VDB
ALSA-2026%3A3753
ALSA-2026%3A3753
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Important: osbuild-composer security update
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| AlmaLinux:9 | osbuild-composer-core | 0 |
| AlmaLinux:9 | osbuild-composer-worker | 0 |
| AlmaLinux:9 | osbuild-composer | 0 |
Timeline
- Mar 4, 2026 CVE Published
- Apr 18, 2026 Distribution Patch
- Apr 18, 2026 Distribution Patch
- Apr 18, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2026:3753 advisory
- https://access.redhat.com/security/cve/CVE-2025-61726 report
- https://access.redhat.com/security/cve/CVE-2025-61728 report
- https://access.redhat.com/security/cve/CVE-2025-61729 report
- https://access.redhat.com/security/cve/CVE-2025-68121 report
- https://bugzilla.redhat.com/2418462 report
- https://bugzilla.redhat.com/2434431 report
- https://bugzilla.redhat.com/2434432 report
- https://bugzilla.redhat.com/2437111 report
- https://errata.almalinux.org/9/ALSA-2026-3753.html advisory