Red Hat Product Errata RHSA-2026:13681 - Security Advisory Issued: 2026-05-05 Updated: 2026-05-05 RHSA-2026:13681 - Security Advisory Overview Updated Packages Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration (CVE-2026-23097) kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() (CVE-2026-23193) kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (CVE-2026-31402) kernel: crypto: algif_aead - Revert to operating out-of-place (CVE-2026-31431) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64 Red Hat Enterprise Linux Server - TUS 8.8 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64 Fixes BZ - 2436802 - CVE-2026-23097 kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration BZ - 2439887 - CVE-2026-23193 kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() BZ - 2454844 - CVE-2026-31402 kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache BZ - 2460538 - CVE-2026-31431 kernel: crypto: algif_aead - Revert to operating out-of-place CVEs CVE-2026-23097 CVE-2026-23193 CVE-2026-31402 CVE-2026-31431 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 SRPM kernel-4.18.0-477.139.1.el8_8.src.rpm SHA-256: 84e84dda600a151a6e18e82717c1888daa8dc3cd45de1765b6d28a3d120b642f x86_64 bpftool-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 6a1693f4a0d96bae912b03a6f6bedaedf791b69297d82d33c4ebf8049ffef2f3 bpftool-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 230d7358b3a51b2cb952b6a77b3920e66f788d2af235d7d2ac0ce54629ad4899 kernel-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: be1ec0592863057b30a794375c75c7ccfc945f84cc07e51b3918c5979de7fd78 kernel-abi-stablelists-4.18.0-477.139.1.el8_8.noarch.rpm SHA-256: 39a14585e13e792200c85fa6f43d8427fceb9c72df838538e1fc92636ca1b457 kernel-core-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 14bec11640dc946b1e77900668bf28b11f66acd5c5416e3bceaaa02929df6596 kernel-cross-headers-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 0cdbaf2810864a80a24481c27f58e9c147b309d62579d3a6e42a10deaf4bc24f kernel-debug-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: db7ea6d4ec8785f1e11e1d72682421c901cdd48d047ba57c155fcf26397ad475 kernel-debug-core-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 43b45dd3438fb0ec89385b652f49fac1c7c1df2b478f0163f3fc4b432105f013 kernel-debug-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 2b1dd1c536fee4fc8ac0ade356a676811dbc5a129fda6e00b8c1fa8653558804 kernel-debug-devel-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 4f2bfd874982b0c13d37c6c3a06e74eae000ad14528a0aaf671899785f9a4384 kernel-debug-modules-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: d3ba316d75fa0af9ebd4e510b078f6401d6a6a843477fec3cdc9fe83affb167a kernel-debug-modules-extra-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: c1a99af9042391264b3c9ca4a2ea1f945c51718234f43837ed52b51874c5d221 kernel-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 845e56e78247b5f573014abf17ccd931b81848cb311022bc38fe91a18e27a8de kernel-debuginfo-common-x86_64-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 5f1f8fe7fd2564523f6ce21825b37d84d640f02dd048180682b1b0ea556b8695 kernel-devel-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: d8021f4f8060d6d1695addc8e16196d6a1fab94b6b1d80e139d0b4c24a66db4f kernel-doc-4.18.0-477.139.1.el8_8.noarch.rpm SHA-256: 0eda954cc66a6d445778f7843f375a2b2539f974c75bf08a2592e9d9cf03cae7 kernel-headers-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 100d4fa739209f6c7d0b377ac43889beaaf652bb59fa24ebdb8d9496d508fbf3 kernel-modules-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 75c8148b92e9c518fc086daefdad4e74463c507b0b17512b21e27b6c7ed2b740 kernel-modules-extra-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 945555050ee78281fccb4cc25e382c293b470d24fb30c70e6a163f6e9303b5b6 kernel-tools-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 221fe9fe5ff3ae0dd7ae1cc87012832b5d8e1cf0319f5a6ebc95f6b16c67da43 kernel-tools-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: ba690955104350590178cf821f80c147725e00b3f5735488b20d1aa1501da57a kernel-tools-libs-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 7069350ab8bb873609b5478bcd8f35435d5ad1ffef57b7d59eac5cd4ba73755f perf-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 9d13304b635b7137933c2fa949c94118210877474cdc2f65e3e8f499848dbbce perf-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 0edc85903e96796b4310b4f3466a664841dc9a4c9aa1250da62b100851d759af python3-perf-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: aed7bbcfb8f6fd036547b602f7ba9737bccba730f89af994dbbcc78d04201856 python3-perf-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 9e865638bf4ba38a39ae7e8cdf90bc7e0af754371c490b4269f05d3c28ffa870 Red Hat Enterprise Linux Server - TUS 8.8 SRPM kernel-4.18.0-477.139.1.el8_8.src.rpm SHA-256: 84e84dda600a151a6e18e82717c1888daa8dc3cd45de1765b6d28a3d120b642f x86_64 bpftool-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 6a1693f4a0d96bae912b03a6f6bedaedf791b69297d82d33c4ebf8049ffef2f3 bpftool-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 230d7358b3a51b2cb952b6a77b3920e66f788d2af235d7d2ac0ce54629ad4899 kernel-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: be1ec0592863057b30a794375c75c7ccfc945f84cc07e51b3918c5979de7fd78 kernel-abi-stablelists-4.18.0-477.139.1.el8_8.noarch.rpm SHA-256: 39a14585e13e792200c85fa6f43d8427fceb9c72df838538e1fc92636ca1b457 kernel-core-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 14bec11640dc946b1e77900668bf28b11f66acd5c5416e3bceaaa02929df6596 kernel-cross-headers-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 0cdbaf2810864a80a24481c27f58e9c147b309d62579d3a6e42a10deaf4bc24f kernel-debug-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: db7ea6d4ec8785f1e11e1d72682421c901cdd48d047ba57c155fcf26397ad475 kernel-debug-core-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 43b45dd3438fb0ec89385b652f49fac1c7c1df2b478f0163f3fc4b432105f013 kernel-debug-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 2b1dd1c536fee4fc8ac0ade356a676811dbc5a129fda6e00b8c1fa8653558804 kernel-debug-devel-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 4f2bfd874982b0c13d37c6c3a06e74eae000ad14528a0aaf671899785f9a4384 kernel-debug-modules-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: d3ba316d75fa0af9ebd4e510b078f6401d6a6a843477fec3cdc9fe83affb167a kernel-debug-modules-extra-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: c1a99af9042391264b3c9ca4a2ea1f945c51718234f43837ed52b51874c5d221 kernel-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 845e56e78247b5f573014abf17ccd931b81848cb311022bc38fe91a18e27a8de kernel-debuginfo-common-x86_64-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 5f1f8fe7fd2564523f6ce21825b37d84d640f02dd048180682b1b0ea556b8695 kernel-devel-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: d8021f4f8060d6d1695addc8e16196d6a1fab94b6b1d80e139d0b4c24a66db4f kernel-doc-4.18.0-477.139.1.el8_8.noarch.rpm SHA-256: 0eda954cc66a6d445778f7843f375a2b2539f974c75bf08a2592e9d9cf03cae7 kernel-headers-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 100d4fa739209f6c7d0b377ac43889beaaf652bb59fa24ebdb8d9496d508fbf3 kernel-modules-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 75c8148b92e9c518fc086daefdad4e74463c507b0b17512b21e27b6c7ed2b740 kernel-modules-extra-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 945555050ee78281fccb4cc25e382c293b470d24fb30c70e6a163f6e9303b5b6 kernel-tools-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 221fe9fe5ff3ae0dd7ae1cc87012832b5d8e1cf0319f5a6ebc95f6b16c67da43 kernel-tools-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: ba690955104350590178cf821f80c147725e00b3f5735488b20d1aa1501da57a kernel-tools-libs-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 7069350ab8bb873609b5478bcd8f35435d5ad1ffef57b7d59eac5cd4ba73755f perf-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 9d13304b635b7137933c2fa949c94118210877474cdc2f65e3e8f499848dbbce perf-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 0edc85903e96796b4310b4f3466a664841dc9a4c9aa1250da62b100851d759af python3-perf-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: aed7bbcfb8f6fd036547b602f7ba9737bccba730f89af994dbbcc78d04201856 python3-perf-debuginfo-4.18.0-477.139.1.el8_8.x86_64.rpm SHA-256: 9e865638bf4ba38a39ae7e8cdf90bc7e0af754371c490b4269f05d3c28ffa870 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 SRPM kernel-4.18.0-477.139.1.el8_8.src.rpm SHA-256: 84e84dda600a151a6e18e82717c1888daa8dc3cd45de1765b6d28a3d120b642f ppc64le bpftool-4.18.0-477.139.1.el8_8.ppc64le.rpm SHA-256: 7bdf4ce20e6fdf21e98e9a00cc8932e0a1ea3af2af673f050be34192d2473f11 bpftool-debuginfo-4.18.0-477.139.1.el8_8.ppc64le.rpm SHA-256: 947475ab429ea033fd9037b656752fb375fdd1ac0f5c96d3973268aac425f6