AlmaLinux has announced the release of three critical kernel updates aimed at addressing various security vulnerabilities. Two updates are classified as important, while one is considered moderate.
The important updates include:
1. ALSA-2025:15472 - This is a security update for the Real-Time Linux Kernel (kernel-rt) that resolves issues related to BPF array range checking and a race condition in posix-cpu-timers.
2. ALSA-2025:15471 - This update addresses similar vulnerabilities within the core Linux kernel, ensuring enhanced security and stability.
The moderate update, ALSA-2025:15008, addresses several vulnerabilities, including use-after-free errors in various components such as RDMA/iwcm, scsi/lpfc, and net/sched, along with a race condition in the TIPC protocol.
- ALSA-2025:15472: Kernel-rt security update (Real-Time Linux Kernel)
- Fixes: BPF array range checking (CVE-2022-49985), posix-cpu-timers race condition (CVE-2025-38352).
- ALSA-2025:15471: Kernel security update
- Fixes: Same vulnerabilities as ALSA-2025:15472.
- Moderate Update:
- ALSA-2025:15008: Kernel security update
- Fixes: Use-after-free bugs (CVE-2025-38211, CVE-2025-38464), memcpy usage for BIOS version (CVE-2025-38332), race condition in scheduling (CVE-2025-38477).
For users of AlmaLinux, it is crucial to apply these updates to ensure system integrity and security. Detailed information regarding the vulnerabilities, their impacts, and corresponding CVSS scores can be found on the associated CVE pages linked in the update notifications.
The important updates include:
1. ALSA-2025:15472 - This is a security update for the Real-Time Linux Kernel (kernel-rt) that resolves issues related to BPF array range checking and a race condition in posix-cpu-timers.
2. ALSA-2025:15471 - This update addresses similar vulnerabilities within the core Linux kernel, ensuring enhanced security and stability.
The moderate update, ALSA-2025:15008, addresses several vulnerabilities, including use-after-free errors in various components such as RDMA/iwcm, scsi/lpfc, and net/sched, along with a race condition in the TIPC protocol.
Summary of Updates:
- Important Updates:- ALSA-2025:15472: Kernel-rt security update (Real-Time Linux Kernel)
- Fixes: BPF array range checking (CVE-2022-49985), posix-cpu-timers race condition (CVE-2025-38352).
- ALSA-2025:15471: Kernel security update
- Fixes: Same vulnerabilities as ALSA-2025:15472.
- Moderate Update:
- ALSA-2025:15008: Kernel security update
- Fixes: Use-after-free bugs (CVE-2025-38211, CVE-2025-38464), memcpy usage for BIOS version (CVE-2025-38332), race condition in scheduling (CVE-2025-38477).
For users of AlmaLinux, it is crucial to apply these updates to ensure system integrity and security. Detailed information regarding the vulnerabilities, their impacts, and corresponding CVSS scores can be found on the associated CVE pages linked in the update notifications.
Extension:
To maintain the security and performance of your AlmaLinux systems, it's advisable to regularly check for updates and subscribe to notifications from the AlmaLinux team. Besides kernel updates, users should also monitor other software packages and dependencies that may require updates. Engaging with the AlmaLinux community through chat and forums can provide additional insights and support for troubleshooting any issues that may arise from these updates or system configurations. Finally, organizations relying on AlmaLinux for critical applications should consider implementing a robust patch management strategy to minimize downtime and vulnerabilities effectivelyKernel updates for AlmaLinux
AlmaLinux has released two important and one moderate security update for its kernel packages to address various vulnerabilities. The two important updates (ALSA-2025:15472 and ALSA-2025:15471) fix issues with bpf array range checking and posix-cpu-timers, while the moderate update (ALSA-2025:15008) addresses several vulnerabilities, including use-after-free bugs in RDMA/iwcm, scsi/lpfc, tipc, and net/sched.
ALSA-2025:15472: kernel-rt security update (Important)
ALSA-2025:15471: kernel security update (Important)
ALSA-2025:15008: kernel security update (Moderate)
