{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright © Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: nvme: avoid double free special payload (CVE-2024-41073)\n\n* kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration (CVE-2026-23097)\n\n* kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() (CVE-2026-23193)\n\n* kernel: ALSA: aloop: Fix racy access at PCM trigger (CVE-2026-23191)\n\n* kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (CVE-2026-31402)\n\n* kernel: crypto: algif_aead - Revert to operating out-of-place (CVE-2026-31431)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2026:14301", "url": "https://access.redhat.com/errata/RHSA-2026:14301" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2301637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301637" }, { "category": "external", "summary": "2436802", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2436802" }, { "category": "external", "summary": "2439887", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439887" }, { "category": "external", "summary": "2439947", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439947" }, { "category": "external", "summary": "2454844", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2454844" }, { "category": "external", "summary": "2460538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460538" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_14301.json" } ], "title": "Red Hat Security Advisory: kernel-rt security update", "tracking": { "current_release_date": "2026-06-08T22:06:29+00:00", "generator": { "date": "2026-06-08T22:06:29+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.8.2" } }, "id": "RHSA-2026:14301", "initial_release_date": "2026-05-06T18:51:08+00:00", "revision_history": [ { "date": "2026-05-06T18:51:08+00:00", "number": "1", "summary": "Initial version" }, { "date": "2026-05-06T18:51:08+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2026-06-08T22:06:29+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product": { "name": "Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_e4s:9.2::realtime" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product": { "name": "Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_e4s:9.2::nfv" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "product": { "name": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "product_id": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@5.14.0-284.169.1.rt14.454.el9_2?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-core@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-core@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-modules@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-modules-core@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-modules-extra@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-devel@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-modules@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-modules-core@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-modules-extra@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product": { "name": "kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_id": "kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-kvm@5.14.0-284.169.1.rt14.454.el9_2?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src" }, "product_reference": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV E4S (v.9.2)", "product_id": "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "NFV-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src" }, "product_reference": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64 as a component of Red Hat Enterprise Linux Real Time E4S (v.9.2)", "product_id": "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" }, "product_reference": "kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "relates_to_product_reference": "RT-9.2.0.Z.E4S" } ] }, "vulnerabilities": [ { "cve": "CVE-2024-41073", "discovery_date": "2024-07-29T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2301637" } ], "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: avoid double free special payload\n\nIf a discard request needs to be retried, and that retry may fail before\na new special payload is added, a double free will result. Clear the\nRQF_SPECIAL_LOAD when the request is cleaned.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nvme: avoid double free special payload", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2024-41073" }, { "category": "external", "summary": "RHBZ#2301637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301637" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2024-41073", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41073" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-41073", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41073" }, { "category": "external", "summary": "https://lore.kernel.org/linux-cve-announce/2024072909-CVE-2024-41073-1fb9@gregkh/T", "url": "https://lore.kernel.org/linux-cve-announce/2024072909-CVE-2024-41073-1fb9@gregkh/T" } ], "release_date": "2024-07-29T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2026-05-06T18:51:08+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:14301" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: nvme: avoid double free special payload" }, { "cve": "CVE-2026-23097", "cwe": { "id": "CWE-833", "name": "Deadlock" }, "discovery_date": "2026-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2436802" } ], "notes": [ { "category": "description", "text": "A flaw was found in the Linux kernel. A local attacker could exploit a deadlock vulnerability due to incorrect lock ordering between folio_lock and i_mmap_rwsem when migrating hugetlb file-backed folios. This could lead to hung tasks and potential system-wide stalls, resulting in a Denial of Service (DoS).", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration", "title": "Vulnerability summary" }, { "category": "other", "text": "A deadlock can occur when migrating hugetlb file backed folios due to incorrect lock ordering between folio_lock and the mapping i_mmap_rwsem. One task in the migration path can hold folio_lock and then block on i_mmap_lock_read. Another task such as hugetlbfs fallocate or punch hole can hold i_mmap_lock_write and then block on folio_lock. This ABBA pattern can hang tasks indefinitely and lead to a denial of service. For the CVSS the PR is N because the involved operations can be triggered by normal users who can access hugetlbfs and run memory pressure and file operations. The issue is not network reachable. Impact is denial of service due to hung tasks and potential system wide stalls.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2026-23097" }, { "category": "external", "summary": "RHBZ#2436802", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2436802" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2026-23097", "url": "https://www.cve.org/CVERecord?id=CVE-2026-23097" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-23097", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23097" }, { "category": "external", "summary": "https://lore.kernel.org/linux-cve-announce/2026020427-CVE-2026-23097-a591@gregkh/T", "url": "https://lore.kernel.org/linux-cve-announce/2026020427-CVE-2026-23097-a591@gregkh/T" } ], "release_date": "2026-02-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2026-05-06T18:51:08+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:14301" }, { "category": "workaround", "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.", "product_ids": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", "version": "3.1" }, "products": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration" }, { "cve": "CVE-2026-23191", "cwe": { "id": "CWE-367", "name": "Time-of-check Time-of-use (TOCTOU) Race Condition" }, "discovery_date": "2026-02-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2439947" } ], "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: aloop: Fix racy access at PCM trigger\n\nThe PCM trigger callback of aloop driver tries to check the PCM state\nand stop the stream of the tied substream in the corresponding cable.\nSince both check and stop operations are performed outside the cable\nlock, this may result in UAF when a program attempts to trigger\nfrequently while opening/closing the tied stream, as spotted by\nfuzzers.\n\nFor addressing the UAF, this patch changes two things:\n- It covers the most of code in loopback_check_format() with\n cable->lock spinlock, and add the proper NULL checks. This avoids\n already some racy accesses.\n- In addition, now we try to check the state of the capture PCM stream\n that may be stopped in this function, which was the major pain point\n leading to UAF.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ALSA: aloop: Fix racy access at PCM trigger", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2026-23191" }, { "category": "external", "summary": "RHBZ#2439947", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439947" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2026-23191", "url": "https://www.cve.org/CVERecord?id=CVE-2026-23191" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-23191", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23191" }, { "category": "external", "summary": "https://lore.kernel.org/linux-cve-announce/2026021433-CVE-2026-23191-f990@gregkh/T", "url": "https://lore.kernel.org/linux-cve-announce/2026021433-CVE-2026-23191-f990@gregkh/T" } ], "release_date": "2026-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2026-05-06T18:51:08+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:14301" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "version": "3.1" }, "products": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ALSA: aloop: Fix racy access at PCM trigger" }, { "cve": "CVE-2026-23193", "cwe": { "id": "CWE-364", "name": "Signal Handler Race Condition" }, "discovery_date": "2026-02-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2439887" } ], "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count()\n\nIn iscsit_dec_session_usage_count(), the function calls complete() while\nholding the sess->session_usage_lock. Similar to the connection usage count\nlogic, the waiter signaled by complete() (e.g., in the session release\npath) may wake up and free the iscsit_session structure immediately.\n\nThis creates a race condition where the current thread may attempt to\nexecute spin_unlock_bh() on a session structure that has already been\ndeallocated, resulting in a KASAN slab-use-after-free.\n\nTo resolve this, release the session_usage_lock before calling complete()\nto ensure all dereferences of the sess pointer are finished before the\nwaiter is allowed to proceed with deallocation.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count()", "title": "Vulnerability summary" }, { "category": "other", "text": "A use after free can occur in the iSCSI target session usage count logic because iscsit_dec_session_usage_count can call complete while holding session_usage_lock. A waiting thread in the session release path can wake up and free the session structure immediately after the completion is signaled. The current thread may then attempt to unlock or otherwise access fields in a session object that has already been deallocated which can trigger a slab use after free and crash the kernel. The attack surface is adjacent network because iSCSI targets are typically reachable only inside storage or data center networks. Impact can be denial of service. A conservative assessment also considers potential confidentiality and integrity impact due to kernel memory corruption from a use after free.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2026-23193" }, { "category": "external", "summary": "RHBZ#2439887", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439887" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2026-23193", "url": "https://www.cve.org/CVERecord?id=CVE-2026-23193" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-23193", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23193" }, { "category": "external", "summary": "https://lore.kernel.org/linux-cve-announce/2026021434-CVE-2026-23193-2c6c@gregkh/T", "url": "https://lore.kernel.org/linux-cve-announce/2026021434-CVE-2026-23193-2c6c@gregkh/T" } ], "release_date": "2026-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2026-05-06T18:51:08+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:14301" }, { "category": "workaround", "details": "To mitigate this issue, prevent module iscsi_target_mod from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically.", "product_ids": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count()" }, { "cve": "CVE-2026-31402", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2026-04-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2454844" } ], "notes": [ { "category": "description", "text": "A flaw was found in the Linux kernel's NFSv4.0 server (nfsd). A remote, unauthenticated attacker can exploit this heap overflow vulnerability in the NFSv4.0 LOCK replay cache. By using two cooperating NFSv4.0 clients, where one sets a lock with a large owner string and another requests a conflicting lock, the attacker can trigger a slab-out-of-bounds write. This corruption of adjacent heap memory could lead to arbitrary code execution or a denial of service.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache", "title": "Vulnerability summary" }, { "category": "other", "text": "This Important flaw in the Linux kernel's NFSv4.0 server (nfsd) allows a heap overflow. In this flaw a local attacker can trigger this by orchestrating two NFSv4.0 clients to create a conflicting lock with an oversized owner string.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2026-31402" }, { "category": "external", "summary": "RHBZ#2454844", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2454844" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2026-31402", "url": "https://www.cve.org/CVERecord?id=CVE-2026-31402" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31402", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31402" }, { "category": "external", "summary": "https://lore.kernel.org/linux-cve-announce/2026040327-CVE-2026-31402-3e6a@gregkh/T", "url": "https://lore.kernel.org/linux-cve-announce/2026040327-CVE-2026-31402-3e6a@gregkh/T" } ], "release_date": "2026-04-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2026-05-06T18:51:08+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:14301" }, { "category": "workaround", "details": "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", "product_ids": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache" }, { "cve": "CVE-2026-31431", "cwe": { "id": "CWE-1288", "name": "Improper Validation of Consistency within Input" }, "discovery_date": "2026-04-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2460538" } ], "notes": [ { "category": "description", "text": "A flaw was found in the Linux kernel's algif_aead cryptographic algorithm interface. An incorrect in-place operation causes source and destination data mappings to differ during cryptographic processing. A low-privileged local attacker can exploit this flaw to corrupt the contents of sensitive system files and escalate to root privileges.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: crypto: algif_aead - Revert to operating out-of-place", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue is classified as Important, rather than Critical severity, because exploitation requires local access to the system. A low-privileged local attacker can exploit this flaw in the Linux kernel's cryptographic interface to gain root privileges by overwriting sensitive system files. Exploitation does not require user interaction, potentially resulting in full compromise of confidentiality, integrity, and availability.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2026-31431" }, { "category": "external", "summary": "RHBZ#2460538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460538" }, { "category": "external", "summary": "RHSB-2026-002", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2026-002" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2026-31431", "url": "https://www.cve.org/CVERecord?id=CVE-2026-31431" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31431", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31431" }, { "category": "external", "summary": "https://access.redhat.com/articles/7141989", "url": "https://access.redhat.com/articles/7141989" }, { "category": "external", "summary": "https://access.redhat.com/solutions/7141931", "url": "https://access.redhat.com/solutions/7141931" }, { "category": "external", "summary": "https://access.redhat.com/solutions/7141979", "url": "https://access.redhat.com/solutions/7141979" }, { "category": "external", "summary": "https://access.redhat.com/solutions/7141990", "url": "https://access.redhat.com/solutions/7141990" }, { "category": "external", "summary": "https://access.redhat.com/solutions/7141996", "url": "https://access.redhat.com/solutions/7141996" }, { "category": "external", "summary": "https://access.redhat.com/solutions/7142032", "url": "https://access.redhat.com/solutions/7142032" }, { "category": "external", "summary": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/managing_monitoring_and_updating_the_kernel/configuring-kernel-command-line-parameters_managing-monitoring-and-updating-the-kernel", "url": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/managing_monitoring_and_updating_the_kernel/configuring-kernel-command-line-parameters_managing-monitoring-and-updating-the-kernel" }, { "category": "external", "summary": "https://lore.kernel.org/linux-cve-announce/2026042214-CVE-2026-31431-3d65@gregkh/T", "url": "https://lore.kernel.org/linux-cve-announce/2026042214-CVE-2026-31431-3d65@gregkh/T" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2026-04-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2026-05-06T18:51:08+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:14301" }, { "category": "workaround", "details": "See the security bulletin for a detailed mitigation procedure.", "product_ids": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2026-05-01T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Important" } ], "title": "kernel: crypto: algif_aead - Revert to operating out-of-place" }, { "cve": "CVE-2026-43077", "cwe": { "id": "CWE-131", "name": "Incorrect Calculation of Buffer Size" }, "discovery_date": "2026-05-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2467022" } ], "notes": [ { "category": "description", "text": "A flaw was found in the Linux kernel, specifically within the `algif_aead` module. The vulnerability involves an incorrect check for the minimum receive buffer size during decryption, which did not properly account for the tag size. This could potentially lead to issues with data integrity or processing during cryptographic decryption operations.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: crypto: algif_aead - Fix minimum RX size check for decryption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2026-43077" }, { "category": "external", "summary": "RHBZ#2467022", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467022" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2026-43077", "url": "https://www.cve.org/CVERecord?id=CVE-2026-43077" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-43077", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-43077" }, { "category": "external", "summary": "https://lore.kernel.org/linux-cve-announce/2026050612-CVE-2026-43077-d7b1@gregkh/T", "url": "https://lore.kernel.org/linux-cve-announce/2026050612-CVE-2026-43077-d7b1@gregkh/T" } ], "release_date": "2026-05-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2026-05-06T18:51:08+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.", "product_ids": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:14301" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "version": "3.1" }, "products": [ "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "NFV-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "NFV-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.src", "RT-9.2.0.Z.E4S:kernel-rt-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debug-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-devel-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-kvm-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-core-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64", "RT-9.2.0.Z.E4S:kernel-rt-modules-extra-0:5.14.0-284.169.1.rt14.454.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: crypto: algif_aead - Fix minimum RX size check for decryption" } ] }