Red Hat Product Errata RHSA-2026:19705 - Security Advisory Issued: 2026-05-20 Updated: 2026-05-20 RHSA-2026:19705 - Security Advisory Overview Updated Packages Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: can: raw: fix ro->uniq use-after-free in raw_rcv() (CVE-2026-31532) kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel (CVE-2026-46300) kernel: Read root-owned files as an unprivileged user (CVE-2026-46333) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 s390x Fixes BZ - 2461107 - CVE-2026-31532 kernel: can: raw: fix ro->uniq use-after-free in raw_rcv() BZ - 2477015 - CVE-2026-46300 kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel BZ - 2477802 - CVE-2026-46333 kernel: Read root-owned files as an unprivileged user CVEs CVE-2026-31532 CVE-2026-46300 CVE-2026-46333 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 SRPM kernel-5.14.0-70.180.1.el9_0.src.rpm SHA-256: 58a0f47434cb180ad0eeabcbdeee1644e88bf43a527ad3eb05ae3630183a03f4 ppc64le bpftool-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 179f59f17e36e31fc8b20ea746f991e645b9167b23121da170c53a2dbf1a3e6f bpftool-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 4d2159a0aea89fcc11cda22ad995c44771662395c893dac2729857668c019e99 bpftool-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 4d2159a0aea89fcc11cda22ad995c44771662395c893dac2729857668c019e99 kernel-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 05c198281dc4b90588382ebcdc61800e1a2008ab7c55271ee7178d66f7f0565f kernel-abi-stablelists-5.14.0-70.180.1.el9_0.noarch.rpm SHA-256: 0947682ec3a5f1c1be3b9cd157159e51cee36a503ee29e4deda6d244fac87f03 kernel-core-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 2b95ca8505edd9c077cad66a4cc3aed985fda75911c9139a20691b8e80c339b8 kernel-debug-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 75dd17a6065d86b923d254054c85431b01259b2def04d8928dd3db34bfd5e7ac kernel-debug-core-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: ce624020469ad8b6c8893a11725cd414436e665df82b2d39bc20873af7064060 kernel-debug-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: c8b2867eb85d3a7ef151e21a3a14a71d23bd039fb9d1214f5b4e52e18202f1bf kernel-debug-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: c8b2867eb85d3a7ef151e21a3a14a71d23bd039fb9d1214f5b4e52e18202f1bf kernel-debug-devel-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 02b5e6e1f49b4f014e517147ac32fdbec6e64247484a413364cff52f19f99c81 kernel-debug-devel-matched-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 06b05eef19b1acefe1a2f01c7dfa7e01a1b66e3cc8960b0779250d9e8ba3baa1 kernel-debug-modules-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 3c7c331e5c35661850fe9856e96caf84d1b3f98265603188086b27c3b8132d83 kernel-debug-modules-extra-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 4022de34c663947eb7c0de9a5da54e917e48193c30b49f99ab96236b199a229b kernel-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 5184011e6081a35d7d7438c2c018a8dd1b656797f7e88ee475515c3329c1ebf9 kernel-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 5184011e6081a35d7d7438c2c018a8dd1b656797f7e88ee475515c3329c1ebf9 kernel-debuginfo-common-ppc64le-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 0eaee051830008fb2e232a7c9c3cef7fb3e8d4d082afa2e6037d4b4e4940e251 kernel-debuginfo-common-ppc64le-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 0eaee051830008fb2e232a7c9c3cef7fb3e8d4d082afa2e6037d4b4e4940e251 kernel-devel-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: ce2d095341e13b42691fd70952745b5b4b5ca966d763f347100e6e05dbb7f7a9 kernel-devel-matched-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: baa26b00fe9d402130317fa62923a0abf5c1d8cdb26ed9c642f3106726e1c01d kernel-doc-5.14.0-70.180.1.el9_0.noarch.rpm SHA-256: d0540abd9d8fa4e1491744dfdc0202c5e645c0c953a07452fda7656526efd175 kernel-headers-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: b3084e5a01f7e9f68c23be23a25ad3c1b075aa6575be0cb3a1101b11fd8153d6 kernel-modules-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: c2d17bdff0bafcb31c0fece0a10c8a2e1b472699ed901f37cc482a792ffd13ba kernel-modules-extra-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: bb1bd4d4f7ea7a4dc999a32fa13724c73ec1c720552450fe15ba68df518e3161 kernel-tools-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 2bffd9ee0c85de399f01eee80e364a8fc39c6fc9ee2044ac9e53b95d940f24fc kernel-tools-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 08cb64cc68668a799a66df70b1efc61e58be325cf1963d364a468c5d7289c3d7 kernel-tools-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 08cb64cc68668a799a66df70b1efc61e58be325cf1963d364a468c5d7289c3d7 kernel-tools-libs-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 0e84401585ad0147ff2dad758a949d69eb3b63e6b29fe7a616b95f9760d4a145 perf-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 193e82250e7abcf6ef58daab89d7cc7747d8b33baeb285a17c3c18ea4dcdf572 perf-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 48d9b22d4f6f7f5a92503b3667b04c41754297d771a8bdba7bf170efd10730d6 perf-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 48d9b22d4f6f7f5a92503b3667b04c41754297d771a8bdba7bf170efd10730d6 python3-perf-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 51fb1aa5f21ec6fdfb74f586ba0cda6a1ff6f442703c70b687a7a013609ca305 python3-perf-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 8a147ca4136f96c1b1f2a0dcb9f8009ba4aed8f035030d298770c7fed2c7c5a0 python3-perf-debuginfo-5.14.0-70.180.1.el9_0.ppc64le.rpm SHA-256: 8a147ca4136f96c1b1f2a0dcb9f8009ba4aed8f035030d298770c7fed2c7c5a0 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 SRPM kernel-5.14.0-70.180.1.el9_0.src.rpm SHA-256: 58a0f47434cb180ad0eeabcbdeee1644e88bf43a527ad3eb05ae3630183a03f4 x86_64 bpftool-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 45853d9554893771d548fc5151270f109c2c34f4aa06fa0dcc114ca0497e5061 bpftool-debuginfo-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: be17afbd569809695770fe5a6b15e002a63dd3ed531019626ce1acb0c2b29286 bpftool-debuginfo-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: be17afbd569809695770fe5a6b15e002a63dd3ed531019626ce1acb0c2b29286 kernel-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 8b780d17ca819946bade40fe4f26834aa966997690124b8278d1ce820a4f9bac kernel-abi-stablelists-5.14.0-70.180.1.el9_0.noarch.rpm SHA-256: 0947682ec3a5f1c1be3b9cd157159e51cee36a503ee29e4deda6d244fac87f03 kernel-core-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 2fcbf1d40bfaf6e01c7a12b877b4e41a7ba540f145c3dcfb2b96af820752d9be kernel-debug-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 36ddf11b183df1a41ce15441d2451cce60f20f0ef3a9c80d8b0079d0c6715cf0 kernel-debug-core-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 3bf44ebdf590f030239172ef5b5a8df141f0e0fe41f94e92c772cb63210028f3 kernel-debug-debuginfo-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 338c19dbfab7a1c0293a968a1e9fed87f576eec735e554f8810f99f64356b7c4 kernel-debug-debuginfo-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 338c19dbfab7a1c0293a968a1e9fed87f576eec735e554f8810f99f64356b7c4 kernel-debug-devel-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 291097f22152f4672a490cdd7bf85699bf2ea9b9048c962ff93758ce0bcb1ab5 kernel-debug-devel-matched-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: a6919d8708bfd0e1b6e8c098c82e926fc4c4a7c02c19120f59f3b61f2be1c048 kernel-debug-modules-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: fe8966f03faf83fa33c4c69db907335c5dd6453627073a2335acb70af22ba8e5 kernel-debug-modules-extra-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 72a2dc403c069754cc6119b9087d59d372a02cc0e0eebbbae61254d546e8c379 kernel-debuginfo-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 766b91e8c607f654c270e9af14342a5f6b3477eb8662e93294dcecef152262de kernel-debuginfo-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 766b91e8c607f654c270e9af14342a5f6b3477eb8662e93294dcecef152262de kernel-debuginfo-common-x86_64-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 5a0846827e749efdabf01cea58efa57ef1c861d2a627841dbe2083826c310b8d kernel-debuginfo-common-x86_64-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 5a0846827e749efdabf01cea58efa57ef1c861d2a627841dbe2083826c310b8d kernel-devel-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 8b6610d44d8a386a2e7f1f608157c86b04ae276e3102898e680f1142d8cf7cc2 kernel-devel-matched-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 13e85ef4db33ee79ea0db9fbeab0224ddb39a649a260640917f7ef431dfece63 kernel-doc-5.14.0-70.180.1.el9_0.noarch.rpm SHA-256: d0540abd9d8fa4e1491744dfdc0202c5e645c0c953a07452fda7656526efd175 kernel-headers-5.14.0-70.180.1.el9_0.x86_64.rpm SHA-256: 56e355b43200f7c05802d97b0edb5cf6bfbcded071e22c59c1b314c3509d722f kernel-modules-5.1