RHSA-2026:22900
Vulnerability from csaf_redhat - Published: 2026-06-03 15:25 - Updated: 2026-06-05 00:49Summary
Red Hat Security Advisory: kernel-rt security update
Severity
Important
Notes
Topic: An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
* kernel: net/sched: Make cake_enqueue return NET_XMIT_CN when past buffer_limit (CVE-2025-39766)
* kernel: Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation (CVE-2026-23270)
* kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service (CVE-2026-31419)
* kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err() (CVE-2026-43037)
* kernel: ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach() (CVE-2026-43038)
* kernel: smb: client: validate the whole DACL before rewriting it in cifsacl (CVE-2026-31709)
* kernel: md/bitmap: fix GPF in write_page caused by resize race (CVE-2026-43163)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
In the Linux kernel, the following vulnerability has been resolved: net/sched: Make cake_enqueue return NET_XMIT_CN when past buffer_limit The following setup can trigger a WARNING in htb_activate due to the condition: !cl->leaf.q->q.qlen tc qdisc del dev lo root tc qdisc add dev lo root handle 1: htb default 1 tc class add dev lo parent 1: classid 1:1 \ htb rate 64bit tc qdisc add dev lo parent 1:1 handle f: \ cake memlimit 1b ping -I lo -f -c1 -s64 -W0.001 127.0.0.1 This is because the low memlimit leads to a low buffer_limit, which causes packet dropping. However, cake_enqueue still returns NET_XMIT_SUCCESS, causing htb_enqueue to call htb_activate with an empty child qdisc. We should return NET_XMIT_CN when packets are dropped from the same tin and flow. I do not believe return value of NET_XMIT_CN is necessary for packet drops in the case of ack filtering, as that is meant to optimize performance, not to signal congestion.
7.3 (High)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel. A use-after-free vulnerability exists in the traffic control `act_ct` path when it is incorrectly configured with non-ingress egress qdiscs (queueing disciplines). This can allow a local user with specific privileges to trigger a kernel crash, leading to a denial of service. In some cases, this vulnerability may also be exploited for privilege escalation.
7.0 (High)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel's bonding driver. A local attacker with low privileges could exploit a use-after-free vulnerability in the `bond_xmit_broadcast()` function. This occurs due to a race condition during concurrent slave enslave/release operations, which can lead to the original socket buffer (skb) being double-freed. Successful exploitation of this flaw can result in a system crash, leading to a denial of service.
7.0 (High)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in the Linux kernel's Server Message Block (SMB) client, specifically within the cifsacl functionality. A malicious SMB server could provide a malformed Discretionary Access Control List (DACL) that claims to contain more Access Control Entries (ACEs) than are actually present. This insufficient validation allows the kernel to read or copy data beyond the intended memory boundaries, leading to memory corruption. This could potentially result in information disclosure or a denial of service.
7.8 (High)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: clear skb2->cb[] in ip4ip6_err() Oskar Kjos reported the following problem. ip4ip6_err() calls icmp_send() on a cloned skb whose cb[] was written by the IPv6 receive path as struct inet6_skb_parm. icmp_send() passes IPCB(skb2) to __ip_options_echo(), which interprets that cb[] region as struct inet_skb_parm (IPv4). The layouts differ: inet6_skb_parm.nhoff at offset 14 overlaps inet_skb_parm.opt.rr, producing a non-zero rr value. __ip_options_echo() then reads optlen from attacker-controlled packet data at sptr[rr+1] and copies that many bytes into dopt->__data, a fixed 40-byte stack buffer (IP_OPTIONS_DATA_FIXED_SIZE). To fix this we clear skb2->cb[], as suggested by Oskar Kjos. Also add minimal IPv4 header validation (version == 4, ihl >= 5).
7.0 (High)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in the Linux kernel's IPv6 ICMP error generation. A remote attacker could send a specially crafted IPv4 ICMP error packet with a Common Internet Protocol Security Option (CIPSO) IP option. This could lead to incorrect handling of packet control block data when generating an IPv6 ICMP error, potentially causing an out-of-bounds memory access. This memory corruption could result in information disclosure or a denial of service.
7.3 (High)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in the Linux kernel's md/bitmap component. This vulnerability involves a use-after-free race condition that occurs during array resize operations. When the `bitmap_daemon_work()` and `__bitmap_resize()` functions execute concurrently, they can access memory pages that have already been freed. This can lead to a General Protection Fault (GPF), which causes the system to crash, resulting in a denial of service.
4.7 (Medium)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
45 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: net/sched: Make cake_enqueue return NET_XMIT_CN when past buffer_limit (CVE-2025-39766)\n\n* kernel: Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation (CVE-2026-23270)\n\n* kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service (CVE-2026-31419)\n\n* kernel: ip6_tunnel: clear skb2-\u003ecb[] in ip4ip6_err() (CVE-2026-43037)\n\n* kernel: ipv6: icmp: clear skb2-\u003ecb[] in ip6_err_gen_icmpv6_unreach() (CVE-2026-43038)\n\n* kernel: smb: client: validate the whole DACL before rewriting it in cifsacl (CVE-2026-31709)\n\n* kernel: md/bitmap: fix GPF in write_page caused by resize race (CVE-2026-43163)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:22900",
"url": "https://access.redhat.com/errata/RHSA-2026:22900"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2394648",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2394648"
},
{
"category": "external",
"summary": "2448745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448745"
},
{
"category": "external",
"summary": "2457829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2457829"
},
{
"category": "external",
"summary": "2464351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2464351"
},
{
"category": "external",
"summary": "2464397",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2464397"
},
{
"category": "external",
"summary": "2464476",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2464476"
},
{
"category": "external",
"summary": "2467059",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467059"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_22900.json"
}
],
"title": "Red Hat Security Advisory: kernel-rt security update",
"tracking": {
"current_release_date": "2026-06-05T00:49:08+00:00",
"generator": {
"date": "2026-06-05T00:49:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2026:22900",
"initial_release_date": "2026-06-03T15:25:47+00:00",
"revision_history": [
{
"date": "2026-06-03T15:25:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-03T15:25:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-05T00:49:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:9.2::realtime"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:9.2::nfv"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"product": {
"name": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"product_id": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@5.14.0-284.174.1.rt14.459.el9_2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-core@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-core@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-core@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-extra@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-core@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-extra@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product": {
"name": "kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_id": "kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-kvm@5.14.0-284.174.1.rt14.459.el9_2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src"
},
"product_reference": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)",
"product_id": "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "NFV-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src"
},
"product_reference": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)",
"product_id": "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
},
"product_reference": "kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"relates_to_product_reference": "RT-9.2.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-39766",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2025-09-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2394648"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: Make cake_enqueue return NET_XMIT_CN when past buffer_limit\n\nThe following setup can trigger a WARNING in htb_activate due to\nthe condition: !cl-\u003eleaf.q-\u003eq.qlen\n\ntc qdisc del dev lo root\ntc qdisc add dev lo root handle 1: htb default 1\ntc class add dev lo parent 1: classid 1:1 \\\n htb rate 64bit\ntc qdisc add dev lo parent 1:1 handle f: \\\n cake memlimit 1b\nping -I lo -f -c1 -s64 -W0.001 127.0.0.1\n\nThis is because the low memlimit leads to a low buffer_limit, which\ncauses packet dropping. However, cake_enqueue still returns\nNET_XMIT_SUCCESS, causing htb_enqueue to call htb_activate with an\nempty child qdisc. We should return NET_XMIT_CN when packets are\ndropped from the same tin and flow.\n\nI do not believe return value of NET_XMIT_CN is necessary for packet\ndrops in the case of ack filtering, as that is meant to optimize\nperformance, not to signal congestion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: net/sched: Make cake_enqueue return NET_XMIT_CN when past buffer_limit",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-39766"
},
{
"category": "external",
"summary": "RHBZ#2394648",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2394648"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-39766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39766"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-39766",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-39766"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2025091144-CVE-2025-39766-7465@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2025091144-CVE-2025-39766-7465@gregkh/T"
}
],
"release_date": "2025-09-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-03T15:25:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:22900"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: net/sched: Make cake_enqueue return NET_XMIT_CN when past buffer_limit"
},
{
"cve": "CVE-2026-23270",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2026-03-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448745"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel. A use-after-free vulnerability exists in the traffic control `act_ct` path when it is incorrectly configured with non-ingress egress qdiscs (queueing disciplines). This can allow a local user with specific privileges to trigger a kernel crash, leading to a denial of service. In some cases, this vulnerability may also be exploited for privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A use after free risk exists in the traffic control act_ct path when it is attached to non ingress egress qdiscs. In this configuration classify can return TC_ACT_CONSUMED while the skb is still held by the defragmentation engine. That can result in the skb being consumed and later accessed again by defragmentation which may lead to a kernel crash. Impact is denial of service in the common case, but keeping in mind that a kernel UAF could be exploitable for privilege escalation in some cases. The bug could happen only if some specific configuration being used (when tc/action being used and if the act_ct linked to incorrect qdisc/block), and in some cases regular user (if with some privileges) can make such configuration.\nThe bug is not triggerable until some specific configuration being used, so considered with limited impact level.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-23270"
},
{
"category": "external",
"summary": "RHBZ#2448745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448745"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-23270",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23270"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-23270",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23270"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2026031847-CVE-2026-23270-cb9a@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2026031847-CVE-2026-23270-cb9a@gregkh/T"
}
],
"release_date": "2026-03-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-03T15:25:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:22900"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation"
},
{
"cve": "CVE-2026-31419",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2026-04-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2457829"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s bonding driver. A local attacker with low privileges could exploit a use-after-free vulnerability in the `bond_xmit_broadcast()` function. This occurs due to a race condition during concurrent slave enslave/release operations, which can lead to the original socket buffer (skb) being double-freed. Successful exploitation of this flaw can result in a system crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important impact flaw affecting the Linux kernel\u0027s bonding driver in Red Hat Enterprise Linux 6, 8.8 and later, 9.2 and later, and 10, as well as Red Hat In-Vehicle OS 2.0. A local attacker with low privileges could trigger a use-after-free vulnerability, leading to a system crash and denial of service. Red Hat Enterprise Linux 7, 8.2, 8.4, 8.6, and 9.0 are not affected as the vulnerable code is not present.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-31419"
},
{
"category": "external",
"summary": "RHBZ#2457829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2457829"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-31419",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31419"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31419",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31419"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2026041353-CVE-2026-31419-e176@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2026041353-CVE-2026-31419-e176@gregkh/T"
}
],
"release_date": "2026-04-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-03T15:25:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:22900"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service"
},
{
"cve": "CVE-2026-31709",
"cwe": {
"id": "CWE-1288",
"name": "Improper Validation of Consistency within Input"
},
"discovery_date": "2026-05-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2464476"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s Server Message Block (SMB) client, specifically within the cifsacl functionality. A malicious SMB server could provide a malformed Discretionary Access Control List (DACL) that claims to contain more Access Control Entries (ACEs) than are actually present. This insufficient validation allows the kernel to read or copy data beyond the intended memory boundaries, leading to memory corruption. This could potentially result in information disclosure or a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: smb: client: validate the whole DACL before rewriting it in cifsacl",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-31709"
},
{
"category": "external",
"summary": "RHBZ#2464476",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2464476"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-31709",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31709"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31709",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31709"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2026050122-CVE-2026-31709-335b@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2026050122-CVE-2026-31709-335b@gregkh/T"
}
],
"release_date": "2026-05-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-03T15:25:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:22900"
},
{
"category": "workaround",
