RHSA-2026:13577HighCVSS 8.1
Red Hat Security Advisory: kernel security update
🔗 CVE IDs covered (7)
📋 Description
CVE-2024-41073 — kernel: nvme: avoid double free special payload CVE-2025-40252 — kernel: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() CVE-2025-68724 — kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id CVE-2026-23401 — kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling CVE-2026-31402 — kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache CVE-2026-31431 — kernel: crypto: algif_aead - Revert to operating out-of-place CVE-2026-43077 — kernel: crypto: algif_aead - Fix minimum RX size check for decryption
🔗 References (8)
- selfhttps://access.redhat.com/errata/RHSA-2026:13577
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2301637
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2424886
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2453803
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2454844
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2460538
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_13577.json