RHSA-2026:36541HighCVSS 7.3
Red Hat Security Advisory: kernel security, bug fix, and enhancement update
🔗 CVE IDs covered (6)
📋 Description
CVE-2026-43074 — kernel: eventpoll: defer struct eventpoll free to RCU grace period CVE-2026-43276 — kernel: net: mana: Fix double destroy_workqueue on service rescan PCI path CVE-2026-43341 — kernel: net/ipv6: ioam6: prevent schema length wraparound in trace fill CVE-2026-46155 — kernel: smb/client: fix out-of-bounds read in smb2_compound_op() CVE-2026-46242 — kernel: eventpoll: fix ep_remove struct eventpoll / struct file UAF CVE-2026-46259 — kernel: procfs: fix missing RCU protection when reading real_parent in do_task_stat()
🔗 References (9)
- selfhttps://access.redhat.com/errata/RHSA-2026:36541
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467019
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467113
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2468097
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482660
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2483519
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2484477
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36541.json