Red Hat Security Advisory: osbuild-composer security update
Red Hat has issued a security advisory for osbuild-composer, a service used to build customized OS artifacts such as VM images and OSTree commits. The update addresses two vulnerabilities: CVE-2025-68121, involving unexpected TLS session resumption behavior, and CVE-2026-25679, related to incorrect parsing of IPv6 host literals in the net/url package. These issues affect Red Hat Enterprise Linux 9. 6 Extended Update Support and related variants. The advisory rates the security impact as Important. A security update is available to remediate these vulnerabilities.
AI Analysis
Technical Summary
The osbuild-composer service in Red Hat Enterprise Linux 9.6 Extended Update Support has two security vulnerabilities. CVE-2025-68121 concerns an unexpected session resumption issue in the crypto/tls package that causes incorrect certificate validation during TLS session resumption. CVE-2026-25679 involves incorrect parsing of IPv6 host literals in the net/url package. These vulnerabilities could affect the security of TLS connections and URL parsing within the osbuild-composer service, which builds and uploads OS images. Red Hat has released updated packages to address these issues.
Potential Impact
The vulnerabilities impact the security of TLS session resumption and URL parsing in osbuild-composer, potentially leading to incorrect certificate validation and improper handling of IPv6 addresses. This could undermine the security guarantees of TLS connections and URL processing in the affected service. The advisory classifies the impact as Important, indicating a significant security concern but does not provide evidence of active exploitation in the wild.
Mitigation Recommendations
Red Hat has released security updates for osbuild-composer in Red Hat Enterprise Linux 9.6 Extended Update Support and related variants. Users should apply these official updates as described in the Red Hat advisory (https://access.redhat.com/articles/11258) to remediate the vulnerabilities. Since a fix is available, applying the update is the recommended mitigation. No additional vendor guidance indicates that no action is required or that the issue is already mitigated.
Red Hat Security Advisory: osbuild-composer security update
Description
Red Hat has issued a security advisory for osbuild-composer, a service used to build customized OS artifacts such as VM images and OSTree commits. The update addresses two vulnerabilities: CVE-2025-68121, involving unexpected TLS session resumption behavior, and CVE-2026-25679, related to incorrect parsing of IPv6 host literals in the net/url package. These issues affect Red Hat Enterprise Linux 9. 6 Extended Update Support and related variants. The advisory rates the security impact as Important. A security update is available to remediate these vulnerabilities.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The osbuild-composer service in Red Hat Enterprise Linux 9.6 Extended Update Support has two security vulnerabilities. CVE-2025-68121 concerns an unexpected session resumption issue in the crypto/tls package that causes incorrect certificate validation during TLS session resumption. CVE-2026-25679 involves incorrect parsing of IPv6 host literals in the net/url package. These vulnerabilities could affect the security of TLS connections and URL parsing within the osbuild-composer service, which builds and uploads OS images. Red Hat has released updated packages to address these issues.
Potential Impact
The vulnerabilities impact the security of TLS session resumption and URL parsing in osbuild-composer, potentially leading to incorrect certificate validation and improper handling of IPv6 addresses. This could undermine the security guarantees of TLS connections and URL processing in the affected service. The advisory classifies the impact as Important, indicating a significant security concern but does not provide evidence of active exploitation in the wild.
Mitigation Recommendations
Red Hat has released security updates for osbuild-composer in Red Hat Enterprise Linux 9.6 Extended Update Support and related variants. Users should apply these official updates as described in the Red Hat advisory (https://access.redhat.com/articles/11258) to remediate the vulnerabilities. Since a fix is available, applying the update is the recommended mitigation. No additional vendor guidance indicates that no action is required or that the issue is already mitigated.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:19475
- Cve Count
- 2
- Additional Cves
- ["CVE-2026-25679"]
- Cvss Version
- null
Threat ID: 6a16097fe29bf47b5064bc62
Added to database: 5/26/2026, 8:58:39 PM
Last enriched: 5/26/2026, 10:25:22 PM
Last updated: 5/27/2026, 4:56:09 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.