Red Hat Product Errata RHSA-2026:9513 - Security Advisory Issued: 2026-04-22 Updated: 2026-04-22 RHSA-2026:9513 - Security Advisory Overview Updated Packages Synopsis Moderate: kernel security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064) kernel: smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168) kernel: net/sched: cls_u32: use skb_header_pointer_careful() (CVE-2026-23204) kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain() (CVE-2026-23231) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux Server - AUS 8.2 x86_64 Fixes BZ - 2406747 - CVE-2025-40064 kernel: smc: Fix use-after-free in __pnet_find_base_ndev() BZ - 2414482 - CVE-2025-40168 kernel: smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() BZ - 2439931 - CVE-2026-23204 kernel: net/sched: cls_u32: use skb_header_pointer_careful() BZ - 2444376 - CVE-2026-23231 kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain() CVEs CVE-2025-40064 CVE-2025-40168 CVE-2026-23204 CVE-2026-23231 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - AUS 8.2 SRPM kernel-4.18.0-193.195.1.el8_2.src.rpm SHA-256: 3500dbc7bc672663dff16e92d62e2b53864e5d395be5f4a77dac2389f0de4ab9 x86_64 bpftool-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 1c0ea5285e12e3f9381eed9f05855bb64e4949cd787a0706628fc2295187c494 bpftool-debuginfo-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 30886edf5f0188b53dc9fb938eb5403872bc21cfc1035add99013d980f34a22a kernel-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: d60d218948296d3b22050c6a573d169342024ee9ff8b385d6aad670fb8476a60 kernel-abi-whitelists-4.18.0-193.195.1.el8_2.noarch.rpm SHA-256: f19fe5d1860fe3a69b266675fe9c5f15b90e7f956621f119dd1db6f78750df12 kernel-core-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: f1c8fd949b5d558244569aa102943d3368e0c7ba7d7bc2a316ce81eedc7aed72 kernel-cross-headers-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 321f04a6377697b7b8140e8eb25cc5ff09d356ebd4f209c7661c45bab9a700ac kernel-debug-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: c22e48b8d78f3386250838af2909697a6d3ac1c8f445742eaa5095b3dd9b13d8 kernel-debug-core-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 4f3c5dbaba117a02ed1b5ef73c801328766ba786451d59e122c4f23bf2230843 kernel-debug-debuginfo-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 0051ff584504086358c1ee229ebcf911743a6b85ed941f90eabc4892786f0fd0 kernel-debug-devel-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 4e50944dcd3a393df99750d348880acd6249db68850c4a8de6e09b2ffb8d1ea7 kernel-debug-modules-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 20fc76160bac79920a41c0eec65086e1ae6d0f5371f061393ac52812d17c49cb kernel-debug-modules-extra-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: ee12375b05293103a12d731bee184d191d2cb81ccea6a0fe98573a5ab9e1ba15 kernel-debuginfo-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 43768dc9f47d53e52c0dc73970570fddbbe2342b39802fc47d77fc89c27c0a7f kernel-debuginfo-common-x86_64-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: c7e9a49aaefdaeecdd293ef252d8605bb9824615954271789707d2f531a75dce kernel-devel-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: be0cbe465a26cf0bc57e85ef1a2df10d8677b48cd51c93d128026c49edd72753 kernel-doc-4.18.0-193.195.1.el8_2.noarch.rpm SHA-256: daf41d1dde5fa7cb0e074c9695e6f2ded75ad98d8fd2f0eec1f8f3e25aa3fe3c kernel-headers-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: d4b7ab4e4c8f6cc859d145cf5b5dc2e9888713208c69a043162bc41118dcf1cc kernel-modules-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 62c19f5466a837e6771fe41534216f908143161d48b022e252f0c457622d05e3 kernel-modules-extra-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 4ff117694f28f562bdd1b76dab61146cdf835a97893c43a915be267e17dc2c24 kernel-tools-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 4dc94d9369c69a3b449ca017c10e405a5997c5cf70dc1ef846fed7c8992e127b kernel-tools-debuginfo-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 3d99e0f689504a746147555813bcc0096b85dc86ee1bf2f17100a8a430a654a5 kernel-tools-libs-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 3e8410b76ef0442cb655cff1b702ab3b400b27c547ae602c76e7118a3033807f perf-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 5ff5b0737910e0fb1157d9f0c3b468b8bfdcf388ec570e82e7ecf496d537efbd perf-debuginfo-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: f3a9ccce458cfca7d174593936521d89f0f259987f8d5285603c818a8cb11333 python3-perf-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 229c4684d37dd936f9ff0618fcd8ba89af613c83369d7e1a6b55391ea892ae74 python3-perf-debuginfo-4.18.0-193.195.1.el8_2.x86_64.rpm SHA-256: 950657e04ef2018b0ca6ebe96e5da7df7d118558bc6eb8a014a2094af1948e13 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .