ALSA-2026:25120

[ALSA-2026:25120] Critical: kernel-rt security update

Type:

security

Severity:

critical

Release date:

2026-06-11

Description:

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.  

Security Fix(es):  

  * kernel: geneve: Fix use-after-free in geneve_find_dev(). (CVE-2025-21858)
  * kernel: smc: Fix use-after-free in tcp_write_timer_handler() (CVE-2023-53781)
  * kernel: nbd: defer config unlock in nbd_genl_connect (CVE-2025-68366)
  * kernel: libceph: prevent potential out-of-bounds reads in handle_auth_done() (CVE-2026-22984)
  * kernel: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (CVE-2026-22990)
  * kernel: netfilter: nf_tables: release flowtable after rcu grace period on error (CVE-2026-23392)
  * kernel: ALSA: 6fire: fix use-after-free on disconnect (CVE-2026-31581)
  * kernel: smb: client: fix OOB reads parsing symlink error response (CVE-2026-31613)
  * kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err() (CVE-2026-43037)
  * kernel: ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach() (CVE-2026-43038)
  * kernel: dlm: validate length in dlm_search_rsb_tree (CVE-2026-43125)
  * kernel: RDMA/rxe: Fix double free in rxe_srq_from_init (CVE-2026-45852)
  * kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event() (CVE-2026-46181)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
x86_64	kernel-rt-modules-extra-4.18.0-553.132.1.rt7.473.el8_10.x86_64.rpm	0f7e0c8a7c2d6a023ce5935ce60c2a3002d8b5659c0a1adec0c7febe7ef66d07
x86_64	kernel-rt-devel-4.18.0-553.132.1.rt7.473.el8_10.x86_64.rpm	11e7f07cd0aba739064446b9772e9af38a5cf3892b1e4aa7910b5edc439e01a2
x86_64	kernel-rt-core-4.18.0-553.132.1.rt7.473.el8_10.x86_64.rpm	14d9ed6f2126de6a3c8366e33a2b41c0811bf5bf1503441c9d20f2bd419546d9
x86_64	kernel-rt-debug-devel-4.18.0-553.132.1.rt7.473.el8_10.x86_64.rpm	3cf674a857f85ec4cbbd608cb4ceaf68037e9f236b49b7a988bfac7f060d4be3
x86_64	kernel-rt-debug-modules-extra-4.18.0-553.132.1.rt7.473.el8_10.x86_64.rpm	48089a3d19db0ed4840dd000e6cbce1d5311fead7735ce91d997e022f55142a8
x86_64	kernel-rt-debug-4.18.0-553.132.1.rt7.473.el8_10.x86_64.rpm	7712a2d839430fd3de71a5c7bf7e46572431cf673ec694b678246733fc294843
x86_64	kernel-rt-debug-modules-4.18.0-553.132.1.rt7.473.el8_10.x86_64.rpm	8616ec8fde3d4a7b8012f1f1faaf4e9bd80e3ceb6f5b2bc92f136a8c79522e02
x86_64	kernel-rt-4.18.0-553.132.1.rt7.473.el8_10.x86_64.rpm	d443f0449e51f9481a85e7e7b504947cb243cd0acc9d136fec1654fe5e06c42b
x86_64	kernel-rt-debug-core-4.18.0-553.132.1.rt7.473.el8_10.x86_64.rpm	e903af2a3c4a54e54918344d2f6c8a718ddf07725cc178246a15426fbfb9538f
x86_64	kernel-rt-modules-4.18.0-553.132.1.rt7.473.el8_10.x86_64.rpm	f7ebda15550fb58bb202f071f0852acd56c15f70cbd5325c894b8b3560d89702

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.