Vulnerability-Lookup

RHSA-2026:12740

Vulnerability from csaf_redhat - Published: 2026-05-01 14:05 - Updated: 2026-05-01 18:39

Summary

Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

Severity

Moderate

Notes

Topic: An update for Red Hat Hardened Images RPMs is now available.

Details: This update includes the following RPMs: glibc: * compat-libpthread-nonshared-2.42-12.hum1 (aarch64, x86_64) * glibc-2.42-12.hum1 (aarch64, x86_64) * glibc-all-langpacks-2.42-12.hum1 (aarch64, x86_64) * glibc-benchtests-2.42-12.hum1 (aarch64, x86_64) * glibc-common-2.42-12.hum1 (aarch64, x86_64) * glibc-devel-2.42-12.hum1 (aarch64, x86_64) * glibc-doc-2.42-12.hum1 (noarch) * glibc-gconv-extra-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-aa-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-af-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-agr-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ak-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-am-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-an-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-anp-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ar-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-as-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ast-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ayc-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-az-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-be-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-bem-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ber-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-bg-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-bhb-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-bho-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-bi-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-bn-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-bo-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-br-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-brx-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-bs-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-byn-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ca-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ce-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-chr-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ckb-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-cmn-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-crh-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-cs-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-csb-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-cv-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-cy-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-da-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-de-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-doi-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-dsb-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-dv-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-dz-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-el-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-en-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-eo-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-es-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-et-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-eu-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-fa-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ff-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-fi-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-fil-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-fo-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-fr-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-fur-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-fy-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ga-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-gbm-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-gd-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-gez-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-gl-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-gu-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-gv-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ha-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-hak-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-he-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-hi-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-hif-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-hne-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-hr-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-hsb-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ht-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-hu-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-hy-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ia-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-id-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ig-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ik-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-is-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-it-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-iu-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ja-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ka-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-kab-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-kk-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-kl-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-km-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-kn-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ko-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-kok-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ks-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ku-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-kv-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-kw-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ky-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-lb-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-lg-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-li-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-lij-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ln-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-lo-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-lt-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ltg-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-lv-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-lzh-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mag-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mai-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mdf-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mfe-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mg-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mhr-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mi-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-miq-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mjw-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mk-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ml-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mn-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mni-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mnw-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mr-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ms-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-mt-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-my-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-nan-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-nb-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-nds-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ne-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-nhn-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-niu-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-nl-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-nn-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-nr-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-nso-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-oc-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-om-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-or-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-os-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-pa-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-pap-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-pl-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ps-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-pt-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-quz-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-raj-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-rif-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ro-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ru-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-rw-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sa-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sah-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sat-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sc-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-scn-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sd-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-se-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sgs-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-shn-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-shs-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-si-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sid-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sk-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sl-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sm-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-so-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sq-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sr-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ss-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ssy-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-st-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-su-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sv-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-sw-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-syr-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-szl-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ta-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-tcy-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-te-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-tg-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-th-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-the-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ti-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-tig-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-tk-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-tl-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-tn-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-to-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-tok-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-tpi-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-tr-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ts-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-tt-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ug-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-uk-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-unm-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ur-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-uz-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-ve-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-vi-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-wa-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-wae-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-wal-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-wo-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-xh-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-yi-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-yo-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-yue-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-yuw-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-zgh-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-zh-2.42-12.hum1 (aarch64, x86_64) * glibc-langpack-zu-2.42-12.hum1 (aarch64, x86_64) * glibc-locale-source-2.42-12.hum1 (aarch64, x86_64) * glibc-minimal-langpack-2.42-12.hum1 (aarch64, x86_64) * glibc-nss-devel-2.42-12.hum1 (aarch64, x86_64) * glibc-static-2.42-12.hum1 (aarch64, x86_64) * glibc-utils-2.42-12.hum1 (aarch64, x86_64) * glibc32-2.42-12.hum1 (x86_64) * libnsl-2.42-12.hum1 (aarch64, x86_64) * nss_db-2.42-12.hum1 (aarch64, x86_64) * nss_hesiod-2.42-12.hum1 (aarch64, x86_64) * sysroot-aarch64-fc43-glibc-2.42-12.hum1 (noarch) * sysroot-x86_64-fc43-glibc-2.42-12.hum1 (noarch) * glibc-2.42-12.hum1.src (src)

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2026-4046

A flaw was found in glibc, the GNU C Library. A remote attacker could exploit this vulnerability by providing specially crafted inputs using the IBM1390 or IBM1399 character sets to the `iconv()` function. This could lead to an assertion failure, causing the application to crash and resulting in a Denial of Service (DoS).

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-617 - Reachable Assertion

Vendor Fix For details on how to apply this update, which includes the changes described in this advisory, refer to: https://images.redhat.com/ https://access.redhat.com/errata/RHSA-2026:12740

Workaround Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

CVE-2026-5435

A flaw was found in glibc, the GNU C Library. Specifically, deprecated functions responsible for printing TSIG (Transaction Signature) records fail to properly manage memory buffers. This oversight can lead to an out-of-bounds write when processing specially crafted TSIG records. An attacker could exploit this to cause a denial of service or potentially execute arbitrary code.

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:H

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Vendor Fix For details on how to apply this update, which includes the changes described in this advisory, refer to: https://images.redhat.com/ https://access.redhat.com/errata/RHSA-2026:12740

CVE-2026-5450

A flaw was found in glibc (GNU C Library). This vulnerability occurs when an application uses the `scanf` family of functions with a `%mc` format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination can lead to a one-byte heap buffer overflow, potentially allowing an attacker to corrupt memory.

5.0 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:H

CWE-131 - Incorrect Calculation of Buffer Size

Vendor Fix For details on how to apply this update, which includes the changes described in this advisory, refer to: https://images.redhat.com/ https://access.redhat.com/errata/RHSA-2026:12740

CVE-2026-5928

A flaw was found in glibc (GNU C Library). When the `ungetwc` function is called on a file stream using wide characters with specific overlapping single-byte and multi-byte encodings, it may attempt to read data outside of its allocated buffer. This can lead to the unintentional disclosure of sensitive information from memory or cause the program to crash, resulting in a denial of service.

5.0 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:H

CWE-125 - Out-of-bounds Read

Vendor Fix For details on how to apply this update, which includes the changes described in this advisory, refer to: https://images.redhat.com/ https://access.redhat.com/errata/RHSA-2026:12740

References

URL

Category

	https://access.redhat.com/errata/RHSA-2026:12740	self
	https://images.redhat.com/	external
	https://access.redhat.com/security/cve/CVE-2026-5435	external
	https://access.redhat.com/security/updates/classi…	external
	https://access.redhat.com/security/cve/CVE-2026-5928	external
	https://access.redhat.com/security/cve/CVE-2026-5450	external
	https://access.redhat.com/security/cve/CVE-2026-4046	external
	https://security.access.redhat.com/data/csaf/v2/a…	self
	https://access.redhat.com/security/cve/CVE-2026-4046	self
	https://bugzilla.redhat.com/show_bug.cgi?id=2453117	external
	https://www.cve.org/CVERecord?id=CVE-2026-4046	external
	https://nvd.nist.gov/vuln/detail/CVE-2026-4046	external
	https://packages.fedoraproject.org/pkgs/glibc/gli…	external
	https://sourceware.org/bugzilla/show_bug.cgi?id=33980	external
	https://sourceware.org/git/?p=glibc.git;a=blob_pl…	external
	https://access.redhat.com/security/cve/CVE-2026-5435	self
	https://bugzilla.redhat.com/show_bug.cgi?id=2463465	external
	https://www.cve.org/CVERecord?id=CVE-2026-5435	external
	https://nvd.nist.gov/vuln/detail/CVE-2026-5435	external
	https://inbox.sourceware.org/libc-announce/7a655d…	external
	https://sourceware.org/bugzilla/show_bug.cgi?id=34033	external
	https://access.redhat.com/security/cve/CVE-2026-5450	self
	https://bugzilla.redhat.com/show_bug.cgi?id=2459853	external
	https://www.cve.org/CVERecord?id=CVE-2026-5450	external
	https://nvd.nist.gov/vuln/detail/CVE-2026-5450	external
	https://inbox.sourceware.org/libc-announce/b11f00…	external
	https://nvd.nist.gov/vuln/detail/CVE-2026-5450#ra…	external
	https://sourceware.org/bugzilla/show_bug.cgi?id=C…	external
	https://access.redhat.com/security/cve/CVE-2026-5928	self
	https://bugzilla.redhat.com/show_bug.cgi?id=2459854	external
	https://www.cve.org/CVERecord?id=CVE-2026-5928	external
	https://nvd.nist.gov/vuln/detail/CVE-2026-5928	external
	https://sourceware.org/bugzilla/show_bug.cgi?id=33998	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for Red Hat Hardened Images RPMs is now available.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "This update includes the following RPMs:\n\nglibc:\n  * compat-libpthread-nonshared-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-all-langpacks-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-benchtests-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-common-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-devel-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-doc-2.42-12.hum1 (noarch)\n  * glibc-gconv-extra-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-aa-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-af-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-agr-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ak-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-am-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-an-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-anp-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ar-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-as-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ast-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ayc-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-az-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-be-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-bem-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ber-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-bg-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-bhb-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-bho-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-bi-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-bn-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-bo-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-br-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-brx-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-bs-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-byn-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ca-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ce-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-chr-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ckb-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-cmn-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-crh-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-cs-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-csb-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-cv-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-cy-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-da-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-de-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-doi-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-dsb-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-dv-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-dz-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-el-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-en-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-eo-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-es-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-et-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-eu-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-fa-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ff-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-fi-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-fil-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-fo-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-fr-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-fur-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-fy-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ga-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-gbm-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-gd-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-gez-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-gl-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-gu-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-gv-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ha-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-hak-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-he-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-hi-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-hif-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-hne-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-hr-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-hsb-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ht-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-hu-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-hy-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ia-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-id-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ig-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ik-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-is-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-it-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-iu-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ja-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ka-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-kab-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-kk-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-kl-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-km-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-kn-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ko-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-kok-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ks-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ku-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-kv-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-kw-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ky-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-lb-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-lg-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-li-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-lij-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ln-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-lo-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-lt-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ltg-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-lv-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-lzh-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mag-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mai-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mdf-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mfe-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mg-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mhr-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mi-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-miq-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mjw-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mk-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ml-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mn-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mni-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mnw-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mr-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ms-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-mt-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-my-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-nan-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-nb-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-nds-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ne-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-nhn-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-niu-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-nl-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-nn-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-nr-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-nso-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-oc-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-om-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-or-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-os-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-pa-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-pap-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-pl-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ps-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-pt-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-quz-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-raj-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-rif-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ro-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ru-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-rw-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sa-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sah-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sat-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sc-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-scn-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sd-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-se-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sgs-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-shn-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-shs-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-si-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sid-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sk-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sl-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sm-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-so-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sq-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sr-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ss-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ssy-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-st-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-su-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sv-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-sw-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-syr-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-szl-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ta-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-tcy-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-te-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-tg-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-th-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-the-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ti-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-tig-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-tk-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-tl-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-tn-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-to-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-tok-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-tpi-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-tr-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ts-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-tt-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ug-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-uk-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-unm-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ur-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-uz-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-ve-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-vi-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-wa-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-wae-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-wal-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-wo-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-xh-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-yi-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-yo-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-yue-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-yuw-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-zgh-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-zh-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-langpack-zu-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-locale-source-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-minimal-langpack-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-nss-devel-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-static-2.42-12.hum1 (aarch64, x86_64)\n  * glibc-utils-2.42-12.hum1 (aarch64, x86_64)\n  * glibc32-2.42-12.hum1 (x86_64)\n  * libnsl-2.42-12.hum1 (aarch64, x86_64)\n  * nss_db-2.42-12.hum1 (aarch64, x86_64)\n  * nss_hesiod-2.42-12.hum1 (aarch64, x86_64)\n  * sysroot-aarch64-fc43-glibc-2.42-12.hum1 (noarch)\n  * sysroot-x86_64-fc43-glibc-2.42-12.hum1 (noarch)\n  * glibc-2.42-12.hum1.src (src)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:12740",
        "url": "https://access.redhat.com/errata/RHSA-2026:12740"
      },
      {
        "category": "external",
        "summary": "https://images.redhat.com/",
        "url": "https://images.redhat.com/"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-5435",
        "url": "https://access.redhat.com/security/cve/CVE-2026-5435"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-5928",
        "url": "https://access.redhat.com/security/cve/CVE-2026-5928"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-5450",
        "url": "https://access.redhat.com/security/cve/CVE-2026-5450"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-4046",
        "url": "https://access.redhat.com/security/cve/CVE-2026-4046"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_12740.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update",
    "tracking": {
      "current_release_date": "2026-05-01T18:39:02+00:00",
      "generator": {
        "date": "2026-05-01T18:39:02+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.7"
        }
      },
      "id": "RHSA-2026:12740",
      "initial_release_date": "2026-05-01T14:05:33+00:00",
      "revision_history": [
        {
          "date": "2026-05-01T14:05:33+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-01T14:37:54+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-01T18:39:02+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Hardened Images",
                "product": {
                  "name": "Red Hat Hardened Images",
                  "product_id": "Red Hat Hardened Images",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:hummingbird:1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Hardened Images"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "glibc-main@aarch64",
                "product": {
                  "name": "glibc-main@aarch64",
                  "product_id": "glibc-main@aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/compat-libpthread-nonshared@2.42-12.hum1?arch=aarch64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-aarch64-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "glibc-main@x86_64",
                "product": {
                  "name": "glibc-main@x86_64",
                  "product_id": "glibc-main@x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/compat-libpthread-nonshared@2.42-12.hum1?arch=x86_64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "glibc-main@src",
                "product": {
                  "name": "glibc-main@src",
                  "product_id": "glibc-main@src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/glibc@2.42-12.hum1?arch=src\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-source-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "glibc-main@noarch",
                "product": {
                  "name": "glibc-main@noarch",
                  "product_id": "glibc-main@noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/glibc-doc@2.42-12.hum1?arch=noarch\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "glibc-main@aarch64 as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:glibc-main@aarch64"
        },
        "product_reference": "glibc-main@aarch64",
        "relates_to_product_reference": "Red Hat Hardened Images"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "glibc-main@noarch as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:glibc-main@noarch"
        },
        "product_reference": "glibc-main@noarch",
        "relates_to_product_reference": "Red Hat Hardened Images"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "glibc-main@src as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:glibc-main@src"
        },
        "product_reference": "glibc-main@src",
        "relates_to_product_reference": "Red Hat Hardened Images"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "glibc-main@x86_64 as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:glibc-main@x86_64"
        },
        "product_reference": "glibc-main@x86_64",
        "relates_to_product_reference": "Red Hat Hardened Images"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-4046",
      "cwe": {
        "id": "CWE-617",
        "name": "Reachable Assertion"
      },
      "discovery_date": "2026-03-30T18:01:19.326391+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2453117"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in glibc, the GNU C Library. A remote attacker could exploit this vulnerability by providing specially crafted inputs using the IBM1390 or IBM1399 character sets to the `iconv()` function. This could lead to an assertion failure, causing the application to crash and resulting in a Denial of Service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "glibc: glibc: Denial of Service via iconv() function with specific character sets",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The availability impact posed by this flaw is limited on Red Hat systems. The affected iconv() function has been separated out into a an independent package (`glibc-gconv-extra`) and is not used in system critical software. Some applications do rely on this package and may be affected, but they are either interactive applications or are configured to restart in the event of a crash.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:glibc-main@aarch64",
          "Red Hat Hardened Images:glibc-main@noarch",
          "Red Hat Hardened Images:glibc-main@src",
          "Red Hat Hardened Images:glibc-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-4046"
        },
        {
          "category": "external",
          "summary": "RHBZ#2453117",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2453117"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-4046",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-4046"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4046",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4046"
        },
        {
          "category": "external",
          "summary": "https://packages.fedoraproject.org/pkgs/glibc/glibc-gconv-extra/",
          "url": "https://packages.fedoraproject.org/pkgs/glibc/glibc-gconv-extra/"
        },
        {
          "category": "external",
          "summary": "https://sourceware.org/bugzilla/show_bug.cgi?id=33980",
          "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33980"
        },
        {
          "category": "external",
          "summary": "https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0007;hb=HEAD",
          "url": "https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0007;hb=HEAD"
        }
      ],
      "release_date": "2026-03-30T17:16:11.021000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-01T14:05:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:glibc-main@aarch64",
            "Red Hat Hardened Images:glibc-main@noarch",
            "Red Hat Hardened Images:glibc-main@src",
            "Red Hat Hardened Images:glibc-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:12740"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat Hardened Images:glibc-main@aarch64",
            "Red Hat Hardened Images:glibc-main@noarch",
            "Red Hat Hardened Images:glibc-main@src",
            "Red Hat Hardened Images:glibc-main@x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:glibc-main@aarch64",
            "Red Hat Hardened Images:glibc-main@noarch",
            "Red Hat Hardened Images:glibc-main@src",
            "Red Hat Hardened Images:glibc-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "glibc: glibc: Denial of Service via iconv() function with specific character sets"
    },
    {
      "cve": "CVE-2026-5435",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2026-04-28T14:01:44.684432+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2463465"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in glibc, the GNU C Library. Specifically, deprecated functions responsible for printing TSIG (Transaction Signature) records fail to properly manage memory buffers. This oversight can lead to an out-of-bounds write when processing specially crafted TSIG records. An attacker could exploit this to cause a denial of service or potentially execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "glibc: glibc: Out-of-bounds write via TSIG record processing",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:glibc-main@aarch64",
          "Red Hat Hardened Images:glibc-main@noarch",
          "Red Hat Hardened Images:glibc-main@src",
          "Red Hat Hardened Images:glibc-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-5435"
        },
        {
          "category": "external",
          "summary": "RHBZ#2463465",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463465"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-5435",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-5435"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5435",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5435"
        },
        {
          "category": "external",
          "summary": "https://inbox.sourceware.org/libc-announce/7a655d55-276f-41fe-b550-feb3ebb2ce91@redhat.com/T/#u",
          "url": "https://inbox.sourceware.org/libc-announce/7a655d55-276f-41fe-b550-feb3ebb2ce91@redhat.com/T/#u"
        },
        {
          "category": "external",
          "summary": "https://sourceware.org/bugzilla/show_bug.cgi?id=34033",
          "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=34033"
        }
      ],
      "release_date": "2026-04-28T11:58:54.962000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-01T14:05:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:glibc-main@aarch64",
            "Red Hat Hardened Images:glibc-main@noarch",
            "Red Hat Hardened Images:glibc-main@src",
            "Red Hat Hardened Images:glibc-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:12740"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:glibc-main@aarch64",
            "Red Hat Hardened Images:glibc-main@noarch",
            "Red Hat Hardened Images:glibc-main@src",
            "Red Hat Hardened Images:glibc-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "glibc: glibc: Out-of-bounds write via TSIG record processing"
    },
    {
      "cve": "CVE-2026-5450",
      "cwe": {
        "id": "CWE-131",
        "name": "Incorrect Calculation of Buffer Size"
      },
      "discovery_date": "2026-04-20T21:01:35.403778+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2459853"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in glibc (GNU C Library). This vulnerability occurs when an application uses the `scanf` family of functions with a `%mc` format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination can lead to a one-byte heap buffer overflow, potentially allowing an attacker to corrupt memory.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:glibc-main@aarch64",
          "Red Hat Hardened Images:glibc-main@noarch",
          "Red Hat Hardened Images:glibc-main@src",
          "Red Hat Hardened Images:glibc-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-5450"
        },
        {
          "category": "external",
          "summary": "RHBZ#2459853",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459853"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-5450",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-5450"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5450",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5450"
        },
        {
          "category": "external",
          "summary": "https://inbox.sourceware.org/libc-announce/b11f0003-6ec1-4bd6-b9de-9e38a4efeca3@redhat.com/T/#u",
          "url": "https://inbox.sourceware.org/libc-announce/b11f0003-6ec1-4bd6-b9de-9e38a4efeca3@redhat.com/T/#u"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5450#range-21286997",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5450#range-21286997"
        },
        {
          "category": "external",
          "summary": "https://sourceware.org/bugzilla/show_bug.cgi?id=CVE-2026-5450",
          "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=CVE-2026-5450"
        }
      ],
      "release_date": "2026-04-20T20:55:41.170000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-01T14:05:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:glibc-main@aarch64",
            "Red Hat Hardened Images:glibc-main@noarch",
            "Red Hat Hardened Images:glibc-main@src",
            "Red Hat Hardened Images:glibc-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:12740"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat Hardened Images:glibc-main@aarch64",
            "Red Hat Hardened Images:glibc-main@noarch",
            "Red Hat Hardened Images:glibc-main@src",
            "Red Hat Hardened Images:glibc-main@x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.0,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:glibc-main@aarch64",
            "Red Hat Hardened Images:glibc-main@noarch",
            "Red Hat Hardened Images:glibc-main@src",
            "Red Hat Hardened Images:glibc-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width"
    },
    {
      "cve": "CVE-2026-5928",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2026-04-20T21:01:38.811304+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2459854"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in glibc (GNU C Library). When the `ungetwc` function is called on a file stream using wide characters with specific overlapping single-byte and multi-byte encodings, it may attempt to read data outside of its allocated buffer. This can lead to the unintentional disclosure of sensitive information from memory or cause the program to crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:glibc-main@aarch64",
          "Red Hat Hardened Images:glibc-main@noarch",
          "Red Hat Hardened Images:glibc-main@src",
          "Red Hat Hardened Images:glibc-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-5928"
        },
        {
          "category": "external",
          "summary": "RHBZ#2459854",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459854"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-5928",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-5928"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5928",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5928"
        },
        {
          "category": "external",
          "summary": "https://sourceware.org/bugzilla/show_bug.cgi?id=33998",
          "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33998"
        }
      ],
      "release_date": "2026-04-20T20:37:31.743000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-01T14:05:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:glibc-main@aarch64",
            "Red Hat Hardened Images:glibc-main@noarch",
            "Red Hat Hardened Images:glibc-main@src",
            "Red Hat Hardened Images:glibc-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:12740"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat Hardened Images:glibc-main@aarch64",
            "Red Hat Hardened Images:glibc-main@noarch",
            "Red Hat Hardened Images:glibc-main@src",
            "Red Hat Hardened Images:glibc-main@x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.0,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:glibc-main@aarch64",
            "Red Hat Hardened Images:glibc-main@noarch",
            "Red Hat Hardened Images:glibc-main@src",
            "Red Hat Hardened Images:glibc-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings"
    }
  ]
}

CVE-2026-5435 (GCVE-0-2026-5435)

Vulnerability from cvelistv5 – Published: 2026-04-28 11:58 – Updated: 2026-04-28 15:21

Title

Potential buffer overflow in ns_sprintrrf TSIG handling path

Summary

The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2.2 and newer fail to enforce the caller-supplied buffer length, and can result in an out-of-bounds write when printing TSIG records.

Severity ?

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE

CWE-787 - Out-of-bounds write

Assigner

glibc

References

URL

Tags

	https://sourceware.org/bugzilla/show_bug.cgi?id=34033	issue-tracking
	https://inbox.sourceware.org/libc-announce/7a655d…	mailing-list

Impacted products

	Vendor	Product	Version
	The GNU C Library	glibc	Affected: 2.2 , ≤ * (custom)

Date Public ?

2026-04-02 02:11

Credits

shinobu

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "LOW",
              "baseScore": 7.3,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "LOW",
              "integrityImpact": "LOW",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-5435",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-28T15:15:07.411547Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-28T15:21:13.800Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "glibc",
          "vendor": "The GNU C Library",
          "versions": [
            {
              "lessThanOrEqual": "*",
              "status": "affected",
              "version": "2.2",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "shinobu"
        }
      ],
      "datePublic": "2026-04-02T02:11:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2.2 and newer fail to enforce the caller-supplied buffer length, and can result in an out-of-bounds write when printing TSIG records.\u003cbr\u003e"
            }
          ],
          "value": "The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2.2 and newer fail to enforce the caller-supplied buffer length, and can result in an out-of-bounds write when printing TSIG records."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-100",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-100 Overflow Buffers"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-787",
              "description": "CWE-787 Out-of-bounds write",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-28T11:58:54.962Z",
        "orgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18",
        "shortName": "glibc"
      },
      "references": [
        {
          "tags": [
            "issue-tracking"
          ],
          "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=34033"
        },
        {
          "tags": [
            "mailing-list"
          ],
          "url": "https://inbox.sourceware.org/libc-announce/7a655d55-276f-41fe-b550-feb3ebb2ce91@redhat.com/T/#u"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Potential buffer overflow in ns_sprintrrf TSIG handling path",
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18",
    "assignerShortName": "glibc",
    "cveId": "CVE-2026-5435",
    "datePublished": "2026-04-28T11:58:54.962Z",
    "dateReserved": "2026-04-02T17:18:02.654Z",
    "dateUpdated": "2026-04-28T15:21:13.800Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-4046 (GCVE-0-2026-4046)

Vulnerability from cvelistv5 – Published: 2026-03-30 17:16 – Updated: 2026-04-20 21:02

Title

iconv crash due to assertion failure with untrusted input

Summary

The iconv() function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inputs from the IBM1390 or IBM1399 character sets, which may be used to remotely crash an application. This vulnerability can be trivially mitigated by removing the IBM1390 and IBM1399 character sets from systems that do not need them.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-617 - Reachable assertion

Assigner

glibc

References

URL

Tags

	https://sourceware.org/bugzilla/show_bug.cgi?id=33980	issue-tracking
	https://sourceware.org/git/?p=glibc.git;a=blob_pl…	vendor-advisory
	https://inbox.sourceware.org/libc-announce/76814e…	mailing-list

Impacted products

	Vendor	Product	Version
	The GNU C Library	glibc	Affected: 2.3.3 , ≤ 2.43 (custom)

Date Public ?

2026-03-12 09:02

Credits

Rocket Ma

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-4046",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-03-30T17:33:59.227677Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-03-30T17:35:48.736Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "glibc",
          "vendor": "The GNU C Library",
          "versions": [
            {
              "lessThanOrEqual": "2.43",
              "status": "affected",
              "version": "2.3.3",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Rocket Ma"
        }
      ],
      "datePublic": "2026-03-12T09:02:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "The iconv() function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inputs from the IBM1390 or IBM1399 character sets, which may be used to remotely crash an application.\n\u003cbr\u003e\n\u003cbr\u003eThis vulnerability can be trivially mitigated by removing the IBM1390 and IBM1399 character sets from systems that do not need them.\n\u003cbr\u003e"
            }
          ],
          "value": "The iconv() function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inputs from the IBM1390 or IBM1399 character sets, which may be used to remotely crash an application.\n\n\n\nThis vulnerability can be trivially mitigated by removing the IBM1390 and IBM1399 character sets from systems that do not need them."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-153",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-153 Input Data Manipulation"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-617",
              "description": "CWE-617 Reachable assertion",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-20T21:02:31.443Z",
        "orgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18",
        "shortName": "glibc"
      },
      "references": [
        {
          "tags": [
            "issue-tracking"
          ],
          "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33980"
        },
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0007;hb=HEAD"
        },
        {
          "tags": [
            "mailing-list"
          ],
          "url": "https://inbox.sourceware.org/libc-announce/76814edf-cf7f-47ec-979d-2dce0a2c76bf@gotplt.org/T/#u"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "iconv crash due to assertion failure with untrusted input",
      "x_generator": {
        "engine": "Vulnogram 1.0.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18",
    "assignerShortName": "glibc",
    "cveId": "CVE-2026-4046",
    "datePublished": "2026-03-30T17:16:11.021Z",
    "dateReserved": "2026-03-12T10:12:32.994Z",
    "dateUpdated": "2026-04-20T21:02:31.443Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-5450 (GCVE-0-2026-5450)

Vulnerability from cvelistv5 – Published: 2026-04-20 20:55 – Updated: 2026-04-21 19:49

Title

scanf %mc off-by-one heap buffer overflow

Summary

Calling the scanf family of functions with a %mc (malloc'd character match) in the GNU C Library version 2.7 to version 2.43 with a format width specifier with an explicit width greater than 1024 could result in a one byte heap buffer overflow.

Severity ?

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-122 - Heap-based buffer overflow

Assigner

glibc

References

URL

Tags

	https://sourceware.org/bugzilla/show_bug.cgi?id=C…	issue-tracking
	https://inbox.sourceware.org/libc-announce/b11f00…	mailing-list

Impacted products

	Vendor	Product	Version
	The GNU C Library	glibc	Affected: 2.7 , < * (custom)

Date Public ?

2026-03-19 17:36

Credits

Rocket Ma

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 9.8,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-5450",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-21T16:11:50.875542Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-21T19:49:53.221Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "exploit"
            ],
            "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=CVE-2026-5450"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "glibc",
          "vendor": "The GNU C Library",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "2.7",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Rocket Ma"
        }
      ],
      "datePublic": "2026-03-19T17:36:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Calling the scanf family of functions with a %mc (malloc\u0027d character match) in the GNU C Library version 2.7 to version 2.43 with a format width specifier with an explicit width greater than 1024 could result in a one byte heap buffer overflow."
            }
          ],
          "value": "Calling the scanf family of functions with a %mc (malloc\u0027d character match) in the GNU C Library version 2.7 to version 2.43 with a format width specifier with an explicit width greater than 1024 could result in a one byte heap buffer overflow."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-100",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-100 Overflow Buffers"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-122",
              "description": "CWE-122 Heap-based buffer overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-20T20:55:41.170Z",
        "orgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18",
        "shortName": "glibc"
      },
      "references": [
        {
          "tags": [
            "issue-tracking"
          ],
          "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=CVE-2026-5450"
        },
        {
          "tags": [
            "mailing-list"
          ],
          "url": "https://inbox.sourceware.org/libc-announce/b11f0003-6ec1-4bd6-b9de-9e38a4efeca3@redhat.com/T/#u"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "scanf %mc off-by-one heap buffer overflow",
      "x_generator": {
        "engine": "Vulnogram 1.0.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18",
    "assignerShortName": "glibc",
    "cveId": "CVE-2026-5450",
    "datePublished": "2026-04-20T20:55:41.170Z",
    "dateReserved": "2026-04-02T21:47:21.403Z",
    "dateUpdated": "2026-04-21T19:49:53.221Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-5928 (GCVE-0-2026-5928)

Vulnerability from cvelistv5 – Published: 2026-04-20 20:37 – Updated: 2026-04-30 15:43

Title

Potential buffer under-read in ungetwc

Summary

Calling the ungetwc function on a FILE stream with wide characters encoded in a character set that has overlaps between its single byte and multi-byte character encodings, in the GNU C Library version 2.43 or earlier, may result in an attempt to read bytes before an allocated buffer, potentially resulting in unintentional disclosure of neighboring data in the heap, or a program crash. A bug in the wide character pushback implementation (_IO_wdefault_pbackfail in libio/wgenops.c) causes ungetwc() to operate on the regular character buffer (fp->_IO_read_ptr) instead of the actual wide-stream read pointer (fp->_wide_data->_IO_read_ptr). The program crash may happen in cases where fp->_IO_read_ptr is not initialized and hence points to NULL. The buffer under-read requires a special situation where the input character encoding is such that there are overlaps between single byte representations and multibyte representations in that encoding, resulting in spurious matches. The spurious match case is not possible in the standard Unicode character sets.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-127 - Buffer under-read

Assigner

glibc

References

URL

Tags

https://sourceware.org/bugzilla/show_bug.cgi?id=33998

Impacted products

	Vendor	Product	Version
	The GNU C Library	glibc	Affected: 2.1.1-89 , ≤ 2.43 (custom)

Credits

Rocket Ma

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-5928",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-21T16:10:57.731635Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-21T19:49:59.071Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "exploit"
            ],
            "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33998"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "glibc",
          "vendor": "The GNU C Library",
          "versions": [
            {
              "lessThanOrEqual": "2.43",
              "status": "affected",
              "version": "2.1.1-89",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Rocket Ma"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Calling the ungetwc function on a FILE stream with wide characters encoded in a character set that has overlaps between its single byte and multi-byte character encodings, in the GNU C Library version 2.43 or earlier, may result in an attempt to read bytes before an allocated buffer, potentially resulting in unintentional disclosure of neighboring data in the heap, or a program crash.\u003cbr\u003e\u003cbr\u003eA bug in the wide character pushback implementation (_IO_wdefault_pbackfail in libio/wgenops.c) causes ungetwc() to operate on the regular character buffer (fp-\u0026gt;_IO_read_ptr) instead of the actual wide-stream read pointer (fp-\u0026gt;_wide_data-\u0026gt;_IO_read_ptr). The program crash may happen in cases where fp-\u0026gt;_IO_read_ptr is not initialized and hence points to NULL. The buffer under-read requires a special situation where the input character encoding is such that there are overlaps between single byte representations and multibyte representations in that encoding, resulting in spurious matches. The spurious match case is not possible in the standard Unicode character sets."
            }
          ],
          "value": "Calling the ungetwc function on a FILE stream with wide characters encoded in a character set that has overlaps between its single byte and multi-byte character encodings, in the GNU C Library version 2.43 or earlier, may result in an attempt to read bytes before an allocated buffer, potentially resulting in unintentional disclosure of neighboring data in the heap, or a program crash.\n\nA bug in the wide character pushback implementation (_IO_wdefault_pbackfail in libio/wgenops.c) causes ungetwc() to operate on the regular character buffer (fp-\u003e_IO_read_ptr) instead of the actual wide-stream read pointer (fp-\u003e_wide_data-\u003e_IO_read_ptr). The program crash may happen in cases where fp-\u003e_IO_read_ptr is not initialized and hence points to NULL. The buffer under-read requires a special situation where the input character encoding is such that there are overlaps between single byte representations and multibyte representations in that encoding, resulting in spurious matches. The spurious match case is not possible in the standard Unicode character sets."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-540",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-540 Overread Buffers"
            }
          ]
        },
        {
          "capecId": "CAPEC-267",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-267 Leverage Alternate Encoding"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-127",
              "description": "CWE-127 Buffer under-read",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-30T15:43:07.240Z",
        "orgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18",
        "shortName": "glibc"
      },
      "references": [
        {
          "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33998"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Potential buffer under-read in ungetwc",
      "x_generator": {
        "engine": "Vulnogram 1.0.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18",
    "assignerShortName": "glibc",
    "cveId": "CVE-2026-5928",
    "datePublished": "2026-04-20T20:37:31.743Z",
    "dateReserved": "2026-04-08T22:47:29.814Z",
    "dateUpdated": "2026-04-30T15:43:07.240Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

RHSA-2026:12740

CVE-2026-5435 (GCVE-0-2026-5435)

CVE-2026-4046 (GCVE-0-2026-4046)

CVE-2026-5450 (GCVE-0-2026-5450)

CVE-2026-5928 (GCVE-0-2026-5928)

Tags

Sightings

Nomenclature