A vulnerability (CVE-2026-31431, CVSS 7.8 HIGH) in the Linux kernel's `algif_aead` crypto interface allows for potential security issues by reverting to an out-of-place operation method. Affected versions include Linux kernel 4.14 through 5.10.253, 5.11 through 5.15.203, 5.16 through 6.1.169, 6.2 through 6.6.136, and 6.7 through 6.12.84. The fixed versions are 5.10.254, 5.15.204, 6.1.170, 6.6.137, 6.12.85, 6.18.22, and 6.19.12, with Red Hat providing live patches for its specific RHEL 8.8 SAP kernel versions.
Red Hat Product Errata RHSA-2026:16210 - Security Advisory Issued: 2026-05-12 Updated: 2026-05-12 RHSA-2026:16210 - Security Advisory Overview Updated Packages Synopsis Important: kpatch-patch-4_18_0-477_107_1, kpatch-patch-4_18_0-477_120_1, kpatch-patch-4_18_0-477_124_1, kpatch-patch-4_18_0-477_130_1, kpatch-patch-4_18_0-477_89_1, and kpatch-patch-4_18_0-477_97_1 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for multiple packages is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patch module is targeted for kernel-4.18.0-477.89.1.el8_8. Security Fix(es): kernel: crypto: algif_aead - Revert to operating out-of-place (CVE-2026-31431) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64 Fixes BZ - 2460538 - CVE-2026-31431 kernel: crypto: algif_aead - Revert to operating out-of-place CVEs CVE-2026-31431 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 SRPM kpatch-patch-4_18_0-477_107_1-1-4.el8_8.src.rpm SHA-256: 696bdfb2b2159c4b90ea06cf48b3f19e816a794e650b60686872ee4f87a8e38c kpatch-patch-4_18_0-477_120_1-1-3.el8_8.src.rpm SHA-256: adb9fbd16ba610386598970fbac72f5b32fbf09dec6ccff8f7b5d91e77ac97ab kpatch-patch-4_18_0-477_130_1-1-1.el8_8.src.rpm SHA-256: 8b811b015856929842092f54a6faf3ae94bffeb1bc3eb83d31c6a0e94a7f79db kpatch-patch-4_18_0-477_89_1-1-10.el8_8.src.rpm SHA-256: efe09edf4295bbd452c945bdfb61a5f3d1649ea5ed5b123e99b649c15fd02cc8 kpatch-patch-4_18_0-477_97_1-1-8.el8_8.src.rpm SHA-256: 158e7dce2ca393ca23b831d5ebade10982dffbe36dea57b2c3855c2a3b5db1a4 x86_64 kpatch-patch-4_18_0-477_107_1-1-4.el8_8.x86_64.rpm SHA-256: c47e3366e87bc39aa66b303117375359e48f5b2b0ae3c3515bd596df76889ad1 kpatch-patch-4_18_0-477_107_1-debuginfo-1-4.el8_8.x86_64.rpm SHA-256: fa9032472c51284bf363d54b65edd2f0a6a17d6ec3b569ed98b5c49e9c469143 kpatch-patch-4_18_0-477_107_1-debugsource-1-4.el8_8.x86_64.rpm SHA-256: 90d85900a87a5f919caf77dd0df8edfbd340eb7c55c654feff8c7053849a0c8d kpatch-patch-4_18_0-477_120_1-1-3.el8_8.x86_64.rpm SHA-256: e2008a6e7dfd9bb6d701c8c0b577e7e3a3e209f9e4814995e8a787ef1d8eae97 kpatch-patch-4_18_0-477_120_1-debuginfo-1-3.el8_8.x86_64.rpm SHA-256: db9ad7bd002b3befc3fc0e0fbdf89ff9aeb627c84b54cb5d46192a2d2944adaa kpatch-patch-4_18_0-477_120_1-debugsource-1-3.el8_8.x86_64.rpm SHA-256: 844aeee1cce0aaec995b68105503af77321f8bc129f511c7987aed75e14751c8 kpatch-patch-4_18_0-477_130_1-1-1.el8_8.x86_64.rpm SHA-256: 82a89a10015a3398832eba2a7e17e2f7f8c68dcea042b021acb30f4095803553 kpatch-patch-4_18_0-477_130_1-debuginfo-1-1.el8_8.x86_64.rpm SHA-256: 361df7a3ba2071d06cc6157bc4e480e720c9cffffb9a2938b21d10c95755dc83 kpatch-patch-4_18_0-477_130_1-debugsource-1-1.el8_8.x86_64.rpm SHA-256: f11b36f310553074a5359e8df386c5b24157402d6a2ba8c2bf66b444019681db kpatch-patch-4_18_0-477_89_1-1-10.el8_8.x86_64.rpm SHA-256: 7b0128b0356fd75ffc0d50e711fb1e889fc30275b58076889ec16ac5e73bb188 kpatch-patch-4_18_0-477_89_1-debuginfo-1-10.el8_8.x86_64.rpm SHA-256: 02f139379d70c9314368e932cc5cebbdeead7d6cef172a434955f4fc15790cac kpatch-patch-4_18_0-477_89_1-debugsource-1-10.el8_8.x86_64.rpm SHA-256: 062f02c037818f0fb1fbca5ff4a7fc8819863a83f5ac8f539f8540bed2513a4d kpatch-patch-4_18_0-477_97_1-1-8.el8_8.x86_64.rpm SHA-256: d3827f4127372136884b7de58bef6113f502524b2c772c01860716eb30619528 kpatch-patch-4_18_0-477_97_1-debuginfo-1-8.el8_8.x86_64.rpm SHA-256: f36bc1727055b428803dc215e81a5d463e6825744eb6588bd293e0603bd41da9 kpatch-patch-4_18_0-477_97_1-debugsource-1-8.el8_8.x86_64.rpm SHA-256: 3c0216115bfe733fea6aa8138e9107b88044e27d6145cb68f1f33f61b99fcffa Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 SRPM kpatch-patch-4_18_0-477_107_1-1-4.el8_8.src.rpm SHA-256: 696bdfb2b2159c4b90ea06cf48b3f19e816a794e650b60686872ee4f87a8e38c kpatch-patch-4_18_0-477_120_1-1-3.el8_8.src.rpm SHA-256: adb9fbd16ba610386598970fbac72f5b32fbf09dec6ccff8f7b5d91e77ac97ab kpatch-patch-4_18_0-477_130_1-1-1.el8_8.src.rpm SHA-256: 8b811b015856929842092f54a6faf3ae94bffeb1bc3eb83d31c6a0e94a7f79db kpatch-patch-4_18_0-477_89_1-1-10.el8_8.src.rpm SHA-256: efe09edf4295bbd452c945bdfb61a5f3d1649ea5ed5b123e99b649c15fd02cc8 kpatch-patch-4_18_0-477_97_1-1-8.el8_8.src.rpm SHA-256: 158e7dce2ca393ca23b831d5ebade10982dffbe36dea57b2c3855c2a3b5db1a4 ppc64le kpatch-patch-4_18_0-477_107_1-1-4.el8_8.ppc64le.rpm SHA-256: f6ab1c9ddce60452562520bbdc27c9b3a8717821736d7819d3a212fac75cf951 kpatch-patch-4_18_0-477_107_1-debuginfo-1-4.el8_8.ppc64le.rpm SHA-256: 332f262190453aa215b88f2f7655ecf785c72f8259ac3557de1a1426bc65f615 kpatch-patch-4_18_0-477_107_1-debugsource-1-4.el8_8.ppc64le.rpm SHA-256: e5146288bd4b96ae52b72444d4f4dcc803d908bad9b192602a5a26f82c366780 kpatch-patch-4_18_0-477_120_1-1-3.el8_8.ppc64le.rpm SHA-256: ad10f962fac3728bd6aa6443686703d860168e39c2c1ac5407143dce54e39229 kpatch-patch-4_18_0-477_120_1-debuginfo-1-3.el8_8.ppc64le.rpm SHA-256: 51810b1badfb4ca60711dc1d910fccf5ea710610b76a80c566e8998229be05b0 kpatch-patch-4_18_0-477_120_1-debugsource-1-3.el8_8.ppc64le.rpm SHA-256: 978e70ff305f617409d320e50a995f7b0a5c33112f6bf88ea08308636eb57619 kpatch-patch-4_18_0-477_130_1-1-1.el8_8.ppc64le.rpm SHA-256: e03bc31fb9d71a6b62552b88e30981fd9aafd08fa1260dd9e89aff5e4b807fae kpatch-patch-4_18_0-477_130_1-debuginfo-1-1.el8_8.ppc64le.rpm SHA-256: 81e0904cb1d7a8662fd6551661f6e7cba6f3b98218342b65f6bf749050436ce3 kpatch-patch-4_18_0-477_130_1-debugsource-1-1.el8_8.ppc64le.rpm SHA-256: 630361b09629d54e977936a1578df6d62b272b1a024e296106751d7029816324 kpatch-patch-4_18_0-477_89_1-1-10.el8_8.ppc64le.rpm SHA-256: 7a4d367b580616aced7e37485b562e440793f486b996ef2f23850d8a40e2ecb7 kpatch-patch-4_18_0-477_89_1-debuginfo-1-10.el8_8.ppc64le.rpm