Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
🔗 CVE IDs covered (8)
📋 Description
CVE-2026-4105 — systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method CVE-2026-29111 — systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data CVE-2026-40223 — systemd: systemd: Local unprivileged user can cause Denial of Service CVE-2026-40224 — systemd: systemd-machined: Local privilege escalation via varlink CVE-2026-40225 — systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output CVE-2026-40226 — systemd: systemd nspawn: Escape-to-host action via crafted config file CVE-2026-40227 — systemd: systemd: Denial of Service via malicious IPC API call with null element CVE-2026-40228 — systemd: systemd-journald: Unintended output to user terminals via logger command
🔗 References (12)
- selfhttps://access.redhat.com/errata/RHSA-2026:7299
- externalhttps://images.redhat.com/
- externalhttps://access.redhat.com/security/cve/CVE-2026-40228
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://access.redhat.com/security/cve/CVE-2026-40226
- externalhttps://access.redhat.com/security/cve/CVE-2026-40225
- externalhttps://access.redhat.com/security/cve/CVE-2026-40224
- externalhttps://access.redhat.com/security/cve/CVE-2026-40223
- externalhttps://access.redhat.com/security/cve/CVE-2026-29111
- externalhttps://access.redhat.com/security/cve/CVE-2026-40227
- externalhttps://access.redhat.com/security/cve/CVE-2026-4105
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_7299.json