VDB
RHSA-2026%3A8873
RHSA-2026%3A8873
PUBLISHED
CVSS 7.5 HIGH
An update for libarchive is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| bsdcpio | ||
| bsdcat | ||
| libarchive | ||
| bsdtar | ||
| Red Hat Enterprise Linux BaseOS EUS (v.9.4) | ||
| Red Hat Enterprise Linux AppStream EUS (v.9.4) | ||
| Red Hat CodeReady Linux Builder EUS (v.9.4) |
Timeline
- Apr 20, 2026 CVE Published
- Apr 24, 2026 Distribution Patch
- Apr 24, 2026 Distribution Patch
- Apr 24, 2026 Security Advisory
- Apr 24, 2026 Security Advisory
- Apr 24, 2026 Security Advisory
- Jun 25, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2026:8873 advisory
- https://access.redhat.com/security/updates/classification/#important url
- https://bugzilla.redhat.com/show_bug.cgi?id=2449006 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2452945 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_8873.json advisory