Security News

Cybersecurity news aggregator

🐧
CRITICAL News Red Hat Errata

RHSA-2026:14339: Important: kernel security update

red-hatlinuxcve-2024-53216cve-2025-68741cve-2026-23243
This Red Hat kernel security update addresses multiple vulnerabilities, including a KVM shadow page table flaw (CVE-2026-23401) allowing privilege escalation or DoS, and a use-after-free in the NFS server (CVE-2024-53216, CVSS 7.8) which affects Linux kernel versions from 4.20 to 6.6.63, 6.7 to 6.11.10, and 6.12 to 6.12.1. The fix requires updating to kernel versions 6.6.64, 6.11.11, or 6.12.2, respectively, and a full system reboot.
Read Full Article →

Red Hat Product Errata RHSA-2026:14339 - Security Advisory Issued: 2026-05-06 Updated: 2026-05-06 RHSA-2026:14339 - Security Advisory Overview Updated Packages Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: nfsd: release svc_expkey/svc_export with rcu_work (CVE-2024-53216) kernel: scsi: qla2xxx: Fix improper freeing of purex item (CVE-2025-68741) kernel: Linux kernel: Denial of service and memory corruption in RDMA umad (CVE-2026-23243) kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling (CVE-2026-23401) kernel: crypto: algif_aead - Revert to operating out-of-place (CVE-2026-31431) kernel: can: raw: fix ro->uniq use-after-free in raw_rcv() (CVE-2026-31532) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64 Red Hat Enterprise Linux Server - AUS 9.6 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.6 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.6 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x Fixes BZ - 2334415 - CVE-2024-53216 kernel: nfsd: release svc_expkey/svc_export with rcu_work BZ - 2425046 - CVE-2025-68741 kernel: scsi: qla2xxx: Fix improper freeing of purex item BZ - 2448594 - CVE-2026-23243 kernel: Linux kernel: Denial of service and memory corruption in RDMA umad BZ - 2453803 - CVE-2026-23401 kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling BZ - 2460538 - CVE-2026-31431 kernel: crypto: algif_aead - Revert to operating out-of-place BZ - 2461107 - CVE-2026-31532 kernel: can: raw: fix ro->uniq use-after-free in raw_rcv() CVEs CVE-2024-53216 CVE-2025-68741 CVE-2026-23243 CVE-2026-23401 CVE-2026-31431 CVE-2026-31532 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 SRPM kernel-5.14.0-570.112.1.el9_6.src.rpm SHA-256: 44d576f754f66545fb46f9b5ad06b47e29a16f2aacb2ed30d35b9d21254ff6b2 x86_64 kernel-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 47163f7c9cb221120229803396295789955e4bb1ca2a2b3fa07f78036fa40e6d kernel-abi-stablelists-5.14.0-570.112.1.el9_6.noarch.rpm SHA-256: 96874fc7cc3a98e9feb66f18a90c9609d650ce079d60182242c84a54b8096baa kernel-core-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 59de13056de51fa9a9f1fdd96b88640b28669b8df4c9c9930ad524e31d21b9d5 kernel-debug-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: c70ae47154031d257961c9b83c70edd745254547f1fc4d5c7c457bdc91f1764b kernel-debug-core-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 2eef9c9ddbc14313b3ff18181531279232ff1fb7842a680f05aac5a649d05e0d kernel-debug-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: f77e2f2d7db1cd1f6dc4498e76e8a0fbc40458e101a65605a5302b1c13ea3105 kernel-debug-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: f77e2f2d7db1cd1f6dc4498e76e8a0fbc40458e101a65605a5302b1c13ea3105 kernel-debug-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: f77e2f2d7db1cd1f6dc4498e76e8a0fbc40458e101a65605a5302b1c13ea3105 kernel-debug-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: f77e2f2d7db1cd1f6dc4498e76e8a0fbc40458e101a65605a5302b1c13ea3105 kernel-debug-devel-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 215cf840671f0f8b674e15bab2cdd32f4e2e3cbac666746e0f5ffe64668a4945 kernel-debug-devel-matched-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 011b0b8cd5550c18d4a42c080954e34c60e42b05f572a7a97b6165afe8524526 kernel-debug-modules-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 22f407ca25309fd4d66f5cfce0a26db514504520bb3b33bcdfc607def3bfb893 kernel-debug-modules-core-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: d2b1321055eb1e35ae14072123e53f4d8ed7f2410c9a2b47a132f2c352dd8c4f kernel-debug-modules-extra-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: bb1413c1112610e44d3f4d5bb218afbf4277316f8823afa48a6d71302ad6b8bf kernel-debug-uki-virt-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 43928d3accb8eba2bcfa108099211875b2ac8106b3f9314aa452c7325e2b0393 kernel-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: d1c1d47f4d9cbd046bc9e642c0125927fc41c618c225560a809be390e0c297db kernel-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: d1c1d47f4d9cbd046bc9e642c0125927fc41c618c225560a809be390e0c297db kernel-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: d1c1d47f4d9cbd046bc9e642c0125927fc41c618c225560a809be390e0c297db kernel-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: d1c1d47f4d9cbd046bc9e642c0125927fc41c618c225560a809be390e0c297db kernel-debuginfo-common-x86_64-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: b79d214aa01f85b8c645df53b11f1409edfdc1a1ecb2706ed4a4428f56ba9ba4 kernel-debuginfo-common-x86_64-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: b79d214aa01f85b8c645df53b11f1409edfdc1a1ecb2706ed4a4428f56ba9ba4 kernel-debuginfo-common-x86_64-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: b79d214aa01f85b8c645df53b11f1409edfdc1a1ecb2706ed4a4428f56ba9ba4 kernel-debuginfo-common-x86_64-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: b79d214aa01f85b8c645df53b11f1409edfdc1a1ecb2706ed4a4428f56ba9ba4 kernel-devel-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 1cc955e2c824f24b6592c40a6c337e2c1175f07ac01b0c256857caeae8e3e3bf kernel-devel-matched-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 887d53e5fff062d2b38920a9653448574a0f2cad9064df0b56a3cd96eac4b8fe kernel-doc-5.14.0-570.112.1.el9_6.noarch.rpm SHA-256: 22d726a4e341f1b46fd2e4264a2148d6d9b23aae1bbd32f57b89c61b84d5ad36 kernel-headers-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: f33251933c761a8ecf423dbe8463c61e522f7a2e4345905338cadfdf08e33f6b kernel-modules-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 55551c4b22a53224ef3e38167b04765bf6d4449ec148535665a39bc6afee3494 kernel-modules-core-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 6ec89cae89023b9c8e01eb04b83dc4fb010c1254765a919067049364d08d920f kernel-modules-extra-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: bd400b348b349a58f5a6b97a6dbb63a3194abf51a749c8883628929da960988f kernel-rt-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: c677baed50ed9a3f589ed253f1c22755062d7147e35af9a17aef844370e3e2eb kernel-rt-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: c677baed50ed9a3f589ed253f1c22755062d7147e35af9a17aef844370e3e2eb kernel-rt-core-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 4bad43e5a7a29736f12d5512fdbc41bf7c2b9b80b8b99327e0dd3c659de613cd kernel-rt-core-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 4bad43e5a7a29736f12d5512fdbc41bf7c2b9b80b8b99327e0dd3c659de613cd kernel-rt-debug-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: a3951ffe362eb210ce97df818aabeee856a1ffe87dfabcffee1fff815ea5f8e5 kernel-rt-debug-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: a3951ffe362eb210ce97df818aabeee856a1ffe87dfabcffee1fff815ea5f8e5 kernel-rt-debug-core-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 9fe1c4e9f7299e4c4b1d4df6eed27f0943b0301785fdcdd448735d6f30bfcb77 kernel-rt-debug-core-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 9fe1c4e9f7299e4c4b1d4df6eed27f0943b0301785fdcdd448735d6f30bfcb77 kernel-rt-debug-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 3e668684bfc63e71f2f4b2e80fab3b437828da1a54774d2cb5b58a52b5f18e3e kernel-rt-debug-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 3e668684bfc63e71f2f4b2e80fab3b437828da1a54774d2cb5b58a52b5f18e3e kernel-rt-debug-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 3e668684bfc63e71f2f4b2e80fab3b437828da1a54774d2cb5b58a52b5f18e3e kernel-rt-debug-debuginfo-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 3e668684bfc63e71f2f4b2e80fab3b437828da1a54774d2cb5b58a52b5f18e3e kernel-rt-debug-devel-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: e3b400eb3414a18eee918dce50c6ce7a5a26972796c6d2022418e99342705f43 kernel-rt-debug-devel-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: e3b400eb3414a18eee918dce50c6ce7a5a26972796c6d2022418e99342705f43 kernel-rt-debug-kvm-5.14.0-570.112.1.el9_6.x86_64.rpm SHA-256: 43b46ee3936db3636d029f10730e51856fb881e7b4d7e26a99969d5177c68e84 kernel-rt-debug-modules-5.1

Related Articles

MEDIUM DSA-6238-1 linux - security update Debian Security CRITICAL Multiples vulnérabilités dans le noyau Linux de Red Hat (15 mai 2026) CERT-FR (ANSSI) CRITICAL RHSA-2026:13932: Important: kernel security update Red Hat Errata HIGH RHSA-2026:15883: Important: kernel security update Red Hat Errata
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn