What is RHSA-2026:13812?

RHSA-2026:13812 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: updated RHEL-8 based Middleware Containers container images

What is the CVSS v3 score of RHSA-2026:13812?

RHSA-2026:13812 has a CVSS v3 base score of 8.2, published by Red Hat Product Security.

RHSA-2026:13812HighCVSS 8.2

Red Hat Security Advisory: updated RHEL-8 based Middleware Containers container images

Vendor

Red Hat Product Security

Published

May 5, 2026

Last Modified

May 26, 2026

🔗 CVE IDs covered (10)

CVE-2026-4786 →CVE-2026-5121 →CVE-2026-6100 →CVE-2025-9820 →CVE-2026-3497 →CVE-2026-4519 →CVE-2026-27135 →CVE-2025-10158 →CVE-2025-14831 →CVE-2026-4424 →

📋 Description

CVE-2025-9820 — gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function CVE-2025-10158 — rsync: Rsync: Out of bounds array access via negative index CVE-2025-14831 — gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification CVE-2026-3497 — openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables CVE-2026-4424 — libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing CVE-2026-4519 — python: Python: Command-line option injection in webbrowser.open() via crafted URLs CVE-2026-4786 — python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API CVE-2026-5121 — libarchive: libarchive: Arbitrary code execution via integer overflow in ISO9660 image processing CVE-2026-6100 — python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules CVE-2026-27135 — nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination

🔗 CVE IDs covered (10)

📋 Description

🔗 References (19)