Amazon Linux 2 Security Advisory: ALAS2KERNEL-5.10-2026-123
Advisory Released Date: 2026-06-22
Advisory Updated Date: 2026-06-25
FAQs regarding Amazon Linux ALAS/CVE Severity
In the Linux kernel, the following vulnerability has been resolved:
IB/mad: Don't call to function that might sleep while in atomic context (CVE-2022-50472)
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Fix crash when I/O abort times out (CVE-2022-50493)
In the Linux kernel, the following vulnerability has been resolved:
blk-mq: use quiesced elevator switch when reinitializing queues (CVE-2022-50552)
In the Linux kernel, the following vulnerability has been resolved:
mm: fix zswap writeback race condition (CVE-2023-53178)
In the Linux kernel, the following vulnerability has been resolved:
blk-cgroup: Reinit blkg_iostat_set after clearing in blkcg_reset_stats() (CVE-2023-53421)
In the Linux kernel, the following vulnerability has been resolved:
page_pool: Fix use-after-free in page_pool_recycle_in_ring (CVE-2025-38129)
In the Linux kernel, the following vulnerability has been resolved:
gfs2: Validate i_depth for exhash directories (CVE-2025-38710)
In the Linux kernel, the following vulnerability has been resolved:
mm/damon/sysfs: fix use-after-free in state_show() (CVE-2025-39877)
In the Linux kernel, the following vulnerability has been resolved:
net/sched: cls_u32: use skb_header_pointer_careful() (CVE-2026-23204)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: unconditionally bump set->nelems before insertion (CVE-2026-23272)
In the Linux kernel, the following vulnerability has been resolved:
net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (CVE-2026-23340)
In the Linux kernel, the following vulnerability has been resolved:
ipv6: add NULL checks for idev in SRv6 paths (CVE-2026-23442)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: conntrack: add missing netlink policy validations (CVE-2026-31407)
In the Linux kernel, the following vulnerability has been resolved:
net: bonding: fix use-after-free in bond_xmit_broadcast() (CVE-2026-31419)
In the Linux kernel, the following vulnerability has been resolved:
can: raw: fix ro->uniq use-after-free in raw_rcv() (CVE-2026-31532)
In the Linux kernel, the following vulnerability has been resolved:
nilfs2: fix NULL i_assoc_inode dereference in nilfs_mdt_save_to_shadow_map (CVE-2026-31577)
In the Linux kernel, the following vulnerability has been resolved:
bcache: fix cached_dev.sb_bio use-after-free and crash (CVE-2026-31580)
In the Linux kernel, the following vulnerability has been resolved:
mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (CVE-2026-31586)
In the Linux kernel, the following vulnerability has been resolved:
KVM: x86: Use scratch field in MMIO fragment to hold small write values (CVE-2026-31588)
In the Linux kernel, the following vulnerability has been resolved:
KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION (CVE-2026-31590)
In the Linux kernel, the following vulnerability has been resolved:
usbip: validate number_of_packets in usbip_pack_ret_submit() (CVE-2026-31607)
In the Linux kernel, the following vulnerability has been resolved:
HID: core: clamp report_size in s32ton() to avoid undefined shift (CVE-2026-31624)
In the Linux kernel, the following vulnerability has been resolved:
rxrpc: fix reference count leak in rxrpc_server_keyring() (CVE-2026-31634)
In the Linux kernel, the following vulnerability has been resolved:
drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (CVE-2026-31656)
In the Linux kernel, the following vulnerability has been resolved:
xfrm: hold dev ref until after transport_finish NF_HOOK (CVE-2026-31663)
In the Linux kernel, the following vulnerability has been resolved:
xfrm: clear trailing padding in build_polexpire() (CVE-2026-31664)
In the Linux kernel, the following vulnerability has been resolved:
af_unix: read UNIX_DIAG_VFS data under unix_state_lock (CVE-2026-31673)
In the Linux kernel, the following vulnerability has been resolved:
rxrpc: only handle RESPONSE during service challenge (CVE-2026-31676)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: xt_multiport: validate range encoding in checkentry (CVE-2026-31681)
In the Linux kernel, the following vulnerability has been resolved:
net: sched: act_csum: validate nested VLAN headers (CVE-2026-31684)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: ip6t_eui64: reject invalid MAC header for all packets (CVE-2026-31685)
In the Linux kernel, the following vulnerability has been resolved:
rtnetlink: add missing netlink_ns_capable() check for peer netns (CVE-2026-31692)
In the Linux kernel, the following vulnerability has been resolved:
net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (CVE-2026-31700)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator (CVE-2026-43085)
In the Linux kernel, the following vulnerability has been resolved:
xfrm_user: fix info leak in build_mapping() (CVE-2026-43089)
In the Linux kernel, the following vulnerability has been resolved:
xsk: tighten UMEM headroom validation to account for tailroom and min frame (CVE-2026-43093)
In the Linux kernel, the following vulnerability has been resolved:
HID: roccat: fix use-after-free in roccat_report_event (CVE-2026-43111)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry (CVE-2026-43114)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: ctnetlink: ensure safe access to master conntrack (CVE-2026-43116)
In the Linux kernel, the following vulnerability has been resolved:
btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file() (CVE-2026-43117)
In the Linux kernel, the following vulnerability has been resolved:
mailbox: Prevent out-of-bounds access in fw_mbox_index_xlate() (CVE-2026-43281)
In the Linux kernel, the following vulnerability has been resolved:
crypto: pcrypt - Fix handling of MAY_BACKLOG requests (CVE-2026-43493)
In the Linux kernel, the following vulnerability has been resolved:
net/sched: sch_red: Replace direct dequeue call with peek and qdisc_dequeue_peeked (CVE-2026-43496)
In the Linux kernel, the following vulnerability has been resolved:
net/rds: handle zerocopy send cleanup before the message is queued (CVE-2026-43502)
In the Linux kernel, the following vulnerability has been resolved:
bpf: fix end-of-list detection in cgroup_storage_get_next_key() (CVE-2026-45838)
In the Linux kernel, the following vulnerability has been resolved:
openvswitch: cap upcall PID array size and pre-size vport replies (CVE-2026-45840)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO (CVE-2026-45841)
In the Linux kernel, the following vulnerability has been resolved:
slip: reject VJ receive packets on instances with no rstate array (CVE-2026-45842)
In the Linux kernel, the following vulnerability has been resolved:
slip: bound decode() reads against the compressed packet length (CVE-2026-45843)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: arp_tables: fix IEEE1394 ARP payload parsing (CVE-2026-45844)
In the Linux kernel, the following vulnerability has been resolved:
KVM: nSVM: Sync interrupt shadow to cached vmcb12 after VMRUN of L2 (CVE-2026-45987)
In the Linux kernel, the following vulnerability has been resolved:
ext2: reject inodes with zero i_nlink and valid mode in ext2_iget() (CVE-2026-46002)
In the Linux kernel, the following vulnerability has been resolved:
dm mirror: fix integer overflow in create_dirty_log() (CVE-2026-46023)
In the Linux kernel, the following vulnerability has been resolved:
crypto: authencesn - reject short ahash digests during instance creation (CVE-2026-46033)
In the Linux kernel, the following vulnerability has been resolved:
inotify: fix watch count leak when fsnotify_add_inode_mark_locked() fails (CVE-2026-46040)
In the Linux kernel, the following vulnerability has been resolved:
RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv (CVE-2026-46043)
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix missing brelse() in ext4_xattr_inode_dec_ref_all() (CVE-2026-46046)
In the Linux kernel, the following vulnerability has been resolved:
md/raid5: fix soft lockup in retry_aligned_read() (CVE-2026-46051)
In the Linux kernel, the following vulnerability has been resolved:
net: rds: fix MR cleanup on copy error (CVE-2026-46053)
In the Linux kernel, the following vulnerability has been resolved:
md/raid5: validate payload size before accessing journal metadata (CVE-2026-46070)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: reject zero shift in nft_bitwise (CVE-2026-46101)
In the Linux kernel, the following vulnerability has been resolved:
net: strparser: fix skb_head leak in strp_abort_strp() (CVE-2026-46102)
In the Linux kernel, the following vulnerability has been resolved:
ipmi:si: Return state to normal if message allocation fails (CVE-2026-46108)
In the Linux kernel, the following vulnerability has been resolved:
usb: ulpi: fix memory leak on ulpi_register() error paths (CVE-2026-46109)
In the Linux kernel, the following vulnerability has been resolved:
KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (CVE-2026-46113)
In the Linux kernel, the following vulnerability has been resolved:
ip6_gre: Use cached t->net in ip6erspan_changelink(). (CVE-2026-46120)
In the Linux kernel, the following vulnerability has been resolved:
isofs: validate block number from NFS file handle in isofs_export_iget (CVE-2026-46124)
In the Linux kernel, the following vulnerability has been resolved:
ipmi: Check event message buffer response for bad data (CVE-2026-46128)
In the Linux kernel, the following vulnerability has been resolved:
net: rtnetlink: zero ifla_vf_broadcast to avoid stack infoleak in rtnl_fill_vfinfo (CVE-2026-46132)
In the Linux kernel, the following vulnerability has been resolved:
RDMA/rxe: Reject unknown opcodes before ICRC processing (CVE-2026-46133)
In the Linux kernel, the following vulnerability has been resolved:
scsi: target: configfs: Bound snprintf() return in tg_pt_gp_members_show() (CVE-2026-46149)
In the Linux kernel, the following vulnerability has been resolved:
fanotify: fix false positive on permission events (CVE-2026-46150)
In the Linux kernel, the following vulnerability has been resolved:
usb: usblp: fix heap leak in IEEE 1284 device ID via short response (CVE-2026-46151)
In the Linux kernel, the following vulnerability has been resolved:
md/raid10: fix divide-by-zero in setup_geo() with zero far_copies (CVE-2026-46161)
In the Linux kernel, the following vulnerability has been resolved:
usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl (CVE-2026-46167)
In the Linux kernel, the following vulnerability has been resolved:
ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() (CVE-2026-46172)
In the Linux kernel, the following vulnerability has been resolved:
ipmi: Add limits to event and receive message requests (CVE-2026-46177)
In the Linux kernel, the following vulnerability has been resolved:
RDMA/mlx4: Fix resource leak on error in mlx4_ib_create_srq() (CVE-2026-46178)
In the Linux kernel, the following vulnerability has been resolved:
drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (CVE-2026-46209)
In the Linux kernel, the following vulnerability has been resolved:
vsock/virtio: fix accept queue count leak on transport mismatch (CVE-2026-46214)
In the Linux kernel, the following vulnerability has been resolved:
sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (CVE-2026-46227)
In the Linux kernel, the following vulnerability has been resolved:
vsock: fix buffer size clamping order (CVE-2026-46234)
In the Linux kernel, the following vulnerability has been resolved:
io-wq: check that the predecessor is hashed in io_wq_remove_pending() (CVE-2026-46274)
In the Linux kernel, the following vulnerability has been resolved:
dm: fix a buffer overflow in ioctl processing (CVE-2026-46294)
In the Linux kernel, the following vulnerability has been resolved:
nvmet: avoid recursive nvmet-wq flush in nvmet_ctrl_free (CVE-2026-46304)
Affected Packages:
kernel
Note:
This advisory is applicable to Amazon Linux 2 - Kernel-5.10 Extra. Visit this page to learn more about Amazon Linux 2 (AL2) Extras and this FAQ section for the difference between AL2 Core and AL2 Extras advisories.
Issue Correction:
Run yum update kernel or yum update --advisory ALAS2KERNEL-5.10-2026-123 to update your system.
System reboot is required in order to complete this update.
aarch64:
kernel-5.10.258-257.1041.amzn2.aarch64
kernel-headers-5.10.258-257.1041.amzn2.aarch64
kernel-debuginfo-common-aarch64-5.10.258-257.1041.amzn2.aarch64
perf-5.10.258-257.1041.amzn2.aarch64
perf-debuginfo-5.10.258-257.1041.amzn2.aarch64
python-perf-5.10.258-257.1041.amzn2.aarch64
python-perf-debuginfo-5.10.258-257.1041.amzn2.aarch64
kernel-tools-5.10.258-257.1041.amzn2.aarch64
kernel-tools-devel-5.10.258-257.1041.amzn2.aarch64
kernel-tools-debuginfo-5.10.258-257.1041.amzn2.aarch64
bpftool-5.10.258-257.1041.amzn2.aarch64
bpftool-debuginfo-5.10.258-257.1041.amzn2.aarch64
kernel-devel-5.10.258-257.1041.amzn2.aarch64
kernel-debuginfo-5.10.258-257.1041.amzn2.aarch64
kernel-livepatch-5.10.258-257.1041-1.0-0.amzn2.aarch64
i686:
kernel-headers-5.10.258-257.1041.amzn2.i686
src:
kernel-5.10.258-257.1041.amzn2.src
x86_64:
kernel-5.10.258-257.1041.amzn2.x86_64
kernel-headers-5.10.258-257.1041.amzn2.x86_64
kernel-debuginfo-common-x86_64-5.10.258-257.1041.amzn2.x86_64
perf-5.10.258-257.1041.amzn2.x86_64
perf-debuginfo-5.10.258-257.1041.amzn2.x86_64
python-perf-5.10.258-257.1041.amzn2.x86_64
python-perf-debuginfo-5.10.258-257.1041.amzn2.x86_64
kernel-tools-5.10.258-257.1041.amzn2.x86_64
kernel-tools-devel-5.10.258-257.1041.amzn2.x86_64
kernel-tools-debuginfo-5.10.258-257.1041.amzn2.x86_64
bpftool-5.10.258-257.1041.amzn2.x86_64
bpftool-debuginfo-5.10.258-257.1041.amzn2.x86_64
kernel-devel-5.10.258-257.1041.amzn2.x86_64
kernel-debuginfo-5.10.258-257.1041.amzn2.x86_64
kernel-livepatch-5.10.258-257.1041-1.0-0.amzn2.x86_64
2026-06-25: CVE-2026-31676 was added to this advisory.
2026-06-25: CVE-2026-43281 was added to this advisory.
2026-06-25: CVE-2026-46304 was added to this advisory.
2026-06-25: CVE-2026-46120 was added to this advisory.
2026-06-25: CVE-2026-46128 was added to this advisory.
2026-06-25: CVE-2026-45840 was added to this advisory.
2026-06-25: CVE-2026-45844 was added to this advisory.
2026-06-25: CVE-2026-46234 was added to this advisory.
2026-06-25: CVE-2026-46040 was added to this advisory.
2026-06-25: CVE-2026-46161 was added to this advisory.
2026-06-25: CVE-2026-46051 was added to this advisory.
2026-06-25: CVE-2026-46151 was added to this advisory.
2026-06-25: CVE-2026-31664 was added to this advisory.
2026-06-25: CVE-2026-46178 was added to this advisory.
2026-06-25: CVE-2026-46002 was added to this advisory.
2026-06-25: CVE-2026-45843 was added to this advisory.
2026-06-25: CVE-2026-45842 was added to this advisory.
2026-06-25: CVE-2026-46101 was added to this advisory.
2026-06-25: CVE-2026-31577 was added to this advisory.
2026-06-25: CVE-2026-46167 was added to this advisory.
2026-06-25: CVE-2026-46023 was added to this advisory.
2026-06-25: CVE-2026-46214 was added to this advisory.
2026-06-25: CVE-2026-46108 was added to this advisory.
2026-06-25: CVE-2026-31634 was added to this advisory.
2026-06-25: CVE-2026-43502 was added to this advisory.
2026-06-25: CVE-2026-46070 was added to this advisory.
2026-06-25: CVE-2026-46172 was added to this advisory.
2026-06-25: CVE-2026-31684 was added to this advisory.
2026-06-25: CVE-2026-46109 was added to this advisory.
2026-06-25: CVE-2026-46124 was added to this advisory.
2026-06-25: CVE-2026-43493 was added to this advisory.
2026-06-25: CVE-2026-46132 was added to this advisory.
2026-06-25: CVE-2026-46102 was added to this advisory.
2026-06-25: CVE-2026-46294 was added to this advisory.
2026-06-25: CVE-2026-43117 was added to this advisory.
2026-06-25: CVE-2026-23442 was added to this advisory.
2026-06-25: CVE-2026-45841 was added to this advisory.
2026-06-25: CVE-2026-43114 was added to this advisory.
2026-06-25: CVE-2026-43496 was added to this advisory.
2026-06-25: CVE-2026-31590 was added to this advisory.
2026-06-25: CVE-2026-31673 was added to this advisory.
2026-06-25: CVE-2026-45987 was added to this advisory.
2026-06-25: CVE-2026-31681 was added to this advisory.
2026-06-25: CVE-2026-45838 was added to this advisory.
2026-06-25: CVE-2026-46046 was added to this advisory.
2026-06-25: CVE-2026-46177 was added to this advisory.
2026-06-22: CVE-2026-31588 was added to this advisory.
2026-06-22: CVE-2023-53421 was added to this advisory.
2026-06-22: CVE-2022-50493 was added to this advisory.
2026-06-22: CVE-2026-31685 was added to this advisory.
2026-06-22: CVE-2026-43089 was added to this advisory.
2026-06-22: CVE-2026-31407 was added to this advisory.
2026-06-22: CVE-2026-43093 was added to this advisory.
2026-06-22: CVE-2022-50472 was added to this advisory.
2026-06-22: CVE-2026-31532 was added to this advisory.
2026-06-22: CVE-2026-31624 was added to this advisory.
2026-06-22: CVE-2025-38710 was added to this advisory.
2026-06-22: CVE-2022-50552 was added to this advisory.
2026-06-22: CVE-2026-31580 was added to this advisory.
2026-06-22: CVE-2026-31586 was added to this advisory.
2026-06-22: CVE-2026-31607 was added to this advisory.
2026-06-22: CVE-2026-43085 was added to this advisory.
2026-06-22: CVE-2026-43111 was added to this advisory.
2026-06-22: CVE-2026-31656 was added to this advisory.