VulnerableCode Package Details - pkg:rpm/redhat/kernel@5.14.0-570.89.1?arch=el9_6

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/kernel@5.14.0-570.89.1?arch=el9_6

Essentials
History (8)

purl	pkg:rpm/redhat/kernel@5.14.0-570.89.1?arch=el9_6

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	3.3

Vulnerabilities affecting this package (8)

Vulnerability	Summary	Fixed by
VCID-2euh-sffk-tqgh Aliases: CVE-2025-40269	kernel: Linux kernel ALSA USB audio driver: Buffer overflow leading to information disclosure and denial of service	There are no reported fixed by versions.
VCID-4zj4-fp3e-bbd7 Aliases: CVE-2025-38730	kernel: Linux kernel: Data corruption and system instability due to improper io_uring/net buffer handling	There are no reported fixed by versions.
VCID-7p3m-t7q4-vuay Aliases: CVE-2025-38349	kernel: Linux kernel use-after-free in eventpoll	There are no reported fixed by versions.
VCID-c49r-knse-6bc5 Aliases: CVE-2025-39933	kernel: smb: client: let recv_done verify data_offset, data_length and remaining_data_length	There are no reported fixed by versions.
VCID-gg4r-7tb8-rkha Aliases: CVE-2025-40304	kernel: Linux kernel: Out-of-bounds write in fbdev can lead to privilege escalation, information disclosure, or denial of service.	There are no reported fixed by versions.
VCID-huwf-kr9d-p7bt Aliases: CVE-2025-37882	kernel: Linux kernel: xHCI driver isochronous event handling race condition leading to data loss or UAF	There are no reported fixed by versions.
VCID-je4j-ksj2-hqb3 Aliases: CVE-2025-40271	kernel: Linux kernel: Use-after-free in proc_readdir_de() can lead to privilege escalation or denial of service.	There are no reported fixed by versions.
VCID-pvfh-earf-aqdj Aliases: CVE-2025-39760	kernel: Linux kernel: Denial of Service via out-of-bounds read in USB configuration parsing	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T13:40:18.355704+00:00	RedHat Importer	Affected by	VCID-huwf-kr9d-p7bt	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-37882.json	38.0.0
2026-04-01T13:38:27.017524+00:00	RedHat Importer	Affected by	VCID-7p3m-t7q4-vuay	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-38349.json	38.0.0
2026-04-01T13:37:31.758595+00:00	RedHat Importer	Affected by	VCID-4zj4-fp3e-bbd7	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-38730.json	38.0.0
2026-04-01T13:37:09.910982+00:00	RedHat Importer	Affected by	VCID-pvfh-earf-aqdj	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-39760.json	38.0.0
2026-04-01T13:36:10.219735+00:00	RedHat Importer	Affected by	VCID-c49r-knse-6bc5	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-39933.json	38.0.0
2026-04-01T13:33:59.354939+00:00	RedHat Importer	Affected by	VCID-2euh-sffk-tqgh	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-40269.json	38.0.0
2026-04-01T13:33:58.664161+00:00	RedHat Importer	Affected by	VCID-je4j-ksj2-hqb3	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-40271.json	38.0.0
2026-04-01T13:33:56.004639+00:00	RedHat Importer	Affected by	VCID-gg4r-7tb8-rkha	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-40304.json	38.0.0