Red Hat Security Advisory: kernel security update

CVE-2024-56645 — kernel: can: j1939: j1939_session_new(): fix skb reference counting CVE-2025-68183 — kernel: ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr CVE-2026-23375 — kernel: mm: thp: deny THP for files on anonymous inodes CVE-2026-23392 — kernel: netfilter: nf_tables: release flowtable after rcu grace period on error CVE-2026-23455 — kernel: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() CVE-2026-31684 — kernel: net: sched: act_csum: validate nested VLAN headers CVE-2026-31685 — kernel: netfilter: ip6t_eui64: reject invalid MAC header for all packets CVE-2026-43006 — kernel: io_uring/rsrc: reject zero-length fixed buffer import CVE-2026-43020 — kernel: Bluetooth: MGMT: validate LTK enc_size on load CVE-2026-43023 — kernel: Bluetooth: SCO: fix race conditions in sco_sock_connect() CVE-2026-43027 — kernel: netfilter: nf_conntrack_helper: pass helper to expect cleanup CVE-2026-43051 — kernel: HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq CVE-2026-43110 — kernel: wifi: brcmfmac: validate bsscfg indices in IF events CVE-2026-43116 — kernel: netfilter: ctnetlink: ensure safe access to master conntrack CVE-2026-43158 — kernel: xfs: fix freemap adjustments when adding xattrs to leaf blocks CVE-2026-43190 — kernel: netfilter: xt_tcpmss: check remaining length before reading optlen CVE-2026-43205 — kernel: Linux kernel dpaa2-switch: Kernel memory corruption via out-of-bounds write CVE-2026-43303 — kernel: mm/page_alloc: clear page->private in free_pages_prepare()