Changeflow GovPing Data Privacy & Cybersecurity Multiple Vulnerabilities in Red Hat Linux Kerne...
Priority review Guidance Added Final

Multiple Vulnerabilities in Red Hat Linux Kernel Affecting Enterprise Products

Favicon for www.cert.ssi.gouv.fr CERT-FR Security Advisories
Published
Detected
Email

Summary

CERT-FR issued advisory CERTFR-2026-AVI-0496 alerting to multiple vulnerabilities in Red Hat Linux Kernel, sourced from 16 Red Hat security bulletins (RHSA-2026:8921 through RHSA-2026:9870) published 20-22 April 2026. Affected products include Red Hat Enterprise Linux versions 8, 9, and 10 across multiple architectures including x86_64, aarch64, s390x, and ppc64le, along with CodeReady Linux Builder and related SAP/TUS/AUS/EUS variants. Risks include data integrity compromise, data confidentiality breach, security policy bypass, remote denial of service, arbitrary code execution, and privilege escalation.

Why this matters

Organizations running Red Hat Enterprise Linux 8, 9, or 10 on any supported architecture should cross-reference their systems against the listed product variants and apply patches referenced in the underlying Red Hat security bulletins. The arbitrary code execution and privilege escalation risks warrant priority remediation given their potential for complete system compromise.

AI-drafted from the source document, validated against GovPing's analyst note standards . For the primary regulatory language, read the source document .
Published by CERT-FR on cert.ssi.gouv.fr . Detected, standardized, and enriched by GovPing. Review our methodology and editorial standards .

About this source

CERT-FR is the French government's national cybersecurity incident response team, run by the ANSSI. Their advisory feed publishes vulnerability disclosures, active exploitation warnings, and emergency patching guidance for software in widespread enterprise use: browsers, hypervisors, ERP systems, network equipment, file transfer products. Around 180 advisories a month. The advisories are written in French but cover the same vulnerability universe as CISA, NCSC-UK, BSI's CERT-Bund, and JPCERT, often hours earlier on European-headquartered vendors. Watch this if you patch enterprise software, run a SOC, write detection content, or track Schneider, Dassault, OVH, Atos, or any French-vendor advisory faster than English-language sources will surface it. GovPing publishes each advisory with the affected vendor, severity, and CERT-FR link.

View original document View source feed page

What changed

CERT-FR published a security advisory aggregating 16 Red Hat security bulletins covering multiple vulnerabilities in the Linux Kernel affecting Red Hat Enterprise Linux and related products. The vulnerabilities expose affected systems to data integrity compromise, data confidentiality breach, security policy bypass, remote denial of service, arbitrary code execution, and privilege escalation. Organizations running affected Red Hat Linux products should review the referenced RHSA bulletins and apply available patches accordingly.

Archived snapshot

Apr 24, 2026

GovPing captured this document from the original source. If the source has since changed or been removed, this is the text as it existed at that time.

Premier Ministre S.G.D.S.N

Agence nationale
de la sécurité des
systèmes d'information

Paris, le 24 avril 2026 N° CERTFR-2026-AVI-0496 Affaire suivie par: CERT-FR

Avis du CERT-FR

Objet: Multiples vulnérabilités dans le noyau Linux de Red Hat

Gestion du document

| Référence | CERTFR-2026-AVI-0496 |
| Titre | Multiples vulnérabilités dans le noyau Linux de Red Hat |
| Date de la première version | 24 avril 2026 |
| Date de la dernière version | 24 avril 2026 |
| Source(s) | Bulletin de sécurité Red Hat RHSA-2026:8921 du 20 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9095 du 20 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9112 du 20 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9131 du 20 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9135 du 20 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9264 du 21 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9512 du 22 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9513 du 22 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9514 du 22 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9515 du 22 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9643 du 22 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9644 du 22 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9835 du 22 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9836 du 22 avril 2026
Bulletin de sécurité Red Hat RHSA-2026:9870 du 22 avril 2026 |
Une gestion de version détaillée se trouve à la fin de ce document.

Risques

  • Atteinte à l'intégrité des données
  • Atteinte à la confidentialité des données
  • Contournement de la politique de sécurité
  • Déni de service à distance
  • Exécution de code arbitraire
  • Élévation de privilèges

Systèmes affectés

  • Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.0 aarch64
  • Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.6 aarch64
  • Red Hat CodeReady Linux Builder for ARM 64 10 aarch64
  • Red Hat CodeReady Linux Builder for ARM 64 8 aarch64
  • Red Hat CodeReady Linux Builder for ARM 64 9 aarch64
  • Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.0 s390x
  • Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.6 s390x
  • Red Hat CodeReady Linux Builder for IBM z Systems 10 s390x
  • Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x
  • Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.0 ppc64le
  • Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.6 ppc64le
  • Red Hat CodeReady Linux Builder for Power, little endian 10 ppc64le
  • Red Hat CodeReady Linux Builder for Power, little endian 8 ppc64le
  • Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le
  • Red Hat CodeReady Linux Builder for x8664 - Extended Update Support 10.0 x8664
  • Red Hat CodeReady Linux Builder for x8664 - Extended Update Support 9.6 x8664
  • Red Hat CodeReady Linux Builder for x8664 10 x8664
  • Red Hat CodeReady Linux Builder for x8664 8 x8664
  • Red Hat CodeReady Linux Builder for x8664 9 x8664
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 aarch64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
  • Red Hat Enterprise Linux for ARM 64 10 aarch64
  • Red Hat Enterprise Linux for ARM 64 8 aarch64
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 s390x
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.2 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
  • Red Hat Enterprise Linux for IBM z Systems 10 s390x
  • Red Hat Enterprise Linux for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
  • Red Hat Enterprise Linux for Power, little endian 10 ppc64le
  • Red Hat Enterprise Linux for Power, little endian 8 ppc64le
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for Real Time 8 x86_64
  • Red Hat Enterprise Linux for Real Time for NFV 8 x86_64
  • Red Hat Enterprise Linux for x8664 - 4 years of updates 10.0 x8664
  • Red Hat Enterprise Linux for x8664 - Extended Life Cycle 8.10 x8664
  • Red Hat Enterprise Linux for x8664 - Extended Life Cycle 9.2 x8664
  • Red Hat Enterprise Linux for x8664 - Extended Life Cycle 9.6 x8664
  • Red Hat Enterprise Linux for x8664 - Extended Update Support 10.0 x8664
  • Red Hat Enterprise Linux for x8664 - Extended Update Support 9.6 x8664
  • Red Hat Enterprise Linux for x8664 - Extended Update Support Extension 8.4 x8664
  • Red Hat Enterprise Linux for x8664 - Extended Update Support Extension 8.6 x8664
  • Red Hat Enterprise Linux for x8664 - Extended Update Support Extension 8.8 x8664
  • Red Hat Enterprise Linux for x8664 - Update Services for SAP Solutions 8.6 x8664
  • Red Hat Enterprise Linux for x8664 - Update Services for SAP Solutions 8.8 x8664
  • Red Hat Enterprise Linux for x8664 - Update Services for SAP Solutions 9.0 x8664
  • Red Hat Enterprise Linux for x8664 - Update Services for SAP Solutions 9.2 x8664
  • Red Hat Enterprise Linux for x8664 - Update Services for SAP Solutions 9.6 x8664
  • Red Hat Enterprise Linux for x8664 10 x8664
  • Red Hat Enterprise Linux for x8664 8 x8664
  • Red Hat Enterprise Linux for x8664 9 x8664
  • Red Hat Enterprise Linux Server - AUS 8.2 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.2 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.6 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le
  • Red Hat Enterprise Linux Server - TUS 8.6 x86_64
  • Red Hat Enterprise Linux Server - TUS 8.8 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le

Résumé

De multiples vulnérabilités ont été découvertes dans le noyau Linux de Red Hat. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et un déni de service à distance.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Documentation

Gestion détaillée du document

  1. le 24 avril 2026 Version initiale

Related changes

Favicon for www.cert.ssi.gouv.fr Multiple Vulnerabilities in Red Hat Linux Kernel Allow Code Execution
Priority review Apr 17, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity
Favicon for www.cert.ssi.gouv.fr Red Hat Linux Kernel Multiple Vulnerabilities Advisory
Priority review Apr 03, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity
Favicon for www.cert.ssi.gouv.fr Red Hat Linux Kernel Multiple Vulnerabilities Alert
Priority review Apr 10, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity

Get daily alerts for CERT-FR Security Advisories

Daily digest delivered to your inbox.

Free. Unsubscribe anytime.

Source

Favicon for www.cert.ssi.gouv.fr
CERT-FR Security Advisories cert.ssi.gouv.fr/avis
Data Privacy & Cybersecurity

About this page

What is GovPing?

Every important government, regulator, and court update from around the world. One place. Real-time. Free. Our mission

What's from the agency?

Source document text, dates, docket IDs, and authority are extracted directly from CERT-FR.

What's AI-generated?

The summary, classification, recommended actions, deadlines, and penalty information are AI-generated from the original text and may contain errors. Always verify against the source document.

Last updated

Press inquiries →

Classification

Agency
CERT-FR
Published
April 24th, 2026
Instrument
Guidance
Branch
Executive
Source language
fr
Legal weight
Non-binding
Stage
Final
Change scope
Substantive

Who this affects

Applies to
Technology companies Government agencies
Industry sector
5112 Software & Technology
Activity scope
Vulnerability disclosure Patch management Operating system security
Geographic scope
France FR

Taxonomy

Primary area
Cybersecurity
Operational domain
IT Security
Compliance frameworks
NIST CSF
Topics
Software & Technology

Browse Categories

Agriculture & Food Safety 84 AI Regulation 3 Banking & Finance 499 Consumer Protection 141 Courts & Legal 635 Data Privacy & Cybersecurity 150 Defense & National Security 52 Education 64 Energy 138 Environment 170 Gaming 2 Government & Legislation 522 Healthcare 15 Healthcare & Life Sciences 401 Immigration 11 Insurance 90 Labor & Employment 193 Pharma & Drug Safety 21 Professional Licensing 6 Real Estate & Housing 76 Securities & Markets 175 Tax 116 Telecom & Technology 56 Trade & Sanctions 169 Transportation 129

Get alerts for this source

We'll email you when CERT-FR Security Advisories publishes new changes.

Free. Unsubscribe anytime.

You're subscribed!