This Important security update addresses CVE-2026-31431 (CVSS 7.8 High), a vulnerability in the Linux kernel's `algif_aead` crypto interface. The vulnerability affects Linux kernel versions from 4.14 up to but before 5.10.254, from 5.11 to before 5.15.204, from 5.16 to before 6.1.170, from 6.2 to before 6.6.137, and from 6.7 to before 6.12.85. Red Hat has provided live patch modules for the 5.14.0-284 kernel stream on RHEL 9.2 Update Services for SAP Solutions, requiring a system reboot for the update to take effect.
Red Hat Product Errata RHSA-2026:16208 - Security Advisory Issued: 2026-05-12 Updated: 2026-05-12 RHSA-2026:16208 - Security Advisory Overview Updated Packages Synopsis Important: kpatch-patch-5_14_0-284_104_1, kpatch-patch-5_14_0-284_117_1, kpatch-patch-5_14_0-284_134_1, kpatch-patch-5_14_0-284_148_1, and kpatch-patch-5_14_0-284_158_1 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for multiple packages is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patch module is targeted for kernel-5.14.0-284.104.1.el9_2. Security Fix(es): kernel: crypto: algif_aead - Revert to operating out-of-place (CVE-2026-31431) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux Server - AUS 9.2 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 x86_64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2 ppc64le Fixes BZ - 2460538 - CVE-2026-31431 kernel: crypto: algif_aead - Revert to operating out-of-place CVEs CVE-2026-31431 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - AUS 9.2 SRPM kpatch-patch-5_14_0-284_104_1-1-14.el9_2.src.rpm SHA-256: c7dcb07f339edcc632fce76ce3300ab6baf720f61b9e3b67a28ef6d346f00e7b kpatch-patch-5_14_0-284_117_1-1-11.el9_2.src.rpm SHA-256: a8d79b7ace0f7dfc319c264e7cb0c1aa021c7cc4617e7caeab23a36ea2d56caf kpatch-patch-5_14_0-284_134_1-1-5.el9_2.src.rpm SHA-256: ef31af7d757d86b30d7c6cf511841fdf968385fec1120d4f8864b6f64acb3025 kpatch-patch-5_14_0-284_148_1-1-3.el9_2.src.rpm SHA-256: dc60531e0df344413c9d6402b636d3ba116faa7b31d44349b82b04e078347cde kpatch-patch-5_14_0-284_158_1-1-1.el9_2.src.rpm SHA-256: 3a2dfcaeaadc13aa396b43cb7b0c33fecf8fbd87deb29fcc1215ad5e623822f4 x86_64 kpatch-patch-5_14_0-284_104_1-1-14.el9_2.x86_64.rpm SHA-256: fc31221a1bbc2dfbec1f22db12ede2769f97ad3ac76d291f20ffd505e89ed5cd kpatch-patch-5_14_0-284_104_1-debuginfo-1-14.el9_2.x86_64.rpm SHA-256: 2ea329196f7ea3f9a8a9a1c85616006f0282d924bd22ba8a958ff4abe0b07668 kpatch-patch-5_14_0-284_104_1-debugsource-1-14.el9_2.x86_64.rpm SHA-256: f5c7462c2b6675cf7e6f32a350320fa53d57979246c0c917856292ac61ee5edd kpatch-patch-5_14_0-284_117_1-1-11.el9_2.x86_64.rpm SHA-256: e85480be52b7a76d8f861b0ca1a78d950bd118fccccf1cad386ae042270187f7 kpatch-patch-5_14_0-284_117_1-debuginfo-1-11.el9_2.x86_64.rpm SHA-256: 46a0dd5a8a698eb6d66c18e07322ecf90a56442bce7309a488ac870ab0169790 kpatch-patch-5_14_0-284_117_1-debugsource-1-11.el9_2.x86_64.rpm SHA-256: 1b7e4aa18ef34b761099cbe1e6b58aca796abd27034735754cb145a663c77fec kpatch-patch-5_14_0-284_134_1-1-5.el9_2.x86_64.rpm SHA-256: 26644233f347b285e35934f706da5f4a16d3cd8a9afa79489f1939132cba5d61 kpatch-patch-5_14_0-284_134_1-debuginfo-1-5.el9_2.x86_64.rpm SHA-256: 0f16bf7a5dc8ffce58f38b08d10c299564a4682dbd20eef1591d2e157a01f707 kpatch-patch-5_14_0-284_134_1-debugsource-1-5.el9_2.x86_64.rpm SHA-256: e4b0700e0b642f8e05cb7ca6025f423ae177ac945193379f8a1acf363479c92b kpatch-patch-5_14_0-284_148_1-1-3.el9_2.x86_64.rpm SHA-256: b3e4f8725db71ab84dd273c6079dba9a75a16921ccffa5d5ebb8c4cab954e4a8 kpatch-patch-5_14_0-284_148_1-debuginfo-1-3.el9_2.x86_64.rpm SHA-256: 3b7882d6fc0745ed21f624b74800374eb90cdc670a37a4a875cf0de848fd9b52 kpatch-patch-5_14_0-284_148_1-debugsource-1-3.el9_2.x86_64.rpm SHA-256: 58f09efb6b433b1eaf30e252c65f96f108d486e7a0fce75267398ee341cc8464 kpatch-patch-5_14_0-284_158_1-1-1.el9_2.x86_64.rpm SHA-256: 5731477b697b1e17680da56afb5042f83e0b6c28b6e43c3d1e8d2e1b3e39c8ba kpatch-patch-5_14_0-284_158_1-debuginfo-1-1.el9_2.x86_64.rpm SHA-256: 3a1fa471c7eb07351d92f57e62d7569af8f2f82e1b6ada104e8b0b4e95bfa133 kpatch-patch-5_14_0-284_158_1-debugsource-1-1.el9_2.x86_64.rpm SHA-256: 9249d97a18a69dcb32f2669918efe0db9b8b082cb18c25024b678e5e7e8dfcd6 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 SRPM kpatch-patch-5_14_0-284_104_1-1-14.el9_2.src.rpm SHA-256: c7dcb07f339edcc632fce76ce3300ab6baf720f61b9e3b67a28ef6d346f00e7b kpatch-patch-5_14_0-284_117_1-1-11.el9_2.src.rpm SHA-256: a8d79b7ace0f7dfc319c264e7cb0c1aa021c7cc4617e7caeab23a36ea2d56caf kpatch-patch-5_14_0-284_134_1-1-5.el9_2.src.rpm SHA-256: ef31af7d757d86b30d7c6cf511841fdf968385fec1120d4f8864b6f64acb3025 kpatch-patch-5_14_0-284_148_1-1-3.el9_2.src.rpm SHA-256: dc60531e0df344413c9d6402b636d3ba116faa7b31d44349b82b04e078347cde kpatch-patch-5_14_0-284_158_1-1-1.el9_2.src.rpm SHA-256: 3a2dfcaeaadc13aa396b43cb7b0c33fecf8fbd87deb29fcc1215ad5e623822f4 ppc64le kpatch-patch-5_14_0-284_104_1-1-14.el9_2.ppc64le.rpm SHA-256: 533b0c9a06df22ac74edc3a6611d1f055953961675f6de455aedfdf9656a7bf1 kpatch-patch-5_14_0-284_104_1-debuginfo-1-14.el9_2.ppc64le.rpm SHA-256: 58f6439f15c19f0eb536a325fc52a6b7dff0c0220f8fdfce08a1b96d839000e6 kpatch-patch-5_14_0-284_104_1-debugsource-1-14.el9_2.ppc64le.rpm SHA-256: f7afb44e7d04b3347e1227f555443999c6c76b9dfec4a65effe4be6cef68f303 kpatch-patch-5_14_0-284_117_1-1-11.el9_2.ppc64le.rpm SHA-256: a4ad1c83ea402f917f242dfb0619582d122ab8e643fc2b564a26a18610e59043 kpatch-patch-5_14_0-284_117_1-debuginfo-1-11.el9_2.ppc64le.rpm SHA-256: c3e9df798b1b4c2d86c8d9a9aadaa42de101195f0556b27cb05a4c40cdf7c099 kpatch-patch-5_14_0-284_117_1-debugsource-1-11.el9_2.ppc64le.rpm SHA-256: a551c66a3f9a2e77a17d9f8494aa788db3644e797cb9309ee9f6d551eab47804 kpatch-patch-5_14_0-284_134_1-1-5.el9_2.ppc64le.rpm SHA-256: e16a4c0f1ce26503a4c2ff013ea2dc8d5c62e475305e1e4a095f3fa0e473279a kpatch-patch-5_14_0-284_134_1-debuginfo-1-5.el9_2.ppc64le.rpm SHA-256: da2ab4067bee61b6fdd9102defc7690043b29f7c72c470e9cc7bf0c1a8226b27 kpatch-patch-5_14_0-284_134_1-debugsource-1-5.el9_2.ppc64le.rpm SHA-256: 5e7d312125b94bba2640480d7aa0c9d2a8e14ad78de95cc7174e61d6c2b754d5 kpatch-patch-5_14_0-284_148_1-1-3.el9_2.ppc64le.rpm SHA-256: dfa348480101c53a2eec396401dad4ee21405b3b4fc97c92d5f95d7f46377712 kpatch-patch-5_14_0-284_148_1-debuginfo-1-3.el9_2.ppc64le.rpm SHA-256: 6c4b50d819cbf2df1ae0cf440c2cb60bd051e539ed02b3749867f46125aa67ad kpatch-patch-5_14_0-284_148_1-debugsource-1-3.el9_2.ppc64le.rpm SHA-256: f9579d889e22649e02d7aff1541124ff31dd947eec57fe9f8b6aa2eb5386eae8 kpatch-patch-5_14_0-284_158_1-1-1.el9_2.ppc64le.rpm SHA-256: 35cebe35ab0d411d5a0f29bd20d3c0fb8d00d1bb9f234faff8a66eba42c783b2 kpatch-patch-5_14_0-284_158_1-debuginfo-1-1.el9_2.ppc64le.rpm SHA-256: 3c5a8f374bb6c7bb6abbda0c77d46633046da2a21e241663c33257dc590551c1 kpatch-patch-5_14_0-284_158_1-debugsource-1-1.el9_2.ppc64le.rpm SHA-256: 9607888e809e41e52a90e3b0ba51265855f3b1d7a3fb3a76784b7ef671746a9f Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 SRPM kpatch-patch-5_14_0-284_104_1-1-14.el9_2.src.rpm SHA-256: c7dcb07f339edcc632fce76ce3300ab6baf720f61b9e3b67a28ef6d346f00e7b kpatch-patch-5_14_0-284_117_1-1-11.el9_2.src.rpm SHA-256: a8d79b7ace0f7dfc319c264e7cb0c1aa021c7cc4617e7caeab23a36ea2d56caf kpatch-patch-5_14_0-284_134_1-1-5.el9_2.src.rpm SHA-256: ef31af7d757d86b30d7c6cf511841fdf968385fec1120d4f8864b6f64acb3025 kpatch-patch-5_14_0-284_148_1-1-3.el9_2.src.rpm SHA-256: dc60531e0df344413c9d6402b636d3ba116faa7b31d44349b82b04e078347cde kpatch-patch-5_14_0-284_158_1-1-1.el9_2.src.rpm SHA-256: 3a2dfcaeaadc13aa396b43cb7b0c33fecf8fbd87deb29fcc1215ad5e623822f4 x86_64 kpatch-patch-5_14_0-284_104_1-1-14.el9_2.x86_64.rpm SHA-256: fc31221a1bbc2dfbec1f22db12ede2769f97ad3ac76d291f20ffd505e89ed5cd kpatch-patch-5_14_0-284_104_1-debuginfo-1-14.el9_2.x86_64.rpm SHA-256: 2ea329196f7ea3f9a8a9a1c85616006f0282d924bd22ba8a958ff4abe0b07668 kpatch-patch-5_14_0-284_104_1-debugsource-1-14.el9_2.x86_64.rpm SHA-256: f5c7462c2b6675cf7e6f32a350320fa53d57979246c0c917856292ac61ee5edd kpatch-patch-5_14_0-284_117_1-1-11.el9_2.x86_64.rpm SHA-256: e85480be52b7a76d8f861b0ca1a78d950bd118fccccf1cad386ae042270187f7 kpatch-patch-5_14_0-284_117_1-debuginfo-1-11.el9_2.x86_64.rpm SHA-256: 46a0dd5a8a698eb6d66c18e07322ecf90a56442bce7309a488ac870ab0169790 kpatch-patch-5_14_0-284_117_1-debugsource-1-11.el9_2.x86_64.rpm SHA-256: 1b7e4aa18ef34b761099cbe1e6b58aca796abd27034735754cb145a663c77fec kpatch-patch-5_14_0-284_134_1-1-5.el9_2.x86_64.rpm SHA-256: 26644233f347b285e35934f706da5f4a16d3cd8a9afa79489f1939132cba5d61 kpatch-patch-5_14_0-284_134_1-debuginfo-1-5.el9_2.x86_64.rpm SHA-256: 0f16bf7a5dc8ffce58f38b08d10c299564a4682dbd20eef1591d2e157a01f707 kpatch-patch-5_14_0-284_134_1-debugsource-1-5.el9_2.x86_64.rpm SHA-256: e4b0700e0b642f8e05cb7ca6025f423ae177ac945193379f8a1acf363479c92b kpatch-patch-5_14_0-284_148_1-1-3.el9_2.x86_64.rpm SHA-256: b3e4f8725db71ab84dd273c6079dba9a75a16921ccffa5d5ebb8c4cab954e4a8 kpatch-patch-5_14_0-284_148_1-debuginfo-1-3.el9_2.x86_64.rpm SHA-256: 3b7882d6fc0745ed21f624b74800374eb90cdc670a37a4a875cf0de848fd9b52 kpatch-patch-5_14_0-284_148_1-debugsource-1-3.el9_2.x86_64.rpm SHA-256: 58f09efb6b433b1eaf30e252c65f96f108d486e7a0fce75267398ee341cc8464 kpatch-patch-5_14_0-284_