Red Hat Product Errata RHSA-2026:19126 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19126 - Security Advisory Overview Updated Packages Synopsis Important: yggdrasil security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for yggdrasil is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description yggdrasil is a system daemon that subscribes to topics on an MQTT broker and routes any data received on the topics to an appropriate child "worker" process, exchanging data with its worker processes through a D-Bus message broker. Security Fix(es): net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679) crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 x86_64 Red Hat Enterprise Linux for IBM z Systems 10 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 s390x Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat CodeReady Linux Builder for x86_64 10 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 10 ppc64le Red Hat CodeReady Linux Builder for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 10 s390x Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.2 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.2 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 10.2 s390x Fixes BZ - 2445356 - CVE-2026-25679 net/url: Incorrect parsing of IPv6 host literals in net/url BZ - 2456338 - CVE-2026-32283 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages CVEs CVE-2026-25679 CVE-2026-32283 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM yggdrasil-0.4.9-4.el10_2.src.rpm SHA-256: ef96ad8889db196cb2e03c68c118b0e3c741d8a6673b69c30188689151b0f6e6 x86_64 yggdrasil-0.4.9-4.el10_2.x86_64.rpm SHA-256: 297a7dd336ed23052a85342cfdee5ad37fbc8150010985f41644bce6c13a129a yggdrasil-debuginfo-0.4.9-4.el10_2.x86_64.rpm SHA-256: daa088781b60a4b95cd1d2f092cc20d5ff00465c9eb0f8750d647e9f5c643a99 yggdrasil-debugsource-0.4.9-4.el10_2.x86_64.rpm SHA-256: f074cbb26158cd3ee107dedacc8e21fca7c264e8ebc39e4bb52698c70b39e748 yggdrasil-examples-debuginfo-0.4.9-4.el10_2.x86_64.rpm SHA-256: c467e6f7079469eb0fbd5e5d6a351095a69628225675a027ab75d357b8609030 Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 SRPM yggdrasil-0.4.9-4.el10_2.src.rpm SHA-256: ef96ad8889db196cb2e03c68c118b0e3c741d8a6673b69c30188689151b0f6e6 x86_64 yggdrasil-0.4.9-4.el10_2.x86_64.rpm SHA-256: 297a7dd336ed23052a85342cfdee5ad37fbc8150010985f41644bce6c13a129a yggdrasil-debuginfo-0.4.9-4.el10_2.x86_64.rpm SHA-256: daa088781b60a4b95cd1d2f092cc20d5ff00465c9eb0f8750d647e9f5c643a99 yggdrasil-debugsource-0.4.9-4.el10_2.x86_64.rpm SHA-256: f074cbb26158cd3ee107dedacc8e21fca7c264e8ebc39e4bb52698c70b39e748 yggdrasil-examples-debuginfo-0.4.9-4.el10_2.x86_64.rpm SHA-256: c467e6f7079469eb0fbd5e5d6a351095a69628225675a027ab75d357b8609030 Red Hat Enterprise Linux for IBM z Systems 10 SRPM yggdrasil-0.4.9-4.el10_2.src.rpm SHA-256: ef96ad8889db196cb2e03c68c118b0e3c741d8a6673b69c30188689151b0f6e6 s390x yggdrasil-0.4.9-4.el10_2.s390x.rpm SHA-256: e1d1aa0d9a37bfca087085725bee9071e39001ddc0aa94646af6b114860fc831 yggdrasil-debuginfo-0.4.9-4.el10_2.s390x.rpm SHA-256: e9b17a0c31e6633ee671dfb0f9bc27a68e17cce20becbaf3d2eb17225361e662 yggdrasil-debugsource-0.4.9-4.el10_2.s390x.rpm SHA-256: 545176ae070dc39431812c42e17415949b98df1a4fa2e28886163c9f64c0852d yggdrasil-examples-debuginfo-0.4.9-4.el10_2.s390x.rpm SHA-256: 6cfb3a99156d38ce6d06841b1e763f3c1bd32ee32810fbe456c96b3a7c2812ca Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 SRPM yggdrasil-0.4.9-4.el10_2.src.rpm SHA-256: ef96ad8889db196cb2e03c68c118b0e3c741d8a6673b69c30188689151b0f6e6 s390x yggdrasil-0.4.9-4.el10_2.s390x.rpm SHA-256: e1d1aa0d9a37bfca087085725bee9071e39001ddc0aa94646af6b114860fc831 yggdrasil-debuginfo-0.4.9-4.el10_2.s390x.rpm SHA-256: e9b17a0c31e6633ee671dfb0f9bc27a68e17cce20becbaf3d2eb17225361e662 yggdrasil-debugsource-0.4.9-4.el10_2.s390x.rpm SHA-256: 545176ae070dc39431812c42e17415949b98df1a4fa2e28886163c9f64c0852d yggdrasil-examples-debuginfo-0.4.9-4.el10_2.s390x.rpm SHA-256: 6cfb3a99156d38ce6d06841b1e763f3c1bd32ee32810fbe456c96b3a7c2812ca Red Hat Enterprise Linux for Power, little endian 10 SRPM yggdrasil-0.4.9-4.el10_2.src.rpm SHA-256: ef96ad8889db196cb2e03c68c118b0e3c741d8a6673b69c30188689151b0f6e6 ppc64le yggdrasil-0.4.9-4.el10_2.ppc64le.rpm SHA-256: d056bf30b8dafe935a793ed6e6ae38168504f34d6d5ecad58231939fcbbe1414 yggdrasil-debuginfo-0.4.9-4.el10_2.ppc64le.rpm SHA-256: bc4f7ee58f187f24b6db64348cf8b9b3672cc3e094d5b875ac79f2f7adee67fa yggdrasil-debugsource-0.4.9-4.el10_2.ppc64le.rpm SHA-256: ff710dc143b40d3b972f0347dc82551508ee51ed263119fad4db0088e5891a40 yggdrasil-examples-debuginfo-0.4.9-4.el10_2.ppc64le.rpm SHA-256: eeacff72b2f0f27dc7f46a5a30cd727a71619c67bf05d1e3d554b1ea0002ab72 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 SRPM yggdrasil-0.4.9-4.el10_2.src.rpm SHA-256: ef96ad8889db196cb2e03c68c118b0e3c741d8a6673b69c30188689151b0f6e6 ppc64le yggdrasil-0.4.9-4.el10_2.ppc64le.rpm SHA-256: d056bf30b8dafe935a793ed6e6ae38168504f34d6d5ecad58231939fcbbe1414 yggdrasil-debuginfo-0.4.9-4.el10_2.ppc64le.rpm SHA-256: bc4f7ee58f187f24b6db64348cf8b9b3672cc3e094d5b875ac79f2f7adee67fa yggdrasil-debugsource-0.4.9-4.el10_2.ppc64le.rpm SHA-256: ff710dc143b40d3b972f0347dc82551508ee51ed263119fad4db0088e5891a40 yggdrasil-examples-debuginfo-0.4.9-4.el10_2.ppc64le.rpm SHA-256: eeacff72b2f0f27dc7f46a5a30cd727a71619c67bf05d1e3d554b1ea0002ab72 Red Hat Enterprise Linux for ARM 64 10 SRPM yggdrasil-0.4.9-4.el10_2.src.rpm SHA-256: ef96ad8889db196cb2e03c68c118b0e3c741d8a6673b69c30188689151b0f6e6 aarch64 yggdrasil-0.4.9-4.el10_2.aarch64.rpm SHA-256: 1c325238af8ba20a471bbbc34ddde7cbad8239d52df4dbb2c7699c4bd6de6fcf yggdrasil-debuginfo-0.4.9-4.el10_2.aarch64.rpm SHA-256: d389d54e6239909e126ad10254b571ff690c9703b5ce6a01c4fb4b6bc0583450 yggdrasil-debugsource-0.4.9-4.el10_2.aarch64.rpm SHA-256: bc6d132a9fd67dc901ad57296cbd6d4a97c21cf8e1cb85a3ef134cdd37753436 yggdrasil-examples-debuginfo-0.4.9-4.el10_2.aarch64.rpm SHA-256: 5929929a80086d5955748863d38127cd1b93343da43f69f444bf643d91c28209 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 SRPM yggdrasil-0.4.9-4.el10_2.src.rpm SHA-256: ef96ad8889db196cb2e03c68c118b0e3c741d8a6673b69c30188689151b0f6e6 aarch64 yggdrasil-0.4.9-4.el10_2.aarch64.rpm SHA-256: 1c325238af8ba20a471bbbc34ddde7cbad8239d52df4dbb2c7699c4bd6de6fcf yggdrasil-debuginfo-0.4.9-4.el10_2.aarch64.rpm SHA-256: d389d54e6239909e126ad10254b571ff690c9703b5ce6a01c4fb4b6bc0583450 yggdrasil-debugsource-0.4.9-4.el10_2.aarch64.rpm SHA-256: bc6d132a9fd67dc901ad57296cbd6d4a97c21cf8e1cb85a3ef134cdd37753436 yggdrasil-examples-debuginfo-0.4.9-4.el10_2.aarch64.rpm SHA-256: 5929929a80086d5955748863d38127cd1b93343da43f69f444bf643d91c28209 Red Hat CodeReady Linux Builder for x86_64 10 SRPM x86_64 yggdrasil-debuginfo-0.4.9-4.el10_2.x86_64.rpm SHA-256: daa088781b60a4b95cd1d2f092cc20d5ff00465c9eb0f8750d647e9f5c643a99 yggdrasil-debugsource-0.4.9-4.el10_2.x86_64.rpm SHA-256: f074cbb26158cd3ee107dedacc8e21fca7c264e8ebc39e4bb52698c70b39e748 yggdrasil-devel-0.4.9-4.el10_2.x86_64.rpm SHA-256: 236089f481611b5d05d51580ca0d367b576aa9b9a46281b84adf6580d0f7a57e yggdrasil-examples-debuginfo-0.4.9-4.el10_2.x86_64.rpm SHA-256: c467e6f7079469eb0fbd5e5d6a351095a69628225675a027ab75d357b8609030 Red Hat CodeReady Linux Builder for Power, little endian 10 SRPM ppc64le yggdrasil-debuginfo-0.4.9-4.el10_2.ppc64le.rpm SHA-256: bc4f7ee58f187f24b6db64348cf8b9b3672cc3e094d5b875ac79f2f7adee67fa yggdrasil-debugsource-0.4.9-4.el10_2.ppc64le.rpm SHA-256: ff710dc143b40d3b972f0347dc82551508ee51ed263119fad4db0088e5891a40 yggdrasil-devel-0.4.9-4.el10_2.ppc64le.rpm SHA-256: 9058dcecad6f37c7a2ad7edc2d5cbf06684b3726d05c459620668e2f66294462 yggdrasil-examples-debuginfo-0.4.9-4.el10_2.ppc64le.rpm SHA-256: eeacff72b2f0f