RXSA-2026:3488

Security

Mirrored from RHSA-2026:3488

Issued at: 2026-05-21

Updated at: 2026-05-21

Synopsis

Moderate: kernel security update

Description

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

* kernel: smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168)

* kernel: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (CVE-2025-71085)

* kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration (CVE-2026-23097)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected products

Rocky Linux 9 SIG Cloud aarch64

Fixes

2414482

2429026

2436802

CVEs

CVE-2025-40168

CVE-2025-71085

CVE-2026-23097

Affected packages

Rocky Linux 9 SIG Cloud aarch64 - cloud-kernel

kernel-64k-debug-debuginfo-0:5.14.0-611.36.1.el9_7.cloud.1.0.1.0.aarch64.rpm

kernel-64k-debuginfo-0:5.14.0-611.36.1.el9_7.cloud.1.0.1.0.aarch64.rpm