Multiple vulnerabilities in the Red Hat Linux kernel (June 26, 2026)
Multiple vulnerabilities have been discovered in the Red Hat Linux kernel. Some of them allow an attacker to cause remote arbitrary code execution, privilege escalation, and remote denial of service.
CSIRTS triage
- What
- Multiple vulnerabilities in the Red Hat Linux kernel can lead to remote code execution and privilege escalation.
- Who is affected
- Users of the Red Hat Linux kernel.
- Urgency
- Remediation is critical due to the potential for severe exploitation.
- Action
- Apply the latest security updates for the Red Hat Linux kernel.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch Linux kernel
Get an email when a new Linux kernel advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0808/
Exploitation outlook
EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.
- Low exploitation riskCVE-2026-431980.30% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 22% of all scored CVEs.
- Low exploitation riskCVE-2026-434140.38% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 30% of all scored CVEs.
- Low exploitation riskCVE-2026-48780.19% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 9% of all scored CVEs.
- Low exploitation riskCVE-2026-316410.14% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 4% of all scored CVEs.
- Low exploitation riskCVE-2026-317870.18% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 8% of all scored CVEs.
- Low exploitation riskCVE-2026-461170.13% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 3% of all scored CVEs.
- Exploitation likely imminentCVE-2026-43284EPSS puts this in the most-targeted tier (93.2% 30-day exploitation probability). Prioritize alongside KEV items. Riskier than 100% of all scored CVEs.
- Low exploitation riskCVE-2026-461730.13% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 3% of all scored CVEs.
- Low exploitation riskCVE-2026-432790.12% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 2% of all scored CVEs.
- Low exploitation riskCVE-2026-463310.32% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 24% of all scored CVEs.
Referenced CVEs
Same CVEs, other sources
How other CERTs, PSIRTs and databases cover the vulnerabilities in this advisory.
- medium[UPDATE] [medium] Linux Kernel: Multiple Vulnerabilitiescert-bund
- high[UPDATE] [high] Linux Kernel: Multiple vulnerabilitiescert-bund
- medium[UPDATE] [medium] Linux Kernel: Multiple Vulnerabilitiescert-bund
- high[UPDATE] [high] Linux Kernel (Dirty Frag): Multiple vulnerabilities allow gaining administrator rightscert-bund
- unknownUSN-8530-1: Linux kernel (AWS) vulnerabilitiesubuntu
- unknownUSN-8529-1: Linux kernel vulnerabilitiesubuntu
- unknownexploitedUSN-8528-1: Linux kernel (Xilinx ZynqMP) vulnerabilitiesubuntu
- unknownUSN-8527-1: Linux kernel (Raspberry Pi) vulnerabilitiesubuntu
- unknownUSN-8492-5: Linux kernel (FIPS) vulnerabilitiesubuntu
- high[UPDATE] [high] Xen and Citrix Systems XenServer: Multiple vulnerabilitiescert-bund
- high[UPDATE] [high] Linux Kernel: Vulnerability allows privilege escalationcert-bund
- unknownMultiple vulnerabilities in Ubuntu Linux kernel (July 10, 2026)cert-fr-avis
Recent advisories for Red Hat Linux
A cluster of recent advisories against the same product widens the attack surface — attackers routinely chain freshly published CVEs on one product, so review these together.
- medium[UPDATE] [medium] Red Hat Enterprise Linux (perl-IO-Compress): Vulnerability allows executing arbitrary progra…cert-bund · 2026-07-10
- medium[UPDATE] [medium] Red Hat Enterprise Linux (crun): Vulnerability allows privilege escalationcert-bund · 2026-07-10
- high[UPDATE] [high] Red Hat Enterprise Linux (Lodash): Vulnerability allows denial of servicecert-bund · 2026-07-10
- medium[UPDATE] [medium] Red Hat Enterprise Linux (pyasn1): Vulnerability allows Denial of Servicecert-bund · 2026-07-10
- medium[UPDATE] [medium] Red Hat Enterprise Linux (LibRaw): Vulnerability allows code executioncert-bund · 2026-07-10
- high[UPDATE] [high] Red Hat Enterprise Linux (libsoup): Vulnerability allows information disclosurecert-bund · 2026-07-10
More from CERT-FR Avis de sécurité
- unknownMultiple vulnerabilities in Red Hat Linux kernel (July 10, 2026)2026-07-10
- unknownMultiple vulnerabilities in Ubuntu Linux kernel (July 10, 2026)2026-07-10
- unknownMultiple vulnerabilities in Progress MOVEit Transfer (July 10, 2026)2026-07-10
- unknownVulnerability in NetApp ONTAP 9 (July 10, 2026)2026-07-10
- unknownVulnerability in CPython (July 10, 2026)2026-07-10