RHSA-2026:27713HighCVSS 7.8
Red Hat Security Advisory: kernel security, bug fix, and enhancement update
🔗 CVE IDs covered (8)
📋 Description
CVE-2026-23455 — kernel: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() CVE-2026-31669 — kernel: mptcp: fix slab-use-after-free in __inet_lookup_established CVE-2026-43128 — kernel: RDMA/umem: Fix double dma_buf_unpin in failure path CVE-2026-43329 — kernel: netfilter: flowtable: strictly check for maximum number of actions CVE-2026-43501 — kernel: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows CVE-2026-45852 — kernel: RDMA/rxe: Fix double free in rxe_srq_from_init CVE-2026-46173 — kernel: exit: prevent preemption of oopsing TASK_DEAD task CVE-2026-46331 — kernel: net/sched: act_pedit: extend the writable skb range per key
🔗 References (11)
- selfhttps://access.redhat.com/errata/RHSA-2026:27713
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2454810
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2461503
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467144
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2468124
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2479492
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2480457
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482166
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482634
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_27713.json