SHA-256: a82658f64c0add232d97606d00d0563b133d521d902ab1cf30dc1d52c874d408 kpatch-patch-4_18_0-477_89_1-debugsource-1-10.el8_8.ppc64le.rpm SHA-256: e1bf608ef4865e3e8c555755ce1f2c2f9e0e35ba8c800327bdad8d8797e44445 kpatch-patch-4_18_0-477_97_1-1-8.el8_8.ppc64le.rpm SHA-256: cdf9aa2d03ade74ca68db41bdcef13b9f6a7bc8a8cc751f57e6f6398bb73ec0c kpatch-patch-4_18_0-477_97_1-debuginfo-1-8.el8_8.ppc64le.rpm SHA-256: c0f7a8d77e813b9a324dc01e17a2598d8b11f35575c73da3fafc34b1095b1986 kpatch-patch-4_18_0-477_97_1-debugsource-1-8.el8_8.ppc64le.rpm SHA-256: 6ef90dc2b5118374764ea751f6711e07fc4c51f5143f9e0b2d55af25a2caa364 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 SRPM kpatch-patch-4_18_0-477_107_1-1-4.el8_8.src.rpm SHA-256: 696bdfb2b2159c4b90ea06cf48b3f19e816a794e650b60686872ee4f87a8e38c kpatch-patch-4_18_0-477_120_1-1-3.el8_8.src.rpm SHA-256: adb9fbd16ba610386598970fbac72f5b32fbf09dec6ccff8f7b5d91e77ac97ab kpatch-patch-4_18_0-477_130_1-1-1.el8_8.src.rpm SHA-256: 8b811b015856929842092f54a6faf3ae94bffeb1bc3eb83d31c6a0e94a7f79db kpatch-patch-4_18_0-477_89_1-1-10.el8_8.src.rpm SHA-256: efe09edf4295bbd452c945bdfb61a5f3d1649ea5ed5b123e99b649c15fd02cc8 kpatch-patch-4_18_0-477_97_1-1-8.el8_8.src.rpm SHA-256: 158e7dce2ca393ca23b831d5ebade10982dffbe36dea57b2c3855c2a3b5db1a4 x86_64 kpatch-patch-4_18_0-477_107_1-1-4.el8_8.x86_64.rpm SHA-256: c47e3366e87bc39aa66b303117375359e48f5b2b0ae3c3515bd596df76889ad1 kpatch-patch-4_18_0-477_107_1-debuginfo-1-4.el8_8.x86_64.rpm SHA-256: fa9032472c51284bf363d54b65edd2f0a6a17d6ec3b569ed98b5c49e9c469143 kpatch-patch-4_18_0-477_107_1-debugsource-1-4.el8_8.x86_64.rpm SHA-256: 90d85900a87a5f919caf77dd0df8edfbd340eb7c55c654feff8c7053849a0c8d kpatch-patch-4_18_0-477_120_1-1-3.el8_8.x86_64.rpm SHA-256: e2008a6e7dfd9bb6d701c8c0b577e7e3a3e209f9e4814995e8a787ef1d8eae97 kpatch-patch-4_18_0-477_120_1-debuginfo-1-3.el8_8.x86_64.rpm SHA-256: db9ad7bd002b3befc3fc0e0fbdf89ff9aeb627c84b54cb5d46192a2d2944adaa kpatch-patch-4_18_0-477_120_1-debugsource-1-3.el8_8.x86_64.rpm SHA-256: 844aeee1cce0aaec995b68105503af77321f8bc129f511c7987aed75e14751c8 kpatch-patch-4_18_0-477_130_1-1-1.el8_8.x86_64.rpm SHA-256: 82a89a10015a3398832eba2a7e17e2f7f8c68dcea042b021acb30f4095803553 kpatch-patch-4_18_0-477_130_1-debuginfo-1-1.el8_8.x86_64.rpm SHA-256: 361df7a3ba2071d06cc6157bc4e480e720c9cffffb9a2938b21d10c95755dc83 kpatch-patch-4_18_0-477_130_1-debugsource-1-1.el8_8.x86_64.rpm SHA-256: f11b36f310553074a5359e8df386c5b24157402d6a2ba8c2bf66b444019681db kpatch-patch-4_18_0-477_89_1-1-10.el8_8.x86_64.rpm SHA-256: 7b0128b0356fd75ffc0d50e711fb1e889fc30275b58076889ec16ac5e73bb188 kpatch-patch-4_18_0-477_89_1-debuginfo-1-10.el8_8.x86_64.rpm SHA-256: 02f139379d70c9314368e932cc5cebbdeead7d6cef172a434955f4fc15790cac kpatch-patch-4_18_0-477_89_1-debugsource-1-10.el8_8.x86_64.rpm SHA-256: 062f02c037818f0fb1fbca5ff4a7fc8819863a83f5ac8f539f8540bed2513a4d kpatch-patch-4_18_0-477_97_1-1-8.el8_8.x86_64.rpm SHA-256: d3827f4127372136884b7de58bef6113f502524b2c772c01860716e