What is RHSA-2026:12740?

RHSA-2026:12740 is a security advisory published by Red Hat Product Security with Medium severity. Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

Which CVE IDs does RHSA-2026:12740 cover?

RHSA-2026:12740 covers the following CVE IDs: CVE-2026-5450, CVE-2026-5928, CVE-2026-6238, CVE-2026-4046, CVE-2026-5435. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHSA-2026:12740?

RHSA-2026:12740 has a CVSS v3 base score of 6.5, published by Red Hat Product Security.

RHSA-2026:12740MediumCVSS 6.5

Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

Vendor

Red Hat Product Security

Published

May 1, 2026

Last Modified

May 30, 2026

🔗 CVE IDs covered (5)

CVE-2026-5450 →CVE-2026-5928 →CVE-2026-6238 →CVE-2026-4046 →CVE-2026-5435 →

📋 Description

CVE-2026-4046 — glibc: glibc: Denial of Service via iconv() function with specific character sets CVE-2026-5435 — glibc: glibc: Out-of-bounds write via TSIG record processing CVE-2026-5450 — glibc: glibc: Heap Buffer Overflow in scanf with %mc format specifier and large width CVE-2026-5928 — glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings CVE-2026-6238 — glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

🔗 References (9)

selfhttps://access.redhat.com/errata/RHSA-2026:12740
externalhttps://images.redhat.com/
externalhttps://access.redhat.com/security/cve/CVE-2026-5435
externalhttps://access.redhat.com/security/updates/classification/
externalhttps://access.redhat.com/security/cve/CVE-2026-5928
externalhttps://access.redhat.com/security/cve/CVE-2026-5450
externalhttps://access.redhat.com/security/cve/CVE-2026-4046
externalhttps://access.redhat.com/security/cve/CVE-2026-6238
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_12740.json