Вход на сайт

Просмотр новости

Найдите то, что Вас интересует

Mehrere Probleme in Linux (Red Hat)

Дата публикации: 08-07-2026 04:42:17



Основное содержимое страницы с новостью.

An update for kernel is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

The kernel packages contain the Linux kernel, the core of any Linux operating
system.

Security Fix(es):

* kernel: tcp: fix potential race in tcp_v6_syn_recv_sock() (CVE-2026-43198)

* kernel: netfilter: nfnetlink_cthelper: fix OOB read in
nfnl_cthelper_dump_table() (CVE-2026-43450)

* kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in
SCTP_SENDALL (CVE-2026-46227)

* kernel: drm/gem: Fix inconsistent plane dimension calculation in
drm_gem_fb_init_with_funcs() (CVE-2026-46209)

* kernel: procfs: fix missing RCU protection when reading real_parent in
do_task_stat() (CVE-2026-46259)

* kernel: Arm Processors: Privilege escalation or information disclosure via
writes to higher exception level resources (CVE-2025-10263)

Bug Fix(es) and Enhancement(s):

* kernel panic at trailing_symlink while the task wdavdaemon runs even after
4c4f7c19b3c7 (JIRA:RHEL-152759)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2025-10263: Incorrect Privilege Assignment (CWE-266)
CVE-2026-43198: Incorrect Synchronization (CWE-821)
CVE-2026-43450: Out-of-bounds Read (CWE-125)
CVE-2026-46209: Integer Overflow or Wraparound (CWE-190)
CVE-2026-46227: Time-of-check Time-of-use (TOCTOU) Race Condition (CWE-367)
CVE-2026-46259: Missing Synchronization (CWE-820)

Схожие новости

#Наименование новостиТональностьИнформативностьДата публикации
1Mehrere Probleme in helm (Fedora)0508-07-2026
2Mehrere Probleme in kubevirt-1.6 (SUSE)0508-07-2026
3Zwei Probleme in skopeo (Red Hat)0508-07-2026
4Mehrere Probleme in perl-Compress-Raw-Bzip2 (Fedora)0508-07-2026
5Zwei Probleme in 389-ds-base (Red Hat)0508-07-2026
6Zwei Probleme in 389-ds-base (Red Hat)0508-07-2026
7Mehrere Probleme in perl-IO-Compress (Fedora)0508-07-2026
8Zwei Probleme in docker-compose (Fedora)0508-07-2026
9Zwei Probleme in python-pillow-jxl-plugin (Fedora)0508-07-2026
10Preisgabe von Informationen in Linux (Red Hat)0508-07-2026

Классификация: . Схожих патентов: 0. Схожих новостей: 10. Тональность: 0. Информативность: 5. Источник: www.pro-linux.de.