Vulnerability-Lookup

RHSA-2026:17611

Vulnerability from csaf_redhat - Published: 2026-05-14 13:49 - Updated: 2026-05-14 22:36

Summary

Red Hat Security Advisory: Red Hat Enterprise Linux AI 3.3.3

Severity

Important

Notes

Topic: Red Hat Enterprise Linux AI 3.3.3 is now available.

Details: Red Hat® Enterprise Linux® AI is a foundation model platform to seamlessly develop, test, and run Granite family large language models (LLMs) for enterprise applications.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2026-23490

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service (DoS) for the affected system.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 2 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64		—	Vendor Fix fix
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64		—	Vendor Fix fix

Known not affected 5 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64		—
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64		—
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64		—
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64		—
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64		—

Threats

Impact Important

CVE-2026-30922

An unbounded recursion flaw has been discovered in the pypi pyasn1 library. This uncontrolled recursion occurs when decoding ASN.1 data with deeply nested structures. An attacker can supply a crafted payload containing nested SEQUENCE (0x30) or SET (0x31) tags with Indefinite Length (0x80) markers. This forces the decoder to recursively call itself until the Python interpreter crashes with a RecursionError or consumes all available memory (OOM), crashing the host application.

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Affected products

Fixed 2 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64		—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64		—	Vendor Fix fix Workaround

Known not affected 5 products

Product	Version	Remediation
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64	—	Workaround
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64	—	Workaround
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64	—	Workaround
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64	—	Workaround
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64	—	Workaround

Threats

Impact Important

CVE-2026-40192

A flaw was found in Pillow, a Python imaging library. This vulnerability allows a remote attacker to trigger a denial of service (DoS) by providing a specially crafted FITS image file. The library's failure to limit the amount of GZIP-compressed data during decoding can lead to unbounded memory consumption, causing the system to crash or experience severe performance issues.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-409 - Improper Handling of Highly Compressed Data (Data Amplification)

Affected products

Fixed 7 products

Product	Version	Remediation
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

