Red Hat Product Errata RHSA-2026:19013 - Security Advisory
Issued:
2026-05-19
Updated:
2026-05-19

RHSA-2026:19013 - Security Advisory

Synopsis

Moderate: delve security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for delve is now available for Red Hat Enterprise Linux 10.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Delve is a debugger for the Go programming language. The goal of the project is to provide a simple, full featured debugging tool for Go. Delve should be easy to invoke and easy to use. Chances are if you're using a debugger, things aren't going your way. With that in mind, Delve should stay out of your way as much as possible.

Security Fix(es):

  • crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)
  • golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)
  • crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 10 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 x86_64
  • Red Hat Enterprise Linux for Power, little endian 10 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 ppc64le
  • Red Hat Enterprise Linux for ARM 64 10 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 aarch64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 aarch64
  • Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 ppc64le
  • Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 aarch64
  • Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 ppc64le

Fixes

  • BZ - 2418462 - CVE-2025-61729 crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate
  • BZ - 2434432 - CVE-2025-61726 golang: net/url: Memory exhaustion in query parameter parsing in net/url
  • BZ - 2437111 - CVE-2025-68121 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption

Red Hat Enterprise Linux for x86_64 10

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
x86_64
delve-1.26.1-1.el10_2.x86_64.rpm SHA-256: e2950b6e8247df13917c6a98c41a54a020d4ccf40be0b1944013c93afa797167
delve-debuginfo-1.26.1-1.el10_2.x86_64.rpm SHA-256: 4adf72e4fbb0c9a47c04f6491105e8b15a497e5c9345e35a0c1c0b893870cf7e
delve-debugsource-1.26.1-1.el10_2.x86_64.rpm SHA-256: ebda4715baa22268996e608d2ab5fde6593c75c363c50d2b8fa6027b89739717

Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
x86_64
delve-1.26.1-1.el10_2.x86_64.rpm SHA-256: e2950b6e8247df13917c6a98c41a54a020d4ccf40be0b1944013c93afa797167
delve-debuginfo-1.26.1-1.el10_2.x86_64.rpm SHA-256: 4adf72e4fbb0c9a47c04f6491105e8b15a497e5c9345e35a0c1c0b893870cf7e
delve-debugsource-1.26.1-1.el10_2.x86_64.rpm SHA-256: ebda4715baa22268996e608d2ab5fde6593c75c363c50d2b8fa6027b89739717

Red Hat Enterprise Linux for Power, little endian 10

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
ppc64le
delve-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 492fb56a5596da255e71ce7dce602b40843a20d4710c095f1612c966122fec8d
delve-debuginfo-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 6c37adb1b0344ec509ea30d09df9ae0419810aa18c15fdfdff63035ce6026db4
delve-debugsource-1.26.1-1.el10_2.ppc64le.rpm SHA-256: a18ec7fa1800481d1ba18fa9a8672e1acdc84ba42e1d53998538ca58b15dbe34

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
ppc64le
delve-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 492fb56a5596da255e71ce7dce602b40843a20d4710c095f1612c966122fec8d
delve-debuginfo-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 6c37adb1b0344ec509ea30d09df9ae0419810aa18c15fdfdff63035ce6026db4
delve-debugsource-1.26.1-1.el10_2.ppc64le.rpm SHA-256: a18ec7fa1800481d1ba18fa9a8672e1acdc84ba42e1d53998538ca58b15dbe34

Red Hat Enterprise Linux for ARM 64 10

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
aarch64
delve-1.26.1-1.el10_2.aarch64.rpm SHA-256: e1abd76d662eafc589673ee49dc5c3a030fba4d8edbbd2001e890e3cd171774a
delve-debuginfo-1.26.1-1.el10_2.aarch64.rpm SHA-256: 7ff645b56af9037faa4731eedb707fee8da0ac00591f994b9fb114ed9ccae5ef
delve-debugsource-1.26.1-1.el10_2.aarch64.rpm SHA-256: ec106dedb43a720773eb9e8146f8534be777fe3ee6f7700d288def7f9453dbf1

