Security News

Cybersecurity news aggregator

🔓
HIGH Vulnerabilities Red Hat Errata

RHSA-2026:19560: Important: libsndfile security update

libsndfilecve-2026-37555
An integer overflow vulnerability (CVE-2026-37555, CVSS 7.5 HIGH) in the `ima_reader_init()` function of libsndfile could allow for potential exploitation. The vulnerability affects libsndfile version 1.2.2. Red Hat has released a security update rated Important for Red Hat Enterprise Linux 10 to address this issue.
Read Full Article →

Red Hat Product Errata RHSA-2026:19560 - Security Advisory Issued: 2026-05-20 Updated: 2026-05-20 RHSA-2026:19560 - Security Advisory Overview Updated Packages Synopsis Important: libsndfile security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libsndfile is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description libsndfile is a C library for reading and writing files containing sampled sound, such as AIFF, AU, or WAV. Security Fix(es): libsndfile: integer overflow in ima_reader_init() (CVE-2026-37555) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 x86_64 Red Hat Enterprise Linux for IBM z Systems 10 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 s390x Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat CodeReady Linux Builder for x86_64 10 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 10 ppc64le Red Hat CodeReady Linux Builder for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 10 s390x Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.2 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.2 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 10.2 s390x Fixes BZ - 2463856 - CVE-2026-37555 libsndfile: integer overflow in ima_reader_init() CVEs CVE-2026-37555 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM libsndfile-1.2.2-6.el10_2.1.src.rpm SHA-256: e40065d24df5f25dec0a6c65d48f7fdd9c404f7d726dfee6a069c07b2993d814 x86_64 libsndfile-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: fdf598de0f43382975e91a4d5d7e48f807e547d0778c4ddb1f28fe8f6e7a99e1 libsndfile-debuginfo-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: d0587041136ac651fd1b098cd2e8a73107ea1bd52d16f880b9900bf268850703 libsndfile-debugsource-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: c221e37845f1b8eb1c55cd7ef5c48e4ebe0cce9162a895f49f95185f238ea92c libsndfile-utils-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: 2bba5d1f79e1a4c5492f713671ebfdc6be07e1641a2004ddc565d6519f76b2d8 libsndfile-utils-debuginfo-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: 6695ce30d24d08ea100fbd8dfda600513b59d50e4df73324e071792a5ca91d3d Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 SRPM libsndfile-1.2.2-6.el10_2.1.src.rpm SHA-256: e40065d24df5f25dec0a6c65d48f7fdd9c404f7d726dfee6a069c07b2993d814 x86_64 libsndfile-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: fdf598de0f43382975e91a4d5d7e48f807e547d0778c4ddb1f28fe8f6e7a99e1 libsndfile-debuginfo-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: d0587041136ac651fd1b098cd2e8a73107ea1bd52d16f880b9900bf268850703 libsndfile-debugsource-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: c221e37845f1b8eb1c55cd7ef5c48e4ebe0cce9162a895f49f95185f238ea92c libsndfile-utils-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: 2bba5d1f79e1a4c5492f713671ebfdc6be07e1641a2004ddc565d6519f76b2d8 libsndfile-utils-debuginfo-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: 6695ce30d24d08ea100fbd8dfda600513b59d50e4df73324e071792a5ca91d3d Red Hat Enterprise Linux for IBM z Systems 10 SRPM libsndfile-1.2.2-6.el10_2.1.src.rpm SHA-256: e40065d24df5f25dec0a6c65d48f7fdd9c404f7d726dfee6a069c07b2993d814 s390x libsndfile-1.2.2-6.el10_2.1.s390x.rpm SHA-256: 35b07a2ae414a5d7648424bca16128e0d6979adb2382cee5d245a8c178868294 libsndfile-debuginfo-1.2.2-6.el10_2.1.s390x.rpm SHA-256: c00420caf80b408931e56d595b08b99ed6c7b794144cafdb922a581a59a3f170 libsndfile-debugsource-1.2.2-6.el10_2.1.s390x.rpm SHA-256: 345976786e70794e7b45c13d5f78d1be78c77ddfda216fd187a900f74ce7b755 libsndfile-utils-1.2.2-6.el10_2.1.s390x.rpm SHA-256: 860f199020d78eff327b7fa79a6b5a68f34db7d70f6c2cf631461c63974e13a1 libsndfile-utils-debuginfo-1.2.2-6.el10_2.1.s390x.rpm SHA-256: e610249d81149c72db495ffc7a021f20fcfbd0913e4c0ba0d1814e1d40c7dbd0 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 SRPM libsndfile-1.2.2-6.el10_2.1.src.rpm SHA-256: e40065d24df5f25dec0a6c65d48f7fdd9c404f7d726dfee6a069c07b2993d814 s390x libsndfile-1.2.2-6.el10_2.1.s390x.rpm SHA-256: 35b07a2ae414a5d7648424bca16128e0d6979adb2382cee5d245a8c178868294 libsndfile-debuginfo-1.2.2-6.el10_2.1.s390x.rpm SHA-256: c00420caf80b408931e56d595b08b99ed6c7b794144cafdb922a581a59a3f170 libsndfile-debugsource-1.2.2-6.el10_2.1.s390x.rpm SHA-256: 345976786e70794e7b45c13d5f78d1be78c77ddfda216fd187a900f74ce7b755 libsndfile-utils-1.2.2-6.el10_2.1.s390x.rpm SHA-256: 860f199020d78eff327b7fa79a6b5a68f34db7d70f6c2cf631461c63974e13a1 libsndfile-utils-debuginfo-1.2.2-6.el10_2.1.s390x.rpm SHA-256: e610249d81149c72db495ffc7a021f20fcfbd0913e4c0ba0d1814e1d40c7dbd0 Red Hat Enterprise Linux for Power, little endian 10 SRPM libsndfile-1.2.2-6.el10_2.1.src.rpm SHA-256: e40065d24df5f25dec0a6c65d48f7fdd9c404f7d726dfee6a069c07b2993d814 ppc64le libsndfile-1.2.2-6.el10_2.1.ppc64le.rpm SHA-256: f9ae45f954b8ba967499e4a32c02277779616df6ffcdb46a54c911cd010f5295 libsndfile-debuginfo-1.2.2-6.el10_2.1.ppc64le.rpm SHA-256: 40e49baca71d1b7e27dbb0de22ee18530da2374c512942aa792085ae77283dc5 libsndfile-debugsource-1.2.2-6.el10_2.1.ppc64le.rpm SHA-256: 536a3113d7460207882f92f20cfc3991ae029821279a64f04ccf6a17c99b3f38 libsndfile-utils-1.2.2-6.el10_2.1.ppc64le.rpm SHA-256: beac0d099199a95d6419b411fdad6c02db6b854dc2cc4b0713aeca7afc50a4ee libsndfile-utils-debuginfo-1.2.2-6.el10_2.1.ppc64le.rpm SHA-256: 0727175b4de509af64cbc80dc7c848c906440e800256008c75bcf323a6cb558a Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 SRPM libsndfile-1.2.2-6.el10_2.1.src.rpm SHA-256: e40065d24df5f25dec0a6c65d48f7fdd9c404f7d726dfee6a069c07b2993d814 ppc64le libsndfile-1.2.2-6.el10_2.1.ppc64le.rpm SHA-256: f9ae45f954b8ba967499e4a32c02277779616df6ffcdb46a54c911cd010f5295 libsndfile-debuginfo-1.2.2-6.el10_2.1.ppc64le.rpm SHA-256: 40e49baca71d1b7e27dbb0de22ee18530da2374c512942aa792085ae77283dc5 libsndfile-debugsource-1.2.2-6.el10_2.1.ppc64le.rpm SHA-256: 536a3113d7460207882f92f20cfc3991ae029821279a64f04ccf6a17c99b3f38 libsndfile-utils-1.2.2-6.el10_2.1.ppc64le.rpm SHA-256: beac0d099199a95d6419b411fdad6c02db6b854dc2cc4b0713aeca7afc50a4ee libsndfile-utils-debuginfo-1.2.2-6.el10_2.1.ppc64le.rpm SHA-256: 0727175b4de509af64cbc80dc7c848c906440e800256008c75bcf323a6cb558a Red Hat Enterprise Linux for ARM 64 10 SRPM libsndfile-1.2.2-6.el10_2.1.src.rpm SHA-256: e40065d24df5f25dec0a6c65d48f7fdd9c404f7d726dfee6a069c07b2993d814 aarch64 libsndfile-1.2.2-6.el10_2.1.aarch64.rpm SHA-256: 784b168750e6693e5073497298aa93b754bb572455b00fa764b7f901b3302d96 libsndfile-debuginfo-1.2.2-6.el10_2.1.aarch64.rpm SHA-256: 67bd5377ac1b8e5338717e5a80cd80ecb0e80a44c8195de6be94fcd23892a5a1 libsndfile-debugsource-1.2.2-6.el10_2.1.aarch64.rpm SHA-256: 704f10efe15aea23219cf4076be4f18d1579d9a3973afe6a5d1e6c0681866463 libsndfile-utils-1.2.2-6.el10_2.1.aarch64.rpm SHA-256: 08858364dcafefb335da9063a3ad86be8327de610841da6b34b4c8fcc5b8f8fe libsndfile-utils-debuginfo-1.2.2-6.el10_2.1.aarch64.rpm SHA-256: a03cb42461b4a3d91069c82ef56c7b8a6c714c230acc98ac6f4cfe209d28b406 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 SRPM libsndfile-1.2.2-6.el10_2.1.src.rpm SHA-256: e40065d24df5f25dec0a6c65d48f7fdd9c404f7d726dfee6a069c07b2993d814 aarch64 libsndfile-1.2.2-6.el10_2.1.aarch64.rpm SHA-256: 784b168750e6693e5073497298aa93b754bb572455b00fa764b7f901b3302d96 libsndfile-debuginfo-1.2.2-6.el10_2.1.aarch64.rpm SHA-256: 67bd5377ac1b8e5338717e5a80cd80ecb0e80a44c8195de6be94fcd23892a5a1 libsndfile-debugsource-1.2.2-6.el10_2.1.aarch64.rpm SHA-256: 704f10efe15aea23219cf4076be4f18d1579d9a3973afe6a5d1e6c0681866463 libsndfile-utils-1.2.2-6.el10_2.1.aarch64.rpm SHA-256: 08858364dcafefb335da9063a3ad86be8327de610841da6b34b4c8fcc5b8f8fe libsndfile-utils-debuginfo-1.2.2-6.el10_2.1.aarch64.rpm SHA-256: a03cb42461b4a3d91069c82ef56c7b8a6c714c230acc98ac6f4cfe209d28b406 Red Hat CodeReady Linux Builder for x86_64 10 SRPM x86_64 libsndfile-debuginfo-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: d0587041136ac651fd1b098cd2e8a73107ea1bd52d16f880b9900bf268850703 libsndfile-debugsource-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: c221e37845f1b8eb1c55cd7ef5c48e4ebe0cce9162a895f49f95185f238ea92c libsndfile-devel-1.2.2-6.el10_2.1.x86_64.rpm SHA-256: d97a6be2933cf7e722b0a2056b9920f28422490

Related Articles

HIGH RHSA-2026:19559: Important: libsndfile security update Red Hat Errata HIGH RHSA-2026:12265: Important: libtiff security update Red Hat Errata HIGH [NEU] [UNGEPATCHT] [mittel] libsndfile: Schwachstelle ermöglicht Denial of Service BSI Germany MEDIUM [UPDATE] [mittel] libsndfile: Mehrere Schwachstellen ermöglichen Denial of Service BSI Germany
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn