RHSA-2026:29986MediumCVSS 6.6

Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

Published
June 25, 2026
Last Modified
July 2, 2026

🔗 CVE IDs covered (9)

📋 Description

CVE-2026-40612 — jq: stack overflow via unbounded recursion in jv_contains CVE-2026-41256 — jq: embedded NUL truncates top-level jq programs loaded with -f CVE-2026-41257 — jq: signed-int overflow in stack_reallocate CVE-2026-43894 — jq: jq: Arbitrary Code Execution or Denial of Service via Signed Integer Overflow CVE-2026-43895 — jq: embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifacts CVE-2026-43896 — jq: stack overflow in recursive object merge CVE-2026-47770 — jq: jq: Denial of Service via deeply nested array comparison CVE-2026-49839 — jq: jq: Heap out-of-bounds write via oversized raw file processing CVE-2026-54679 — jq: jq: Denial of Service via integer overflow and buffer overrun on 32-bit systems

🔗 References (13)