ALSA-2026:21745

Source
https://errata.almalinux.org/8/ALSA-2026-21745.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:21745.json
JSON Data
https://api.test.osv.dev/v1/vulns/ALSA-2026:21745
Related
Published
2026-05-28T00:00:00Z
Modified
2026-05-28T20:59:11.374348235Z
Summary
Important: kernel-rt security update
Details

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • kernel: Bluetooth: MGMT: Fix possible UAFs (CVE-2025-39981)
  • kernel: ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (CVE-2025-68183)
  • kernel: ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events (CVE-2025-68347)
  • kernel: libceph: make decode_pool() more resilient against corrupted osdmaps (CVE-2025-71116)
  • kernel: Linux kernel: Denial of service and memory corruption in RDMA umad (CVE-2026-23243)
  • kernel: Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation (CVE-2026-23270)
  • kernel: netfilter: nfconntrackh323: check for zero length in DecodeQ931() (CVE-2026-23455)
  • kernel: Bluetooth: SCO: Fix use-after-free in scorecvframe() due to missing sock_hold (CVE-2026-31408)
  • kernel: can: raw: fix ro->uniq use-after-free in raw_rcv() (CVE-2026-31532)
  • kernel: net: sched: act_csum: validate nested VLAN headers (CVE-2026-31684)
  • kernel: netfilter: ip6t_eui64: reject invalid MAC header for all packets (CVE-2026-31685)
  • kernel: netfilter: nfconntrackhelper: pass helper to expect cleanup (CVE-2026-43027)
  • kernel: Bluetooth: MGMT: validate LTK enc_size on load (CVE-2026-43020)
  • kernel: HID: wacom: fix out-of-bounds read in wacomintuosbt_irq (CVE-2026-43051)
  • kernel: smb: client: validate the whole DACL before rewriting it in cifsacl (CVE-2026-31709)
  • kernel: md/bitmap: fix GPF in write_page caused by resize race (CVE-2026-43163)
  • kernel: netfilter: xt_tcpmss: check remaining length before reading optlen (CVE-2026-43190)
  • kernel: xfs: fix freemap adjustments when adding xattrs to leaf blocks (CVE-2026-43158)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:8
kernel-rt

Package

Name
kernel-rt
Purl
pkg:rpm/almalinux/kernel-rt

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.126.1.rt7.467.el8_10

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:21745.json"
kernel-rt-core

Package

Name
kernel-rt-core
Purl
pkg:rpm/almalinux/kernel-rt-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.126.1.rt7.467.el8_10

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:21745.json"
kernel-rt-debug

Package

Name
kernel-rt-debug
Purl
pkg:rpm/almalinux/kernel-rt-debug

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.126.1.rt7.467.el8_10

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:21745.json"
kernel-rt-debug-core

Package

Name
kernel-rt-debug-core
Purl
pkg:rpm/almalinux/kernel-rt-debug-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.126.1.rt7.467.el8_10

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:21745.json"
kernel-rt-debug-devel

Package

Name
kernel-rt-debug-devel
Purl
pkg:rpm/almalinux/kernel-rt-debug-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.126.1.rt7.467.el8_10

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:21745.json"
kernel-rt-debug-modules

Package

Name
kernel-rt-debug-modules
Purl
pkg:rpm/almalinux/kernel-rt-debug-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.126.1.rt7.467.el8_10

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:21745.json"
kernel-rt-debug-modules-extra

Package

Name
kernel-rt-debug-modules-extra
Purl
pkg:rpm/almalinux/kernel-rt-debug-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.126.1.rt7.467.el8_10

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:21745.json"
kernel-rt-devel

Package

Name
kernel-rt-devel
Purl
pkg:rpm/almalinux/kernel-rt-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.126.1.rt7.467.el8_10

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:21745.json"
kernel-rt-modules

Package

Name
kernel-rt-modules
Purl
pkg:rpm/almalinux/kernel-rt-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.126.1.rt7.467.el8_10

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:21745.json"
kernel-rt-modules-extra

Package

Name
kernel-rt-modules-extra
Purl
pkg:rpm/almalinux/kernel-rt-modules-extra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.18.0-553.126.1.rt7.467.el8_10

Database specific

source
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:21745.json"