CVE & CISA-KEV Catalog

CVE-2026-42507

MEDIUM
5.3
CVSS v3
NVD

Description

When returning errors, functions in the net/textproto package would include its input as part of the error. This might allow an attacker to inject misleading content to errors that are printed or logged.

How to fix

Remediation Available
go-toolsetRocky
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
go-toolsetRed Hat / RHEL
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golangRed Hat / RHEL
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golangRocky
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-binRed Hat / RHEL
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-binRocky
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-docsRed Hat / RHEL
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-docsRocky
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-miscRocky
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-miscRed Hat / RHEL
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-raceRocky
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-raceRed Hat / RHEL
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-srcRed Hat / RHEL
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-srcRocky
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-testsRocky
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
golang-testsRed Hat / RHEL
Fixed in:0:1.26.4-1.el10_2RHSA-2026:29980
Fixed in:0:1.26.4-1.el9_8RHSA-2026:29981
registry.redhat.io/rhosdt/tempoRocky
Fixed in:gateway-rhel9@sha256:85322d8e92a00032d79d0aa76c84af3f8f8cce573de0c5b84e26f9da767bcc65_amd64RHSA-2026:33612
Fixed in:query-rhel9@sha256:ad26ab5180cd6a528b06925c9b08f83d7071172ec30dd5dc32ddd91759eaa431_amd64RHSA-2026:33612
Fixed in:rhel9-operator@sha256:8678c7482ea9573d0b02bd4669c1c7108f5fcd059353ad38e53516493298ce8d_s390xRHSA-2026:33612
Fixed in:query-rhel9@sha256:363a16b61c1cbdffffa7d9e30c944299e0bd086d8ab82d983115fdeb1b8b9b46_arm64RHSA-2026:33612
Fixed in:rhel9-operator@sha256:c473f6d6e10b9e49cbcad665cd9cea4e1b18af4db90198f77d0bee8f98991f19_arm64RHSA-2026:33612
Fixed in:rhel9-operator@sha256:d11c619e19939bef7a291c417d73e32889397eaf1ccd133ce5a703886929a49b_ppc64leRHSA-2026:33612
Fixed in:rhel9@sha256:c4a7558e7671252e5b4260ed54460019ca28b78e408a5820d4d781c3744bc8cd_ppc64leRHSA-2026:33612
Fixed in:query-rhel9@sha256:050d65343cb3073199bc8adf90f2830c04176597a974a5a7a59d5a605ff6f8c6_ppc64leRHSA-2026:33612
Fixed in:rhel9@sha256:5ad3b2d9aeb3cb41ab978542b10d04e6f9ab0ed05446bce95393f617992d7296_amd64RHSA-2026:33612
Fixed in:rhel9@sha256:0a2721882e16552c55b70d49948474e6e1b6dbf9506bebc0f828f348bc83e3a6_s390xRHSA-2026:33612
Fixed in:gateway-rhel9@sha256:50dac697d73efc8de62908d09f65eebff1ce233a2887ae0000487e2d88a4affb_ppc64leRHSA-2026:33612
Fixed in:query-rhel9@sha256:033f4d70a5c1e3c2a833333d5ccee534af24f50a06519e9a7ae6bb6d6d70dad5_s390xRHSA-2026:33612
Fixed in:gateway-rhel9@sha256:bd621c6cb986052cd8f256402d7d55eba132dd18b7e5a90791141303bedb32ba_arm64RHSA-2026:33612
Fixed in:rhel9-operator@sha256:1388a99e52e031fdc03393c4ed373a0a9430eb0c8f128cb64e80238279dfd660_amd64RHSA-2026:33612
Fixed in:operator-bundle@sha256:3553b5e91195dcf76755e3c59bcc3ec8edda71dd367c6dc1b1ddfb4c38ab1d66_amd64RHSA-2026:33612
Fixed in:rhel9@sha256:d216daca9791470907f050928609bfdcb410936d99a5fda1443c577da449ea89_arm64RHSA-2026:33612
Fixed in:gateway-rhel9@sha256:60d520725c077f58868da56fb88ff4a96920488b70530288c1d38b795d0ca488_s390xRHSA-2026:33612
registry.redhat.io/rhosdt/tempoRed Hat / RHEL
Fixed in:query-rhel9@sha256:050d65343cb3073199bc8adf90f2830c04176597a974a5a7a59d5a605ff6f8c6_ppc64leRHSA-2026:33612
Fixed in:rhel9-operator@sha256:d11c619e19939bef7a291c417d73e32889397eaf1ccd133ce5a703886929a49b_ppc64leRHSA-2026:33612
Fixed in:rhel9@sha256:d216daca9791470907f050928609bfdcb410936d99a5fda1443c577da449ea89_arm64RHSA-2026:33612
Fixed in:rhel9@sha256:5ad3b2d9aeb3cb41ab978542b10d04e6f9ab0ed05446bce95393f617992d7296_amd64RHSA-2026:33612
Fixed in:gateway-rhel9@sha256:bd621c6cb986052cd8f256402d7d55eba132dd18b7e5a90791141303bedb32ba_arm64RHSA-2026:33612
Fixed in:query-rhel9@sha256:363a16b61c1cbdffffa7d9e30c944299e0bd086d8ab82d983115fdeb1b8b9b46_arm64RHSA-2026:33612
Fixed in:rhel9@sha256:c4a7558e7671252e5b4260ed54460019ca28b78e408a5820d4d781c3744bc8cd_ppc64leRHSA-2026:33612
Fixed in:operator-bundle@sha256:3553b5e91195dcf76755e3c59bcc3ec8edda71dd367c6dc1b1ddfb4c38ab1d66_amd64RHSA-2026:33612
Fixed in:gateway-rhel9@sha256:85322d8e92a00032d79d0aa76c84af3f8f8cce573de0c5b84e26f9da767bcc65_amd64RHSA-2026:33612
Fixed in:rhel9@sha256:0a2721882e16552c55b70d49948474e6e1b6dbf9506bebc0f828f348bc83e3a6_s390xRHSA-2026:33612
Fixed in:query-rhel9@sha256:033f4d70a5c1e3c2a833333d5ccee534af24f50a06519e9a7ae6bb6d6d70dad5_s390xRHSA-2026:33612
Fixed in:gateway-rhel9@sha256:50dac697d73efc8de62908d09f65eebff1ce233a2887ae0000487e2d88a4affb_ppc64leRHSA-2026:33612
Fixed in:gateway-rhel9@sha256:60d520725c077f58868da56fb88ff4a96920488b70530288c1d38b795d0ca488_s390xRHSA-2026:33612
Fixed in:rhel9-operator@sha256:8678c7482ea9573d0b02bd4669c1c7108f5fcd059353ad38e53516493298ce8d_s390xRHSA-2026:33612
Fixed in:rhel9-operator@sha256:c473f6d6e10b9e49cbcad665cd9cea4e1b18af4db90198f77d0bee8f98991f19_arm64RHSA-2026:33612
Fixed in:query-rhel9@sha256:ad26ab5180cd6a528b06925c9b08f83d7071172ec30dd5dc32ddd91759eaa431_amd64RHSA-2026:33612
Fixed in:rhel9-operator@sha256:1388a99e52e031fdc03393c4ed373a0a9430eb0c8f128cb64e80238279dfd660_amd64RHSA-2026:33612
registry.redhat.io/rhosdt/tempo-gatewayRed Hat / RHEL
Fixed in:opa-rhel9@sha256:5cef16e3b5fc9801df8f9af0f548fae67084aa443b97ff6e5d6b5948ca32f83c_ppc64leRHSA-2026:33612
Fixed in:opa-rhel9@sha256:60e8c2259fe2f9e0dc96352a9fb445ce6b46924a145d508c0e6d5d6799298a6a_s390xRHSA-2026:33612
Fixed in:opa-rhel9@sha256:1dbd03fe5f4e3f7f1269bb8c9f7885b8409baa3bff409db7ebb82616408fdcf9_arm64RHSA-2026:33612
Fixed in:opa-rhel9@sha256:1c35ffcda8a79fde89e015fff93a8ac141f8dba83005544e84720b798238f199_amd64RHSA-2026:33612
registry.redhat.io/rhosdt/tempo-gatewayRocky
Fixed in:opa-rhel9@sha256:60e8c2259fe2f9e0dc96352a9fb445ce6b46924a145d508c0e6d5d6799298a6a_s390xRHSA-2026:33612
Fixed in:opa-rhel9@sha256:5cef16e3b5fc9801df8f9af0f548fae67084aa443b97ff6e5d6b5948ca32f83c_ppc64leRHSA-2026:33612
Fixed in:opa-rhel9@sha256:1dbd03fe5f4e3f7f1269bb8c9f7885b8409baa3bff409db7ebb82616408fdcf9_arm64RHSA-2026:33612
Fixed in:opa-rhel9@sha256:1c35ffcda8a79fde89e015fff93a8ac141f8dba83005544e84720b798238f199_amd64RHSA-2026:33612
registry.redhat.io/rhosdt/tempo-jaegerRocky
Fixed in:query-rhel9@sha256:651f65b1d6258c7c21b4a6eb7cb3c22edda96030f40675d882fa28e0dee23059_ppc64leRHSA-2026:33612
Fixed in:query-rhel9@sha256:db34d682b3dddba3ee5b317ecc63a0db1dd2d1e454b259bd13d5566ec3dd021c_amd64RHSA-2026:33612
Fixed in:query-rhel9@sha256:8fb4cdafb7c43209075abc13076c2ec07baebe7bb8e1f23928b3856a04861f38_arm64RHSA-2026:33612
Fixed in:query-rhel9@sha256:0fd23ceb3458cc5bbf9ca4ffe2c33ce6f8b46768851032f5310b22987be8921b_s390xRHSA-2026:33612
registry.redhat.io/rhosdt/tempo-jaegerRed Hat / RHEL
Fixed in:query-rhel9@sha256:db34d682b3dddba3ee5b317ecc63a0db1dd2d1e454b259bd13d5566ec3dd021c_amd64RHSA-2026:33612
Fixed in:query-rhel9@sha256:8fb4cdafb7c43209075abc13076c2ec07baebe7bb8e1f23928b3856a04861f38_arm64RHSA-2026:33612
Fixed in:query-rhel9@sha256:651f65b1d6258c7c21b4a6eb7cb3c22edda96030f40675d882fa28e0dee23059_ppc64leRHSA-2026:33612
Fixed in:query-rhel9@sha256:0fd23ceb3458cc5bbf9ca4ffe2c33ce6f8b46768851032f5310b22987be8921b_s390xRHSA-2026:33612

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityNone
IntegrityLow
AvailabilityNone

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Exploit Intelligence

0.37%probability of exploitation in 30 days
29thpercentile

Low risk: more likely to be exploited than 29% of all known CVEs.

References

Embed a live status badge for CVE-2026-42507
CVE-2026-42507 severity badge

Markdown

[![CVE-2026-42507](https://tridentstack.com/cve/badge/CVE-2026-42507.svg)](https://tridentstack.com/cve/CVE-2026-42507)

HTML

<a href="https://tridentstack.com/cve/CVE-2026-42507"><img src="https://tridentstack.com/cve/badge/CVE-2026-42507.svg" alt="CVE-2026-42507"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-06-04.