Search
Find a vulnerability
Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
Related vulnerabilities
OPENSUSE-SU-2026:11193-1
Vulnerability from csaf_opensuse - Published: 2026-07-06 00:00 - Updated: 2026-07-06 00:00Summary
librpmbuild10-4.20.1-8.1 on GA media
Severity
Moderate
Notes
Title of the patch: librpmbuild10-4.20.1-8.1 on GA media
Description of the patch: These are all security issues fixed in the librpmbuild10-4.20.1-8.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-11193
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-build-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-build-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-build-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-build-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-build-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-build-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-build-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-build-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "librpmbuild10-4.20.1-8.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the librpmbuild10-4.20.1-8.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-11193",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_11193-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-44604 page",
"url": "https://www.suse.com/security/cve/CVE-2026-44604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-44605 page",
"url": "https://www.suse.com/security/cve/CVE-2026-44605/"
}
],
"title": "librpmbuild10-4.20.1-8.1 on GA media",
"tracking": {
"current_release_date": "2026-07-06T00:00:00Z",
"generator": {
"date": "2026-07-06T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:11193-1",
"initial_release_date": "2026-07-06T00:00:00Z",
"revision_history": [
{
"date": "2026-07-06T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "librpmbuild10-4.20.1-8.1.aarch64",
"product": {
"name": "librpmbuild10-4.20.1-8.1.aarch64",
"product_id": "librpmbuild10-4.20.1-8.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-4.20.1-8.1.aarch64",
"product": {
"name": "rpm-4.20.1-8.1.aarch64",
"product_id": "rpm-4.20.1-8.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-32bit-4.20.1-8.1.aarch64",
"product": {
"name": "rpm-32bit-4.20.1-8.1.aarch64",
"product_id": "rpm-32bit-4.20.1-8.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-build-4.20.1-8.1.aarch64",
"product": {
"name": "rpm-build-4.20.1-8.1.aarch64",
"product_id": "rpm-build-4.20.1-8.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.20.1-8.1.aarch64",
"product": {
"name": "rpm-devel-4.20.1-8.1.aarch64",
"product_id": "rpm-devel-4.20.1-8.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.aarch64",
"product": {
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.aarch64",
"product_id": "rpm-plugin-fapolicyd-4.20.1-8.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-ima-4.20.1-8.1.aarch64",
"product": {
"name": "rpm-plugin-ima-4.20.1-8.1.aarch64",
"product_id": "rpm-plugin-ima-4.20.1-8.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-prioreset-4.20.1-8.1.aarch64",
"product": {
"name": "rpm-plugin-prioreset-4.20.1-8.1.aarch64",
"product_id": "rpm-plugin-prioreset-4.20.1-8.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-selinux-4.20.1-8.1.aarch64",
"product": {
"name": "rpm-plugin-selinux-4.20.1-8.1.aarch64",
"product_id": "rpm-plugin-selinux-4.20.1-8.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-syslog-4.20.1-8.1.aarch64",
"product": {
"name": "rpm-plugin-syslog-4.20.1-8.1.aarch64",
"product_id": "rpm-plugin-syslog-4.20.1-8.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-unshare-4.20.1-8.1.aarch64",
"product": {
"name": "rpm-plugin-unshare-4.20.1-8.1.aarch64",
"product_id": "rpm-plugin-unshare-4.20.1-8.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "librpmbuild10-4.20.1-8.1.ppc64le",
"product": {
"name": "librpmbuild10-4.20.1-8.1.ppc64le",
"product_id": "librpmbuild10-4.20.1-8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-4.20.1-8.1.ppc64le",
"product": {
"name": "rpm-4.20.1-8.1.ppc64le",
"product_id": "rpm-4.20.1-8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-32bit-4.20.1-8.1.ppc64le",
"product": {
"name": "rpm-32bit-4.20.1-8.1.ppc64le",
"product_id": "rpm-32bit-4.20.1-8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-build-4.20.1-8.1.ppc64le",
"product": {
"name": "rpm-build-4.20.1-8.1.ppc64le",
"product_id": "rpm-build-4.20.1-8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.20.1-8.1.ppc64le",
"product": {
"name": "rpm-devel-4.20.1-8.1.ppc64le",
"product_id": "rpm-devel-4.20.1-8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le",
"product": {
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le",
"product_id": "rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-plugin-ima-4.20.1-8.1.ppc64le",
"product": {
"name": "rpm-plugin-ima-4.20.1-8.1.ppc64le",
"product_id": "rpm-plugin-ima-4.20.1-8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-plugin-prioreset-4.20.1-8.1.ppc64le",
"product": {
"name": "rpm-plugin-prioreset-4.20.1-8.1.ppc64le",
"product_id": "rpm-plugin-prioreset-4.20.1-8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-plugin-selinux-4.20.1-8.1.ppc64le",
"product": {
"name": "rpm-plugin-selinux-4.20.1-8.1.ppc64le",
"product_id": "rpm-plugin-selinux-4.20.1-8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-plugin-syslog-4.20.1-8.1.ppc64le",
"product": {
"name": "rpm-plugin-syslog-4.20.1-8.1.ppc64le",
"product_id": "rpm-plugin-syslog-4.20.1-8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-plugin-unshare-4.20.1-8.1.ppc64le",
"product": {
"name": "rpm-plugin-unshare-4.20.1-8.1.ppc64le",
"product_id": "rpm-plugin-unshare-4.20.1-8.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "librpmbuild10-4.20.1-8.1.s390x",
"product": {
"name": "librpmbuild10-4.20.1-8.1.s390x",
"product_id": "librpmbuild10-4.20.1-8.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-4.20.1-8.1.s390x",
"product": {
"name": "rpm-4.20.1-8.1.s390x",
"product_id": "rpm-4.20.1-8.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-32bit-4.20.1-8.1.s390x",
"product": {
"name": "rpm-32bit-4.20.1-8.1.s390x",
"product_id": "rpm-32bit-4.20.1-8.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-build-4.20.1-8.1.s390x",
"product": {
"name": "rpm-build-4.20.1-8.1.s390x",
"product_id": "rpm-build-4.20.1-8.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.20.1-8.1.s390x",
"product": {
"name": "rpm-devel-4.20.1-8.1.s390x",
"product_id": "rpm-devel-4.20.1-8.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.s390x",
"product": {
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.s390x",
"product_id": "rpm-plugin-fapolicyd-4.20.1-8.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-plugin-ima-4.20.1-8.1.s390x",
"product": {
"name": "rpm-plugin-ima-4.20.1-8.1.s390x",
"product_id": "rpm-plugin-ima-4.20.1-8.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-plugin-prioreset-4.20.1-8.1.s390x",
"product": {
"name": "rpm-plugin-prioreset-4.20.1-8.1.s390x",
"product_id": "rpm-plugin-prioreset-4.20.1-8.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-plugin-selinux-4.20.1-8.1.s390x",
"product": {
"name": "rpm-plugin-selinux-4.20.1-8.1.s390x",
"product_id": "rpm-plugin-selinux-4.20.1-8.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-plugin-syslog-4.20.1-8.1.s390x",
"product": {
"name": "rpm-plugin-syslog-4.20.1-8.1.s390x",
"product_id": "rpm-plugin-syslog-4.20.1-8.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-plugin-unshare-4.20.1-8.1.s390x",
"product": {
"name": "rpm-plugin-unshare-4.20.1-8.1.s390x",
"product_id": "rpm-plugin-unshare-4.20.1-8.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "librpmbuild10-4.20.1-8.1.x86_64",
"product": {
"name": "librpmbuild10-4.20.1-8.1.x86_64",
"product_id": "librpmbuild10-4.20.1-8.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-4.20.1-8.1.x86_64",
"product": {
"name": "rpm-4.20.1-8.1.x86_64",
"product_id": "rpm-4.20.1-8.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-32bit-4.20.1-8.1.x86_64",
"product": {
"name": "rpm-32bit-4.20.1-8.1.x86_64",
"product_id": "rpm-32bit-4.20.1-8.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-build-4.20.1-8.1.x86_64",
"product": {
"name": "rpm-build-4.20.1-8.1.x86_64",
"product_id": "rpm-build-4.20.1-8.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.20.1-8.1.x86_64",
"product": {
"name": "rpm-devel-4.20.1-8.1.x86_64",
"product_id": "rpm-devel-4.20.1-8.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.x86_64",
"product": {
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.x86_64",
"product_id": "rpm-plugin-fapolicyd-4.20.1-8.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-ima-4.20.1-8.1.x86_64",
"product": {
"name": "rpm-plugin-ima-4.20.1-8.1.x86_64",
"product_id": "rpm-plugin-ima-4.20.1-8.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-prioreset-4.20.1-8.1.x86_64",
"product": {
"name": "rpm-plugin-prioreset-4.20.1-8.1.x86_64",
"product_id": "rpm-plugin-prioreset-4.20.1-8.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-selinux-4.20.1-8.1.x86_64",
"product": {
"name": "rpm-plugin-selinux-4.20.1-8.1.x86_64",
"product_id": "rpm-plugin-selinux-4.20.1-8.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-syslog-4.20.1-8.1.x86_64",
"product": {
"name": "rpm-plugin-syslog-4.20.1-8.1.x86_64",
"product_id": "rpm-plugin-syslog-4.20.1-8.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-plugin-unshare-4.20.1-8.1.x86_64",
"product": {
"name": "rpm-plugin-unshare-4.20.1-8.1.x86_64",
"product_id": "rpm-plugin-unshare-4.20.1-8.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "librpmbuild10-4.20.1-8.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.aarch64"
},
"product_reference": "librpmbuild10-4.20.1-8.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librpmbuild10-4.20.1-8.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.ppc64le"
},
"product_reference": "librpmbuild10-4.20.1-8.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librpmbuild10-4.20.1-8.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.s390x"
},
"product_reference": "librpmbuild10-4.20.1-8.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librpmbuild10-4.20.1-8.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.x86_64"
},
"product_reference": "librpmbuild10-4.20.1-8.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.20.1-8.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-4.20.1-8.1.aarch64"
},
"product_reference": "rpm-4.20.1-8.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.20.1-8.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-4.20.1-8.1.ppc64le"
},
"product_reference": "rpm-4.20.1-8.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.20.1-8.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-4.20.1-8.1.s390x"
},
"product_reference": "rpm-4.20.1-8.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.20.1-8.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-4.20.1-8.1.x86_64"
},
"product_reference": "rpm-4.20.1-8.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-32bit-4.20.1-8.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.aarch64"
},
"product_reference": "rpm-32bit-4.20.1-8.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-32bit-4.20.1-8.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.ppc64le"
},
"product_reference": "rpm-32bit-4.20.1-8.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-32bit-4.20.1-8.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.s390x"
},
"product_reference": "rpm-32bit-4.20.1-8.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-32bit-4.20.1-8.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.x86_64"
},
"product_reference": "rpm-32bit-4.20.1-8.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.20.1-8.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-build-4.20.1-8.1.aarch64"
},
"product_reference": "rpm-build-4.20.1-8.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.20.1-8.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-build-4.20.1-8.1.ppc64le"
},
"product_reference": "rpm-build-4.20.1-8.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.20.1-8.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-build-4.20.1-8.1.s390x"
},
"product_reference": "rpm-build-4.20.1-8.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.20.1-8.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-build-4.20.1-8.1.x86_64"
},
"product_reference": "rpm-build-4.20.1-8.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.20.1-8.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.aarch64"
},
"product_reference": "rpm-devel-4.20.1-8.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.20.1-8.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.ppc64le"
},
"product_reference": "rpm-devel-4.20.1-8.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.20.1-8.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.s390x"
},
"product_reference": "rpm-devel-4.20.1-8.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.20.1-8.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.x86_64"
},
"product_reference": "rpm-devel-4.20.1-8.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.aarch64"
},
"product_reference": "rpm-plugin-fapolicyd-4.20.1-8.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le"
},
"product_reference": "rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.s390x"
},
"product_reference": "rpm-plugin-fapolicyd-4.20.1-8.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-fapolicyd-4.20.1-8.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.x86_64"
},
"product_reference": "rpm-plugin-fapolicyd-4.20.1-8.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-ima-4.20.1-8.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.aarch64"
},
"product_reference": "rpm-plugin-ima-4.20.1-8.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-ima-4.20.1-8.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.ppc64le"
},
"product_reference": "rpm-plugin-ima-4.20.1-8.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-ima-4.20.1-8.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.s390x"
},
"product_reference": "rpm-plugin-ima-4.20.1-8.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-ima-4.20.1-8.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.x86_64"
},
"product_reference": "rpm-plugin-ima-4.20.1-8.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-prioreset-4.20.1-8.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.aarch64"
},
"product_reference": "rpm-plugin-prioreset-4.20.1-8.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-prioreset-4.20.1-8.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.ppc64le"
},
"product_reference": "rpm-plugin-prioreset-4.20.1-8.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-prioreset-4.20.1-8.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.s390x"
},
"product_reference": "rpm-plugin-prioreset-4.20.1-8.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-prioreset-4.20.1-8.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.x86_64"
},
"product_reference": "rpm-plugin-prioreset-4.20.1-8.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-selinux-4.20.1-8.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.aarch64"
},
"product_reference": "rpm-plugin-selinux-4.20.1-8.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-selinux-4.20.1-8.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.ppc64le"
},
"product_reference": "rpm-plugin-selinux-4.20.1-8.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-selinux-4.20.1-8.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.s390x"
},
"product_reference": "rpm-plugin-selinux-4.20.1-8.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-selinux-4.20.1-8.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.x86_64"
},
"product_reference": "rpm-plugin-selinux-4.20.1-8.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-syslog-4.20.1-8.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.aarch64"
},
"product_reference": "rpm-plugin-syslog-4.20.1-8.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-syslog-4.20.1-8.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.ppc64le"
},
"product_reference": "rpm-plugin-syslog-4.20.1-8.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-syslog-4.20.1-8.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.s390x"
},
"product_reference": "rpm-plugin-syslog-4.20.1-8.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-syslog-4.20.1-8.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.x86_64"
},
"product_reference": "rpm-plugin-syslog-4.20.1-8.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-unshare-4.20.1-8.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.aarch64"
},
"product_reference": "rpm-plugin-unshare-4.20.1-8.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-unshare-4.20.1-8.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.ppc64le"
},
"product_reference": "rpm-plugin-unshare-4.20.1-8.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-unshare-4.20.1-8.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.s390x"
},
"product_reference": "rpm-plugin-unshare-4.20.1-8.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-plugin-unshare-4.20.1-8.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.x86_64"
},
"product_reference": "rpm-plugin-unshare-4.20.1-8.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-44604",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-44604"
}
],
"notes": [
{
"category": "general",
"text": "A command injection vulnerability was discovered in the `rpmuncompress` utility of RPM. When extracting certain archive formats (ZIP, 7z, GEM) to a specified destination directory, the tool inserts the archive\u0027s top-level folder name into a shell command without properly sanitizing it. A specially crafted archive containing shell metacharacters in its folder name can execute arbitrary commands as the user running the extraction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-44604",
"url": "https://www.suse.com/security/cve/CVE-2026-44604"
},
{
"category": "external",
"summary": "SUSE Bug 1268747 for CVE-2026-44604",
"url": "https://bugzilla.suse.com/1268747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-06T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-44604"
},
{
"cve": "CVE-2026-44605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-44605"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-44605",
"url": "https://www.suse.com/security/cve/CVE-2026-44605"
},
{
"category": "external",
"summary": "SUSE Bug 1269584 for CVE-2026-44605",
"url": "https://bugzilla.suse.com/1269584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:librpmbuild10-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-32bit-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-build-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-devel-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-fapolicyd-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-ima-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-prioreset-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-selinux-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-syslog-4.20.1-8.1.x86_64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.aarch64",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.ppc64le",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.s390x",
"openSUSE Tumbleweed:rpm-plugin-unshare-4.20.1-8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-06T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-44605"
}
]
}
RHSA-2026:33507
Vulnerability from csaf_redhat - Published: 2026-06-30 13:16 - Updated: 2026-06-30 13:18Summary
Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
Severity
Low
Notes
Topic: An update for Red Hat Hardened Images RPMs is now available.
Details: This update includes the following RPMs:
rpm:
* python3-rpm-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-apidocs-6.0.1-6.2.hum1 (noarch)
* rpm-build-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-build-libs-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-cron-6.0.1-6.2.hum1 (noarch)
* rpm-devel-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-libs-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-plugin-audit-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-plugin-dbus-announce-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-plugin-fapolicyd-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-plugin-fsverity-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-plugin-ima-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-plugin-prioreset-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-plugin-selinux-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-plugin-syslog-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-plugin-systemd-inhibit-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-plugin-unshare-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-sign-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-sign-libs-6.0.1-6.2.hum1 (aarch64, x86_64)
* rpm-6.0.1-6.2.hum1.src (src)
Security Fix(es):
rpm:
* CVE-2026-44605
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
No description is available for this CVE.
5.5 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Hardened Images:rpm-main@aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Hardened Images:rpm-main@noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Hardened Images:rpm-main@src | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Hardened Images:rpm-main@x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for Red Hat Hardened Images RPMs is now available.",
"title": "Topic"
},
{
"category": "general",
"text": "This update includes the following RPMs:\n\nrpm:\n * python3-rpm-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-apidocs-6.0.1-6.2.hum1 (noarch)\n * rpm-build-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-build-libs-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-cron-6.0.1-6.2.hum1 (noarch)\n * rpm-devel-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-libs-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-plugin-audit-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-plugin-dbus-announce-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-plugin-fapolicyd-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-plugin-fsverity-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-plugin-ima-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-plugin-prioreset-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-plugin-selinux-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-plugin-syslog-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-plugin-systemd-inhibit-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-plugin-unshare-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-sign-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-sign-libs-6.0.1-6.2.hum1 (aarch64, x86_64)\n * rpm-6.0.1-6.2.hum1.src (src)\n\nSecurity Fix(es):\n\nrpm:\n * CVE-2026-44605",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:33507",
"url": "https://access.redhat.com/errata/RHSA-2026:33507"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44605",
"url": "https://access.redhat.com/security/cve/CVE-2026-44605"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://images.redhat.com/",
"url": "https://images.redhat.com/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_33507.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update",
"tracking": {
"current_release_date": "2026-06-30T13:18:17+00:00",
"generator": {
"date": "2026-06-30T13:18:17+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:33507",
"initial_release_date": "2026-06-30T13:16:04+00:00",
"revision_history": [
{
"date": "2026-06-30T13:16:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-30T13:17:01+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-30T13:18:17+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Hardened Images",
"product": {
"name": "Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:hummingbird:1"
}
}
}
],
"category": "product_family",
"name": "Red Hat Hardened Images"
},
{
"branches": [
{
"category": "product_version",
"name": "rpm-main@aarch64",
"product": {
"name": "rpm-main@aarch64",
"product_id": "rpm-main@aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-rpm@6.0.1-6.2.hum1?arch=aarch64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-aarch64-rpms"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rpm-main@x86_64",
"product": {
"name": "rpm-main@x86_64",
"product_id": "rpm-main@x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-rpm@6.0.1-6.2.hum1?arch=x86_64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rpm-main@src",
"product": {
"name": "rpm-main@src",
"product_id": "rpm-main@src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rpm@6.0.1-6.2.hum1?arch=src\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-source-rpms"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rpm-main@noarch",
"product": {
"name": "rpm-main@noarch",
"product_id": "rpm-main@noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rpm-apidocs@6.0.1-6.2.hum1?arch=noarch\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-main@aarch64 as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:rpm-main@aarch64"
},
"product_reference": "rpm-main@aarch64",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-main@noarch as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:rpm-main@noarch"
},
"product_reference": "rpm-main@noarch",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-main@src as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:rpm-main@src"
},
"product_reference": "rpm-main@src",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-main@x86_64 as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:rpm-main@x86_64"
},
"product_reference": "rpm-main@x86_64",
"relates_to_product_reference": "Red Hat Hardened Images"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-44605",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2026-05-28T05:29:12.181000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2482481"
}
],
"notes": [
{
"category": "description",
"text": "No description is available for this CVE.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rpm: heap buffer overflow in NDB slot table parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:rpm-main@aarch64",
"Red Hat Hardened Images:rpm-main@noarch",
"Red Hat Hardened Images:rpm-main@src",
"Red Hat Hardened Images:rpm-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44605"
},
{
"category": "external",
"summary": "RHBZ#2482481",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2482481"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44605",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44605"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44605",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44605"
}
],
"release_date": "2026-05-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-30T13:16:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:rpm-main@aarch64",
"Red Hat Hardened Images:rpm-main@noarch",
"Red Hat Hardened Images:rpm-main@src",
"Red Hat Hardened Images:rpm-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:33507"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:rpm-main@aarch64",
"Red Hat Hardened Images:rpm-main@noarch",
"Red Hat Hardened Images:rpm-main@src",
"Red Hat Hardened Images:rpm-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "rpm: heap buffer overflow in NDB slot table parsing"
}
]
}