Red Hat Product Errata RHSA-2026:19020 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19020 - Security Advisory Overview Updated Packages Synopsis Moderate: crun security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for crun is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description crun is a OCI runtime Security Fix(es): crun: crun: Privilege escalation due to incorrect parsing of the `--user` option (CVE-2026-30892) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 x86_64 Red Hat Enterprise Linux for IBM z Systems 10 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 s390x Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 10.2 s390x Fixes BZ - 2451576 - CVE-2026-30892 crun: crun: Privilege escalation due to incorrect parsing of the `--user` option RHEL-161090 - Build krun handler for crun CVEs CVE-2026-30892 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 x86_64 crun-1.27-2.el10_2.x86_64.rpm SHA-256: 1ffdf15b8438df3d9b56d234eae30ce30f0214ceee0b2d3f3c2191b8e2dc2644 crun-debuginfo-1.27-2.el10_2.x86_64.rpm SHA-256: 57f2777d63b79b7cffd79fd87f4cebefa831488e37ca4fad96f57ba30bf39d4c crun-debugsource-1.27-2.el10_2.x86_64.rpm SHA-256: 93b45b49bdf3548c360cae7e01d631d208739beeff65e7496362534cf144e8bb crun-krun-1.27-2.el10_2.x86_64.rpm SHA-256: 8ac2f7bbe30cd36f10404a08d228c92975e61cbcf9e50f3b6ef8f0989fa50da0 Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 x86_64 crun-1.27-2.el10_2.x86_64.rpm SHA-256: 1ffdf15b8438df3d9b56d234eae30ce30f0214ceee0b2d3f3c2191b8e2dc2644 crun-debuginfo-1.27-2.el10_2.x86_64.rpm SHA-256: 57f2777d63b79b7cffd79fd87f4cebefa831488e37ca4fad96f57ba30bf39d4c crun-debugsource-1.27-2.el10_2.x86_64.rpm SHA-256: 93b45b49bdf3548c360cae7e01d631d208739beeff65e7496362534cf144e8bb crun-krun-1.27-2.el10_2.x86_64.rpm SHA-256: 8ac2f7bbe30cd36f10404a08d228c92975e61cbcf9e50f3b6ef8f0989fa50da0 Red Hat Enterprise Linux for IBM z Systems 10 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 s390x crun-1.27-2.el10_2.s390x.rpm SHA-256: ebdb8f507d8c31cd55057bda9cb49b37ab4fde5d148a3a6ef06ed252f8407235 crun-debuginfo-1.27-2.el10_2.s390x.rpm SHA-256: 13ef9f9a155907bc998a4f529013fbe030e694f60c806794b10f1560baf30d64 crun-debugsource-1.27-2.el10_2.s390x.rpm SHA-256: 5b705aeb875c36b474451ed8a59ffd0b868d353ba3a76cce2ca011daae0cc8ce Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 s390x crun-1.27-2.el10_2.s390x.rpm SHA-256: ebdb8f507d8c31cd55057bda9cb49b37ab4fde5d148a3a6ef06ed252f8407235 crun-debuginfo-1.27-2.el10_2.s390x.rpm SHA-256: 13ef9f9a155907bc998a4f529013fbe030e694f60c806794b10f1560baf30d64 crun-debugsource-1.27-2.el10_2.s390x.rpm SHA-256: 5b705aeb875c36b474451ed8a59ffd0b868d353ba3a76cce2ca011daae0cc8ce Red Hat Enterprise Linux for Power, little endian 10 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 ppc64le crun-1.27-2.el10_2.ppc64le.rpm SHA-256: 32131cd247ae859f749ce22bc85865afca85c8f4e27acb87afc88fcf2163aad4 crun-debuginfo-1.27-2.el10_2.ppc64le.rpm SHA-256: 0b435040cb6e852a9160745c9822d360a03eb6d07cf3c1ed5ff262ed84ecce74 crun-debugsource-1.27-2.el10_2.ppc64le.rpm SHA-256: 7327b5809fa4fdf40290fb9c571e63cc294bbf396eca0b82e9936cd7477a2716 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 ppc64le crun-1.27-2.el10_2.ppc64le.rpm SHA-256: 32131cd247ae859f749ce22bc85865afca85c8f4e27acb87afc88fcf2163aad4 crun-debuginfo-1.27-2.el10_2.ppc64le.rpm SHA-256: 0b435040cb6e852a9160745c9822d360a03eb6d07cf3c1ed5ff262ed84ecce74 crun-debugsource-1.27-2.el10_2.ppc64le.rpm SHA-256: 7327b5809fa4fdf40290fb9c571e63cc294bbf396eca0b82e9936cd7477a2716 Red Hat Enterprise Linux for ARM 64 10 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 aarch64 crun-1.27-2.el10_2.aarch64.rpm SHA-256: 85e226bd1359abc870407bd8be35fd3e4eb7b655e29daba9cb8a01a3d52b6719 crun-debuginfo-1.27-2.el10_2.aarch64.rpm SHA-256: 85f9ef73dd3bb586dc96035d6c67430c72503d1e547863e57580a4f8dccc122c crun-debugsource-1.27-2.el10_2.aarch64.rpm SHA-256: 09ee2a0206091cc9e0d7827bddaef76abaa9f75fb0a1be75addccde8a6e08575 crun-krun-1.27-2.el10_2.aarch64.rpm SHA-256: 9538795c1502616d6788ea5d1ea3668e69e2f6ca5893c2425a48b939a6e99083 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 aarch64 crun-1.27-2.el10_2.aarch64.rpm SHA-256: 85e226bd1359abc870407bd8be35fd3e4eb7b655e29daba9cb8a01a3d52b6719 crun-debuginfo-1.27-2.el10_2.aarch64.rpm SHA-256: 85f9ef73dd3bb586dc96035d6c67430c72503d1e547863e57580a4f8dccc122c crun-debugsource-1.27-2.el10_2.aarch64.rpm SHA-256: 09ee2a0206091cc9e0d7827bddaef76abaa9f75fb0a1be75addccde8a6e08575 crun-krun-1.27-2.el10_2.aarch64.rpm SHA-256: 9538795c1502616d6788ea5d1ea3668e69e2f6ca5893c2425a48b939a6e99083 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 aarch64 crun-1.27-2.el10_2.aarch64.rpm SHA-256: 85e226bd1359abc870407bd8be35fd3e4eb7b655e29daba9cb8a01a3d52b6719 crun-debuginfo-1.27-2.el10_2.aarch64.rpm SHA-256: 85f9ef73dd3bb586dc96035d6c67430c72503d1e547863e57580a4f8dccc122c crun-debugsource-1.27-2.el10_2.aarch64.rpm SHA-256: 09ee2a0206091cc9e0d7827bddaef76abaa9f75fb0a1be75addccde8a6e08575 crun-krun-1.27-2.el10_2.aarch64.rpm SHA-256: 9538795c1502616d6788ea5d1ea3668e69e2f6ca5893c2425a48b939a6e99083 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 s390x crun-1.27-2.el10_2.s390x.rpm SHA-256: ebdb8f507d8c31cd55057bda9cb49b37ab4fde5d148a3a6ef06ed252f8407235 crun-debuginfo-1.27-2.el10_2.s390x.rpm SHA-256: 13ef9f9a155907bc998a4f529013fbe030e694f60c806794b10f1560baf30d64 crun-debugsource-1.27-2.el10_2.s390x.rpm SHA-256: 5b705aeb875c36b474451ed8a59ffd0b868d353ba3a76cce2ca011daae0cc8ce Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 ppc64le crun-1.27-2.el10_2.ppc64le.rpm SHA-256: 32131cd247ae859f749ce22bc85865afca85c8f4e27acb87afc88fcf2163aad4 crun-debuginfo-1.27-2.el10_2.ppc64le.rpm SHA-256: 0b435040cb6e852a9160745c9822d360a03eb6d07cf3c1ed5ff262ed84ecce74 crun-debugsource-1.27-2.el10_2.ppc64le.rpm SHA-256: 7327b5809fa4fdf40290fb9c571e63cc294bbf396eca0b82e9936cd7477a2716 Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 x86_64 crun-1.27-2.el10_2.x86_64.rpm SHA-256: 1ffdf15b8438df3d9b56d234eae30ce30f0214ceee0b2d3f3c2191b8e2dc2644 crun-debuginfo-1.27-2.el10_2.x86_64.rpm SHA-256: 57f2777d63b79b7cffd79fd87f4cebefa831488e37ca4fad96f57ba30bf39d4c crun-debugsource-1.27-2.el10_2.x86_64.rpm SHA-256: 93b45b49bdf3548c360cae7e01d631d208739beeff65e7496362534cf144e8bb crun-krun-1.27-2.el10_2.x86_64.rpm SHA-256: 8ac2f7bbe30cd36f10404a08d228c92975e61cbcf9e50f3b6ef8f0989fa50da0 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 SRPM crun-1.27-2.el10_2.src.rpm SHA-256: 28eb2d4b94f28ba734875f048c1c85a1ef7a83daa229d55482066a95703d1278 x86_64 crun-1.27-2.el10_2.x86_64.rpm SHA-256: 1ffdf15b8438df3d9b56d234eae30ce30f0214ceee0b2d3f3c2191b8e2dc2644 crun-debuginfo-1.27-2.el10_2.x86_64.rpm SHA-256: 57f2777d63b79b7cffd79fd87f4cebefa831488e37ca4fad96f57ba30bf39d4c crun-debugsource-1.27-2.el10_2.x86_64.rpm SHA-256: 93b45b49bdf3548c360cae7e01d631d208739beeff65e7496362534cf144e8bb crun-krun-1.27-2.el10_2.x