Issued:: 2026-03-09
Updated:: 2026-03-09

RHSA-2026:3971 - Security Advisory

Overview
Updated Packages

Synopsis

Important: rhc-worker-playbook security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for rhc-worker-playbook is now available for Red Hat Enterprise Linux 10.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

A worker for yggdrasil that receives Ansible playbooks and executes them against the local host.

Security Fix(es):

crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)
golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)
crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 10 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 x86_64
Red Hat Enterprise Linux for IBM z Systems 10 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 s390x
Red Hat Enterprise Linux for Power, little endian 10 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 ppc64le
Red Hat Enterprise Linux for ARM 64 10 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 aarch64
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 aarch64
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2 s390x
Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 ppc64le
Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 x86_64
Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 aarch64
Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 ppc64le
Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 10.2 s390x

Fixes

BZ - 2418462 - CVE-2025-61729 crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate
BZ - 2434432 - CVE-2025-61726 golang: net/url: Memory exhaustion in query parameter parsing in net/url
BZ - 2437111 - CVE-2025-68121 crypto/tls: Unexpected session resumption in crypto/tls

CVEs

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 10

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
x86_64
rhc-worker-playbook-0.2.3-3.el10_1.x86_64.rpm	SHA-256: 806e759cb5d80d6da6d0e6bebcea29975172ac2ced1b5bf31762f58a2833a5b0
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.x86_64.rpm	SHA-256: b0feb063377980a765554b897600c1b07dce28c3315335ce580e2c238738c22f
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.x86_64.rpm	SHA-256: 2f0f005e3a1ff9a115a317ae12f65734438ff78d0ef9e4bed4d89e3bdd9abe63

Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
x86_64
rhc-worker-playbook-0.2.3-3.el10_1.x86_64.rpm	SHA-256: 806e759cb5d80d6da6d0e6bebcea29975172ac2ced1b5bf31762f58a2833a5b0
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.x86_64.rpm	SHA-256: b0feb063377980a765554b897600c1b07dce28c3315335ce580e2c238738c22f
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.x86_64.rpm	SHA-256: 2f0f005e3a1ff9a115a317ae12f65734438ff78d0ef9e4bed4d89e3bdd9abe63

Red Hat Enterprise Linux for IBM z Systems 10

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
s390x
rhc-worker-playbook-0.2.3-3.el10_1.s390x.rpm	SHA-256: 99315b370170b28ac934be06b716e5f033604df382ab0a2cdee121b6445cd7a8
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.s390x.rpm	SHA-256: 3942af8e8540195e9d9937c9ba37b1b5ab566feddbe3145f953b65590d752781
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.s390x.rpm	SHA-256: 2e64885ec3fb7f615d58ca2f50d908054642b25f0ad41553a9ed9b1dd64b9d79

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
s390x
rhc-worker-playbook-0.2.3-3.el10_1.s390x.rpm	SHA-256: 99315b370170b28ac934be06b716e5f033604df382ab0a2cdee121b6445cd7a8
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.s390x.rpm	SHA-256: 3942af8e8540195e9d9937c9ba37b1b5ab566feddbe3145f953b65590d752781
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.s390x.rpm	SHA-256: 2e64885ec3fb7f615d58ca2f50d908054642b25f0ad41553a9ed9b1dd64b9d79

Red Hat Enterprise Linux for Power, little endian 10

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
ppc64le
rhc-worker-playbook-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: fdc7fd0ed6bbffe2d5a9222b49e5cacd7575b7ad8c523be95068ba4a0a0c741b
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: f50d1b70be0eb650c3c45103d0234d3c73c2c4a567b46bfe0985e5efd9c2ae0a
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: e38d1d90f0403fc72a031d6826f9973e5a92db2a0f77be3e369470ea62fc8be9

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
ppc64le
rhc-worker-playbook-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: fdc7fd0ed6bbffe2d5a9222b49e5cacd7575b7ad8c523be95068ba4a0a0c741b
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: f50d1b70be0eb650c3c45103d0234d3c73c2c4a567b46bfe0985e5efd9c2ae0a
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: e38d1d90f0403fc72a031d6826f9973e5a92db2a0f77be3e369470ea62fc8be9

Red Hat Enterprise Linux for ARM 64 10

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
aarch64
rhc-worker-playbook-0.2.3-3.el10_1.aarch64.rpm	SHA-256: 391c3f74fc997453fe0c3560da06712eb60e0b60acff578ae0e1a43db1b93529
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.aarch64.rpm	SHA-256: eeb49e9a90b52606bbd54bb5a36c2187830b57bd2b9005044ff88e31d3cd05b8
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.aarch64.rpm	SHA-256: 4f3d9ada170f6c1a37d5a28389585b876661d5fd8711526e6af87871f0b4fdb2

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
aarch64
rhc-worker-playbook-0.2.3-3.el10_1.aarch64.rpm	SHA-256: 391c3f74fc997453fe0c3560da06712eb60e0b60acff578ae0e1a43db1b93529
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.aarch64.rpm	SHA-256: eeb49e9a90b52606bbd54bb5a36c2187830b57bd2b9005044ff88e31d3cd05b8
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.aarch64.rpm	SHA-256: 4f3d9ada170f6c1a37d5a28389585b876661d5fd8711526e6af87871f0b4fdb2

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
aarch64
rhc-worker-playbook-0.2.3-3.el10_1.aarch64.rpm	SHA-256: 391c3f74fc997453fe0c3560da06712eb60e0b60acff578ae0e1a43db1b93529
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.aarch64.rpm	SHA-256: eeb49e9a90b52606bbd54bb5a36c2187830b57bd2b9005044ff88e31d3cd05b8
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.aarch64.rpm	SHA-256: 4f3d9ada170f6c1a37d5a28389585b876661d5fd8711526e6af87871f0b4fdb2

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
s390x
rhc-worker-playbook-0.2.3-3.el10_1.s390x.rpm	SHA-256: 99315b370170b28ac934be06b716e5f033604df382ab0a2cdee121b6445cd7a8
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.s390x.rpm	SHA-256: 3942af8e8540195e9d9937c9ba37b1b5ab566feddbe3145f953b65590d752781
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.s390x.rpm	SHA-256: 2e64885ec3fb7f615d58ca2f50d908054642b25f0ad41553a9ed9b1dd64b9d79

Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
ppc64le
rhc-worker-playbook-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: fdc7fd0ed6bbffe2d5a9222b49e5cacd7575b7ad8c523be95068ba4a0a0c741b
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: f50d1b70be0eb650c3c45103d0234d3c73c2c4a567b46bfe0985e5efd9c2ae0a
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: e38d1d90f0403fc72a031d6826f9973e5a92db2a0f77be3e369470ea62fc8be9

Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
x86_64
rhc-worker-playbook-0.2.3-3.el10_1.x86_64.rpm	SHA-256: 806e759cb5d80d6da6d0e6bebcea29975172ac2ced1b5bf31762f58a2833a5b0
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.x86_64.rpm	SHA-256: b0feb063377980a765554b897600c1b07dce28c3315335ce580e2c238738c22f
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.x86_64.rpm	SHA-256: 2f0f005e3a1ff9a115a317ae12f65734438ff78d0ef9e4bed4d89e3bdd9abe63

Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
x86_64
rhc-worker-playbook-0.2.3-3.el10_1.x86_64.rpm	SHA-256: 806e759cb5d80d6da6d0e6bebcea29975172ac2ced1b5bf31762f58a2833a5b0
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.x86_64.rpm	SHA-256: b0feb063377980a765554b897600c1b07dce28c3315335ce580e2c238738c22f
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.x86_64.rpm	SHA-256: 2f0f005e3a1ff9a115a317ae12f65734438ff78d0ef9e4bed4d89e3bdd9abe63

Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
aarch64
rhc-worker-playbook-0.2.3-3.el10_1.aarch64.rpm	SHA-256: 391c3f74fc997453fe0c3560da06712eb60e0b60acff578ae0e1a43db1b93529
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.aarch64.rpm	SHA-256: eeb49e9a90b52606bbd54bb5a36c2187830b57bd2b9005044ff88e31d3cd05b8
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.aarch64.rpm	SHA-256: 4f3d9ada170f6c1a37d5a28389585b876661d5fd8711526e6af87871f0b4fdb2

Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
ppc64le
rhc-worker-playbook-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: fdc7fd0ed6bbffe2d5a9222b49e5cacd7575b7ad8c523be95068ba4a0a0c741b
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: f50d1b70be0eb650c3c45103d0234d3c73c2c4a567b46bfe0985e5efd9c2ae0a
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.ppc64le.rpm	SHA-256: e38d1d90f0403fc72a031d6826f9973e5a92db2a0f77be3e369470ea62fc8be9

Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 10.2

SRPM
rhc-worker-playbook-0.2.3-3.el10_1.src.rpm	SHA-256: 3d584c9dcda283ad4211677c19132a42ec93d07aa3627aab45ef84b49ed75358
s390x
rhc-worker-playbook-0.2.3-3.el10_1.s390x.rpm	SHA-256: 99315b370170b28ac934be06b716e5f033604df382ab0a2cdee121b6445cd7a8
rhc-worker-playbook-debuginfo-0.2.3-3.el10_1.s390x.rpm	SHA-256: 3942af8e8540195e9d9937c9ba37b1b5ab566feddbe3145f953b65590d752781
rhc-worker-playbook-debugsource-0.2.3-3.el10_1.s390x.rpm	SHA-256: 2e64885ec3fb7f615d58ca2f50d908054642b25f0ad41553a9ed9b1dd64b9d79

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation