Red Hat Product Errata RHSA-2025:21397 - Security Advisory
Issued:
2025-11-17
Updated:
2025-11-17

RHSA-2025:21397 - Security Advisory

Synopsis

Moderate: kernel-rt security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • kernel: vsock/virtio: Validate length in packet header before skb_put() (CVE-2025-39718)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux for Real Time 8 x86_64
  • Red Hat Enterprise Linux for Real Time for NFV 8 x86_64

Fixes

  • BZ - 2393507 - CVE-2025-39718 kernel: vsock/virtio: Validate length in packet header before skb_put()

Red Hat Enterprise Linux for Real Time 8

SRPM
kernel-rt-4.18.0-553.84.1.rt7.425.el8_10.src.rpm SHA-256: a8bbece129c253568dcbc772e0f3494289002ada945bf3656acd4318408aa206
x86_64
kernel-rt-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 600892691d4b342509b29c22bb231d789440af34c1d813e8eca8a974248035ea
kernel-rt-core-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: ccfa4a72dad66383376d49fb6141f1326274fcbb7991cf2bc7649db353e22ec7
kernel-rt-debug-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 5a23e930252e1d1d3d9ed4be34adc2cc9bf4e9451ebb3d18495acde78239e36a
kernel-rt-debug-core-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: d751d3a65af09b7c8ab9718249782b287893527cef816c764296552326ead39d
kernel-rt-debug-debuginfo-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: ad51b1a44f3f57648f77046dace630448dfc1dc0d2ef6d048c0c4e433ee0b0cf
kernel-rt-debug-devel-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 59ba02438b73f0f6663d688f485fdc8868ee444987dfe18cb9c6ec34731df9dc
kernel-rt-debug-modules-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 0200e33d3717d94c8b3817fc54dd94c5ece0f1dfcead39cf9a91fe90e1cce66d
kernel-rt-debug-modules-extra-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 839e1807920d758a0d478e1323f7cd9e5c8544a896d36ef72138ba7797aa3ed2
kernel-rt-debuginfo-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 2211153adbd797bca9de9603d9d2c3793080ac9b5aa420a44aea08a7f63036a6
kernel-rt-debuginfo-common-x86_64-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: e5ecd657a435cb9e7b22f41535fb85e2bcf0172b0570c64e609a3c93a65abc9e
kernel-rt-devel-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 215defa714b0230002c55b188382eb208edf5d590919bb06d5934e529c23f5f3
kernel-rt-modules-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 048ef1a2a72ff63b7fb46740c86f7f7222f1c3b5d82aa30b6e22f90d4401df53
kernel-rt-modules-extra-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 3a7776c906176b5319a53bb0e9f13f573032ad3e829a83ec93d41a1bced7c19f

Red Hat Enterprise Linux for Real Time for NFV 8

SRPM
kernel-rt-4.18.0-553.84.1.rt7.425.el8_10.src.rpm SHA-256: a8bbece129c253568dcbc772e0f3494289002ada945bf3656acd4318408aa206
x86_64
kernel-rt-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 600892691d4b342509b29c22bb231d789440af34c1d813e8eca8a974248035ea
kernel-rt-core-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: ccfa4a72dad66383376d49fb6141f1326274fcbb7991cf2bc7649db353e22ec7
kernel-rt-debug-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 5a23e930252e1d1d3d9ed4be34adc2cc9bf4e9451ebb3d18495acde78239e36a
kernel-rt-debug-core-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: d751d3a65af09b7c8ab9718249782b287893527cef816c764296552326ead39d
kernel-rt-debug-debuginfo-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: ad51b1a44f3f57648f77046dace630448dfc1dc0d2ef6d048c0c4e433ee0b0cf
kernel-rt-debug-devel-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 59ba02438b73f0f6663d688f485fdc8868ee444987dfe18cb9c6ec34731df9dc
kernel-rt-debug-kvm-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 7c4e555287ca52a212281490e6ade8895f736931646366bb7f22020798c861c3
kernel-rt-debug-modules-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 0200e33d3717d94c8b3817fc54dd94c5ece0f1dfcead39cf9a91fe90e1cce66d
kernel-rt-debug-modules-extra-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 839e1807920d758a0d478e1323f7cd9e5c8544a896d36ef72138ba7797aa3ed2
kernel-rt-debuginfo-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 2211153adbd797bca9de9603d9d2c3793080ac9b5aa420a44aea08a7f63036a6
kernel-rt-debuginfo-common-x86_64-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: e5ecd657a435cb9e7b22f41535fb85e2bcf0172b0570c64e609a3c93a65abc9e
kernel-rt-devel-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 215defa714b0230002c55b188382eb208edf5d590919bb06d5934e529c23f5f3
kernel-rt-kvm-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: c9e7880b36e2e5bbb2e3d893547c3836f638b59a803544db3b60f3960d1c8261
kernel-rt-modules-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 048ef1a2a72ff63b7fb46740c86f7f7222f1c3b5d82aa30b6e22f90d4401df53
kernel-rt-modules-extra-4.18.0-553.84.1.rt7.425.el8_10.x86_64.rpm SHA-256: 3a7776c906176b5319a53bb0e9f13f573032ad3e829a83ec93d41a1bced7c19f

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.