RHSA-2026:35894HighCVSS 7.8
Red Hat Security Advisory: kernel security update
🔗 CVE IDs covered (6)
📋 Description
CVE-2026-31408 — kernel: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold CVE-2026-31669 — kernel: mptcp: fix slab-use-after-free in __inet_lookup_established CVE-2026-43198 — kernel: tcp: fix potential race in tcp_v6_syn_recv_sock() CVE-2026-43279 — kernel: ALSA: usb-audio: Add sanity check for OOB writes at silencing CVE-2026-45984 — kernel: gfs2: Fix use-after-free in iomap inline data write path CVE-2026-46181 — kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event()
🔗 References (9)
- selfhttps://access.redhat.com/errata/RHSA-2026:35894
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2455334
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2461503
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467215
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467228
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2481922
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482532
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_35894.json