Red Hat Product Errata RHSA-2026:25095 - Security Advisory Issued: 2026-06-10 Updated: 2026-06-10 RHSA-2026:25095 - Security Advisory Overview Updated Packages Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: can: raw: fix ro->uniq use-after-free in raw_rcv() (CVE-2026-31532) kernel: usbip: validate number_of_packets in usbip_pack_ret_submit() (CVE-2026-31607) kernel: netfilter: ip6t_eui64: reject invalid MAC header for all packets (CVE-2026-31685) kernel: md/bitmap: fix GPF in write_page caused by resize race (CVE-2026-43163) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64 Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64 Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le Fixes BZ - 2461107 - CVE-2026-31532 kernel: can: raw: fix ro->uniq use-after-free in raw_rcv() BZ - 2461521 - CVE-2026-31607 kernel: usbip: validate number_of_packets in usbip_pack_ret_submit() BZ - 2461759 - CVE-2026-31685 kernel: netfilter: ip6t_eui64: reject invalid MAC header for all packets BZ - 2467059 - CVE-2026-43163 kernel: md/bitmap: fix GPF in write_page caused by resize race CVEs CVE-2026-31532 CVE-2026-31607 CVE-2026-31685 CVE-2026-43163 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 SRPM kernel-3.10.0-1160.151.1.el7.src.rpm SHA-256: b92c111c5164172efaf8c23c65af0d9cb293e875de7efd461358c5e1f7ec727c x86_64 bpftool-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: a6e1971a72dd9ae50e817a58d6ac763772c8711bbe34cd0ee2c81cf27e162c57 bpftool-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: d176539debed72d7bafa659a3d1ddca97ed8e10094e9d86829086aa17ea5395e bpftool-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: d176539debed72d7bafa659a3d1ddca97ed8e10094e9d86829086aa17ea5395e kernel-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 175ed3ed400d77c371a8acb4108d879474359a38734929d969cb5da9ff8fad4a kernel-abi-whitelists-3.10.0-1160.151.1.el7.noarch.rpm SHA-256: d4289dacf50699209b6a71799a7de0482d23b0093e8df0784e6580429da42f47 kernel-debug-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 194a8cb85f704da35de2ea32ac10383b4431575c3d63916b308ada9900bedc9a kernel-debug-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 7c220f746c6061dff8aefbe64db180968cdbd7d42b77c33882cad942210837bb kernel-debug-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 7c220f746c6061dff8aefbe64db180968cdbd7d42b77c33882cad942210837bb kernel-debug-devel-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 6f9b9cd9a6faf3b855246533d7cd56aa0fe2a9dee12feafc2cdc96c73182a4cc kernel-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 6e88d7ddb0a74e27eb467a067c03a34257919a7a93663469902ee076f3d64c0b kernel-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 6e88d7ddb0a74e27eb467a067c03a34257919a7a93663469902ee076f3d64c0b kernel-debuginfo-common-x86_64-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 1fc129a9575c2f9a5e0050c0135dc45658d9c738030c9f8742423089d969daae kernel-debuginfo-common-x86_64-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 1fc129a9575c2f9a5e0050c0135dc45658d9c738030c9f8742423089d969daae kernel-devel-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 3fc2f21f9c28883bd7a630baefbbcb7436aac36580d54122ea071201aa0558f7 kernel-doc-3.10.0-1160.151.1.el7.noarch.rpm SHA-256: 3deeae5d733ff59e882d8583b6bed60694a9ddb47a2240f15299ed630a32fc02 kernel-headers-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: a304d27a4ff3dbe680b89bcde714c3e657a020a0bb7635a0116ebec0650c0f84 kernel-tools-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 7459494759b61506eafef23b0e11c119de9b72fbac96cd04a53e11f08c8ea392 kernel-tools-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: ff27ecdd965d80e5bc4b23fe495768ca107e09dbeba0cd3e178ce4ad6c78f3ea kernel-tools-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: ff27ecdd965d80e5bc4b23fe495768ca107e09dbeba0cd3e178ce4ad6c78f3ea kernel-tools-libs-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: c578a61766b985b02eb44fa9fdd40bfa5e6d065dab3a59eb5c3ff104c4ce3ddf kernel-tools-libs-devel-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: a00d5bf8d7671796cc25036a59cab3f1c7ab0cbeabe75d83c05a6e0604d1b6ff perf-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 1f974537992e5793db8493a7a30c59caba1da0b937bda265b31d2f5c534dea59 perf-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 527d8b1e3f782adadc5236b9662e94ca3e2acfd5c8ddd5deb2a76b4dc7c326ee perf-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 527d8b1e3f782adadc5236b9662e94ca3e2acfd5c8ddd5deb2a76b4dc7c326ee python-perf-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: 192253affbaed991e4069a8e4165bd62a7efa355667efa20e23b9c4a1f715cb8 python-perf-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: eae987ebf7bb3bd660104fb78a929094088faaaafa0c0dd11deaf310868067ee python-perf-debuginfo-3.10.0-1160.151.1.el7.x86_64.rpm SHA-256: eae987ebf7bb3bd660104fb78a929094088faaaafa0c0dd11deaf310868067ee Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 SRPM kernel-3.10.0-1160.151.1.el7.src.rpm SHA-256: b92c111c5164172efaf8c23c65af0d9cb293e875de7efd461358c5e1f7ec727c s390x bpftool-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 1f4f567a640d6ddc9a81ee32d71839e8bebdb5bd9e74ea08d708a15ccec11f46 bpftool-debuginfo-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 150c88ebea98f59816ef0fd540e4a6e8bcf43136cea1ede8212fdaf2d2805273 kernel-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 4da852c4105a4104941d42ec17f6b16581193890e7708ba01755a08ce3db23db kernel-abi-whitelists-3.10.0-1160.151.1.el7.noarch.rpm SHA-256: d4289dacf50699209b6a71799a7de0482d23b0093e8df0784e6580429da42f47 kernel-debug-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 8f2e6b405e69f203ba2a234519d90918dba1dec8e4b058c2f92111701ff982b6 kernel-debug-debuginfo-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 7593ca98754000c74167d51ae4b8c842f5b97a4c897ef07fe7504477a4c58111 kernel-debug-devel-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: de06590a82bf3e88364f898b462dcc16345af0004dc84e3ee3a4de3ed8672ee7 kernel-debuginfo-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 33c3a7cae6cb1642886303a8a88d1203ebed36c9243c29f1e19c0677caf78eb8 kernel-debuginfo-common-s390x-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 2601cea8cccd721aac3f46db76ec0b91abe1ae37017966507d1aa3ebad8218ba kernel-devel-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 4a3a73bc793f90f79b9c6f4cb5e4dbb42c7eb43c11f856d1a47cc6db5223e477 kernel-doc-3.10.0-1160.151.1.el7.noarch.rpm SHA-256: 3deeae5d733ff59e882d8583b6bed60694a9ddb47a2240f15299ed630a32fc02 kernel-headers-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 83cdf6cfd275dc6cd0a4d0a0ffad8fa57814d6c6814c403f01dd3d38ce6a8008 kernel-kdump-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: dbf94fb32a19e25a31cf47c5f641241f3248e9cc043ca7fb64993c49f4d9083e kernel-kdump-debuginfo-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 77827a1e375a679649b860d1f6d0b76b015a92b22d5a5eda384eaa52caf9820d kernel-kdump-devel-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 666fd8883910e13d83f198d54050bdfc079b671b341bdb6c75cb96b08b701427 perf-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 48e8d980c807d94ac910ca946d4930618b80cab29cf0e36e18f5c412d84be17b perf-debuginfo-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: ee1e4ada85f536274ae2a5054c2a0f6ec05a901ad0d964559dc4372041b7e9bd python-perf-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: fe890d53227dcb0f6c5b6cd6055cb9486e0e57e75506037433c2befd029a2323 python-perf-debuginfo-3.10.0-1160.151.1.el7.s390x.rpm SHA-256: 4d6ce82fdfa387f41da00ae424b450e746d0c928baf111b58f681eb0da3f73af Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 SRPM kernel-3.10.0-1160.151.1.el7.src.rpm SHA-256: b92c111c5164172efaf8c23c65af0d9cb293e875de7efd461358c5e1f7ec727c ppc64 bpftool-3.10.0-1160.151.1.el7.ppc64.rpm SHA-256: 1657b61f40c5d43f75da1cada0f297bde641e4084ecf96a3828268dc1faa6be0 bpftool-debuginfo-3.10.0-1160.151.1.el7.ppc64.rpm SHA-256: 98d1c42c25078fc5499f138091ad02bbc9d7e467d7a676bda30960a6829dd6c0 bpftool-debuginfo-3.10.0-1160.151.1.el7.ppc64.rpm SHA-256: 98d1c42c25078fc5499f138091ad02bbc9d7e467d7a676bda30960a6829dd6c0 kernel-3.10.0-1160.151.1.el7.ppc64.rpm SHA-256: 70f86cf204788a2b18f7462e91cb76e7cdaf09cd78768f8b4fab563e33646cce kernel-abi-whitelists-3.10.0-1160.151.1.el7.noarch.rpm SHA-256: d4289dacf50699209b6a71799a7de0482d23b0093e8df0784e6580429da42f47 kernel-bootwrapper-3.10.0-1160.151.1.el7.ppc64.rpm SHA-256: 9d28cf58441c060f636710654916b248ed4c7ef0f2b1bbbcc7673f5a7003d8f4 kernel-debug-3.10.0-1160.151.1.el7.ppc64.rpm SHA-256: a11dbcfd4bbd5dd3d932280c7285c8578d90c3650f058215822adce94a2b046b kernel-debug-debuginfo-3.10.0-1160.151.1.el7.ppc64.rpm SHA-256: 717f9afda9200c8b81099d219cabf8db41a952d56f85298776c993db5136d824 kernel-debug-debuginfo-3.10.0-1160.151.1.el7.ppc64.rpm SHA-256: 717f9afda9200c8b81099d219cabf8db41a952d56f85298776c993db5136d824 ke