Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 18 articles for you...
217
security advisoryDoSimportantOracle Linux 7 kernel Important Updates CVE-2025-68814 ELSA-2026-50234
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-50234 http://linux.oracle.com/errata/ELSA-2026-50234.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-5.4.17-2136.354.4.1.el7uek.x86_64.rpm kernel-uek-container-5.4.17-2136.354.4.1.el7uek.x86_64.rpm kernel-uek-container-debug-5.4.17-2136.354.4.1.el7uek.x86_64.rpm kernel-uek-debug-5.4.17-2136.354.4.1.el7uek.x86_64.rpm kernel-uek-debug-devel-5.4.17-2136.354.4.1.el7uek.x86_64.rpm kernel-uek-devel-5.4.17-2136.354.4.1.el7uek.x86_64.rpm kernel-uek-doc-5.4.17-2136.354.4.1.el7uek.noarch.rpm kernel-uek-tools-5.4.17-2136.354.4.1.el7uek.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-5.4.17-2136.354.4.1.el7uek.src.rpm Related CVEs: CVE-2025-68814 CVE-2026-23001 CVE-2026-23209 Description of changes: [5.4.17-2136.354.4.1] - Revert "rds: Drop rds conn in connect worker if not in down state." (Alok Tiwari) [Orabug: 39200399] [5.4.17-2136.354.4] - macvlan: fix possible UAF in macvlan_forward_source() (Eric Dumazet) [Orabug: 38887731] {CVE-2026-23001} - macvlan: Use 'hash' iterators to simplify code (Christophe JAILLET) [Orabug: 38887731] - macvlan: Add nodst option to macvlan type source (Jethro Beekman) [Orabug: 38887731] - macvlan: observe an RCU grace period in macvlan_common_newlink() error path (Eric Dumazet) [Orabug: 38970510] - macvlan: fix error recovery in macvlan_common_newlink() (Eric Dumazet) [Orabug: 38970510] {CVE-2026-23209} [5.4.17-2136.354.3] - io_uring: fix filename leak in __io_openat_prep() (Prithvi Tambewagh) [Orabug: 39064937] {CVE-2025-68814} - rds: Drop rds conn in connect worker if not in down state. (Rohit Nair) [Orabug: 39045035] [5.4.17-2136.354.2] - ext4/jbd2: skip sb flush when EIO happened (Wengang Wang) [Orabug: 38916908] - jbd2: store more accurate errno in superblock (Wengang Wang) [Orabug: 38916908] - ext4: save the error code whichtriggered an (Wengang Wang) [Orabug: 38916908] [5.4.17-2136.354.1] - genirq/cpuhotplug: Notify about affinity changes breaking the affinity mask (Imran Khan) [Orabug: 39001911] - rds: Add state field to RDS trace logs. (Rohit Nair) [Orabug: 38870347] [5.4.17-2136.353.3] - xfrm: flush all states in xfrm_state_fini (Sabrina Dubroca) [Orabug: 38934000] - xfrm: also call xfrm_state_delete_tunnel at destroy time for states that were never added (Sabrina Dubroca) [Orabug: 38934000,39004270] {CVE-2025-40256} - Revert "xfrm: destroy xfrm_state synchronously on net exit path" (Sabrina Dubroca) [Orabug: 38934000] - Revert "IB/mlx5: Implement clear counters" (Sharath Srinivasan) [Orabug: 38923520] - Revert "IB/core: Implement clear counters" (Sharath Srinivasan) [Orabug: 38923520] - Revert "ib/core: add SET_DEVICE_OP call for clear_hw_stats()" (Sharath Srinivasan) [Orabug: 38923520] - fs: proc: inode: delay put_pid() by RCU (Stephen Brennan) [Orabug: 38766812] [5.4.17-2136.353.2] - Revert "perf/x86: Always store regs-> ip in perf_callchain_kernel()" (Jiri Olsa) [Orabug: 38893604] - xfrm: delete x-> tunnel as we delete x (Sabrina Dubroca) [Orabug: 38730493,39016501] {CVE-2025-40215} [5.4.17-2136.352.5] - crypto: af_alg - Fix incorrect boolean values in af_alg_ctx (Eric Biggers) [Orabug: 38879907,38884602,39004445] {CVE-2025-40022} [5.4.17-2136.352.4] - arm64: pensando: Must boot Ortano kernel with spin-table (Rob Gardner) [Orabug: 38821197] [5.4.17-2136.352.3] - net/sched: adjust device watchdog timer to detect stopped queue at right time (Praveen Kumar Kannoju) [Orabug: 38340278] - net/mlx5: Mark the mellanox graceful_period fix as out-of-tree change (Praveen Kumar Kannoju) [Orabug: 38252416] - infiniband/xsigo: Replace BUG_ON with WARN_ON_ONCE. (Siddh Raman Pant) [Orabug: 38418469] - infiniband/xsigo: xsvnic_main: Remove unused functions (Siddh Raman Pant) [Orabug: 38418469] - infiniband/xsigo: xve_cm: Fix mixed code warning (Siddh Raman Pant) [Orabug: 38418469] - infiniband/xsigo: xve_ethtool: Remove unusedvariable 'priv' (Siddh Raman Pant) [Orabug: 38418469] - infiniband/xsigo: xve_ib: Fix misleading indentation (Siddh Raman Pant) [Orabug: 38418469] - infiniband/xsigo: xve_ib: Fix mixed code warning (Siddh Raman Pant) [Orabug: 38418469] - infiniband/xsigo: xve_verbs: Remove unused label 'out_free_pd' (Siddh Raman Pant) [Orabug: 38418469] - infiniband/xsigo: xve_main: Remove unused function 'xve_napi_del' (Siddh Raman Pant) [Orabug: 38418469] - infiniband/xsigo: xve_main: Fix mixed code warning (Siddh Raman Pant) [Orabug: 38418469] - infiniband/xsigo: xve_main: Fix misleading indentation (Siddh Raman Pant) [Orabug: 38418469] - inifinibad/xsigo: xsvnic_main: Remove unused variable 'xsvnic_ethtool_ops' (Siddh Raman Pant) [Orabug: 38418469] - infiniband/xsigo: xscore_impl: Remove unused label 'err_pd' (Siddh Raman Pant) [Orabug: 38418469] - rds: Fix jiffies type in struct rds_conn_path (Siddh Raman Pant) [Orabug: 38418727] - kernel: sysctl: Remove unused variable 'zero' (Siddh Raman Pant) [Orabug: 38418727] - crypto: af_alg - Disallow concurrent writes in af_alg_sendmsg (Herbert Xu) [Orabug: 38537469,38855313] {CVE-2025-39964} - RDMA/cm: Base cm_id destruction timeout on CMA values (Håkon Bugge) [Orabug: 38753622] - x86/its: Build fails with CONFIG_MITIGATION_ITS=n (Alexandre Chartre) [Orabug: 38756954] _______________________________________________ El-errata mailing list
Apr 19, 2026
•Important
Oracle
202
security advisoryimportantkernelopenSUSE 15 SP5 Kernel Significant Patch for CVE-2026-23074 CVE-2026-23209
An update that solves two vulnerabilities can now be installed.. # Security update for the Linux Kernel (Live Patch 35 for SUSE Linux Enterprise 15 SP5) Announcement ID: SUSE-SU-2026:1258-1 Release Date: 2026-04-10T17:35:09Z Rating: important References: * bsc#1258051 * bsc#1258784 Cross-References: * CVE-2026-23074 * CVE-2026-23209 CVSS scores: * CVE-2026-23074 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23074 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23074 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23074 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.136 fixes various security issues The following security issues were fixed: * CVE-2026-23074: net/sched: Enforce that teql can only be used as root qdisc (bsc#1258051). * CVE-2026-23209: macvlan: fix error recovery in macvlan_common_newlink() (bsc#1258784). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-1258=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-1258=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_136-default-3-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_35-debugsource-3-150500.2.1 * kernel-livepatch-5_14_21-150500_55_136-default-debuginfo-3-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_136-default-3-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_35-debugsource-3-150500.2.1 * kernel-livepatch-5_14_21-150500_55_136-default-debuginfo-3-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-23074.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://bugzilla.suse.com/show_bug.cgi?id=1258051 * https://bugzilla.suse.com/show_bug.cgi?id=1258784 . An important update for openSUSE kernel solves two critical security flaws, enhancing protection and performance.. openSUSE kernel patches, Linux security updates, SUSE vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Apr 13, 2026
•Important
OpenSUSE
100
security advisorySuSEimportantSUSE Linux Enterprise 15 SP4 Kernel Important Macvlan Fix 2026-1231-1
An update that solves one vulnerability can now be installed.. # Security update for the Linux Kernel (Live Patch 48 for SUSE Linux Enterprise 15 SP4) Announcement ID: SUSE-SU-2026:1231-1 Release Date: 2026-04-09T09:04:40Z Rating: important References: * bsc#1258784 Cross-References: * CVE-2026-23209 CVSS scores: * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves one vulnerability can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.194 fixes one security issue The following security issue was fixed: * CVE-2026-23209: macvlan: fix error recovery in macvlan_common_newlink() (bsc#1258784). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-1231=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-1231=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_194-default-2-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_48-debugsource-2-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-debuginfo-2-150400.2.1 * SUSELinux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_194-default-2-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_48-debugsource-2-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-debuginfo-2-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-23209.html * https://bugzilla.suse.com/show_bug.cgi?id=1258784 . SUSE Linux Enterprise 15 SP4 addresses an important kernel issue with macvlan error handling. Install the patch today!. SUSE Linux Update, kernel security, macvlan fix. . Severity: Important. LinuxSecurity.com Team
Apr 09, 2026
•Important
SuSE
202
security advisoryimportantkernelopenSUSE 15.4 Kernel Important macvlan Error Recovery Fix SUSE-2026-1231-1
An update that solves one vulnerability can now be installed.. # Security update for the Linux Kernel (Live Patch 48 for SUSE Linux Enterprise 15 SP4) Announcement ID: SUSE-SU-2026:1231-1 Release Date: 2026-04-09T09:04:40Z Rating: important References: * bsc#1258784 Cross-References: * CVE-2026-23209 CVSS scores: * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves one vulnerability can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.194 fixes one security issue The following security issue was fixed: * CVE-2026-23209: macvlan: fix error recovery in macvlan_common_newlink() (bsc#1258784). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-1231=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-1231=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_194-default-2-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_48-debugsource-2-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-debuginfo-2-150400.2.1 * SUSELinux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_194-default-2-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_48-debugsource-2-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-debuginfo-2-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-23209.html * https://bugzilla.suse.com/show_bug.cgi?id=1258784 . SUSE updates Kernel for openSUSE fixing important error recovery issue enhancing system security.. openSUSE Kernel Patch, macvlan Fix, SUSE Security Update. . Severity: Important. LinuxSecurity.com Team
Apr 09, 2026
•Important
OpenSUSE
219
security advisorymoderatekernel-rtUbuntu OS 22 LTS Kernel-Security Flaw Fix RLSB-2025-7925 CVE-2025-38253
Moderate: kernel-rt security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:6036", "synopsis": "Moderate: kernel-rt security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for kernel-rt.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem (CVE-2025-38180)\n\n* kernel: macvlan: fix error recovery in macvlan_common_newlink() (CVE-2026-23209)\n\n* kernel: net/sched: cls_u32: use skb_header_pointer_careful() (CVE-2026-23204)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2376376", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2376376", "description": ""}, {"ticket": "2439900", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2439900", "description": ""}, {"ticket": "2439931", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2439931", "description": ""}], "cves": [{"name": "CVE-2025-38180", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-38180", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "cvss3BaseScore": "7.1", "cwe": "CWE-911"}, {"name": "CVE-2026-23204", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-23204", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H", "cvss3BaseScore": "7.3", "cwe": "CWE-1285"}, {"name": "CVE-2026-23209", "sourceBy": "MITRE","sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-23209", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.0", "cwe": "CWE-825"}], "references": [], "publishedAt": "2026-04-07T00:01:47.171546Z", "rpms": {"Rocky Linux 8": {"nvras": ["kernel-rt-0:4.18.0-553.115.1.rt7.456.el8_10.src.rpm", "kernel-rt-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-core-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-debug-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-debug-core-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-debug-debuginfo-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-debug-devel-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-debuginfo-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-debuginfo-common-x86_64-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-debug-kvm-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-debug-modules-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-debug-modules-extra-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-devel-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-kvm-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-modules-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm", "kernel-rt-modules-extra-0:4.18.0-553.115.1.rt7.456.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Kernel-rt security update for Rocky Linux improves resilience against several vulnerabilities. Stay protected!. Rocky Linux kernel security update, real time kernel vulnerabilities, kernel-rt security advisory. . LinuxSecurity.com Team
Apr 07, 2026
Rocky Linux
219
security advisorymoderateipv6RHEL Stream 9 AVSA-2026-5678 Kernel-rt Essential Security Updates
Moderate: kernel-rt security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:3964", "synopsis": "Moderate: kernel-rt security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for kernel-rt.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (CVE-2025-71085)\n\n* kernel: macvlan: fix possible UAF in macvlan_forward_source() (CVE-2026-23001)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2429026", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2429026", "description": ""}, {"ticket": "2432664", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2432664", "description": ""}], "cves": [{"name": "CVE-2025-71085", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-71085", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-190"}, {"name": "CVE-2026-23001", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-23001", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.8", "cwe": "CWE-416"}], "references": [], "publishedAt": "2026-03-26T12:01:40.953151Z", "rpms": {"Rocky Linux 8": {"nvras": ["kernel-rt-0:4.18.0-553.111.1.rt7.452.el8_10.src.rpm", "kernel-rt-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm","kernel-rt-core-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-core-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-debuginfo-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-devel-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debuginfo-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debuginfo-common-x86_64-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-kvm-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-modules-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-modules-extra-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-devel-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-kvm-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-modules-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-modules-extra-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Moderate kernel-rt security update available for Rocky Linux 8 addressing critical networking issues.. kernel-rt security, rocky linux update, ipv6 bug fixes, security advisories. . LinuxSecurity.com Team
Mar 26, 2026
Rocky Linux
219
security advisorymoderateipv6Rocky Linux 8 RLSA-2026-3951 kernel-update Major Security Enhancements
Moderate: kernel-rt security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:3964", "synopsis": "Moderate: kernel-rt security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for kernel-rt.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (CVE-2025-71085)\n\n* kernel: macvlan: fix possible UAF in macvlan_forward_source() (CVE-2026-23001)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2429026", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2429026", "description": ""}, {"ticket": "2432664", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2432664", "description": ""}], "cves": [{"name": "CVE-2025-71085", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-71085", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-190"}, {"name": "CVE-2026-23001", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-23001", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.8", "cwe": "CWE-416"}], "references": [], "publishedAt": "2026-03-26T12:01:40.953151Z", "rpms": {"Rocky Linux 8": {"nvras": ["kernel-rt-0:4.18.0-553.111.1.rt7.452.el8_10.src.rpm", "kernel-rt-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm","kernel-rt-core-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-core-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-debuginfo-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-devel-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debuginfo-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debuginfo-common-x86_64-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-kvm-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-modules-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-modules-extra-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-devel-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-kvm-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-modules-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-modules-extra-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Kernel-rt's latest security updates address moderate issues affecting Rocky Linux 8. Stay informed on impacts and fixes.. Kernel-rt security Rocky Linux update CVE issue. . LinuxSecurity.com Team
Mar 26, 2026
Rocky Linux
219
security advisorymoderateipv6Rocky Linux 8 kernel-rt Patch Notice RLSA-2026-3965 Released
Moderate: kernel-rt security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:3964", "synopsis": "Moderate: kernel-rt security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for kernel-rt.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (CVE-2025-71085)\n\n* kernel: macvlan: fix possible UAF in macvlan_forward_source() (CVE-2026-23001)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2429026", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2429026", "description": ""}, {"ticket": "2432664", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2432664", "description": ""}], "cves": [{"name": "CVE-2025-71085", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-71085", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-190"}, {"name": "CVE-2026-23001", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23001", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.8", "cwe": "CWE-416"}], "references": [], "publishedAt": "2026-03-26T12:01:40.953151Z", "rpms": {"Rocky Linux 8": {"nvras": ["kernel-rt-0:4.18.0-553.111.1.rt7.452.el8_10.src.rpm", "kernel-rt-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm","kernel-rt-core-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-core-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-debuginfo-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-devel-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debuginfo-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debuginfo-common-x86_64-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-kvm-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-modules-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-debug-modules-extra-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-devel-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-kvm-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-modules-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm", "kernel-rt-modules-extra-0:4.18.0-553.111.1.rt7.452.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Moderate kernel-rt security update released for Rocky Linux addressing critical issues and enhancements.. kernel-rt update, Rocky Linux security, real time kernel, security patches. . LinuxSecurity.com Team
Mar 26, 2026
Rocky Linux
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!