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
aarch64
delve-1.26.1-1.el10_2.aarch64.rpm SHA-256: e1abd76d662eafc589673ee49dc5c3a030fba4d8edbbd2001e890e3cd171774a
delve-debuginfo-1.26.1-1.el10_2.aarch64.rpm SHA-256: 7ff645b56af9037faa4731eedb707fee8da0ac00591f994b9fb114ed9ccae5ef
delve-debugsource-1.26.1-1.el10_2.aarch64.rpm SHA-256: ec106dedb43a720773eb9e8146f8534be777fe3ee6f7700d288def7f9453dbf1

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
aarch64
delve-1.26.1-1.el10_2.aarch64.rpm SHA-256: e1abd76d662eafc589673ee49dc5c3a030fba4d8edbbd2001e890e3cd171774a
delve-debuginfo-1.26.1-1.el10_2.aarch64.rpm SHA-256: 7ff645b56af9037faa4731eedb707fee8da0ac00591f994b9fb114ed9ccae5ef
delve-debugsource-1.26.1-1.el10_2.aarch64.rpm SHA-256: ec106dedb43a720773eb9e8146f8534be777fe3ee6f7700d288def7f9453dbf1

Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
ppc64le
delve-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 492fb56a5596da255e71ce7dce602b40843a20d4710c095f1612c966122fec8d
delve-debuginfo-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 6c37adb1b0344ec509ea30d09df9ae0419810aa18c15fdfdff63035ce6026db4
delve-debugsource-1.26.1-1.el10_2.ppc64le.rpm SHA-256: a18ec7fa1800481d1ba18fa9a8672e1acdc84ba42e1d53998538ca58b15dbe34

Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
x86_64
delve-1.26.1-1.el10_2.x86_64.rpm SHA-256: e2950b6e8247df13917c6a98c41a54a020d4ccf40be0b1944013c93afa797167
delve-debuginfo-1.26.1-1.el10_2.x86_64.rpm SHA-256: 4adf72e4fbb0c9a47c04f6491105e8b15a497e5c9345e35a0c1c0b893870cf7e
delve-debugsource-1.26.1-1.el10_2.x86_64.rpm SHA-256: ebda4715baa22268996e608d2ab5fde6593c75c363c50d2b8fa6027b89739717

Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
x86_64
delve-1.26.1-1.el10_2.x86_64.rpm SHA-256: e2950b6e8247df13917c6a98c41a54a020d4ccf40be0b1944013c93afa797167
delve-debuginfo-1.26.1-1.el10_2.x86_64.rpm SHA-256: 4adf72e4fbb0c9a47c04f6491105e8b15a497e5c9345e35a0c1c0b893870cf7e
delve-debugsource-1.26.1-1.el10_2.x86_64.rpm SHA-256: ebda4715baa22268996e608d2ab5fde6593c75c363c50d2b8fa6027b89739717

Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
aarch64
delve-1.26.1-1.el10_2.aarch64.rpm SHA-256: e1abd76d662eafc589673ee49dc5c3a030fba4d8edbbd2001e890e3cd171774a
delve-debuginfo-1.26.1-1.el10_2.aarch64.rpm SHA-256: 7ff645b56af9037faa4731eedb707fee8da0ac00591f994b9fb114ed9ccae5ef
delve-debugsource-1.26.1-1.el10_2.aarch64.rpm SHA-256: ec106dedb43a720773eb9e8146f8534be777fe3ee6f7700d288def7f9453dbf1

Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2

SRPM
delve-1.26.1-1.el10_2.src.rpm SHA-256: 8aa5d1d9f4649464737ac21ec8c13712c3ec086c0f98882c65090ac6e5ee38a9
ppc64le
delve-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 492fb56a5596da255e71ce7dce602b40843a20d4710c095f1612c966122fec8d
delve-debuginfo-1.26.1-1.el10_2.ppc64le.rpm SHA-256: 6c37adb1b0344ec509ea30d09df9ae0419810aa18c15fdfdff63035ce6026db4
delve-debugsource-1.26.1-1.el10_2.ppc64le.rpm SHA-256: a18ec7fa1800481d1ba18fa9a8672e1acdc84ba42e1d53998538ca58b15dbe34

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.