RHSA-2026:7180MediumCVSS 6.1
Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
🔗 CVE IDs covered (3)
📋 Description
CVE-2025-14104 — util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames CVE-2026-3184 — util-linux: util-linux: Access control bypass due to improper hostname canonicalization CVE-2026-27456 — util-linux: TOCTOU in the mount program when setting up loop devices
🔗 References (7)
- selfhttps://access.redhat.com/errata/RHSA-2026:7180
- externalhttps://images.redhat.com/
- externalhttps://access.redhat.com/security/cve/CVE-2026-27456
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://access.redhat.com/security/cve/CVE-2025-14104
- externalhttps://access.redhat.com/security/cve/CVE-2026-3184
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_7180.json