Red Hat Security Advisory: kernel security, bug fix, and enhancement update
🔗 CVE IDs covered (11)
📋 Description
CVE-2025-68183 — kernel: ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr CVE-2026-31408 — kernel: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold CVE-2026-43074 — kernel: eventpoll: defer struct eventpoll free to RCU grace period CVE-2026-43279 — kernel: ALSA: usb-audio: Add sanity check for OOB writes at silencing CVE-2026-45984 — kernel: gfs2: Fix use-after-free in iomap inline data write path CVE-2026-46135 — kernel: nvmet-tcp: fix race between ICReq handling and queue teardown CVE-2026-46152 — kernel: wifi: mac80211: drop stray 'static' from fast-RX rx_result CVE-2026-46189 — kernel: RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path CVE-2026-46242 — kernel: eventpoll: fix ep_remove struct eventpoll / struct file UAF CVE-2026-46316 — kernel: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry CVE-2026-53359 — kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected role
🔗 References (14)
- selfhttps://access.redhat.com/errata/RHSA-2026:38902
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2422699
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2455334
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467019
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467215
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2481922
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482563
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482588
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482654
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2483519
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2486982
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2497033
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_38902.json