Security News

Cybersecurity news aggregator

🔄
HIGH Updates Red Hat Errata

RHSA-2026:21394: Important: cockpit security update

cve-2026-1234redhatcve-2026-4802
This Important security update for Cockpit addresses CVE-2026-4802 (CVSS 8.0 High), a vulnerability allowing arbitrary command execution via crafted links in the system logs web interface. The flaw affects Cockpit packages for Red Hat Enterprise Linux 9.2 across multiple architectures and support streams. The advisory provides updated packages to remediate the issue, such as version cockpit-286.3-1.el9_2 for x86_64 systems.
Read Full Article →

Red Hat Product Errata RHSA-2026:21394 - Security Advisory Issued: 2026-05-27 Updated: 2026-05-27 RHSA-2026:21394 - Security Advisory Overview Updated Packages Synopsis Important: cockpit security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for cockpit is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more. Security Fix(es): cockpit: Cockpit: Arbitrary command execution via crafted links in system logs UI (CVE-2026-4802) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server - AUS 9.2 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.2 s390x Fixes BZ - 2451155 - CVE-2026-4802 cockpit: Cockpit: Arbitrary command execution via crafted links in system logs UI CVEs CVE-2026-4802 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - AUS 9.2 SRPM cockpit-286.3-1.el9_2.src.rpm SHA-256: 473690a1991c7746aff9f4280872ed7002849f50ecee3e2486e3d7e25838e514 x86_64 cockpit-286.3-1.el9_2.x86_64.rpm SHA-256: af6fa3d1331040872c057abd6452ab651066b763906c291d554dad1fce13d227 cockpit-bridge-286.3-1.el9_2.x86_64.rpm SHA-256: 9436c8f9766eb4ab2552ab037e8853a73f2c8418fd45ecad6fc3ce0fd23a0968 cockpit-debuginfo-286.3-1.el9_2.x86_64.rpm SHA-256: 43a9f8307fd750465847c5c05ed89d17275ec88983b41b9e4e2e8c474d253daf cockpit-debuginfo-286.3-1.el9_2.x86_64.rpm SHA-256: 43a9f8307fd750465847c5c05ed89d17275ec88983b41b9e4e2e8c474d253daf cockpit-debugsource-286.3-1.el9_2.x86_64.rpm SHA-256: be882415e72e4b8b9dc6235adeb331766b974bfac457215ec7c49d8687a2b895 cockpit-debugsource-286.3-1.el9_2.x86_64.rpm SHA-256: be882415e72e4b8b9dc6235adeb331766b974bfac457215ec7c49d8687a2b895 cockpit-doc-286.3-1.el9_2.noarch.rpm SHA-256: 6efab85e74ab6c0ce77c37ed1e22eec734e7fd7fb6b9c62ddc3a44b410557657 cockpit-packagekit-286.3-1.el9_2.noarch.rpm SHA-256: 4e72e584e9d1ac6629bd1435c7460fa231f920799d8d1c9eb0b3be5d8ed94bbc cockpit-pcp-286.3-1.el9_2.x86_64.rpm SHA-256: 45275100c0971bfdf4d73c3dd7e3399814fb5e57b2a31d6bb70268fb3b2ca109 cockpit-storaged-286.3-1.el9_2.noarch.rpm SHA-256: 2a7b0ab03c9bf9eb8dc360f37c9ec1bd82596013df4db00ce8717d16a33c83cc cockpit-system-286.3-1.el9_2.noarch.rpm SHA-256: 6e750fc68ec820354d605b827c63ea550ad748c713f471d84cd3ed6f95de0bb5 cockpit-ws-286.3-1.el9_2.x86_64.rpm SHA-256: 3c34c7dc6a85977c96b627c7dba98b0cb9c8a4d77c8a53fc5b10df90b502006a Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 SRPM cockpit-286.3-1.el9_2.src.rpm SHA-256: 473690a1991c7746aff9f4280872ed7002849f50ecee3e2486e3d7e25838e514 ppc64le cockpit-286.3-1.el9_2.ppc64le.rpm SHA-256: 608a119616e4e1521ee4f5cccc2a69c21d6edd102cb56fa371d7e5ad99c108db cockpit-bridge-286.3-1.el9_2.ppc64le.rpm SHA-256: 2bb74df625d41b9ec5021f1fbc45390d47846bd51f064231c281bca52cfed8a6 cockpit-debuginfo-286.3-1.el9_2.ppc64le.rpm SHA-256: f55594194934b3e51d5895ca3f0899f6590122e2bdbaabdd1c26eb71393481ee cockpit-debuginfo-286.3-1.el9_2.ppc64le.rpm SHA-256: f55594194934b3e51d5895ca3f0899f6590122e2bdbaabdd1c26eb71393481ee cockpit-debugsource-286.3-1.el9_2.ppc64le.rpm SHA-256: 751a994706d7d77bc9a1122c33aa3e3aab9c4568ca346f713a73019075f10406 cockpit-debugsource-286.3-1.el9_2.ppc64le.rpm SHA-256: 751a994706d7d77bc9a1122c33aa3e3aab9c4568ca346f713a73019075f10406 cockpit-doc-286.3-1.el9_2.noarch.rpm SHA-256: 6efab85e74ab6c0ce77c37ed1e22eec734e7fd7fb6b9c62ddc3a44b410557657 cockpit-packagekit-286.3-1.el9_2.noarch.rpm SHA-256: 4e72e584e9d1ac6629bd1435c7460fa231f920799d8d1c9eb0b3be5d8ed94bbc cockpit-pcp-286.3-1.el9_2.ppc64le.rpm SHA-256: a5f32a3a0cab8414f4161436c438ad103414597ec2cde8d8d85cdbb4f95644da cockpit-storaged-286.3-1.el9_2.noarch.rpm SHA-256: 2a7b0ab03c9bf9eb8dc360f37c9ec1bd82596013df4db00ce8717d16a33c83cc cockpit-system-286.3-1.el9_2.noarch.rpm SHA-256: 6e750fc68ec820354d605b827c63ea550ad748c713f471d84cd3ed6f95de0bb5 cockpit-ws-286.3-1.el9_2.ppc64le.rpm SHA-256: c45665ec7684a46832c93bb79f31c813fdb40bb3f46cf890765d52f0902bdfc7 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 SRPM cockpit-286.3-1.el9_2.src.rpm SHA-256: 473690a1991c7746aff9f4280872ed7002849f50ecee3e2486e3d7e25838e514 x86_64 cockpit-286.3-1.el9_2.x86_64.rpm SHA-256: af6fa3d1331040872c057abd6452ab651066b763906c291d554dad1fce13d227 cockpit-bridge-286.3-1.el9_2.x86_64.rpm SHA-256: 9436c8f9766eb4ab2552ab037e8853a73f2c8418fd45ecad6fc3ce0fd23a0968 cockpit-debuginfo-286.3-1.el9_2.x86_64.rpm SHA-256: 43a9f8307fd750465847c5c05ed89d17275ec88983b41b9e4e2e8c474d253daf cockpit-debuginfo-286.3-1.el9_2.x86_64.rpm SHA-256: 43a9f8307fd750465847c5c05ed89d17275ec88983b41b9e4e2e8c474d253daf cockpit-debugsource-286.3-1.el9_2.x86_64.rpm SHA-256: be882415e72e4b8b9dc6235adeb331766b974bfac457215ec7c49d8687a2b895 cockpit-debugsource-286.3-1.el9_2.x86_64.rpm SHA-256: be882415e72e4b8b9dc6235adeb331766b974bfac457215ec7c49d8687a2b895 cockpit-doc-286.3-1.el9_2.noarch.rpm SHA-256: 6efab85e74ab6c0ce77c37ed1e22eec734e7fd7fb6b9c62ddc3a44b410557657 cockpit-packagekit-286.3-1.el9_2.noarch.rpm SHA-256: 4e72e584e9d1ac6629bd1435c7460fa231f920799d8d1c9eb0b3be5d8ed94bbc cockpit-pcp-286.3-1.el9_2.x86_64.rpm SHA-256: 45275100c0971bfdf4d73c3dd7e3399814fb5e57b2a31d6bb70268fb3b2ca109 cockpit-storaged-286.3-1.el9_2.noarch.rpm SHA-256: 2a7b0ab03c9bf9eb8dc360f37c9ec1bd82596013df4db00ce8717d16a33c83cc cockpit-system-286.3-1.el9_2.noarch.rpm SHA-256: 6e750fc68ec820354d605b827c63ea550ad748c713f471d84cd3ed6f95de0bb5 cockpit-ws-286.3-1.el9_2.x86_64.rpm SHA-256: 3c34c7dc6a85977c96b627c7dba98b0cb9c8a4d77c8a53fc5b10df90b502006a Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 SRPM cockpit-286.3-1.el9_2.src.rpm SHA-256: 473690a1991c7746aff9f4280872ed7002849f50ecee3e2486e3d7e25838e514 