ALSA-2025:23279

[ALSA-2025:23279] Important: kernel security update

Type:

security

Severity:

important

Release date:

2026-01-05

Description:

The kernel packages contain the Linux kernel, the core of any Linux operating system.  

Security Fix(es):  

  * kernel: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns (CVE-2025-38499)
  * kernel: net: tun: Update napi->skb after XDP process (CVE-2025-39984)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
noarch	kernel-abi-stablelists-6.12.0-124.21.1.el10_1.noarch.rpm	2a671ffe3e6864310a90820a0423d86706a735cb5603b3810881a362c633ff7b
noarch	kernel-doc-6.12.0-124.21.1.el10_1.noarch.rpm	fd6d37ee95da0c96f3dae7783386e15d05cb53b3907a98c7f328493dc523d021

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.