Red Hat Security Advisory: kernel security update
🔗 CVE IDs covered (9)
📋 Description
CVE-2025-68183 — kernel: ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr CVE-2026-31613 — kernel: smb: client: fix OOB reads parsing symlink error response CVE-2026-31684 — kernel: net: sched: act_csum: validate nested VLAN headers CVE-2026-43027 — kernel: netfilter: nf_conntrack_helper: pass helper to expect cleanup CVE-2026-43499 — kernel: rtmutex: Use waiter::task instead of current in remove_waiter() CVE-2026-46135 — kernel: nvmet-tcp: fix race between ICReq handling and queue teardown CVE-2026-46189 — kernel: RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path CVE-2026-46209 — kernel: drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() CVE-2026-53166 — kernel: futex/requeue: Prevent NULL pointer dereference in remove_waiter() on self-deadlock
🔗 References (12)
- selfhttps://access.redhat.com/errata/RHSA-2026:40068
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2422699
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2461480
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2461757
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2464369
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2480453
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482588
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482636
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2482654
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2492805
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_40068.json