RHSA-2026:19559: Important: libsndfile security update

libsndfile cve-2026-37555

An integer overflow vulnerability (CVE-2026-37555, CVSS 7.5 HIGH) in the libsndfile library's `ima_reader_init()` function can be exploited to potentially cause a denial of service or other impacts. The vulnerability affects libsndfile version 1.2.2, as per authoritative NVD data. Red Hat has released a security update rated Important for RHEL 8, with the fix provided in package version libsndfile-1.0.28-17.el8_10.

Read Full Article →

Red Hat Product Errata RHSA-2026:19559 - Security Advisory Issued: 2026-05-20 Updated: 2026-05-20 RHSA-2026:19559 - Security Advisory Overview Updated Packages Synopsis Important: libsndfile security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libsndfile is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description libsndfile is a C library for reading and writing files containing sampled sound, such as AIFF, AU, or WAV. Security Fix(es): libsndfile: integer overflow in ima_reader_init() (CVE-2026-37555) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 8 x86_64 Red Hat Enterprise Linux for IBM z Systems 8 s390x Red Hat Enterprise Linux for Power, little endian 8 ppc64le Red Hat Enterprise Linux for ARM 64 8 aarch64 Red Hat CodeReady Linux Builder for x86_64 8 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 8 ppc64le Red Hat CodeReady Linux Builder for ARM 64 8 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 8 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10 s390x Fixes BZ - 2463856 - CVE-2026-37555 libsndfile: integer overflow in ima_reader_init() CVEs CVE-2026-37555 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 8 SRPM libsndfile-1.0.28-17.el8_10.src.rpm SHA-256: 3046cce64676e61c92a053b0029f62c7d455a4d0989f0a357cccf21a5bcf868c x86_64 libsndfile-1.0.28-17.el8_10.i686.rpm SHA-256: 16d3c88426130ae275846d23669f5336398af8f1ac6badbb18af94e15a5503cb libsndfile-1.0.28-17.el8_10.x86_64.rpm SHA-256: cc08235cd1025d03467f3971af00366005f8f78c2fd03008dcb41a1edf2e6585 libsndfile-debuginfo-1.0.28-17.el8_10.i686.rpm SHA-256: 5ff967582076e44b710346a42eab5ed76a2b51c252db7c36232955a992e47074 libsndfile-debuginfo-1.0.28-17.el8_10.x86_64.rpm SHA-256: a6269ef7dfd6fb3571d101a7c04f169706e9a9e812423b7e84a5f45723f01082 libsndfile-debugsource-1.0.28-17.el8_10.i686.rpm SHA-256: ada3fcbd63573ef1d8d02f06932548e0a46fb111fdeb1519c19be76ad915a991 libsndfile-debugsource-1.0.28-17.el8_10.x86_64.rpm SHA-256: 2283bd87b758b59eec5d08e8ceed02f735c2b41101ee31de66cf9968a439ab1c libsndfile-utils-1.0.28-17.el8_10.x86_64.rpm SHA-256: 4ca9c578bb3c236a2d2bcde76505d970922165b4697fcd69c11ed8e68817806c libsndfile-utils-debuginfo-1.0.28-17.el8_10.i686.rpm SHA-256: 823c952d8db3d8e4dd66e8629becea732e5c7cfc451bdb4fc8f0cbb73ed7ad99 libsndfile-utils-debuginfo-1.0.28-17.el8_10.x86_64.rpm SHA-256: 9714d41091dadd7ff62e75ab616593d4fdda57859d1ab9e71ce44423c96e9911 Red Hat Enterprise Linux for IBM z Systems 8 SRPM libsndfile-1.0.28-17.el8_10.src.rpm SHA-256: 3046cce64676e61c92a053b0029f62c7d455a4d0989f0a357cccf21a5bcf868c s390x libsndfile-1.0.28-17.el8_10.s390x.rpm SHA-256: 4fe9e9f5cdb7e82b2a076a6fec2c7c46cadb79654ee67362bedc647037e4e0e5 libsndfile-debuginfo-1.0.28-17.el8_10.s390x.rpm SHA-256: 79b88bbd6a53c6beace77aeab973283186c7a5c0ca1a4fb2902da85e9cf1f1c1 libsndfile-debugsource-1.0.28-17.el8_10.s390x.rpm SHA-256: 4f2d1e51dbe4cf0329177a1ccc9930eb8cf51f05cabe46ee1d10a93619a64726 libsndfile-utils-1.0.28-17.el8_10.s390x.rpm SHA-256: ace0f7b27930064be66ae214f2b832f5210d216ced543a21b34c96fcbcad5fc2 libsndfile-utils-debuginfo-1.0.28-17.el8_10.s390x.rpm SHA-256: 8fb701a40f5d2986aef90f05489d9fe68269f29677d726dee5bf0e3cd208ae9f Red Hat Enterprise Linux for Power, little endian 8 SRPM libsndfile-1.0.28-17.el8_10.src.rpm SHA-256: 3046cce64676e61c92a053b0029f62c7d455a4d0989f0a357cccf21a5bcf868c ppc64le libsndfile-1.0.28-17.el8_10.ppc64le.rpm SHA-256: 2931984c8ce235730b485b8491e57c5f74a874e682cbb22ea011a0694b5ba63d libsndfile-debuginfo-1.0.28-17.el8_10.ppc64le.rpm SHA-256: 30e6d0d4dcaf64f8758773691ff557dd5fac00a6dde3304b935133d041e3439c libsndfile-debugsource-1.0.28-17.el8_10.ppc64le.rpm SHA-256: 35ca285c75356e723385a508891a665814e36bc061e929b9ed4cb08698092e7f libsndfile-utils-1.0.28-17.el8_10.ppc64le.rpm SHA-256: 70ac3bd204590403dbe4cf40df28107d33d9e3c5c767f139649282e104c6c506 libsndfile-utils-debuginfo-1.0.28-17.el8_10.ppc64le.rpm SHA-256: 664b5ed746c78c5ae7f7243c8fbbb69e23aad12fe7f3061ca751809f42d11276 Red Hat Enterprise Linux for ARM 64 8 SRPM libsndfile-1.0.28-17.el8_10.src.rpm SHA-256: 3046cce64676e61c92a053b0029f62c7d455a4d0989f0a357cccf21a5bcf868c aarch64 libsndfile-1.0.28-17.el8_10.aarch64.rpm SHA-256: 672df2d0e6976a88ae8eefb7744213f2514c17527967447362ce13439316c6b7 libsndfile-debuginfo-1.0.28-17.el8_10.aarch64.rpm SHA-256: 8a6109172759213831b9c13474093bdb4338d4afc78ad06ca42044a06940e6cf libsndfile-debugsource-1.0.28-17.el8_10.aarch64.rpm SHA-256: d32df53ad35fa246108c22dbe1e3de799e9956fadbbef93731e4425bfab0fec8 libsndfile-utils-1.0.28-17.el8_10.aarch64.rpm SHA-256: cfd9f6dc343d0f181c13cc309bab8dd466deea926db2f8c8c72d0ee3ba26a45c libsndfile-utils-debuginfo-1.0.28-17.el8_10.aarch64.rpm SHA-256: 62e875c49679666046c13e56667f6d4ce5bfee6132a894588f26a293d0d8cdf6 Red Hat CodeReady Linux Builder for x86_64 8 SRPM x86_64 libsndfile-debuginfo-1.0.28-17.el8_10.i686.rpm SHA-256: 5ff967582076e44b710346a42eab5ed76a2b51c252db7c36232955a992e47074 libsndfile-debuginfo-1.0.28-17.el8_10.x86_64.rpm SHA-256: a6269ef7dfd6fb3571d101a7c04f169706e9a9e812423b7e84a5f45723f01082 libsndfile-debugsource-1.0.28-17.el8_10.i686.rpm SHA-256: ada3fcbd63573ef1d8d02f06932548e0a46fb111fdeb1519c19be76ad915a991 libsndfile-debugsource-1.0.28-17.el8_10.x86_64.rpm SHA-256: 2283bd87b758b59eec5d08e8ceed02f735c2b41101ee31de66cf9968a439ab1c libsndfile-devel-1.0.28-17.el8_10.i686.rpm SHA-256: 1315bc558eb667a27e42adb4c9bec8d12706e0157465ad9e2ed9d864e23db947 libsndfile-devel-1.0.28-17.el8_10.x86_64.rpm SHA-256: 21940ccba5e506240f6c2f404992c191e7c1154f4c2717ecc5c9cd5ce61ed0f5 libsndfile-utils-debuginfo-1.0.28-17.el8_10.i686.rpm SHA-256: 823c952d8db3d8e4dd66e8629becea732e5c7cfc451bdb4fc8f0cbb73ed7ad99 libsndfile-utils-debuginfo-1.0.28-17.el8_10.x86_64.rpm SHA-256: 9714d41091dadd7ff62e75ab616593d4fdda57859d1ab9e71ce44423c96e9911 Red Hat CodeReady Linux Builder for Power, little endian 8 SRPM ppc64le libsndfile-debuginfo-1.0.28-17.el8_10.ppc64le.rpm SHA-256: 30e6d0d4dcaf64f8758773691ff557dd5fac00a6dde3304b935133d041e3439c libsndfile-debugsource-1.0.28-17.el8_10.ppc64le.rpm SHA-256: 35ca285c75356e723385a508891a665814e36bc061e929b9ed4cb08698092e7f libsndfile-devel-1.0.28-17.el8_10.ppc64le.rpm SHA-256: d5a6a0edb041c01efe036a4a91699505e559c95ea3dfac8c2e72fdc8388f69d7 libsndfile-utils-debuginfo-1.0.28-17.el8_10.ppc64le.rpm SHA-256: 664b5ed746c78c5ae7f7243c8fbbb69e23aad12fe7f3061ca751809f42d11276 Red Hat CodeReady Linux Builder for ARM 64 8 SRPM aarch64 libsndfile-debuginfo-1.0.28-17.el8_10.aarch64.rpm SHA-256: 8a6109172759213831b9c13474093bdb4338d4afc78ad06ca42044a06940e6cf libsndfile-debugsource-1.0.28-17.el8_10.aarch64.rpm SHA-256: d32df53ad35fa246108c22dbe1e3de799e9956fadbbef93731e4425bfab0fec8 libsndfile-devel-1.0.28-17.el8_10.aarch64.rpm SHA-256: 65e415afa61093b463ba060cbfe89dfd8b47b960fd5edf501e081733a4139ff3 libsndfile-utils-debuginfo-1.0.28-17.el8_10.aarch64.rpm SHA-256: 62e875c49679666046c13e56667f6d4ce5bfee6132a894588f26a293d0d8cdf6 Red Hat CodeReady Linux Builder for IBM z Systems 8 SRPM s390x libsndfile-debuginfo-1.0.28-17.el8_10.s390x.rpm SHA-256: 79b88bbd6a53c6beace77aeab973283186c7a5c0ca1a4fb2902da85e9cf1f1c1 libsndfile-debugsource-1.0.28-17.el8_10.s390x.rpm SHA-256: 4f2d1e51dbe4cf0329177a1ccc9930eb8cf51f05cabe46ee1d10a93619a64726 libsndfile-devel-1.0.28-17.el8_10.s390x.rpm SHA-256: f409a54128288d713d7ccf7a159a885569ca38b2e56efb2baa665debdf778d1a libsndfile-utils-debuginfo-1.0.28-17.el8_10.s390x.rpm SHA-256: 8fb701a40f5d2986aef90f05489d9fe68269f29677d726dee5bf0e3cd208ae9f Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10 SRPM libsndfile-1.0.28-17.el8_10.src.rpm SHA-256: 3046cce64676e61c92a053b0029f62c7d455a4d0989f0a357cccf21a5bcf868c x86_64 libsndfile-1.0.28-17.el8_10.i686.rpm SHA-256: 16d3c88426130ae275846d23669f5336398af8f1ac6badbb18af94e15a5503cb libsndfile-1.0.28-17.el8_10.x86_64.rpm SHA-256: cc08235cd1025d03467f3971af00366005f8f78c2fd03008dcb41a1edf2e6585 libsndfile-debuginfo-1.0.28-17.el8_10.i686.rpm SHA-256: 5ff967582076e44b710346a42eab5ed76a2b51c252db7c36232955a992e47074 libsndfile-debuginfo-1.0.28-17.el8_10.x86_64.rpm SHA-256: a6269ef7dfd6fb3571d101a7c04f169706e9a9e812423b7e84a5f45723f01082 libsndfile-debugsource-1.0.28-17.el8_10.i686.rpm SHA-256: ada3fcbd63573ef1d8d02f06932548e0a46fb111fdeb1519c19be76ad915a991 libsndfile-debugsource-1.0.28-17.el8_10.x86_64.rpm SHA-256: 2283bd87b758b59eec5d08e8ceed02f735c2b41101ee31de66cf9968a439ab1c libsndfile-utils-1.0.28-17.el8_10.x86_64.rpm SHA-256: 4ca9c578bb3c236a2d2bcde76505d970922165b4697fcd69c11ed8e68817806c libsndfile-utils-debuginfo-1.0.28-17.el8_10.i686.rpm SHA-256: 823c952d8db3d8e4dd66e8629becea732e5c7cfc451bdb4fc8f0cbb73ed7ad99 libsndfile-utils-debuginfo-1.0.28-17.el8_10.x86_64.rpm SHA-256: 9714d41091dadd7ff62e75ab616593d4fdda57859d1ab9e71ce44423c96e9911 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10 SRPM libsndfile-1.0.28-17.el8_10.src.rpm SHA-2

Read Full Article → ← Back to News

RHSA-2026:19559: Important: libsndfile security update

Related Articles

Share this article