Critical9.1Vendor: HighRed Hat & Ubuntu Linux
Arbitrary code execution via improper parameter validation during SST
CVE-2026-48163 Published Jun 12, 2026
CVE-2026-48163
Affected products & platforms
Red Hat & Ubuntu LinuxUnclassified
Summary
Arbitrary code execution via improper parameter validation during SST. Red Hat rates this important (CVSS 9.1). Weakness: CWE-78. Affected package(s): mariadb10.11, mariadb11, galera, mariadb:11.8, mariadb11.8, mariadb:10.11. Resolved in Red Hat advisory RHSA-2026:33093 — update the affected packages (`sudo dnf update`).
Affected versions
- mariadb10.11-3:10.11.18-1.el10_2
- mariadb11-8-main-11.8.8-1.hum1
- galera-0:26.4.27-1.el10_2
- mariadb:11.8-9080020260612104015.rhel9
- mariadb11.8-3:11.8.8-1.el10_2
- mariadb:10.11-8100020260616102001.489197e6
- mariadb:10.11-9080020260612103452.rhel9
- mariadb10-11-main-10.11.18-1.hum1
Official advisory · high-confidence parse· fetched 5 hours ago·verify at source
Fixed versions
- RHSA-2026:33093
Official advisory · high-confidence parse· fetched 5 hours ago·verify at source
Mitigation checklist
Recommended fix / mitigation
- Update the affected package(s) to the fixed version shipped in RHSA-2026:33093 (`sudo dnf update` / `yum update`).
Official advisory · high-confidence parse· fetched 5 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.