Red Hat Product Errata RHSA-2026:19550 - Security Advisory Issued: 2026-05-20 Updated: 2026-05-20 RHSA-2026:19550 - Security Advisory Overview Updated Packages Synopsis Important: golang-github-openprinting-ipp-usb security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for golang-github-openprinting-ipp-usb is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description HTTP reverse proxy, backed by IPP-over-USB connection to device. It enables driverless support for USB devices capable of using IPP-over-USB protocol. Security Fix(es): golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282) crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283) crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 x86_64 Fixes BZ - 2456336 - CVE-2026-32282 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root BZ - 2456338 - CVE-2026-32283 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages BZ - 2456339 - CVE-2026-32280 crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building CVEs CVE-2026-32280 CVE-2026-32282 CVE-2026-32283 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 SRPM golang-github-openprinting-ipp-usb-0.9.27-3.el10_0.4.src.rpm SHA-256: 1315e5a746ffa07b44108c2ca51048970004773d0b3fde16aa95bbd9d305d263 x86_64 golang-github-openprinting-ipp-usb-debugsource-0.9.27-3.el10_0.4.x86_64.rpm SHA-256: 9120a360c81e741b4d30c0b6f37032ee2dfb35ca3ecddcdc41799086b237167c ipp-usb-0.9.27-3.el10_0.4.x86_64.rpm SHA-256: ca7b9d59dbea8837ba15086f5908b8c11cb755f4d83e596f696ec4812aa738a6 ipp-usb-debuginfo-0.9.27-3.el10_0.4.x86_64.rpm SHA-256: dd95499fd94f5b820d3106704c102c17845277226707f1744439b5cfa89a8b51 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 SRPM golang-github-openprinting-ipp-usb-0.9.27-3.el10_0.4.src.rpm SHA-256: 1315e5a746ffa07b44108c2ca51048970004773d0b3fde16aa95bbd9d305d263 s390x golang-github-openprinting-ipp-usb-debugsource-0.9.27-3.el10_0.4.s390x.rpm SHA-256: 5eaf6a81cd84e1f298f5ec758b69fd8e75287f4341be57e23992028cb66a4539 ipp-usb-0.9.27-3.el10_0.4.s390x.rpm SHA-256: dbad9880d29b49e3c1aac1f60cb59fe5fe902327fa6eb4451e10a68ac72a60b6 ipp-usb-debuginfo-0.9.27-3.el10_0.4.s390x.rpm SHA-256: 06af0408402a368a745f26bad550a2289c2c539a1b18c9560bbfb22e3f142382 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 SRPM golang-github-openprinting-ipp-usb-0.9.27-3.el10_0.4.src.rpm SHA-256: 1315e5a746ffa07b44108c2ca51048970004773d0b3fde16aa95bbd9d305d263 ppc64le golang-github-openprinting-ipp-usb-debugsource-0.9.27-3.el10_0.4.ppc64le.rpm SHA-256: 5d6fb9b4f886d26c91e619db33093d0755c5d777026255e37ee2026d85772783 ipp-usb-0.9.27-3.el10_0.4.ppc64le.rpm SHA-256: a86afb5c488e0df767b467a1930450349b50c9612533ca837b5600430f2efbb5 ipp-usb-debuginfo-0.9.27-3.el10_0.4.ppc64le.rpm SHA-256: a9a4586b0b4165dcd55bba2cab3b0ccf97d8580ffdce483b5086fd8ea7eb0ab3 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 SRPM golang-github-openprinting-ipp-usb-0.9.27-3.el10_0.4.src.rpm SHA-256: 1315e5a746ffa07b44108c2ca51048970004773d0b3fde16aa95bbd9d305d263 aarch64 golang-github-openprinting-ipp-usb-debugsource-0.9.27-3.el10_0.4.aarch64.rpm SHA-256: c6a98b804b3762c87c78319facd7c3ae686e76c8e6331fc30612890f541fd2c1 ipp-usb-0.9.27-3.el10_0.4.aarch64.rpm SHA-256: 9b21ea0b3c0210507297d065b63813157caa391f1b5804bfa03df3bd6794096e ipp-usb-debuginfo-0.9.27-3.el10_0.4.aarch64.rpm SHA-256: ba81ba6a3602a3c572a92dfb04333763240495bec80d7ff10a421fc3c872769e Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 SRPM golang-github-openprinting-ipp-usb-0.9.27-3.el10_0.4.src.rpm SHA-256: 1315e5a746ffa07b44108c2ca51048970004773d0b3fde16aa95bbd9d305d263 aarch64 golang-github-openprinting-ipp-usb-debugsource-0.9.27-3.el10_0.4.aarch64.rpm SHA-256: c6a98b804b3762c87c78319facd7c3ae686e76c8e6331fc30612890f541fd2c1 ipp-usb-0.9.27-3.el10_0.4.aarch64.rpm SHA-256: 9b21ea0b3c0210507297d065b63813157caa391f1b5804bfa03df3bd6794096e ipp-usb-debuginfo-0.9.27-3.el10_0.4.aarch64.rpm SHA-256: ba81ba6a3602a3c572a92dfb04333763240495bec80d7ff10a421fc3c872769e Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 SRPM golang-github-openprinting-ipp-usb-0.9.27-3.el10_0.4.src.rpm SHA-256: 1315e5a746ffa07b44108c2ca51048970004773d0b3fde16aa95bbd9d305d263 s390x golang-github-openprinting-ipp-usb-debugsource-0.9.27-3.el10_0.4.s390x.rpm SHA-256: 5eaf6a81cd84e1f298f5ec758b69fd8e75287f4341be57e23992028cb66a4539 ipp-usb-0.9.27-3.el10_0.4.s390x.rpm SHA-256: dbad9880d29b49e3c1aac1f60cb59fe5fe902327fa6eb4451e10a68ac72a60b6 ipp-usb-debuginfo-0.9.27-3.el10_0.4.s390x.rpm SHA-256: 06af0408402a368a745f26bad550a2289c2c539a1b18c9560bbfb22e3f142382 Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 SRPM golang-github-openprinting-ipp-usb-0.9.27-3.el10_0.4.src.rpm SHA-256: 1315e5a746ffa07b44108c2ca51048970004773d0b3fde16aa95bbd9d305d263 ppc64le golang-github-openprinting-ipp-usb-debugsource-0.9.27-3.el10_0.4.ppc64le.rpm SHA-256: 5d6fb9b4f886d26c91e619db33093d0755c5d777026255e37ee2026d85772783 ipp-usb-0.9.27-3.el10_0.4.ppc64le.rpm SHA-256: a86afb5c488e0df767b467a1930450349b50c9612533ca837b5600430f2efbb5 ipp-usb-debuginfo-0.9.27-3.el10_0.4.ppc64le.rpm SHA-256: a9a4586b0b4165dcd55bba2cab3b0ccf97d8580ffdce483b5086fd8ea7eb0ab3 Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 SRPM golang-github-openprinting-ipp-usb-0.9.27-3.el10_0.4.src.rpm SHA-256: 1315e5a746ffa07b44108c2ca51048970004773d0b3fde16aa95bbd9d305d263 x86_64 golang-github-openprinting-ipp-usb-debugsource-0.9.27-3.el10_0.4.x86_64.rpm SHA-256: 9120a360c81e741b4d30c0b6f37032ee2dfb35ca3ecddcdc41799086b237167c ipp-usb-0.9.27-3.el10_0.4.x86_64.rpm SHA-256: ca7b9d59dbea8837ba15086f5908b8c11cb755f4d83e596f696ec4812aa738a6 ipp-usb-debuginfo-0.9.27-3.el10_0.4.x86_64.rpm SHA-256: dd95499fd94f5b820d3106704c102c17845277226707f1744439b5cfa89a8b51 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .