Amazon Linux 2023 Security Advisory: ALAS2023LIVEPATCH-2025-051
Advisory Released Date: 2025-06-10
Advisory Updated Date: 2025-06-12
Severity:
Important
References:
CVE-2025-21919
CVE-2025-21920
CVE-2025-21927
CVE-2025-21928
CVE-2025-37785
FAQs regarding Amazon Linux ALAS/CVE Severity
FAQs regarding Amazon Linux ALAS/CVE Severity
Issue Overview:
In the Linux kernel, the following vulnerability has been resolved:
sched/fair: Fix potential memory corruption in child_cfs_rq_on_list (CVE-2025-21919)
In the Linux kernel, the following vulnerability has been resolved:
vlan: enforce underlying device type (CVE-2025-21920)
In the Linux kernel, the following vulnerability has been resolved:
nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu() (CVE-2025-21927)
In the Linux kernel, the following vulnerability has been resolved:
HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove() (CVE-2025-21928)
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix OOB read when checking dotdot dir (CVE-2025-37785)
Affected Packages:
kernel-livepatch-6.1.130-139.222
Issue Correction:
Run dnf update kernel-livepatch-6.1.130-139.222 --releasever 2023.7.20250609 to update your system.
New Packages:
aarch64:
kernel-livepatch-6.1.130-139.222-1.0-3.amzn2023.aarch64
src:
kernel-livepatch-6.1.130-139.222-1.0-3.amzn2023.src
x86_64:
kernel-livepatch-6.1.130-139.222-1.0-3.amzn2023.x86_64