Red Hat Product Errata RHSA-2026:19013 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19013 - Security Advisory Overview Updated Packages Synopsis Moderate: delve security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for delve is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Delve is a debugger for the Go programming language. The goal of the project is to provide a simple, full featured debugging tool for Go. Delve should be easy to invoke and easy to use. Chances are if you're using a debugger, things aren't going your way. With that in mind, Delve should stay out of your way as much as possible. Security Fix(es): crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729) golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726) crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 x86_64 Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 aarch64 Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 ppc64le Fixes BZ - 2418462 - CVE-2025-61729 crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate BZ - 2434432 - CVE-2025-61726 golang: net/url: Memory exhaustion in query parameter parsing in net/url BZ - 2437111 - CVE-2025-68121 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption CVEs CVE-2025-61726 CVE-2025-61729 CVE-2025-68121 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 x86_64 delve-1.26.1-1.el10_2.x86_64.rpm SHA-256: e2950b6e8247df13917c6a98c41a54a020d4ccf40be0b1944013c93afa797167 delve-debuginfo-1.26.1-1.el10_2.x86_64.rpm SHA-256: 4adf72e4fbb0c9a47c04f6491105e8b15a497e5c9345e35a0c1c0b893870cf7e delve-debugsource-1.26.1-1.el10_2.x86_64.rpm SHA-256: ebda4715baa22268996e608d2ab5fde6593c75c363c50d2b8fa6027b89739717 Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 x86_64 delve-1.26.1-1.el10_2.x86_64.rpm SHA-256: e2950b6e8247df13917c6a98c41a54a020d4ccf40be0b1944013c93afa797167 delve-debuginfo-1.26.1-1.el10_2.x86_64.rpm SHA-256: 4adf72e4fbb0c9a47c04f6491105e8b15a497e5c9345e35a0c1c0b893870cf7e delve-debugsource-1.26.1-1.el10_2.x86_64.rpm SHA-256: ebda4715baa22268996e608d2ab5fde6593c75c363c50d2b8fa6027b89739717 Red Hat Enterprise Linux for Power, little endian 10 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 ppc64le delve-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 492fb56a5596da255e71ce7dce602b40843a20d4710c095f1612c966122fec8d delve-debuginfo-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 6c37adb1b0344ec509ea30d09df9ae0419810aa18c15fdfdff63035ce6026db4 delve-debugsource-1.26.1-1.el10_2.ppc64le.rpm SHA-256: a18ec7fa1800481d1ba18fa9a8672e1acdc84ba42e1d53998538ca58b15dbe34 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 ppc64le delve-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 492fb56a5596da255e71ce7dce602b40843a20d4710c095f1612c966122fec8d delve-debuginfo-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 6c37adb1b0344ec509ea30d09df9ae0419810aa18c15fdfdff63035ce6026db4 delve-debugsource-1.26.1-1.el10_2.ppc64le.rpm SHA-256: a18ec7fa1800481d1ba18fa9a8672e1acdc84ba42e1d53998538ca58b15dbe34 Red Hat Enterprise Linux for ARM 64 10 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 aarch64 delve-1.26.1-1.el10_2.aarch64.rpm SHA-256: e1abd76d662eafc589673ee49dc5c3a030fba4d8edbbd2001e890e3cd171774a delve-debuginfo-1.26.1-1.el10_2.aarch64.rpm SHA-256: 7ff645b56af9037faa4731eedb707fee8da0ac00591f994b9fb114ed9ccae5ef delve-debugsource-1.26.1-1.el10_2.aarch64.rpm SHA-256: ec106dedb43a720773eb9e8146f8534be777fe3ee6f7700d288def7f9453dbf1 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 aarch64 delve-1.26.1-1.el10_2.aarch64.rpm SHA-256: e1abd76d662eafc589673ee49dc5c3a030fba4d8edbbd2001e890e3cd171774a delve-debuginfo-1.26.1-1.el10_2.aarch64.rpm SHA-256: 7ff645b56af9037faa4731eedb707fee8da0ac00591f994b9fb114ed9ccae5ef delve-debugsource-1.26.1-1.el10_2.aarch64.rpm SHA-256: ec106dedb43a720773eb9e8146f8534be777fe3ee6f7700d288def7f9453dbf1 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 aarch64 delve-1.26.1-1.el10_2.aarch64.rpm SHA-256: e1abd76d662eafc589673ee49dc5c3a030fba4d8edbbd2001e890e3cd171774a delve-debuginfo-1.26.1-1.el10_2.aarch64.rpm SHA-256: 7ff645b56af9037faa4731eedb707fee8da0ac00591f994b9fb114ed9ccae5ef delve-debugsource-1.26.1-1.el10_2.aarch64.rpm SHA-256: ec106dedb43a720773eb9e8146f8534be777fe3ee6f7700d288def7f9453dbf1 Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 ppc64le delve-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 492fb56a5596da255e71ce7dce602b40843a20d4710c095f1612c966122fec8d delve-debuginfo-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 6c37adb1b0344ec509ea30d09df9ae0419810aa18c15fdfdff63035ce6026db4 delve-debugsource-1.26.1-1.el10_2.ppc64le.rpm SHA-256: a18ec7fa1800481d1ba18fa9a8672e1acdc84ba42e1d53998538ca58b15dbe34 Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 x86_64 delve-1.26.1-1.el10_2.x86_64.rpm SHA-256: e2950b6e8247df13917c6a98c41a54a020d4ccf40be0b1944013c93afa797167 delve-debuginfo-1.26.1-1.el10_2.x86_64.rpm SHA-256: 4adf72e4fbb0c9a47c04f6491105e8b15a497e5c9345e35a0c1c0b893870cf7e delve-debugsource-1.26.1-1.el10_2.x86_64.rpm SHA-256: ebda4715baa22268996e608d2ab5fde6593c75c363c50d2b8fa6027b89739717 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 x86_64 delve-1.26.1-1.el10_2.x86_64.rpm SHA-256: e2950b6e8247df13917c6a98c41a54a020d4ccf40be0b1944013c93afa797167 delve-debuginfo-1.26.1-1.el10_2.x86_64.rpm SHA-256: 4adf72e4fbb0c9a47c04f6491105e8b15a497e5c9345e35a0c1c0b893870cf7e delve-debugsource-1.26.1-1.el10_2.x86_64.rpm SHA-256: ebda4715baa22268996e608d2ab5fde6593c75c363c50d2b8fa6027b89739717 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 aarch64 delve-1.26.1-1.el10_2.aarch64.rpm SHA-256: e1abd76d662eafc589673ee49dc5c3a030fba4d8edbbd2001e890e3cd171774a delve-debuginfo-1.26.1-1.el10_2.aarch64.rpm SHA-256: 7ff645b56af9037faa4731eedb707fee8da0ac00591f994b9fb114ed9ccae5ef delve-debugsource-1.26.1-1.el10_2.aarch64.rpm SHA-256: ec106dedb43a720773eb9e8146f8534be777fe3ee6f7700d288def7f9453dbf1 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 SRPM delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9 ppc64le delve-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 492fb56a5596da255e71ce7dce602b40843a20d4710c095f1612c966122fec8d delve-debuginfo-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 6c37adb1b0344ec509ea30d09df9ae0419810aa18c15fdfdff63035ce6026db4 delve-debugsource-1.26.1-1.el10_2.ppc64le.rpm SHA-256: a18ec7fa1800481d1ba18fa9a8672e1acdc84ba42e1d53998538ca58b15dbe34 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .