Red hat update infrastructure 5

This hub aggregates every CVE we track for Red hat update infrastructure 5, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Red hat update infrastructure 5.

• CVE-2026-42014Gnutls: fix use-after-free in gnutls_pkcs11_token_set_pin6.6Jun 16, 2026
• CVE-2026-5419Guntls: gnutls: information disclosure via timing side-channel in pkcs#7 padding removal3.7Jun 1, 2026
• CVE-2026-42015Gnutls: gnutls: memory corruption due to off-by-one error in pkcs#12 bag handling5.3May 26, 2026
• CVE-2026-42013Gnutls: gnutls: certificate validation bypass due to oversized subject alternative name8.2May 26, 2026
• CVE-2026-42012Gnutls: gnutls: certificate validation bypass due to improper handling of uri and srv sans7.1May 26, 2026
• CVE-2026-5260Gnutls: gnutls: information disclosure via heap overread in rsa key exchange8.2May 26, 2026
• CVE-2026-42009Gnutls: gnutls: denial of service via dtls packet reordering vulnerability7.5May 18, 2026
• CVE-2026-42011Gnutls: gnutls: security bypass due to incorrect name constraint handling7.4May 7, 2026
• CVE-2026-42010Gnutls: gnutls: authentication bypass via nul character in username7.1May 7, 2026
• CVE-2026-33846Gnutls: gnutls: denial of service via heap buffer overflow in dtls handshake fragment reassembly7.5May 4, 2026
• CVE-2026-33845Gnutls: gnutls: denial of service via dtls zero-length fragment7.5Apr 30, 2026
• CVE-2026-3832Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response3.7Apr 30, 2026
• CVE-2026-3833Gnutls: gnutls: policy bypass due to case-sensitive nameconstraints comparison6.5Apr 30, 2026
• CVE-2026-4878Libcap: libcap: privilege escalation via toctou race condition in cap_set_file()6.7Apr 9, 2026
• CVE-2026-5121Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing7.5Mar 30, 2026