Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
🔗 CVE IDs covered (8)
📋 Description
CVE-2026-44168 — mariadb: Arbitrary Code Execution via improper parameter validation during State Snapshot Transfer CVE-2026-44169 — mariadb: MariaDB server: Information disclosure of stored routine definitions due to insufficient privilege check CVE-2026-44170 — mariadb: Arbitrary shell command execution via improper sanitization in CONNECT engine CVE-2026-44171 — mariadb: mbstream: Unauthorized file creation via path traversal CVE-2026-44173 — mariadb: MariaDB: Privilege bypass allows unauthorized file write via subqueries CVE-2026-48163 — mariadb: Arbitrary code execution via improper parameter validation during SST CVE-2026-48165 — mariadb: Arbitrary code execution via global system variable manipulation by a high-privileged user CVE-2026-49261 — mariadb: MariaDB Server: Arbitrary code execution via wsrep_notify_cmd
🔗 References (12)
- selfhttps://access.redhat.com/errata/RHSA-2026:25145
- externalhttps://images.redhat.com/
- externalhttps://access.redhat.com/security/cve/CVE-2026-49261
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://access.redhat.com/security/cve/CVE-2026-44169
- externalhttps://access.redhat.com/security/cve/CVE-2026-44168
- externalhttps://access.redhat.com/security/cve/CVE-2026-44170
- externalhttps://access.redhat.com/security/cve/CVE-2026-44171
- externalhttps://access.redhat.com/security/cve/CVE-2026-48163
- externalhttps://access.redhat.com/security/cve/CVE-2026-48165
- externalhttps://access.redhat.com/security/cve/CVE-2026-44173
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_25145.json