CVE & CISA-KEV Catalog

CVE-2026-23950

HIGH
8.8
CVSS v3
NVD

Description

node-tar,a Tar for Node.js, has a race condition vulnerability in versions up to and including 7.5.3. This is due to an incomplete handling of Unicode path collisions in the `path-reservations` system. On case-insensitive or normalization-insensitive filesystems (such as macOS APFS, In which it has been tested), the library fails to lock colliding paths (e.g., `ß` and `ss`), allowing them to be processed in parallel. This bypasses the library's internal concurrency safeguards and permits Symlink Poisoning attacks via race conditions. The library uses a `PathReservations` system to ensure that metadata checks and file operations for the same path are serialized. This prevents race conditions where one entry might clobber another concurrently. This is a Race Condition which enables Arbitrary File Overwrite. This vulnerability affects users and systems using node-tar on macOS (APFS/HFS+). Because of using `NFD` Unicode normalization (in which `ß` and `ss` are different), conflicting paths do not have their order properly preserved under filesystems that ignore Unicode normalization (e.g., APFS (in which `ß` causes an inode collision with `ss`)). This enables an attacker to circumvent internal parallelization locks (`PathReservations`) using conflicting filenames within a malicious tar archive. The patch in version 7.5.4 updates `path-reservations.js` to use a normalization form that matches the target filesystem's behavior (e.g., `NFKD`), followed by first `toLocaleLowerCase('en')` and then `toLocaleUpperCase('en')`. As a workaround, users who cannot upgrade promptly, and who are programmatically using `node-tar` to extract arbitrary tarball data should filter out all `SymbolicLink` entries (as npm does) to defend against arbitrary file writes via this file system entry name collision issue.

How to fix

Remediation Available
node-tarDebian
Fixed in:6.2.1+~cs7.0.8-1+deb13u1CVE-2026-23950
Fixed in:6.2.1+ds1+~cs6.1.13-7CVE-2026-23950
linux-sgxRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
linux-sgxRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
linux-sgx-debuginfoRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
linux-sgx-debuginfoRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
linux-sgx-debugsourceRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
linux-sgx-debugsourceRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
registry.redhat.io/devspaces/codeRocky
Fixed in:sshd-rhel9@sha256:6446db0167fbd287557bb29b9f090da15b1b0846c62df9fd96cafd0784d4769d_arm64RHSA-2026:6192
Fixed in:sshd-rhel9@sha256:ed1952126d5efdfe97f1d5411b7f057631bbae1b9c748c5f45746b6ee145fcad_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:1033ffe714e728e289eddaa3809e9d21915de193813339fa5c049373e3e78719_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:cad5f1983385201427a94f980baeefece28aedc8089425db88806d54103dfe91_arm64RHSA-2026:6192
Fixed in:sshd-rhel9@sha256:ca2b5dd80258f6d5105df99a2a4160086248ede21fd4fdb7be7d9d0e1768ec99_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:650e9cec2b386064718aa87d794e3264eaf3af766060e4141f6f0870347cdb64_ppc64leRHSA-2026:6192
Fixed in:sshd-rhel9@sha256:d0e058ad62081efbb2d62a979d3d52443a19d361e2bec3d1bb1a6d403c4fa336_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:1c026c9c6fa5b70e2ab18b79f7974fe811558a4fbb3efee8eac17a165af2d4a2_s390xRHSA-2026:6192
registry.redhat.io/devspaces/codeRed Hat / RHEL
Fixed in:sshd-rhel9@sha256:ed1952126d5efdfe97f1d5411b7f057631bbae1b9c748c5f45746b6ee145fcad_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:1033ffe714e728e289eddaa3809e9d21915de193813339fa5c049373e3e78719_amd64RHSA-2026:6192
Fixed in:sshd-rhel9@sha256:6446db0167fbd287557bb29b9f090da15b1b0846c62df9fd96cafd0784d4769d_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:cad5f1983385201427a94f980baeefece28aedc8089425db88806d54103dfe91_arm64RHSA-2026:6192
Fixed in:sshd-rhel9@sha256:ca2b5dd80258f6d5105df99a2a4160086248ede21fd4fdb7be7d9d0e1768ec99_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:650e9cec2b386064718aa87d794e3264eaf3af766060e4141f6f0870347cdb64_ppc64leRHSA-2026:6192
Fixed in:sshd-rhel9@sha256:d0e058ad62081efbb2d62a979d3d52443a19d361e2bec3d1bb1a6d403c4fa336_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:1c026c9c6fa5b70e2ab18b79f7974fe811558a4fbb3efee8eac17a165af2d4a2_s390xRHSA-2026:6192
registry.redhat.io/devspaces/configbumpRocky
Fixed in:rhel9@sha256:81dc1398a2f94a040d43841f908c743f696ba9edfdd36ad47b225a90ef69da28_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:d160df16f213208e22f67e0261fed70a5aa6eb64a79438c7affac0748d214e08_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:acaa080820cc3886395466b4a327600752f13eb9e8728cece8bff696d92649e2_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:87415e884ce4a792725ebef47c95e81a4c98b594a333f5c9852ce68c13d33c09_s390xRHSA-2026:6192
registry.redhat.io/devspaces/configbumpRed Hat / RHEL
Fixed in:rhel9@sha256:87415e884ce4a792725ebef47c95e81a4c98b594a333f5c9852ce68c13d33c09_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:acaa080820cc3886395466b4a327600752f13eb9e8728cece8bff696d92649e2_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:d160df16f213208e22f67e0261fed70a5aa6eb64a79438c7affac0748d214e08_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:81dc1398a2f94a040d43841f908c743f696ba9edfdd36ad47b225a90ef69da28_amd64RHSA-2026:6192