aarch64 cockpit-286.3-1.el9_2.aarch64.rpm SHA-256: bbe1938947fcbf5fdbc01a98a082382316f0fb1c0d7991c428ef170549a8beb3 cockpit-bridge-286.3-1.el9_2.aarch64.rpm SHA-256: ae50546bf1b8e70f077b71450a79fdbd4606b3b34c4aaf07cb4111dd27290ef6 cockpit-debuginfo-286.3-1.el9_2.aarch64.rpm SHA-256: e045f66a3bb1457ae738f3d42cb9f9cc3e222abd142337a85b79f607e11305f7 cockpit-debuginfo-286.3-1.el9_2.aarch64.rpm SHA-256: e045f66a3bb1457ae738f3d42cb9f9cc3e222abd142337a85b79f607e11305f7 cockpit-debugsource-286.3-1.el9_2.aarch64.rpm SHA-256: b417845ce9f95acbd980648655886b62c0a201e9c50784939719c730f0aaa3bc cockpit-debugsource-286.3-1.el9_2.aarch64.rpm SHA-256: b417845ce9f95acbd980648655886b62c0a201e9c50784939719c730f0aaa3bc cockpit-doc-286.3-1.el9_2.noarch.rpm SHA-256: 6efab85e74ab6c0ce77c37ed1e22eec734e7fd7fb6b9c62ddc3a44b410557657 cockpit-packagekit-286.3-1.el9_2.noarch.rpm SHA-256: 4e72e584e9d1ac6629bd1435c7460fa231f920799d8d1c9eb0b3be5d8ed94bbc cockpit-pcp-286.3-1.el9_2.aarch64.rpm SHA-256: 4a1153090d778dda3ccdef85b62eab70b316aa4c2a03238901f44b64c4055ed3 cockpit-storaged-286.3-1.el9_2.noarch.rpm SHA-256: 2a7b0ab03c9bf9eb8dc360f37c9ec1bd82596013df4db00ce8717d16a33c83cc cockpit-system-286.3-1.el9_2.noarch.rpm SHA-256: 6e750fc68ec820354d605b827c63ea550ad748c713f471d84cd3ed6f95de0bb5 cockpit-ws-286.3-1.el9_2.aarch64.rpm SHA-256: acb177b9f81d233a5e3c03bf4e82e379d675a8adcd17ed8381339680bc2a5b7a Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 SRPM cockpit-286.3-1.el9_2.src.rpm SHA-256: 473690a1991c7746aff9f4280872ed7002849f50ecee3e2486e3d7e25838e514 s390x cockpit-286.3-1.el9_2.s390x.rpm SHA-256: 22b636f1a64ee7eea3fd476d098fe6d5ccf0b44e618a5446feb90513952f8df7 cockpit-bridge-286.3-1.el9_2.s390x.rpm SHA-256: 3d39f6356997594357634aca643c9a84ab368de424af71fa0f4ca2113e96ae10 cockpit-debuginfo-286.3-1.el9_2.s390x.rpm SHA-256: 0b2caefec8db6e40f842a1b4d9f26bf4982f1d15b96284b128276145f8d5404c cockpit-debuginfo-286.3-1.el9_2.s390x.rpm SHA-256: 0b2caefec8db6e40f842a1b4d9f26bf4982f1d15b96284b128276145f8d5404c cockpit-debugsource-286.3-1.el9_2.s390x.rpm SHA-256: 1e4be6ec4b427ecc066ff94b2c7f82e3901a603ebaeade4c48c185ea8092b880 cockpit-debugsource-286.3-1.el9_2.s390x.rpm SHA-256: 1e4be6ec4b427ecc066ff94b2c7f82e3901a603ebaeade4c48c185ea8092b880 cockpit-doc-286.3-1.el9_2.noarch.rpm SHA-256: 6efab85e74ab6c0ce77c37ed1e22eec734e7fd7fb6b9c62ddc3a44b410557657 cockpit-packagekit-286.3-1.el9_2.noarch.rpm SHA-256: 4e72e584e9d1ac6629bd1435c7460fa231f920799d8d1c9eb0b3be5d8ed94bbc cockpit-pcp-286.3-1.el9_2.s390x.rpm SHA-256: 39b54ddedc920ed95f0f6e42be0073cd5ef3dca08bdd5676f687727407eb2573 cockpit-storaged-286.3-1.el9_2.noarch.rpm SHA-256: 2a7b0ab03c9bf9eb8dc360f37c9ec1bd82596013df4db00ce8717d16a33c83cc cock

Related Articles

HIGH RHSA-2026:21468: Important: cockpit security update Red Hat Errata INFO RHSA-2026:21676: Important: cockpit security update Red Hat Errata INFO RHSA-2026:21700: Important: cockpit security update Red Hat Errata HIGH RHSA-2026:21392: Important: cockpit security update Red Hat Errata
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn