RHSA-2026:25143HighCVSS 9.9

Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

Published
June 10, 2026
Last Modified
July 1, 2026

🔗 CVE IDs covered (9)

📋 Description

CVE-2026-44168 — mariadb: Arbitrary Code Execution via improper parameter validation during State Snapshot Transfer CVE-2026-44169 — mariadb: MariaDB server: Information disclosure of stored routine definitions due to insufficient privilege check CVE-2026-44170 — mariadb: Arbitrary shell command execution via improper sanitization in CONNECT engine CVE-2026-44171 — mariadb: mbstream: Unauthorized file creation via path traversal CVE-2026-44173 — mariadb: MariaDB: Privilege bypass allows unauthorized file write via subqueries CVE-2026-44432 — urllib3: urllib3: Denial of Service due to excessive HTTP response decompression CVE-2026-48163 — mariadb: Arbitrary code execution via improper parameter validation during SST CVE-2026-48165 — mariadb: Arbitrary code execution via global system variable manipulation by a high-privileged user CVE-2026-49261 — mariadb: MariaDB Server: Arbitrary code execution via wsrep_notify_cmd

🔗 References (13)