- What: Red Hat released security updates for multiple kernel packages
- Impact: Systems running Red Hat Enterprise Linux 9.4 EUS are affected
Red Hat Product Errata RHSA-2026:19577 - Security Advisory Issued: 2026-05-20 Updated: 2026-05-20 RHSA-2026:19577 - Security Advisory Overview Updated Packages Synopsis Important: kpatch-patch-5_14_0-427_100_1, kpatch-patch-5_14_0-427_113_1, kpatch-patch-5_14_0-427_55_1, kpatch-patch-5_14_0-427_68_2, and kpatch-patch-5_14_0-427_84_1 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for multiple packages is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patch module is targeted for kernel-5.14.0-427.55.1.el9_4. Security Fix(es): kernel: "Dirty Frag" is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel (CVE-2026-43284) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64 Red Hat Enterprise Linux Server - AUS 9.4 x86_64 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 x86_64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 ppc64le Fixes BZ - 2467771 - CVE-2026-43284 kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel CVEs CVE-2026-43284 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 SRPM kpatch-patch-5_14_0-427_100_1-1-4.el9_4.src.rpm SHA-256: 1a27a7ec7cd68c864794adc6216c377b45c9a622ad94fefa0d26be73cec3d46e kpatch-patch-5_14_0-427_113_1-1-2.el9_4.src.rpm SHA-256: 82d0745e334cd916e67f4fe18f9124bd22be17cbd97b4607f23f1283c4c5ae80 kpatch-patch-5_14_0-427_55_1-1-14.el9_4.src.rpm SHA-256: f1f9be0fb0645bcf2f28de966619fa182c076640e76438fe79bd98f7b7487388 kpatch-patch-5_14_0-427_68_2-1-11.el9_4.src.rpm SHA-256: c8a68d729d08eea428f02fe53ce1fbc8354fcd764a99d4954527bde48d1c65a1 kpatch-patch-5_14_0-427_84_1-1-6.el9_4.src.rpm SHA-256: 6b75c0f7f97444a51d7de011310d45da1240e5efe43aa074aab67c971fb8c9c1 x86_64 kpatch-patch-5_14_0-427_100_1-1-4.el9_4.x86_64.rpm SHA-256: a7037091dc166d40b849bc03e58350c65219efcf5273d7416d6734fc3eb5135b kpatch-patch-5_14_0-427_100_1-debuginfo-1-4.el9_4.x86_64.rpm SHA-256: f13d777a537048a1cbf8527d045df3636ffcdaacaf25564bff6edc03f865fb87 kpatch-patch-5_14_0-427_100_1-debugsource-1-4.el9_4.x86_64.rpm SHA-256: 4dac4e8c268237630563bee91286d2d9b22b2c69cfd5b8225c5fd845096d6d28 kpatch-patch-5_14_0-427_113_1-1-2.el9_4.x86_64.rpm SHA-256: 179bde0c9a4c14a834486ed10095c8b444ab87268b83d23e090472b1199ecfdc kpatch-patch-5_14_0-427_113_1-debuginfo-1-2.el9_4.x86_64.rpm SHA-256: 6d9ca5b4381b16260acbfaa8c1ec3d1cc64304f2379309ee334c0fd4c8e2ba82 kpatch-patch-5_14_0-427_113_1-debugsource-1-2.el9_4.x86_64.rpm SHA-256: 5bef852226594cf42115724344c09a7273be6eafd94cf07998860b37f78af0e7 kpatch-patch-5_14_0-427_55_1-1-14.el9_4.x86_64.rpm SHA-256: 3b5e34085269d496c367487e97337c2731bbef150dbb6794d081289b104afc7c kpatch-patch-5_14_0-427_55_1-debuginfo-1-14.el9_4.x86_64.rpm SHA-256: 89a6ff13e298c8a5cb18a8e4303720d5d1d066d20d4cfcd7022ffebeea243013 kpatch-patch-5_14_0-427_55_1-debugsource-1-14.el9_4.x86_64.rpm SHA-256: 0041a84ea0292e904e7136319ea24310973e38e106d425775d518a78584826c1 kpatch-patch-5_14_0-427_68_2-1-11.el9_4.x86_64.rpm SHA-256: d29d4f8de0dacfe1403e2a24aa49cca0633997ce4cadf05fb06093f9cbeff975 kpatch-patch-5_14_0-427_68_2-debuginfo-1-11.el9_4.x86_64.rpm SHA-256: db85235aa79d16c65f40b7b78d57be395af1be34f1386952d9ade41de7d4e994 kpatch-patch-5_14_0-427_68_2-debugsource-1-11.el9_4.x86_64.rpm SHA-256: 4e79182309b660ddfcc48239e085a89e8b83b91f450630acb4a96ca3cf16131b kpatch-patch-5_14_0-427_84_1-1-6.el9_4.x86_64.rpm SHA-256: 885a98524d46b63c3aea9c658486d4fb2e4d5b6ed193b25566781bb6f1a0f90a kpatch-patch-5_14_0-427_84_1-debuginfo-1-6.el9_4.x86_64.rpm SHA-256: fbca6cacca7f95c6c7e1fbbd9325846a8ff24653051414a223e692551ed51503 kpatch-patch-5_14_0-427_84_1-debugsource-1-6.el9_4.x86_64.rpm SHA-256: 6f2533790c24d1994f4a9fa4714240d95546156149c0dd6a52c3975b9760bfbb Red Hat Enterprise Linux Server - AUS 9.4 SRPM kpatch-patch-5_14_0-427_100_1-1-4.el9_4.src.rpm SHA-256: 1a27a7ec7cd68c864794adc6216c377b45c9a622ad94fefa0d26be73cec3d46e kpatch-patch-5_14_0-427_113_1-1-2.el9_4.src.rpm SHA-256: 82d0745e334cd916e67f4fe18f9124bd22be17cbd97b4607f23f1283c4c5ae80 kpatch-patch-5_14_0-427_55_1-1-14.el9_4.src.rpm SHA-256: f1f9be0fb0645bcf2f28de966619fa182c076640e76438fe79bd98f7b7487388 kpatch-patch-5_14_0-427_68_2-1-11.el9_4.src.rpm SHA-256: c8a68d729d08eea428f02fe53ce1fbc8354fcd764a99d4954527bde48d1c65a1 kpatch-patch-5_14_0-427_84_1-1-6.el9_4.src.rpm SHA-256: 6b75c0f7f97444a51d7de011310d45da1240e5efe43aa074aab67c971fb8c9c1 x86_64 kpatch-patch-5_14_0-427_100_1-1-4.el9_4.x86_64.rpm SHA-256: a7037091dc166d40b849bc03e58350c65219efcf5273d7416d6734fc3eb5135b kpatch-patch-5_14_0-427_100_1-debuginfo-1-4.el9_4.x86_64.rpm SHA-256: f13d777a537048a1cbf8527d045df3636ffcdaacaf25564bff6edc03f865fb87 kpatch-patch-5_14_0-427_100_1-debugsource-1-4.el9_4.x86_64.rpm SHA-256: 4dac4e8c268237630563bee91286d2d9b22b2c69cfd5b8225c5fd845096d6d28 kpatch-patch-5_14_0-427_113_1-1-2.el9_4.x86_64.rpm SHA-256: 179bde0c9a4c14a834486ed10095c8b444ab87268b83d23e090472b1199ecfdc kpatch-patch-5_14_0-427_113_1-debuginfo-1-2.el9_4.x86_64.rpm SHA-256: 6d9ca5b4381b16260acbfaa8c1ec3d1cc64304f2379309ee334c0fd4c8e2ba82 kpatch-patch-5_14_0-427_113_1-debugsource-1-2.el9_4.x86_64.rpm SHA-256: 5bef852226594cf42115724344c09a7273be6eafd94cf07998860b37f78af0e7 kpatch-patch-5_14_0-427_55_1-1-14.el9_4.x86_64.rpm SHA-256: 3b5e34085269d496c367487e97337c2731bbef150dbb6794d081289b104afc7c kpatch-patch-5_14_0-427_55_1-debuginfo-1-14.el9_4.x86_64.rpm SHA-256: 89a6ff13e298c8a5cb18a8e4303720d5d1d066d20d4cfcd7022ffebeea243013 kpatch-patch-5_14_0-427_55_1-debugsource-1-14.el9_4.x86_64.rpm SHA-256: 0041a84ea0292e904e7136319ea24310973e38e106d425775d518a78584826c1 kpatch-patch-5_14_0-427_68_2-1-11.el9_4.x86_64.rpm SHA-256: d29d4f8de0dacfe1403e2a24aa49cca0633997ce4cadf05fb06093f9cbeff975 kpatch-patch-5_14_0-427_68_2-debuginfo-1-11.el9_4.x86_64.rpm SHA-256: db85235aa79d16c65f40b7b78d57be395af1be34f1386952d9ade41de7d4e994 kpatch-patch-5_14_0-427_68_2-debugsource-1-11.el9_4.x86_64.rpm SHA-256: 4e79182309b660ddfcc48239e085a89e8b83b91f450630acb4a96ca3cf16131b kpatch-patch-5_14_0-427_84_1-1-6.el9_4.x86_64.rpm SHA-256: 885a98524d46b63c3aea9c658486d4fb2e4d5b6ed193b25566781bb6f1a0f90a kpatch-patch-5_14_0-427_84_1-debuginfo-1-6.el9_4.x86_64.rpm SHA-256: fbca6cacca7f95c6c7e1fbbd9325846a8ff24653051414a223e692551ed51503 kpatch-patch-5_14_0-427_84_1-debugsource-1-6.el9_4.x86_64.rpm SHA-256: 6f2533790c24d1994f4a9fa4714240d95546156149c0dd6a52c3975b9760bfbb Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 SRPM kpatch-patch-5_14_0-427_100_1-1-4.el9_4.src.rpm SHA-256: 1a27a7ec7cd68c864794adc6216c377b45c9a622ad94fefa0d26be73cec3d46e kpatch-patch-5_14_0-427_113_1-1-2.el9_4.src.rpm SHA-256: 82d0745e334cd916e67f4fe18f9124bd22be17cbd97b4607f23f1283c4c5ae80 kpatch-patch-5_14_0-427_55_1-1-14.el9_4.src.rpm SHA-256: f1f9be0fb0645bcf2f28de966619fa182c076640e76438fe79bd98f7b7487388 kpatch-patch-5_14_0-427_68_2-1-11.el9_4.src.rpm SHA-256: c8a68d729d08eea428f02fe53ce1fbc8354fcd764a99d4954527bde48d1c65a1 kpatch-patch-5_14_0-427_84_1-1-6.el9_4.src.rpm SHA-256: 6b75c0f7f97444a51d7de011310d45da1240e5efe43aa074aab67c971fb8c9c1 ppc64le kpatch-patch-5_14_0-427_100_1-1-4.el9_4.ppc64le.rpm SHA-256: c67a181d5d2824a3549c272a2abbbc52de036ea097e81a4096ba16954e58bf08 kpatch-patch-5_14_0-427_100_1-debuginfo-1-4.el9_4.ppc64le.rpm SHA-256: 3717661eeb4576744b1ca106b872c6fa17cec8909c5f0cc78fb8bbe40d924a41 kpatch-patch-5_14_0-427_100_1-debugsource-1-4.el9_4.ppc64le.rpm SHA-256: 57c30b0036f7003404a6c2f304d9c628d4a14a3a490ab89421a618f50b76139c kpatch-patch-5_14_0-427_113_1-1-2.el9_4.ppc64le.rpm SHA-256: 52b1b9d2b0a10a07b378a20270e0bfe6ef2c04abc0d9fbc81f8bc3fcd6ad80c7 kpatch-patch-5_14_0-427_113_1-debuginfo-1-2.el9_4.ppc64le.rpm SHA-256: cc662a835a2a430fe4720128428825562980eadf6ecdf49bf5ff679866de84cb kpatch-patch-5_14_0-427_113_1-debugsource-1-2.el9_4.ppc64le.rpm SHA-256: c6baa45b74ef4c28552916c47ac4e70d5eb558efee8811076df34e97941d498b kpatch-patch-5_14_0-427_55_1-1-14.el9_4.ppc64le.rpm SHA-256: b46bba2f8d32132de4159317716886005c9b36946a5559b12c865dc44823d501 kpatch-patch-5_14_0-427_55_1-debuginfo-1-14.el9_4.ppc64le.rpm SHA-256: b47c807b54d0bf01c116b1b9a7a94f70e699ee4e6eb66c059849efd0dcd76af6 kpatch-patch-5_14_0-427_55_1-debugsource-1-14.el9_4.ppc64le.rpm SHA-256: a8d954c2bff7ad286abbe45cc336d7714ecab2df8250f0d3fe0682ab2a7cbb07 kpatch-patch-5_14_0-427_68_2-1-11.el9_4.ppc64le.rpm SHA-256: 383398589eb2a444ce6a271903c963b0b6daff942b0856bb5e4fca4c8c212f6e kpatch-patch-5_14_0-427_68_2-debuginfo-1-11.el9_4.ppc64le.rpm SHA-256: e675de41a3a442cd30cbf018ed3785dad4fb2fd3d40f271d02d79ab2326c8498 kpatch-patch-5_14_0