Red Hat Security Advisory: kernel security, bug fix, and enhancement update
🔗 CVE IDs covered (10)
📋 Description
CVE-2025-71116 — kernel: libceph: make decode_pool() more resilient against corrupted osdmaps CVE-2026-22984 — kernel: libceph: prevent potential out-of-bounds reads in handle_auth_done() CVE-2026-22990 — kernel: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() CVE-2026-43116 — kernel: netfilter: ctnetlink: ensure safe access to master conntrack CVE-2026-43158 — kernel: xfs: fix freemap adjustments when adding xattrs to leaf blocks CVE-2026-43303 — kernel: mm/page_alloc: clear page->private in free_pages_prepare() CVE-2026-46125 — kernel: wifi: mac80211: remove station if connection prep fails CVE-2026-46227 — kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL CVE-2026-46243 — kernel: Linux kernel: smb: client: reject userspace cifs.spnego descriptions CVE-2026-46323 — kernel: Linux kernel: Use-After-Free in net/gro due to improper handling of zerocopy skbs
🔗 References (13)
- selfhttps://access.redhat.com/errata/RHSA-2026:27735
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2429602
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2432389
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2432400
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467005
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467210
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2468091
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2479832
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2481486
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482564
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482608
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_27735.json