VulnerableCode Package Details - pkg:rpm/redhat/kernel@5.14.0-570.42.2?arch=el9

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/kernel@5.14.0-570.42.2?arch=el9_6

purl	pkg:rpm/redhat/kernel@5.14.0-570.42.2?arch=el9_6

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	10.0

Vulnerabilities affecting this package (4)

Vulnerability	Summary	Fixed by
VCID-9w88-du3c-qyc4 Aliases: CVE-2025-38332	kernel: scsi: lpfc: Use memcpy() for BIOS version	There are no reported fixed by versions.
VCID-ds3w-wph8-7kam Aliases: CVE-2025-38449	kernel: drm/gem: Acquire references on GEM handles for framebuffers	There are no reported fixed by versions.
VCID-f89z-k7xe-83e4 Aliases: CVE-2025-22097	kernel: drm/vkms: Fix use after free and double free on init error	There are no reported fixed by versions.
VCID-w2fj-8dqr-gbcc Aliases: CVE-2025-38352	kernel: posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del()	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T13:40:46.290550+00:00	RedHat Importer	Affected by	VCID-f89z-k7xe-83e4	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-22097.json	38.0.0
2026-04-01T13:38:40.083017+00:00	RedHat Importer	Affected by	VCID-9w88-du3c-qyc4	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-38332.json	38.0.0
2026-04-01T13:38:19.362357+00:00	RedHat Importer	Affected by	VCID-w2fj-8dqr-gbcc	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-38352.json	38.0.0
2026-04-01T13:38:10.624884+00:00	RedHat Importer	Affected by	VCID-ds3w-wph8-7kam	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-38449.json	38.0.0