Red Hat Product Errata RHSA-2026:14673 - Security Advisory Issued: 2026-05-07 Updated: 2026-05-07 RHSA-2026:14673 - Security Advisory Overview Updated Packages Synopsis Important: LibRaw security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for LibRaw is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description LibRaw is a library for reading RAW files obtained from digital photo cameras (CRW/CR2, NEF, RAF, DNG, and others). Security Fix(es): LibRaw: LibRaw: Arbitrary code execution via heap-based buffer overflow in lossless JPEG loading (CVE-2026-21413) LibRaw: LibRaw: Arbitrary code execution via specially crafted image file (CVE-2026-20889) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64 Red Hat Enterprise Linux Server - TUS 8.8 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64 Fixes BZ - 2455929 - CVE-2026-21413 LibRaw: LibRaw: Arbitrary code execution via heap-based buffer overflow in lossless JPEG loading BZ - 2455942 - CVE-2026-20889 LibRaw: LibRaw: Arbitrary code execution via specially crafted image file CVEs CVE-2026-20889 CVE-2026-21413 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 SRPM LibRaw-0.19.5-3.el8_8.1.src.rpm SHA-256: 947bae21fb234e15bebee14101c82587703f3e5a247d07bb3ec5d9995571b4b3 x86_64 LibRaw-0.19.5-3.el8_8.1.i686.rpm SHA-256: 64a3d21ccab84d4f79078387c9b0d135f80dc8e337a6e9d2b34f4fe4fdb79508 LibRaw-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: 61f2a49a3608080270e7214cab16caa0f6765ac71799217d4c898211c7103b19 LibRaw-debuginfo-0.19.5-3.el8_8.1.i686.rpm SHA-256: 1034f86a9d902e5dcd5a04b5b512d2ef13be6f89ea7501c4cb393ee80250f9de LibRaw-debuginfo-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: 20d32ccc43fc5b264b30a497a6b51ab6b355135c0440af0a8c63576f29bcc26a LibRaw-debugsource-0.19.5-3.el8_8.1.i686.rpm SHA-256: cc616d92aa36fe64651834c40f8921ec580f91ce1a1b964a2117dc88f5a2a2ae LibRaw-debugsource-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: 834840bd3cc2172cde365ca283f892a64dc67654946951fcc2518dbf30e29920 LibRaw-samples-debuginfo-0.19.5-3.el8_8.1.i686.rpm SHA-256: 2e107485f05b32493f8998f65e786eb71c677955a09d83e801a72efef8a2fc68 LibRaw-samples-debuginfo-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: d5c7a015f96f73a9c0bc2c9191d77ea2c51346e0312dc1183d3fffd05685a31f Red Hat Enterprise Linux Server - TUS 8.8 SRPM LibRaw-0.19.5-3.el8_8.1.src.rpm SHA-256: 947bae21fb234e15bebee14101c82587703f3e5a247d07bb3ec5d9995571b4b3 x86_64 LibRaw-0.19.5-3.el8_8.1.i686.rpm SHA-256: 64a3d21ccab84d4f79078387c9b0d135f80dc8e337a6e9d2b34f4fe4fdb79508 LibRaw-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: 61f2a49a3608080270e7214cab16caa0f6765ac71799217d4c898211c7103b19 LibRaw-debuginfo-0.19.5-3.el8_8.1.i686.rpm SHA-256: 1034f86a9d902e5dcd5a04b5b512d2ef13be6f89ea7501c4cb393ee80250f9de LibRaw-debuginfo-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: 20d32ccc43fc5b264b30a497a6b51ab6b355135c0440af0a8c63576f29bcc26a LibRaw-debugsource-0.19.5-3.el8_8.1.i686.rpm SHA-256: cc616d92aa36fe64651834c40f8921ec580f91ce1a1b964a2117dc88f5a2a2ae LibRaw-debugsource-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: 834840bd3cc2172cde365ca283f892a64dc67654946951fcc2518dbf30e29920 LibRaw-samples-debuginfo-0.19.5-3.el8_8.1.i686.rpm SHA-256: 2e107485f05b32493f8998f65e786eb71c677955a09d83e801a72efef8a2fc68 LibRaw-samples-debuginfo-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: d5c7a015f96f73a9c0bc2c9191d77ea2c51346e0312dc1183d3fffd05685a31f Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 SRPM LibRaw-0.19.5-3.el8_8.1.src.rpm SHA-256: 947bae21fb234e15bebee14101c82587703f3e5a247d07bb3ec5d9995571b4b3 ppc64le LibRaw-0.19.5-3.el8_8.1.ppc64le.rpm SHA-256: 7eb2f9f330514bea73832b1e7252967717ad839c9e964b9a94a2fca306c0696f LibRaw-debuginfo-0.19.5-3.el8_8.1.ppc64le.rpm SHA-256: 80c74690b90591a942069aab287ef7741713c4bea9cf24c9d7d985999e97c4ea LibRaw-debugsource-0.19.5-3.el8_8.1.ppc64le.rpm SHA-256: 7df7d5c5772975ddccd131c3187230700248e0cb9659e89da7635bb9fa5df278 LibRaw-samples-debuginfo-0.19.5-3.el8_8.1.ppc64le.rpm SHA-256: 21036fdb9892415a5c8c86fbc8de22ac279a75dfa962d69dcf61b04f2420b903 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 SRPM LibRaw-0.19.5-3.el8_8.1.src.rpm SHA-256: 947bae21fb234e15bebee14101c82587703f3e5a247d07bb3ec5d9995571b4b3 x86_64 LibRaw-0.19.5-3.el8_8.1.i686.rpm SHA-256: 64a3d21ccab84d4f79078387c9b0d135f80dc8e337a6e9d2b34f4fe4fdb79508 LibRaw-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: 61f2a49a3608080270e7214cab16caa0f6765ac71799217d4c898211c7103b19 LibRaw-debuginfo-0.19.5-3.el8_8.1.i686.rpm SHA-256: 1034f86a9d902e5dcd5a04b5b512d2ef13be6f89ea7501c4cb393ee80250f9de LibRaw-debuginfo-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: 20d32ccc43fc5b264b30a497a6b51ab6b355135c0440af0a8c63576f29bcc26a LibRaw-debugsource-0.19.5-3.el8_8.1.i686.rpm SHA-256: cc616d92aa36fe64651834c40f8921ec580f91ce1a1b964a2117dc88f5a2a2ae LibRaw-debugsource-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: 834840bd3cc2172cde365ca283f892a64dc67654946951fcc2518dbf30e29920 LibRaw-samples-debuginfo-0.19.5-3.el8_8.1.i686.rpm SHA-256: 2e107485f05b32493f8998f65e786eb71c677955a09d83e801a72efef8a2fc68 LibRaw-samples-debuginfo-0.19.5-3.el8_8.1.x86_64.rpm SHA-256: d5c7a015f96f73a9c0bc2c9191d77ea2c51346e0312dc1183d3fffd05685a31f The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .