RLSA-2026:25217

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

• kernel: scsi: target: iscsi: Fix use-after-free in iscsitdecconnusagecount() (CVE-2026-23216)

• kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service (CVE-2026-31419)

• kernel: net: openvswitch: Avoid releasing netdev before teardown completes (CVE-2026-31508)

• kernel: ALSA: 6fire: fix use-after-free on disconnect (CVE-2026-31581)

• kernel: ip6tunnel: clear skb2->cb[] in ip4ip6err() (CVE-2026-43037)

• kernel: net: mana: fix use-after-free in add_adev() error path (CVE-2026-43056)

• kernel: netfilter: ctnetlink: ensure safe access to master conntrack (CVE-2026-43116)

• kernel: dlm: validate length in dlmsearchrsb_tree (CVE-2026-43125)

• kernel: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows (CVE-2026-43501)

• kernel: RDMA/rxe: Fix double free in rxesrqfrom_init (CVE-2026-45852)

• kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4srqevent() (CVE-2026-46181)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.