Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-10158 (GCVE-0-2025-10158)
Vulnerability from cvelistv5 – Published: 2025-11-18 14:24 – Updated: 2025-11-19 16:48
VLAI
EPSS
Title
Rsync: Out of bounds array access via negative index
Summary
A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The
malicious
rsync client requires at least read access to the remote rsync module in order to trigger the issue.
Severity
4.3 (Medium)
CWE
- CWE-129 - Improper Validation of Array Index
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://github.com/RsyncProject/rsync/commit/797e… | patch |
| https://attackerkb.com/assessments/fbacb2a6-d1cd-… | technical-description |
Date Public
2025-11-18 14:20
Credits
Calum Hutton
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-10158",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-11-19T16:15:02.998218Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-11-19T16:48:56.591Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "rsync",
"vendor": "rsync",
"versions": [
{
"lessThanOrEqual": "3.4.1",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Calum Hutton"
}
],
"datePublic": "2025-11-18T14:20:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The \n\nmalicious \n\nrsync client requires at least read access to the remote rsync module in order to trigger the issue."
}
],
"value": "A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The \n\nmalicious \n\nrsync client requires at least read access to the remote rsync module in order to trigger the issue."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-129",
"description": "CWE-129 Improper Validation of Array Index",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-11-18T14:45:58.065Z",
"orgId": "9974b330-7714-4307-a722-5648477acda7",
"shortName": "rapid7"
},
"references": [
{
"tags": [
"patch"
],
"url": "https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f"
},
{
"tags": [
"technical-description"
],
"url": "https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1"
}
],
"source": {
"discovery": "UNKNOWN"
},
"timeline": [
{
"lang": "en",
"time": "2025-03-19T06:11:00.000Z",
"value": "Rapid7 makes initial outreach to rsync maintainers"
},
{
"lang": "en",
"time": "2025-03-19T10:04:00.000Z",
"value": "Rsync maintainers confirm outreach"
},
{
"lang": "en",
"time": "2025-03-20T10:34:00.000Z",
"value": "Rapid7 provides rsync maintainers a technical writeup and PoC to reproduce the issue"
},
{
"lang": "en",
"time": "2025-04-02T03:05:00.000Z",
"value": "Rapid7 requests confirmation of findings"
},
{
"lang": "en",
"time": "2025-04-06T09:30:00.000Z",
"value": "Rsync maintainers indicate more time is needed"
},
{
"lang": "en",
"time": "2025-04-16T05:31:00.000Z",
"value": "Rsync maintainers reproduce the issue and dispute its security impact due to uncertainty around viability of heap manipulation during exploitation"
},
{
"lang": "en",
"time": "2025-04-17T01:56:00.000Z",
"value": "Rapid7 indicates manipulating the heap is nuanced and CVE assignment is both prudent and best practice in this instance"
},
{
"lang": "en",
"time": "2025-05-07T09:08:00.000Z",
"value": "Rapid7 requests an update"
},
{
"lang": "en",
"time": "2025-05-12T06:08:00.000Z",
"value": "Rsync maintainers indicate a pull request to fix the issue is forthcoming"
},
{
"lang": "en",
"time": "2025-05-28T09:40:00.000Z",
"value": "Rapid7 requests an update"
},
{
"lang": "en",
"time": "2025-06-17T04:19:00.000Z",
"value": "Rapid7 requests an update"
},
{
"lang": "en",
"time": "2025-08-18T11:59:00.000Z",
"value": "Rapid7 requests an update"
},
{
"lang": "en",
"time": "2025-08-23T09:17:00.000Z",
"value": "Rsync maintainers indicate a pull request to remediate the issue has been made and a feature release is forthcoming"
},
{
"lang": "en",
"time": "2025-09-02T04:23:00.000Z",
"value": "Rapid7 indicates intention to assign a CVE and perform a coordinated disclosure with the rsync maintainers upon the upcoming feature release"
},
{
"lang": "en",
"time": "2025-09-09T11:18:00.000Z",
"value": "Rapid7 provides rsync maintainers a reserved CVE identifier and requests the date for the expected feature release"
},
{
"lang": "en",
"time": "2025-11-11T04:42:00.000Z",
"value": "Rapid7 indicates intention to publish the CVE record on November 18, 2025."
},
{
"lang": "en",
"time": "2025-11-18T14:00:00.000Z",
"value": "This disclosure"
}
],
"title": "Rsync: Out of bounds array access via negative index",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "9974b330-7714-4307-a722-5648477acda7",
"assignerShortName": "rapid7",
"cveId": "CVE-2025-10158",
"datePublished": "2025-11-18T14:24:19.210Z",
"dateReserved": "2025-09-09T11:15:17.585Z",
"dateUpdated": "2025-11-19T16:48:56.591Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-10158",
"date": "2026-05-25",
"epss": "0.00063",
"percentile": "0.19505"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-10158\",\"sourceIdentifier\":\"cve@rapid7.com\",\"published\":\"2025-11-18T15:16:25.433\",\"lastModified\":\"2025-11-19T19:15:16.750\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The \\n\\nmalicious \\n\\nrsync client requires at least read access to the remote rsync module in order to trigger the issue.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"cve@rapid7.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":4.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"cve@rapid7.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-129\"}]}],\"references\":[{\"url\":\"https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1\",\"source\":\"cve@rapid7.com\"},{\"url\":\"https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f\",\"source\":\"cve@rapid7.com\"}]}}",
"vulnrichment": {
"containers": "{\"cna\": {\"title\": \"Rsync: Out of bounds array access via negative index\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Calum Hutton\"}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 4.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"rsync\", \"product\": \"rsync\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"3.4.1\"}], \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2025-03-19T06:11:00.000Z\", \"value\": \"Rapid7 makes initial outreach to rsync maintainers\"}, {\"lang\": \"en\", \"time\": \"2025-03-19T10:04:00.000Z\", \"value\": \"Rsync maintainers confirm outreach\"}, {\"lang\": \"en\", \"time\": \"2025-03-20T10:34:00.000Z\", \"value\": \"Rapid7 provides rsync maintainers a technical writeup and PoC to reproduce the issue\"}, {\"lang\": \"en\", \"time\": \"2025-04-02T03:05:00.000Z\", \"value\": \"Rapid7 requests confirmation of findings\"}, {\"lang\": \"en\", \"time\": \"2025-04-06T09:30:00.000Z\", \"value\": \"Rsync maintainers indicate more time is needed\"}, {\"lang\": \"en\", \"time\": \"2025-04-16T05:31:00.000Z\", \"value\": \"Rsync maintainers reproduce the issue and dispute its security impact due to uncertainty around viability of heap manipulation during exploitation\"}, {\"lang\": \"en\", \"time\": \"2025-04-17T01:56:00.000Z\", \"value\": \"Rapid7 indicates manipulating the heap is nuanced and CVE assignment is both prudent and best practice in this instance\"}, {\"lang\": \"en\", \"time\": \"2025-05-07T09:08:00.000Z\", \"value\": \"Rapid7 requests an update\"}, {\"lang\": \"en\", \"time\": \"2025-05-12T06:08:00.000Z\", \"value\": \"Rsync maintainers indicate a pull request to fix the issue is forthcoming\"}, {\"lang\": \"en\", \"time\": \"2025-05-28T09:40:00.000Z\", \"value\": \"Rapid7 requests an update\"}, {\"lang\": \"en\", \"time\": \"2025-06-17T04:19:00.000Z\", \"value\": \"Rapid7 requests an update\"}, {\"lang\": \"en\", \"time\": \"2025-08-18T11:59:00.000Z\", \"value\": \"Rapid7 requests an update\"}, {\"lang\": \"en\", \"time\": \"2025-08-23T09:17:00.000Z\", \"value\": \"Rsync maintainers indicate a pull request to remediate the issue has been made and a feature release is forthcoming\"}, {\"lang\": \"en\", \"time\": \"2025-09-02T04:23:00.000Z\", \"value\": \"Rapid7 indicates intention to assign a CVE and perform a coordinated disclosure with the rsync maintainers upon the upcoming feature release\"}, {\"lang\": \"en\", \"time\": \"2025-09-09T11:18:00.000Z\", \"value\": \"Rapid7 provides rsync maintainers a reserved CVE identifier and requests the date for the expected feature release\"}, {\"lang\": \"en\", \"time\": \"2025-11-11T04:42:00.000Z\", \"value\": \"Rapid7 indicates intention to publish the CVE record on November 18, 2025.\"}, {\"lang\": \"en\", \"time\": \"2025-11-18T14:00:00.000Z\", \"value\": \"This disclosure\"}], \"datePublic\": \"2025-11-18T14:20:00.000Z\", \"references\": [{\"url\": \"https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f\", \"tags\": [\"patch\"]}, {\"url\": \"https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1\", \"tags\": [\"technical-description\"]}], \"x_generator\": {\"engine\": \"Vulnogram 0.5.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The \\n\\nmalicious \\n\\nrsync client requires at least read access to the remote rsync module in order to trigger the issue.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The \\n\\nmalicious \\n\\nrsync client requires at least read access to the remote rsync module in order to trigger the issue.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-129\", \"description\": \"CWE-129 Improper Validation of Array Index\"}]}], \"providerMetadata\": {\"orgId\": \"9974b330-7714-4307-a722-5648477acda7\", \"shortName\": \"rapid7\", \"dateUpdated\": \"2025-11-18T14:45:58.065Z\"}}, \"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-10158\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-11-19T16:15:02.998218Z\"}}}], \"providerMetadata\": {\"shortName\": \"CISA-ADP\", \"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"dateUpdated\": \"2025-11-19T16:15:07.191Z\"}}]}",
"cveMetadata": "{\"cveId\": \"CVE-2025-10158\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-18T14:45:58.065Z\", \"dateReserved\": \"2025-09-09T11:15:17.585Z\", \"assignerOrgId\": \"9974b330-7714-4307-a722-5648477acda7\", \"datePublished\": \"2025-11-18T14:24:19.210Z\", \"assignerShortName\": \"rapid7\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
GHSA-3RVC-QCWH-FHQV
Vulnerability from github – Published: 2025-11-18 15:30 – Updated: 2025-11-18 15:30
VLAI
Details
A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The
malicious
rsync client requires at least read access to the remote rsync module in order to trigger the issue.
Severity
4.3 (Medium)
{
"affected": [],
"aliases": [
"CVE-2025-10158"
],
"database_specific": {
"cwe_ids": [
"CWE-129"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-11-18T15:16:25Z",
"severity": "MODERATE"
},
"details": "A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The \n\nmalicious \n\nrsync client requires at least read access to the remote rsync module in order to trigger the issue.",
"id": "GHSA-3rvc-qcwh-fhqv",
"modified": "2025-11-18T15:30:53Z",
"published": "2025-11-18T15:30:53Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-10158"
},
{
"type": "WEB",
"url": "https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f"
},
{
"type": "WEB",
"url": "https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"type": "CVSS_V3"
}
]
}
MSRC_CVE-2025-10158
Vulnerability from csaf_microsoft - Published: 2025-11-02 00:00 - Updated: 2025-12-07 01:36Summary
Rsync: Out of bounds array access via negative index
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
4.3 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 17490-17084 | — | ||
| Unresolved product id: 20732-17084 | — | ||
| Unresolved product id: 17120-17086 | — | ||
| Unresolved product id: 20706-17086 | — |
References
4 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2025/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2025/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2025-10158 Rsync: Out of bounds array access via negative index - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-10158.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Rsync: Out of bounds array access via negative index",
"tracking": {
"current_release_date": "2025-12-07T01:36:46.000Z",
"generator": {
"date": "2026-01-03T09:42:28.013Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2025-10158",
"initial_release_date": "2025-11-02T00:00:00.000Z",
"revision_history": [
{
"date": "2025-11-19T01:02:24.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2025-11-20T01:37:09.000Z",
"legacy_version": "2",
"number": "2",
"summary": "Information published."
},
{
"date": "2025-11-23T01:01:13.000Z",
"legacy_version": "3",
"number": "3",
"summary": "Information published."
},
{
"date": "2025-11-24T14:37:27.000Z",
"legacy_version": "4",
"number": "4",
"summary": "Information published."
},
{
"date": "2025-11-25T01:37:36.000Z",
"legacy_version": "5",
"number": "5",
"summary": "Information published."
},
{
"date": "2025-12-06T14:40:37.000Z",
"legacy_version": "6",
"number": "6",
"summary": "Information published."
},
{
"date": "2025-12-07T01:36:46.000Z",
"legacy_version": "7",
"number": "7",
"summary": "Information published."
}
],
"status": "final",
"version": "7"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
},
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cazl3 rsync 3.4.1-1",
"product": {
"name": "\u003cazl3 rsync 3.4.1-1",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "azl3 rsync 3.4.1-1",
"product": {
"name": "azl3 rsync 3.4.1-1",
"product_id": "17490"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 rsync 3.4.1-2",
"product": {
"name": "\u003cazl3 rsync 3.4.1-2",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "azl3 rsync 3.4.1-2",
"product": {
"name": "azl3 rsync 3.4.1-2",
"product_id": "20732"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 rsync 3.4.1-1",
"product": {
"name": "\u003ccbl2 rsync 3.4.1-1",
"product_id": "4"
}
},
{
"category": "product_version",
"name": "cbl2 rsync 3.4.1-1",
"product": {
"name": "cbl2 rsync 3.4.1-1",
"product_id": "17120"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 rsync 3.4.1-2",
"product": {
"name": "\u003ccbl2 rsync 3.4.1-2",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "cbl2 rsync 3.4.1-2",
"product": {
"name": "cbl2 rsync 3.4.1-2",
"product_id": "20706"
}
}
],
"category": "product_name",
"name": "rsync"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 rsync 3.4.1-1 as a component of Azure Linux 3.0",
"product_id": "17084-3"
},
"product_reference": "3",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 rsync 3.4.1-1 as a component of Azure Linux 3.0",
"product_id": "17490-17084"
},
"product_reference": "17490",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 rsync 3.4.1-2 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 rsync 3.4.1-2 as a component of Azure Linux 3.0",
"product_id": "20732-17084"
},
"product_reference": "20732",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 rsync 3.4.1-1 as a component of CBL Mariner 2.0",
"product_id": "17086-4"
},
"product_reference": "4",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 rsync 3.4.1-1 as a component of CBL Mariner 2.0",
"product_id": "17120-17086"
},
"product_reference": "17120",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 rsync 3.4.1-2 as a component of CBL Mariner 2.0",
"product_id": "17086-2"
},
"product_reference": "2",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 rsync 3.4.1-2 as a component of CBL Mariner 2.0",
"product_id": "20706-17086"
},
"product_reference": "20706",
"relates_to_product_reference": "17086"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-10158",
"cwe": {
"id": "CWE-129",
"name": "Improper Validation of Array Index"
},
"notes": [
{
"category": "general",
"text": "rapid7",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"17490-17084",
"20732-17084",
"17120-17086",
"20706-17086"
],
"known_affected": [
"17084-3",
"17084-1",
"17086-4",
"17086-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-10158 Rsync: Out of bounds array access via negative index - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-10158.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2025-11-19T01:02:24.000Z",
"details": "3.4.1-2:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-3",
"17084-1",
"17086-4",
"17086-2"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalsScore": 0.0,
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 4.3,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"17084-3",
"17084-1",
"17086-4",
"17086-2"
]
}
],
"title": "Rsync: Out of bounds array access via negative index"
}
]
}
OPENSUSE-SU-2025:15827-1
Vulnerability from csaf_opensuse - Published: 2025-12-18 00:00 - Updated: 2025-12-18 00:00Summary
rsync-3.4.1-4.1 on GA media
Severity
Moderate
Notes
Title of the patch: rsync-3.4.1-4.1 on GA media
Description of the patch: These are all security issues fixed in the rsync-3.4.1-4.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15827
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:rsync-3.4.1-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rsync-3.4.1-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rsync-3.4.1-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rsync-3.4.1-4.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
5 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "rsync-3.4.1-4.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the rsync-3.4.1-4.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15827",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15827-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-10158 page",
"url": "https://www.suse.com/security/cve/CVE-2025-10158/"
}
],
"title": "rsync-3.4.1-4.1 on GA media",
"tracking": {
"current_release_date": "2025-12-18T00:00:00Z",
"generator": {
"date": "2025-12-18T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15827-1",
"initial_release_date": "2025-12-18T00:00:00Z",
"revision_history": [
{
"date": "2025-12-18T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.4.1-4.1.aarch64",
"product": {
"name": "rsync-3.4.1-4.1.aarch64",
"product_id": "rsync-3.4.1-4.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.4.1-4.1.ppc64le",
"product": {
"name": "rsync-3.4.1-4.1.ppc64le",
"product_id": "rsync-3.4.1-4.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.4.1-4.1.s390x",
"product": {
"name": "rsync-3.4.1-4.1.s390x",
"product_id": "rsync-3.4.1-4.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.4.1-4.1.x86_64",
"product": {
"name": "rsync-3.4.1-4.1.x86_64",
"product_id": "rsync-3.4.1-4.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.4.1-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rsync-3.4.1-4.1.aarch64"
},
"product_reference": "rsync-3.4.1-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.4.1-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rsync-3.4.1-4.1.ppc64le"
},
"product_reference": "rsync-3.4.1-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.4.1-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rsync-3.4.1-4.1.s390x"
},
"product_reference": "rsync-3.4.1-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.4.1-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rsync-3.4.1-4.1.x86_64"
},
"product_reference": "rsync-3.4.1-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-10158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-10158"
}
],
"notes": [
{
"category": "general",
"text": "A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The \n\nmalicious \n\nrsync client requires at least read access to the remote rsync module in order to trigger the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:rsync-3.4.1-4.1.aarch64",
"openSUSE Tumbleweed:rsync-3.4.1-4.1.ppc64le",
"openSUSE Tumbleweed:rsync-3.4.1-4.1.s390x",
"openSUSE Tumbleweed:rsync-3.4.1-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-10158",
"url": "https://www.suse.com/security/cve/CVE-2025-10158"
},
{
"category": "external",
"summary": "SUSE Bug 1254441 for CVE-2025-10158",
"url": "https://bugzilla.suse.com/1254441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:rsync-3.4.1-4.1.aarch64",
"openSUSE Tumbleweed:rsync-3.4.1-4.1.ppc64le",
"openSUSE Tumbleweed:rsync-3.4.1-4.1.s390x",
"openSUSE Tumbleweed:rsync-3.4.1-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:rsync-3.4.1-4.1.aarch64",
"openSUSE Tumbleweed:rsync-3.4.1-4.1.ppc64le",
"openSUSE Tumbleweed:rsync-3.4.1-4.1.s390x",
"openSUSE Tumbleweed:rsync-3.4.1-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-18T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-10158"
}
]
}
RHSA-2026:13812
Vulnerability from csaf_redhat - Published: 2026-05-05 17:47 - Updated: 2026-05-21 14:14Summary
Red Hat Security Advisory: updated RHEL-8 based Middleware Containers container images
Severity
Important
Notes
Topic: Updated RHEL-8 based Middleware Containers container images are now available
Details: The RHEL-8 based Middleware Containers container images have been updated to address the following security advisory:
RHSA-2026:11077
RHSA-2026:7667
RHSA-2026:8534
RHSA-2026:9745
(see References)
Security Fixes:
* rsync: Rsync: Out of bounds array access via negative index (CVE-2025-10158)
* gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function (CVE-2025-9820)
* gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification (CVE-2025-14831)
* openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables (CVE-2026-3497)
* nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination (CVE-2026-27135)
* libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing (CVE-2026-4424)
* python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519)
* libarchive: libarchive: Arbitrary code execution via integer overflow in ISO9660 image processing (CVE-2026-5121)
* python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules (CVE-2026-6100)
* python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API (CVE-2026-4786)
Users of RHEL-8 based Middleware Containers container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.
You can find images updated by this advisory in Red Hat Container Catalog (see References).
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_init() function that handles PKCS#11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the application using GnuTLS to crash or, in certain conditions, be exploited for code execution. As a result, systems or applications relying on GnuTLS may be vulnerable to a denial of service or local privilege escalation attacks.
4.0 (Medium)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64 | — |
Workaround
|
Threats
Impact
Low
An out of bounds read flaw has been discovered in rsync. A malicious client acting as the receiver of an rsync file transfer can trigger an OOB read via a negative array index. The rsync client requires at least read access to the remote rsync module to trigger the issue.
4.3 (Medium)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs).
5.3 (Medium)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64 | — |
Vendor Fix
fix
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64 | — |
Threats
Impact
Moderate
A flaw was found in the OpenSSH GSSAPI (Generic Security Service Application Program Interface) delta patches, as included in various Linux distributions. A remote attacker could exploit this by sending an unexpected GSSAPI message type during the key exchange process. This occurs because the `sshpkt_disconnect()` function, when called on an error, does not properly terminate the process, leading to the continued execution of the program with uninitialized connection variables. Accessing these uninitialized variables can lead to undefined behavior, potentially resulting in information disclosure or a denial of service.
8.2 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction.
7.5 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in Python. The `webbrowser.open()` API, used to launch web browsers, does not properly sanitize input. This allows a remote attacker to craft a malicious URL containing leading dashes. When such a URL is opened, certain web browsers may interpret these dashes as command-line options, which could lead to unexpected behavior, information disclosure, or potentially arbitrary code execution, impacting the integrity of the system.
7.1 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in the Python webbrowser.open() API. If a specially crafted URL containing "%action" is processed, an attacker could bypass a previous mitigation for CVE-2026-4519. This bypass allows for command injection into the underlying shell, potentially leading to arbitrary code execution.
7.1 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system.
7.5 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in Python's decompression modules, including `lzma.LZMADecompressor`, `bz2.BZ2Decompressor`, and `gzip.GzipFile`. This vulnerability, a use-after-free, can occur if a program attempts to re-use a decompression object after a memory allocation error, especially when the system is experiencing high memory usage. Exploitation of this flaw could potentially allow an attacker to execute arbitrary code or access sensitive data. The vulnerability is only present if the program re-uses decompressor instances across multiple decompression calls even after a `MemoryError` is raised during decompression. Using the helper functions to one-shot decompress data such as `lzma.decompress()`, `bz2.decompress()`, `gzip.decompress()`, and `zlib.decompress()` are not affected as a new decompressor instance is used per call. If the decompressor instance is not re-used after an error condition, this usage is similarly not vulnerable.
8.1 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in nghttp2. Due to missing internal state validation, the library continues to process incoming data even after a session has been terminated. A remote attacker could exploit this by sending a specially crafted HTTP/2 frame, leading to an assertion failure and a denial of service (DoS).
7.5 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64 | — |
Vendor Fix
fix
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64 | — |
Threats
Impact
Important
References
84 references
Acknowledgments
Elhanan Haenel
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated RHEL-8 based Middleware Containers container images are now available",
"title": "Topic"
},
{
"category": "general",
"text": "The RHEL-8 based Middleware Containers container images have been updated to address the following security advisory: \nRHSA-2026:11077 \nRHSA-2026:7667\nRHSA-2026:8534\nRHSA-2026:9745\n(see References)\n\nSecurity Fixes:\n* rsync: Rsync: Out of bounds array access via negative index (CVE-2025-10158)\n* gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function (CVE-2025-9820)\n* gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification (CVE-2025-14831)\n* openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables (CVE-2026-3497) \n* nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination (CVE-2026-27135)\n* libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing (CVE-2026-4424)\n* python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519)\n* libarchive: libarchive: Arbitrary code execution via integer overflow in ISO9660 image processing (CVE-2026-5121) \n* python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules (CVE-2026-6100)\n* python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API (CVE-2026-4786)\n\nUsers of RHEL-8 based Middleware Containers container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.\n\nYou can find images updated by this advisory in Red Hat Container Catalog (see References).",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:13812",
"url": "https://access.redhat.com/errata/RHSA-2026:13812"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/errata/RHSA-2026:11077",
"url": "https://access.redhat.com/errata/RHSA-2026:11077"
},
{
"category": "external",
"summary": "https://access.redhat.com/errata/RHSA-2026:7667",
"url": "https://access.redhat.com/errata/RHSA-2026:7667"
},
{
"category": "external",
"summary": "https://access.redhat.com/errata/RHSA-2026:8534",
"url": "https://access.redhat.com/errata/RHSA-2026:8534"
},
{
"category": "external",
"summary": "https://access.redhat.com/errata/RHSA-2026:9745",
"url": "https://access.redhat.com/errata/RHSA-2026:9745"
},
{
"category": "external",
"summary": "https://errata.engineering.redhat.com/advisory/165062",
"url": "https://errata.engineering.redhat.com/advisory/165062"
},
{
"category": "external",
"summary": "https://access.redhat.com/containers",
"url": "https://access.redhat.com/containers"
},
{
"category": "external",
"summary": "2392528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392528"
},
{
"category": "external",
"summary": "2415637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415637"
},
{
"category": "external",
"summary": "2423177",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423177"
},
{
"category": "external",
"summary": "2447085",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447085"
},
{
"category": "external",
"summary": "2448754",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448754"
},
{
"category": "external",
"summary": "2449006",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449006"
},
{
"category": "external",
"summary": "2449649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449649"
},
{
"category": "external",
"summary": "2452945",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452945"
},
{
"category": "external",
"summary": "2457932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2457932"
},
{
"category": "external",
"summary": "2458049",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458049"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_13812.json"
}
],
"title": "Red Hat Security Advisory: updated RHEL-8 based Middleware Containers container images",
"tracking": {
"current_release_date": "2026-05-21T14:14:28+00:00",
"generator": {
"date": "2026-05-21T14:14:28+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2026:13812",
"initial_release_date": "2026-05-05T17:47:50+00:00",
"revision_history": [
{
"date": "2026-05-05T17:47:50+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-05T17:47:50+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-21T14:14:28+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Middleware Containers for OpenShift",
"product": {
"name": "Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhosemc:1.0::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"product": {
"name": "rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"product_id": "rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-businesscentral-monitoring-rhel8\u0026tag=7.13.5-4.1777325677"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"product": {
"name": "rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"product_id": "rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-businesscentral-rhel8\u0026tag=7.13.5-4.1777325711"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"product": {
"name": "rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"product_id": "rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-controller-rhel8\u0026tag=7.13.5-4.1777325710"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"product": {
"name": "rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"product_id": "rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-dashbuilder-rhel8\u0026tag=7.13.5-3.1777325680"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"product": {
"name": "rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"product_id": "rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-kieserver-rhel8\u0026tag=7.13.5-4.1777325709"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"product": {
"name": "rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"product_id": "rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-process-migration-rhel8\u0026tag=7.13.5-4.1777325680"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64",
"product": {
"name": "rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64",
"product_id": "rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-smartrouter-rhel8\u0026tag=7.13.5-4.1777325708"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"product": {
"name": "rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"product_id": "rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-operator-bundle\u0026tag=7.13.5-40"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64"
},
"product_reference": "rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64"
},
"product_reference": "rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64"
},
"product_reference": "rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64"
},
"product_reference": "rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64"
},
"product_reference": "rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
},
"product_reference": "rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64"
},
"product_reference": "rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
},
"product_reference": "rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-9820",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2025-09-02T10:00:18.839000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2392528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_init() function that handles PKCS#11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the application using GnuTLS to crash or, in certain conditions, be exploited for code execution. As a result, systems or applications relying on GnuTLS may be vulnerable to a denial of service or local privilege escalation attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has assessed the severity of this vulnerability as Low, since exploitation requires local access or a malicious PKCS#11 token. While the impact is limited to denial of service or potential code execution in constrained scenarios, the vulnerability stems from a lack of proper bounds checking during token label handling in GnuTLS. Users should treat this as a security concern in environments where untrusted tokens may be introduced.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"known_not_affected": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-9820"
},
{
"category": "external",
"summary": "RHBZ#2392528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-9820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-9820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-9820"
},
{
"category": "external",
"summary": "https://gitlab.com/gnutls/gnutls/-/commit/1d56f96f6ab5034d677136b9d50b5a75dff0faf5",
"url": "https://gitlab.com/gnutls/gnutls/-/commit/1d56f96f6ab5034d677136b9d50b5a75dff0faf5"
},
{
"category": "external",
"summary": "https://gitlab.com/gnutls/gnutls/-/issues/1732",
"url": "https://gitlab.com/gnutls/gnutls/-/issues/1732"
},
{
"category": "external",
"summary": "https://www.gnutls.org/security-new.html#GNUTLS-SA-2025-11-18",
"url": "https://www.gnutls.org/security-new.html#GNUTLS-SA-2025-11-18"
}
],
"release_date": "2025-11-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-05T17:47:50+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:13812"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability. Applying the upstream patch or vendor-supplied security update is the recommended resolution.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function"
},
{
"cve": "CVE-2025-10158",
"cwe": {
"id": "CWE-129",
"name": "Improper Validation of Array Index"
},
"discovery_date": "2025-11-18T15:01:12.887910+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2415637"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw has been discovered in rsync. A malicious client acting as the receiver of an rsync file transfer can trigger an OOB read via a negative array index. The rsync client requires at least read access to the remote rsync module to trigger the issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rsync: Rsync: Out of bounds array access via negative index",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"known_not_affected": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-10158"
},
{
"category": "external",
"summary": "RHBZ#2415637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415637"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-10158",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-10158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-10158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-10158"
},
{
"category": "external",
"summary": "https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1",
"url": "https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1"
},
{
"category": "external",
"summary": "https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f",
"url": "https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f"
}
],
"release_date": "2025-11-18T14:24:19.210000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-05T17:47:50+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:13812"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rsync: Rsync: Out of bounds array access via negative index"
},
{
"cve": "CVE-2025-14831",
"cwe": {
"id": "CWE-407",
"name": "Inefficient Algorithmic Complexity"
},
"discovery_date": "2025-12-17T14:48:30.222000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2423177"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate for Red Hat. GnuTLS is susceptible to a denial of service attack due to excessive CPU and memory consumption. This occurs when processing specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs) during certificate verification.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"known_not_affected": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-14831"
},
{
"category": "external",
"summary": "RHBZ#2423177",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423177"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-14831",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-14831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14831"
},
{
"category": "external",
"summary": "https://gitlab.com/gnutls/gnutls/-/issues/1773",
"url": "https://gitlab.com/gnutls/gnutls/-/issues/1773"
}
],
"release_date": "2026-02-09T14:26:34.939000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-05T17:47:50+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:13812"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification"
},
{
"cve": "CVE-2026-3497",
"cwe": {
"id": "CWE-824",
"name": "Access of Uninitialized Pointer"
},
"discovery_date": "2026-03-12T19:01:37.007806+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2447085"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the OpenSSH GSSAPI (Generic Security Service Application Program Interface) delta patches, as included in various Linux distributions. A remote attacker could exploit this by sending an unexpected GSSAPI message type during the key exchange process. This occurs because the `sshpkt_disconnect()` function, when called on an error, does not properly terminate the process, leading to the continued execution of the program with uninitialized connection variables. Accessing these uninitialized variables can lead to undefined behavior, potentially resulting in information disclosure or a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "IMPORTANT: This vulnerability affects the OpenSSH GSSAPI delta as implemented in Red Hat Enterprise Linux and OpenShift Container Platform. An unauthenticated attacker could send a specially crafted GSSAPI message during key exchange, leading to the use of uninitialized variables and potentially undefined behavior. The severity of the impact is dependent on compiler hardening configurations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"known_not_affected": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-3497"
},
{
"category": "external",
"summary": "RHBZ#2447085",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447085"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-3497",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3497"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-3497",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3497"
},
{
"category": "external",
"summary": "https://ubuntu.com/security/CVE-2026-3497",
"url": "https://ubuntu.com/security/CVE-2026-3497"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2026/03/12/3",
"url": "https://www.openwall.com/lists/oss-security/2026/03/12/3"
}
],
"release_date": "2026-03-12T18:27:44.917000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-05T17:47:50+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:13812"
},
{
"category": "workaround",
"details": "To mitigate this issue, disable GSSAPI key exchange in the OpenSSH server configuration. This prevents the server from processing GSSAPI messages, eliminating the vulnerability\u0027s attack surface.\n\nEdit `/etc/ssh/sshd_config` and add or modify the line:\n```\nGSSAPIKeyExchange no\n```\n\nAfter saving the changes, restart the `sshd` service for the mitigation to take effect. This action will prevent users from authenticating via GSSAPI.\n\n```\n# systemctl restart sshd\n```",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables"
},
{
"acknowledgments": [
{
"names": [
"Elhanan Haenel"
]
}
],
"cve": "CVE-2026-4424",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2026-03-19T12:22:21.740000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449006"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "IMPORTANT: This heap out-of-bounds read vulnerability in libarchive\u0027s RAR archive processing logic can lead to information disclosure. A remote attacker can exploit this flaw by providing a specially crafted RAR archive, potentially revealing sensitive heap memory information without requiring authentication or user interaction on systems that process untrusted archives.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"known_not_affected": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4424"
},
{
"category": "external",
"summary": "RHBZ#2449006",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449006"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4424",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4424"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4424",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4424"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2898",
"url": "https://github.com/libarchive/libarchive/pull/2898"
}
],
"release_date": "2026-03-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-05T17:47:50+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:13812"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing"
},
{
"cve": "CVE-2026-4519",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2026-03-20T16:02:13.494105+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449649"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Python. The `webbrowser.open()` API, used to launch web browsers, does not properly sanitize input. This allows a remote attacker to craft a malicious URL containing leading dashes. When such a URL is opened, certain web browsers may interpret these dashes as command-line options, which could lead to unexpected behavior, information disclosure, or potentially arbitrary code execution, impacting the integrity of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: Python: Command-line option injection in webbrowser.open() via crafted URLs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"known_not_affected": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4519"
},
{
"category": "external",
"summary": "RHBZ#2449649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449649"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4519",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4519"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4519",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4519"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/143930",
"url": "https://github.com/python/cpython/issues/143930"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/143931",
"url": "https://github.com/python/cpython/pull/143931"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/AY5NDSS433JK56Q7Q5IS7B37QFZVVOUS/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/AY5NDSS433JK56Q7Q5IS7B37QFZVVOUS/"
}
],
"release_date": "2026-03-20T15:08:32.576000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-05T17:47:50+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:13812"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "python: Python: Command-line option injection in webbrowser.open() via crafted URLs"
},
{
"cve": "CVE-2026-4786",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2026-04-13T22:01:38.006388+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2458049"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Python webbrowser.open() API. If a specially crafted URL containing \"%action\" is processed, an attacker could bypass a previous mitigation for CVE-2026-4519. This bypass allows for command injection into the underlying shell, potentially leading to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw in the Python `webbrowser.open()` API allows for command injection and arbitrary code execution when processing specially crafted URLs containing \"%action\". This bypasses a previous mitigation for CVE-2026-4519.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"known_not_affected": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4786"
},
{
"category": "external",
"summary": "RHBZ#2458049",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458049"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4786",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4786"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4786",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4786"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/148169",
"url": "https://github.com/python/cpython/issues/148169"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/148170",
"url": "https://github.com/python/cpython/pull/148170"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5/"
}
],
"release_date": "2026-04-13T21:52:19.036000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-05T17:47:50+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:13812"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API"
},
{
"acknowledgments": [
{
"names": [
"Elhanan Haenel"
]
}
],
"cve": "CVE-2026-5121",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2026-03-30T07:40:25.358335+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2452945"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: libarchive: Arbitrary code execution via integer overflow in ISO9660 image processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: An integer overflow flaw in `libarchive` on 32-bit systems can lead to a heap buffer overflow. This vulnerability occurs when processing a specially crafted ISO9660 image, allowing an attacker to potentially execute arbitrary code. Red Hat Enterprise Linux 64-bit systems are not affected by this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"known_not_affected": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-5121"
},
{
"category": "external",
"summary": "RHBZ#2452945",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452945"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-5121",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-5121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5121"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-2vwv-vqpv-v8vc",
"url": "https://github.com/advisories/GHSA-2vwv-vqpv-v8vc"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2934",
"url": "https://github.com/libarchive/libarchive/pull/2934"
}
],
"release_date": "2026-03-30T07:44:15.222000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-05T17:47:50+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:13812"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid processing untrusted ISO9660 images with applications that utilize `libarchive`. Users should only extract or read content from ISO images obtained from trusted sources.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libarchive: libarchive: Arbitrary code execution via integer overflow in ISO9660 image processing"
},
{
"cve": "CVE-2026-6100",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2026-04-13T18:01:31.970255+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2457932"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Python\u0027s decompression modules, including `lzma.LZMADecompressor`, `bz2.BZ2Decompressor`, and `gzip.GzipFile`. This vulnerability, a use-after-free, can occur if a program attempts to re-use a decompression object after a memory allocation error, especially when the system is experiencing high memory usage. Exploitation of this flaw could potentially allow an attacker to execute arbitrary code or access sensitive data. The vulnerability is only present if the program re-uses decompressor instances across multiple decompression calls even after a `MemoryError` is raised during decompression. Using the helper functions to one-shot decompress data such as `lzma.decompress()`, `bz2.decompress()`, `gzip.decompress()`, and `zlib.decompress()` are not affected as a new decompressor instance is used per call. If the decompressor instance is not re-used after an error condition, this usage is similarly not vulnerable.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this flaw is somewhat mitigated on Red Hat platforms. By default processes are not executed with root user privilege and are limited in their scope which in turn limits the impact of this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"known_not_affected": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6100"
},
{
"category": "external",
"summary": "RHBZ#2457932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2457932"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6100",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6100"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6100",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6100"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/6a5f79c8d7bbf22b083b240910c7a8781a59437d",
"url": "https://github.com/python/cpython/commit/6a5f79c8d7bbf22b083b240910c7a8781a59437d"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/8fc66aef6d7b3ae58f43f5c66f9366cc8cbbfcd2",
"url": "https://github.com/python/cpython/commit/8fc66aef6d7b3ae58f43f5c66f9366cc8cbbfcd2"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/c3cf71c3366fe49acb776a639405c0eea6169c20",
"url": "https://github.com/python/cpython/commit/c3cf71c3366fe49acb776a639405c0eea6169c20"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/148395",
"url": "https://github.com/python/cpython/issues/148395"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/148396",
"url": "https://github.com/python/cpython/pull/148396"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/HTWB2Z6KT5QQX4RYEZAFININDHNOSIF3/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/HTWB2Z6KT5QQX4RYEZAFININDHNOSIF3/"
}
],
"release_date": "2026-04-13T17:15:47.606000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-05T17:47:50+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:13812"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules"
},
{
"cve": "CVE-2026-27135",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2026-03-18T19:02:13.823002+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448754"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in nghttp2. Due to missing internal state validation, the library continues to process incoming data even after a session has been terminated. A remote attacker could exploit this by sending a specially crafted HTTP/2 frame, leading to an assertion failure and a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"known_not_affected": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27135"
},
{
"category": "external",
"summary": "RHBZ#2448754",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448754"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27135",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27135"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27135",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27135"
},
{
"category": "external",
"summary": "https://github.com/nghttp2/nghttp2/commit/5c7df8fa815ac1004d9ecb9d1f7595c4d37f46e1",
"url": "https://github.com/nghttp2/nghttp2/commit/5c7df8fa815ac1004d9ecb9d1f7595c4d37f46e1"
},
{
"category": "external",
"summary": "https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6",
"url": "https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6"
}
],
"release_date": "2026-03-18T17:59:02.045000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-05T17:47:50+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:13812"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:92df715c896f06f6aa93b631bd62e3a146bad3cd08666cbab955d5cccdad0ea0_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:23b2eace9e0e381d6a8db37a11ebef3a092f7b14352b3a05187c7b9e78f6e60e_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:6a8c527be5f7140866dca164d60ab484d40f28281becd849907f8740a8a2a87d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:64efe627bd982759b2492ca8bf4d31315c68bf0262c0ca448a93335a11c81673_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:56ce30c3d224f65df05b066f39741797836687b4aeab7d7269bf5d28f45dc04d_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:3378f77e5a1823d197c755b020e725ff0e72784994c0a755347a0999cef65931_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:a4a34e29ddb6f9d60e64f19bac7fe49eb0b66fcbb6803cbc6563b77e7d7f9904_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:14df06eab56c17b7f718884c7379098ec3842ed99d6c5778dc2810ac9b1d4c17_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination"
}
]
}
RHSA-2026:6390
Vulnerability from csaf_redhat - Published: 2026-04-01 15:41 - Updated: 2026-05-05 20:28Summary
Red Hat Security Advisory: rsync security update
Severity
Moderate
Notes
Topic: An update for rsync is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool.
Security Fix(es):
* rsync: Rsync: Out of bounds array access via negative index (CVE-2025-10158)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
An out of bounds read flaw has been discovered in rsync. A malicious client acting as the receiver of an rsync file transfer can trigger an OOB read via a negative array index. The rsync client requires at least read access to the remote rsync module to trigger the issue.
4.3 (Medium)
Affected products
Fixed
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rsync is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool.\n\nSecurity Fix(es):\n\n* rsync: Rsync: Out of bounds array access via negative index (CVE-2025-10158)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:6390",
"url": "https://access.redhat.com/errata/RHSA-2026:6390"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2415637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415637"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6390.json"
}
],
"title": "Red Hat Security Advisory: rsync security update",
"tracking": {
"current_release_date": "2026-05-05T20:28:50+00:00",
"generator": {
"date": "2026-05-05T20:28:50+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2026:6390",
"initial_release_date": "2026-04-01T15:41:34+00:00",
"revision_history": [
{
"date": "2026-04-01T15:41:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-01T15:41:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-05T20:28:50+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"product": {
"name": "rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"product_id": "rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-daemon@3.2.5-3.el9_7.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rsync-rrsync-0:3.2.5-3.el9_7.2.noarch",
"product": {
"name": "rsync-rrsync-0:3.2.5-3.el9_7.2.noarch",
"product_id": "rsync-rrsync-0:3.2.5-3.el9_7.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-rrsync@3.2.5-3.el9_7.2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.2.5-3.el9_7.2.src",
"product": {
"name": "rsync-0:3.2.5-3.el9_7.2.src",
"product_id": "rsync-0:3.2.5-3.el9_7.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.2.5-3.el9_7.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.2.5-3.el9_7.2.aarch64",
"product": {
"name": "rsync-0:3.2.5-3.el9_7.2.aarch64",
"product_id": "rsync-0:3.2.5-3.el9_7.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.2.5-3.el9_7.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"product": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"product_id": "rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.2.5-3.el9_7.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"product": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"product_id": "rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.2.5-3.el9_7.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.2.5-3.el9_7.2.ppc64le",
"product": {
"name": "rsync-0:3.2.5-3.el9_7.2.ppc64le",
"product_id": "rsync-0:3.2.5-3.el9_7.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.2.5-3.el9_7.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"product": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"product_id": "rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.2.5-3.el9_7.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"product": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"product_id": "rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.2.5-3.el9_7.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.2.5-3.el9_7.2.x86_64",
"product": {
"name": "rsync-0:3.2.5-3.el9_7.2.x86_64",
"product_id": "rsync-0:3.2.5-3.el9_7.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.2.5-3.el9_7.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"product": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"product_id": "rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.2.5-3.el9_7.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"product": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"product_id": "rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.2.5-3.el9_7.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.2.5-3.el9_7.2.s390x",
"product": {
"name": "rsync-0:3.2.5-3.el9_7.2.s390x",
"product_id": "rsync-0:3.2.5-3.el9_7.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.2.5-3.el9_7.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"product": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"product_id": "rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.2.5-3.el9_7.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"product": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"product_id": "rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.2.5-3.el9_7.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.2.5-3.el9_7.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64"
},
"product_reference": "rsync-0:3.2.5-3.el9_7.2.aarch64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.2.5-3.el9_7.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le"
},
"product_reference": "rsync-0:3.2.5-3.el9_7.2.ppc64le",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.2.5-3.el9_7.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x"
},
"product_reference": "rsync-0:3.2.5-3.el9_7.2.s390x",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.2.5-3.el9_7.2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src"
},
"product_reference": "rsync-0:3.2.5-3.el9_7.2.src",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.2.5-3.el9_7.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64"
},
"product_reference": "rsync-0:3.2.5-3.el9_7.2.x86_64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-daemon-0:3.2.5-3.el9_7.2.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch"
},
"product_reference": "rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64"
},
"product_reference": "rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le"
},
"product_reference": "rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x"
},
"product_reference": "rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64"
},
"product_reference": "rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64"
},
"product_reference": "rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le"
},
"product_reference": "rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x"
},
"product_reference": "rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64"
},
"product_reference": "rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-rrsync-0:3.2.5-3.el9_7.2.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch"
},
"product_reference": "rsync-rrsync-0:3.2.5-3.el9_7.2.noarch",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.2.5-3.el9_7.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64"
},
"product_reference": "rsync-0:3.2.5-3.el9_7.2.aarch64",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.2.5-3.el9_7.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le"
},
"product_reference": "rsync-0:3.2.5-3.el9_7.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.2.5-3.el9_7.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x"
},
"product_reference": "rsync-0:3.2.5-3.el9_7.2.s390x",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.2.5-3.el9_7.2.src as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src"
},
"product_reference": "rsync-0:3.2.5-3.el9_7.2.src",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.2.5-3.el9_7.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64"
},
"product_reference": "rsync-0:3.2.5-3.el9_7.2.x86_64",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-daemon-0:3.2.5-3.el9_7.2.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch"
},
"product_reference": "rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64"
},
"product_reference": "rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le"
},
"product_reference": "rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x"
},
"product_reference": "rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64"
},
"product_reference": "rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64"
},
"product_reference": "rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le"
},
"product_reference": "rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x"
},
"product_reference": "rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64"
},
"product_reference": "rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-rrsync-0:3.2.5-3.el9_7.2.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch"
},
"product_reference": "rsync-rrsync-0:3.2.5-3.el9_7.2.noarch",
"relates_to_product_reference": "BaseOS-9.7.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-10158",
"cwe": {
"id": "CWE-129",
"name": "Improper Validation of Array Index"
},
"discovery_date": "2025-11-18T15:01:12.887910+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2415637"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw has been discovered in rsync. A malicious client acting as the receiver of an rsync file transfer can trigger an OOB read via a negative array index. The rsync client requires at least read access to the remote rsync module to trigger the issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rsync: Rsync: Out of bounds array access via negative index",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-10158"
},
{
"category": "external",
"summary": "RHBZ#2415637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415637"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-10158",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-10158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-10158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-10158"
},
{
"category": "external",
"summary": "https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1",
"url": "https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1"
},
{
"category": "external",
"summary": "https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f",
"url": "https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f"
}
],
"release_date": "2025-11-18T14:24:19.210000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-01T15:41:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6390"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src",
"AppStream-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"AppStream-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"AppStream-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.src",
"BaseOS-9.7.0.Z.MAIN:rsync-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-daemon-0:3.2.5-3.el9_7.2.noarch",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-debuginfo-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.aarch64",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.ppc64le",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.s390x",
"BaseOS-9.7.0.Z.MAIN:rsync-debugsource-0:3.2.5-3.el9_7.2.x86_64",
"BaseOS-9.7.0.Z.MAIN:rsync-rrsync-0:3.2.5-3.el9_7.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rsync: Rsync: Out of bounds array access via negative index"
}
]
}
RHSA-2026:6436
Vulnerability from csaf_redhat - Published: 2026-04-02 10:54 - Updated: 2026-05-05 20:35Summary
Red Hat Security Advisory: rsync security update
Severity
Moderate
Notes
Topic: An update for rsync is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool.
Security Fix(es):
* rsync: Rsync: Out of bounds array access via negative index (CVE-2025-10158)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
An out of bounds read flaw has been discovered in rsync. A malicious client acting as the receiver of an rsync file transfer can trigger an OOB read via a negative array index. The rsync client requires at least read access to the remote rsync module to trigger the issue.
4.3 (Medium)
Affected products
Fixed
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-daemon-0:3.1.3-24.el8_10.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rsync is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool.\n\nSecurity Fix(es):\n\n* rsync: Rsync: Out of bounds array access via negative index (CVE-2025-10158)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:6436",
"url": "https://access.redhat.com/errata/RHSA-2026:6436"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2415637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415637"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6436.json"
}
],
"title": "Red Hat Security Advisory: rsync security update",
"tracking": {
"current_release_date": "2026-05-05T20:35:27+00:00",
"generator": {
"date": "2026-05-05T20:35:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2026:6436",
"initial_release_date": "2026-04-02T10:54:57+00:00",
"revision_history": [
{
"date": "2026-04-02T10:54:57+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-02T10:54:57+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-05T20:35:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.1.3-24.el8_10.x86_64",
"product": {
"name": "rsync-0:3.1.3-24.el8_10.x86_64",
"product_id": "rsync-0:3.1.3-24.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.1.3-24.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.1.3-24.el8_10.x86_64",
"product": {
"name": "rsync-debugsource-0:3.1.3-24.el8_10.x86_64",
"product_id": "rsync-debugsource-0:3.1.3-24.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.1.3-24.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.x86_64",
"product": {
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.x86_64",
"product_id": "rsync-debuginfo-0:3.1.3-24.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.1.3-24.el8_10?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.1.3-24.el8_10.s390x",
"product": {
"name": "rsync-0:3.1.3-24.el8_10.s390x",
"product_id": "rsync-0:3.1.3-24.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.1.3-24.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.1.3-24.el8_10.s390x",
"product": {
"name": "rsync-debugsource-0:3.1.3-24.el8_10.s390x",
"product_id": "rsync-debugsource-0:3.1.3-24.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.1.3-24.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.s390x",
"product": {
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.s390x",
"product_id": "rsync-debuginfo-0:3.1.3-24.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.1.3-24.el8_10?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.1.3-24.el8_10.src",
"product": {
"name": "rsync-0:3.1.3-24.el8_10.src",
"product_id": "rsync-0:3.1.3-24.el8_10.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.1.3-24.el8_10?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.1.3-24.el8_10.aarch64",
"product": {
"name": "rsync-0:3.1.3-24.el8_10.aarch64",
"product_id": "rsync-0:3.1.3-24.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.1.3-24.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.1.3-24.el8_10.aarch64",
"product": {
"name": "rsync-debugsource-0:3.1.3-24.el8_10.aarch64",
"product_id": "rsync-debugsource-0:3.1.3-24.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.1.3-24.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.aarch64",
"product": {
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.aarch64",
"product_id": "rsync-debuginfo-0:3.1.3-24.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.1.3-24.el8_10?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.1.3-24.el8_10.ppc64le",
"product": {
"name": "rsync-0:3.1.3-24.el8_10.ppc64le",
"product_id": "rsync-0:3.1.3-24.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.1.3-24.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.1.3-24.el8_10.ppc64le",
"product": {
"name": "rsync-debugsource-0:3.1.3-24.el8_10.ppc64le",
"product_id": "rsync-debugsource-0:3.1.3-24.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.1.3-24.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.ppc64le",
"product": {
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.ppc64le",
"product_id": "rsync-debuginfo-0:3.1.3-24.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.1.3-24.el8_10?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-daemon-0:3.1.3-24.el8_10.noarch",
"product": {
"name": "rsync-daemon-0:3.1.3-24.el8_10.noarch",
"product_id": "rsync-daemon-0:3.1.3-24.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-daemon@3.1.3-24.el8_10?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.1.3-24.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.aarch64"
},
"product_reference": "rsync-0:3.1.3-24.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.1.3-24.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.ppc64le"
},
"product_reference": "rsync-0:3.1.3-24.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.1.3-24.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.s390x"
},
"product_reference": "rsync-0:3.1.3-24.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.1.3-24.el8_10.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.src"
},
"product_reference": "rsync-0:3.1.3-24.el8_10.src",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.1.3-24.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.x86_64"
},
"product_reference": "rsync-0:3.1.3-24.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-daemon-0:3.1.3-24.el8_10.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-daemon-0:3.1.3-24.el8_10.noarch"
},
"product_reference": "rsync-daemon-0:3.1.3-24.el8_10.noarch",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.aarch64"
},
"product_reference": "rsync-debuginfo-0:3.1.3-24.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.ppc64le"
},
"product_reference": "rsync-debuginfo-0:3.1.3-24.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.s390x"
},
"product_reference": "rsync-debuginfo-0:3.1.3-24.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.1.3-24.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.x86_64"
},
"product_reference": "rsync-debuginfo-0:3.1.3-24.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.1.3-24.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.aarch64"
},
"product_reference": "rsync-debugsource-0:3.1.3-24.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.1.3-24.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.ppc64le"
},
"product_reference": "rsync-debugsource-0:3.1.3-24.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.1.3-24.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.s390x"
},
"product_reference": "rsync-debugsource-0:3.1.3-24.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.1.3-24.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.x86_64"
},
"product_reference": "rsync-debugsource-0:3.1.3-24.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-10158",
"cwe": {
"id": "CWE-129",
"name": "Improper Validation of Array Index"
},
"discovery_date": "2025-11-18T15:01:12.887910+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2415637"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw has been discovered in rsync. A malicious client acting as the receiver of an rsync file transfer can trigger an OOB read via a negative array index. The rsync client requires at least read access to the remote rsync module to trigger the issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rsync: Rsync: Out of bounds array access via negative index",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-daemon-0:3.1.3-24.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-10158"
},
{
"category": "external",
"summary": "RHBZ#2415637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415637"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-10158",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-10158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-10158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-10158"
},
{
"category": "external",
"summary": "https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1",
"url": "https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1"
},
{
"category": "external",
"summary": "https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f",
"url": "https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f"
}
],
"release_date": "2025-11-18T14:24:19.210000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-02T10:54:57+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-daemon-0:3.1.3-24.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6436"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-daemon-0:3.1.3-24.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-0:3.1.3-24.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-daemon-0:3.1.3-24.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debuginfo-0:3.1.3-24.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:rsync-debugsource-0:3.1.3-24.el8_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rsync: Rsync: Out of bounds array access via negative index"
}
]
}
RHSA-2026:6825
Vulnerability from csaf_redhat - Published: 2026-04-07 16:44 - Updated: 2026-05-05 20:35Summary
Red Hat Security Advisory: rsync security update
Severity
Moderate
Notes
Topic: An update for rsync is now available for Red Hat Enterprise Linux 10.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool.
Security Fix(es):
* rsync: Rsync: Out of bounds array access via negative index (CVE-2025-10158)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
An out of bounds read flaw has been discovered in rsync. A malicious client acting as the receiver of an rsync file transfer can trigger an OOB read via a negative array index. The rsync client requires at least read access to the remote rsync module to trigger the issue.
4.3 (Medium)
Affected products
Fixed
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rsync is now available for Red Hat Enterprise Linux 10.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool.\n\nSecurity Fix(es):\n\n* rsync: Rsync: Out of bounds array access via negative index (CVE-2025-10158)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:6825",
"url": "https://access.redhat.com/errata/RHSA-2026:6825"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2415637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415637"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6825.json"
}
],
"title": "Red Hat Security Advisory: rsync security update",
"tracking": {
"current_release_date": "2026-05-05T20:35:29+00:00",
"generator": {
"date": "2026-05-05T20:35:29+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2026:6825",
"initial_release_date": "2026-04-07T16:44:04+00:00",
"revision_history": [
{
"date": "2026-04-07T16:44:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-07T16:44:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-05T20:35:29+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.1"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.1"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"product": {
"name": "rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"product_id": "rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-daemon@3.4.1-2.el10_1.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rsync-rrsync-0:3.4.1-2.el10_1.2.noarch",
"product": {
"name": "rsync-rrsync-0:3.4.1-2.el10_1.2.noarch",
"product_id": "rsync-rrsync-0:3.4.1-2.el10_1.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-rrsync@3.4.1-2.el10_1.2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.4.1-2.el10_1.2.src",
"product": {
"name": "rsync-0:3.4.1-2.el10_1.2.src",
"product_id": "rsync-0:3.4.1-2.el10_1.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.4.1-2.el10_1.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.4.1-2.el10_1.2.aarch64",
"product": {
"name": "rsync-0:3.4.1-2.el10_1.2.aarch64",
"product_id": "rsync-0:3.4.1-2.el10_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.4.1-2.el10_1.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"product": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"product_id": "rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.4.1-2.el10_1.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"product": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"product_id": "rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.4.1-2.el10_1.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.4.1-2.el10_1.2.ppc64le",
"product": {
"name": "rsync-0:3.4.1-2.el10_1.2.ppc64le",
"product_id": "rsync-0:3.4.1-2.el10_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.4.1-2.el10_1.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"product": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"product_id": "rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.4.1-2.el10_1.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"product": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"product_id": "rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.4.1-2.el10_1.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.4.1-2.el10_1.2.s390x",
"product": {
"name": "rsync-0:3.4.1-2.el10_1.2.s390x",
"product_id": "rsync-0:3.4.1-2.el10_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.4.1-2.el10_1.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"product": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"product_id": "rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.4.1-2.el10_1.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"product": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"product_id": "rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.4.1-2.el10_1.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-0:3.4.1-2.el10_1.2.x86_64",
"product": {
"name": "rsync-0:3.4.1-2.el10_1.2.x86_64",
"product_id": "rsync-0:3.4.1-2.el10_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync@3.4.1-2.el10_1.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"product": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"product_id": "rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debugsource@3.4.1-2.el10_1.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"product": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"product_id": "rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rsync-debuginfo@3.4.1-2.el10_1.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.4.1-2.el10_1.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64"
},
"product_reference": "rsync-0:3.4.1-2.el10_1.2.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.4.1-2.el10_1.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le"
},
"product_reference": "rsync-0:3.4.1-2.el10_1.2.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.4.1-2.el10_1.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x"
},
"product_reference": "rsync-0:3.4.1-2.el10_1.2.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.4.1-2.el10_1.2.src as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src"
},
"product_reference": "rsync-0:3.4.1-2.el10_1.2.src",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.4.1-2.el10_1.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64"
},
"product_reference": "rsync-0:3.4.1-2.el10_1.2.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-daemon-0:3.4.1-2.el10_1.2.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch"
},
"product_reference": "rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64"
},
"product_reference": "rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le"
},
"product_reference": "rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x"
},
"product_reference": "rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64"
},
"product_reference": "rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64"
},
"product_reference": "rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le"
},
"product_reference": "rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x"
},
"product_reference": "rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64"
},
"product_reference": "rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-rrsync-0:3.4.1-2.el10_1.2.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch"
},
"product_reference": "rsync-rrsync-0:3.4.1-2.el10_1.2.noarch",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.4.1-2.el10_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64"
},
"product_reference": "rsync-0:3.4.1-2.el10_1.2.aarch64",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.4.1-2.el10_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le"
},
"product_reference": "rsync-0:3.4.1-2.el10_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.4.1-2.el10_1.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x"
},
"product_reference": "rsync-0:3.4.1-2.el10_1.2.s390x",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.4.1-2.el10_1.2.src as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src"
},
"product_reference": "rsync-0:3.4.1-2.el10_1.2.src",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-0:3.4.1-2.el10_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64"
},
"product_reference": "rsync-0:3.4.1-2.el10_1.2.x86_64",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-daemon-0:3.4.1-2.el10_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch"
},
"product_reference": "rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64"
},
"product_reference": "rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le"
},
"product_reference": "rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x"
},
"product_reference": "rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64"
},
"product_reference": "rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64"
},
"product_reference": "rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le"
},
"product_reference": "rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x"
},
"product_reference": "rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64"
},
"product_reference": "rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"relates_to_product_reference": "BaseOS-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-rrsync-0:3.4.1-2.el10_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch"
},
"product_reference": "rsync-rrsync-0:3.4.1-2.el10_1.2.noarch",
"relates_to_product_reference": "BaseOS-10.1.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-10158",
"cwe": {
"id": "CWE-129",
"name": "Improper Validation of Array Index"
},
"discovery_date": "2025-11-18T15:01:12.887910+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2415637"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds read flaw has been discovered in rsync. A malicious client acting as the receiver of an rsync file transfer can trigger an OOB read via a negative array index. The rsync client requires at least read access to the remote rsync module to trigger the issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rsync: Rsync: Out of bounds array access via negative index",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-10158"
},
{
"category": "external",
"summary": "RHBZ#2415637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415637"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-10158",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-10158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-10158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-10158"
},
{
"category": "external",
"summary": "https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1",
"url": "https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1"
},
{
"category": "external",
"summary": "https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f",
"url": "https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f"
}
],
"release_date": "2025-11-18T14:24:19.210000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T16:44:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6825"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src",
"AppStream-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"AppStream-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"AppStream-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.src",
"BaseOS-10.1.Z:rsync-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-daemon-0:3.4.1-2.el10_1.2.noarch",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-debuginfo-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.aarch64",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.ppc64le",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.s390x",
"BaseOS-10.1.Z:rsync-debugsource-0:3.4.1-2.el10_1.2.x86_64",
"BaseOS-10.1.Z:rsync-rrsync-0:3.4.1-2.el10_1.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rsync: Rsync: Out of bounds array access via negative index"
}
]
}
SUSE-SU-2025:4511-1
Vulnerability from csaf_suse - Published: 2025-12-23 12:14 - Updated: 2025-12-23 12:14Summary
Security update for rsync
Severity
Moderate
Notes
Title of the patch: Security update for rsync
Description of the patch: This update for rsync fixes the following issues:
- CVE-2025-10158: Fixed out-of-bounds array access via negative index (bsc#1254441)
Patchnames: SUSE-2025-4511,SUSE-SLE-Module-Basesystem-15-SP7-2025-4511,openSUSE-SLE-15.6-2025-4511
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for rsync",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for rsync fixes the following issues:\n\n- CVE-2025-10158: Fixed out-of-bounds array access via negative index (bsc#1254441)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-4511,SUSE-SLE-Module-Basesystem-15-SP7-2025-4511,openSUSE-SLE-15.6-2025-4511",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_4511-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:4511-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20254511-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:4511-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023645.html"
},
{
"category": "self",
"summary": "SUSE Bug 1254441",
"url": "https://bugzilla.suse.com/1254441"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-10158 page",
"url": "https://www.suse.com/security/cve/CVE-2025-10158/"
}
],
"title": "Security update for rsync",
"tracking": {
"current_release_date": "2025-12-23T12:14:35Z",
"generator": {
"date": "2025-12-23T12:14:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:4511-1",
"initial_release_date": "2025-12-23T12:14:35Z",
"revision_history": [
{
"date": "2025-12-23T12:14:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.2.7-150600.3.14.1.aarch64",
"product": {
"name": "rsync-3.2.7-150600.3.14.1.aarch64",
"product_id": "rsync-3.2.7-150600.3.14.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.2.7-150600.3.14.1.i586",
"product": {
"name": "rsync-3.2.7-150600.3.14.1.i586",
"product_id": "rsync-3.2.7-150600.3.14.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.2.7-150600.3.14.1.ppc64le",
"product": {
"name": "rsync-3.2.7-150600.3.14.1.ppc64le",
"product_id": "rsync-3.2.7-150600.3.14.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.2.7-150600.3.14.1.s390x",
"product": {
"name": "rsync-3.2.7-150600.3.14.1.s390x",
"product_id": "rsync-3.2.7-150600.3.14.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.2.7-150600.3.14.1.x86_64",
"product": {
"name": "rsync-3.2.7-150600.3.14.1.x86_64",
"product_id": "rsync-3.2.7-150600.3.14.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.7-150600.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.aarch64"
},
"product_reference": "rsync-3.2.7-150600.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.7-150600.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.ppc64le"
},
"product_reference": "rsync-3.2.7-150600.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.7-150600.3.14.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.s390x"
},
"product_reference": "rsync-3.2.7-150600.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.7-150600.3.14.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.x86_64"
},
"product_reference": "rsync-3.2.7-150600.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.7-150600.3.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.aarch64"
},
"product_reference": "rsync-3.2.7-150600.3.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.7-150600.3.14.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.ppc64le"
},
"product_reference": "rsync-3.2.7-150600.3.14.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.7-150600.3.14.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.s390x"
},
"product_reference": "rsync-3.2.7-150600.3.14.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.7-150600.3.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.x86_64"
},
"product_reference": "rsync-3.2.7-150600.3.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-10158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-10158"
}
],
"notes": [
{
"category": "general",
"text": "A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The \n\nmalicious \n\nrsync client requires at least read access to the remote rsync module in order to trigger the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.x86_64",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.aarch64",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.ppc64le",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.s390x",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-10158",
"url": "https://www.suse.com/security/cve/CVE-2025-10158"
},
{
"category": "external",
"summary": "SUSE Bug 1254441 for CVE-2025-10158",
"url": "https://bugzilla.suse.com/1254441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.x86_64",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.aarch64",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.ppc64le",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.s390x",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1.x86_64",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.aarch64",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.ppc64le",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.s390x",
"openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-23T12:14:35Z",
"details": "moderate"
}
],
"title": "CVE-2025-10158"
}
]
}
SUSE-SU-2026:0005-1
Vulnerability from csaf_suse - Published: 2026-01-02 12:30 - Updated: 2026-01-02 12:30Summary
Security update for rsync
Severity
Moderate
Notes
Title of the patch: Security update for rsync
Description of the patch: This update for rsync fixes the following issues:
- CVE-2025-10158: Fixed out of bounds array access via negative index (bsc#1254441)
Patchnames: SUSE-2026-5,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-5
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:rsync-3.1.3-3.34.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for rsync",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for rsync fixes the following issues:\n\n- CVE-2025-10158: Fixed out of bounds array access via negative index (bsc#1254441)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-5,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-5",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_0005-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:0005-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260005-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:0005-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023665.html"
},
{
"category": "self",
"summary": "SUSE Bug 1254441",
"url": "https://bugzilla.suse.com/1254441"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-10158 page",
"url": "https://www.suse.com/security/cve/CVE-2025-10158/"
}
],
"title": "Security update for rsync",
"tracking": {
"current_release_date": "2026-01-02T12:30:51Z",
"generator": {
"date": "2026-01-02T12:30:51Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:0005-1",
"initial_release_date": "2026-01-02T12:30:51Z",
"revision_history": [
{
"date": "2026-01-02T12:30:51Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.1.3-3.34.1.aarch64",
"product": {
"name": "rsync-3.1.3-3.34.1.aarch64",
"product_id": "rsync-3.1.3-3.34.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.1.3-3.34.1.i586",
"product": {
"name": "rsync-3.1.3-3.34.1.i586",
"product_id": "rsync-3.1.3-3.34.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.1.3-3.34.1.ppc64le",
"product": {
"name": "rsync-3.1.3-3.34.1.ppc64le",
"product_id": "rsync-3.1.3-3.34.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.1.3-3.34.1.s390",
"product": {
"name": "rsync-3.1.3-3.34.1.s390",
"product_id": "rsync-3.1.3-3.34.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.1.3-3.34.1.s390x",
"product": {
"name": "rsync-3.1.3-3.34.1.s390x",
"product_id": "rsync-3.1.3-3.34.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.1.3-3.34.1.x86_64",
"product": {
"name": "rsync-3.1.3-3.34.1.x86_64",
"product_id": "rsync-3.1.3-3.34.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss-extended-security:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.1.3-3.34.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:rsync-3.1.3-3.34.1.x86_64"
},
"product_reference": "rsync-3.1.3-3.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-10158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-10158"
}
],
"notes": [
{
"category": "general",
"text": "A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The \n\nmalicious \n\nrsync client requires at least read access to the remote rsync module in order to trigger the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:rsync-3.1.3-3.34.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-10158",
"url": "https://www.suse.com/security/cve/CVE-2025-10158"
},
{
"category": "external",
"summary": "SUSE Bug 1254441 for CVE-2025-10158",
"url": "https://bugzilla.suse.com/1254441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:rsync-3.1.3-3.34.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:rsync-3.1.3-3.34.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-02T12:30:51Z",
"details": "moderate"
}
],
"title": "CVE-2025-10158"
}
]
}
SUSE-SU-2026:0041-1
Vulnerability from csaf_suse - Published: 2026-01-06 10:33 - Updated: 2026-01-06 10:33Summary
Security update for rsync
Severity
Moderate
Notes
Title of the patch: Security update for rsync
Description of the patch: This update for rsync fixes the following issues:
- CVE-2025-10158: Fixed out of bounds array access via negative index (bsc#1254441)
Patchnames: SUSE-2026-41,SUSE-SLE-Micro-5.3-2026-41,SUSE-SLE-Micro-5.4-2026-41,SUSE-SLE-Micro-5.5-2026-41
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for rsync",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for rsync fixes the following issues:\n\n- CVE-2025-10158: Fixed out of bounds array access via negative index (bsc#1254441)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-41,SUSE-SLE-Micro-5.3-2026-41,SUSE-SLE-Micro-5.4-2026-41,SUSE-SLE-Micro-5.5-2026-41",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_0041-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:0041-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260041-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:0041-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023689.html"
},
{
"category": "self",
"summary": "SUSE Bug 1254441",
"url": "https://bugzilla.suse.com/1254441"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-10158 page",
"url": "https://www.suse.com/security/cve/CVE-2025-10158/"
}
],
"title": "Security update for rsync",
"tracking": {
"current_release_date": "2026-01-06T10:33:33Z",
"generator": {
"date": "2026-01-06T10:33:33Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:0041-1",
"initial_release_date": "2026-01-06T10:33:33Z",
"revision_history": [
{
"date": "2026-01-06T10:33:33Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.2.3-150400.3.26.1.aarch64",
"product": {
"name": "rsync-3.2.3-150400.3.26.1.aarch64",
"product_id": "rsync-3.2.3-150400.3.26.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.2.3-150400.3.26.1.i586",
"product": {
"name": "rsync-3.2.3-150400.3.26.1.i586",
"product_id": "rsync-3.2.3-150400.3.26.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.2.3-150400.3.26.1.ppc64le",
"product": {
"name": "rsync-3.2.3-150400.3.26.1.ppc64le",
"product_id": "rsync-3.2.3-150400.3.26.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.2.3-150400.3.26.1.s390x",
"product": {
"name": "rsync-3.2.3-150400.3.26.1.s390x",
"product_id": "rsync-3.2.3-150400.3.26.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rsync-3.2.3-150400.3.26.1.x86_64",
"product": {
"name": "rsync-3.2.3-150400.3.26.1.x86_64",
"product_id": "rsync-3.2.3-150400.3.26.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.3-150400.3.26.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.aarch64"
},
"product_reference": "rsync-3.2.3-150400.3.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.3-150400.3.26.1.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.s390x"
},
"product_reference": "rsync-3.2.3-150400.3.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.3-150400.3.26.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.x86_64"
},
"product_reference": "rsync-3.2.3-150400.3.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.3-150400.3.26.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.aarch64"
},
"product_reference": "rsync-3.2.3-150400.3.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.3-150400.3.26.1.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.s390x"
},
"product_reference": "rsync-3.2.3-150400.3.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.3-150400.3.26.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.x86_64"
},
"product_reference": "rsync-3.2.3-150400.3.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.3-150400.3.26.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.aarch64"
},
"product_reference": "rsync-3.2.3-150400.3.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.3-150400.3.26.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.ppc64le"
},
"product_reference": "rsync-3.2.3-150400.3.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.3-150400.3.26.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.s390x"
},
"product_reference": "rsync-3.2.3-150400.3.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rsync-3.2.3-150400.3.26.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.x86_64"
},
"product_reference": "rsync-3.2.3-150400.3.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-10158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-10158"
}
],
"notes": [
{
"category": "general",
"text": "A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The \n\nmalicious \n\nrsync client requires at least read access to the remote rsync module in order to trigger the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-10158",
"url": "https://www.suse.com/security/cve/CVE-2025-10158"
},
{
"category": "external",
"summary": "SUSE Bug 1254441 for CVE-2025-10158",
"url": "https://bugzilla.suse.com/1254441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rsync-3.2.3-150400.3.26.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rsync-3.2.3-150400.3.26.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rsync-3.2.3-150400.3.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-06T10:33:33Z",
"details": "moderate"
}
],
"title": "CVE-2025-10158"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…