Red Hat Security Advisory: kernel security update
🔗 CVE IDs covered (14)
📋 Description
CVE-2025-38653 — kernel: proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al CVE-2025-68183 — kernel: ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr CVE-2025-68724 — kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id CVE-2026-31408 — kernel: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold CVE-2026-43027 — kernel: netfilter: nf_conntrack_helper: pass helper to expect cleanup CVE-2026-43074 — kernel: eventpoll: defer struct eventpoll free to RCU grace period CVE-2026-43330 — kernel: crypto: caam - fix overflow on long hmac keys CVE-2026-43414 — kernel: scsi: qla2xxx: Completely fix fcport double free CVE-2026-46116 — kernel: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete CVE-2026-46135 — kernel: nvmet-tcp: fix race between ICReq handling and queue teardown CVE-2026-46173 — kernel: exit: prevent preemption of oopsing TASK_DEAD task CVE-2026-46242 — kernel: eventpoll: fix ep_remove struct eventpoll / struct file UAF CVE-2026-46316 — kernel: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry CVE-2026-53359 — kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected role
🔗 References (17)
- selfhttps://access.redhat.com/errata/RHSA-2026:39371
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2390372
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2422699
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2424886
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2455334
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2464369
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467019
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2468061
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2468155
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482523
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482634
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482654
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2483519
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2486982
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2497033
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_39371.json