

7) Input validation error (CVE-ID: CVE-2025-37839)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the jbd2_journal_update_sb_log_tail() function in fs/jbd2/journal.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1541

Vulnerable Software

openEuler: 20.03 LTS SP4
python3-perf-debuginfo: before 4.19.90-2505.4.0.0328
python3-perf: before 4.19.90-2505.4.0.0328
python2-perf-debuginfo: before 4.19.90-2505.4.0.0328
python2-perf: before 4.19.90-2505.4.0.0328
perf-debuginfo: before 4.19.90-2505.4.0.0328
perf: before 4.19.90-2505.4.0.0328
kernel-tools-devel: before 4.19.90-2505.4.0.0328
kernel-tools-debuginfo: before 4.19.90-2505.4.0.0328
kernel-tools: before 4.19.90-2505.4.0.0328
kernel-source: before 4.19.90-2505.4.0.0328
kernel-devel: before 4.19.90-2505.4.0.0328
kernel-debugsource: before 4.19.90-2505.4.0.0328
kernel-debuginfo: before 4.19.90-2505.4.0.0328
bpftool-debuginfo: before 4.19.90-2505.4.0.0328
bpftool: before 4.19.90-2505.4.0.0328
kernel: before 4.19.90-2505.4.0.0328