registry.redhat.io/devspaces/dashboardRocky
Fixed in:rhel9@sha256:2bc4515148a52d94e1fcaf8991ddf0e9e98f0565bdae0f7f6c732feac0540d95_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:e139d927ef936bfabf780286ec4b4bf97e318db69c1af5b7473dd33ae54931b4_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:ff64d5d47c91c59904cb2a90eb9e42e563fea560407fa6c0590b964ace2ce469_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:272a65ee82a9484e1d4362a9f33b6cc1b0eb13d93e70b19cc3d0208f021c2bda_arm64RHSA-2026:6192
registry.redhat.io/devspaces/dashboardRed Hat / RHEL
Fixed in:rhel9@sha256:2bc4515148a52d94e1fcaf8991ddf0e9e98f0565bdae0f7f6c732feac0540d95_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:e139d927ef936bfabf780286ec4b4bf97e318db69c1af5b7473dd33ae54931b4_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:272a65ee82a9484e1d4362a9f33b6cc1b0eb13d93e70b19cc3d0208f021c2bda_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:ff64d5d47c91c59904cb2a90eb9e42e563fea560407fa6c0590b964ace2ce469_ppc64leRHSA-2026:6192
registry.redhat.io/devspaces/devspacesRed Hat / RHEL
Fixed in:rhel9-operator@sha256:b98b93207d245e32fca4182f7f8debd05b853082f79eb06d513fd25eb659ab7e_ppc64leRHSA-2026:6192
Fixed in:rhel9-operator@sha256:6ca64429fd2b33806f766cb84e2392bf16e85a64adeb19f687fd2f5ba588a359_amd64RHSA-2026:6192
Fixed in:operator-bundle@sha256:d25e5effc8f3e6f0a02f3f1795cb83b585508b79e236b66e9a67be1511593864_amd64RHSA-2026:6192
Fixed in:rhel9-operator@sha256:5d1045ab74b00b9ac4888a7971adfddf03142cf73b80e427d2bdde17f8a33f7d_s390xRHSA-2026:6192
Fixed in:rhel9-operator@sha256:b317d159f7de28b2424c0333f48574b4b6b4852405f82a0643c0f22ff37253c6_arm64RHSA-2026:6192
registry.redhat.io/devspaces/devspacesRocky
Fixed in:rhel9-operator@sha256:b317d159f7de28b2424c0333f48574b4b6b4852405f82a0643c0f22ff37253c6_arm64RHSA-2026:6192
Fixed in:rhel9-operator@sha256:5d1045ab74b00b9ac4888a7971adfddf03142cf73b80e427d2bdde17f8a33f7d_s390xRHSA-2026:6192
Fixed in:rhel9-operator@sha256:6ca64429fd2b33806f766cb84e2392bf16e85a64adeb19f687fd2f5ba588a359_amd64RHSA-2026:6192
Fixed in:operator-bundle@sha256:d25e5effc8f3e6f0a02f3f1795cb83b585508b79e236b66e9a67be1511593864_amd64RHSA-2026:6192
Fixed in:rhel9-operator@sha256:b98b93207d245e32fca4182f7f8debd05b853082f79eb06d513fd25eb659ab7e_ppc64leRHSA-2026:6192
registry.redhat.io/devspaces/imagepullerRed Hat / RHEL
Fixed in:rhel9@sha256:582e28a0f571b32aa45ffdde4369479efb0fa504f163caf738b2dea23ad017f0_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:0d44f88b37488308e5c166fbf61ef195e473949d4d8930742742d52da8bd1d09_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:49848a9d6c888956fe17c0a7faa350b1b534aa7623c6368c45fa676ec603c9a9_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:8487157abf1a0cb7fb35aafdf9f5c3f3b7b3c107c5583b5cb2ceb80aabaaba75_arm64RHSA-2026:6192
registry.redhat.io/devspaces/imagepullerRocky
Fixed in:rhel9@sha256:49848a9d6c888956fe17c0a7faa350b1b534aa7623c6368c45fa676ec603c9a9_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:0d44f88b37488308e5c166fbf61ef195e473949d4d8930742742d52da8bd1d09_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:8487157abf1a0cb7fb35aafdf9f5c3f3b7b3c107c5583b5cb2ceb80aabaaba75_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:582e28a0f571b32aa45ffdde4369479efb0fa504f163caf738b2dea23ad017f0_ppc64leRHSA-2026:6192
registry.redhat.io/devspaces/jetbrainsRed Hat / RHEL
Fixed in:ide-rhel9@sha256:4eb8ed347e951e036b5e464891ad26775288421b5ad4279e0a0a6a7682ed614a_s390xRHSA-2026:6192
Fixed in:ide-rhel9@sha256:2c0bfdd79524706c055e32bc68b3e099beea3f19e89184e763912b964588ca7e_ppc64leRHSA-2026:6192
Fixed in:ide-rhel9@sha256:0504f72e32867f2e16ae91237e494ad597897d234da6c772deedeec03c77f7da_arm64RHSA-2026:6192
Fixed in:ide-rhel9@sha256:ed6c681b49c827af9faad6364a9a5fff068253878597f4e2768f51e2debedabf_amd64RHSA-2026:6192
registry.redhat.io/devspaces/jetbrainsRocky
Fixed in:ide-rhel9@sha256:4eb8ed347e951e036b5e464891ad26775288421b5ad4279e0a0a6a7682ed614a_s390xRHSA-2026:6192
Fixed in:ide-rhel9@sha256:2c0bfdd79524706c055e32bc68b3e099beea3f19e89184e763912b964588ca7e_ppc64leRHSA-2026:6192
Fixed in:ide-rhel9@sha256:0504f72e32867f2e16ae91237e494ad597897d234da6c772deedeec03c77f7da_arm64RHSA-2026:6192
Fixed in:ide-rhel9@sha256:ed6c681b49c827af9faad6364a9a5fff068253878597f4e2768f51e2debedabf_amd64RHSA-2026:6192
registry.redhat.io/devspaces/multiclusterRed Hat / RHEL
Fixed in:redirector-rhel9@sha256:70d9bf5801e6c359fa2853ecb7b2c1156bc8d05c64ff9089b4266ca7d1c96bdc_ppc64leRHSA-2026:6192
Fixed in:redirector-rhel9@sha256:ef4cdde7f946cb4ac076651227c139ec1151fe1dfcfab16a7370eb5a1dedf8f8_amd64RHSA-2026:6192
Fixed in:redirector-rhel9@sha256:b260051bc38be6e1edfbb536b3d5568408406bd5ba214d9c460ff31fda95080d_s390xRHSA-2026:6192
Fixed in:redirector-rhel9@sha256:c82b5be3ccc18dfc9f64732e2a6892e40555556119e041445867ee6895698fff_arm64RHSA-2026:6192
registry.redhat.io/devspaces/multiclusterRocky
Fixed in:redirector-rhel9@sha256:ef4cdde7f946cb4ac076651227c139ec1151fe1dfcfab16a7370eb5a1dedf8f8_amd64RHSA-2026:6192
Fixed in:redirector-rhel9@sha256:70d9bf5801e6c359fa2853ecb7b2c1156bc8d05c64ff9089b4266ca7d1c96bdc_ppc64leRHSA-2026:6192
Fixed in:redirector-rhel9@sha256:b260051bc38be6e1edfbb536b3d5568408406bd5ba214d9c460ff31fda95080d_s390xRHSA-2026:6192
Fixed in:redirector-rhel9@sha256:c82b5be3ccc18dfc9f64732e2a6892e40555556119e041445867ee6895698fff_arm64RHSA-2026:6192
registry.redhat.io/devspaces/openvsxRed Hat / RHEL
Fixed in:rhel9@sha256:4a19870c5fa8b55441ce9de937de2023de89ec98415b70c8cdb868e541f7fe90_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:49ec7497195cc73b5ab71a31d84f4adba1068580f1b615a4918a6b9a614b8e1b_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:b47ea1f8c8cc35c7171251b9c044c38c7f66200e4336067c528b308f3a1779ec_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:aae678397f22a53d10863aad458ea58d487b4ff87cd1a5200a02835fc2d76eb4_arm64RHSA-2026:6192
registry.redhat.io/devspaces/openvsxRocky
Fixed in:rhel9@sha256:49ec7497195cc73b5ab71a31d84f4adba1068580f1b615a4918a6b9a614b8e1b_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:aae678397f22a53d10863aad458ea58d487b4ff87cd1a5200a02835fc2d76eb4_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:b47ea1f8c8cc35c7171251b9c044c38c7f66200e4336067c528b308f3a1779ec_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:4a19870c5fa8b55441ce9de937de2023de89ec98415b70c8cdb868e541f7fe90_s390xRHSA-2026:6192
registry.redhat.io/devspaces/pluginregistryRed Hat / RHEL
Fixed in:rhel9@sha256:de4737b85e6f485e6dc5283574f7da587995ef60a17039df4728c126df00b4e4_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:b6c81d692c2610b97c365ba0160bd4d4f3222b3b8129f46e9bb4f744d91ca142_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:31bed0f8d7cc026fb582a447d3cea648b6723b5309b282899062fb51a9b6b06b_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:ddbef65f258899cb9450a370e72a61acb6e3710f4fe76cd1d43d5b68d661f4cb_ppc64leRHSA-2026:6192
registry.redhat.io/devspaces/pluginregistryRocky
Fixed in:rhel9@sha256:31bed0f8d7cc026fb582a447d3cea648b6723b5309b282899062fb51a9b6b06b_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:ddbef65f258899cb9450a370e72a61acb6e3710f4fe76cd1d43d5b68d661f4cb_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:de4737b85e6f485e6dc5283574f7da587995ef60a17039df4728c126df00b4e4_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:b6c81d692c2610b97c365ba0160bd4d4f3222b3b8129f46e9bb4f744d91ca142_amd64RHSA-2026:6192
registry.redhat.io/devspaces/serverRocky
Fixed in:rhel9@sha256:c51792428816b2744121027ff39c1f0d1368ad2812e5604f4aceefe85ee23f00_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:4550375a1ce30dfa306ac819590e0f95f512a7f9036e756e0ed643297f7555fe_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:62a2ad04b76186b8cc425a677aee50ed2e0cf531fc87888f513fe54d250510d3_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:782ccfcc7d458e2b27f0146c39bcf43c3133197d62a97052a2b67da4000c0c47_amd64RHSA-2026:6192
registry.redhat.io/devspaces/serverRed Hat / RHEL
Fixed in:rhel9@sha256:c51792428816b2744121027ff39c1f0d1368ad2812e5604f4aceefe85ee23f00_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:782ccfcc7d458e2b27f0146c39bcf43c3133197d62a97052a2b67da4000c0c47_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:62a2ad04b76186b8cc425a677aee50ed2e0cf531fc87888f513fe54d250510d3_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:4550375a1ce30dfa306ac819590e0f95f512a7f9036e756e0ed643297f7555fe_ppc64leRHSA-2026:6192
registry.redhat.io/devspaces/traefikRocky
Fixed in:rhel9@sha256:3942aaa0d29412ca79a413216b27ac338af01b1db1e31c5bb023fd135094768b_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:12ae1997a6df944284ecfb3501138c25f1a39eba23b52685b48008174a6a363a_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:e9a1f79f64b9427d4fa657f197d8e114f66ec6dfc028b8d4e47478d8f0d56d98_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:b5f40cea19df512eb3083c9ec8a34b964742c44c4843ec979d0a4ff9e94ca02d_arm64RHSA-2026:6192
registry.redhat.io/devspaces/traefikRed Hat / RHEL
Fixed in:rhel9@sha256:e9a1f79f64b9427d4fa657f197d8e114f66ec6dfc028b8d4e47478d8f0d56d98_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:12ae1997a6df944284ecfb3501138c25f1a39eba23b52685b48008174a6a363a_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:3942aaa0d29412ca79a413216b27ac338af01b1db1e31c5bb023fd135094768b_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:b5f40cea19df512eb3083c9ec8a34b964742c44c4843ec979d0a4ff9e94ca02d_arm64RHSA-2026:6192
registry.redhat.io/devspaces/udiRocky
Fixed in:base-rhel10@sha256:e5209000fd966c4e98fa6609f998fe0d6edc3088aeaa68f1261865c168379df7_amd64RHSA-2026:6192
Fixed in:base-rhel9@sha256:df538d83965fbf69f86fda16c699ee043ecbdb6b2a6b93ac9ef63e73d564537e_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:cef073ba3e67731d90b615b1ed97e8d8941f4b84f795feebaa14cbba4506c22a_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:58111d940c17ffcef32fc2d86f19c8d0f629b89c6412fb9933ca1ad411eec48f_s390xRHSA-2026:6192
