RHSA-2026:7666

See a problem?
Please try reporting it to the source first.

Source

https://access.redhat.com/errata/RHSA-2026:7666

Import Source

https://security.access.redhat.com/data/osv/RHSA-2026:7666.json

JSON Data

https://api.osv.dev/v1/vulns/RHSA-2026:7666

Upstream

CVE-2026-27135

Published

2026-04-13T10:07:18Z

Modified

2026-04-16T10:22:27Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

Red Hat Security Advisory: nghttp2 security update

Details

References

Affected packages

Red Hat:enterprise_linux:10.1

libnghttp2

Package

Name: libnghttp2
Purl: pkg:rpm/redhat/libnghttp2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.64.0-2.el10_1.1

Database specific

source

"https://security.access.redhat.com/data/osv/RHSA-2026:7666.json"

libnghttp2-debuginfo

Package

Name: libnghttp2-debuginfo
Purl: pkg:rpm/redhat/libnghttp2-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.64.0-2.el10_1.1

Database specific

source

"https://security.access.redhat.com/data/osv/RHSA-2026:7666.json"

libnghttp2-devel

Package

Name: libnghttp2-devel
Purl: pkg:rpm/redhat/libnghttp2-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.64.0-2.el10_1.1

Database specific

source

"https://security.access.redhat.com/data/osv/RHSA-2026:7666.json"

nghttp2

Package

Name: nghttp2
Purl: pkg:rpm/redhat/nghttp2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.64.0-2.el10_1.1

Database specific

source

"https://security.access.redhat.com/data/osv/RHSA-2026:7666.json"

nghttp2-debuginfo

Package

Name: nghttp2-debuginfo
Purl: pkg:rpm/redhat/nghttp2-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.64.0-2.el10_1.1

Database specific

source

"https://security.access.redhat.com/data/osv/RHSA-2026:7666.json"

nghttp2-debugsource

Package

Name: nghttp2-debugsource
Purl: pkg:rpm/redhat/nghttp2-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.64.0-2.el10_1.1

Database specific

source

"https://security.access.redhat.com/data/osv/RHSA-2026:7666.json"