Red Hat Security Advisory: kernel security update

CVE-2025-40135 — kernel: ipv6: use RCU in ip6_xmit() CVE-2025-40158 — kernel: ipv6: use RCU in ip6_output() CVE-2025-40170 — kernel: net: use dst_dev_rcu() in sk_setup_caps() CVE-2025-68724 — kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id CVE-2025-71089 — kernel: iommu: disable SVA when CONFIG_X86 is set CVE-2025-71116 — kernel: libceph: make decode_pool() more resilient against corrupted osdmaps CVE-2026-22984 — kernel: libceph: prevent potential out-of-bounds reads in handle_auth_done() CVE-2026-22990 — kernel: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() CVE-2026-23216 — kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count() CVE-2026-23455 — kernel: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() CVE-2026-31508 — kernel: net: openvswitch: Avoid releasing netdev before teardown completes CVE-2026-43110 — kernel: wifi: brcmfmac: validate bsscfg indices in IF events CVE-2026-43190 — kernel: netfilter: xt_tcpmss: check remaining length before reading optlen