Cockpit updates for RHEL

Red Hat 9386 Published by

Security updates for cockpit are now available to address a serious flaw affecting Red Hat Enterprise Linux versions nine through ten. Attackers could potentially execute remote code without authentication by exploiting an injection vulnerability within SSH command line arguments. Red Hat Product Security has officially rated this issue as critical because of the high risk it poses to system integrity.

RHSA-2026:7382: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection
RHSA-2026:7384: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection
RHSA-2026:7383: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection
RHSA-2026:7381: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection




RHSA-2026:7382: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection


An update for cockpit is now available for Red Hat Enterprise Linux 9.6 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of
Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.


RHSA-2026:7382: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection



RHSA-2026:7384: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection


An update for cockpit is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of
Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.


RHSA-2026:7384: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection



RHSA-2026:7383: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection


An update for cockpit is now available for Red Hat Enterprise Linux 10.

Red Hat Product Security has rated this update as having a security impact of
Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.


RHSA-2026:7383: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection



RHSA-2026:7381: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection


An update for cockpit is now available for Red Hat Enterprise Linux 10.

Red Hat Product Security has rated this update as having a security impact of
Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.


RHSA-2026:7381: Critical: cockpit: Unauthenticated remote code execution due to SSH command-line argument injection


Libyaml-Syck-Perl, Firefox, Chromium updates for Debian

GIT-LFS, LibTIFF, Grafana updates for Rocky Linux

Windows

Linux

macOS

Community

  • Lexonight
    Hey everyone,Wanted to share a project I've been b ...
  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...