RHSA-2026:12916MediumCVSS 6.5
Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
🔗 CVE IDs covered (6)
📋 Description
CVE-2026-4873 — curl: curl: Information disclosure due to incorrect TLS connection reuse CVE-2026-5545 — curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse CVE-2026-5773 — curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse CVE-2026-6253 — curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies CVE-2026-6276 — curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers CVE-2026-6429 — curl: libcurl: Credential leak via reused proxy connection during HTTP redirects
🔗 References (10)
- selfhttps://access.redhat.com/errata/RHSA-2026:12916
- externalhttps://images.redhat.com/
- externalhttps://access.redhat.com/security/cve/CVE-2026-6253
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://access.redhat.com/security/cve/CVE-2026-6429
- externalhttps://access.redhat.com/security/cve/CVE-2026-6276
- externalhttps://access.redhat.com/security/cve/CVE-2026-5773
- externalhttps://access.redhat.com/security/cve/CVE-2026-5545
- externalhttps://access.redhat.com/security/cve/CVE-2026-4873
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_12916.json