Fixed in:base-rhel10@sha256:113200dd0b705840cbfd2128236c4ab3813e0146a45538f8d348517045004b10_s390xRHSA-2026:6192
Fixed in:base-rhel9@sha256:3e42db39ee6eff785c8e03e6a4f764ea5359221c2c9ecd153caee01a780d029b_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:f6eb04566e390bab2a8028146d0c54ffb3357cde8a633edd4e19ab29629acec4_ppc64leRHSA-2026:6192
Fixed in:base-rhel10@sha256:db2b024c908f9e92b63b05e5de9c4a97d8258604e538e9b30261768f415a8213_ppc64leRHSA-2026:6192
Fixed in:base-rhel9@sha256:5ecda2244caefbd85bd89bf7f8caeeeb511e91f87a6d46d83d7553901459715a_arm64RHSA-2026:6192
Fixed in:base-rhel9@sha256:e095dd0cb8e327d8d6589bba674372aeb38397b22790bfed208156d3bb9d746c_amd64RHSA-2026:6192
Fixed in:rhel9@sha256:8a97ad4c50e74468ffddb50f6dc3a748bd6223ca6dd869159eaa19447e8d5735_arm64RHSA-2026:6192
Fixed in:base-rhel10@sha256:84050974bd849ca3380327c00ae001980b9fee834bf44e080c90442be4b17682_arm64RHSA-2026:6192
registry.redhat.io/devspaces/udiRed Hat / RHEL
Fixed in:base-rhel9@sha256:df538d83965fbf69f86fda16c699ee043ecbdb6b2a6b93ac9ef63e73d564537e_s390xRHSA-2026:6192
Fixed in:rhel9@sha256:58111d940c17ffcef32fc2d86f19c8d0f629b89c6412fb9933ca1ad411eec48f_s390xRHSA-2026:6192
Fixed in:base-rhel10@sha256:113200dd0b705840cbfd2128236c4ab3813e0146a45538f8d348517045004b10_s390xRHSA-2026:6192
Fixed in:base-rhel9@sha256:3e42db39ee6eff785c8e03e6a4f764ea5359221c2c9ecd153caee01a780d029b_ppc64leRHSA-2026:6192
Fixed in:rhel9@sha256:f6eb04566e390bab2a8028146d0c54ffb3357cde8a633edd4e19ab29629acec4_ppc64leRHSA-2026:6192
Fixed in:base-rhel10@sha256:db2b024c908f9e92b63b05e5de9c4a97d8258604e538e9b30261768f415a8213_ppc64leRHSA-2026:6192
Fixed in:base-rhel9@sha256:5ecda2244caefbd85bd89bf7f8caeeeb511e91f87a6d46d83d7553901459715a_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:8a97ad4c50e74468ffddb50f6dc3a748bd6223ca6dd869159eaa19447e8d5735_arm64RHSA-2026:6192
Fixed in:base-rhel10@sha256:84050974bd849ca3380327c00ae001980b9fee834bf44e080c90442be4b17682_arm64RHSA-2026:6192
Fixed in:rhel9@sha256:cef073ba3e67731d90b615b1ed97e8d8941f4b84f795feebaa14cbba4506c22a_amd64RHSA-2026:6192
Fixed in:base-rhel10@sha256:e5209000fd966c4e98fa6609f998fe0d6edc3088aeaa68f1261865c168379df7_amd64RHSA-2026:6192
Fixed in:base-rhel9@sha256:e095dd0cb8e327d8d6589bba674372aeb38397b22790bfed208156d3bb9d746c_amd64RHSA-2026:6192
registry.redhat.io/rhtas/certificateRocky
Fixed in:transparency-rhel9@sha256:240a9553315990a06a9d52eaf6e96e3aa1c743f1fbff33b95b489d41cef18f5a_amd64RHSA-2026:2144
Fixed in:transparency-rhel9@sha256:7e70be684d2bc550f1d31b89eadcac24e6385b3578ad29d8bdaa17b260f9dbce_amd64RHSA-2026:2926
registry.redhat.io/rhtas/certificateRed Hat / RHEL
Fixed in:transparency-rhel9@sha256:240a9553315990a06a9d52eaf6e96e3aa1c743f1fbff33b95b489d41cef18f5a_amd64RHSA-2026:2144
Fixed in:transparency-rhel9@sha256:7e70be684d2bc550f1d31b89eadcac24e6385b3578ad29d8bdaa17b260f9dbce_amd64RHSA-2026:2926
registry.redhat.io/rhtas/fulcioRed Hat / RHEL
Fixed in:rhel9@sha256:d876a5e41b8467cdde921032f2cd53e77bef99ebcd8b61d72a3ad411469ad352_amd64RHSA-2026:2144
Fixed in:rhel9@sha256:c9289244939c0fd2737e8768ac089d09d15ca42ea34e2512c13a73c159338ab7_amd64RHSA-2026:2926
registry.redhat.io/rhtas/fulcioRocky
Fixed in:rhel9@sha256:d876a5e41b8467cdde921032f2cd53e77bef99ebcd8b61d72a3ad411469ad352_amd64RHSA-2026:2144
Fixed in:rhel9@sha256:c9289244939c0fd2737e8768ac089d09d15ca42ea34e2512c13a73c159338ab7_amd64RHSA-2026:2926
registry.redhat.io/rhtas/rekorRocky
Fixed in:server-rhel9@sha256:4afca53f27929243177a80a08e1ca77bd8978a50e8e0e7929781bb7b14a85cd2_amd64RHSA-2026:2926
Fixed in:server-rhel9@sha256:9746960bbc79e0ecf82a0ee12f878e90e202247dcaeb046bdd11db48a52ccb90_amd64RHSA-2026:2144
registry.redhat.io/rhtas/rekorRed Hat / RHEL
Fixed in:server-rhel9@sha256:4afca53f27929243177a80a08e1ca77bd8978a50e8e0e7929781bb7b14a85cd2_amd64RHSA-2026:2926
Fixed in:server-rhel9@sha256:9746960bbc79e0ecf82a0ee12f878e90e202247dcaeb046bdd11db48a52ccb90_amd64RHSA-2026:2144
registry.redhat.io/rhtas/rekor-backfillRed Hat / RHEL
Fixed in:redis-rhel9@sha256:ec50096d68a499e7f605bcfa7afd30845a03e0c4849736431f6752fa8b850897_amd64RHSA-2026:2144
Fixed in:redis-rhel9@sha256:9b91bac976cf7c30b15f9a022996142e48711110ecd1c52663504e53dcfdcf09_amd64RHSA-2026:2926
registry.redhat.io/rhtas/rekor-backfillRocky
Fixed in:redis-rhel9@sha256:ec50096d68a499e7f605bcfa7afd30845a03e0c4849736431f6752fa8b850897_amd64RHSA-2026:2144
Fixed in:redis-rhel9@sha256:9b91bac976cf7c30b15f9a022996142e48711110ecd1c52663504e53dcfdcf09_amd64RHSA-2026:2926
registry.redhat.io/rhtas/rekor-searchRocky
Fixed in:ui-rhel9@sha256:1e3a46ade52215e2c78df9229f36301c94099e8397ee74ab99fb8bd504ce7aa2_amd64RHSA-2026:2926
Fixed in:ui-rhel9@sha256:3971738912069448174202486b61ed384153ca18af3e8430a55795a6e65eb58d_amd64RHSA-2026:2144
registry.redhat.io/rhtas/rekor-searchRed Hat / RHEL
Fixed in:ui-rhel9@sha256:1e3a46ade52215e2c78df9229f36301c94099e8397ee74ab99fb8bd504ce7aa2_amd64RHSA-2026:2926
Fixed in:ui-rhel9@sha256:3971738912069448174202486b61ed384153ca18af3e8430a55795a6e65eb58d_amd64RHSA-2026:2144
registry.redhat.io/rhtas/timestampRed Hat / RHEL
Fixed in:authority-rhel9@sha256:37b9359f11098a781158e5bc0850ec43b599d29a354b43745067656b0a234814_amd64RHSA-2026:2144
Fixed in:authority-rhel9@sha256:576d4fc358fffe5bedb93eb3fec68b9c040b1d50e6c4c56a3f8d49084c169e4f_amd64RHSA-2026:2926
registry.redhat.io/rhtas/timestampRocky
Fixed in:authority-rhel9@sha256:576d4fc358fffe5bedb93eb3fec68b9c040b1d50e6c4c56a3f8d49084c169e4f_amd64RHSA-2026:2926
Fixed in:authority-rhel9@sha256:37b9359f11098a781158e5bc0850ec43b599d29a354b43745067656b0a234814_amd64RHSA-2026:2144
registry.redhat.io/rhtas/trillianRed Hat / RHEL
Fixed in:redis-rhel9@sha256:d97e6688aabf25ed1da6a8bf2012efb1772beed49b91456288418f6023a38dac_amd64RHSA-2026:2926
Fixed in:redis-rhel9@sha256:7261ee18d6fd8d42614e94ae3bdb77c5acad54f2b9898365bf8668c60a32589a_amd64RHSA-2026:2144
Fixed in:logsigner-rhel9@sha256:83a8710df2032471c379f4cfbb3861ec9c4c7794f8b487483dbfb8cf57207750_amd64RHSA-2026:2144
Fixed in:logserver-rhel9@sha256:7c6cba78fb26addd9f056ec3f8b9376666db353451da37a4681a51d16f2ff76c_amd64RHSA-2026:2144
Fixed in:database-rhel9@sha256:f4e92bf3f35d86fe895a2e3225098b3d4d9dae720ef1d45e9efcf23dec8242b6_amd64RHSA-2026:2144
Fixed in:logsigner-rhel9@sha256:d0f8b68e55173b010fd381e374f232a40fba6d03282cfd870bd9c12c492e4aec_amd64RHSA-2026:2926
Fixed in:logserver-rhel9@sha256:b246d096ad6d2b19decfa3d87bca9ab2b78000aee28b717c0a33d1202a1b2d6b_amd64RHSA-2026:2926
Fixed in:database-rhel9@sha256:50bc20bb57e8ee31e56637cafccfed2658982d81ca9bf1e71db9de4b82a2be36_amd64RHSA-2026:2926
registry.redhat.io/rhtas/trillianRocky
Fixed in:logserver-rhel9@sha256:b246d096ad6d2b19decfa3d87bca9ab2b78000aee28b717c0a33d1202a1b2d6b_amd64RHSA-2026:2926
Fixed in:logsigner-rhel9@sha256:d0f8b68e55173b010fd381e374f232a40fba6d03282cfd870bd9c12c492e4aec_amd64RHSA-2026:2926
Fixed in:redis-rhel9@sha256:d97e6688aabf25ed1da6a8bf2012efb1772beed49b91456288418f6023a38dac_amd64RHSA-2026:2926
Fixed in:database-rhel9@sha256:f4e92bf3f35d86fe895a2e3225098b3d4d9dae720ef1d45e9efcf23dec8242b6_amd64RHSA-2026:2144
Fixed in:logserver-rhel9@sha256:7c6cba78fb26addd9f056ec3f8b9376666db353451da37a4681a51d16f2ff76c_amd64RHSA-2026:2144
Fixed in:logsigner-rhel9@sha256:83a8710df2032471c379f4cfbb3861ec9c4c7794f8b487483dbfb8cf57207750_amd64RHSA-2026:2144
Fixed in:redis-rhel9@sha256:7261ee18d6fd8d42614e94ae3bdb77c5acad54f2b9898365bf8668c60a32589a_amd64RHSA-2026:2144
Fixed in:database-rhel9@sha256:50bc20bb57e8ee31e56637cafccfed2658982d81ca9bf1e71db9de4b82a2be36_amd64RHSA-2026:2926
sgx-commonRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-commonRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-enclave-devel-debuginfoRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-enclave-devel-debuginfoRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-libsRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-libsRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-libs-debuginfoRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-libs-debuginfoRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-mpaRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-mpaRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-mpa-debuginfoRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-mpa-debuginfoRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-pccsRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-pccsRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-pccs-adminRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-pccs-adminRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-pccs-debuginfoRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-pccs-debuginfoRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-pckid-toolRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-pckid-toolRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-pckid-tool-debuginfoRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
sgx-pckid-tool-debuginfoRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
tdx-attest-libs-debuginfoRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
tdx-attest-libs-debuginfoRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
tdx-qgsRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
tdx-qgsRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
tdx-qgs-debuginfoRed Hat / RHEL
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868
tdx-qgs-debuginfoRocky
Fixed in:0:2.26-7.el10RHSA-2026:18480
Fixed in:0:2.26-7.el9RHSA-2026:18868

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionRequired
ScopeChanged

Impact

ConfidentialityLow
IntegrityHigh
AvailabilityLow

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L

Exploit Intelligence

0.23%probability of exploitation in 30 days
14thpercentile

Low risk: more likely to be exploited than 14% of all known CVEs.

References

Embed a live status badge for CVE-2026-23950
CVE-2026-23950 severity badge

Markdown

[![CVE-2026-23950](https://tridentstack.com/cve/badge/CVE-2026-23950.svg)](https://tridentstack.com/cve/CVE-2026-23950)

HTML

<a href="https://tridentstack.com/cve/CVE-2026-23950"><img src="https://tridentstack.com/cve/badge/CVE-2026-23950.svg" alt="CVE-2026-23950"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-06-30.