Red Hat Security Advisory: kernel security update
🔗 CVE IDs covered (13)
📋 Description
CVE-2022-50673 — kernel: ext4: fix use-after-free in ext4_orphan_cleanup CVE-2022-50865 — kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog() CVE-2023-53581 — kernel: net/mlx5e: Check for NOT_READY flag state after locking CVE-2023-53673 — kernel: Bluetooth: hci_event: call disconnect callback before deleting conn CVE-2023-53751 — kernel: Linux kernel (CIFS): Use-after-free vulnerability allows data integrity compromise and denial of service CVE-2023-53833 — kernel: drm/i915: Fix NULL ptr deref by checking new_crtc_state CVE-2025-39817 — kernel: efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare CVE-2025-40154 — kernel: ASoC: Intel: bytcr_rt5640: Fix invalid quirk input mapping CVE-2025-40258 — kernel: mptcp: fix race condition in mptcp_schedule_work() CVE-2025-40304 — kernel: Linux kernel: Out-of-bounds write in fbdev can lead to privilege escalation, information disclosure, or denial of service. CVE-2025-40322 — kernel: Linux kernel: Information disclosure and denial of service via out-of-bounds read in font glyph handling CVE-2025-68301 — kernel: net: atlantic: fix fragment overflow handling in RX path CVE-2025-68349 — kernel: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid
🔗 References (16)
- selfhttps://access.redhat.com/errata/RHSA-2026:2490
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2395805
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2401545
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2402193
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2414494
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2418876
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2419858
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2419870
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2419902
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2420347
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2420366
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2424880
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2422836
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2426226
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_2490.json