红帽产品勘误 RHSA-2026:21395 - Security Advisory
发布:
2026-05-27
已更新:
2026-05-27

RHSA-2026:21395 - Security Advisory

概述

Important: cockpit security update

类型/严重性

Security Advisory: Important

Red Hat Insights 补丁分析

识别并修复受此公告影响的系统。

查看受影响的系统

标题

An update for cockpit is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

描述

Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more.

Security Fix(es):

  • cockpit: Cockpit: Arbitrary command execution via crafted links in system logs UI (CVE-2026-4802)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

解决方案

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

受影响的产品

  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 s390x

修复

  • BZ - 2451155 - CVE-2026-4802 cockpit: Cockpit: Arbitrary command execution via crafted links in system logs UI

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0

SRPM
cockpit-264.3-1.el9_0.src.rpm SHA-256: d8982ecc49112abe349b97ee60906952d14beaad8baf7dc3353f6e43ec831e98
ppc64le
cockpit-264.3-1.el9_0.ppc64le.rpm SHA-256: 1bd20f5cae5326bda90f7c730dbc2ab5edc92bbc9ef73e098373cdaedbdeb760
cockpit-bridge-264.3-1.el9_0.ppc64le.rpm SHA-256: 3ad7173bff57277d576edf802c5fed4f4bee8cc215a1bd8a7390570e9ee0b817
cockpit-debuginfo-264.3-1.el9_0.ppc64le.rpm SHA-256: d4b3636c414c1c7525df5761f8284776b944a78ae0204504af385c657fc4c78e
cockpit-debuginfo-264.3-1.el9_0.ppc64le.rpm SHA-256: d4b3636c414c1c7525df5761f8284776b944a78ae0204504af385c657fc4c78e
cockpit-debugsource-264.3-1.el9_0.ppc64le.rpm SHA-256: 788a74ff61714d3a2a4dc627a96c9efd77fb07d42d3e35778be3716b84878eeb
cockpit-debugsource-264.3-1.el9_0.ppc64le.rpm SHA-256: 788a74ff61714d3a2a4dc627a96c9efd77fb07d42d3e35778be3716b84878eeb
cockpit-doc-264.3-1.el9_0.noarch.rpm SHA-256: b6739deec5a61c4fadf89083262a424e0e42444f0237a0d4d062042577e62c83
cockpit-packagekit-264.3-1.el9_0.noarch.rpm SHA-256: fa0fbea70813882d33126f42d09697482590c0114d51ac1c1747b5755ae3ecfe
cockpit-pcp-264.3-1.el9_0.ppc64le.rpm SHA-256: bc8c0c597a1817f7e322eda50839db569fcf1091c6219d463168da01f345564e
cockpit-storaged-264.3-1.el9_0.noarch.rpm SHA-256: 7fb160d2f6f08d3be844aacf18f9b4e31a5c0633ad8d202d791c1da5d7cf7244
cockpit-system-264.3-1.el9_0.noarch.rpm SHA-256: 5a3036e68be4372791de566bf02a03802c7ed5b633cc04ba3106ecf07ae48850
cockpit-ws-264.3-1.el9_0.ppc64le.rpm SHA-256: 3fd13d5b165804ac24842257be0320d1192392817cfba8bc7d8b6612d65c54eb

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0

SRPM
cockpit-264.3-1.el9_0.src.rpm SHA-256: d8982ecc49112abe349b97ee60906952d14beaad8baf7dc3353f6e43ec831e98
x86_64
cockpit-264.3-1.el9_0.x86_64.rpm SHA-256: 5bb488c7a988e162e57f6eb9d03a3d241d56b47367340643c42e184d542e14fd
cockpit-bridge-264.3-1.el9_0.x86_64.rpm SHA-256: 3bb8ac41f2087ce862f3cd9164f7ff64c2437e5e0a003bf19553d935bc63a74e
cockpit-debuginfo-264.3-1.el9_0.x86_64.rpm SHA-256: b055dcbf653d7df0ce3325e4acffa6675cfe1c1067ddcb647095323e478fdff0
cockpit-debuginfo-264.3-1.el9_0.x86_64.rpm SHA-256: b055dcbf653d7df0ce3325e4acffa6675cfe1c1067ddcb647095323e478fdff0
cockpit-debugsource-264.3-1.el9_0.x86_64.rpm SHA-256: e9fc4efe376baa70559151211a9ea7cf963b607edc054c7141b19f6388d6f306
cockpit-debugsource-264.3-1.el9_0.x86_64.rpm SHA-256: e9fc4efe376baa70559151211a9ea7cf963b607edc054c7141b19f6388d6f306
cockpit-doc-264.3-1.el9_0.noarch.rpm SHA-256: b6739deec5a61c4fadf89083262a424e0e42444f0237a0d4d062042577e62c83
cockpit-packagekit-264.3-1.el9_0.noarch.rpm SHA-256: fa0fbea70813882d33126f42d09697482590c0114d51ac1c1747b5755ae3ecfe
cockpit-pcp-264.3-1.el9_0.x86_64.rpm SHA-256: 3b8d9349a7afaf39fce54a1400917cf49ac068a8823c8cc7c8c8616f5a2739d2
cockpit-storaged-264.3-1.el9_0.noarch.rpm SHA-256: 7fb160d2f6f08d3be844aacf18f9b4e31a5c0633ad8d202d791c1da5d7cf7244
cockpit-system-264.3-1.el9_0.noarch.rpm SHA-256: 5a3036e68be4372791de566bf02a03802c7ed5b633cc04ba3106ecf07ae48850
cockpit-ws-264.3-1.el9_0.x86_64.rpm SHA-256: 8d16eccce2471783202b8c082d50800fbf4bb7fc97baeacf248ba4822d55f4a7

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0

SRPM
cockpit-264.3-1.el9_0.src.rpm SHA-256: d8982ecc49112abe349b97ee60906952d14beaad8baf7dc3353f6e43ec831e98
aarch64
cockpit-264.3-1.el9_0.aarch64.rpm SHA-256: d3538efaf848404d92cb041da0acd3522b2a409d029bc48385f54b1b6efeb22b
cockpit-bridge-264.3-1.el9_0.aarch64.rpm SHA-256: 9c2c35a651ae294aaec59aeb891b0656fc6a8c73718fbc9485b7f7be6baa7668
cockpit-debuginfo-264.3-1.el9_0.aarch64.rpm SHA-256: 8dcb974e6618df1b66e4810f8c1c383d073b88cb8f06d3d14f18061347a192f2
cockpit-debuginfo-264.3-1.el9_0.aarch64.rpm SHA-256: 8dcb974e6618df1b66e4810f8c1c383d073b88cb8f06d3d14f18061347a192f2
cockpit-debugsource-264.3-1.el9_0.aarch64.rpm SHA-256: f04fc45e33888c406cbda6b668593cd923777428bb5994157a555615142feb3a
cockpit-debugsource-264.3-1.el9_0.aarch64.rpm SHA-256: f04fc45e33888c406cbda6b668593cd923777428bb5994157a555615142feb3a
cockpit-doc-264.3-1.el9_0.noarch.rpm SHA-256: b6739deec5a61c4fadf89083262a424e0e42444f0237a0d4d062042577e62c83
cockpit-packagekit-264.3-1.el9_0.noarch.rpm SHA-256: fa0fbea70813882d33126f42d09697482590c0114d51ac1c1747b5755ae3ecfe
cockpit-pcp-264.3-1.el9_0.aarch64.rpm SHA-256: e632ee6b32a59c64b2c3a35faab7424a7614c7ae17443e83200aa99450913d8a
cockpit-storaged-264.3-1.el9_0.noarch.rpm SHA-256: 7fb160d2f6f08d3be844aacf18f9b4e31a5c0633ad8d202d791c1da5d7cf7244
cockpit-system-264.3-1.el9_0.noarch.rpm SHA-256: 5a3036e68be4372791de566bf02a03802c7ed5b633cc04ba3106ecf07ae48850
cockpit-ws-264.3-1.el9_0.aarch64.rpm SHA-256: 0ca92b71690a73342c755c98936d4bd3ae0ca2eb7952507444e309d42044f129

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0

SRPM
cockpit-264.3-1.el9_0.src.rpm SHA-256: d8982ecc49112abe349b97ee60906952d14beaad8baf7dc3353f6e43ec831e98
s390x
cockpit-264.3-1.el9_0.s390x.rpm SHA-256: beb0132d644e4f9c469d8d83df216836e36fd0cca34232c7f7a4fb62448f26d3
cockpit-bridge-264.3-1.el9_0.s390x.rpm SHA-256: 76dced7925ec5405aa58f048ef29465148464a0063de3e35ef32693a34cb3a4b
cockpit-debuginfo-264.3-1.el9_0.s390x.rpm SHA-256: f8566eb382ba8eaa3cf27434f3a707f23fc46ecc0010efb18db95aca31628aa1
cockpit-debuginfo-264.3-1.el9_0.s390x.rpm SHA-256: f8566eb382ba8eaa3cf27434f3a707f23fc46ecc0010efb18db95aca31628aa1
cockpit-debugsource-264.3-1.el9_0.s390x.rpm SHA-256: c0c6e01268fb08e0970202bf59de3a1308532f34a8f2677723eb980a3266f14f
cockpit-debugsource-264.3-1.el9_0.s390x.rpm SHA-256: c0c6e01268fb08e0970202bf59de3a1308532f34a8f2677723eb980a3266f14f
cockpit-doc-264.3-1.el9_0.noarch.rpm SHA-256: b6739deec5a61c4fadf89083262a424e0e42444f0237a0d4d062042577e62c83
cockpit-packagekit-264.3-1.el9_0.noarch.rpm SHA-256: fa0fbea70813882d33126f42d09697482590c0114d51ac1c1747b5755ae3ecfe
cockpit-pcp-264.3-1.el9_0.s390x.rpm SHA-256: 1984e4bd8b4af7d36dab8d3136b9428f8e6e63804a2c8227317cde31f013dbda
cockpit-storaged-264.3-1.el9_0.noarch.rpm SHA-256: 7fb160d2f6f08d3be844aacf18f9b4e31a5c0633ad8d202d791c1da5d7cf7244
cockpit-system-264.3-1.el9_0.noarch.rpm SHA-256: 5a3036e68be4372791de566bf02a03802c7ed5b633cc04ba3106ecf07ae48850
cockpit-ws-264.3-1.el9_0.s390x.rpm SHA-256: 867ed984848ddbd600839f1f955d4f792313b9930be765f1df3f4718a036b711

Red Hat 安全团队联络方式为 secalert@redhat.com。 更多联络细节请参考 https://access.redhat.com/security/team/contact/