RHSA-2026:39371HighCVSS 7.8

Red Hat Security Advisory: kernel security update

Published
July 14, 2026
Last Modified
July 15, 2026

🔗 CVE IDs covered (14)

📋 Description

CVE-2025-38653 — kernel: proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al CVE-2025-68183 — kernel: ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr CVE-2025-68724 — kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id CVE-2026-31408 — kernel: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold CVE-2026-43027 — kernel: netfilter: nf_conntrack_helper: pass helper to expect cleanup CVE-2026-43074 — kernel: eventpoll: defer struct eventpoll free to RCU grace period CVE-2026-43330 — kernel: crypto: caam - fix overflow on long hmac keys CVE-2026-43414 — kernel: scsi: qla2xxx: Completely fix fcport double free CVE-2026-46116 — kernel: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete CVE-2026-46135 — kernel: nvmet-tcp: fix race between ICReq handling and queue teardown CVE-2026-46173 — kernel: exit: prevent preemption of oopsing TASK_DEAD task CVE-2026-46242 — kernel: eventpoll: fix ep_remove struct eventpoll / struct file UAF CVE-2026-46316 — kernel: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry CVE-2026-53359 — kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected role

🔗 References (17)