What is RHSA-2026:19074?

RHSA-2026:19074 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: kernel security update

Which CVE IDs does RHSA-2026:19074 cover?

RHSA-2026:19074 covers the following CVE IDs: CVE-2026-23060, CVE-2026-31431, CVE-2026-31677, CVE-2026-43284. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHSA-2026:19074?

RHSA-2026:19074 has a CVSS v3 base score of 7.8, published by Red Hat Product Security.

RHSA-2026:19074HighCVSS 7.8

Red Hat Security Advisory: kernel security update

Vendor

Red Hat Product Security

Published

May 19, 2026

Last Modified

June 5, 2026

🔗 CVE IDs covered (4)

CVE-2026-23060 →CVE-2026-31431 →CVE-2026-31677 →CVE-2026-43284 →

📋 Description

CVE-2026-23060 — kernel: Linux kernel: Denial of Service in authencesn due to too-short AAD CVE-2026-31431 — kernel: crypto: algif_aead - Revert to operating out-of-place CVE-2026-31677 — kernel: crypto: af_alg - limit RX SG extraction by receive buffer budget CVE-2026-43284 — kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel

🔗 References (7)

selfhttps://access.redhat.com/errata/RHSA-2026:19074
externalhttps://access.redhat.com/security/updates/classification/#important
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2436779
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2460538
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2461763
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467771
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_19074.json