Red Hat Product Errata RHSA-2026:18587 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:18587 - Security Advisory Overview Updated Packages Synopsis Moderate: kernel security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: bonding: check xdp prog when set bond mode (CVE-2025-22105) kernel: block: fix resource leak in blk_register_queue() error path (CVE-2025-37980) kernel: dmaengine: idxd: fix memory leak in error handling path of idxd_alloc (CVE-2025-38015) kernel: espintcp: remove encap socket caching to avoid reference leak (CVE-2025-38097) kernel: bpf: fix ktls panic with sockmap (CVE-2025-38166) kernel: bpf: Do not include stack ptr register in precision backtracking bookkeeping (CVE-2025-38279) kernel: nfs: Clean up /proc/net/rpc/nfs when nfs_fs_proc_net_init() fails (CVE-2025-38400) kernel: nvmet: fix memory leak of bio integrity (CVE-2025-38405) kernel: netfilter: flowtable: account for Ethernet header in nf_flow_pppoe_proto() (CVE-2025-38441) kernel: net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470) kernel: fs: writeback: fix use-after-free in __mark_inode_dirty() (CVE-2025-39866) kernel: dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134) kernel: wifi: mac80211_hwsim: fix typo in frequency notification (CVE-2026-23040) kernel: Linux kernel: Denial of service and memory corruption in RDMA umad (CVE-2026-23243) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 9 Release Notes linked from the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for x86_64 9 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le Red Hat CodeReady Linux Builder for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x Fixes BZ - 2360247 - CVE-2025-22105 kernel: bonding: check xdp prog when set bond mode BZ - 2367614 - CVE-2025-37980 kernel: block: fix resource leak in blk_register_queue() error path BZ - 2373343 - CVE-2025-38015 kernel: dmaengine: idxd: fix memory leak in error handling path of idxd_alloc BZ - 2376060 - CVE-2025-38097 kernel: espintcp: remove encap socket caching to avoid reference leak BZ - 2376065 - CVE-2025-38166 kernel: bpf: fix ktls panic with sockmap BZ - 2379178 - CVE-2025-38279 kernel: bpf: Do not include stack ptr register in precision backtracking bookkeeping BZ - 2383397 - CVE-2025-38400 kernel: nfs: Clean up /proc/net/rpc/nfs when nfs_fs_proc_net_init() fails BZ - 2383399 - CVE-2025-38405 kernel: nvmet: fix memory leak of bio integrity BZ - 2383478 - CVE-2025-38441 kernel: netfilter: flowtable: account for Ethernet header in nf_flow_pppoe_proto() BZ - 2383906 - CVE-2025-38470 kernel: net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime BZ - 2396940 - CVE-2025-39866 kernel: fs: writeback: fix use-after-free in __mark_inode_dirty() BZ - 2414468 - CVE-2025-40134 kernel: dm: fix NULL pointer dereference in __dm_suspend() BZ - 2436806 - CVE-2026-23040 kernel: wifi: mac80211_hwsim: fix typo in frequency notification BZ - 2448594 - CVE-2026-23243 kernel: Linux kernel: Denial of service and memory corruption in RDMA umad RHEL-109634 - [octeon_ep]got some error when set effective mac for vf RHEL-107273 - C9s: add systemd-repart into dracut-virt.conf RHEL-116075 - SCSI updates for 9.8 RHEL-111113 - [RHEL-9.8][octeon_ep]not support multiqueue RHEL-125143 - Missing patch breaks landlock in Fedora containers RHEL-101326 - [Broadcom RHEL9.8 FEAT] megaraid_sas driver update RHEL-101342 - [Broadcom RHEL9.8 FEAT] mpt3sas driver update RHEL-107917 - smartpqi - RHEL9.8 update RHEL-141481 - Fix suspend/resume printk bug in C9s RHEL-95934 - Stalled KVM async page fault resolution [RHEL9] RHEL-9065 - No audit event recorded when not having any rule RHEL-147489 - Jetson Orin Nano display fix RHEL-145938 - Add NVIDIA Jetpack and BF DPU keys to RHEL 9 kernel CVEs CVE-2025-22105 CVE-2025-37980 CVE-2025-38015 CVE-2025-38097 CVE-2025-38166 CVE-2025-38279 CVE-2025-38400 CVE-2025-38405 CVE-2025-38441 CVE-2025-38470 CVE-2025-39866 CVE-2025-40134 CVE-2026-23040 CVE-2026-23243 References https://access.redhat.com/security/updates/classification/#moderate https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.8_release_notes/index Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM kernel-5.14.0-687.5.1.el9_8.src.rpm SHA-256: b211314dd041366f6ffce49ddd9d2c6e747cfa7a608382a9479463e58dae3d91 x86_64 kernel-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: ee72ea15dde0040ff8b0d7869566ce339310e8158af9a953d4fb21a0c8a46c58 kernel-abi-stablelists-5.14.0-687.5.1.el9_8.noarch.rpm SHA-256: a1c8b9eeeae757697cfa43eb6b456f394d51916ae08e40af417a17b2473177c1 kernel-core-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: ff33d849f3354fc91e04116a4a3cce5af167489eca5e974251f9c12eca7fffb2 kernel-debug-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: e7ea8fe58df8ace9b286aeefc32f74a48f5d8265f93dd9a0a03742b40e43a3d7 kernel-debug-core-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: ee066374af86dc3fa4dda9070294b1db23bbbf0ddcac58b4e1513a82803835e4 kernel-debug-debuginfo-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: b2c77e86c18ce8714ea3c735c70896cd4744e325cab27c7d860d020c429edba6 kernel-debug-debuginfo-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: b2c77e86c18ce8714ea3c735c70896cd4744e325cab27c7d860d020c429edba6 kernel-debug-debuginfo-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: b2c77e86c18ce8714ea3c735c70896cd4744e325cab27c7d860d020c429edba6 kernel-debug-debuginfo-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: b2c77e86c18ce8714ea3c735c70896cd4744e325cab27c7d860d020c429edba6 kernel-debug-devel-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 9e92f813188946a36e67dcd0f7fb35106ca02c4cef63fc0c8d0f00402f40ae7d kernel-debug-devel-matched-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 743d728d65d1b8320008ec635ff7adc674a746780bb1277682f248a7331ffa01 kernel-debug-modules-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: c44705390b5d39e300e2592d13f0ead18044b08f8081cd5099b85c0dd419bc34 kernel-debug-modules-core-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 09421771d99dc173258d2adcd09418accac9ba884f8b252b87794d6a5cc04c6d kernel-debug-modules-extra-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: b415146376b24ebb0b19452ffe7152a0be6ebd5c41bb0fda2b589f3530f959f4 kernel-debug-uki-virt-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 701c0e5751cd447339a5ce1ef9c7ee02d87b5316c2453d96dc6eba887a27c919 kernel-debuginfo-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 1220ebd0e20953687fdd3c07c213b90c716152a78e87172fc5e416bc02a49f55 kernel-debuginfo-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 1220ebd0e20953687fdd3c07c213b90c716152a78e87172fc5e416bc02a49f55 kernel-debuginfo-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 1220ebd0e20953687fdd3c07c213b90c716152a78e87172fc5e416bc02a49f55 kernel-debuginfo-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 1220ebd0e20953687fdd3c07c213b90c716152a78e87172fc5e416bc02a49f55 kernel-debuginfo-common-x86_64-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 8709107c67d3cc69ba97d551b31f7b5a827fa2d8ac1eb02c11278a56405aae26 kernel-debuginfo-common-x86_64-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 8709107c67d3cc69ba97d551b31f7b5a827fa2d8ac1eb02c11278a56405aae26 kernel-debuginfo-common-x86_64-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 8709107c67d3cc69ba97d551b31f7b5a827fa2d8ac1eb02c11278a56405aae26 kernel-debuginfo-common-x86_64-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 8709107c67d3cc69ba97d551b31f7b5a827fa2d8ac1eb02c11278a56405aae26 kernel-devel-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 1d7b29534e1a6255a1811e056b539da1836f9a9389d0ba8b1f36d593d3b7b2c0 kernel-devel-matched-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: e8148c4fd43e5f752382e2fa2128e59b0b63192ae9a9d9092a926d6198ab7276 kernel-doc-5.14.0-687.5.1.el9_8.noarch.rpm SHA-256: 2bf0d9035ba96bbeb3b9478a92154093c6c2aca9705a7cb8a144fafff77d8226 kernel-headers-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 8c5af5ca82ba8c0ad1e66890ee8b56938a70a17aec7cc676c0d067f0cdfc5b25 kernel-modules-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 2326bde16d46b2b6f145ee46b96b48430c66d8d744a3307d0c80fcb13f4571d5 kernel-modules-core-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 2488f72abfffe1206ad26d3a055cb1b2d0bbde473cd7784f8c9a446102b58f54 kernel-modules-extra-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 5d5c4475999ab014f8c759356c0b2f5aa6d003675586af2d514c38798d6feab1 kernel-rt-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: ebc685f3e7c594bf2468b95876e765cec7163deff0d7ed44ae5a1c4fafaf1bbc kernel-rt-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: ebc685f3e7c594bf2468b95876e765cec7163deff0d7ed44ae5a1c4fafaf1bbc kernel-rt-core-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 82714c89a92bf90338212c48ad7690c26894e745584c9a16cfd4b250ab65ac1c kernel-rt-core-5.14.0-687.5.1.el9_8.x86_64.rpm SHA-256: 82714c89a92bf9