apk package
chainguard/linux-gcp-6.18-bootc-boot-installed
pkg:apk/chainguard/linux-gcp-6.18-bootc-boot-installed
Vulnerabilities (107)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-52930 | mod | 5.5 | < 6.18.38-r0 | 6.18.38-r0 | Jun 24, 2026 | kernel: ipc/shm: serialize orphan cleanup with shm_nattch updates | |
| CVE-2026-52929 | mod | 5.5 | < 6.18.38-r0 | 6.18.38-r0 | Jun 24, 2026 | kernel: sctp: stream: fully roll back denied add-stream state | |
| CVE-2026-52924 | imp | 7.0 | < 6.18.38-r0 | 6.18.38-r0 | Jun 24, 2026 | kernel: sctp: purge outqueue on stale COOKIE-ECHO handling | |
| CVE-2026-52917 | mod | 7.0 | < 6.18.38-r0 | 6.18.38-r0 | Jun 24, 2026 | kernel: sctp: diag: reject stale associations in dump_one path | |
| CVE-2026-52910 | — | < 6.18.38-r0 | 6.18.38-r0 | Jun 19, 2026 | In the Linux kernel, the following vulnerability has been resolved: bpf: Free reuseport cBPF prog after RCU grace period. Eulgyu Kim reported the splat below with a repro. [0] The repro sets up a UDP reuseport group with a cBPF prog and replaces it with a new one while another | ||
| CVE-2026-52909 | — | < 6.18.38-r0 | 6.18.38-r0 | Jun 19, 2026 | In the Linux kernel, the following vulnerability has been resolved: ip6_vti: set netns_immutable on the fallback device. john1988 and Noam Rathaus reported that vti6_init_net() does not set the netns_immutable flag on the per-netns fallback tunnel device (ip6_vti0). Other simi | ||
| CVE-2026-45850 | — | < 6.18.38-r0 | 6.18.38-r0 | May 27, 2026 | In the Linux kernel, the following vulnerability has been resolved: ipvs: skip ipv6 extension headers for csum checks Protocol checksum validation fails for IPv6 if there are extension headers before the protocol header. iph->len already contains its offset, so use it to fix th |
- affected < 6.18.38-r0fixed 6.18.38-r0
kernel: ipc/shm: serialize orphan cleanup with shm_nattch updates
- affected < 6.18.38-r0fixed 6.18.38-r0
kernel: sctp: stream: fully roll back denied add-stream state
- affected < 6.18.38-r0fixed 6.18.38-r0
kernel: sctp: purge outqueue on stale COOKIE-ECHO handling
- affected < 6.18.38-r0fixed 6.18.38-r0
kernel: sctp: diag: reject stale associations in dump_one path
- CVE-2026-52910Jun 19, 2026affected < 6.18.38-r0fixed 6.18.38-r0
In the Linux kernel, the following vulnerability has been resolved: bpf: Free reuseport cBPF prog after RCU grace period. Eulgyu Kim reported the splat below with a repro. [0] The repro sets up a UDP reuseport group with a cBPF prog and replaces it with a new one while another
- CVE-2026-52909Jun 19, 2026affected < 6.18.38-r0fixed 6.18.38-r0
In the Linux kernel, the following vulnerability has been resolved: ip6_vti: set netns_immutable on the fallback device. john1988 and Noam Rathaus reported that vti6_init_net() does not set the netns_immutable flag on the per-netns fallback tunnel device (ip6_vti0). Other simi
- CVE-2026-45850May 27, 2026affected < 6.18.38-r0fixed 6.18.38-r0
In the Linux kernel, the following vulnerability has been resolved: ipvs: skip ipv6 extension headers for csum checks Protocol checksum validation fails for IPv6 if there are extension headers before the protocol header. iph->len already contains its offset, so use it to fix th
Page 6 of 6