Threats Tagged 'cve-2026-33815'

Red Hat has released a security advisory (RHSA-2026:11070) for Red Hat Advanced Cluster Security for Kubernetes (RHACS) version 4. 8. 11. This update addresses multiple vulnerabilities identified by seven CVEs, including CVE-2026-29063 and others. The advisory references release notes for detailed fixes and enhancements but does not specify individual vulnerability details or CVSS scores. The severity of the advisory is classified as high. Users of earlier RHACS versions are advised to upgrade to 4. 8. 11 to benefit from the security patches and bug fixes.

Red Hat Advanced Cluster Security for Kubernetes (RHACS) version 4. 9. 6 includes multiple security and bug fixes addressing a set of vulnerabilities identified by ten CVEs including CVE-2026-25679 and others. The advisory references release notes for detailed information on fixes and enhancements. Users of earlier RHACS versions are advised to upgrade to 4. 9. 6 to benefit from these security patches and improvements. No known exploits in the wild have been reported for these vulnerabilities. The advisory does not provide specific technical details or CVSS scores for the vulnerabilities but categorizes the overall severity as high.

This Red Hat security advisory addresses multiple vulnerabilities in the linux-sgx package for Red Hat Enterprise Linux 10. The vulnerabilities include denial of service via improper input validation, arbitrary file overwrite and symlink poisoning, prototype pollution, and path traversal bypass issues. These flaws affect components such as qs, node-tar, and lodash libraries used within the Intel SGX SDK environment. The update is rated as important by Red Hat Product Security and addresses eight CVEs including CVE-2025-13465 and CVE-2025-15284. The advisory provides updated packages to remediate these issues. No known exploits in the wild have been reported at this time.

Red Hat has released updated Cryostat 4 on RHEL 9 container images that address multiple security vulnerabilities affecting various components and libraries. These fixes include patches for denial of service, authorization bypass, information disclosure, request smuggling, memory safety, and arbitrary code execution issues. Users of Cryostat 4 on RHEL 9 container images are advised to upgrade to the updated images and rebuild dependent container images to ensure these vulnerabilities are mitigated.

Memory-safety vulnerability in github.com/jackc/pgx/v5.