denial of service via malformed HTML-like sequences
Summary
denial of service via malformed HTML-like sequences. Red Hat rates this important (CVSS 8.2). Weakness: CWE-617. Affected package(s): rhdh/rhdh-hub-rhel9:1776784286, python3.12-markdown, rhoai/odh-training-rocm62-torch25-py311-rhel9:1776272253, automation-controller, rhdh/rhdh-hub-rhel9:1777903262, rhoai/odh-training-cuda124-torch25-py311-rhel9:1776243287. Resolved in Red Hat advisory RHSA-2026:13826 — update the affected packages (`sudo dnf update`).
- rhdh/rhdh-hub-rhel9:1776784286
- python3.12-markdown-0:3.8.2-1.el9pc
- rhoai/odh-training-rocm62-torch25-py311-rhel9:1776272253
- automation-controller-0:4.7.11-2.el9ap
- rhdh/rhdh-hub-rhel9:1777903262
- python3.12-markdown-0:3.10.2-1.el9ap
- rhoai/odh-training-cuda124-torch25-py311-rhel9:1776243287
- python3.12-markdown-0:3.10.2-1.el8ap
- python-markdown-0:3.5.1-6.el10_0.1
- python-markdown-0:3.3.4-4.el9_4.2
- python-markdown-0:3.8.2-1.el8pc
- rhoai/odh-modelmesh-runtime-adapter-rhel9:1776768939
Official advisory · high-confidence parse· fetched 5 hours ago·verify at source
- RHSA-2026:13826
Official advisory · high-confidence parse· fetched 5 hours ago·verify at source
Mitigation checklist
- Update the affected package(s) to the fixed version shipped in RHSA-2026:13826 (`sudo dnf update` / `yum update`).
Official advisory · high-confidence parse· fetched 5 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.