- What: Security update for kernel-rt in Red Hat Enterprise Linux
- Impact: Addresses vulnerabilities in the real-time kernel
Red Hat Product Errata RHSA-2026:10756 - Security Advisory Issued: 2026-04-27 Updated: 2026-04-27 RHSA-2026:10756 - Security Advisory Overview Updated Packages Synopsis Moderate: kernel-rt security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix(es): kernel: Linux kernel: RDMA/rxe use-after-free vulnerability leading to potential arbitrary code execution (CVE-2025-38024) kernel: iavf: Fix reset error handling (CVE-2022-50053) kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem (CVE-2025-38180) kernel: RDMA/rxe: Fix incomplete state save in rxe_requester (CVE-2023-53539) kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() (CVE-2026-23193) kernel: net/sched: cls_u32: use skb_header_pointer_careful() (CVE-2026-23204) kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count() (CVE-2026-23216) kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain() (CVE-2026-23231) kernel: Linux kernel (qla2xxx): Double free vulnerability leads to denial of service and potential privilege escalation. (CVE-2025-71238) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux for Real Time for x86_64 - Extended Life Cycle Support 7 x86_64 Fixes BZ - 2373354 - CVE-2025-38024 kernel: Linux kernel: RDMA/rxe use-after-free vulnerability leading to potential arbitrary code execution BZ - 2373553 - CVE-2022-50053 kernel: iavf: Fix reset error handling BZ - 2376376 - CVE-2025-38180 kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem BZ - 2401510 - CVE-2023-53539 kernel: RDMA/rxe: Fix incomplete state save in rxe_requester BZ - 2439887 - CVE-2026-23193 kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() BZ - 2439931 - CVE-2026-23204 kernel: net/sched: cls_u32: use skb_header_pointer_careful() BZ - 2440630 - CVE-2026-23216 kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count() BZ - 2444376 - CVE-2026-23231 kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain() BZ - 2444398 - CVE-2025-71238 kernel: Linux kernel (qla2xxx): Double free vulnerability leads to denial of service and potential privilege escalation. CVEs CVE-2022-50053 CVE-2023-53539 CVE-2025-38024 CVE-2025-38180 CVE-2025-71238 CVE-2026-23193 CVE-2026-23204 CVE-2026-23216 CVE-2026-23231 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for Real Time for x86_64 - Extended Life Cycle Support 7 SRPM kernel-rt-3.10.0-1160.148.1.rt56.1300.el7.src.rpm SHA-256: 83554f31974a43f9032bce629ed3744bc571483c432ef934712c18ca8b156c7a x86_64 kernel-rt-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm SHA-256: 8455319996f5e46444df06a09313683985cc4b0723a92473f21c45874bbdcd65 kernel-rt-debug-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm SHA-256: 13a235229024cef0be419d7d1ff054fbb257c6580b8ac184ba278413e3356136 kernel-rt-debug-debuginfo-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm SHA-256: d2b83dcf6537dac03b1d7dd7a924412fcdadf381f630f79ff2390892d3f68e1a kernel-rt-debug-devel-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm SHA-256: b8bd5f9303041e772179801b9147e03ffc0d3aa3262feca56fed61d1c4ae9dd2 kernel-rt-debuginfo-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm SHA-256: dbafb0c4926f966ef23c69c75393476de44edd0457c879b61a345fd1e7054232 kernel-rt-debuginfo-common-x86_64-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm SHA-256: 65a3c7c29b57b4833dd85e8fe0ee523f10c3d8ca4357e2112f5e1e2ab11e5f55 kernel-rt-devel-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm SHA-256: 5d6980c64f0531497ee83704f9a8a7d8d7a2917d7f08c41ec4e129777e8fd4b2 kernel-rt-doc-3.10.0-1160.148.1.rt56.1300.el7.noarch.rpm SHA-256: 2fee42adeabd78906d42797e771e0b4719ce591f3b30c8f282b32d1fedaebfbd kernel-rt-trace-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm SHA-256: 4a480b07ff54a0562f1a1cb9014626b4dbc44db6a1a5e56eb07badf0c4adb8ea kernel-rt-trace-debuginfo-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm SHA-256: 5a0229cef95e9e21978d1046f77391b013383358953522c389ca39ee062ff2f2 kernel-rt-trace-devel-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm SHA-256: eb9df467dfcd7c7e49e5e1de5df8e5911484fdec60aa78b24224f58d412f39b1 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .