RHSA-2026:26054HighCVSS 7.5

Red Hat Security Advisory: osbuild-composer security update

Published
June 15, 2026
Last Modified
July 7, 2026

🔗 CVE IDs covered (2)

📋 Description

CVE-2026-32281 — crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation CVE-2026-34986 — github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object

🔗 References (5)