Red Hat Product Errata RHSA-2026:20593 - Security Advisory Issued: 2026-05-26 Updated: 2026-05-26 RHSA-2026:20593 - Security Advisory Overview Updated Packages Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: proc: fix UAF in proc_get_inode() (CVE-2025-21999) kernel: Linux kernel (qla2xxx): Double free vulnerability leads to denial of service and potential privilege escalation. (CVE-2025-71238) kernel: Linux kernel: Denial of service and memory corruption in RDMA umad (CVE-2026-23243) kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling (CVE-2026-23401) kernel: can: raw: fix ro->uniq use-after-free in raw_rcv() (CVE-2026-31532) kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel (CVE-2026-46300) kernel: Read root-owned files as an unprivileged user (CVE-2026-46333) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux Server - AUS 9.2 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.2 s390x Fixes BZ - 2357134 - CVE-2025-21999 kernel: proc: fix UAF in proc_get_inode() BZ - 2444398 - CVE-2025-71238 kernel: Linux kernel (qla2xxx): Double free vulnerability leads to denial of service and potential privilege escalation. BZ - 2448594 - CVE-2026-23243 kernel: Linux kernel: Denial of service and memory corruption in RDMA umad BZ - 2453803 - CVE-2026-23401 kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling BZ - 2461107 - CVE-2026-31532 kernel: can: raw: fix ro->uniq use-after-free in raw_rcv() BZ - 2477015 - CVE-2026-46300 kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel BZ - 2477802 - CVE-2026-46333 kernel: Read root-owned files as an unprivileged user CVEs CVE-2025-21999 CVE-2025-71238 CVE-2026-23243 CVE-2026-23401 CVE-2026-31532 CVE-2026-46300 CVE-2026-46333 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - AUS 9.2 SRPM kernel-5.14.0-284.172.1.el9_2.src.rpm SHA-256: 2906cf905e0ada03061c2dc4c9f1cf9896f5ff0f6ef9c13a938c1b90aa1cb769 x86_64 bpftool-7.0.0-284.172.1.el9_2.x86_64.rpm SHA-256: dd9f278b46fab36b8e48fc8d4552b63f2540a46d7cbb2d70511bc553e99eb05c bpftool-debuginfo-7.0.0-284.172.1.el9_2.x86_64.rpm SHA-256: 541412af1cfd9f7a6d0c54b44e29993c058b3b21c448f5c4f102f85249eff9ee bpftool-debuginfo-7.0.0-284.172.1.el9_2.x86_64.rpm SHA-256: 541412af1cfd9f7a6d0c54b44e29993c058b3b21c448f5c4f102f85249eff9ee kernel-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 1fdaedb81358adbd68a38257dbd6a18dc931880fedbab1e60b1f87a8c2849fbe kernel-abi-stablelists-5.14.0-284.172.1.el9_2.noarch.rpm SHA-256: 3417aeed7b5fd945b01a51c7c63bc5de99cdf7871b754f23ca29a7e700d4e973 kernel-core-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: e5e43ec336785e85a65022557a356e0c86412363eaa9c05b16361405a5b5aa75 kernel-debug-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 9952fe923fce9a22d88a93187ef650ac763dd543c5b8900b404c30515e9da5c4 kernel-debug-core-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 0cf3c3cf176d1da367187ba96e436ae0c69bac1fe7361f701b9c0b8853ff1a06 kernel-debug-debuginfo-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 768e12d214eb78fc17312dd57249f7b5e0cf1b478c3a6f0c3dd0d3eb69549a2b kernel-debug-debuginfo-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 768e12d214eb78fc17312dd57249f7b5e0cf1b478c3a6f0c3dd0d3eb69549a2b kernel-debug-devel-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 89ac686f23f157b1690300076ab18d46e3cded2cb9330d437c4856524dffb2a1 kernel-debug-devel-matched-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: c4a671a1b295ce766cd63e047832778b20936bfa052bcb0d806248e9f75371cd kernel-debug-modules-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 7ecc9717dcb379abdce0ab827fa7db5802b2084a3a829bd94eb8b47c335c4cdc kernel-debug-modules-core-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 867f8168804556ba3e116fc4aaa01ddca9133e083ad8c49534f9a074ea489e06 kernel-debug-modules-extra-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 0d5921cc0cc97a8284027621f7b91f08f5389eaad99b3b2cf8c85bed3c5684e5 kernel-debug-uki-virt-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 52790c1a480b3d1a829011e252d838b24ca0c693841b15fd85757c1261faf1c9 kernel-debuginfo-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: f2bb3d97956c419fce50341fdd4a8b5edb53284dafa4644d3589ff7be9467227 kernel-debuginfo-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: f2bb3d97956c419fce50341fdd4a8b5edb53284dafa4644d3589ff7be9467227 kernel-debuginfo-common-x86_64-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: f1839a1270417979a9ff1f68d05276d9e0419f6dab40e5244ba82d9fc779eeca kernel-debuginfo-common-x86_64-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: f1839a1270417979a9ff1f68d05276d9e0419f6dab40e5244ba82d9fc779eeca kernel-devel-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: d2920b40d4c369266c0e3794b85a81406fd7956150c92182fa6f20a46a442c94 kernel-devel-matched-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 5ca8d9fec6d890e020ed7022ca0dbe55608ab26a1e2b3ee7e3c490d23747389c kernel-doc-5.14.0-284.172.1.el9_2.noarch.rpm SHA-256: 40b4c6b165b48f63bb0fd1c928e8146e05cc0cd35afd48264111771c3fedeb74 kernel-headers-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 150cda85e21c943f723092523bc274c1e4b1812ad6e986c5f73c34e363c30807 kernel-modules-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: c92f42705a9a7465f03bd205a68c0f2c8bf5c9110b52f3159e975e006a1e44ca kernel-modules-core-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 1f88a4ccd765575739f4bfcc2c50e33da8f4baab50600840d405efcd0e30d4a0 kernel-modules-extra-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 680ba168d21efc584863cfe33f8911aca2ff3ac48d5aee12476285d487ba24c1 kernel-tools-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: a46a8cb735351a8d8a5a695169aebdf8f55cf43b93ed1aa9b9da5dbd89a2eb18 kernel-tools-debuginfo-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: ce085a05aad2cfd8e46001c79103e8f055bb2ca5e256f12c16d31b33c121184d kernel-tools-debuginfo-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: ce085a05aad2cfd8e46001c79103e8f055bb2ca5e256f12c16d31b33c121184d kernel-tools-libs-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 88d92231c6fe68b362a9c27709a7789dbe493258b8b54a070c531926cc6ef527 kernel-uki-virt-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 2d54287f0f21c90e2420195dab81c3139f47463e7d4e38c8ccab1e5b69fb1d8a perf-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 0262c7996c51937dd3abc0c97bd3754da7ee638bb4a40e04db45c50248bac0d0 perf-debuginfo-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 146c271caf534c005b0a67b34ef5d885d24d8834511015ab30c3a816283f660b perf-debuginfo-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 146c271caf534c005b0a67b34ef5d885d24d8834511015ab30c3a816283f660b python3-perf-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: b7937f9b2651dca438b9ef632ebaee867abfd5f84ead0d56393fcbe737bbaf11 python3-perf-debuginfo-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 5bf149704e3acd6462e54133d7a52b1c7e5c1d7efdf5cafbd5479aeb9f6153d0 python3-perf-debuginfo-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 5bf149704e3acd6462e54133d7a52b1c7e5c1d7efdf5cafbd5479aeb9f6153d0 rtla-5.14.0-284.172.1.el9_2.x86_64.rpm SHA-256: 1f6ce031d7deb3721e76da9186433b9f75169e4cc23e42777f5d32b7a3b033c4 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 SRPM kernel-5.14.0-284.172.1.el9_2.src.rpm SHA-256: 2906cf905e0ada03061c2dc4c9f1cf9896f5ff0f6ef9c13a938c1b90aa1cb769 ppc64le bpftool-7.0.0-284.172.1.el9_2.ppc64le.rpm SHA-256: 72c9b418dd7a7a9cc432b5adec5db5712fdcf7fbc96df4e1c22e94a831fee1ae bpftool-debuginfo-7.0.0-284.172.1.el9_2.ppc64le.rpm SHA-256: f955795900c2995205691f4bd08afbcc6c2545675f20d0bc845eb72cadb062d3 bpftool-debuginfo-7.0.0-284.172.1.el9_2.ppc64le.rpm SHA-256: f955795900c2995205691f4bd08afbcc6c2545675f20d0bc845eb72cadb062d3 kernel-5.14.0-284.172.1.el9_2.ppc64le.rpm SHA-256: f003bf5c94bac9183771bb89f2ccee62762a68f77fad2953f254e45aed4ab3e4 kernel-abi-stablelists-5.14.0-284.172.1.el9_2.noarch.rpm SHA-256: 3417aeed7b5fd945b01a51c7c63bc5de99cdf7871b754f23ca29a7e700d4e973 kernel-core-5.14.0-284.172.1.el9_2.ppc64le.rpm SHA-256: 51cbd5b985e6438f3553e57371ed8905e9e2361e1256217d2228e1b1f3bb9e23 kernel-debug-5.14.0-284.172.1.el9_2.ppc64le.rpm SHA-256: 8efbdd32982c693b0ada1081cec099de4b8a1f13e9964624a80aa58466349dcd kernel-debug-core-5.14.0-284