Red Hat Product Errata RHSA-2026:19345 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19345 - Security Advisory Overview Updated Packages Synopsis Important: LibRaw security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for LibRaw is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description LibRaw is a library for reading RAW files obtained from digital photo cameras (CRW/CR2, NEF, RAF, DNG, and others). Security Fix(es): LibRaw: LibRaw: Arbitrary code execution via a specially crafted malicious file (CVE-2026-24450) LibRaw: LibRaw: Arbitrary code execution via heap-based buffer overflow in lossless JPEG loading (CVE-2026-21413) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8 x86_64 Red Hat CodeReady Linux Builder for x86_64 9 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.8 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.8 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.8 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.8 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.8 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.8 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.8 s390x Fixes BZ - 2455925 - CVE-2026-24450 LibRaw: LibRaw: Arbitrary code execution via a specially crafted malicious file BZ - 2455929 - CVE-2026-21413 LibRaw: LibRaw: Arbitrary code execution via heap-based buffer overflow in lossless JPEG loading CVEs CVE-2026-21413 CVE-2026-24450 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM LibRaw-0.21.1-2.el9_8.src.rpm SHA-256: bd08f2bfbe652e2603320ab92ce19a8079b98979d9c059e8f3e69b497e296e76 x86_64 LibRaw-0.21.1-2.el9_8.i686.rpm SHA-256: 52ca975f9955e6ab529b037878142ed5ff4fa1407d4604d42707ab6569ee449a LibRaw-0.21.1-2.el9_8.x86_64.rpm SHA-256: 82a6cafbaff297bd9108a49e59ca28541ac0c01dc23b19106f542cf7d09e53b7 LibRaw-debuginfo-0.21.1-2.el9_8.i686.rpm SHA-256: 5a332c02948f6b2e89c391656e8e668ff51c05e971f59311d08de2df187278ac LibRaw-debuginfo-0.21.1-2.el9_8.x86_64.rpm SHA-256: 26b1380b0197d5d639743c6277053dc5a6c8b5c1c3593d739bde5aaf264abc72 LibRaw-debugsource-0.21.1-2.el9_8.i686.rpm SHA-256: f3bc4d6b83a74d35a9f99c9dba624c9cf2f9d0b08239267a7ba5f6909f0da3b2 LibRaw-debugsource-0.21.1-2.el9_8.x86_64.rpm SHA-256: a21d678ecfdd3416ab7f35e013f6f625dfce8a71507cbfccf3d2cf654e9ee093 LibRaw-samples-debuginfo-0.21.1-2.el9_8.i686.rpm SHA-256: 84e9c175aa2fc2b80798a515d64bef3c92e667660e302a498cd2b0deb625d497 LibRaw-samples-debuginfo-0.21.1-2.el9_8.x86_64.rpm SHA-256: 85849c47f22fe2affb9c4c8a7ee53340ec1c80f719180524ed2ea22de3fdd7b1 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 SRPM LibRaw-0.21.1-2.el9_8.src.rpm SHA-256: bd08f2bfbe652e2603320ab92ce19a8079b98979d9c059e8f3e69b497e296e76 