This security update addresses two vulnerabilities in the yggdrasil daemon stemming from its underlying Go runtime: CVE-2026-32282 (CVSS 6.4), where the `Root.Chmod` syscall can follow symlinks out of a chroot, and CVE-2026-32283 (CVSS 7.5), a denial-of-service via multiple TLS 1.3 key update messages. The affected versions are Go runtime versions prior to 1.25.9 and from 1.26.0 through 1.26.1, which are resolved by upgrading to Go 1.25.9 or 1.26.2.
Red Hat Product Errata RHSA-2026:17075 - Security Advisory Issued: 2026-05-13 Updated: 2026-05-13 RHSA-2026:17075 - Security Advisory Overview Updated Packages Synopsis Important: yggdrasil security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for yggdrasil is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description yggdrasil is a system daemon that subscribes to topics on an MQTT broker and routes any data received on the topics to an appropriate child "worker" process, exchanging data with its worker processes through a D-Bus message broker. Security Fix(es): golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282) crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for IBM z Systems 10 s390x Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for x86_64 10 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 10 ppc64le Red Hat CodeReady Linux Builder for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 10 s390x Fixes BZ - 2456336 - CVE-2026-32282 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root BZ - 2456338 - CVE-2026-32283 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages CVEs CVE-2026-32282 CVE-2026-32283 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM yggdrasil-0.4.8-5.el10_1.src.rpm SHA-256: 0c7b7c2c0935feed7fab6fd918553b77278bf36d51a99fc2447f3f8211eaba8f x86_64 yggdrasil-0.4.8-5.el10_1.x86_64.rpm SHA-256: c096e098bf2db7b5a1bff79526e83f42886219a54d482e1bc67e45d28dd8c250 yggdrasil-debuginfo-0.4.8-5.el10_1.x86_64.rpm SHA-256: 31fab0d1e9ddb39fd99c427bf983787e5b511d7dc6e353e46211abfc319e077f yggdrasil-debugsource-0.4.8-5.el10_1.x86_64.rpm SHA-256: 0530395cc71d2ff3e62b1a874e66fb961249ce44b79e45f9dbdf27b06aa71451 yggdrasil-examples-debuginfo-0.4.8-5.el10_1.x86_64.rpm SHA-256: 1f59274cd3fb8594cb862ff4064a0903289077524ec2813c13c446eb1f027e2b Red Hat Enterprise Linux for IBM z Systems 10 SRPM yggdrasil-0.4.8-5.el10_1.src.rpm SHA-256: 0c7b7c2c0935feed7fab6fd918553b77278bf36d51a99fc2447f3f8211eaba8f s390x yggdrasil-0.4.8-5.el10_1.s390x.rpm SHA-256: ff8230477106fec45d6547e624e4bb797ef534568160b18df22d09ed15c102d3 yggdrasil-debuginfo-0.4.8-5.el10_1.s390x.rpm SHA-256: 2e4c61540fdb4f852151ee110968b64da4dc8ac9897fd644e53eefa2a8892c48 yggdrasil-debugsource-0.4.8-5.el10_1.s390x.rpm SHA-256: 9e2e6789aedfeff45bf4f3ebec70e08f226232a66efa8af4907ccac9cd25d833 yggdrasil-examples-debuginfo-0.4.8-5.el10_1.s390x.rpm SHA-256: 5e768a9791f7b49c64d675a282850feeeab30e3aa9af9562adda29c47a5ff6bf Red Hat Enterprise Linux for Power, little endian 10 SRPM yggdrasil-0.4.8-5.el10_1.src.rpm SHA-256: 0c7b7c2c0935feed7fab6fd918553b77278bf36d51a99fc2447f3f8211eaba8f ppc64le yggdrasil-0.4.8-5.el10_1.ppc64le.rpm SHA-256: 3d098186d80a0d52d993e7b4d86293ecffdc9801d7e83990b6b548508728709c yggdrasil-debuginfo-0.4.8-5.el10_1.ppc64le.rpm