Oracle Linux 8 Kernel Important Ptrace Heap Overflow ELSA-2026-50281
oracle
May 22, 2026
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
Summary
[5.4.17-2136.355.3.3] - ptrace: slightly saner 'get_dumpable()' logic (Linus Torvalds) [Orabug: 39391459] {CVE-2026-46333} [5.4.17-2136.355.3.2] - scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() (Maurizio Lombardi) [Orabug: 39368774] {CVE-2026-23193} - scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count() (Maurizio Lombardi) [Orabug: 39368732] {CVE-2026-23216} - nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (Jeff Layton) [Orabug: 39368718] {CVE-2026-31402} [5.4.17-2136.355.3.1] - xfrm: esp: avoid in-place decrypt on shared skb frags (Kuan-Ting Chen) [Orabug: 39344527] {CVE-2026-43284} - x86/CPU/AMD: Add a fix for AMD-SB-7052 (Prathyushi Nangia) [Orabug: 39344576] {CVE-2025-54518} [5.4.17-2136.355.3] - crypto: algif_aead - Fix minimum RX size check for decryption (Herbert Xu) [Orabug: 39250687,39331106] {CVE-2026-43077} - crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl (Herbert Xu) [Orabug: 3925...
Read the Full Advisory
Topics Covered
SRPMs
http://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.4.17-2136.355.3.3.el8uek.src.rpm
x86_64
aarch64
kernel-uek-5.4.17-2136.355.3.3.el8uek.aarch64.rpm kernel-uek-debug-5.4.17-2136.355.3.3.el8uek.aarch64.rpm kernel-uek-debug-devel-5.4.17-2136.355.3.3.el8uek.aarch64.rpm kernel-uek-devel-5.4.17-2136.355.3.3.el8uek.aarch64.rpm kernel-uek-doc-5.4.17-2136.355.3.3.el8uek.noarch.rpm
PREVIOUS 
NEXT Severity
important
Lowest
Low
Medium
High
Critical
Related CVEs: CVE-2026-46333
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!