x86_64 LibRaw-0.21.1-2.el9_8.i686.rpm SHA-256: 52ca975f9955e6ab529b037878142ed5ff4fa1407d4604d42707ab6569ee449a LibRaw-0.21.1-2.el9_8.x86_64.rpm SHA-256: 82a6cafbaff297bd9108a49e59ca28541ac0c01dc23b19106f542cf7d09e53b7 LibRaw-debuginfo-0.21.1-2.el9_8.i686.rpm SHA-256: 5a332c02948f6b2e89c391656e8e668ff51c05e971f59311d08de2df187278ac LibRaw-debuginfo-0.21.1-2.el9_8.x86_64.rpm SHA-256: 26b1380b0197d5d639743c6277053dc5a6c8b5c1c3593d739bde5aaf264abc72 LibRaw-debugsource-0.21.1-2.el9_8.i686.rpm SHA-256: f3bc4d6b83a74d35a9f99c9dba624c9cf2f9d0b08239267a7ba5f6909f0da3b2 LibRaw-debugsource-0.21.1-2.el9_8.x86_64.rpm SHA-256: a21d678ecfdd3416ab7f35e013f6f625dfce8a71507cbfccf3d2cf654e9ee093 LibRaw-samples-debuginfo-0.21.1-2.el9_8.i686.rpm SHA-256: 84e9c175aa2fc2b80798a515d64bef3c92e667660e302a498cd2b0deb625d497 LibRaw-samples-debuginfo-0.21.1-2.el9_8.x86_64.rpm SHA-256: 85849c47f22fe2affb9c4c8a7ee53340ec1c80f719180524ed2ea22de3fdd7b1 Red Hat Enterprise Linux for IBM z Systems 9 SRPM LibRaw-0.21.1-2.el9_8.src.rpm SHA-256: bd08f2bfbe652e2603320ab92ce19a8079b98979d9c059e8f3e69b497e296e76 s390x LibRaw-0.21.1-2.el9_8.s390x.rpm SHA-256: 32c47c76ab9f5f6e6c5888f498b51bcf159d821b3cc67f371925615ca825dc86 LibRaw-debuginfo-0.21.1-2.el9_8.s390x.rpm SHA-256: 6eb5230cac8f3641a4e2777e383d9037f49906add7229b5d54ce4b00021f1a4c LibRaw-debugsource-0.21.1-2.el9_8.s390x.rpm SHA-256: efd670d7d823049ad77f9ea30b553fdb8cbbc3a20453517ceff5dae6b631ed27 LibRaw-samples-debuginfo-0.21.1-2.el9_8.s390x.rpm SHA-256: 6d00e70d31e9b39fb7e68d8aec2107def33324fa5f55dca073fd7edfe66ce9cb Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 SRPM LibRaw-0.21.1-2.el9_8.src.rpm SHA-256: bd08f2bfbe652e2603320ab92ce19a8079b98979d9c059e8f3e69b497e296e76 s390x LibRaw-0.21.1-2.el9_8.s390x.rpm SHA-256: 32c47c76ab9f5f6e6c5888f498b51bcf159d821b3cc67f371925615ca825dc86 LibRaw-debuginfo-0.21.1-2.el9_8.s390x.rpm SHA-256: 6eb5230cac8f3641a4e2777e383d9037f49906add7229b5d54ce4b00021f1a4c LibRaw-debugsource-0.21.1-2.el9_8.s390x.rpm SHA-256: efd670d7d823049ad77f9ea30b553fdb8cbbc3a20453517ceff5dae6b631ed27 LibRaw-samples-debuginfo-0.21.1-2.el9_8.s390x.rpm SHA-256: 6d00e70d31e9b39fb7e68d8aec2107def33324fa5f55dca073fd7edfe66ce9cb Red Hat Enterprise Linux for Power, little endian 9 SRPM LibRaw-0.21.1-2.el9_8.src.rpm SHA-256: bd08f2bfbe652e2603320ab92ce19a8079b98979d9c059e8f3e69b497e296e76 ppc64le LibRaw-0.21.1-2.el9_8.ppc64le.rpm SHA-256: 1379fc70ca331bbe74b11dbbd18c8fcdbaea236b3b467a2f160f637841d0a7a3 LibRaw-debuginfo-0.21.1-2.el9_8.ppc64le.rpm SHA-256: a9477e40e45a8227dbc764931101a0ccf352b5d6d7f27c673fc704d115041452 LibRaw-debugsource-0.21.1-2.el9_8.ppc64le.rpm SHA-256: c04021e1958461139bc54990b099e9c72a0cbba4b874edc79deb85777c667814 LibRaw-samples-debuginfo-0.21.1-2.el9_8.ppc64le.rpm SHA-256: a9ce0a0ba49b24d7e7403d32e5e96fa29dd9711ac7a57d0c5bd4c7416af81102 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 SRPM LibRaw-0.21.1-2.el9_8.src.rpm SHA-256: bd08f2bfbe652e2603320ab92ce19a8079b98979d9c059e8f3e69b497e296e76 ppc64le LibRaw-0.21.1-2.el9_8.ppc64le.rpm SHA-256: 1379fc70ca331bbe74b11dbbd18c8fcdbaea236b3b467a2f160f637841d0a7a3 LibRaw-debuginfo-0.21.1-2.el9_8.ppc64le.rpm SHA-256: a9477e40e45a8227dbc764931101a0ccf352b5d6d7f27c673fc704d115041452 LibRaw-debugsource-0.21.1-2.el9_8.ppc64le.rpm SHA-256: c04021e1958461139bc54990b099e9c72a0cbba4b874edc79deb85777c667814 LibRaw-samples-debuginfo-0.21.1-2.el9_8.ppc64le.rpm SHA-256: a9ce0a0ba49b24d7e7403d32e5e96fa29dd9711ac7a57d0c5bd4c7416af81102 Red Hat Enterprise Linux for ARM 64 9 SRPM LibRaw-0.21.1-2.el9_8.src.rpm SHA-256: bd08f2bfbe652e2603320ab92ce19a8079b98979d9c059e8f3e69b497e296e76 aarch64 LibRaw-0.21.1-2.el9_8.aarch64.rpm SHA-256: 409a4526604c6f7b8c147856cd86974cd7ddbce79fe353a0cd72f8cd63eb75b7 LibRaw-debuginfo-0.21.1-2.el9_8.aarch64.rpm SHA-256: 4d241aeff29fc889f64ec18ca452fb7b10118fe10a2f2a5baf6159d471f62a9c LibRaw-debugsource-0.21.1-2.el9_8.aarch64.rpm SHA-256: 43b27084609d503f3272be56716f99034b7df6a7d058eca0ded09b2495c06938 LibRaw-samples-debuginfo-0.21.1-2.el9_8.aarch64.rpm SHA-256: e02d9be2075f20127f346c5ebe9772c73e68ae27f7056ce943ae209626f0d0ae Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 SRPM LibRaw-0.21.1-2.el9_8.src.rpm SHA-256: bd08f2bfbe652e2603320ab92ce19a8079b98979d9c059e8f3e69b497e296e76 aarch64 LibRaw-0.21.1-2.el9_8.aarch64.rpm SHA-256: 409a4526604c6f7b8c147856cd86974cd7ddbce79fe353a0cd72f8cd63eb75b7 LibRaw-debuginfo-0.21.1-2.el9_8.aarch64.rpm SHA-256: 4d241aeff29fc889f64ec18ca452fb7b10118fe10a2f2a5baf6159d471f62a9c LibRaw-debugsource-0.21.1-2.el9_8.aarch64.rpm SHA-256: 43b27084609d503f3272be56716f99034b7df6a7d058eca0ded09b2495c06938 LibRaw-samples-debuginfo-0.21.1-2.el9_8.aarch64.rpm SHA-256: e02d9be2075f20127f346c5ebe9772c73e68ae27f7056ce943ae209626f0d0ae Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 SRPM LibRaw-0.21.1-2.el9_8.src.rpm SHA-256: bd08f2bfbe652e2603320ab92ce19a8079b98979d9c059e8f3e69b497e296e76 ppc64le LibRaw-0.21.1-2.el9_8.ppc64le.rpm SHA-256: 1379fc70ca331bbe74b11dbbd18c8fcdbaea236b3b467a2f160f637841d0a7a3 LibRaw-debuginfo-0.21.1-2.el9_8.ppc64le.rpm SHA-256: a9477e40e45a8227dbc764931101a0ccf352b5d6d7f27c673fc704d115041452 LibRaw-debugsource-0.21.1-2.el9_8.ppc64le.rpm SHA-256: c04021e1958461139bc54990b099e9c72a0cbba4b874edc79deb85777c667814 LibRaw-samples-debuginfo-0.21.1-2.el9_8.ppc64le.rpm SHA-256: a9ce0a0ba49b24d7e7