RHSA-2026:7291
Advisory lineage Upstream: 40 Downstream: 0
Published: 14 May 2026, 10:08
Last modified:05 Jun 2026, 10:08
Vulnerability Summary
Overall Risk (default)
medium
35/100 CVSS Score
8.8 HIGH
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
14 May 2026, 10:08
Published
Vulnerability first disclosed
05 Jun 2026, 10:08
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
CVSS Metrics
- v3.1•HIGH•Score: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L
Affected Systems
- redhat•golang1.26
< 0:1.26.2-1.hum1
- redhat•golang1.26-docs
< 0:1.26.2-1.hum1
References (299)
- https://access.redhat.com/errata/RHSA-2026:7291
- https://images.redhat.com/
- https://access.redhat.com/security/cve/CVE-2026-27141
- https://access.redhat.com/security/updates/classification/
- https://access.redhat.com/security/cve/CVE-2025-58190
- https://access.redhat.com/security/cve/CVE-2025-47911
- https://access.redhat.com/security/cve/CVE-2025-22873
- https://access.redhat.com/security/cve/CVE-2025-68119
- https://access.redhat.com/security/cve/CVE-2025-61732
- https://access.redhat.com/security/cve/CVE-2025-61731
- https://access.redhat.com/security/cve/CVE-2025-61725
- https://access.redhat.com/security/cve/CVE-2025-61724
- https://access.redhat.com/security/cve/CVE-2025-61723
- https://access.redhat.com/security/cve/CVE-2025-58186
- https://access.redhat.com/security/cve/CVE-2025-58185
- https://access.redhat.com/security/cve/CVE-2025-58181
- https://access.redhat.com/security/cve/CVE-2025-47914
- https://access.redhat.com/security/cve/CVE-2025-47912
- https://access.redhat.com/security/cve/CVE-2025-47910
- https://access.redhat.com/security/cve/CVE-2025-68121
- https://access.redhat.com/security/cve/CVE-2025-61730
- https://access.redhat.com/security/cve/CVE-2025-61729
- https://access.redhat.com/security/cve/CVE-2025-58189
- https://access.redhat.com/security/cve/CVE-2025-58187
- https://access.redhat.com/security/cve/CVE-2025-58188
- https://access.redhat.com/security/cve/CVE-2025-58183
- https://access.redhat.com/security/cve/CVE-2025-61728
- https://access.redhat.com/security/cve/CVE-2025-61726
- https://access.redhat.com/security/cve/CVE-2026-33809
- https://access.redhat.com/security/cve/CVE-2026-32289
- https://access.redhat.com/security/cve/CVE-2026-32288
- https://access.redhat.com/security/cve/CVE-2026-32283
- https://access.redhat.com/security/cve/CVE-2026-32282
- https://access.redhat.com/security/cve/CVE-2026-32281
- https://access.redhat.com/security/cve/CVE-2026-27144
- https://access.redhat.com/security/cve/CVE-2026-27143
- https://access.redhat.com/security/cve/CVE-2026-33810
- https://access.redhat.com/security/cve/CVE-2025-61727
- https://access.redhat.com/security/cve/CVE-2026-25679
- https://access.redhat.com/security/cve/CVE-2026-27139
- https://access.redhat.com/security/cve/CVE-2026-27138
- https://access.redhat.com/security/cve/CVE-2026-27137
- https://access.redhat.com/security/cve/CVE-2026-27142
- https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_7291.json
- https://bugzilla.redhat.com/show_bug.cgi?id=2436992
- https://www.cve.org/CVERecord?id=CVE-2025-22873
- https://nvd.nist.gov/vuln/detail/CVE-2025-22873
- http://www.openwall.com/lists/oss-security/2025/05/06/2
- https://go.dev/cl/670036
- https://go.dev/issue/73555
- https://groups.google.com/g/golang-announce/c/UZoIkUT367A/m/5WDxKizJAQAJ
- https://pkg.go.dev/vuln/GO-2026-4403
- https://bugzilla.redhat.com/show_bug.cgi?id=2397528
- https://www.cve.org/CVERecord?id=CVE-2025-47910
- https://nvd.nist.gov/vuln/detail/CVE-2025-47910
- https://go.dev/cl/699275
- https://go.dev/issue/75054
- https://groups.google.com/g/golang-announce/c/PtW9VW21NPs/m/DJhMQ-m5AQAJ
- https://pkg.go.dev/vuln/GO-2025-3955
- https://bugzilla.redhat.com/show_bug.cgi?id=2437109
- https://www.cve.org/CVERecord?id=CVE-2025-47911
- https://nvd.nist.gov/vuln/detail/CVE-2025-47911
- https://github.com/golang/vulndb/issues/4440
- https://go.dev/cl/709876
- https://groups.google.com/g/golang-announce/c/jnQcOYpiR2c
- https://pkg.go.dev/vuln/GO-2026-4440
- https://bugzilla.redhat.com/show_bug.cgi?id=2407247
- https://www.cve.org/CVERecord?id=CVE-2025-47912
- https://nvd.nist.gov/vuln/detail/CVE-2025-47912
- https://go.dev/cl/709857
- https://go.dev/issue/75678
- https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI
- https://pkg.go.dev/vuln/GO-2025-4010
- https://bugzilla.redhat.com/show_bug.cgi?id=2416000
- https://www.cve.org/CVERecord?id=CVE-2025-47914
- https://nvd.nist.gov/vuln/detail/CVE-2025-47914
- https://go.dev/cl/721960
- https://go.dev/issue/76364
- https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA
- https://pkg.go.dev/vuln/GO-2025-4135
- https://bugzilla.redhat.com/show_bug.cgi?id=2415997
- https://www.cve.org/CVERecord?id=CVE-2025-58181
- https://nvd.nist.gov/vuln/detail/CVE-2025-58181
- https://go.dev/cl/721961
- https://go.dev/issue/76363
- https://pkg.go.dev/vuln/GO-2025-4134
- https://bugzilla.redhat.com/show_bug.cgi?id=2407251
- https://www.cve.org/CVERecord?id=CVE-2025-58185
- https://nvd.nist.gov/vuln/detail/CVE-2025-58185
- https://github.com/golang/go/commit/8709a41d5ef7321f486a1857f189c3fee20e8edd
- https://go.dev/cl/709856
- https://go.dev/issue/75671
- https://pkg.go.dev/vuln/GO-2025-4011
- https://bugzilla.redhat.com/show_bug.cgi?id=2407250
- https://www.cve.org/CVERecord?id=CVE-2025-58186
- https://nvd.nist.gov/vuln/detail/CVE-2025-58186
- https://go.dev/cl/709855
- https://go.dev/issue/75672
- https://pkg.go.dev/vuln/GO-2025-4012
- https://bugzilla.redhat.com/show_bug.cgi?id=2437110
- https://www.cve.org/CVERecord?id=CVE-2025-58190
- https://nvd.nist.gov/vuln/detail/CVE-2025-58190
- https://github.com/golang/vulndb/issues/4441
- https://go.dev/cl/709875
- https://pkg.go.dev/vuln/GO-2026-4441
- https://bugzilla.redhat.com/show_bug.cgi?id=2407252
- https://www.cve.org/CVERecord?id=CVE-2025-61723
- https://nvd.nist.gov/vuln/detail/CVE-2025-61723
- https://github.com/golang/go/commit/5ce8cd16f3859ec5ac4106ad8ec15d6236f4501b
- https://go.dev/cl/709858
- https://go.dev/issue/75676
- https://pkg.go.dev/vuln/GO-2025-4009
- https://bugzilla.redhat.com/show_bug.cgi?id=2407257
- https://www.cve.org/CVERecord?id=CVE-2025-61724
- https://nvd.nist.gov/vuln/detail/CVE-2025-61724
- https://go.dev/cl/709859
- https://go.dev/issue/75716
- https://pkg.go.dev/vuln/GO-2025-4015
- https://bugzilla.redhat.com/show_bug.cgi?id=2407249
- https://www.cve.org/CVERecord?id=CVE-2025-61725
- https://nvd.nist.gov/vuln/detail/CVE-2025-61725
- https://go.dev/cl/709860
- https://go.dev/issue/75680
- https://pkg.go.dev/vuln/GO-2025-4006
- https://bugzilla.redhat.com/show_bug.cgi?id=2434433
- https://www.cve.org/CVERecord?id=CVE-2025-61731
- https://nvd.nist.gov/vuln/detail/CVE-2025-61731
- https://go.dev/cl/736711
- https://go.dev/issue/77100
- https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc
- https://pkg.go.dev/vuln/GO-2026-4339
- https://bugzilla.redhat.com/show_bug.cgi?id=2437016
- https://www.cve.org/CVERecord?id=CVE-2025-61732
- https://nvd.nist.gov/vuln/detail/CVE-2025-61732
- https://go.dev/cl/734220
- https://go.dev/issue/76697
- https://groups.google.com/g/golang-announce/c/K09ubi9FQFk
- https://pkg.go.dev/vuln/GO-2026-4433
- https://bugzilla.redhat.com/show_bug.cgi?id=2434438
- https://www.cve.org/CVERecord?id=CVE-2025-68119
- https://nvd.nist.gov/vuln/detail/CVE-2025-68119
- https://go.dev/cl/736710
- https://go.dev/issue/77099
- https://pkg.go.dev/vuln/GO-2026-4338
- https://bugzilla.redhat.com/show_bug.cgi?id=2437111
- https://www.cve.org/CVERecord?id=CVE-2025-68121
- https://nvd.nist.gov/vuln/detail/CVE-2025-68121
- https://go.dev/cl/737700
- https://go.dev/issue/77217
- https://pkg.go.dev/vuln/GO-2026-4337
- https://bugzilla.redhat.com/show_bug.cgi?id=2443104
- https://www.cve.org/CVERecord?id=CVE-2026-27141
- https://nvd.nist.gov/vuln/detail/CVE-2026-27141
- https://go.dev/cl/746180
- https://go.dev/issue/77652
- https://pkg.go.dev/vuln/GO-2026-4559
- https://bugzilla.redhat.com/show_bug.cgi?id=2407258
- https://www.cve.org/CVERecord?id=CVE-2025-58183
- https://nvd.nist.gov/vuln/detail/CVE-2025-58183
- https://go.dev/cl/709861
- https://go.dev/issue/75677
- https://pkg.go.dev/vuln/GO-2025-4014
- https://bugzilla.redhat.com/show_bug.cgi?id=2407259
- https://www.cve.org/CVERecord?id=CVE-2025-58187
- https://nvd.nist.gov/vuln/detail/CVE-2025-58187
- https://github.com/golang/go/commit/3fc4c79fdbb17b9b29ea9f8c29dd780df075d4c4
- https://go.dev/cl/709854
- https://go.dev/issue/75681
- https://pkg.go.dev/vuln/GO-2025-4007
- https://bugzilla.redhat.com/show_bug.cgi?id=2407255
- https://www.cve.org/CVERecord?id=CVE-2025-58188
- https://nvd.nist.gov/vuln/detail/CVE-2025-58188
- https://github.com/golang/go/commit/6e4007e8cffbb870e6b606307ab7308236ecefb9
- https://go.dev/cl/709853
- https://go.dev/issue/75675
- https://pkg.go.dev/vuln/GO-2025-4013
- https://bugzilla.redhat.com/show_bug.cgi?id=2407260
- https://www.cve.org/CVERecord?id=CVE-2025-58189
- https://nvd.nist.gov/vuln/detail/CVE-2025-58189
- https://go.dev/cl/707776
- https://go.dev/issue/75652
- https://pkg.go.dev/vuln/GO-2025-4008
- https://bugzilla.redhat.com/show_bug.cgi?id=2434432
- https://www.cve.org/CVERecord?id=CVE-2025-61726
- https://nvd.nist.gov/vuln/detail/CVE-2025-61726
- https://go.dev/cl/736712
- https://go.dev/issue/77101
- https://pkg.go.dev/vuln/GO-2026-4341
- https://bugzilla.redhat.com/show_bug.cgi?id=2418677
- https://www.cve.org/CVERecord?id=CVE-2025-61727
- https://nvd.nist.gov/vuln/detail/CVE-2025-61727
- https://go.dev/cl/723900
- https://go.dev/issue/76442
- https://groups.google.com/g/golang-announce/c/8FJoBkPddm4
- https://pkg.go.dev/vuln/GO-2025-4175
- https://bugzilla.redhat.com/show_bug.cgi?id=2434431
- https://www.cve.org/CVERecord?id=CVE-2025-61728
- https://nvd.nist.gov/vuln/detail/CVE-2025-61728
- https://go.dev/cl/736713
- https://go.dev/issue/77102
- https://pkg.go.dev/vuln/GO-2026-4342
- https://bugzilla.redhat.com/show_bug.cgi?id=2418462
- https://www.cve.org/CVERecord?id=CVE-2025-61729
- https://nvd.nist.gov/vuln/detail/CVE-2025-61729
- https://go.dev/cl/725920
- https://go.dev/issue/76445
- https://pkg.go.dev/vuln/GO-2025-4155
- https://bugzilla.redhat.com/show_bug.cgi?id=2434430
- https://www.cve.org/CVERecord?id=CVE-2025-61730
- https://nvd.nist.gov/vuln/detail/CVE-2025-61730
- https://go.dev/cl/724120
- https://go.dev/issue/76443
- https://pkg.go.dev/vuln/GO-2026-4340
- https://bugzilla.redhat.com/show_bug.cgi?id=2445356
- https://www.cve.org/CVERecord?id=CVE-2026-25679
- https://nvd.nist.gov/vuln/detail/CVE-2026-25679
- https://go.dev/cl/752180
- https://go.dev/issue/77578
- https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk
- https://pkg.go.dev/vuln/GO-2026-4601
- https://bugzilla.redhat.com/show_bug.cgi?id=2445345
- https://www.cve.org/CVERecord?id=CVE-2026-27137
- https://nvd.nist.gov/vuln/detail/CVE-2026-27137
- https://go.dev/cl/752182
- https://go.dev/issue/77952
- https://pkg.go.dev/vuln/GO-2026-4599
- https://bugzilla.redhat.com/show_bug.cgi?id=2445344
- https://www.cve.org/CVERecord?id=CVE-2026-27138
- https://nvd.nist.gov/vuln/detail/CVE-2026-27138
- https://go.dev/cl/752183
- https://go.dev/issue/77953
- https://pkg.go.dev/vuln/GO-2026-4600
- https://bugzilla.redhat.com/show_bug.cgi?id=2445335
- https://www.cve.org/CVERecord?id=CVE-2026-27139
- https://nvd.nist.gov/vuln/detail/CVE-2026-27139
- https://go.dev/cl/749480
- https://go.dev/issue/77827
- https://pkg.go.dev/vuln/GO-2026-4602
- https://bugzilla.redhat.com/show_bug.cgi?id=2445351
- https://www.cve.org/CVERecord?id=CVE-2026-27142
- https://nvd.nist.gov/vuln/detail/CVE-2026-27142
- https://go.dev/cl/752081
- https://go.dev/issue/77954
- https://pkg.go.dev/vuln/GO-2026-4603
- https://bugzilla.redhat.com/show_bug.cgi?id=2456342
- https://www.cve.org/CVERecord?id=CVE-2026-27143
- https://nvd.nist.gov/vuln/detail/CVE-2026-27143
- https://go.dev/cl/763765
- https://go.dev/issue/78333
- https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU
- https://pkg.go.dev/vuln/GO-2026-4868
- https://bugzilla.redhat.com/show_bug.cgi?id=2456340
- https://www.cve.org/CVERecord?id=CVE-2026-27144
- https://nvd.nist.gov/vuln/detail/CVE-2026-27144
- https://go.dev/cl/763764
- https://go.dev/issue/78371
- https://pkg.go.dev/vuln/GO-2026-4867
- https://bugzilla.redhat.com/show_bug.cgi?id=2456333
- https://www.cve.org/CVERecord?id=CVE-2026-32281
- https://nvd.nist.gov/vuln/detail/CVE-2026-32281
- https://go.dev/cl/758061
- https://go.dev/issue/78281
- https://pkg.go.dev/vuln/GO-2026-4946
- https://bugzilla.redhat.com/show_bug.cgi?id=2456336
- https://www.cve.org/CVERecord?id=CVE-2026-32282
- https://nvd.nist.gov/vuln/detail/CVE-2026-32282
- https://go.dev/cl/763761
- https://go.dev/issue/78293
- https://pkg.go.dev/vuln/GO-2026-4864
- https://bugzilla.redhat.com/show_bug.cgi?id=2456338
- https://www.cve.org/CVERecord?id=CVE-2026-32283
- https://nvd.nist.gov/vuln/detail/CVE-2026-32283
- https://go.dev/cl/763767
- https://go.dev/issue/78334
- https://pkg.go.dev/vuln/GO-2026-4870
- https://bugzilla.redhat.com/show_bug.cgi?id=2456332
- https://www.cve.org/CVERecord?id=CVE-2026-32288
- https://nvd.nist.gov/vuln/detail/CVE-2026-32288
- https://go.dev/cl/763766
- https://go.dev/issue/78301
- https://pkg.go.dev/vuln/GO-2026-4869
- https://bugzilla.redhat.com/show_bug.cgi?id=2456334
- https://www.cve.org/CVERecord?id=CVE-2026-32289
- https://nvd.nist.gov/vuln/detail/CVE-2026-32289
- https://go.dev/cl/763762
- https://go.dev/issue/78331
- https://pkg.go.dev/vuln/GO-2026-4865
- https://bugzilla.redhat.com/show_bug.cgi?id=2451437
- https://www.cve.org/CVERecord?id=CVE-2026-33809
- https://nvd.nist.gov/vuln/detail/CVE-2026-33809
- https://go.dev/cl/757660
- https://go.dev/issue/78267
- https://pkg.go.dev/vuln/GO-2026-4815
- https://bugzilla.redhat.com/show_bug.cgi?id=2456335
- https://www.cve.org/CVERecord?id=CVE-2026-33810
- https://nvd.nist.gov/vuln/detail/CVE-2026-33810
- https://go.dev/cl/763763
- https://go.dev/issue/78332
- https://pkg.go.dev/vuln/GO-2026-4866