Red Hat Security Advisory: kernel security update
Red Hat has issued a security advisory for a kernel update addressing two vulnerabilities in the Linux kernel used in Red Hat Enterprise Linux 10. 0 and related products. The first vulnerability (CVE-2026-46300) is a local privilege escalation issue caused by a variant of the Dirty Frag vulnerability in the ESP/XFRM subsystem, known as "Fragnesia. " The second vulnerability (CVE-2026-46333) allows an unprivileged user to read root-owned files. These vulnerabilities could allow unauthorized local users to gain elevated privileges or access sensitive files. Red Hat has rated the security impact as Important and released updated kernel packages to fix these issues. Systems must be rebooted after applying the update for the fixes to take effect. No known exploits in the wild have been reported at this time.
AI Analysis
Technical Summary
This advisory addresses two Linux kernel vulnerabilities affecting Red Hat Enterprise Linux 10.0 Extended Update Support and related variants. CVE-2026-46300 involves a local privilege escalation vulnerability due to a variant of the Dirty Frag vulnerability in the ESP/XFRM kernel subsystem, allowing local attackers to escalate privileges. CVE-2026-46333 permits unprivileged users to read files owned by root, potentially exposing sensitive information. Red Hat has released updated kernel packages that resolve these issues. Applying these updates requires a system reboot to activate the fixes.
Potential Impact
Successful exploitation of CVE-2026-46300 could allow a local attacker to escalate privileges to root, compromising system integrity. CVE-2026-46333 could enable an unprivileged user to read files owned by root, potentially leaking sensitive information. Both vulnerabilities affect the core Linux kernel, impacting confidentiality and integrity of affected systems. No evidence of active exploitation has been reported.
Mitigation Recommendations
Red Hat has released updated kernel packages that address these vulnerabilities. Users of affected Red Hat Enterprise Linux 10.0 Extended Update Support and related products should apply the kernel update as detailed in the Red Hat advisory (RHSA-2026:20299) and reboot their systems to ensure the fixes take effect. Patch status is confirmed as an official fix by Red Hat. No additional mitigation steps are indicated by the vendor.
Red Hat Security Advisory: kernel security update
Description
Red Hat has issued a security advisory for a kernel update addressing two vulnerabilities in the Linux kernel used in Red Hat Enterprise Linux 10. 0 and related products. The first vulnerability (CVE-2026-46300) is a local privilege escalation issue caused by a variant of the Dirty Frag vulnerability in the ESP/XFRM subsystem, known as "Fragnesia. " The second vulnerability (CVE-2026-46333) allows an unprivileged user to read root-owned files. These vulnerabilities could allow unauthorized local users to gain elevated privileges or access sensitive files. Red Hat has rated the security impact as Important and released updated kernel packages to fix these issues. Systems must be rebooted after applying the update for the fixes to take effect. No known exploits in the wild have been reported at this time.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory addresses two Linux kernel vulnerabilities affecting Red Hat Enterprise Linux 10.0 Extended Update Support and related variants. CVE-2026-46300 involves a local privilege escalation vulnerability due to a variant of the Dirty Frag vulnerability in the ESP/XFRM kernel subsystem, allowing local attackers to escalate privileges. CVE-2026-46333 permits unprivileged users to read files owned by root, potentially exposing sensitive information. Red Hat has released updated kernel packages that resolve these issues. Applying these updates requires a system reboot to activate the fixes.
Potential Impact
Successful exploitation of CVE-2026-46300 could allow a local attacker to escalate privileges to root, compromising system integrity. CVE-2026-46333 could enable an unprivileged user to read files owned by root, potentially leaking sensitive information. Both vulnerabilities affect the core Linux kernel, impacting confidentiality and integrity of affected systems. No evidence of active exploitation has been reported.
Mitigation Recommendations
Red Hat has released updated kernel packages that address these vulnerabilities. Users of affected Red Hat Enterprise Linux 10.0 Extended Update Support and related products should apply the kernel update as detailed in the Red Hat advisory (RHSA-2026:20299) and reboot their systems to ensure the fixes take effect. Patch status is confirmed as an official fix by Red Hat. No additional mitigation steps are indicated by the vendor.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:20299
- Cve Count
- 2
- Additional Cves
- ["CVE-2026-46333"]
- Cvss Version
- null
Threat ID: 6a160959e29bf47b50620609
Added to database: 5/26/2026, 8:58:01 PM
Last enriched: 5/27/2026, 2:03:46 AM
Last updated: 5/27/2026, 4:52:54 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.