Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

ALASLIVEPATCH-2025-225

Related Vulnerabilities: CVE-2024-47757   CVE-2024-49882   CVE-2024-50036   CVE-2024-50264   CVE-2024-50301   CVE-2025-21796  

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential oob read in nilfs_btree_check_delete() (CVE-2024-47757) In the Linux kernel, the following vulnerability has been resolved: ext4: fix double brelse() the buffer of the extents path (CVE-2024-49882) In the Linux kernel, the following vulnerability has been resolved: net: do not delay dst_entries_add() in dst_release() (CVE-2024-50036) In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (CVE-2024-50264) In the Linux kernel, the following vulnerability has been resolved: security/keys: fix slab-out-of-bounds in key_task_permission (CVE-2024-50301) In the Linux kernel, the following vulnerability has been resolved: nfsd: clear acl_access/acl_default after releasing them (CVE-2025-21796)

Source

ALASLIVEPATCH-2025-225

Amazon Linux 2 Security Advisory: ALASLIVEPATCH-2025-225
Advisory Release Date: 2025-04-23 21:58 Pacific
Advisory Updated Date: 2025-04-23 21:58 Pacific
Severity: Important
Issue Overview:

In the Linux kernel, the following vulnerability has been resolved:

nilfs2: fix potential oob read in nilfs_btree_check_delete() (CVE-2024-47757)

In the Linux kernel, the following vulnerability has been resolved:

ext4: fix double brelse() the buffer of the extents path (CVE-2024-49882)

In the Linux kernel, the following vulnerability has been resolved:

net: do not delay dst_entries_add() in dst_release() (CVE-2024-50036)

In the Linux kernel, the following vulnerability has been resolved:

vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (CVE-2024-50264)

In the Linux kernel, the following vulnerability has been resolved:

security/keys: fix slab-out-of-bounds in key_task_permission (CVE-2024-50301)

In the Linux kernel, the following vulnerability has been resolved:

nfsd: clear acl_access/acl_default after releasing them (CVE-2025-21796)


Affected Packages:

kernel-livepatch-4.14.355-276.618


Issue Correction:
Run yum update kernel-livepatch-4.14.355-276.618 to update your system.

New Packages:
src:
    kernel-livepatch-4.14.355-276.618-1.0-6.amzn2.src

x86_64:
    kernel-livepatch-4.14.355-276.618-1.0-6.amzn2.x86_64

Additional References

Release Notes:  Amazon Linux 2 Release Notes

Red Hat: CVE-2024-47757, CVE-2024-49882, CVE-2024-50036, CVE-2024-50264, CVE-2024-50301, CVE-2025-21796

Mitre: CVE-2024-47757, CVE-2024-49882, CVE-2024-50036, CVE-2024-50264, CVE-2024-50301, CVE-2025-21796

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook
Vulmon Logo
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started