{
  "document" : {
    "aggregate_severity" : {
      "text" : "mittel"
    },
    "category" : "csaf_base",
    "csaf_version" : "2.0",
    "distribution" : {
      "tlp" : {
        "label" : "WHITE",
        "url" : "https://www.first.org/tlp/"
      }
    },
    "lang" : "de-DE",
    "notes" : [ {
      "category" : "legal_disclaimer",
      "text" : "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen."
    }, {
      "category" : "description",
      "text" : "Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.",
      "title" : "Produktbeschreibung"
    }, {
      "category" : "summary",
      "text" : "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um einen Denial of Service Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, Daten zu manipulieren oder vertrauliche Informationen offenzulegen.",
      "title" : "Angriff"
    }, {
      "category" : "general",
      "text" : "- Linux",
      "title" : "Betroffene Betriebssysteme"
    } ],
    "publisher" : {
      "category" : "other",
      "contact_details" : "csaf-provider@cert-bund.de",
      "name" : "Bundesamt für Sicherheit in der Informationstechnik",
      "namespace" : "https://www.bsi.bund.de"
    },
    "references" : [ {
      "category" : "self",
      "summary" : "WID-SEC-W-2026-2163 - CSAF Version",
      "url" : "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-2163.json"
    }, {
      "category" : "self",
      "summary" : "WID-SEC-2026-2163 - Portal Version",
      "url" : "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-2163"
    }, {
      "category" : "external",
      "summary" : "Red Hat Security Advisory RHSA-2026:33577 vom 2026-06-30",
      "url" : "https://access.redhat.com/errata/RHSA-2026:33577"
    }, {
      "category" : "external",
      "summary" : "Red Hat Security Advisory RHSA-2026:34076 vom 2026-07-01",
      "url" : "https://access.redhat.com/errata/RHSA-2026:34076"
    }, {
      "category" : "external",
      "summary" : "Oracle Linux Security Advisory ELSA-2026-33576 vom 2026-07-02",
      "url" : "https://linux.oracle.com/errata/ELSA-2026-33576.html"
    }, {
      "category" : "external",
      "summary" : "Oracle Linux Security Advisory ELSA-2026-33515 vom 2026-07-02",
      "url" : "https://linux.oracle.com/errata/ELSA-2026-33515.html"
    }, {
      "category" : "external",
      "summary" : "Oracle Linux Security Advisory ELSA-2026-33514 vom 2026-07-03",
      "url" : "https://linux.oracle.com/errata/ELSA-2026-33514.html"
    } ],
    "source_lang" : "en-US",
    "title" : "Red Hat Enterprise Linux (ruby: net-imap): Mehrere Schwachstellen",
    "tracking" : {
      "current_release_date" : "2026-07-02T22:00:00.000+00:00",
      "generator" : {
        "date" : "2026-07-03T11:25:56.559+00:00",
        "engine" : {
          "name" : "BSI-WID",
          "version" : "1.6.0"
        }
      },
      "id" : "WID-SEC-W-2026-2163",
      "initial_release_date" : "2026-06-30T22:00:00.000+00:00",
      "revision_history" : [ {
        "date" : "2026-06-30T22:00:00.000+00:00",
        "number" : "1",
        "summary" : "Initiale Fassung"
      }, {
        "date" : "2026-07-02T22:00:00.000+00:00",
        "number" : "2",
        "summary" : "Neue Updates von Oracle Linux aufgenommen"
      } ],
      "status" : "final",
      "version" : "2"
    }
  },
  "product_tree" : {
    "branches" : [ {
      "branches" : [ {
        "category" : "product_name",
        "name" : "Oracle Linux",
        "product" : {
          "name" : "Oracle Linux",
          "product_id" : "T004914",
          "product_identification_helper" : {
            "cpe" : "cpe:/o:oracle:linux:-"
          }
        }
      } ],
      "category" : "vendor",
      "name" : "Oracle"
    }, {
      "branches" : [ {
        "branches" : [ {
          "category" : "product_name",
          "name" : "Red Hat Enterprise Linux",
          "product" : {
            "name" : "Red Hat Enterprise Linux",
            "product_id" : "67646",
            "product_identification_helper" : {
              "cpe" : "cpe:/o:redhat:enterprise_linux:-"
            }
          }
        }, {
          "category" : "product_version",
          "name" : "9",
          "product" : {
            "name" : "Red Hat Enterprise Linux 9",
            "product_id" : "T056044",
            "product_identification_helper" : {
              "cpe" : "cpe:/o:redhat:enterprise_linux:9"
            }
          }
        } ],
        "category" : "product_name",
        "name" : "Enterprise Linux"
      } ],
      "category" : "vendor",
      "name" : "Red Hat"
    } ]
  },
  "vulnerabilities" : [ {
    "cve" : "CVE-2026-42245",
    "product_status" : {
      "known_affected" : [ "67646", "T056044", "T004914" ]
    },
    "release_date" : "2026-06-30T22:00:00.000+00:00",
    "title" : "CVE-2026-42245"
  }, {
    "cve" : "CVE-2026-42246",
    "product_status" : {
      "known_affected" : [ "67646", "T056044", "T004914" ]
    },
    "release_date" : "2026-06-30T22:00:00.000+00:00",
    "title" : "CVE-2026-42246"
  }, {
    "cve" : "CVE-2026-42258",
    "product_status" : {
      "known_affected" : [ "67646", "T056044", "T004914" ]
    },
    "release_date" : "2026-06-30T22:00:00.000+00:00",
    "title" : "CVE-2026-42258"
  } ]
}