Red Hat Security Advisory: kernel security, bug fix, and enhancement update
This Red Hat security advisory addresses multiple vulnerabilities in the Linux kernel packages, which form the core of the operating system. The update includes fixes for ten distinct security issues affecting components such as libceph, netfilter, xfs, memory management, networking, SMB client, SCTP, and WiFi mac80211. The vulnerabilities include out-of-bounds reads, use-after-free conditions, and improper handling of corrupted data structures. The advisory is rated as Important by Red Hat and requires a system reboot after applying the update. No CVSS scores are provided in the advisory, but the overall severity is assessed as high based on the nature of the kernel vulnerabilities. The update is available for Red Hat Enterprise Linux 9.4 and related variants. Users should apply the official kernel update from Red Hat to remediate these issues.
AI Analysis
Technical Summary
The advisory covers a set of kernel vulnerabilities fixed in Red Hat Enterprise Linux 9.4 kernel packages. Key fixes include making decode_pool() in libceph more resilient against corrupted osdmaps (CVE-2025-71116), preventing out-of-bounds reads in handle_auth_done() (CVE-2026-22984), replacing an overzealous BUG_ON in osdmap_apply_incremental() (CVE-2026-22990), ensuring safe access to master conntrack in netfilter ctnetlink (CVE-2026-43116), fixing freemap adjustments in xfs (CVE-2026-43158), clearing page->private in free_pages_prepare() (CVE-2026-43303), addressing a use-after-free in net/gro due to improper zerocopy skb handling (CVE-2026-46323), rejecting userspace cifs.spnego descriptions in the SMB client (CVE-2026-46243), revalidating list cursor in SCTP_SENDALL (CVE-2026-46227), and removing stations if connection preparation fails in mac80211 WiFi (CVE-2026-46125). The advisory includes bug fixes and enhancements and requires rebooting the system after applying the update. The vendor rates the update as Important and provides official patches via Red Hat Enterprise Linux 9.4 update channels.
Potential Impact
The vulnerabilities affect the Linux kernel, potentially allowing out-of-bounds memory reads, use-after-free conditions, and improper handling of corrupted data structures. These issues could lead to system instability, crashes, or escalation of privileges if exploited. The advisory does not report any known exploits in the wild. The impact is significant given the kernel's critical role in system security and stability.
Mitigation Recommendations
An official security update for the Red Hat Enterprise Linux 9.4 kernel packages is available and should be applied promptly. The update includes fixes for all listed vulnerabilities. After applying the update, a system reboot is required for the changes to take effect. Users should follow Red Hat's official guidance for applying this update: https://access.redhat.com/articles/11258. No additional mitigations are indicated or required beyond applying the official patch and rebooting.
Red Hat Security Advisory: kernel security, bug fix, and enhancement update
Description
This Red Hat security advisory addresses multiple vulnerabilities in the Linux kernel packages, which form the core of the operating system. The update includes fixes for ten distinct security issues affecting components such as libceph, netfilter, xfs, memory management, networking, SMB client, SCTP, and WiFi mac80211. The vulnerabilities include out-of-bounds reads, use-after-free conditions, and improper handling of corrupted data structures. The advisory is rated as Important by Red Hat and requires a system reboot after applying the update. No CVSS scores are provided in the advisory, but the overall severity is assessed as high based on the nature of the kernel vulnerabilities. The update is available for Red Hat Enterprise Linux 9.4 and related variants. Users should apply the official kernel update from Red Hat to remediate these issues.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The advisory covers a set of kernel vulnerabilities fixed in Red Hat Enterprise Linux 9.4 kernel packages. Key fixes include making decode_pool() in libceph more resilient against corrupted osdmaps (CVE-2025-71116), preventing out-of-bounds reads in handle_auth_done() (CVE-2026-22984), replacing an overzealous BUG_ON in osdmap_apply_incremental() (CVE-2026-22990), ensuring safe access to master conntrack in netfilter ctnetlink (CVE-2026-43116), fixing freemap adjustments in xfs (CVE-2026-43158), clearing page->private in free_pages_prepare() (CVE-2026-43303), addressing a use-after-free in net/gro due to improper zerocopy skb handling (CVE-2026-46323), rejecting userspace cifs.spnego descriptions in the SMB client (CVE-2026-46243), revalidating list cursor in SCTP_SENDALL (CVE-2026-46227), and removing stations if connection preparation fails in mac80211 WiFi (CVE-2026-46125). The advisory includes bug fixes and enhancements and requires rebooting the system after applying the update. The vendor rates the update as Important and provides official patches via Red Hat Enterprise Linux 9.4 update channels.
Potential Impact
The vulnerabilities affect the Linux kernel, potentially allowing out-of-bounds memory reads, use-after-free conditions, and improper handling of corrupted data structures. These issues could lead to system instability, crashes, or escalation of privileges if exploited. The advisory does not report any known exploits in the wild. The impact is significant given the kernel's critical role in system security and stability.
Mitigation Recommendations
An official security update for the Red Hat Enterprise Linux 9.4 kernel packages is available and should be applied promptly. The update includes fixes for all listed vulnerabilities. After applying the update, a system reboot is required for the changes to take effect. Users should follow Red Hat's official guidance for applying this update: https://access.redhat.com/articles/11258. No additional mitigations are indicated or required beyond applying the official patch and rebooting.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:27735
- Cve Count
- 10
- Additional Cves
- ["CVE-2026-22984","CVE-2026-22990","CVE-2026-43116","CVE-2026-43158","CVE-2026-43303","CVE-2026-46125","CVE-2026-46227","CVE-2026-46243","CVE-2026-46323"]
- Cvss Version
- null
Threat ID: 6a395a01eed863c81e08df6a
Added to database: 06/22/2026, 15:51:29 UTC
Last enriched: 06/22/2026, 15:53:25 UTC
Last updated: 06/23/2026, 02:09:10 UTC
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.