Security News

Cybersecurity news aggregator

🔄
HIGH Updates Red Hat Errata

RHSA-2026:17659: Important: openexr security update

cve-2026-1234enterprisecve-2026-34588
A crafted EXR image file can trigger arbitrary code execution and information disclosure (CVE-2026-34588) in OpenEXR. The Red Hat advisory rates this as an Important security update for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. The fix is provided in the updated package `openexr-3.1.1-2.el9_2.3`.
Read Full Article →

Red Hat Product Errata RHSA-2026:17659 - Security Advisory Issued: 2026-05-14 Updated: 2026-05-14 RHSA-2026:17659 - Security Advisory Overview Updated Packages Synopsis Important: openexr security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for openexr is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description OpenEXR is an open-source high-dynamic-range floating-point image file format for high-quality image processing and storage. This document presents a brief overview of OpenEXR and explains concepts that are specific to this format. This package containes the binaries for OpenEXR. Security Fix(es): OpenEXR: OpenEXR: Arbitrary code execution and information disclosure via crafted EXR file (CVE-2026-34588) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server - AUS 9.2 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.2 s390x Fixes BZ - 2455408 - CVE-2026-34588 OpenEXR: OpenEXR: Arbitrary code execution and information disclosure via crafted EXR file CVEs CVE-2026-34588 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - AUS 9.2 SRPM openexr-3.1.1-2.el9_2.3.src.rpm SHA-256: 56d41fb67270ef819e3f11f141063751d8c983d32aa0239e3d0cae013102b474 x86_64 openexr-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: f089041bcc8e9035a265d1602263b5046c3eafc4dfd5dfd89e6530f12faf48d9 openexr-debuginfo-3.1.1-2.el9_2.3.i686.rpm SHA-256: 29547e1f6a3904f3109c06c764b7a830f983bc8291097a45365e90aaabc53727 openexr-debuginfo-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: f3e9480af286742a26d4ae4a7bf1b475d2c8c52fd10079c5c05281a395494a30 openexr-debugsource-3.1.1-2.el9_2.3.i686.rpm SHA-256: 018746d13fbc02980f34f0df4b6b2fb706a1a101754bba4be4476bf833a2fd32 openexr-debugsource-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: 62423f329f82f195b3165330c870687d058db32c8dc22c1190e44b202144ee67 openexr-libs-3.1.1-2.el9_2.3.i686.rpm SHA-256: 1a6f84e023d635baba3bcd312f9ee2350dc662f332c15cacaca1528cdbe9abb1 openexr-libs-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: 3dbadffcdf0f72afaf9330e75f5b6cac492d6fdf748fa571db669c145935566e openexr-libs-debuginfo-3.1.1-2.el9_2.3.i686.rpm SHA-256: f4e46636e4bc90ba2ef24df2ab8b60d725de064b191baa0bcdb3edad4c86c641 openexr-libs-debuginfo-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: a18365726e5e0fd71def53256d2b4d348edf1ba1a192e1ebe7658a126cbb9148 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 SRPM openexr-3.1.1-2.el9_2.3.src.rpm SHA-256: 56d41fb67270ef819e3f11f141063751d8c983d32aa0239e3d0cae013102b474 ppc64le openexr-3.1.1-2.el9_2.3.ppc64le.rpm SHA-256: 576304cfc202ed25eb09b7c60b699f2c8dc0bd3e44e274e3038f197629b83a7a openexr-debuginfo-3.1.1-2.el9_2.3.ppc64le.rpm SHA-256: a0e111077e163c4ab6c32517f7b67a19d28635ce6edddfe4fa0ad420f609e505 openexr-debugsource-3.1.1-2.el9_2.3.ppc64le.rpm SHA-256: 86d823c81be015b915b68b0cdacc2d2bc5e4d6218a55d9054aa44b498d5023dc openexr-libs-3.1.1-2.el9_2.3.ppc64le.rpm SHA-256: dad5b9c219039a17f38f4da2803103dbdabaaa42fc2a15c18c39c410cf3b8199 openexr-libs-debuginfo-3.1.1-2.el9_2.3.ppc64le.rpm SHA-256: 1468dfe963b6381d457c5a06da117c14022dbe11c9fd3f52a9f85b79aea672ec Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 SRPM openexr-3.1.1-2.el9_2.3.src.rpm SHA-256: 56d41fb67270ef819e3f11f141063751d8c983d32aa0239e3d0cae013102b474 x86_64 openexr-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: f089041bcc8e9035a265d1602263b5046c3eafc4dfd5dfd89e6530f12faf48d9 openexr-debuginfo-3.1.1-2.el9_2.3.i686.rpm SHA-256: 29547e1f6a3904f3109c06c764b7a830f983bc8291097a45365e90aaabc53727 openexr-debuginfo-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: f3e9480af286742a26d4ae4a7bf1b475d2c8c52fd10079c5c05281a395494a30 openexr-debugsource-3.1.1-2.el9_2.3.i686.rpm SHA-256: 018746d13fbc02980f34f0df4b6b2fb706a1a101754bba4be4476bf833a2fd32 openexr-debugsource-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: 62423f329f82f195b3165330c870687d058db32c8dc22c1190e44b202144ee67 openexr-libs-3.1.1-2.el9_2.3.i686.rpm SHA-256: 1a6f84e023d635baba3bcd312f9ee2350dc662f332c15cacaca1528cdbe9abb1 openexr-libs-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: 3dbadffcdf0f72afaf9330e75f5b6cac492d6fdf748fa571db669c145935566e openexr-libs-debuginfo-3.1.1-2.el9_2.3.i686.rpm SHA-256: f4e46636e4bc90ba2ef24df2ab8b60d725de064b191baa0bcdb3edad4c86c641 openexr-libs-debuginfo-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: a18365726e5e0fd71def53256d2b4d348edf1ba1a192e1ebe7658a126cbb9148 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 SRPM openexr-3.1.1-2.el9_2.3.src.rpm SHA-256: 56d41fb67270ef819e3f11f141063751d8c983d32aa0239e3d0cae013102b474 aarch64 openexr-3.1.1-2.el9_2.3.aarch64.rpm SHA-256: b390f2b76062e96cb7ec4c6c28767826e3e3d669a8c762171decd3be030378f9 openexr-debuginfo-3.1.1-2.el9_2.3.aarch64.rpm SHA-256: e61a1fb67aaa9b0f060d41e2a77e94e75abb0afa15abb5a233813b4c0770e520 openexr-debugsource-3.1.1-2.el9_2.3.aarch64.rpm SHA-256: e166df9d84f20171722a104637ec0dd37875e001837f245b64c998273f2f85d5 openexr-libs-3.1.1-2.el9_2.3.aarch64.rpm SHA-256: 16afb0086ca5642f2a84758e77b26f2e1e3a3c291e3505aa6491e0d983e91519 openexr-libs-debuginfo-3.1.1-2.el9_2.3.aarch64.rpm SHA-256: 221577d0a3f1bd443cd88de015ec8b44254a194a300fcfcff1945863664d0103 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 SRPM openexr-3.1.1-2.el9_2.3.src.rpm SHA-256: 56d41fb67270ef819e3f11f141063751d8c983d32aa0239e3d0cae013102b474 s390x openexr-3.1.1-2.el9_2.3.s390x.rpm SHA-256: df814d54ab29bee6284565b1a491d20634c7e897153d658793eace1502ec4cd1 openexr-debuginfo-3.1.1-2.el9_2.3.s390x.rpm SHA-256: 8b2399bed76b11c7640d5b07b976ef4d970c56c0497b1e8d06cb1b7acf74ac56 openexr-debugsource-3.1.1-2.el9_2.3.s390x.rpm SHA-256: f2a701b1ad03f1c8a62e4e08b7490c446e811de55359503f91a3369eef2b0957 openexr-libs-3.1.1-2.el9_2.3.s390x.rpm SHA-256: e92550cd7a8f30d323a970541812292f08d34f68368ccd54c199834bb2f2b844 openexr-libs-debuginfo-3.1.1-2.el9_2.3.s390x.rpm SHA-256: 56caffb0d81d5d2ace94c280945dec767ebbc99e8988409cfeb700fdd2d2de6b Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 SRPM openexr-3.1.1-2.el9_2.3.src.rpm SHA-256: 56d41fb67270ef819e3f11f141063751d8c983d32aa0239e3d0cae013102b474 x86_64 openexr-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: f089041bcc8e9035a265d1602263b5046c3eafc4dfd5dfd89e6530f12faf48d9 openexr-debuginfo-3.1.1-2.el9_2.3.i686.rpm SHA-256: 29547e1f6a3904f3109c06c764b7a830f983bc8291097a45365e90aaabc53727 openexr-debuginfo-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: f3e9480af286742a26d4ae4a7bf1b475d2c8c52fd10079c5c05281a395494a30 openexr-debugsource-3.1.1-2.el9_2.3.i686.rpm SHA-256: 018746d13fbc02980f34f0df4b6b2fb706a1a101754bba4be4476bf833a2fd32 openexr-debugsource-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: 62423f329f82f195b3165330c870687d058db32c8dc22c1190e44b202144ee67 openexr-libs-3.1.1-2.el9_2.3.i686.rpm SHA-256: 1a6f84e023d635baba3bcd312f9ee2350dc662f332c15cacaca1528cdbe9abb1 openexr-libs-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: 3dbadffcdf0f72afaf9330e75f5b6cac492d6fdf748fa571db669c145935566e openexr-libs-debuginfo-3.1.1-2.el9_2.3.i686.rpm SHA-256: f4e46636e4bc90ba2ef24df2ab8b60d725de064b191baa0bcdb3edad4c86c641 openexr-libs-debuginfo-3.1.1-2.el9_2.3.x86_64.rpm SHA-256: a18365726e5e0fd71def53256d2b4d348edf1ba1a192e1ebe7658a126cbb9148 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 SRPM openexr-3.1.1-2.el9_2.3.src.rpm SHA-256: 56d41fb67270ef819e3f11f141063751d8c983d32aa0239e3d0cae013102b474 aarch64 openexr-3.1.1-2.el9_2.3.aarch64.rpm SHA-256: b390f2b76062e96cb7ec4c6c28767826e3e3d669a8c762171decd3be030378f9 openexr-debuginfo-3.1.1-2.el9_2.3.aarch64.rpm SHA-256: e61a1fb67aaa9b0f060d41e2a77e94e75abb0afa15abb5a233813b4c0770e520 openexr-debugsource-3.1.1-2.el9_2.3.aarch64.rpm SHA-256: e166df9d84f20171722a104637ec0dd37875e001837f245b64c998273f2f85d5 openexr-libs-3.1.1-2.el9_2.3.aarch64.rpm SHA-256: 16afb0086ca5642f2a84758e77b26f2e1e3a3c291e3505aa6491e0d983e91519 openexr-libs-debuginfo-3.1.1-2.el9_2.3.aarch64.rpm SHA-256: 221577d0a3f1bd443cd88de015ec8b44254a194a300fcfcff1945863664d0103 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2 SRPM openexr-3.1.1-2.el9_2.3.src.rpm SHA-256: 56d41fb67270ef819e3f11f141063751d8c983d32aa0239e3d0cae013102b474 ppc64le openexr-3.1.1-2.el9_2.3.ppc64le.rpm SHA-256: 576304cfc202ed25eb09b7c60b699f2c8dc0bd3e44e274e3038f197629b83a7a openexr-debuginfo-3.1.1-2.el9_2.3.ppc64le.rpm SHA-256: a0e111077e163c4ab6c32517f7b67a19d28635ce6edddfe4fa0ad420f609e505 openexr-debugsource-3.1.1-2.el9_2.3.ppc64le.rpm SHA-256: 86d823c81be015b915b68b0cdacc2d2bc5e4d6218a55d9054aa44b498d5023dc openexr-libs-3.1.1-2.el9_2.3.ppc64le.rpm SHA-256: dad5b9c219039a17f38f4da2803103dbdabaaa42fc2a15c18c39c410cf3b8199 open

Related Articles

HIGH RHSA-2026:15887: Important: openexr security update Red Hat Errata HIGH April 2026 Patch Tuesday: Two Zero-Days and Eight Critical Vulnerabilities Among 164 CVEs CrowdStrike HIGH RHSA-2026:10076: Important: freerdp security update Red Hat Errata HIGH RHSA-2026:10735: Important: freerdp security update Red Hat Errata
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn