Security News

Cybersecurity news aggregator

🔄
CRITICAL Updates Red Hat Errata

RHSA-2026:13578: Important: kernel-rt security update

cve-2024-41073red-hatkernel-rtcve-2025-40252cve-2025-68724
This Red Hat security advisory addresses six vulnerabilities in the kernel-rt packages for RHEL 8, including a high-severity NVMe double-free flaw (CVE-2024-41073, CVSS 7.8) and a KVM privilege escalation/DoS bug (CVE-2026-23401). The NVD data indicates CVE-2024-41073 affects Linux kernel versions from 4.10 through 5.10.236, 5.11 through 5.15.163, 5.16 through 6.1.100, and 6.2 through 6.6.41, with fixes available in kernel versions 5.10.237, 5.15.164, 6.1.101, 6.6.42, and 6.9.11. A system reboot is required after applying the update.
Read Full Article →

Red Hat Product Errata RHSA-2026:13578 - Security Advisory Issued: 2026-05-05 Updated: 2026-05-05 RHSA-2026:13578 - Security Advisory Overview Updated Packages Synopsis Important: kernel-rt security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix(es): kernel: nvme: avoid double free special payload (CVE-2024-41073) kernel: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() (CVE-2025-40252) kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (CVE-2025-68724) kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (CVE-2026-31402) kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling (CVE-2026-23401) kernel: crypto: algif_aead - Revert to operating out-of-place (CVE-2026-31431) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux for Real Time 8 x86_64 Red Hat Enterprise Linux for Real Time for NFV 8 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10 x86_64 Fixes BZ - 2301637 - CVE-2024-41073 kernel: nvme: avoid double free special payload BZ - 2424886 - CVE-2025-68724 kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id BZ - 2453803 - CVE-2026-23401 kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling BZ - 2454844 - CVE-2026-31402 kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache BZ - 2460538 - CVE-2026-31431 kernel: crypto: algif_aead - Revert to operating out-of-place CVEs CVE-2024-41073 CVE-2025-40252 CVE-2025-68724 CVE-2026-23401 CVE-2026-31402 CVE-2026-31431 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for Real Time 8 SRPM kernel-rt-4.18.0-553.123.1.rt7.464.el8_10.src.rpm SHA-256: 0a153a70f8088bf0c03c36e44910214440433a7c35c9bc617e40266eb9794d90 x86_64 kernel-rt-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: cffdd96a268afb9f8b3054c1904a087bb5740b3695b60346864fd28c101e9b47 kernel-rt-core-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: d3889b99a730ad33b7bc5924dfa800820f1e24efbd91b5879c5291f3b4036508 kernel-rt-debug-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: ef51f5845b3e45205b596fd686679771f82ca26f0365cc90d037cd96d476606f kernel-rt-debug-core-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: e9462859a41921c9bd264e43f6d9bf20442a0d0bb736ef191cfab77a7bf08c4c kernel-rt-debug-debuginfo-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 5e25ead671e7d3a4dbef3713e5d2c71515a209b33ce56d6c56cf47766e3384cd kernel-rt-debug-devel-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 9629593210ee7877aada778c900d37a402524da7de175c060e3de64fa3d9b802 kernel-rt-debug-modules-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 62c883a37ade051793ebc68417fdbe54a6d802195772b7783e3e4e1bdb95cf3f kernel-rt-debug-modules-extra-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 926b1ee6e9d1f6a2f61c608c2c532461ed095ea9af1847b6afe558549e625545 kernel-rt-debuginfo-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: a92f2250da77779afc94bd244d24bcb5552f303fa66fead00d6bf076101ef701 kernel-rt-debuginfo-common-x86_64-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 2dee47199817d278348c1a38a2f4651605a1fe6e8ad5873d43eb5c9cce678c4d kernel-rt-devel-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: f046531a4b73c932b6f004f48abab831a8dc90fdfd0c9072451e459673b0cf3f kernel-rt-modules-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 8e746aa9e428aa83b2649da72f4bc6cc620091815ece37d0682f3359499b0aae kernel-rt-modules-extra-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 0ea96881e99c7c000e84bbb52b3b861c5719e08a15effd831f50ff457f64ed5f Red Hat Enterprise Linux for Real Time for NFV 8 SRPM kernel-rt-4.18.0-553.123.1.rt7.464.el8_10.src.rpm SHA-256: 0a153a70f8088bf0c03c36e44910214440433a7c35c9bc617e40266eb9794d90 x86_64 kernel-rt-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: cffdd96a268afb9f8b3054c1904a087bb5740b3695b60346864fd28c101e9b47 kernel-rt-core-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: d3889b99a730ad33b7bc5924dfa800820f1e24efbd91b5879c5291f3b4036508 kernel-rt-debug-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: ef51f5845b3e45205b596fd686679771f82ca26f0365cc90d037cd96d476606f kernel-rt-debug-core-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: e9462859a41921c9bd264e43f6d9bf20442a0d0bb736ef191cfab77a7bf08c4c kernel-rt-debug-debuginfo-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 5e25ead671e7d3a4dbef3713e5d2c71515a209b33ce56d6c56cf47766e3384cd kernel-rt-debug-devel-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 9629593210ee7877aada778c900d37a402524da7de175c060e3de64fa3d9b802 kernel-rt-debug-kvm-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 5a88a7270b796fd50c65b4b94c6acf6c6e1dd4d07ea9834b03eff35de5bee904 kernel-rt-debug-modules-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 62c883a37ade051793ebc68417fdbe54a6d802195772b7783e3e4e1bdb95cf3f kernel-rt-debug-modules-extra-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 926b1ee6e9d1f6a2f61c608c2c532461ed095ea9af1847b6afe558549e625545 kernel-rt-debuginfo-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: a92f2250da77779afc94bd244d24bcb5552f303fa66fead00d6bf076101ef701 kernel-rt-debuginfo-common-x86_64-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 2dee47199817d278348c1a38a2f4651605a1fe6e8ad5873d43eb5c9cce678c4d kernel-rt-devel-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: f046531a4b73c932b6f004f48abab831a8dc90fdfd0c9072451e459673b0cf3f kernel-rt-kvm-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 8e976c9587acbebd9026e269b6a68ac5cd3139cf21d84ee18f434df45c25f82e kernel-rt-modules-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 8e746aa9e428aa83b2649da72f4bc6cc620091815ece37d0682f3359499b0aae kernel-rt-modules-extra-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 0ea96881e99c7c000e84bbb52b3b861c5719e08a15effd831f50ff457f64ed5f Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10 SRPM kernel-rt-4.18.0-553.123.1.rt7.464.el8_10.src.rpm SHA-256: 0a153a70f8088bf0c03c36e44910214440433a7c35c9bc617e40266eb9794d90 x86_64 kernel-rt-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: cffdd96a268afb9f8b3054c1904a087bb5740b3695b60346864fd28c101e9b47 kernel-rt-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: cffdd96a268afb9f8b3054c1904a087bb5740b3695b60346864fd28c101e9b47 kernel-rt-core-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: d3889b99a730ad33b7bc5924dfa800820f1e24efbd91b5879c5291f3b4036508 kernel-rt-core-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: d3889b99a730ad33b7bc5924dfa800820f1e24efbd91b5879c5291f3b4036508 kernel-rt-debug-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: ef51f5845b3e45205b596fd686679771f82ca26f0365cc90d037cd96d476606f kernel-rt-debug-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: ef51f5845b3e45205b596fd686679771f82ca26f0365cc90d037cd96d476606f kernel-rt-debug-core-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: e9462859a41921c9bd264e43f6d9bf20442a0d0bb736ef191cfab77a7bf08c4c kernel-rt-debug-core-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: e9462859a41921c9bd264e43f6d9bf20442a0d0bb736ef191cfab77a7bf08c4c kernel-rt-debug-debuginfo-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 5e25ead671e7d3a4dbef3713e5d2c71515a209b33ce56d6c56cf47766e3384cd kernel-rt-debug-debuginfo-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 5e25ead671e7d3a4dbef3713e5d2c71515a209b33ce56d6c56cf47766e3384cd kernel-rt-debug-devel-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 9629593210ee7877aada778c900d37a402524da7de175c060e3de64fa3d9b802 kernel-rt-debug-devel-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 9629593210ee7877aada778c900d37a402524da7de175c060e3de64fa3d9b802 kernel-rt-debug-kvm-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 5a88a7270b796fd50c65b4b94c6acf6c6e1dd4d07ea9834b03eff35de5bee904 kernel-rt-debug-modules-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 62c883a37ade051793ebc68417fdbe54a6d802195772b7783e3e4e1bdb95cf3f kernel-rt-debug-modules-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 62c883a37ade051793ebc68417fdbe54a6d802195772b7783e3e4e1bdb95cf3f kernel-rt-debug-modules-extra-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 926b1ee6e9d1f6a2f61c608c2c532461ed095ea9af1847b6afe558549e625545 kernel-rt-debug-modules-extra-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 926b1ee6e9d1f6a2f61c608c2c532461ed095ea9af1847b6afe558549e625545 kernel-rt-debuginfo-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: a92f2250da77779afc94bd244d24bcb5552f303fa66fead00d6bf076101ef701 kernel-rt-debuginfo-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: a92f2250da77779afc94bd244d24bcb5552f303fa66fead00d6bf076101ef701 kernel-rt-debuginfo-common-x86_64-4.18.0-553.123.1.rt7.464.el8_10.x86_64.rpm SHA-256: 2dee47199817d278348c1a38a2f4

Related Articles

CRITICAL RHSA-2026:13577: Important: kernel security update Red Hat Errata CRITICAL RHSA-2026:13734: Important: kernel security update Red Hat Errata CRITICAL RHSA-2026:14301: Important: kernel-rt security update Red Hat Errata CRITICAL RHSA-2026:13936: Important: kernel security update Red Hat Errata
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn