Red Hat Security Advisory: kernel security, bug fix, and enhancement update
🔗 CVE IDs covered (11)
📋 Description
CVE-2025-10263 — kernel: Arm Processors: Privilege escalation or information disclosure via writes to higher exception level resources CVE-2026-43112 — kernel: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath CVE-2026-43276 — kernel: net: mana: Fix double destroy_workqueue on service rescan PCI path CVE-2026-46116 — kernel: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete CVE-2026-46155 — kernel: smb/client: fix out-of-bounds read in smb2_compound_op() CVE-2026-46209 — kernel: drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() CVE-2026-46227 — kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL CVE-2026-46244 — kernel: netfilter: nft_inner: Fix IPv6 inner_thoff desync CVE-2026-46259 — kernel: procfs: fix missing RCU protection when reading real_parent in do_task_stat() CVE-2026-46316 — kernel: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry CVE-2026-46323 — kernel: Linux kernel: Use-After-Free in net/gro due to improper handling of zerocopy skbs
🔗 References (14)
- selfhttps://access.redhat.com/errata/RHSA-2026:36018
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467015
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467113
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2479832
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482523
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482564
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482636
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482660
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2484451
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2484477
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2486958
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2486982
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36018.json