Red Hat Security Advisory: kernel security, bug fix, and enhancement update
🔗 CVE IDs covered (10)
📋 Description
CVE-2026-23270 — kernel: Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation CVE-2026-23455 — kernel: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() CVE-2026-31669 — kernel: mptcp: fix slab-use-after-free in __inet_lookup_established CVE-2026-43125 — kernel: dlm: validate length in dlm_search_rsb_tree CVE-2026-43198 — kernel: tcp: fix potential race in tcp_v6_syn_recv_sock() CVE-2026-43279 — kernel: ALSA: usb-audio: Add sanity check for OOB writes at silencing CVE-2026-43329 — kernel: netfilter: flowtable: strictly check for maximum number of actions CVE-2026-45852 — kernel: RDMA/rxe: Fix double free in rxe_srq_from_init CVE-2026-46090 — kernel: ALSA: aloop: Fix peer runtime UAF during format-change stop CVE-2026-46181 — kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event()
🔗 References (13)
- selfhttps://access.redhat.com/errata/RHSA-2026:35863
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2448745
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2454810
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2461503
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467215
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467228
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467234
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2468124
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2481980
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482166
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482532
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_35863.json