Security News

Cybersecurity news aggregator

🔄
HIGH Updates Red Hat Errata

RHSA-2026:10996: Important: kernel security update

cve-2025-68741cve-2026-2300red-hatcve-2026-23001cve-2026-23111
This Red Hat kernel security update addresses three vulnerabilities: a use-after-free flaw in the macvlan subsystem (CVE-2026-23001, CVSS 7.8) and a privilege escalation/DoS issue in nf_tables (CVE-2026-23111, CVSS 7.8). CVE-2026-23001 affects Linux kernel versions 3.18.1 through 5.10.248, 5.11 through 5.15.198, 5.16 through 6.1.161, 6.2 through 6.6.121, and 6.7 through 6.12.66, with fixes available in versions 5.10.249, 5.15.199, 6.1.162, 6.6.122, 6.12.67, and 6.18.7. A system reboot is required after applying the update.
Read Full Article →

Red Hat Product Errata RHSA-2026:10996 - Security Advisory Issued: 2026-04-27 Updated: 2026-04-27 RHSA-2026:10996 - Security Advisory Overview Updated Packages Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: scsi: qla2xxx: Fix improper freeing of purex item (CVE-2025-68741) kernel: macvlan: fix possible UAF in macvlan_forward_source() (CVE-2026-23001) kernel: Kernel: Privilege escalation or denial of service in nf_tables via inverted element activity check (CVE-2026-23111) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.0 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.0 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.0 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.0 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 x86_64 Fixes BZ - 2425046 - CVE-2025-68741 kernel: scsi: qla2xxx: Fix improper freeing of purex item BZ - 2432664 - CVE-2026-23001 kernel: macvlan: fix possible UAF in macvlan_forward_source() BZ - 2439687 - CVE-2026-23111 kernel: Kernel: Privilege escalation or denial of service in nf_tables via inverted element activity check CVEs CVE-2025-68741 CVE-2026-23001 CVE-2026-23111 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 SRPM kernel-6.12.0-55.70.1.el10_0.src.rpm SHA-256: 0a023f5bdaeaf9c9ade9225f90feb001f4a8e6198f8756184f2d6938a1165b8d x86_64 kernel-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 401d3cd4c66e82281328c69704610308efc04c523f1295128f6067ae086ae772 kernel-abi-stablelists-6.12.0-55.70.1.el10_0.noarch.rpm SHA-256: d5e4040043072ba37f803468e979cc3a5951ba8507b588ebb8adf48e060b2db9 kernel-core-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 7fe337821440332f3e7ec983da68fd303942681bbde324e6f6592403741c9314 kernel-debug-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 477acd090bc3cd21e9df5c72d2ca86ff7e08478b4e4cc3723484efb0ddb540a2 kernel-debug-core-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: dc209aaae9c5344e180849c82a20071b97583af2fd10a17dacf0dd3ce6a87e6d kernel-debug-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 0a6fd173728467787c7d9d14c16a55dc06a29f7368f1858ba453a0b8143a8559 kernel-debug-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 0a6fd173728467787c7d9d14c16a55dc06a29f7368f1858ba453a0b8143a8559 kernel-debug-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 0a6fd173728467787c7d9d14c16a55dc06a29f7368f1858ba453a0b8143a8559 kernel-debug-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 0a6fd173728467787c7d9d14c16a55dc06a29f7368f1858ba453a0b8143a8559 kernel-debug-devel-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 042e4c625aee4d82e0356b7c80b3b76d961f30c5925a449bc45215da684d0b99 kernel-debug-devel-matched-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: e4b27e6a3efd703d3df2311eb757d7d355198370ecb3fa28167afebd970b72da kernel-debug-modules-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 4a6e52374bfc72c5307af26dca7fde3992d8ffdf0bf3d8639682a9bdf79465e5 kernel-debug-modules-core-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 2903a38d2336d4d338194f4511b20fc3860f7fb10502bf70d62347eb5ad4858f kernel-debug-modules-extra-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 9ac4981c7fe6ed226b0082455ad295d9d80b15e1008d61f342d893bf48780826 kernel-debug-uki-virt-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: be219ea346494924285939d50fa64dfaa9447830543834f81311d694ac244907 kernel-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 492e8f2ae3826eb6e27a2af885027c4ddc1fcf556b94e91567d7367b9803ec57 kernel-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 492e8f2ae3826eb6e27a2af885027c4ddc1fcf556b94e91567d7367b9803ec57 kernel-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 492e8f2ae3826eb6e27a2af885027c4ddc1fcf556b94e91567d7367b9803ec57 kernel-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 492e8f2ae3826eb6e27a2af885027c4ddc1fcf556b94e91567d7367b9803ec57 kernel-debuginfo-common-x86_64-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 49ebc4f9b7f758675e3bf23dbab9d6e8a4f2fdd6d537b3b65427245e2bc48fe3 kernel-debuginfo-common-x86_64-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 49ebc4f9b7f758675e3bf23dbab9d6e8a4f2fdd6d537b3b65427245e2bc48fe3 kernel-debuginfo-common-x86_64-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 49ebc4f9b7f758675e3bf23dbab9d6e8a4f2fdd6d537b3b65427245e2bc48fe3 kernel-debuginfo-common-x86_64-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 49ebc4f9b7f758675e3bf23dbab9d6e8a4f2fdd6d537b3b65427245e2bc48fe3 kernel-devel-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: f1cf32148a140556629aa6add1732c270d169fccb57b13c5fdc2fec897a0366d kernel-devel-matched-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 6689ebc47b4cacc5dd3dddb9a3b62adedfc75c8d10085cd70706f2c458cd41cd kernel-doc-6.12.0-55.70.1.el10_0.noarch.rpm SHA-256: b3217491d488aa28e4b3b2e2f9211e3698dfaf81735c6167fcde38f3982eee61 kernel-headers-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 48feba7e7089ed1228b403d8d18724f69ca3704686c18333bf17eb1e0530c114 kernel-modules-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: ead867e6233f554d220d5bd2a92cd0040ed7594a163f4a25e52f436f76914881 kernel-modules-core-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 4d75faa33f4d67b513880dff04729661612257a4ac0118d55d2664d890bfa149 kernel-modules-extra-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 5a85b62184d904862dfcef302f66ebf6ebe9aa0bf1417a13585baf274c6e7f55 kernel-rt-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: db8df7cebf9426881c2b2044787e017af9e2b190d54735fe140b490ef184f2e9 kernel-rt-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: db8df7cebf9426881c2b2044787e017af9e2b190d54735fe140b490ef184f2e9 kernel-rt-core-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 9e3f4aace34497d188cd9c5c7b547a522508662ffcd69e1618bbadab13b2c5d9 kernel-rt-core-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 9e3f4aace34497d188cd9c5c7b547a522508662ffcd69e1618bbadab13b2c5d9 kernel-rt-debug-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: f639ddb4b267086c856c0ec52185070d05a9a06585613a2771ec5d736d43acf8 kernel-rt-debug-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: f639ddb4b267086c856c0ec52185070d05a9a06585613a2771ec5d736d43acf8 kernel-rt-debug-core-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: ccc8c7a473f6e667bcdb3e1eb242294c1d5bb26de39e3170704b2699ae70075b kernel-rt-debug-core-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: ccc8c7a473f6e667bcdb3e1eb242294c1d5bb26de39e3170704b2699ae70075b kernel-rt-debug-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: d68caf73752f1d6468265022a4916f7582e4c303bc5dc3f2f28f995e48b98394 kernel-rt-debug-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: d68caf73752f1d6468265022a4916f7582e4c303bc5dc3f2f28f995e48b98394 kernel-rt-debug-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: d68caf73752f1d6468265022a4916f7582e4c303bc5dc3f2f28f995e48b98394 kernel-rt-debug-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: d68caf73752f1d6468265022a4916f7582e4c303bc5dc3f2f28f995e48b98394 kernel-rt-debug-devel-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 600772cf0dc9b81757ed487224de8332902f36610d649ba81565eebeaa009094 kernel-rt-debug-devel-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 600772cf0dc9b81757ed487224de8332902f36610d649ba81565eebeaa009094 kernel-rt-debug-kvm-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 1fab246795abfae630a377b7c171c88b2f46f476ebb5792545a6613a20f62b8b kernel-rt-debug-modules-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: ac48552a777caf4009527259edbf287650374d65f06b51fa84d546e3b2c80dc5 kernel-rt-debug-modules-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: ac48552a777caf4009527259edbf287650374d65f06b51fa84d546e3b2c80dc5 kernel-rt-debug-modules-core-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 489fd37402031d9742627ab8acdda80bd9a667da1d9aa843c65a9093a77ca56e kernel-rt-debug-modules-core-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 489fd37402031d9742627ab8acdda80bd9a667da1d9aa843c65a9093a77ca56e kernel-rt-debug-modules-extra-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 824f2fc6f842d13a8de7d6440a02edd72160a357b73054c08d9778a1234f9e26 kernel-rt-debug-modules-extra-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: 824f2fc6f842d13a8de7d6440a02edd72160a357b73054c08d9778a1234f9e26 kernel-rt-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: dd83c09d04211c336bb1418305a3805b2c1271b824d705444e94df6f25f27759 kernel-rt-debuginfo-6.12.0-55.70.1.el10_0.x86_64.rpm SHA-256: dd83c09d04211c336bb14183

Related Articles

HIGH Multiples vulnérabilités dans le noyau Linux de Red Hat (30 avril 2026) CERT-FR (ANSSI) HIGH USN-8152-1: Linux kernel (OEM) vulnerabilities Ubuntu Security HIGH USN-8203-1: Linux kernel (Oracle) vulnerabilities Ubuntu Security INFO USN-8261-1: Linux kernel (Xilinx) vulnerabilities Ubuntu Security
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn