RLSA-2026:27353

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

• kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service (CVE-2026-31419)

• kernel: drm/amd/display: Do not skip unrelated mode changes in DSC validation (CVE-2026-31488)

• kernel: net: mana: fix use-after-free in add_adev() error path (CVE-2026-43056)

• kernel: ALSA: usb-audio: Add sanity check for OOB writes at silencing (CVE-2026-43279)

• kernel: net/sched: act_pedit: extend the writable skb range per key (CVE-2026-46331)

• kernel: ALSA: aloop: Fix peer runtime UAF during format-change stop (CVE-2026-46090)

• kernel: RDMA/mana: Validate rxhashkey_len (CVE-2026-46145)

• kernel: nvmet-tcp: fix race between ICReq handling and queue teardown (CVE-2026-46135)

Bug Fix(es) and Enhancement(s):

• Rocky Linux8 RT kernel panic in replenishdlentity() caused by stale DEADLINE PI state during rt_mutex de-boosting (JIRA:Rocky Linux-178520)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.