RHSA-2026:5732 Red Hat Security Advisory: kernel-rt security update
Details
CVSS v3
7.5
NVD published
2025-12-04 16:16:17
EPSS
<0.1% probability · 10.7th percentile — 2026-03-24
Affected versions
Not available in our cache.
Summary
In the Linux kernel, the following vulnerability has been resolved:
sctp: avoid NULL dereference when chunk data buffer is missing
chunk->skb pointer is dereferenced in the if-block where it's supposed
to be NULL only.
chunk->skb can only be NULL if chunk->head_skb is not. Check for frag_list
instead and do it just before replacing chunk->skb. We're sure that
otherwise chunk->skb is non-NULL because of outer if() condition.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.