Red Hat Product Errata RHSA-2026:9095 - Security Advisory Issued: 2026-04-20 Updated: 2026-04-20 RHSA-2026:9095 - Security Advisory Overview Updated Packages Synopsis Moderate: kernel security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: Linux kernel: Denial of Service via unsafe requeue in rxrpc_recvmsg (CVE-2026-23066) kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() (CVE-2026-23193) kernel: Linux kernel: Information disclosure in efivarfs via incorrect error propagation (CVE-2026-23156) kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain() (CVE-2026-23231) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.0 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.0 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.0 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.0 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 x86_64 Fixes BZ - 2436805 - CVE-2026-23066 kernel: Linux kernel: Denial of Service via unsafe requeue in rxrpc_recvmsg BZ - 2439887 - CVE-2026-23193 kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() BZ - 2439951 - CVE-2026-23156 kernel: Linux kernel: Information disclosure in efivarfs via incorrect error propagation BZ - 2444376 - CVE-2026-23231 kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain() CVEs CVE-2026-23066 CVE-2026-23156 CVE-2026-23193 CVE-2026-23231 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 SRPM kernel-6.12.0-55.69.1.el10_0.src.rpm SHA-256: 8c94c10e4d6d153c78d5cad98fb98e37e3c35ded3460343c583350b67f3fad75 x86_64 kernel-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 6d8a570cc706efabe08a56bd40a1d2b3b7a5e5652ec682b0d9d21c00fa5dcc2e kernel-abi-stablelists-6.12.0-55.69.1.el10_0.noarch.rpm SHA-256: 3cb9348516f8341a63682f93d591cdea76131459c254ac6290474b7c4dc2ff46 kernel-core-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 3a85a4112863b502fa35740f6f22b6b3a210431acb545ff8353c188ebcbc820f kernel-debug-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 05f50074f7d0ae591b527b77ae5d5054e3be57e904400954d151825fffe14d2f kernel-debug-core-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 6edad054a44d10a61f579df030b00ba49ad8446d0cb60c9d627142234f76f0a4 kernel-debug-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 4c408abda46118cd4a3d21060340023376a115e15749d99eb1198100e9e60c26 kernel-debug-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 4c408abda46118cd4a3d21060340023376a115e15749d99eb1198100e9e60c26 kernel-debug-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 4c408abda46118cd4a3d21060340023376a115e15749d99eb1198100e9e60c26 kernel-debug-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 4c408abda46118cd4a3d21060340023376a115e15749d99eb1198100e9e60c26 kernel-debug-devel-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 84afeda8a6b3176726b315198e51579316dd6f801993a52dedfcbdb31396da14 kernel-debug-devel-matched-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 8013c4e47dd898a84b3c51784f956b72ac00806438fce1c6f865e6b94ab38096 kernel-debug-modules-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: f477865d371b1a267f5becf65b26a5884e5ffa4cbbb8531911a1dc6ab6afc0ea kernel-debug-modules-core-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: fb6438c51f0f790f414510dc32d2078cfa556fa3fb4e366377a4425ea4f11a0d kernel-debug-modules-extra-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: e602f0fda5688f37962698766aa01f8fdc3cbfc5ed5bb383de2b9333ddfa296e kernel-debug-uki-virt-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 302e394b196b17bd5ec2024ee3bd99561c95bb6061361a4ffda741cc2e94d486 kernel-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 71c076f980d51897f2196293f51fcfaa7a9aa47fecf5e4ceb7d947beec1ba47f kernel-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 71c076f980d51897f2196293f51fcfaa7a9aa47fecf5e4ceb7d947beec1ba47f kernel-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 71c076f980d51897f2196293f51fcfaa7a9aa47fecf5e4ceb7d947beec1ba47f kernel-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 71c076f980d51897f2196293f51fcfaa7a9aa47fecf5e4ceb7d947beec1ba47f kernel-debuginfo-common-x86_64-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 072bd8f152f02bded1ce41e58a56ef7d8ebff7f9bbc806cedc0fb6cb89ecbb90 kernel-debuginfo-common-x86_64-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 072bd8f152f02bded1ce41e58a56ef7d8ebff7f9bbc806cedc0fb6cb89ecbb90 kernel-debuginfo-common-x86_64-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 072bd8f152f02bded1ce41e58a56ef7d8ebff7f9bbc806cedc0fb6cb89ecbb90 kernel-debuginfo-common-x86_64-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 072bd8f152f02bded1ce41e58a56ef7d8ebff7f9bbc806cedc0fb6cb89ecbb90 kernel-devel-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: da21d8a4f4c234e6e6b65a7696c9a572fe712caaafbf107761afa3267fd691d2 kernel-devel-matched-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: fa523c387e464111d2f2d4ec5ca61dc9d184ee83c4980232f13462c71c508244 kernel-doc-6.12.0-55.69.1.el10_0.noarch.rpm SHA-256: 32335b3059af832fc9c94041305c83237199024a058ed12bc075a4f2b6990150 kernel-headers-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: f951d685b4b9f2b88b172761ad1b453b73bec2fe80bcaa66fe57c8dc2933b318 kernel-modules-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 4bafd398d6c2717c378b58e2f13a9aec46f680a849edb69f90e433d1a5d2edc1 kernel-modules-core-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: e287a0100747f447de5f1287037abf5eb6915d3e3da32478cb861e135497e74f kernel-modules-extra-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 36d78e47d2acc04792a83a5dad1812ee1110eda917447853caac67f9cbcd04e3 kernel-rt-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 7894f8ec9fcee0abb385f084c186973533352a0843c78e0ce9abd1e3a9a970af kernel-rt-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 7894f8ec9fcee0abb385f084c186973533352a0843c78e0ce9abd1e3a9a970af kernel-rt-core-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: dc74e864d0ceeb35247c0a1bfb4bb0fbd368b57683639edfe531c1d0811435f1 kernel-rt-core-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: dc74e864d0ceeb35247c0a1bfb4bb0fbd368b57683639edfe531c1d0811435f1 kernel-rt-debug-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 4993772f71160be43832b4d704182cc2bde01489b2c0250a651bcd4ebbacca9f kernel-rt-debug-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 4993772f71160be43832b4d704182cc2bde01489b2c0250a651bcd4ebbacca9f kernel-rt-debug-core-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 38cd98203c75cb9c48bdac14f7ec3f1aa06e419b8f45903e804b9e8b6b697fd2 kernel-rt-debug-core-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 38cd98203c75cb9c48bdac14f7ec3f1aa06e419b8f45903e804b9e8b6b697fd2 kernel-rt-debug-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 98d7bd276d7dc49efac7c241682cfde9f1e0bc4b38eaa25e41219b7d94573fec kernel-rt-debug-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 98d7bd276d7dc49efac7c241682cfde9f1e0bc4b38eaa25e41219b7d94573fec kernel-rt-debug-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 98d7bd276d7dc49efac7c241682cfde9f1e0bc4b38eaa25e41219b7d94573fec kernel-rt-debug-debuginfo-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 98d7bd276d7dc49efac7c241682cfde9f1e0bc4b38eaa25e41219b7d94573fec kernel-rt-debug-devel-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 94a35c4b537715c4a9188025cc324839ff40ca7073eee95f1f661879cb93e253 kernel-rt-debug-devel-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 94a35c4b537715c4a9188025cc324839ff40ca7073eee95f1f661879cb93e253 kernel-rt-debug-kvm-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: db7025d2825479fbd5782197dba8ba1b62b5017825fd3014c4a6ec6694b421ba kernel-rt-debug-modules-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 4ebdf2a981f79ff5aac0c948b60370a8a7e053db37c2b8468fc7c74e1394d2b8 kernel-rt-debug-modules-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 4ebdf2a981f79ff5aac0c948b60370a8a7e053db37c2b8468fc7c74e1394d2b8 kernel-rt-debug-modules-core-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: dfd05e4eb8344f784c38140141fdc7170204da7ad023ca0522d70969f661574a kernel-rt-debug-modules-core-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: dfd05e4eb8344f784c38140141fdc7170204da7ad023ca0522d70969f661574a kernel-rt-debug-modules-extra-6.12.0-55.69.1.el10_0.x86_64.rpm SHA-256: 92726f946d2acf48d3e6267e8074aa76809c09c5a2beb4491f9b5fd18084515c kernel-rt-debug-modules-extra-6.12.0-55.69.1.el1