"details": "To mitigate this issue, if SMB client functionality is not required, the `cifs` kernel module can be blacklisted to prevent it from loading. This can be achieved by creating a modprobe configuration file.\n\n1. Create a file named `/etc/modprobe.d/disable-cifs.conf` with the following content:\n ```\n install cifs /bin/true\n blacklist cifs\n ```\n2. Regenerate the initramfs to ensure the change takes effect on boot:\n ```bash\n dracut -f -v\n ```\n or for systems using `mkinitrd`:\n ```bash\n mkinitrd -f /boot/initramfs-$(uname -r).img $(uname -r)\n ```\n3. A system reboot is required for the changes to take effect.\n\nWarning: Disabling the `cifs` module will prevent the system from mounting SMB/CIFS shares. Ensure this functionality is not critical before applying this mitigation.\n\nrefer: https://access.redhat.com/solutions/4117281",
"product_ids": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: smb: client: validate the whole DACL before rewriting it in cifsacl"
},
{
"cve": "CVE-2026-43037",
"discovery_date": "2026-05-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2464351"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_tunnel: clear skb2-\u003ecb[] in ip4ip6_err()\n\nOskar Kjos reported the following problem.\n\nip4ip6_err() calls icmp_send() on a cloned skb whose cb[] was written\nby the IPv6 receive path as struct inet6_skb_parm. icmp_send() passes\nIPCB(skb2) to __ip_options_echo(), which interprets that cb[] region\nas struct inet_skb_parm (IPv4). The layouts differ: inet6_skb_parm.nhoff\nat offset 14 overlaps inet_skb_parm.opt.rr, producing a non-zero rr\nvalue. __ip_options_echo() then reads optlen from attacker-controlled\npacket data at sptr[rr+1] and copies that many bytes into dopt-\u003e__data,\na fixed 40-byte stack buffer (IP_OPTIONS_DATA_FIXED_SIZE).\n\nTo fix this we clear skb2-\u003ecb[], as suggested by Oskar Kjos.\n\nAlso add minimal IPv4 header validation (version == 4, ihl \u003e= 5).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: ip6_tunnel: clear skb2-\u003ecb[] in ip4ip6_err()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-43037"
},
{
"category": "external",
"summary": "RHBZ#2464351",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2464351"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-43037",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-43037"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-43037",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-43037"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2026050102-CVE-2026-43037-0346@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2026050102-CVE-2026-43037-0346@gregkh/T"
}
],
"release_date": "2026-05-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-03T15:25:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:22900"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: ip6_tunnel: clear skb2-\u003ecb[] in ip4ip6_err()"
},
{
"cve": "CVE-2026-43038",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"discovery_date": "2026-05-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2464397"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s IPv6 ICMP error generation. A remote attacker could send a specially crafted IPv4 ICMP error packet with a Common Internet Protocol Security Option (CIPSO) IP option. This could lead to incorrect handling of packet control block data when generating an IPv6 ICMP error, potentially causing an out-of-bounds memory access. This memory corruption could result in information disclosure or a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: ipv6: icmp: clear skb2-\u003ecb[] in ip6_err_gen_icmpv6_unreach()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-43038"
},
{
"category": "external",
"summary": "RHBZ#2464397",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2464397"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-43038",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-43038"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-43038",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-43038"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2026050103-CVE-2026-43038-b591@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2026050103-CVE-2026-43038-b591@gregkh/T"
}
],
"release_date": "2026-05-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-03T15:25:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:22900"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: ipv6: icmp: clear skb2-\u003ecb[] in ip6_err_gen_icmpv6_unreach()"
},
{
"cve": "CVE-2026-43163",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2026-05-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467059"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s md/bitmap component. This vulnerability involves a use-after-free race condition that occurs during array resize operations. When the `bitmap_daemon_work()` and `__bitmap_resize()` functions execute concurrently, they can access memory pages that have already been freed. This can lead to a General Protection Fault (GPF), which causes the system to crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: md/bitmap: fix GPF in write_page caused by resize race",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-43163"
},
{
"category": "external",
"summary": "RHBZ#2467059",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467059"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-43163",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-43163"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-43163",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-43163"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2026050632-CVE-2026-43163-86e1@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2026050632-CVE-2026-43163-86e1@gregkh/T"
}
],
"release_date": "2026-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-03T15:25:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:22900"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.src",
"RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64",
"RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.174.1.rt14.459.el9_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: md/bitmap: fix GPF in write_page caused by resize race"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…