This Red Hat security advisory (RHSA-2026:22934) covers a bug fix and enhancement update for Red Hat Hardened Images RPMs, specifically updating multiple Rust-related packages to version 1.96.0-1.hum1 across several architectures (aarch64, x86_64, noarch). The advisory addresses multiple CVEs (CVE-2026-45149, CVE-2026-9358, CVE-2026-9358, CVE-2026-9675, CVE-2026-9697, CVE-2026-44432) related to various CWEs including resource management, concurrency, and security issues. The update is intended to fix these vulnerabilities and enhance the hardened images. No explicit affected versions or patch availability details are provided beyond the updated RPM versions. No known exploits have been reported in the wild.

The vulnerabilities addressed by this update have been rated with high severity, indicating potential significant security risks if left unpatched. The issues relate to multiple CWEs such as improper resource shutdown, concurrency issues, denial of service, and authentication problems. However, no known exploits in the wild have been reported, suggesting limited active exploitation at this time. The impact could affect systems using the affected Rust packages within Red Hat Hardened Images if not updated.

A fix is available through the updated RPM packages listed in the advisory (version 1.96.0-1.hum1 for multiple Rust components). Users of Red Hat Hardened Images should apply this update as per Red Hat's instructions available at https://images.redhat.com/. Since this is not a cloud service, remediation is the responsibility of the system administrators. No additional mitigation steps are specified in the advisory.