RHSA-2026:18134MediumCVSS 7.6

Red Hat Security Advisory: kernel security update

Published
May 19, 2026
Last Modified
May 27, 2026

🔗 CVE IDs covered (25)

CVE-2025-38279CVE-2025-40320CVE-2026-23243CVE-2025-21839CVE-2025-38202CVE-2025-38275CVE-2025-38346CVE-2025-38405CVE-2025-40034CVE-2025-40134CVE-2025-40210CVE-2024-56633CVE-2025-37980CVE-2025-38015CVE-2025-38470CVE-2025-39866CVE-2025-40257CVE-2026-23040CVE-2026-23111CVE-2025-38097CVE-2025-38267CVE-2025-38345CVE-2025-38441CVE-2026-23210CVE-2025-38166

📋 Description

CVE-2024-56633 — kernel: tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg CVE-2025-21839 — kernel: KVM: x86: Load DR6 with guest value only before entering .vcpu_run() loop CVE-2025-37980 — kernel: block: fix resource leak in blk_register_queue() error path CVE-2025-38015 — kernel: dmaengine: idxd: fix memory leak in error handling path of idxd_alloc CVE-2025-38097 — kernel: espintcp: remove encap socket caching to avoid reference leak CVE-2025-38166 — kernel: bpf: fix ktls panic with sockmap CVE-2025-38202 — kernel: bpf: Check rcu_read_lock_trace_held() in bpf_map_lookup_percpu_elem() CVE-2025-38267 — kernel: ring-buffer: Do not trigger WARN_ON() due to a commit_overrun CVE-2025-38275 — kernel: phy: qcom-qmp-usb: Fix an NULL vs IS_ERR() bug CVE-2025-38279 — kernel: bpf: Do not include stack ptr register in precision backtracking bookkeeping CVE-2025-38345 — kernel: ACPICA: fix acpi operand cache leak in dswstate.c CVE-2025-38346 — kernel: ftrace: Fix UAF when lookup kallsym after ftrace disabled CVE-2025-38405 — kernel: nvmet: fix memory leak of bio integrity CVE-2025-38441 — kernel: netfilter: flowtable: account for Ethernet header in nf_flow_pppoe_proto() CVE-2025-38470 — kernel: net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime CVE-2025-39866 — kernel: fs: writeback: fix use-after-free in __mark_inode_dirty() CVE-2025-40034 — kernel: PCI/AER: Avoid NULL pointer dereference in aer_ratelimit() CVE-2025-40134 — kernel: dm: fix NULL pointer dereference in __dm_suspend() CVE-2025-40210 — kernel: Revert "NFSD: Remove the cap on number of operations per NFSv4 COMPOUND" CVE-2025-40257 — kernel: Linux kernel MPTCP: Privilege escalation or denial of service via use-after-free in timer handling CVE-2025-40320 — kernel: smb: client: fix potential cfid UAF in smb2_query_info_compound CVE-2026-23040 — kernel: wifi: mac80211_hwsim: fix typo in frequency notification CVE-2026-23111 — kernel: Kernel: Privilege escalation or denial of service in nf_tables via inverted element activity check CVE-2026-23210 — kernel: Linux kernel: Denial of Service in ice driver due to race condition during VSI rebuild CVE-2026-23243 — kernel: Linux kernel: Denial of service and memory corruption in RDMA umad

🔗 References (48)