Amazon Linux 2 Security Advisory: ALAS2KERNEL-5.4-2025-109
Advisory Released Date: 2025-09-16
Advisory Updated Date: 2025-10-02
FAQs regarding Amazon Linux ALAS/CVE Severity
In the Linux kernel, the following vulnerability has been resolved:
ACPI: processor: idle: Check acpi_fetch_acpi_dev() return value (CVE-2022-50327)
In the Linux kernel, the following vulnerability has been resolved:
cifs: Fix UAF in cifs_demultiplex_thread() (CVE-2023-52572)
In the Linux kernel, the following vulnerability has been resolved:
nfs: fix UAF in direct writes (CVE-2024-26958)
In the Linux kernel, the following vulnerability has been resolved:
net_sched: sch_sfq: don't allow 1 packet limit (CVE-2024-57996)
In the Linux kernel, the following vulnerability has been resolved:
codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog() (CVE-2025-37798)
In the Linux kernel, the following vulnerability has been resolved:
dma-buf: insert memory barrier before updating num_fences (CVE-2025-38095)
In the Linux kernel, the following vulnerability has been resolved:
sch_hfsc: make hfsc_qlen_notify() idempotent (CVE-2025-38177)
In the Linux kernel, the following vulnerability has been resolved:
net_sched: sch_sfq: reject invalid perturb period (CVE-2025-38193)
In the Linux kernel, the following vulnerability has been resolved:
virtio-net: ensure the received length does not exceed allocated size (CVE-2025-38375)
In the Linux kernel, the following vulnerability has been resolved:
net/sched: Return NULL when htb_lookup_leaf encounters an empty rbtree (CVE-2025-38468)
In the Linux kernel, the following vulnerability has been resolved:
net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470)
In the Linux kernel, the following vulnerability has been resolved:
usb: net: sierra: check for no status endpoint (CVE-2025-38474)
In the Linux kernel, the following vulnerability has been resolved:
net/sched: sch_qfq: Fix race condition on qfq_aggregate (CVE-2025-38477)
In the Linux kernel, the following vulnerability has been resolved:
HID: core: do not bypass hid_hw_raw_request (CVE-2025-38494)
In the Linux kernel, the following vulnerability has been resolved:
HID: core: ensure the allocated report buffer can contain the reserved report ID (CVE-2025-38495)
In the Linux kernel, the following vulnerability has been resolved:
clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns (CVE-2025-38499)
In the Linux kernel, the following vulnerability has been resolved:
tracing: Add down_write(trace_event_sem) when adding trace event (CVE-2025-38539)
In the Linux kernel, the following vulnerability has been resolved:
net/sched: Restrict conditions for adding duplicating netems to qdisc tree (CVE-2025-38553)
In the Linux kernel, the following vulnerability has been resolved:
perf/core: Prevent VMA split of buffer mappings (CVE-2025-38563)
In the Linux kernel, the following vulnerability has been resolved:
perf/core: Exit early on perf_mmap() fail (CVE-2025-38565)
In the Linux kernel, the following vulnerability has been resolved:
ipv6: reject malicious packets in ipv6_gso_segment() (CVE-2025-38572)
In the Linux kernel, the following vulnerability has been resolved:
pptp: ensure minimal skb length in pptp_xmit() (CVE-2025-38574)
In the Linux kernel, the following vulnerability has been resolved:
bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls (CVE-2025-38608)
In the Linux kernel, the following vulnerability has been resolved:
net/packet: fix a race in packet_set_ring() and packet_notifier() (CVE-2025-38617)
In the Linux kernel, the following vulnerability has been resolved:
vsock: Do not allow binding to VMADDR_PORT_ANY (CVE-2025-38618)
In the Linux kernel, the following vulnerability has been resolved:
net: drop UFO packets in udp_rcv_segment() (CVE-2025-38622)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: xt_nfacct: don't assume acct name is null-terminated (CVE-2025-38639)
In the Linux kernel, the following vulnerability has been resolved:
hfsplus: remove mutex_lock check in hfsplus_free_extents (CVE-2025-38650)
In the Linux kernel, the following vulnerability has been resolved:
nilfs2: reject invalid file types when reading inodes (CVE-2025-38663)
In the Linux kernel, the following vulnerability has been resolved:
regulator: core: fix NULL dereference on unbind due to stale coupling data (CVE-2025-38668)
In the Linux kernel, the following vulnerability has been resolved:
i2c: qup: jump out of the loop in case of timeout (CVE-2025-38671)
In the Linux kernel, the following vulnerability has been resolved:
pNFS: Fix uninited ptr deref in block/scsi layout (CVE-2025-38691)
In the Linux kernel, the following vulnerability has been resolved:
scsi: lpfc: Check for hdwq null ptr when cleaning up lpfc_vport structure (CVE-2025-38695)
In the Linux kernel, the following vulnerability has been resolved:
scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700)
In the Linux kernel, the following vulnerability has been resolved:
ext4: do not BUG when INLINE_DATA_FL lacks system.data xattr (CVE-2025-38701)
In the Linux kernel, the following vulnerability has been resolved:
drbd: add missing kref_get in handle_write_conflicts (CVE-2025-38708)
In the Linux kernel, the following vulnerability has been resolved:
hfsplus: don't use BUG_ON() in hfsplus_create_attributes_file() (CVE-2025-38712)
In the Linux kernel, the following vulnerability has been resolved:
hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc() (CVE-2025-38713)
In the Linux kernel, the following vulnerability has been resolved:
hfsplus: fix slab-out-of-bounds in hfsplus_bnode_read() (CVE-2025-38714)
In the Linux kernel, the following vulnerability has been resolved:
hfs: fix slab-out-of-bounds in hfs_bnode_read() (CVE-2025-38715)
In the Linux kernel, the following vulnerability has been resolved:
sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718)
In the Linux kernel, the following vulnerability has been resolved:
netfilter: ctnetlink: fix refcount leak on table dump (CVE-2025-38721)
In the Linux kernel, the following vulnerability has been resolved:
nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm() (CVE-2025-38724)
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676)
In the Linux kernel, the following vulnerability has been resolved:
ftrace: Also allocate and copy hash for reading of filter files (CVE-2025-39689)
In the Linux kernel, the following vulnerability has been resolved:
fs/buffer: fix use-after-free when call bh_read() helper (CVE-2025-39691)
In the Linux kernel, the following vulnerability has been resolved:
serial: 8250: fix panic due to PSLVERR (CVE-2025-39724)
In the Linux kernel, the following vulnerability has been resolved:
NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() (CVE-2025-39730)
In the Linux kernel, the following vulnerability has been resolved:
mm/kmemleak: avoid deadlock by moving pr_warn() outside kmemleak_lock (CVE-2025-39736)
In the Linux kernel, the following vulnerability has been resolved:
rcu: Protect ->defer_qs_iw_pending from data race (CVE-2025-39749)
In the Linux kernel, the following vulnerability has been resolved:
fs: Prevent file descriptor table allocations exceeding INT_MAX (CVE-2025-39756)
In the Linux kernel, the following vulnerability has been resolved:
net/sched: Make cake_enqueue return NET_XMIT_CN when past buffer_limit (CVE-2025-39766)
In the Linux kernel, the following vulnerability has been resolved:
jbd2: prevent softlockup in jbd2_log_do_checkpoint() (CVE-2025-39782)
In the Linux kernel, the following vulnerability has been resolved:
PCI: endpoint: Fix configfs group list head handling (CVE-2025-39783)
In the Linux kernel, the following vulnerability has been resolved:
NFS: Fix the setting of capabilities when automounting a new filesystem (CVE-2025-39798)
In the Linux kernel, the following vulnerability has been resolved:
HID: hid-ntrig: fix unable to handle page fault in ntrig_report_version() (CVE-2025-39808)
In the Linux kernel, the following vulnerability has been resolved:
sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812)
In the Linux kernel, the following vulnerability has been resolved:
ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (CVE-2025-39813)
In the Linux kernel, the following vulnerability has been resolved:
efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (CVE-2025-39817)
In the Linux kernel, the following vulnerability has been resolved:
KVM: x86: use array_index_nospec with indices that come from guest (CVE-2025-39823)
In the Linux kernel, the following vulnerability has been resolved:
HID: asus: fix UAF via HID_CLAIMED_INPUT validation (CVE-2025-39824)
Affected Packages:
kernel
Note:
This advisory is applicable to Amazon Linux 2 - Kernel-5.4 Extra. Visit this page to learn more about Amazon Linux 2 (AL2) Extras and this FAQ section for the difference between AL2 Core and AL2 Extras advisories.
Issue Correction:
Run yum update kernel or yum update --advisory ALAS2KERNEL-5.4-2025-109 to update your system.
System reboot is required in order to complete this update.
aarch64:
kernel-5.4.298-218.429.amzn2.aarch64
kernel-headers-5.4.298-218.429.amzn2.aarch64
kernel-debuginfo-common-aarch64-5.4.298-218.429.amzn2.aarch64
perf-5.4.298-218.429.amzn2.aarch64
perf-debuginfo-5.4.298-218.429.amzn2.aarch64
python-perf-5.4.298-218.429.amzn2.aarch64
python-perf-debuginfo-5.4.298-218.429.amzn2.aarch64
kernel-tools-5.4.298-218.429.amzn2.aarch64
kernel-tools-devel-5.4.298-218.429.amzn2.aarch64
kernel-tools-debuginfo-5.4.298-218.429.amzn2.aarch64
bpftool-5.4.298-218.429.amzn2.aarch64
bpftool-debuginfo-5.4.298-218.429.amzn2.aarch64
kernel-devel-5.4.298-218.429.amzn2.aarch64
kernel-debuginfo-5.4.298-218.429.amzn2.aarch64
i686:
kernel-headers-5.4.298-218.429.amzn2.i686
src:
kernel-5.4.298-218.429.amzn2.src
x86_64:
kernel-5.4.298-218.429.amzn2.x86_64
kernel-headers-5.4.298-218.429.amzn2.x86_64
kernel-debuginfo-common-x86_64-5.4.298-218.429.amzn2.x86_64
perf-5.4.298-218.429.amzn2.x86_64
perf-debuginfo-5.4.298-218.429.amzn2.x86_64
python-perf-5.4.298-218.429.amzn2.x86_64
python-perf-debuginfo-5.4.298-218.429.amzn2.x86_64
kernel-tools-5.4.298-218.429.amzn2.x86_64
kernel-tools-devel-5.4.298-218.429.amzn2.x86_64
kernel-tools-debuginfo-5.4.298-218.429.amzn2.x86_64
bpftool-5.4.298-218.429.amzn2.x86_64
bpftool-debuginfo-5.4.298-218.429.amzn2.x86_64
kernel-devel-5.4.298-218.429.amzn2.x86_64
kernel-debuginfo-5.4.298-218.429.amzn2.x86_64
2025-10-02: CVE-2025-38470 was added to this advisory.
2025-10-02: CVE-2025-38691 was added to this advisory.
2025-10-02: CVE-2025-38671 was added to this advisory.
2025-10-02: CVE-2025-38663 was added to this advisory.
2025-10-02: CVE-2025-38708 was added to this advisory.
2025-10-02: CVE-2025-39813 was added to this advisory.
2025-10-02: CVE-2025-39676 was added to this advisory.
2025-10-02: CVE-2025-39808 was added to this advisory.
2025-10-02: CVE-2025-38608 was added to this advisory.
2025-10-02: CVE-2025-38468 was added to this advisory.
2025-10-02: CVE-2025-38639 was added to this advisory.
2025-10-02: CVE-2025-39724 was added to this advisory.
2025-10-02: CVE-2025-38715 was added to this advisory.
2025-10-02: CVE-2025-39798 was added to this advisory.
2025-10-02: CVE-2025-39783 was added to this advisory.
2025-10-02: CVE-2025-38563 was added to this advisory.
2025-10-02: CVE-2025-38712 was added to this advisory.
2025-10-02: CVE-2025-39812 was added to this advisory.
2025-10-02: CVE-2025-39782 was added to this advisory.
2025-10-02: CVE-2025-38539 was added to this advisory.
2025-10-02: CVE-2025-39756 was added to this advisory.
2025-10-02: CVE-2025-38721 was added to this advisory.
2025-10-02: CVE-2025-38574 was added to this advisory.
2025-10-02: CVE-2025-38565 was added to this advisory.
2025-10-02: CVE-2025-39749 was added to this advisory.
2025-10-02: CVE-2025-39736 was added to this advisory.
2025-09-22: CVE-2025-38700 was added to this advisory.
2025-09-22: CVE-2025-39766 was added to this advisory.
2025-09-22: CVE-2025-39823 was added to this advisory.
2025-09-22: CVE-2025-38713 was added to this advisory.
2025-09-22: CVE-2025-38724 was added to this advisory.
2025-09-22: CVE-2025-38714 was added to this advisory.
2025-09-22: CVE-2025-39689 was added to this advisory.
2025-09-22: CVE-2022-50327 was added to this advisory.
2025-09-22: CVE-2025-39691 was added to this advisory.
2025-09-22: CVE-2025-38718 was added to this advisory.
2025-09-22: CVE-2025-38701 was added to this advisory.
2025-09-22: CVE-2025-39730 was added to this advisory.
2025-09-22: CVE-2025-39817 was added to this advisory.
2025-09-22: CVE-2025-39824 was added to this advisory.