Security News

Cybersecurity news aggregator

🔄
HIGH Updates Red Hat Errata

RHSA-2026:10705: Important: rhc security update

cve-2026-1234red-hatcve-2026-33186
This vulnerability (CVE-2026-33186, CVSS 9.1 CRITICAL) is an authorization bypass in the gRPC-Go library due to improper HTTP/2 path validation. The flaw affects the `rhc` client tool on Red Hat Enterprise Linux 9.6 EUS and related variants. According to NVD data, the underlying gRPC-Go library is affected in versions prior to 1.79.3, which is the fixed version.
Read Full Article →

Red Hat Product Errata RHSA-2026:10705 - Security Advisory Issued: 2026-04-27 Updated: 2026-04-27 RHSA-2026:10705 - Security Advisory Overview Updated Packages Synopsis Important: rhc security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for rhc is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description rhc is a client tool and daemon that connects the system to Red Hat hosted services enabling system and subscription management. Security Fix(es): google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64 Red Hat Enterprise Linux Server - AUS 9.6 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.6 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.6 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x Fixes BZ - 2449833 - CVE-2026-33186 google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation CVEs CVE-2026-33186 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 SRPM rhc-0.2.7-1.el9_6.3.src.rpm SHA-256: 47c8fdbc78e9590b901e03436690ac8dfd185576ef57ec6966a7bde137e5cb3d x86_64 rhc-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: d3597970b2ba39b98be9e1580d92e4302d783e93ca9de8b1006b5b4a692fd698 rhc-debuginfo-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: 2580977bb0ad44d5f2e6e0a5f05c2b912824db561202ad1034e2d8a430066b72 rhc-debugsource-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: 193d6949fce5f481b1fa974a2dfc1208f20b57e28ec83e82a642bdcc13959b59 Red Hat Enterprise Linux Server - AUS 9.6 SRPM rhc-0.2.7-1.el9_6.3.src.rpm SHA-256: 47c8fdbc78e9590b901e03436690ac8dfd185576ef57ec6966a7bde137e5cb3d x86_64 rhc-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: d3597970b2ba39b98be9e1580d92e4302d783e93ca9de8b1006b5b4a692fd698 rhc-debuginfo-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: 2580977bb0ad44d5f2e6e0a5f05c2b912824db561202ad1034e2d8a430066b72 rhc-debugsource-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: 193d6949fce5f481b1fa974a2dfc1208f20b57e28ec83e82a642bdcc13959b59 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 SRPM rhc-0.2.7-1.el9_6.3.src.rpm SHA-256: 47c8fdbc78e9590b901e03436690ac8dfd185576ef57ec6966a7bde137e5cb3d s390x rhc-0.2.7-1.el9_6.3.s390x.rpm SHA-256: f242af414a762cf1d0301cd2b9acd7ffda598dc85405212f56573302ae8a5738 rhc-debuginfo-0.2.7-1.el9_6.3.s390x.rpm SHA-256: 611642c0f8943ed837ac9d35521aeda1870028c8e8b98e04476d59ca9b22bc2f rhc-debugsource-0.2.7-1.el9_6.3.s390x.rpm SHA-256: dd53e49bf8c6f179c37d50b0af576f73e868f915c50d9c754917043b90ccefca Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 SRPM rhc-0.2.7-1.el9_6.3.src.rpm SHA-256: 47c8fdbc78e9590b901e03436690ac8dfd185576ef57ec6966a7bde137e5cb3d ppc64le rhc-0.2.7-1.el9_6.3.ppc64le.rpm SHA-256: 21e990097c661315910d612de4e5a84b94194485899597b27ab2cd0f76ca8fa0 rhc-debuginfo-0.2.7-1.el9_6.3.ppc64le.rpm SHA-256: 1e19f7029e41d0ad59209018dad2e1f0b72ea018c17638f60fdbdef81c78b355 rhc-debugsource-0.2.7-1.el9_6.3.ppc64le.rpm SHA-256: 7d61bbbffe7429d494ad53963353e5af0768d724178ba08a0de72f6944859e77 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 SRPM rhc-0.2.7-1.el9_6.3.src.rpm SHA-256: 47c8fdbc78e9590b901e03436690ac8dfd185576ef57ec6966a7bde137e5cb3d aarch64 rhc-0.2.7-1.el9_6.3.aarch64.rpm SHA-256: f8db46c146163d17a45e9849daf0f0c7971e8e045d287cea1cbcb25e6b675f0d rhc-debuginfo-0.2.7-1.el9_6.3.aarch64.rpm SHA-256: d7fca7f2d7ea4a00f9197b4934edd631eec47ad0edfd24b71e9622beadd7b3a3 rhc-debugsource-0.2.7-1.el9_6.3.aarch64.rpm SHA-256: 1f9368917bab718b4f695818889e6931d0d0b4cfa48d0b098cc041baf9bb8ffb Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 SRPM rhc-0.2.7-1.el9_6.3.src.rpm SHA-256: 47c8fdbc78e9590b901e03436690ac8dfd185576ef57ec6966a7bde137e5cb3d ppc64le rhc-0.2.7-1.el9_6.3.ppc64le.rpm SHA-256: 21e990097c661315910d612de4e5a84b94194485899597b27ab2cd0f76ca8fa0 rhc-debuginfo-0.2.7-1.el9_6.3.ppc64le.rpm SHA-256: 1e19f7029e41d0ad59209018dad2e1f0b72ea018c17638f60fdbdef81c78b355 rhc-debugsource-0.2.7-1.el9_6.3.ppc64le.rpm SHA-256: 7d61bbbffe7429d494ad53963353e5af0768d724178ba08a0de72f6944859e77 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 SRPM rhc-0.2.7-1.el9_6.3.src.rpm SHA-256: 47c8fdbc78e9590b901e03436690ac8dfd185576ef57ec6966a7bde137e5cb3d x86_64 rhc-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: d3597970b2ba39b98be9e1580d92e4302d783e93ca9de8b1006b5b4a692fd698 rhc-debuginfo-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: 2580977bb0ad44d5f2e6e0a5f05c2b912824db561202ad1034e2d8a430066b72 rhc-debugsource-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: 193d6949fce5f481b1fa974a2dfc1208f20b57e28ec83e82a642bdcc13959b59 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.6 SRPM x86_64 rhc-debuginfo-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: 2580977bb0ad44d5f2e6e0a5f05c2b912824db561202ad1034e2d8a430066b72 rhc-debugsource-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: 193d6949fce5f481b1fa974a2dfc1208f20b57e28ec83e82a642bdcc13959b59 rhc-devel-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: c591c8e931c72ac9b63801fd60ad2c699b4afe9c17092630fadc684e95648194 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.6 SRPM ppc64le rhc-debuginfo-0.2.7-1.el9_6.3.ppc64le.rpm SHA-256: 1e19f7029e41d0ad59209018dad2e1f0b72ea018c17638f60fdbdef81c78b355 rhc-debugsource-0.2.7-1.el9_6.3.ppc64le.rpm SHA-256: 7d61bbbffe7429d494ad53963353e5af0768d724178ba08a0de72f6944859e77 rhc-devel-0.2.7-1.el9_6.3.ppc64le.rpm SHA-256: 450dfa86b10b620159fae8705045a98e824c59cfa57305c826c16e8eb07bb321 Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.6 SRPM s390x rhc-debuginfo-0.2.7-1.el9_6.3.s390x.rpm SHA-256: 611642c0f8943ed837ac9d35521aeda1870028c8e8b98e04476d59ca9b22bc2f rhc-debugsource-0.2.7-1.el9_6.3.s390x.rpm SHA-256: dd53e49bf8c6f179c37d50b0af576f73e868f915c50d9c754917043b90ccefca rhc-devel-0.2.7-1.el9_6.3.s390x.rpm SHA-256: 6569832f6c2107728b92c8db0266040c2de9f36e8cd3f46e6da92ef5db5272dc Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.6 SRPM aarch64 rhc-debuginfo-0.2.7-1.el9_6.3.aarch64.rpm SHA-256: d7fca7f2d7ea4a00f9197b4934edd631eec47ad0edfd24b71e9622beadd7b3a3 rhc-debugsource-0.2.7-1.el9_6.3.aarch64.rpm SHA-256: 1f9368917bab718b4f695818889e6931d0d0b4cfa48d0b098cc041baf9bb8ffb rhc-devel-0.2.7-1.el9_6.3.aarch64.rpm SHA-256: 823e221e67ad11ff833564240c552ae360e7e357e7344a1dde3ae9296bdb88cc Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 SRPM rhc-0.2.7-1.el9_6.3.src.rpm SHA-256: 47c8fdbc78e9590b901e03436690ac8dfd185576ef57ec6966a7bde137e5cb3d aarch64 rhc-0.2.7-1.el9_6.3.aarch64.rpm SHA-256: f8db46c146163d17a45e9849daf0f0c7971e8e045d287cea1cbcb25e6b675f0d rhc-debuginfo-0.2.7-1.el9_6.3.aarch64.rpm SHA-256: d7fca7f2d7ea4a00f9197b4934edd631eec47ad0edfd24b71e9622beadd7b3a3 rhc-debugsource-0.2.7-1.el9_6.3.aarch64.rpm SHA-256: 1f9368917bab718b4f695818889e6931d0d0b4cfa48d0b098cc041baf9bb8ffb Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 SRPM rhc-0.2.7-1.el9_6.3.src.rpm SHA-256: 47c8fdbc78e9590b901e03436690ac8dfd185576ef57ec6966a7bde137e5cb3d s390x rhc-0.2.7-1.el9_6.3.s390x.rpm SHA-256: f242af414a762cf1d0301cd2b9acd7ffda598dc85405212f56573302ae8a5738 rhc-debuginfo-0.2.7-1.el9_6.3.s390x.rpm SHA-256: 611642c0f8943ed837ac9d35521aeda1870028c8e8b98e04476d59ca9b22bc2f rhc-debugsource-0.2.7-1.el9_6.3.s390x.rpm SHA-256: dd53e49bf8c6f179c37d50b0af576f73e868f915c50d9c754917043b90ccefca Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 SRPM rhc-0.2.7-1.el9_6.3.src.rpm SHA-256: 47c8fdbc78e9590b901e03436690ac8dfd185576ef57ec6966a7bde137e5cb3d x86_64 rhc-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: d3597970b2ba39b98be9e1580d92e4302d783e93ca9de8b1006b5b4a692fd698 rhc-debuginfo-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: 2580977bb0ad44d5f2e6e0a5f05c2b912824db561202ad1034e2d8a430066b72 rhc-debugsource-0.2.7-1.el9_6.3.x86_64.rpm SHA-256: 193d6949fce5f481b1fa974a2dfc1208f20b57e28ec8

Related Articles

HIGH RHSA-2026:10706: Important: rhc security update Red Hat Errata HIGH RHSA-2026:10107: Important: rhc security update Red Hat Errata HIGH RHSA-2026:19135: Important: opentelemetry-collector security update Red Hat Errata MEDIUM RHSA-2026:17789: Important: Red Hat build of Cryostat 4.2.0: new RHEL 9 container image security update Red Hat Errata
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn