RHSA-2026:34094HighCVSS 7.8

Red Hat Security Advisory: kernel security, bug fix, and enhancement update

Published
July 1, 2026
Last Modified
July 6, 2026

🔗 CVE IDs covered (18)

📋 Description

CVE-2025-21648 — kernel: netfilter: conntrack: clamp maximum hashtable size to INT_MAX CVE-2025-21691 — kernel: cachestat: fix page cache statistics permission checking CVE-2026-23191 — kernel: ALSA: aloop: Fix racy access at PCM trigger CVE-2026-31669 — kernel: mptcp: fix slab-use-after-free in __inet_lookup_established CVE-2026-43027 — kernel: netfilter: nf_conntrack_helper: pass helper to expect cleanup CVE-2026-43125 — kernel: dlm: validate length in dlm_search_rsb_tree CVE-2026-43128 — kernel: RDMA/umem: Fix double dma_buf_unpin in failure path CVE-2026-43198 — kernel: tcp: fix potential race in tcp_v6_syn_recv_sock() CVE-2026-43329 — kernel: netfilter: flowtable: strictly check for maximum number of actions CVE-2026-43414 — kernel: scsi: qla2xxx: Completely fix fcport double free CVE-2026-43501 — kernel: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows CVE-2026-45852 — kernel: RDMA/rxe: Fix double free in rxe_srq_from_init CVE-2026-46090 — kernel: ALSA: aloop: Fix peer runtime UAF during format-change stop CVE-2026-46173 — kernel: exit: prevent preemption of oopsing TASK_DEAD task CVE-2026-46176 — kernel: RDMA/mlx5: Fix error path fall-through in mlx5_ib_dev_res_srq_init() CVE-2026-46181 — kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event() CVE-2026-46227 — kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL CVE-2026-46244 — kernel: netfilter: nft_inner: Fix IPv6 inner_thoff desync

🔗 References (21)