This advisory covers eight distinct vulnerabilities in the Linux kernel used by Red Hat Enterprise Linux 9 and related distributions. The issues include use-after-free vulnerabilities in device mapper (CVE-2025-38141) and eventpoll (CVE-2025-38349), a double free bug in drm/xe (CVE-2025-38731), a memory corruption vulnerability in vsock (CVE-2025-40248), a race condition in mptcp_schedule_work() (CVE-2025-40258), an out-of-bounds write in Bluetooth MGMT leading to information disclosure and denial of service (CVE-2025-40294), fragment overflow handling in the atlantic network driver (CVE-2025-68301), and a race condition in Bluetooth hci_sock (CVE-2025-68305). These vulnerabilities affect core kernel components and can impact system stability, confidentiality, and availability. Red Hat has released updated kernel packages to remediate these issues.

The vulnerabilities collectively may lead to use-after-free conditions, memory corruption, information disclosure, denial of service, and race conditions within the Linux kernel. These impacts can affect system stability and security, potentially allowing attackers to cause crashes, leak sensitive information, or corrupt kernel memory. The advisory rates the overall security impact as Important (high severity). There are no known exploits in the wild at the time of the advisory.

Red Hat has released updated kernel packages that address all listed vulnerabilities. Users of affected Red Hat Enterprise Linux 9 versions and related products should apply the kernel update provided in advisory RHSA-2026:1143 as soon as possible. A system reboot is required for the update to take effect. For detailed update instructions, refer to https://access.redhat.com/articles/11258. No additional mitigations are indicated beyond applying the official patches.