The advisory covers security fixes for eight distinct Linux kernel vulnerabilities (CVE-2026-23455, CVE-2026-31669, CVE-2026-43128, CVE-2026-43329, CVE-2026-43501, CVE-2026-45852, CVE-2026-46173, CVE-2026-46331) in Red Hat Enterprise Linux 9.4. These include a zero-length check in netfilter's nf_conntrack_h323 DecodeQ931 function, slab-use-after-free in multipath TCP's __inet_lookup_established, double dma_buf_unpin and double free errors in RDMA components, strict action count checks in netfilter flowtable, extended writable skb range in net/sched act_pedit, reserved mac_len headroom in IPv6 routing header compression, and prevention of preemption of oopsing TASK_DEAD tasks. The advisory also addresses a potential recursive locking warning in the vmd_enable_domain function. The update is rated as Important by Red Hat and requires a system reboot.

The vulnerabilities fixed in this advisory affect core kernel components and could lead to memory corruption issues such as use-after-free and double free, improper input validation, and task preemption problems. These issues may cause system instability, crashes, or potential privilege escalation if exploited. The advisory rates the security impact as Important, indicating a high risk to affected systems if unpatched.

Red Hat has released an official kernel update for Red Hat Enterprise Linux 9.4 that addresses these vulnerabilities. Users should apply the update as provided by Red Hat and reboot their systems to ensure the fixes take effect. For detailed update instructions, refer to Red Hat's official documentation at https://access.redhat.com/articles/11258. No additional mitigations are specified beyond applying the official patch and rebooting.