What is RHSA-2026:3110?

RHSA-2026:3110 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: kernel-rt security update

Which CVE IDs does RHSA-2026:3110 cover?

RHSA-2026:3110 covers the following CVE IDs: CVE-2025-38248, CVE-2025-40064, CVE-2025-68800, CVE-2026-23074, CVE-2025-38129. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHSA-2026:3110?

RHSA-2026:3110 has a CVSS v3 base score of 7.3, published by Red Hat Product Security.

RHSA-2026:3110HighCVSS 7.3

Red Hat Security Advisory: kernel-rt security update

Vendor

Red Hat Product Security

Published

February 23, 2026

Last Modified

June 17, 2026

🔗 CVE IDs covered (5)

CVE-2025-38248 →CVE-2025-40064 →CVE-2025-68800 →CVE-2026-23074 →CVE-2025-38129 →

📋 Description

CVE-2025-38129 — kernel: Linux kernel: Use-after-free vulnerability in page_pool_recycle_in_ring can lead to arbitrary code execution CVE-2025-38248 — kernel: Linux kernel:A use-after-free in bridge multicast in br_multicast_port_ctx_init CVE-2025-40064 — kernel: smc: Fix use-after-free in __pnet_find_base_ndev() CVE-2025-68800 — kernel: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats CVE-2026-23074 — kernel: Linux kernel: Use-after-free in teql queueing discipline can lead to privilege escalation

🔗 References (8)

selfhttps://access.redhat.com/errata/RHSA-2026:3110
externalhttps://access.redhat.com/security/updates/classification/#important
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2376034
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2378981
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2406747
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2429065
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2436791
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3110.json