SHA-256: 163a6af60efa91dd1e900a51803d98f04550c9baaf1389ca708617502433fd65 yggdrasil-debugsource-0.4.8-5.el10_1.ppc64le.rpm SHA-256: 62272ac8e9e00be42804ca1279144e09b7079a74ee5e27e88ef53fcce968f8a5 yggdrasil-examples-debuginfo-0.4.8-5.el10_1.ppc64le.rpm SHA-256: 5a8a173e68a6d18ba9528b7c74fd26f183a92e0e31afb9729329be4b21f06732 Red Hat Enterprise Linux for ARM 64 10 SRPM yggdrasil-0.4.8-5.el10_1.src.rpm SHA-256: 0c7b7c2c0935feed7fab6fd918553b77278bf36d51a99fc2447f3f8211eaba8f aarch64 yggdrasil-0.4.8-5.el10_1.aarch64.rpm SHA-256: cf2b440355831e580cd1fe3633fa3410560f9f6daece299c376638319affe70e yggdrasil-debuginfo-0.4.8-5.el10_1.aarch64.rpm SHA-256: 238ecc794d0afbe6d82bb029c80458b9151e2eb413ca6ead88ce70101d129d0a yggdrasil-debugsource-0.4.8-5.el10_1.aarch64.rpm SHA-256: c5769f611ad1461cc085778fa7585c72c1b623c7804ea57943780263d5cfec94 yggdrasil-examples-debuginfo-0.4.8-5.el10_1.aarch64.rpm SHA-256: 45f40ea1a9db83999fa57a75f14396db3540acc7d0f35de3e00a7b3f3af255fd Red Hat CodeReady Linux Builder for x86_64 10 SRPM x86_64 yggdrasil-debuginfo-0.4.8-5.el10_1.x86_64.rpm SHA-256: 31fab0d1e9ddb39fd99c427bf983787e5b511d7dc6e353e46211abfc319e077f yggdrasil-debugsource-0.4.8-5.el10_1.x86_64.rpm SHA-256: 0530395cc71d2ff3e62b1a874e66fb961249ce44b79e45f9dbdf27b06aa71451 yggdrasil-devel-0.4.8-5.el10_1.x86_64.rpm SHA-256: e7e5bb463a6e70e0ddd0588b6e5a84cdead47fc5fe58e755593f3b719fa62070 yggdrasil-examples-debuginfo-0.4.8-5.el10_1.x86_64.rpm SHA-256: 1f59274cd3fb8594cb862ff4064a0903289077524ec2813c13c446eb1f027e2b Red Hat CodeReady Linux Builder for Power, little endian 10 SRPM ppc64le yggdrasil-debuginfo-0.4.8-5.el10_1.ppc64le.rpm SHA-256: 163a6af60efa91dd1e900a51803d98f04550c9baaf1389ca708617502433fd65 yggdrasil-debugsource-0.4.8-5.el10_1.ppc64le.rpm SHA-256: 62272ac8e9e00be42804ca1279144e09b7079a74ee5e27e88ef53fcce968f8a5 yggdrasil-devel-0.4.8-5.el10_1.ppc64le.rpm SHA-256: bc710a5a098018514b27b01d172c0a912ac634baeac2b95ea89126d2600d42e5 yggdrasil-examples-debuginfo-0.4.8-5.el10_1.ppc64le.rpm SHA-256: 5a8a173e68a6d18ba9528b7c74fd26f183a92e0e31afb9729329be4b21f06732 Red Hat CodeReady Linux Builder for ARM 64 10 SRPM aarch64 yggdrasil-debuginfo-0.4.8-5.el10_1.aarch64.rpm SHA-256: 238ecc794d0afbe6d82bb029c80458b9151e2eb413ca6ead88ce70101d129d0a yggdrasil-debugsource-0.4.8-5.el10_1.aarch64.rpm SHA-256: c5769f611ad1461cc085778fa7585c72c1b623c7804ea57943780263d5cfec94 yggdrasil-devel-0.4.8-5.el10_1.aarch64.rpm SHA-256: af90e1f9e21edb1bf7d847e46b0a45c2279fbe0ff543171e12d8cecaedbcf9c2 yggdrasil-examples-debuginfo-0.4.8-5.el10_1.aarch64.rpm SHA-256: 45f40ea1a9db83999fa57a75f14396db3540acc7d0f35de3e00a7b3f3af255fd Red Hat CodeReady Linux Builder for IBM z Systems 10 SRPM s390x yggdrasil-debuginfo-0.4.8-5.el10_1.s390x.rpm SHA-256: 2e4c61540fdb4f852151ee110968b64da4dc8ac9897fd644e53eefa2a8892c48 yggdrasil-debugsource-0.4.8-5.el10_1.s390x.rpm SHA-256: 9e2e6789aedfeff45bf4f3ebec70e08f226232a66efa8af4907ccac9cd25d833 yggdrasil-devel-0.4.8-5.el10_1.s390x.rpm SHA-256: c5cbc8ffde0817a2f4b27ab12a3c3b1a8937b2737671df6c471981172eb75eee yggdrasil-examples-debuginfo-0.4.8-5.el10_1.s390x.rpm SHA-256: 5e768a9791f7b49c64d675a282850feeeab30e3aa9af9562adda29c47a5ff6bf The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .