Red Hat Product Errata RHSA-2026:16312 - Security Advisory Issued: 2026-05-12 Updated: 2026-05-12 RHSA-2026:16312 - Security Advisory Overview Updated Packages Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: "Dirty Frag" is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel (CVE-2026-43284) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64 Red Hat Enterprise Linux Server - AUS 9.6 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.6 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.6 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x Fixes BZ - 2467771 - CVE-2026-43284 kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel CVEs CVE-2026-43284 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 SRPM kernel-5.14.0-570.113.1.el9_6.src.rpm SHA-256: ea47bfa47c62889aeff6bbd652c1728ede8e418ddac0ac1fb0cab7da04af373e x86_64 kernel-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 4d62dcc083d28a383088048884250a67a5cce2401d6f0e6a9dafd91eac1f5d67 kernel-abi-stablelists-5.14.0-570.113.1.el9_6.noarch.rpm SHA-256: 220ea0aec77d1164be31283e7aaa5e7f944413d4eef9d613b217ce9d50d94e67 kernel-core-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 1811157012aded78548aed5a4e134cf48e814d775c8ab7af1c6e579a24527b9c kernel-debug-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: e4cfef5515eb964b533913f79acef9eb33a14bd816a6f923c2e3625f9f72cbb5 kernel-debug-core-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 4eee8e5490ab78149f83496cd43ea2595d5d34c83b7162f2a98c8a934a733566 kernel-debug-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 20826e523d4ae026ef292c4dbe1e937a76c2499f7a686e816938c26fa148be0c kernel-debug-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 20826e523d4ae026ef292c4dbe1e937a76c2499f7a686e816938c26fa148be0c kernel-debug-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 20826e523d4ae026ef292c4dbe1e937a76c2499f7a686e816938c26fa148be0c kernel-debug-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 20826e523d4ae026ef292c4dbe1e937a76c2499f7a686e816938c26fa148be0c kernel-debug-devel-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: c27a98f9b2fe380bf0698b709a1e5680ba948de18838c02d71aae42e6be7a9b3 kernel-debug-devel-matched-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 28263733be4ec9f5e35ad7205d75c97bd6fc3cf356edf6f943b7d8843be388b1 kernel-debug-modules-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: af0b814fc7b5b70f24bbf20d518c49cb0dc515eaf98f19ce2253df9e4ca7d76b kernel-debug-modules-core-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 905de39d71175201444f4630d6174b4afab08f9c4c56e7c72557eb4dd7b78cbe kernel-debug-modules-extra-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 2be181076f67fa13003350b77988b8be18be8a349bb37e3e949b1aca0bd4a0b3 kernel-debug-uki-virt-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 6734f23b735914ffc98c4e65a9e011fe065fc74f10f02b2d154dbb92ec7ef649 kernel-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: d59421694f97d77a909378613726f48dd40cb67c13bc27ead2f23679475ea90e kernel-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: d59421694f97d77a909378613726f48dd40cb67c13bc27ead2f23679475ea90e kernel-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: d59421694f97d77a909378613726f48dd40cb67c13bc27ead2f23679475ea90e kernel-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: d59421694f97d77a909378613726f48dd40cb67c13bc27ead2f23679475ea90e kernel-debuginfo-common-x86_64-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 99a6ccb3ab55c080d46ec62be4fac75d2467ccc1e9b8115b1f3fdab5067acf41 kernel-debuginfo-common-x86_64-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 99a6ccb3ab55c080d46ec62be4fac75d2467ccc1e9b8115b1f3fdab5067acf41 kernel-debuginfo-common-x86_64-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 99a6ccb3ab55c080d46ec62be4fac75d2467ccc1e9b8115b1f3fdab5067acf41 kernel-debuginfo-common-x86_64-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 99a6ccb3ab55c080d46ec62be4fac75d2467ccc1e9b8115b1f3fdab5067acf41 kernel-devel-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: b3e42ed97e3f6a7df31571c90e6cbe14b935ddeda80188c5d85b619d23b2b671 kernel-devel-matched-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 5bf75beefd5b300d85f26244fb3d1873e7654488796fdedf7fed61fca782b9f3 kernel-doc-5.14.0-570.113.1.el9_6.noarch.rpm SHA-256: 4832bd6f26fd81708da1c22860ad839a0fa8a814988be1ed275f861c59cc3a37 kernel-headers-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 87cae03c84aef1d7ac790ed5c4ae4dda767e76dd145144076ed3863ab59a5fa7 kernel-modules-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 01fe1bdb8cca03278feae052e385ac68f56fbc49ac5d82d3749b8e6044b73b76 kernel-modules-core-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: c7dd51df1bf8229ee9b47e129e0573300a4775348c77fa725cfb58dae8f7f128 kernel-modules-extra-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: ece70510edefc770a21dc6597dfeba4f3527fbb0e07ed0a9790d06a80387bf2f kernel-rt-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: f094515a4d07ed188e184662525a8e9b74959a7da369f1320e16a6abf9f8266c kernel-rt-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: f094515a4d07ed188e184662525a8e9b74959a7da369f1320e16a6abf9f8266c kernel-rt-core-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 76eeaca1d6e9ac08ed9e508eab329d2cecb03f41dff7763ff78817b7b8cbfa52 kernel-rt-core-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 76eeaca1d6e9ac08ed9e508eab329d2cecb03f41dff7763ff78817b7b8cbfa52 kernel-rt-debug-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: d7140584bac2f8c5140194f29c982bbcb172a7f2f4515b83b40eeffaf1f164e2 kernel-rt-debug-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: d7140584bac2f8c5140194f29c982bbcb172a7f2f4515b83b40eeffaf1f164e2 kernel-rt-debug-core-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: b33972ba4e1e464f00e31288c68332c1e18b37a467687678d7fee2a96c19e800 kernel-rt-debug-core-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: b33972ba4e1e464f00e31288c68332c1e18b37a467687678d7fee2a96c19e800 kernel-rt-debug-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: bec9812e0a585cb49149fbf843ac64c3292890e3e9c5197ed467d6964e0b41c5 kernel-rt-debug-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: bec9812e0a585cb49149fbf843ac64c3292890e3e9c5197ed467d6964e0b41c5 kernel-rt-debug-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: bec9812e0a585cb49149fbf843ac64c3292890e3e9c5197ed467d6964e0b41c5 kernel-rt-debug-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: bec9812e0a585cb49149fbf843ac64c3292890e3e9c5197ed467d6964e0b41c5 kernel-rt-debug-devel-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 37a131a49551ef8870d29863f1e6079265f80fdd6aa57afc587cc4abe3105340 kernel-rt-debug-devel-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 37a131a49551ef8870d29863f1e6079265f80fdd6aa57afc587cc4abe3105340 kernel-rt-debug-kvm-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 6b12ce2f530bd3186c37c1c8ffafd2c1894d8bb53530e7e5af6967999a57fc8f kernel-rt-debug-modules-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: bdac50117e682c2505cca94357e58f152d2bb2195f7964f390f313d9899e4647 kernel-rt-debug-modules-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: bdac50117e682c2505cca94357e58f152d2bb2195f7964f390f313d9899e4647 kernel-rt-debug-modules-core-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 87431765df5cfbe8b2ea2503ef8ec9a9326aaf6f83b4d59936ef89b10749b825 kernel-rt-debug-modules-core-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 87431765df5cfbe8b2ea2503ef8ec9a9326aaf6f83b4d59936ef89b10749b825 kernel-rt-debug-modules-extra-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 146f17867ea6ee4a39b0541a37b89e72afed6cfb2cfdc387c5d358847e3df52a kernel-rt-debug-modules-extra-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 146f17867ea6ee4a39b0541a37b89e72afed6cfb2cfdc387c5d358847e3df52a kernel-rt-debuginfo-5.14.0-570.113.1.el9_6.x86_64.rpm SHA-256: 3d370cdb00eae2457469ca00df6807eb2015d764c6072cbe81fb6ed9238547f3 kernel-rt-debuginfo-5.