This Red Hat security advisory (RHSA-2026:30814) addresses four vulnerabilities in the aom package included in Red Hat Hardened Images RPMs. The vulnerabilities correspond to CVE-2026-56208, CVE-2026-56209, CVE-2026-56210, and CVE-2026-56211. They relate to memory safety issues categorized under CWE-122 (Heap-based Buffer Overflow), CWE-787 (Out-of-bounds Write), and CWE-125 (Out-of-bounds Read). The advisory provides updated RPMs (aom-3.14.0-0.1.hum1 and related packages) for aarch64 and x86_64 architectures. The vendor advisory does not specify exact affected versions or detailed exploitation scenarios. No CVSS scores are provided. The update is available through Red Hat Hardened Images RPMs, and users are advised to apply it to mitigate the vulnerabilities.

The vulnerabilities involve memory corruption issues such as heap-based buffer overflow, out-of-bounds write, and out-of-bounds read in the aom package. These types of vulnerabilities can potentially lead to application crashes or arbitrary code execution if exploited. However, there are no known exploits in the wild currently. The impact is considered high due to the nature of the weaknesses, but specific exploitation details are not provided.

Red Hat has released updated RPM packages for the aom component as part of the Red Hat Hardened Images RPMs. Users should apply these updates to remediate the vulnerabilities. Since this is a vendor-provided security update, following the official Red Hat update process for Hardened Images RPMs is the recommended mitigation. Patch status is confirmed by the vendor advisory, indicating that a fix is available. No additional or alternative mitigations are specified.