28 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:17611	self
https://access.redhat.com/security/cve/CVE-2026-23490	external
https://access.redhat.com/security/cve/CVE-2026-30922	external
https://access.redhat.com/security/cve/CVE-2026-40192	external
https://access.redhat.com/security/updates/classi…	external
https://www.redhat.com/en/technologies/linux-plat…	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-23490	self
https://bugzilla.redhat.com/show_bug.cgi?id=2430472	external
https://www.cve.org/CVERecord?id=CVE-2026-23490	external
https://nvd.nist.gov/vuln/detail/CVE-2026-23490	external
https://github.com/pyasn1/pyasn1/commit/3908f1442…	external
https://github.com/pyasn1/pyasn1/releases/tag/v0.6.2	external
https://github.com/pyasn1/pyasn1/security/advisor…	external
https://access.redhat.com/security/cve/CVE-2026-30922	self
https://bugzilla.redhat.com/show_bug.cgi?id=2448553	external
https://www.cve.org/CVERecord?id=CVE-2026-30922	external
https://nvd.nist.gov/vuln/detail/CVE-2026-30922	external
https://github.com/pyasn1/pyasn1/commit/25ad481c1…	external
https://github.com/pyasn1/pyasn1/security/advisor…	external
https://access.redhat.com/security/cve/CVE-2026-40192	self
https://bugzilla.redhat.com/show_bug.cgi?id=2458856	external
https://www.cve.org/CVERecord?id=CVE-2026-40192	external
https://nvd.nist.gov/vuln/detail/CVE-2026-40192	external
https://github.com/python-pillow/Pillow/commit/3c…	external
https://github.com/python-pillow/Pillow/pull/9521	external
https://github.com/python-pillow/Pillow/security/…	external
https://pillow.readthedocs.io/en/stable/releaseno…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat Enterprise Linux AI 3.3.3 is now available.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat\u00ae Enterprise Linux\u00ae AI is a foundation model platform to seamlessly develop, test,\nand run Granite family large language models (LLMs) for enterprise applications.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:17611",
        "url": "https://access.redhat.com/errata/RHSA-2026:17611"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-23490",
        "url": "https://access.redhat.com/security/cve/CVE-2026-23490"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-30922",
        "url": "https://access.redhat.com/security/cve/CVE-2026-30922"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-40192",
        "url": "https://access.redhat.com/security/cve/CVE-2026-40192"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "external",
        "summary": "https://www.redhat.com/en/technologies/linux-platforms/enterprise-linux/ai",
        "url": "https://www.redhat.com/en/technologies/linux-platforms/enterprise-linux/ai"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_17611.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Enterprise Linux AI 3.3.3",
    "tracking": {
      "current_release_date": "2026-05-14T22:36:20+00:00",
      "generator": {
        "date": "2026-05-14T22:36:20+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.0"
        }
      },
      "id": "RHSA-2026:17611",
      "initial_release_date": "2026-05-14T13:49:52+00:00",
      "revision_history": [
        {
          "date": "2026-05-14T13:49:52+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-14T13:50:09+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-14T22:36:20+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AI 3.3",
                "product": {
                  "name": "Red Hat Enterprise Linux AI 3.3",
                  "product_id": "Red Hat Enterprise Linux AI 3.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux_ai:3.3::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux AI"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
                "product": {
                  "name": "registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
                  "product_id": "registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/bootc-cuda-rhel9@sha256%3Af6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703?arch=amd64\u0026repository_url=registry.redhat.io/rhelai3\u0026tag=1778666122"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
                "product": {
                  "name": "registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
                  "product_id": "registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/bootc-aws-cuda-rhel9@sha256%3Afe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded?arch=amd64\u0026repository_url=registry.redhat.io/rhelai3\u0026tag=1778677633"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
                "product": {
                  "name": "registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
                  "product_id": "registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/bootc-azure-cuda-rhel9@sha256%3A20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929?arch=amd64\u0026repository_url=registry.redhat.io/rhelai3\u0026tag=1778677632"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64",
                "product": {
                  "name": "registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64",
                  "product_id": "registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/bootc-gcp-cuda-rhel9@sha256%3A3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989?arch=amd64\u0026repository_url=registry.redhat.io/rhelai3\u0026tag=1778677632"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64",
                "product": {
                  "name": "registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64",
                  "product_id": "registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/bootc-rocm-rhel9@sha256%3Ad32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb?arch=amd64\u0026repository_url=registry.redhat.io/rhelai3\u0026tag=1778666124"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
                "product": {
                  "name": "registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
                  "product_id": "registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/bootc-azure-rocm-rhel9@sha256%3Aa5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121?arch=amd64\u0026repository_url=registry.redhat.io/rhelai3\u0026tag=1778677745"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
                "product": {
                  "name": "registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
                  "product_id": "registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/bootc-cuda-rhel9@sha256%3A0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e?arch=arm64\u0026repository_url=registry.redhat.io/rhelai3\u0026tag=1778666122"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64 as a component of Red Hat Enterprise Linux AI 3.3",
          "product_id": "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64"
        },
        "product_reference": "registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
        "relates_to_product_reference": "Red Hat Enterprise Linux AI 3.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64 as a component of Red Hat Enterprise Linux AI 3.3",
          "product_id": "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64"
        },
        "product_reference": "registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
        "relates_to_product_reference": "Red Hat Enterprise Linux AI 3.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64 as a component of Red Hat Enterprise Linux AI 3.3",
          "product_id": "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64"
        },
        "product_reference": "registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
        "relates_to_product_reference": "Red Hat Enterprise Linux AI 3.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64 as a component of Red Hat Enterprise Linux AI 3.3",
          "product_id": "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64"
        },
        "product_reference": "registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
        "relates_to_product_reference": "Red Hat Enterprise Linux AI 3.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64 as a component of Red Hat Enterprise Linux AI 3.3",
          "product_id": "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64"
        },
        "product_reference": "registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
        "relates_to_product_reference": "Red Hat Enterprise Linux AI 3.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64 as a component of Red Hat Enterprise Linux AI 3.3",
          "product_id": "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64"
        },
        "product_reference": "registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64",
        "relates_to_product_reference": "Red Hat Enterprise Linux AI 3.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64 as a component of Red Hat Enterprise Linux AI 3.3",
          "product_id": "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
        },
        "product_reference": "registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64",
        "relates_to_product_reference": "Red Hat Enterprise Linux AI 3.3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-23490",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-01-16T20:03:33.790513+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2430472"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service (DoS) for the affected system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
        ],
        "known_not_affected": [
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-23490"
        },
        {
          "category": "external",
          "summary": "RHBZ#2430472",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2430472"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-23490",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23490"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-23490",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23490"
        },
        {
          "category": "external",
          "summary": "https://github.com/pyasn1/pyasn1/commit/3908f144229eed4df24bd569d16e5991ace44970",
          "url": "https://github.com/pyasn1/pyasn1/commit/3908f144229eed4df24bd569d16e5991ace44970"
        },
        {
          "category": "external",
          "summary": "https://github.com/pyasn1/pyasn1/releases/tag/v0.6.2",
          "url": "https://github.com/pyasn1/pyasn1/releases/tag/v0.6.2"
        },
        {
          "category": "external",
          "summary": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-63vm-454h-vhhq",
          "url": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-63vm-454h-vhhq"
        }
      ],
      "release_date": "2026-01-16T19:03:36.442000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-14T13:49:52+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.",
          "product_ids": [
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:17611"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID"
    },
    {
      "cve": "CVE-2026-30922",
      "cwe": {
        "id": "CWE-835",
        "name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
      },
      "discovery_date": "2026-03-18T04:02:45.401296+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2448553"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An unbounded recursion flaw has been discovered in the pypi pyasn1 library. This uncontrolled recursion occurs when decoding ASN.1 data with deeply nested structures. An attacker can supply a crafted payload containing nested SEQUENCE (0x30) or SET (0x31) tags with Indefinite Length (0x80) markers. This forces the decoder to recursively call itself until the Python interpreter crashes with a RecursionError or consumes all available memory (OOM), crashing the host application.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
        ],
        "known_not_affected": [
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-30922"
        },
        {
          "category": "external",
          "summary": "RHBZ#2448553",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448553"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-30922",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-30922"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-30922",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-30922"
        },
        {
          "category": "external",
          "summary": "https://github.com/pyasn1/pyasn1/commit/25ad481c19fdb006e20485ef3fc2e5b3eff30ef0",
          "url": "https://github.com/pyasn1/pyasn1/commit/25ad481c19fdb006e20485ef3fc2e5b3eff30ef0"
        },
        {
          "category": "external",
          "summary": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-jr27-m4p2-rc6r",
          "url": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-jr27-m4p2-rc6r"
        }
      ],
      "release_date": "2026-03-18T02:29:45.857000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-14T13:49:52+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.",
          "product_ids": [
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:17611"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion"
    },
    {
      "cve": "CVE-2026-40192",
      "cwe": {
        "id": "CWE-409",
        "name": "Improper Handling of Highly Compressed Data (Data Amplification)"
      },
      "discovery_date": "2026-04-16T00:00:49.590876+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2458856"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Pillow, a Python imaging library. This vulnerability allows a remote attacker to trigger a denial of service (DoS) by providing a specially crafted FITS image file. The library\u0027s failure to limit the amount of GZIP-compressed data during decoding can lead to unbounded memory consumption, causing the system to crash or experience severe performance issues.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Pillow: Pillow: Denial of Service via decompression bomb in FITS image processing",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64",
          "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-40192"
        },
        {
          "category": "external",
          "summary": "RHBZ#2458856",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458856"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-40192",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-40192"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40192",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40192"
        },
        {
          "category": "external",
          "summary": "https://github.com/python-pillow/Pillow/commit/3cb854e8b2bab43f40e342e665f9340d861aa628",
          "url": "https://github.com/python-pillow/Pillow/commit/3cb854e8b2bab43f40e342e665f9340d861aa628"
        },
        {
          "category": "external",
          "summary": "https://github.com/python-pillow/Pillow/pull/9521",
          "url": "https://github.com/python-pillow/Pillow/pull/9521"
        },
        {
          "category": "external",
          "summary": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-whj4-6x5x-4v2j",
          "url": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-whj4-6x5x-4v2j"
        },
        {
          "category": "external",
          "summary": "https://pillow.readthedocs.io/en/stable/releasenotes/12.2.0.html#prevent-fits-decompression-bomb",
          "url": "https://pillow.readthedocs.io/en/stable/releasenotes/12.2.0.html#prevent-fits-decompression-bomb"
        }
      ],
      "release_date": "2026-04-15T22:53:56.147000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-14T13:49:52+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.",
          "product_ids": [
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:17611"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-aws-cuda-rhel9@sha256:fe3f9992abba61ac90a59107f6f37877876f7cc53378a9712eafb6ebb8a23ded_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-cuda-rhel9@sha256:20f1fe37363bad77ad79184fcd87a1e0b1789d97098726f9b1f9012a90e06929_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-azure-rocm-rhel9@sha256:a5256e0394dbb29e2757969d0a4cacbd1205f3e09bb668d40800133599d75121_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:0e0e0f327f586006f1333353184ebddccb91f1e4dc6ab0d3b96ce2e0e065808e_arm64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-cuda-rhel9@sha256:f6f6aa6af83e4005c230be33d0ee66d1826c48bd8e1445049a1550b01a00e703_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-gcp-cuda-rhel9@sha256:3c547595d6b8170a6858ac6b922dc594613c350c9cfa37e83425c247fb795989_amd64",
            "Red Hat Enterprise Linux AI 3.3:registry.redhat.io/rhelai3/bootc-rocm-rhel9@sha256:d32e15099dad41250e88b8b5030ce34015e084edbf32b06bc00cf97cf30663cb_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Pillow: Pillow: Denial of Service via decompression bomb in FITS image processing"
    }
  ]
}

CVE-2026-30922 (GCVE-0-2026-30922)

Vulnerability from cvelistv5 – Published: 2026-03-18 02:29 – Updated: 2026-05-01 16:21

Title

pyasn1 Vulnerable to Denial of Service via Unbounded Recursion

Summary

pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.3, the `pyasn1` library is vulnerable to a Denial of Service (DoS) attack caused by uncontrolled recursion when decoding ASN.1 data with deeply nested structures. An attacker can supply a crafted payload containing thousands of nested `SEQUENCE` (`0x30`) or `SET` (`0x31`) tags with "Indefinite Length" (`0x80`) markers. This forces the decoder to recursively call itself until the Python interpreter crashes with a `RecursionError` or consumes all available memory (OOM), crashing the host application. This is a distinct vulnerability from CVE-2026-23490 (which addressed integer overflows in OID decoding). The fix for CVE-2026-23490 (`MAX_OID_ARC_CONTINUATION_OCTETS`) does not mitigate this recursion issue. Version 0.6.3 fixes this specific issue.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-674 - Uncontrolled Recursion

Assigner

GitHub_M

References

2 references

URL	Tags
https://github.com/pyasn1/pyasn1/security/advisor…	x_refsource_CONFIRM
https://github.com/pyasn1/pyasn1/commit/25ad481c1…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
pyasn1	pyasn1	Affected: < 0.6.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-30922",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-03-18T20:16:18.738732Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-03-18T20:17:53.102Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2026-05-01T16:21:04.773Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "http://www.openwall.com/lists/oss-security/2026/03/20/4"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2026/05/msg00001.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "pyasn1",
          "vendor": "pyasn1",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 0.6.3"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.3, the `pyasn1` library is vulnerable to a Denial of Service (DoS) attack caused by uncontrolled recursion when decoding ASN.1 data with deeply nested structures. An attacker can supply a crafted payload containing thousands of nested `SEQUENCE` (`0x30`) or `SET` (`0x31`) tags with \"Indefinite Length\" (`0x80`) markers. This forces the decoder to recursively call itself until the Python interpreter crashes with a `RecursionError` or consumes all available memory (OOM), crashing the host application. This is a distinct vulnerability from CVE-2026-23490 (which addressed integer overflows in OID decoding). The fix for CVE-2026-23490 (`MAX_OID_ARC_CONTINUATION_OCTETS`) does not mitigate this recursion issue. Version 0.6.3 fixes this specific issue."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-674",
              "description": "CWE-674: Uncontrolled Recursion",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-03-18T02:29:45.857Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-jr27-m4p2-rc6r",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-jr27-m4p2-rc6r"
        },
        {
          "name": "https://github.com/pyasn1/pyasn1/commit/25ad481c19fdb006e20485ef3fc2e5b3eff30ef0",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/pyasn1/pyasn1/commit/25ad481c19fdb006e20485ef3fc2e5b3eff30ef0"
        }
      ],
      "source": {
        "advisory": "GHSA-jr27-m4p2-rc6r",
        "discovery": "UNKNOWN"
      },
      "title": "pyasn1 Vulnerable to Denial of Service via Unbounded Recursion"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2026-30922",
    "datePublished": "2026-03-18T02:29:45.857Z",
    "dateReserved": "2026-03-07T16:40:05.884Z",
    "dateUpdated": "2026-05-01T16:21:04.773Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-40192 (GCVE-0-2026-40192)

Vulnerability from cvelistv5 – Published: 2026-04-15 22:53 – Updated: 2026-04-16 13:37

Title

Pillow is vulnerable to a FITS GZIP decompression bomb

Summary

Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed data read when decoding a FITS image, making them vulnerable to decompression bomb attacks. A specially crafted FITS file could cause unbounded memory consumption, leading to denial of service (OOM crash or severe performance degradation). If users are unable to immediately upgrade, they should only open specific image formats, excluding FITS, as a workaround.

Severity ?

8.7 (High)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

CWE

CWE-770 - Allocation of Resources Without Limits or Throttling
CWE-400 - Uncontrolled Resource Consumption

Assigner

GitHub_M

References

4 references

URL	Tags
https://github.com/python-pillow/Pillow/security/…	x_refsource_CONFIRM
https://github.com/python-pillow/Pillow/pull/9521	x_refsource_MISC
https://github.com/python-pillow/Pillow/commit/3c…	x_refsource_MISC
https://pillow.readthedocs.io/en/stable/releaseno…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
python-pillow	Pillow	Affected: >= 10.3.0, < 12.2.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-40192",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-16T13:37:11.864898Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-16T13:37:19.918Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Pillow",
          "vendor": "python-pillow",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 10.3.0, \u003c 12.2.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed data read when decoding a FITS image, making them vulnerable to decompression bomb attacks. A specially crafted FITS file could cause unbounded memory consumption, leading to denial of service (OOM crash or severe performance degradation). If users are unable to immediately upgrade, they should only open specific image formats, excluding FITS, as a workaround."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "NETWORK",
            "baseScore": 8.7,
            "baseSeverity": "HIGH",
            "privilegesRequired": "NONE",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "NONE"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-770",
              "description": "CWE-770: Allocation of Resources Without Limits or Throttling",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-400",
              "description": "CWE-400: Uncontrolled Resource Consumption",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-15T22:53:56.147Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-whj4-6x5x-4v2j",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-whj4-6x5x-4v2j"
        },
        {
          "name": "https://github.com/python-pillow/Pillow/pull/9521",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/python-pillow/Pillow/pull/9521"
        },
        {
          "name": "https://github.com/python-pillow/Pillow/commit/3cb854e8b2bab43f40e342e665f9340d861aa628",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/python-pillow/Pillow/commit/3cb854e8b2bab43f40e342e665f9340d861aa628"
        },
        {
          "name": "https://pillow.readthedocs.io/en/stable/releasenotes/12.2.0.html#prevent-fits-decompression-bomb",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://pillow.readthedocs.io/en/stable/releasenotes/12.2.0.html#prevent-fits-decompression-bomb"
        }
      ],
      "source": {
        "advisory": "GHSA-whj4-6x5x-4v2j",
        "discovery": "UNKNOWN"
      },
      "title": "Pillow is vulnerable to a FITS GZIP decompression bomb"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2026-40192",
    "datePublished": "2026-04-15T22:53:56.147Z",
    "dateReserved": "2026-04-09T20:59:17.620Z",
    "dateUpdated": "2026-04-16T13:37:19.918Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-23490 (GCVE-0-2026-23490)

Vulnerability from cvelistv5 – Published: 2026-01-16 19:03 – Updated: 2026-02-01 17:06

Title

pyasn1 has a DoS vulnerability in decoder

Summary

pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.2, a Denial-of-Service issue has been found that leads to memory exhaustion from malformed RELATIVE-OID with excessive continuation octets. This vulnerability is fixed in 0.6.2.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-770 - Allocation of Resources Without Limits or Throttling

Assigner

GitHub_M

References

3 references

URL	Tags
https://github.com/pyasn1/pyasn1/security/advisor…	x_refsource_CONFIRM
https://github.com/pyasn1/pyasn1/commit/3908f1442…	x_refsource_MISC
https://github.com/pyasn1/pyasn1/releases/tag/v0.6.2	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
pyasn1	pyasn1	Affected: < 0.6.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-23490",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-01-16T19:23:28.531270Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-01-16T19:23:51.965Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2026-02-01T17:06:14.113Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00002.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "pyasn1",
          "vendor": "pyasn1",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 0.6.2"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.2, a Denial-of-Service issue has been found that leads to memory exhaustion from malformed RELATIVE-OID with excessive continuation octets. This vulnerability is fixed in 0.6.2."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-770",
              "description": "CWE-770: Allocation of Resources Without Limits or Throttling",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-16T19:03:36.442Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-63vm-454h-vhhq",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-63vm-454h-vhhq"
        },
        {
          "name": "https://github.com/pyasn1/pyasn1/commit/3908f144229eed4df24bd569d16e5991ace44970",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/pyasn1/pyasn1/commit/3908f144229eed4df24bd569d16e5991ace44970"
        },
        {
          "name": "https://github.com/pyasn1/pyasn1/releases/tag/v0.6.2",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/pyasn1/pyasn1/releases/tag/v0.6.2"
        }
      ],
      "source": {
        "advisory": "GHSA-63vm-454h-vhhq",
        "discovery": "UNKNOWN"
      },
      "title": "pyasn1 has a DoS vulnerability in decoder"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2026-23490",
    "datePublished": "2026-01-16T19:03:36.442Z",
    "dateReserved": "2026-01-13T15:47:41.628Z",
    "dateUpdated": "2026-02-01T17:06:14.113Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

RHSA-2026:17611

CVE-2026-30922 (GCVE-0-2026-30922)

CVE-2026-40192 (GCVE-0-2026-40192)

CVE-2026-23490 (GCVE-0-2026-23490)

Tags

Sightings

Nomenclature