Red Hat Security Advisory: kernel security, bug fix, and enhancement update
🔗 CVE IDs covered (13)
📋 Description
CVE-2025-38154 — kernel: Linux kernel: Use-after-free in BPF sockmap can lead to denial of service and privilege escalation CVE-2025-40135 — kernel: ipv6: use RCU in ip6_xmit() CVE-2025-40158 — kernel: ipv6: use RCU in ip6_output() CVE-2025-40170 — kernel: net: use dst_dev_rcu() in sk_setup_caps() CVE-2026-23136 — kernel: Linux kernel: Denial of Service in libceph OSD client due to unreset sparse-read state CVE-2026-31474 — kernel: can: isotp: fix tx.buf use-after-free in isotp_sendmsg() CVE-2026-43116 — kernel: netfilter: ctnetlink: ensure safe access to master conntrack CVE-2026-43501 — kernel: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows CVE-2026-45898 — kernel: RDMA/iwcm: Fix workqueue list corruption by removing work_list CVE-2026-46125 — kernel: wifi: mac80211: remove station if connection prep fails CVE-2026-46227 — kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL CVE-2026-46323 — kernel: Linux kernel: Use-After-Free in net/gro due to improper handling of zerocopy skbs CVE-2026-46331 — kernel: net/sched: act_pedit: extend the writable skb range per key
🔗 References (16)
- selfhttps://access.redhat.com/errata/RHSA-2026:27731
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2376056
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2414506
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2414521
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2414523
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2439852
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2460646
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467005
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2479492
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2479832
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2480457
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482031
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482564
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482608
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_27731.json