{ "document" : { "aggregate_severity" : { "text" : "hoch" }, "category" : "csaf_base", "csaf_version" : "2.0", "distribution" : { "tlp" : { "label" : "WHITE", "url" : "https://www.first.org/tlp/" } }, "lang" : "de-DE", "notes" : [ { "category" : "legal_disclaimer", "text" : "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen." }, { "category" : "description", "text" : "Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.", "title" : "Produktbeschreibung" }, { "category" : "summary", "text" : "Ein Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um einen Denial of Service Angriff durchzuführen, vertrauliche Informationen offenzulegen, erweiterte Berechtigungen zu erlangen oder beliebigen Code auszuführen.", "title" : "Angriff" }, { "category" : "general", "text" : "- Linux\n- Sonstiges\n- UNIX", "title" : "Betroffene Betriebssysteme" } ], "publisher" : { "category" : "other", "contact_details" : "csaf-provider@cert-bund.de", "name" : "Bundesamt für Sicherheit in der Informationstechnik", "namespace" : "https://www.bsi.bund.de" }, "references" : [ { "category" : "self", "summary" : "WID-SEC-W-2026-1957 - CSAF Version", "url" : "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1957.json" }, { "category" : "self", "summary" : "WID-SEC-2026-1957 - Portal Version", "url" : "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1957" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26297 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26297" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26335 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26335" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26352 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26352" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26452 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26452" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26453 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26453" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26454 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26454" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26455 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26455" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26458 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26458" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26461 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26461" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26463 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26463" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26464 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26464" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26465 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26465" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26297 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26456" }, { "category" : "external", "summary" : "Red Hat Security Advisory RHSA-2026:26297 vom 2026-06-16", "url" : "https://access.redhat.com/errata/RHSA-2026:26457" }, { "category" : "external", "summary" : "Rocky Linux Security Advisory RLSA-2026:26352 vom 2026-06-17", "url" : "https://errata.build.resf.org/RLSA-2026:26352" }, { "category" : "external", "summary" : "Rocky Linux Security Advisory RLSA-2026:26335 vom 2026-06-17", "url" : "https://errata.build.resf.org/RLSA-2026:26335" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2026:2419-1 vom 2026-06-16", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026797.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2026:2418-1 vom 2026-06-16", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026799.html" }, { "category" : "external", "summary" : "SUSE Security Update SUSE-SU-2026:2417-1 vom 2026-06-16", "url" : "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026798.html" }, { "category" : "external", "summary" : "Oracle Linux Security Advisory ELSA-2026-26352 vom 2026-06-17", "url" : "https://linux.oracle.com/errata/ELSA-2026-26352.html" } ], "source_lang" : "en-US", "title" : "Red Hat Enterprise Linux (openCryptoki, hplip, 389-ds-base): Mehrere Schwachstellen", "tracking" : { "current_release_date" : "2026-06-16T22:00:00.000+00:00", "generator" : { "date" : "2026-06-17T09:14:55.971+00:00", "engine" : { "name" : "BSI-WID", "version" : "1.6.0" } }, "id" : "WID-SEC-W-2026-1957", "initial_release_date" : "2026-06-16T22:00:00.000+00:00", "revision_history" : [ { "date" : "2026-06-16T22:00:00.000+00:00", "number" : "1", "summary" : "Initiale Fassung" } ], "status" : "final", "version" : "1" } }, "product_tree" : { "branches" : [ { "branches" : [ { "category" : "product_name", "name" : "Oracle Linux", "product" : { "name" : "Oracle Linux", "product_id" : "T004914", "product_identification_helper" : { "cpe" : "cpe:/o:oracle:linux:-" } } } ], "category" : "vendor", "name" : "Oracle" }, { "branches" : [ { "category" : "product_name", "name" : "RESF Rocky Linux", "product" : { "name" : "RESF Rocky Linux", "product_id" : "T032255", "product_identification_helper" : { "cpe" : "cpe:/o:resf:rocky_linux:-" } } } ], "category" : "vendor", "name" : "RESF" }, { "branches" : [ { "branches" : [ { "category" : "product_version", "name" : "9", "product" : { "name" : "Red Hat Enterprise Linux 9", "product_id" : "T055469", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:9" } } }, { "category" : "product_version", "name" : "8", "product" : { "name" : "Red Hat Enterprise Linux 8", "product_id" : "T055470", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:8" } } }, { "category" : "product_version", "name" : "9.2 Update Services for SAP Solutions", "product" : { "name" : "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions", "product_id" : "T055471", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:9.2_update_services_for_sap_solutions" } } }, { "category" : "product_version", "name" : "7 Extended Lifecycle Support", "product" : { "name" : "Red Hat Enterprise Linux 7 Extended Lifecycle Support", "product_id" : "T055473", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:7_extended_lifecycle_support" } } }, { "category" : "product_version", "name" : "8.8 Update Services for SAP Solutions", "product" : { "name" : "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions", "product_id" : "T055474", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:8.8_update_services_for_sap_solutions" } } }, { "category" : "product_version", "name" : "8.8 Telecommunications Update Service", "product" : { "name" : "Red Hat Enterprise Linux 8.8 Telecommunications Update Service", "product_id" : "T055476", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:8.8_telecommunications_update_service" } } }, { "category" : "product_version", "name" : "Directory Server 11.9 for RHEL 8", "product" : { "name" : "Red Hat Enterprise Linux Directory Server 11.9 for RHEL 8", "product_id" : "T055477", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:directory_server_11.9_for_rhel_8" } } }, { "category" : "product_version", "name" : "Directory Server 11.5 E4S for RHEL 8", "product" : { "name" : "Red Hat Enterprise Linux Directory Server 11.5 E4S for RHEL 8", "product_id" : "T055478", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:directory_server_11.5_e4s_for_rhel_8" } } }, { "category" : "product_version", "name" : "8.4 Advanced Mission Critical Update Support", "product" : { "name" : "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "product_id" : "T055479", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:8.4_advanced_mission_critical_update_support" } } }, { "category" : "product_version", "name" : "8.4 Extended Update Support Long-Life Add-On", "product" : { "name" : "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On", "product_id" : "T055480", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:8.4_extended_update_support_long-life_add-on" } } }, { "category" : "product_version", "name" : "9.4 Update Services for SAP Solutions", "product" : { "name" : "Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions", "product_id" : "T055481", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:9.4_update_services_for_sap_solutions" } } }, { "category" : "product_version", "name" : "9.6 Extended Update Support", "product" : { "name" : "Red Hat Enterprise Linux 9.6 Extended Update Support", "product_id" : "T055482", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:9.6_extended_update_support" } } }, { "category" : "product_version", "name" : "10", "product" : { "name" : "Red Hat Enterprise Linux 10", "product_id" : "T055483", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:10" } } }, { "category" : "product_version", "name" : "10.0 Extended Update Support", "product" : { "name" : "Red Hat Enterprise Linux 10.0 Extended Update Support", "product_id" : "T055484", "product_identification_helper" : { "cpe" : "cpe:/o:redhat:enterprise_linux:10.0_extended_update_support" } } } ], "category" : "product_name", "name" : "Enterprise Linux" } ], "category" : "vendor", "name" : "Red Hat" }, { "branches" : [ { "category" : "product_name", "name" : "SUSE Linux", "product" : { "name" : "SUSE Linux", "product_id" : "T002207", "product_identification_helper" : { "cpe" : "cpe:/o:suse:suse_linux:-" } } } ], "category" : "vendor", "name" : "SUSE" } ] }, "vulnerabilities" : [ { "cve" : "CVE-2026-40253", "product_status" : { "known_affected" : [ "T002207", "T055470", "T004914", "T032255" ] }, "release_date" : "2026-06-16T22:00:00.000+00:00", "title" : "CVE-2026-40253" }, { "cve" : "CVE-2026-8631", "product_status" : { "known_affected" : [ "T002207", "T055470", "T004914", "T055469", "T032255" ] }, "release_date" : "2026-06-16T22:00:00.000+00:00", "title" : "CVE-2026-8631" }, { "cve" : "CVE-2026-8632", "product_status" : { "known_affected" : [ "T002207", "T055470", "T004914", "T055469", "T032255" ] }, "release_date" : "2026-06-16T22:00:00.000+00:00", "title" : "CVE-2026-8632" }, { "cve" : "CVE-2026-9064", "product_status" : { "known_affected" : [ "T055476", "T055474", "T055473", "T055484", "T055483", "T055471", "T055482", "T055481", "T055480", "T004914", "T055469", "T032255", "T055479", "T055478", "T055477", "T002207" ] }, "release_date" : "2026-06-16T22:00:00.000+00:00", "title" : "CVE-2026-9064" } ] }