Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.
7.5

Red Hat osbuild-composer Security Update - Potential Data Exposure

RHSA-2026:2686
Summary

A security update is available for osbuild-composer, a tool used in Red Hat's build process. If left unpatched, a potential security issue could allow unauthorized access to sensitive data. Update your osbuild-composer installation as soon as possible to ensure you have the latest security fixes.

What to do
  • Update redhat osbuild-composer to version 0:46.3-6.el9_0.
  • Update redhat osbuild-composer-core to version 0:46.3-6.el9_0.
  • Update redhat osbuild-composer-core-debuginfo to version 0:46.3-6.el9_0.
  • Update redhat osbuild-composer-debugsource to version 0:46.3-6.el9_0.
  • Update redhat osbuild-composer-dnf-json to version 0:46.3-6.el9_0.
  • Update redhat osbuild-composer-tests-debuginfo to version 0:46.3-6.el9_0.
  • Update redhat osbuild-composer-worker to version 0:46.3-6.el9_0.
  • Update redhat osbuild-composer-worker-debuginfo to version 0:46.3-6.el9_0.
Affected software
VendorProductAffected versionsFix available
redhat osbuild-composer <= 0:46.3-6.el9_0 0:46.3-6.el9_0
redhat osbuild-composer-core <= 0:46.3-6.el9_0 0:46.3-6.el9_0
redhat osbuild-composer-core-debuginfo <= 0:46.3-6.el9_0 0:46.3-6.el9_0
redhat osbuild-composer-debugsource <= 0:46.3-6.el9_0 0:46.3-6.el9_0
redhat osbuild-composer-dnf-json <= 0:46.3-6.el9_0 0:46.3-6.el9_0
redhat osbuild-composer-tests-debuginfo <= 0:46.3-6.el9_0 0:46.3-6.el9_0
redhat osbuild-composer-worker <= 0:46.3-6.el9_0 0:46.3-6.el9_0
redhat osbuild-composer-worker-debuginfo <= 0:46.3-6.el9_0 0:46.3-6.el9_0
Published: 13 Feb 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026