Red Hat Security Advisory: kernel security update
Multiple security vulnerabilities affecting the Linux kernel packages in Red Hat Enterprise Linux 9. 6 Extended Update Support have been identified and addressed. These include use-after-free bugs, race conditions, and out-of-bounds memory accesses in various kernel subsystems such as SCTP, HID multitouch, Bluetooth, TLS, and USB. The update fixes these issues to prevent potential memory corruption and stability problems. Red Hat has released a security advisory (RHSA-2026:0457) with patches that must be applied and followed by a system reboot. The vulnerabilities are rated with an overall security impact of Important by Red Hat. No known exploits in the wild have been reported at this time.
AI Analysis
Technical Summary
This advisory covers six distinct vulnerabilities in the Linux kernel used by Red Hat Enterprise Linux 9.6 EUS. The issues include a use-after-free due to a race condition in SCTP's sendmsg function (CVE-2025-23142), a slab out-of-bounds access in HID multitouch reporting (CVE-2025-39806), multiple use-after-free bugs in Bluetooth management and event handling (CVE-2025-39981 and CVE-2025-39983), a TLS subsystem bug related to asynchronous decryptions (CVE-2025-40176), and a race condition in USB dwc3 driver request removal (CVE-2025-68287). These vulnerabilities could lead to memory corruption or kernel instability if exploited. Red Hat has issued patches for these issues in their kernel packages and requires a system reboot to apply the fixes.
Potential Impact
The vulnerabilities affect the core Linux kernel in Red Hat Enterprise Linux 9.6 EUS and could allow attackers to cause use-after-free conditions, out-of-bounds memory access, and race conditions. These issues may result in kernel crashes, memory corruption, or potentially privilege escalation or denial of service. However, no known exploits in the wild have been reported. The overall security impact is rated as Important by Red Hat, indicating a high severity but not critical.
Mitigation Recommendations
Red Hat has released updated kernel packages that address all listed vulnerabilities. Users of affected Red Hat Enterprise Linux 9.6 EUS versions should apply the kernel update as described in Red Hat advisory RHSA-2026:0457. After applying the update, a system reboot is required for the patches to take effect. There are no indications that further mitigation steps are necessary beyond applying the official update and rebooting.
Red Hat Security Advisory: kernel security update
Description
Multiple security vulnerabilities affecting the Linux kernel packages in Red Hat Enterprise Linux 9. 6 Extended Update Support have been identified and addressed. These include use-after-free bugs, race conditions, and out-of-bounds memory accesses in various kernel subsystems such as SCTP, HID multitouch, Bluetooth, TLS, and USB. The update fixes these issues to prevent potential memory corruption and stability problems. Red Hat has released a security advisory (RHSA-2026:0457) with patches that must be applied and followed by a system reboot. The vulnerabilities are rated with an overall security impact of Important by Red Hat. No known exploits in the wild have been reported at this time.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory covers six distinct vulnerabilities in the Linux kernel used by Red Hat Enterprise Linux 9.6 EUS. The issues include a use-after-free due to a race condition in SCTP's sendmsg function (CVE-2025-23142), a slab out-of-bounds access in HID multitouch reporting (CVE-2025-39806), multiple use-after-free bugs in Bluetooth management and event handling (CVE-2025-39981 and CVE-2025-39983), a TLS subsystem bug related to asynchronous decryptions (CVE-2025-40176), and a race condition in USB dwc3 driver request removal (CVE-2025-68287). These vulnerabilities could lead to memory corruption or kernel instability if exploited. Red Hat has issued patches for these issues in their kernel packages and requires a system reboot to apply the fixes.
Potential Impact
The vulnerabilities affect the core Linux kernel in Red Hat Enterprise Linux 9.6 EUS and could allow attackers to cause use-after-free conditions, out-of-bounds memory access, and race conditions. These issues may result in kernel crashes, memory corruption, or potentially privilege escalation or denial of service. However, no known exploits in the wild have been reported. The overall security impact is rated as Important by Red Hat, indicating a high severity but not critical.
Mitigation Recommendations
Red Hat has released updated kernel packages that address all listed vulnerabilities. Users of affected Red Hat Enterprise Linux 9.6 EUS versions should apply the kernel update as described in Red Hat advisory RHSA-2026:0457. After applying the update, a system reboot is required for the patches to take effect. There are no indications that further mitigation steps are necessary beyond applying the official update and rebooting.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:0457
- Cve Count
- 6
- Additional Cves
- ["CVE-2025-39806","CVE-2025-39981","CVE-2025-39983","CVE-2025-40176","CVE-2025-68287"]
- Cvss Version
- null
Threat ID: 6a19fee3e29bf47b500fead1
Added to database: 5/29/2026, 9:02:27 PM
Last enriched: 5/29/2026, 9:19:29 PM
Last updated: 5/29/2026, 10:15:50 PM
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.