An update for kernel is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
The kernel packages contain the Linux kernel, the core of any Linux operating
system.
Security Fix(es):
* kernel: tcp: fix potential race in tcp_v6_syn_recv_sock() (CVE-2026-43198)
* kernel: netfilter: nfnetlink_cthelper: fix OOB read in
nfnl_cthelper_dump_table() (CVE-2026-43450)
* kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in
SCTP_SENDALL (CVE-2026-46227)
* kernel: drm/gem: Fix inconsistent plane dimension calculation in
drm_gem_fb_init_with_funcs() (CVE-2026-46209)
* kernel: procfs: fix missing RCU protection when reading real_parent in
do_task_stat() (CVE-2026-46259)
* kernel: Arm Processors: Privilege escalation or information disclosure via
writes to higher exception level resources (CVE-2025-10263)
Bug Fix(es) and Enhancement(s):
* kernel panic at trailing_symlink while the task wdavdaemon runs even after
4c4f7c19b3c7 (JIRA:RHEL-152759)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
CVE-2025-10263: Incorrect Privilege Assignment (CWE-266)
CVE-2026-43198: Incorrect Synchronization (CWE-821)
CVE-2026-43450: Out-of-bounds Read (CWE-125)
CVE-2026-46209: Integer Overflow or Wraparound (CWE-190)
CVE-2026-46227: Time-of-check Time-of-use (TOCTOU) Race Condition (CWE-367)
CVE-2026-46259: Missing Synchronization (CWE-820)
| # | Наименование новости | Тональность | Информативность | Дата публикации |
|---|---|---|---|---|
| 1 | Mehrere Probleme in helm (Fedora) | 0 | 5 | 08-07-2026 |
| 2 | Mehrere Probleme in kubevirt-1.6 (SUSE) | 0 | 5 | 08-07-2026 |
| 3 | Zwei Probleme in skopeo (Red Hat) | 0 | 5 | 08-07-2026 |
| 4 | Mehrere Probleme in perl-Compress-Raw-Bzip2 (Fedora) | 0 | 5 | 08-07-2026 |
| 5 | Zwei Probleme in 389-ds-base (Red Hat) | 0 | 5 | 08-07-2026 |
| 6 | Zwei Probleme in 389-ds-base (Red Hat) | 0 | 5 | 08-07-2026 |
| 7 | Mehrere Probleme in perl-IO-Compress (Fedora) | 0 | 5 | 08-07-2026 |
| 8 | Zwei Probleme in docker-compose (Fedora) | 0 | 5 | 08-07-2026 |
| 9 | Zwei Probleme in python-pillow-jxl-plugin (Fedora) | 0 | 5 | 08-07-2026 |
| 10 | Preisgabe von Informationen in Linux (Red Hat) | 0 | 5 | 08-07-2026 |