Red Hat Product Errata RHSA-2026:9131 - Security Advisory Issued: 2026-04-20 Updated: 2026-04-20 RHSA-2026:9131 - Security Advisory Overview Updated Packages Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: scsi: qla2xxx: Fix improper freeing of purex item (CVE-2025-68741) kernel: ALSA: aloop: Fix racy access at PCM trigger (CVE-2026-23191) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux for x86_64 8 x86_64 Red Hat Enterprise Linux for IBM z Systems 8 s390x Red Hat Enterprise Linux for Power, little endian 8 ppc64le Red Hat Enterprise Linux for ARM 64 8 aarch64 Red Hat CodeReady Linux Builder for x86_64 8 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 8 ppc64le Red Hat CodeReady Linux Builder for ARM 64 8 aarch64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10 s390x Fixes BZ - 2425046 - CVE-2025-68741 kernel: scsi: qla2xxx: Fix improper freeing of purex item BZ - 2439947 - CVE-2026-23191 kernel: ALSA: aloop: Fix racy access at PCM trigger CVEs CVE-2025-68741 CVE-2026-23191 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 8 SRPM kernel-4.18.0-553.120.1.el8_10.src.rpm SHA-256: 62b2a80a809146e28084795f2a26cca17511bec07c2d58b2175abb30446326b0 x86_64 bpftool-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 7d6b1ae185afcc3cc793e343c30d5a789805fefd03bd831b9c2ca6d11673a8ec bpftool-debuginfo-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 8ba0603a29870815666ea69161f3ded2540113a91c28289c3b73938708512a5c kernel-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 180ff7694e782336592c5661088f2098b4d4ef53ace2370e59007d4aa0c01d66 kernel-abi-stablelists-4.18.0-553.120.1.el8_10.noarch.rpm SHA-256: 7043e69a4859a0761dd31645b17a4437f024a67fb37117895315b21c0d57fa27 kernel-core-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 82640953336b40dae5fdc2705e754d631156dd5b1915d8c9285fc97a99c1f185 kernel-cross-headers-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 78ed94ef628f782d74fc2563900e9b062e507d21d597eb2eefa15f7f55fb51b5 kernel-debug-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 137bf1c1f419b0851220d9800214ee1f0be472b39c4f3345cb0fb1902835d001 kernel-debug-core-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: e4e606f156ac663911585047c1c2c45ab6f7d80b0acb9a04d4b3094a4dca4201 kernel-debug-debuginfo-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 96cd770f9f57fe614a34460e698e3902cddf43529c705689a9be63bfcfc76bf6 kernel-debug-devel-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 99912415a7262fd2c28f48d488b38d765824c845fd47ab5d27f2759853118b69 kernel-debug-modules-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 68cd4b0a27fbad66f70daa2b8404443c181b3e4847f3fd317dbfa4842af90ce3 kernel-debug-modules-extra-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 67de059c1c9777f92f660cc23a1fd5a8efd138ad649227bcdef78ac579cb1736 kernel-debuginfo-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: f7eaff160e545d5033d1a32067181b9adbdefdb5ee7a73747a85d98c1b5655d5 kernel-debuginfo-common-x86_64-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 100bc8f0c8b4946df539de4bf74a163a5e3e276b19ae28a2857d7304fe1a982c kernel-devel-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: f1707a82f3029b56f7d01b9fa832a733560b020953435324b11ee7e64a65ad0c kernel-doc-4.18.0-553.120.1.el8_10.noarch.rpm SHA-256: 43c3810600fb6169785c8770bf2e3cea3fa8bc51bb1e9069860b4a7fad398ab2 kernel-headers-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 420b1615d4e718dd60ab9725c155bdf83ea7f115c9c944911c958d61d6f4e5d2 kernel-modules-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 609ebbfe00d62af949f6815d532e0f91cd676ede7947724d9b0541a3653fd4b2 kernel-modules-extra-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 919098bf62c33eb8b45bf273b20dcf4b06f144f78b3859c47931c8cb4452f901 kernel-tools-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: b77435a11fce7946cb90d71e3b31972e93c902dca9902dd3f0d6489ec87e3955 kernel-tools-debuginfo-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 6249e56654b188d8d88f8e095c902f94ab5246042338dfb374528ac492361edc kernel-tools-libs-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 34c8150feb393b95c09b6dd562f36a260f178ef19d71d70622574148758d19d6 perf-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 569aa9cf4e17630ecf5623b92871ba83900554b47fd4ee0338e7e88544838980 perf-debuginfo-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: b9b1bef0439d665362d71e30a02bd1409ef458a5b8d998b18ae01ef249624cf7 python3-perf-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: a0eb5ef6dfb0498a49b5d4156ed881ef455a148b461dd48263b8a9d1c0ea4bc6 python3-perf-debuginfo-4.18.0-553.120.1.el8_10.x86_64.rpm SHA-256: 6ed69dd1a12b35f120f718609ce95f9c4515a2c56e746c8d06fd890634697cae Red Hat Enterprise Linux for IBM z Systems 8 SRPM kernel-4.18.0-553.120.1.el8_10.src.rpm SHA-256: 62b2a80a809146e28084795f2a26cca17511bec07c2d58b2175abb30446326b0 s390x bpftool-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 8d282bf7fce157d9f3931a67309b8e673c582f439e24a6cc3e6229419e8704c9 bpftool-debuginfo-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: a1a2aff7ab4188ed94631fa500a32097677b61a68ec7e219eb0e12c25a3089ab kernel-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 76c88ece4f2b34b6e72377b0452ba5bfb216e34a5a48481617bd40192d3e502f kernel-abi-stablelists-4.18.0-553.120.1.el8_10.noarch.rpm SHA-256: 7043e69a4859a0761dd31645b17a4437f024a67fb37117895315b21c0d57fa27 kernel-core-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: d0773219421a36cd16eb8e183b94c03239b144facf192c9e3d0e1e3d2c4cce57 kernel-cross-headers-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 0007e7cb96c91892d67cec07ac49dc93162ea692168bba232c0df74ce091b266 kernel-debug-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: ba89b6ca4f7afd4e85c68716d7d82cd328180ff8f174e794f607dc7bcde110c5 kernel-debug-core-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 98aa0ffdc85a74d16a4bb8b655bf536398b8a3fc1a5a9b734239a09ec69d5c47 kernel-debug-debuginfo-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 91929370a8ebcf0598332103c14cc42c05e10e0fd798c6d3146db0629c7b0a5a kernel-debug-devel-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 2185181af1670d459a335072beb439e011897ec1a25d9e93fed2fe401e49fb93 kernel-debug-modules-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: e0d15d958059c60fe0e9bb4753ad76a8d005a0d065778b04ec31e3597cea0844 kernel-debug-modules-extra-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 5ec69bd61df9b5ae4f7bdb2f5bcb6957d3f4d42ac3d56bd972d78dc64c2bcb31 kernel-debuginfo-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 32887e647d151e54d7b4566ad69dbaeff41bf541d18a78a826028710d29ad9ee kernel-debuginfo-common-s390x-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 9808e1db6ed84f01ecd5dda3cbb09eb6952abb99a880064d85b3e1b331778ee5 kernel-devel-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: d88be7f436520f7ab7733aab9aaf21028abe2d7bd10a7694075668bf3db29db2 kernel-doc-4.18.0-553.120.1.el8_10.noarch.rpm SHA-256: 43c3810600fb6169785c8770bf2e3cea3fa8bc51bb1e9069860b4a7fad398ab2 kernel-headers-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 59fccf9c23a92f6e8725320f8ebbeeaa4088114745b2e196cd99164d3373a1da kernel-modules-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: a0379061d0c8beb434b7bc456c14c7fe36e57d8a61258291ef24ecbfe05861cc kernel-modules-extra-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 918b78a6e26abf9032b05739df3c470dceb2d5b0d5084856fd4fc0a2b0e8e1ff kernel-tools-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 3ede2363b66324f372d7947902df4ffa03b77bf181bad0159e86deba6e04b6d5 kernel-tools-debuginfo-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 890efb11ffbf9f72fa010dc50412c886d84e0a8efc75af218270214de8371f67 kernel-zfcpdump-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 13aa9f33227802256815b19906f654af12b645e51dbf083f6dd97b1bc4496e1e kernel-zfcpdump-core-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: a5b6790a5c3a58a8033bc00d372a72bc12c96177af4cc139d438424c5f9dcb57 kernel-zfcpdump-debuginfo-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 16aefec62ba84de923bbe6fe199aab31655aa17de47f070b9226eca37794ddfc kernel-zfcpdump-devel-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: ecec17ada2df8e4c79a6147378e033567e08d2719199854540938dd8561a086b kernel-zfcpdump-modules-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 60346883bdc6ff24586972558c12360772a4b2d5b9ba1289427967a3ad697644 kernel-zfcpdump-modules-extra-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: aab111ef85394558e3c3314fe6e7c7bb13afabf0c8a64fadb6102fedab251dda perf-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 69006e6897ceca796e3fbc73160859285c9b4d5d801e1ae0718c82e8ee1f5c81 perf-debuginfo-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 891db2158b6a18705aca69fbeca7dc00486d45da221fd0b79c7cd933018c08a9 python3-perf-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: 7f921ddfd43e99dddf02929cfe854760dec702d528b2ae4bc67f28ae0b3c9cd2 python3-perf-debuginfo-4.18.0-553.120.1.el8_10.s390x.rpm SHA-256: b55d2a1d4891e655f026074524eb0de7ed71c62175bb2f8cf7b9b0e079a0c0d9 Red Hat Enterprise Lin