Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage
🔗 CVE IDs covered (21)
📋 Description
CVE-2025-9086 — curl: libcurl: Curl out of bounds read for cookie path
CVE-2025-11187 — openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS#12 file
CVE-2025-12084 — cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service
CVE-2025-12818 — postgresql: libpq: libpq undersizes allocations, via integer wraparound
CVE-2025-13601 — glib: Integer overflow in in g_escape_uri_string()
CVE-2025-13836 — cpython: Excessive read buffering DoS in http.client
CVE-2025-15467 — openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing
CVE-2025-15468 — openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling
CVE-2025-15469 — openssl: OpenSSL: Data integrity bypass in openssl dgst command due to silent truncation
CVE-2025-66199 — openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression
CVE-2025-66418 — urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion
CVE-2025-66471 — urllib3: urllib3 Streaming API improperly handles highly compressed data
CVE-2025-68160 — openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
CVE-2025-68973 — GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write
CVE-2025-69418 — openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
CVE-2025-69419 — openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
CVE-2025-69420 — openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
CVE-2025-69421 — openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
CVE-2026-21441 — urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)
CVE-2026-22795 — openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
CVE-2026-22796 — openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
🔗 References (25)
- selfhttps://access.redhat.com/errata/RHSA-2026:1736
- externalhttps://access.redhat.com/security/cve/CVE-2025-11187
- externalhttps://access.redhat.com/security/cve/CVE-2025-12084
- externalhttps://access.redhat.com/security/cve/CVE-2025-12818
- externalhttps://access.redhat.com/security/cve/CVE-2025-13601
- externalhttps://access.redhat.com/security/cve/CVE-2025-13836
- externalhttps://access.redhat.com/security/cve/CVE-2025-15467
- externalhttps://access.redhat.com/security/cve/CVE-2025-15468
- externalhttps://access.redhat.com/security/cve/CVE-2025-15469
- externalhttps://access.redhat.com/security/cve/CVE-2025-66199
- externalhttps://access.redhat.com/security/cve/CVE-2025-66418
- externalhttps://access.redhat.com/security/cve/CVE-2025-66471
- externalhttps://access.redhat.com/security/cve/CVE-2025-68160
- externalhttps://access.redhat.com/security/cve/CVE-2025-68973
- externalhttps://access.redhat.com/security/cve/CVE-2025-69418
- externalhttps://access.redhat.com/security/cve/CVE-2025-69419
- externalhttps://access.redhat.com/security/cve/CVE-2025-69420
- externalhttps://access.redhat.com/security/cve/CVE-2025-69421
- externalhttps://access.redhat.com/security/cve/CVE-2025-9086
- externalhttps://access.redhat.com/security/cve/CVE-2026-21441
- externalhttps://access.redhat.com/security/cve/CVE-2026-22795
- externalhttps://access.redhat.com/security/cve/CVE-2026-22796
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://docs.redhat.com/en/documentation/subscription_central/1-latest/#Discovery
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_1736.json