The latest batch of stable Linux kernels delivers urgent security patches for the network stack while quietly fixing several memory management edge cases. Researchers spent considerable time patching buffer overflows and reference count leaks inside the AF_RXRPC subsystem, which stops local attackers from exploiting oversized packet authenticators or triggering kernel panics. You will also notice targeted repairs for Arm64 page count overflows and virtual memory area leaks that used to waste slab resources during heavy workloads. Intel graphics and networking drivers finally stop hitting race conditions that caused sudden system hangs, and minor build infrastructure tweaks alongside input subsystem corrections wrap up this necessary maintenance update.

Linux Kernels Drops a Massive Batch of Network Security Fixes and Driver Stalls

Linux Kernels 5.10.253, 5.15.203, 6.1.168, 6.6.135, 6.12.83, 6.18.23, and 6.19.13 has been released. The latest stable kernel release lands with a heavy focus on network stack security, memory management edge cases, and a handful of hardware-specific regressions. If you run systems that rely on AF_RXRPC or Intel networking gear, this update is mandatory. The patch set quietly patches dozens of buffer overflows, reference count leaks, and locking deadlocks that could otherwise trigger kernel panics or expose sensitive data to local attackers.

Network Stack Gets a Serious Security Sweep

The AF_RXRPC subsystem takes the biggest hit in this release, with over a dozen patches addressing everything from integer overflows to use-after-free conditions. David Howells and several independent researchers cleaned up the security verification paths, fixing inverted length checks that allowed oversized RESPONSE authenticators to slip through validation routines. One particularly nasty bug involved an out-of-bounds read caused by pointer arithmetic miscalculations during packet parsing. The fixes also tighten keyring handling so sockets can properly share client and server credentials without triggering reference count leaks or blocking legitimate connections. Systems using AFS or distributed storage backends will see noticeably more stable network behavior once these race conditions are closed out.

Memory Mapping and VMA Leaks Finally Tamed

The memory management layer gets targeted fixes for two distinct but equally annoying issues. File mapping on Arm64 systems was suffering from a page count overflow that could corrupt folio state during stress tests, which Baolin Wang resolved by recalculating file offsets before retrieving the next uptodate folio. Meanwhile, Sechang Lim tracked down a VMA memory leak in __mmap_region() that leaked shmem files when /dev/zero mappings failed mid-initialization. The DAMON subsystem also gets cleanup for context allocation failures that previously left kernel objects dangling after user-space toggles. That DAMON stat context leak is a classic case of error path neglect that should have been caught during the initial refactor, but at least it stops wasting slab memory on repeated enable cycles. These changes keep the page allocator from leaking resources during heavy workload spikes or fault injection testing.

GPU, Audio, and Network Driver Stalls Resolved

Hardware quirks get their due attention in this round. Intel i915 drivers finally stop hitting refcount underflows when the heartbeat worker races with engine parking routines, which prevents sudden GPU hangs on desktop systems. The igb network driver gets rid of a redundant napi_synchronize() call that caused TX queues to stall permanently after AF_XDP applications crashed unexpectedly. Audio subsystems see period alignment adjustments for Intel ACE4 and Nova Lake platforms, while a poorly received Realtek headphone quirk for Gigabyte motherboards gets reverted after breaking other models. Network drivers like stmmac and lan966x also get DMA mapping fixes that prevent kernel memory disclosure on IOMMU-less embedded boards.

Build System and Miscellaneous Cleanup

The build infrastructure gets a minor but practical update to respect INSTALL_MOD_PATH when generating module cpio archives, which finally plays nice with initramfs setups that merge /lib and /usr/lib. MIPS architectures see a complete rewrite of TLB uniquification logic to handle hidden invalidation bits on older hardware without triggering machine check exceptions. Input subsystems fix a circular locking dependency between uinput and force-feedback drivers that made certain gamepads unresponsive under Wine. The release rounds out with padding clear fixes in XFRM user-space reporting structures to stop leaking uninitialized kernel heap bytes over netlink sockets.

Linux kernel 5.10.253 released

Linux kernel version 5.10.253 is now available:

Full source: https://cdn.kernel.org/pub/linux/kernel/v5.x/linux-5.10.253.tar.xz
Patch: https://cdn.kernel.org/pub/linux/kernel/v5.x/patch-5.10.253.xz
PGP Signature: https://cdn.kernel.org/pub/linux/kernel/v5.x/linux-5.10.253.tar.sign

You can view the summary of the changes at the following URL:
https://git.kernel.org/stable/ds/v5.10.253/v5.10.252

Linux kernel 5.15.203 released

Linux kernel version 5.15.203 is now available:

Full source: https://cdn.kernel.org/pub/linux/kernel/v5.x/linux-5.15.203.tar.xz
Patch: https://cdn.kernel.org/pub/linux/kernel/v5.x/patch-5.15.203.xz
PGP Signature: https://cdn.kernel.org/pub/linux/kernel/v5.x/linux-5.15.203.tar.sign

You can view the summary of the changes at the following URL:
https://git.kernel.org/stable/ds/v5.15.203/v5.15.202

Linux kernel 6.1.169 released

Linux kernel version 6.1.169 is now available:

Full source: https://cdn.kernel.org/pub/linux/kernel/v6.x/linux-6.1.169.tar.xz
Patch: https://cdn.kernel.org/pub/linux/kernel/v6.x/patch-6.1.169.xz
PGP Signature: https://cdn.kernel.org/pub/linux/kernel/v6.x/linux-6.1.169.tar.sign

You can view the summary of the changes at the following URL:
https://git.kernel.org/stable/ds/v6.1.169/v6.1.168

Linux kernel 6.6.135 released

Linux kernel version 6.6.135 is now available:

Full source: https://cdn.kernel.org/pub/linux/kernel/v6.x/linux-6.6.135.tar.xz
Patch: https://cdn.kernel.org/pub/linux/kernel/v6.x/patch-6.6.135.xz
PGP Signature: https://cdn.kernel.org/pub/linux/kernel/v6.x/linux-6.6.135.tar.sign

You can view the summary of the changes at the following URL:
https://git.kernel.org/stable/ds/v6.6.135/v6.6.134

Linux kernel 6.12.82 released

Linux kernel version 6.12.82 is now available:

Full source: https://cdn.kernel.org/pub/linux/kernel/v6.x/linux-6.12.82.tar.xz
Patch: https://cdn.kernel.org/pub/linux/kernel/v6.x/patch-6.12.82.xz
PGP Signature: https://cdn.kernel.org/pub/linux/kernel/v6.x/linux-6.12.82.tar.sign

You can view the summary of the changes at the following URL:
https://git.kernel.org/stable/ds/v6.12.82/v6.12.81

Linux kernel 6.18.23 released

Linux kernel version 6.18.23 is now available:

Full source: https://cdn.kernel.org/pub/linux/kernel/v6.x/linux-6.18.23.tar.xz
Patch: https://cdn.kernel.org/pub/linux/kernel/v6.x/patch-6.18.23.xz
PGP Signature: https://cdn.kernel.org/pub/linux/kernel/v6.x/linux-6.18.23.tar.sign

You can view the summary of the changes at the following URL:
https://git.kernel.org/stable/ds/v6.18.23/v6.18.22

Linux kernel 6.19.13 released

Linux kernel version 6.19.13 is now available:

Full source: https://cdn.kernel.org/pub/linux/kernel/v6.x/linux-6.19.13.tar.xz
Patch: https://cdn.kernel.org/pub/linux/kernel/v6.x/patch-6.19.13.xz
PGP Signature: https://cdn.kernel.org/pub/linux/kernel/v6.x/linux-6.19.13.tar.sign

You can view the summary of the changes at the following URL:
https://git.kernel.org/stable/ds/v6.19.13/v6.19.12

Grab the tarball if you run servers, embedded boards, or desktop rigs that hit these specific drivers. The network stack cleanup alone is worth the reboot cycle.