chore(deps): refresh rpm lockfiles (release-1.19) [SECURITY]#910
Open
red-hat-konflux[bot] wants to merge 1 commit intorelease-1.19from
Conversation
red-hat-konflux
Bot
force-pushed
the
konflux/mintmaker/release-1.19-release-1.19/lock-file-maintenance-vulnerability
branch
7 times, most recently
from
bdf1e3b to
77c8ec4
Compare
Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com>
red-hat-konflux
Bot
force-pushed
the
konflux/mintmaker/release-1.19-release-1.19/lock-file-maintenance-vulnerability
branch
from
77c8ec4 to
a2d6b3b
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
File prefetch/rpms/ubi8/rpms.in.yaml:
2:8.0.1763-22.el8_10.1->2:8.0.1763-22.el8_10.38.0p1-28.el8_10->8.0p1-29.el8_108.0p1-28.el8_10->8.0p1-29.el8_103.6.8-75.el8_10->3.6.8-76.el8_103.6.8-75.el8_10->3.6.8-76.el8_10File prefetch/rpms/ubi9/rpms.in.yaml:
8.7p1-48.el9_7->8.7p1-49.el9_78.7p1-48.el9_7->8.7p1-49.el9_72:8.2.2637-23.el9_7.2->2:8.2.2637-23.el9_7.3OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode
CVE-2026-35385
More information
Severity
Important
References
OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage
CVE-2026-35387
More information
Severity
Important
References
OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username
CVE-2026-35386
More information
Severity
Important
References
OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option
CVE-2026-35414
More information
Severity
Important
References
OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions
CVE-2026-35388
More information
Severity
Important
References
OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option
CVE-2026-35414
More information
Details
A flaw was found in OpenSSH. This vulnerability arises from the incorrect handling of the authorized_keys principals option in uncommon scenarios. Specifically, when a principals list is used with a Certificate Authority that includes comma characters, OpenSSH may misinterpret the input. This could lead to security bypasses, potentially allowing unintended access or information disclosure in specific authentication contexts.
Severity
Important
References
OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username
CVE-2026-35386
More information
Details
A flaw was found in OpenSSH. This vulnerability allows a remote attacker to achieve arbitrary command execution by injecting shell metacharacters into a username provided on the command line. Exploitation requires an untrusted username and a non-default configuration of the '%' character in
ssh_config.Severity
Important
References
OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions
CVE-2026-35388
More information
Details
A flaw was found in OpenSSH. This vulnerability allows for a low integrity impact due to the omission of connection multiplexing confirmation for proxy-mode multiplexing sessions. A local user, under specific and complex conditions requiring user interaction, could potentially establish a multiplexed session without explicit confirmation, leading to unintended data handling.
Severity
Important
References
OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode
CVE-2026-35385
More information
Details
A flaw was found in OpenSSH. When the
scpcommand is used by a root user to download a file with the legacy protocol option (-O) and without preserving original file permissions (-p), the downloaded file can be installed with elevated privileges (setuid or setgid). This unexpected behavior could allow a malicious file to execute with higher permissions than intended, posing a security risk through potential privilege escalation.Severity
Important
References
OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage
CVE-2026-35387
More information
Details
A flaw was found in OpenSSH. This vulnerability allows the system to use unintended Elliptic Curve Digital Signature Algorithm (ECDSA) algorithms. This occurs because the configuration for accepted public key algorithms is misinterpreted, leading to the use of weaker cryptographic methods than intended. This could potentially allow an attacker to compromise the confidentiality of data.
Severity
Important
References
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
CVE-2026-6100
More information
Details
A flaw was found in Python's decompression modules, including
lzma.LZMADecompressor,bz2.BZ2Decompressor, andgzip.GzipFile. This vulnerability, a use-after-free, can occur if a program attempts to re-use a decompression object after a memory allocation error, especially when the system is experiencing high memory usage. Exploitation of this flaw could potentially allow an attacker to execute arbitrary code or access sensitive data. The vulnerability is only present if the program re-uses decompressor instances across multiple decompression calls even after aMemoryErroris raised during decompression. Using the helper functions to one-shot decompress data such aslzma.decompress(),bz2.decompress(),gzip.decompress(), andzlib.decompress()are not affected as a new decompressor instance is used per call. If the decompressor instance is not re-used after an error condition, this usage is similarly not vulnerable.Severity
Important
References
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
CVE-2026-4786
More information
Details
A flaw was found in the Python webbrowser.open() API. If a specially crafted URL containing "%action" is processed, an attacker could bypass a previous mitigation for CVE-2026-4519. This bypass allows for command injection into the underlying shell, potentially leading to arbitrary code execution.
Severity
Important
References
🔧 This Pull Request updates lock files to use the latest dependency versions.
Configuration
📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
To execute skipped test pipelines write comment
/ok-to-test.Documentation
Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.