RHSA-2026:0489

Description

Red Hat Security Advisory: kernel security update

CVSS Metrics

• v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•bpftool

  < 0:7.3.0-427.106.1.el9_4 | < 0:7.3.0-427.106.1.el9_4 | < 0:7.3.0-427.106.1.el9_4 | < 0:7.3.0-427.106.1.el9_4 | < 0:7.3.0-427.106.1.el9_4

• redhat•bpftool-debuginfo

  < 0:7.3.0-427.106.1.el9_4 | < 0:7.3.0-427.106.1.el9_4 | < 0:7.3.0-427.106.1.el9_4 | < 0:7.3.0-427.106.1.el9_4 | < 0:7.3.0-427.106.1.el9_4

• redhat•kernel

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-core

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-debug

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-debug-core

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-debug-debuginfo

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-debug-devel

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-debug-devel-matched

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-debug-modules

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-debug-modules-core

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-debug-modules-extra

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-debuginfo

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-devel

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-devel-matched

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-modules

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-modules-core

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-64k-modules-extra

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-abi-stablelists

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-core

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debug

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debug-core

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debug-debuginfo

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debug-devel

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debug-devel-matched

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debug-modules

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debug-modules-core

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debug-modules-extra

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debug-uki-virt

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debuginfo

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debuginfo-common-aarch64

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debuginfo-common-ppc64le

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debuginfo-common-s390x

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-debuginfo-common-x86_64

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-devel

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-devel-matched

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-doc

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-modules

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-modules-core

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-modules-extra

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-rt

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-rt-core

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-rt-debug

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-rt-debug-core

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-rt-debug-debuginfo

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-rt-debug-devel

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-rt-debug-kvm

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-rt-debug-modules

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

• redhat•kernel-rt-debug-modules-core

  < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4 | < 0:5.14.0-427.106.1.el9_4

Showing first 50 affected entries in server-rendered view.

References (48)

• https://access.redhat.com/errata/RHSA-2026:0489
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2363300
• https://bugzilla.redhat.com/show_bug.cgi?id=2393172
• https://bugzilla.redhat.com/show_bug.cgi?id=2395792
• https://bugzilla.redhat.com/show_bug.cgi?id=2400598
• https://bugzilla.redhat.com/show_bug.cgi?id=2404100
• https://bugzilla.redhat.com/show_bug.cgi?id=2414522
• https://bugzilla.redhat.com/show_bug.cgi?id=2414524
• https://bugzilla.redhat.com/show_bug.cgi?id=2422788
• https://bugzilla.redhat.com/show_bug.cgi?id=2422801
• https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_0489.json
• https://access.redhat.com/security/cve/CVE-2025-23142
• https://www.cve.org/CVERecord?id=CVE-2025-23142
• https://nvd.nist.gov/vuln/detail/CVE-2025-23142
• https://lore.kernel.org/linux-cve-announce/2025050124-CVE-2025-23142-ac59@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-38724
• https://www.cve.org/CVERecord?id=CVE-2025-38724
• https://nvd.nist.gov/vuln/detail/CVE-2025-38724
• https://lore.kernel.org/linux-cve-announce/2025090401-CVE-2025-38724-5309@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-39825
• https://www.cve.org/CVERecord?id=CVE-2025-39825
• https://nvd.nist.gov/vuln/detail/CVE-2025-39825
• https://lore.kernel.org/linux-cve-announce/2025091616-CVE-2025-39825-8a7a@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-39898
• https://www.cve.org/CVERecord?id=CVE-2025-39898
• https://nvd.nist.gov/vuln/detail/CVE-2025-39898
• https://lore.kernel.org/linux-cve-announce/2025100116-CVE-2025-39898-d844@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-39982
• https://www.cve.org/CVERecord?id=CVE-2025-39982
• https://nvd.nist.gov/vuln/detail/CVE-2025-39982
• https://lore.kernel.org/linux-cve-announce/2025101559-CVE-2025-39982-a36e@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-40141
• https://www.cve.org/CVERecord?id=CVE-2025-40141
• https://nvd.nist.gov/vuln/detail/CVE-2025-40141
• https://lore.kernel.org/linux-cve-announce/2025111256-CVE-2025-40141-072e@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-40176
• https://www.cve.org/CVERecord?id=CVE-2025-40176
• https://nvd.nist.gov/vuln/detail/CVE-2025-40176
• https://lore.kernel.org/linux-cve-announce/2025111255-CVE-2025-40176-f2e3@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-68285
• https://www.cve.org/CVERecord?id=CVE-2025-68285
• https://nvd.nist.gov/vuln/detail/CVE-2025-68285
• https://lore.kernel.org/linux-cve-announce/2025121638-CVE-2025-68285-8339@gregkh/T
• https://access.redhat.com/security/cve/CVE-2025-68287
• https://www.cve.org/CVERecord?id=CVE-2025-68287
• https://nvd.nist.gov/vuln/detail/CVE-2025-68287
• https://lore.kernel.org/linux-cve-announce/2025121638-CVE-2025-68287-5647@gregkh/T