Issued:: 2026-04-27
Updated:: 2026-04-27

RHSA-2026:10756 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: kernel-rt security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel-rt is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

kernel: Linux kernel: RDMA/rxe use-after-free vulnerability leading to potential arbitrary code execution (CVE-2025-38024)
kernel: iavf: Fix reset error handling (CVE-2022-50053)
kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem (CVE-2025-38180)
kernel: RDMA/rxe: Fix incomplete state save in rxe_requester (CVE-2023-53539)
kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() (CVE-2026-23193)
kernel: net/sched: cls_u32: use skb_header_pointer_careful() (CVE-2026-23204)
kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count() (CVE-2026-23216)
kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain() (CVE-2026-23231)
kernel: Linux kernel (qla2xxx): Double free vulnerability leads to denial of service and potential privilege escalation. (CVE-2025-71238)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

Red Hat Enterprise Linux for Real Time for x86_64 - Extended Life Cycle Support 7 x86_64

Fixes

BZ - 2373354 - CVE-2025-38024 kernel: Linux kernel: RDMA/rxe use-after-free vulnerability leading to potential arbitrary code execution
BZ - 2373553 - CVE-2022-50053 kernel: iavf: Fix reset error handling
BZ - 2376376 - CVE-2025-38180 kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem
BZ - 2401510 - CVE-2023-53539 kernel: RDMA/rxe: Fix incomplete state save in rxe_requester
BZ - 2439887 - CVE-2026-23193 kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count()
BZ - 2439931 - CVE-2026-23204 kernel: net/sched: cls_u32: use skb_header_pointer_careful()
BZ - 2440630 - CVE-2026-23216 kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()
BZ - 2444376 - CVE-2026-23231 kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain()
BZ - 2444398 - CVE-2025-71238 kernel: Linux kernel (qla2xxx): Double free vulnerability leads to denial of service and potential privilege escalation.

CVEs

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for Real Time for x86_64 - Extended Life Cycle Support 7

SRPM
kernel-rt-3.10.0-1160.148.1.rt56.1300.el7.src.rpm	SHA-256: 83554f31974a43f9032bce629ed3744bc571483c432ef934712c18ca8b156c7a
x86_64
kernel-rt-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm	SHA-256: 8455319996f5e46444df06a09313683985cc4b0723a92473f21c45874bbdcd65
kernel-rt-debug-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm	SHA-256: 13a235229024cef0be419d7d1ff054fbb257c6580b8ac184ba278413e3356136
kernel-rt-debug-debuginfo-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm	SHA-256: d2b83dcf6537dac03b1d7dd7a924412fcdadf381f630f79ff2390892d3f68e1a
kernel-rt-debug-devel-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm	SHA-256: b8bd5f9303041e772179801b9147e03ffc0d3aa3262feca56fed61d1c4ae9dd2
kernel-rt-debuginfo-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm	SHA-256: dbafb0c4926f966ef23c69c75393476de44edd0457c879b61a345fd1e7054232
kernel-rt-debuginfo-common-x86_64-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm	SHA-256: 65a3c7c29b57b4833dd85e8fe0ee523f10c3d8ca4357e2112f5e1e2ab11e5f55
kernel-rt-devel-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm	SHA-256: 5d6980c64f0531497ee83704f9a8a7d8d7a2917d7f08c41ec4e129777e8fd4b2
kernel-rt-doc-3.10.0-1160.148.1.rt56.1300.el7.noarch.rpm	SHA-256: 2fee42adeabd78906d42797e771e0b4719ce591f3b30c8f282b32d1fedaebfbd
kernel-rt-trace-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm	SHA-256: 4a480b07ff54a0562f1a1cb9014626b4dbc44db6a1a5e56eb07badf0c4adb8ea
kernel-rt-trace-debuginfo-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm	SHA-256: 5a0229cef95e9e21978d1046f77391b013383358953522c389ca39ee062ff2f2
kernel-rt-trace-devel-3.10.0-1160.148.1.rt56.1300.el7.x86_64.rpm	SHA-256: eb9df467dfcd7c7e49e5e1de5df8e5911484fdec60aa78b24224f58d412f39b1

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation