Main Vulnerability Database SB2026031618

SB2026031618 - Anolis OS update for kernel:3.10

Published: March 16, 2026

Security Bulletin ID SB2026031618

CSH Severity

Low

Patch available

YES

Number of vulnerabilities 6

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 6 vulnerabilities.

1) Out-of-bounds read (CVE-ID: CVE-2022-48701)

CWE-ID: CWE-125 - Out-of-bounds read

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the snd_usb_parse_audio_interface() function in sound/usb/stream.c. A local user can perform a denial of service (DoS) attack.

2) Use-after-free (CVE-ID: CVE-2022-50211)

CWE-ID: CWE-416 - Use After Free

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the raid10_remove_disk() function in drivers/md/raid10.c. A local user can escalate privileges on the system.

3) Use-after-free (CVE-ID: CVE-2022-50229)

CWE-ID: CWE-416 - Use After Free

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the bcd2000_init_midi() function in sound/usb/bcd2000/bcd2000.c. A local user can escalate privileges on the system.

4) Memory leak (CVE-ID: CVE-2023-53125)

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the smsc75xx_rx_fixup() function in drivers/net/usb/smsc75xx.c. A local user can perform a denial of service (DoS) attack.

5) Integer underflow (CVE-ID: CVE-2025-38200)

CWE-ID: CWE-191 - Integer underflow

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a local user to execute arbitrary code.

The vulnerability exists due to integer underflow within the i40e_pf_reset() function in drivers/net/ethernet/intel/i40e/i40e_common.c. A local user can execute arbitrary code.

6) Use-after-free (CVE-ID: CVE-2025-38477)

CWE-ID: CWE-416 - Use After Free

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the qfq_change_class(), qfq_delete_class(), qfq_dump_class() and qfq_dump_class_stats() functions in net/sched/sch_qfq.c. A local user can escalate privileges on the system.

Remediation

Install update from vendor's website.

References

https://anas.openanolis.cn/errata/detail/ANSA-2026:0309

Vulnerable Software

Anolis OS: 7
bpftool: before 3.10.0-1160.141.1
kernel: before 3.10.0-1160.141.1
kernel-debug: before 3.10.0-1160.141.1
kernel-debug-devel: before 3.10.0-1160.141.1
kernel-devel: before 3.10.0-1160.141.1
kernel-headers: before 3.10.0-1160.141.1
kernel-tools: before 3.10.0-1160.141.1
kernel-tools-libs: before 3.10.0-1160.141.1
kernel-tools-libs-devel: before 3.10.0-1160.141.1
perf: before 3.10.0-1160.141.1
python-perf: before 3.10.0-1160.141.1
kernel-abi-whitelists: before 3.10.0-1160.141.1
kernel-doc: before 3.10.0-1160.141.1

SB2026031618 - Anolis OS update for kernel:3.10

Breakdown by Severity

Description

Remediation

References

Please verify you're human