Red hat hardened images

This hub aggregates every CVE we track for Red hat hardened images, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Red hat hardened images.

• CVE-2026-56211Libaom: libaom: remote code execution via svc layer context handling with attacker-controlled frames7.1Jun 19, 2026
• CVE-2026-56210Libaom: libaom: heap-buffer-overflow read via missing bounds check in ctrl_set_layer_id7.1Jun 19, 2026
• CVE-2026-56209Libaom: libaom: arbitrary address write via svc layer context oob and cyclic refresh map pointer hijack7.1Jun 19, 2026
• CVE-2026-56208Libaom: libaom: heap buffer overflow in av1 encoder first-pass stats buffer via lap mode7.6Jun 19, 2026
• CVE-2026-12515Katello: missing repository authorization in content_uploads exposes cross-product content existence4.3Jun 17, 2026
• CVE-2026-4367Libxpm: libxpm: denial of service via out-of-bounds read in xpm file parsing5.5Jun 16, 2026
• CVE-2026-42014Gnutls: fix use-after-free in gnutls_pkcs11_token_set_pin6.6Jun 16, 2026
• CVE-2026-11850Krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read5.0Jun 11, 2026
• CVE-2026-6893Dracut: dracut: root code execution via dhcp options command injection7.5Jun 10, 2026
• CVE-2026-5419Guntls: gnutls: information disclosure via timing side-channel in pkcs#7 padding removal3.7Jun 1, 2026
• CVE-2026-10118Poppler: integer overflow in poppler splashoutputdev::tilingpatternfill leads to heap buffer overflow via unchecked dimension multiplication7.8Jun 1, 2026
• CVE-2026-44604Rpm: command injection in rpmuncompress dountar() via unescaped archive top-level directory name in popen() shell command7.0May 28, 2026
• CVE-2026-42015Gnutls: gnutls: memory corruption due to off-by-one error in pkcs#12 bag handling5.3May 26, 2026
• CVE-2026-42013Gnutls: gnutls: certificate validation bypass due to oversized subject alternative name8.2May 26, 2026
• CVE-2026-42012Gnutls: gnutls: certificate validation bypass due to improper handling of uri and srv sans7.1May 26, 2026