Red Hat Product Errata RHSA-2026:18748 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:18748 - Security Advisory Overview Updated Packages Synopsis Moderate: libvirt security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libvirt is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Kernel-based Virtual Machine (KVM) offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the virtualized systems. Security Fix(es): libvirt: Denial of service in XML parsing (CVE-2025-12748) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 9 Release Notes linked from the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for x86_64 9 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le Red Hat CodeReady Linux Builder for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x Fixes BZ - 2413801 - CVE-2025-12748 libvirt: Denial of service in XML parsing RHEL-116847 - Migration fails if qcow2 overlay with data-file is not on shared storage RHEL-118197 - Rebase libvirt in RHEL-9.8 RHEL-114003 - Introduce "host-model" mode for Hyper-V Enlightenments RHEL-108915 - Fix detection of existing vTPM when migrating RHEL-134127 - Fail to get guest libvirtxml from VMware by virsh when datastore name has characters like '+' [rhel-9.8] RHEL-135128 - [RHEL 9.7] KVM Virtual Machine fails to start with error "JSON parse failed too deeply nested" if more than 25 snapshots RHEL-138689 - Hyperv feature validation is too tight for i440fx machine type RHEL-126345 - [RHEL 9.7]libvirt iommufd support for safe device pass-through for TDX RHEL-141496 - Failure to encode reply of domifaddr with ARP source[rhel-9] RHEL-146629 - Migration fails from qemu 9.1.0-15.el9_6.9 to 9.1.0-29.el9_7.3 CVEs CVE-2025-12748 References https://access.redhat.com/security/updates/classification/#moderate https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.8_release_notes/index Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM libvirt-11.10.0-12.el9_8.src.rpm SHA-256: 2229cd45d276fd1a5463e35d92a72a7c29d29195b029b095a504864de084177a x86_64 libvirt-11.10.0-12.el9_8.x86_64.rpm SHA-256: 3b4fa30e126d73bb43b7a92ccf148d02fe07422c68a0477161317a95f3426cb9 libvirt-client-11.10.0-12.el9_8.x86_64.rpm SHA-256: bc486c5f24064866268da5af505bbd1b7d4a0e2c92aeae261c4dc77019982e77 libvirt-client-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 125249c6fe1f7a2140091a450370ee0445da6714d3020c564a7e236afd09d2b2 libvirt-client-qemu-11.10.0-12.el9_8.x86_64.rpm SHA-256: f2f3796e383040ff15348a88ad35f4de7e1661a807f720971f8414b0a0439464 libvirt-daemon-11.10.0-12.el9_8.x86_64.rpm SHA-256: 5aa554aef03a40e200624a632ebdd20199d8e542b88a8ed3838390ad1f1e6488 libvirt-daemon-common-11.10.0-12.el9_8.x86_64.rpm SHA-256: c82339728742816055fbeba821d7eafbbccdd46ede86458d7012a00acbe9fc4c libvirt-daemon-common-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: a25066d0c038b23a79cbe83ca5a88e1be95fa4deb94c76b924162a2a6ffb3734 libvirt-daemon-config-network-11.10.0-12.el9_8.x86_64.rpm SHA-256: d3b0fe742160d7d34b45de0ebd09bb13b778bbf80ca39b15c9fd189514e57fbe libvirt-daemon-config-nwfilter-11.10.0-12.el9_8.x86_64.rpm SHA-256: 9adfcc00563a9eb2ffb8e49dfe909bb12a18dba79734fd36b887725d28b3b474 libvirt-daemon-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 7f87b02bb225954a721897f8e72c548adbb406111b8ff56180bef1f690409cd1 libvirt-daemon-driver-interface-11.10.0-12.el9_8.x86_64.rpm SHA-256: 0960e9d7e1cbd6f098179a4ee7f6d464b47afc0fc0b494b0cea259cae506c889 libvirt-daemon-driver-interface-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 1c637f5f037e001ae28f7ff1c4728bd23daf7af7b710cc59a551f7eafd8bd280 libvirt-daemon-driver-network-11.10.0-12.el9_8.x86_64.rpm SHA-256: c360e30e7be72f0889c4be0502ead92b85e64e11c68b33ea643612174a29d72d libvirt-daemon-driver-network-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 5ea1c80e7881420c6fe86a0d903b82236d81cbc3f308c72c4c91aba03fa262a7 libvirt-daemon-driver-nodedev-11.10.0-12.el9_8.x86_64.rpm SHA-256: b8496c2ea381b68eb168dc8faf8c1b7ec64ea235db3be24abce6ccd4552bab41 libvirt-daemon-driver-nodedev-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 29e92311806ab3c59930a8995d50a3a36aaa30d48013c9631fd3c39619301dd5 libvirt-daemon-driver-nwfilter-11.10.0-12.el9_8.x86_64.rpm SHA-256: cb488755689e98368aaa2fa622e9b5ede4e70d10d7713263784307be067f6430 libvirt-daemon-driver-nwfilter-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 46093183ef4fb7d2b0abf6c039c48853bb9a14d07a54c85e5572abe9fb78dbb6 libvirt-daemon-driver-qemu-11.10.0-12.el9_8.x86_64.rpm SHA-256: b386720b125c7dc26329d88a269d2fdf02308b998f345c29a0fccc67971209c9 libvirt-daemon-driver-qemu-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 2f70d51a5e5aabe4722009e12e66499ac4651c6885d44e042cfc74637f1507a0 libvirt-daemon-driver-secret-11.10.0-12.el9_8.x86_64.rpm SHA-256: 2ebdb70b64e77d793214553070afa41ab171f93185e0c277933c7bc8430cd738 libvirt-daemon-driver-secret-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: f8b2242e4d91e3c3d933253973c719e88d3c3194b6bc8b0b475598d9321ec8fb libvirt-daemon-driver-storage-11.10.0-12.el9_8.x86_64.rpm SHA-256: 320020e5f422771a8e92f1d05c5879d8b74555e0489138f405cf5fda8a561eca libvirt-daemon-driver-storage-core-11.10.0-12.el9_8.x86_64.rpm SHA-256: 44a9ca6e10833bd26f3d3350e1577ab1adb50541bbbfe6b1d3385ef6ccb6b646 libvirt-daemon-driver-storage-core-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 3926ed1f9776df96bf160080f13b28e7e82865a018e5f865831dcd276e6a7c98 libvirt-daemon-driver-storage-disk-11.10.0-12.el9_8.x86_64.rpm SHA-256: b669509ef0ce1aaa66f62756d4b7f12f53a6e56599b2fecdbbc64b5ee0675ddd libvirt-daemon-driver-storage-disk-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 33ffdf517087364e38688fe899e5867fab983415ee0bed6b0cead5092d341098 libvirt-daemon-driver-storage-iscsi-11.10.0-12.el9_8.x86_64.rpm SHA-256: 6244b1068014f23bdf13f66430a025a7cd3c83b9d7988f1b261caef7ceab4333 libvirt-daemon-driver-storage-iscsi-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 2b24a3dfd83b67b9f68aec18b58585c42acbc9b264166f6c2e910487f2d15e52 libvirt-daemon-driver-storage-logical-11.10.0-12.el9_8.x86_64.rpm SHA-256: 04ff7916e3407ae305f9bb9edf9e86ee8a56b4f48e47093221f1818c67432064 libvirt-daemon-driver-storage-logical-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 8f593efd90a61a6abcb15f8d5b6691f5cabeed69280c8f2c674e7e83eb8a8c50 libvirt-daemon-driver-storage-mpath-11.10.0-12.el9_8.x86_64.rpm SHA-256: 8fe4f34c37432681c412d08c82706606d0c5c28786deb3104c8ced478c9a3fe5 libvirt-daemon-driver-storage-mpath-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 52fde3e29741f410ace236744c446f33e6b651b226f2fb68cc27968d79ce2655 libvirt-daemon-driver-storage-rbd-11.10.0-12.el9_8.x86_64.rpm SHA-256: 2a861dbb919a398a5dedbd887261635c533375e8147be176816874b7e1ac8e71 libvirt-daemon-driver-storage-rbd-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: ffe6dc44e5dd9d8fe77bd979b45f3a9eca9cf2a6ebcbc49d412a348507a4ad51 libvirt-daemon-driver-storage-scsi-11.10.0-12.el9_8.x86_64.rpm SHA-256: f0165f3cb154cfd81bc9db9adf6afc06649046819a3501729d4b0f4790db7b70 libvirt-daemon-driver-storage-scsi-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: e298acfcb5ce1f05ecc30a9edb84fc11f7abe9fe61da6edb1e45ead0e2ac3ae8 libvirt-daemon-kvm-11.10.0-12.el9_8.x86_64.rpm SHA-256: b605c44eafa6035f9f3694153de8aaef47bda9b64ebf1c9de47bafb2a08964d2 libvirt-daemon-lock-11.10.0-12.el9_8.x86_64.rpm SHA-256: e7613cc4347cbf7c7ff144595d264eebce3d049bb148f1374dce4285708e6b64 libvirt-daemon-lock-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 756004dec4335b06666ff2f237de59f086c15b35df38d5696bd8e72481c91677 libvirt-daemon-log-11.10.0-12.el9_8.x86_64.rpm SHA-256: 1980b82da9f91935eae85f9d293f7348a995a358fadd53bbb31eb3c68fab68db libvirt-daemon-log-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: de67d504d60d57bc6f46ecb8ed3cfb2a77bd68b908cb3419a05d55eab5be04b2 libvirt-daemon-plugin-lockd-11.10.0-12.el9_8.x86_64.rpm SHA-256: eca9b3ea114ced72c33b502b80840b4a6f8e61e46fbbda231a3e17c2aeeeaae7 libvirt-daemon-plugin-lockd-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 4667917fd9e64c78256f8c844e708ff824cf92b42bbdb8350ad2084f62495b19 libvirt-daemon-plugin-sanlock-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: f3fb0c43c020185548295ca99006b1b908859ce76de6ded9a850c4c6aee37686 libvirt-daemon-proxy-11.10.0-12.el9_8.x86_64.rpm SHA-256: 888d313ffc68a87238d8c2f7617af4717c431359ccfba53d5e35aebd3df29d9c libvirt-daemon-proxy-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: e1f04e7cd71401e30f066d68b0630764c9d032e425e33cf31c6874f9fa6616dc libvirt-debuginfo-11.10.0-12.el9_8.x86_64.rpm SHA-256: 13d839b193d2e7900ce3fa2cefd701158cc0c595ea27ab62330663a4d73fe5f1 libvirt-debugsource-11.10.0-12.el9_8.x86_64.rpm SHA-256: ba8143228d4e47d960bbc8ce36a3f7026764de26a803d23795127f6c6acca361 libvirt-libs-11.10.0-12.el9_