[CLSA-2026:1783076363] dracut: Fix of CVE-2026-6893
Type:
security
Severity:
Important
Release date:
2026-07-03 10:59:38 UTC
Description:
- CVE-2026-6893: fix shell command injection via crafted DHCP and iBFT values in network-legacy, net-lib, initqueue, and iscsi modules
CVEs fixed:
Updated packages:
  • dracut-057-21.git20230214.el9.tuxcare.els1.x86_64.rpm
    sha:823749ac3d9c5c4850030990dc96a37bddda72942a11a5a65bf0db4125a9822d
  • dracut-caps-057-21.git20230214.el9.tuxcare.els1.x86_64.rpm
    sha:700bba8b9f164b49689df52c3106a1ca6ab7d82a5440b31883dd687a62658166
  • dracut-config-generic-057-21.git20230214.el9.tuxcare.els1.x86_64.rpm
    sha:06378e944d80d57b24e990366adee567025af449944a8a906edea7c434814723
  • dracut-config-rescue-057-21.git20230214.el9.tuxcare.els1.x86_64.rpm
    sha:194ebdb7d6e9a69b48d292c842f1ca7e675d644c50a936be61c7b8e17f8dd27e
  • dracut-live-057-21.git20230214.el9.tuxcare.els1.x86_64.rpm
    sha:5bdeebd9af224ebcb4b87240b48b436f2eef8260c4bee7d8a850a1548b0d534c
  • dracut-network-057-21.git20230214.el9.tuxcare.els1.x86_64.rpm
    sha:bea8c6ee6d21a0d631aec6b7482173cd1b39ab712365da4985c46d9706ba57b7
  • dracut-squash-057-21.git20230214.el9.tuxcare.els1.x86_64.rpm
    sha:39f41396f59a719e4d7f43eb4417e240390d81f7d7973d00140cf721747337b4
  • dracut-tools-057-21.git20230214.el9.tuxcare.els1.x86_64.rpm
    sha:8e77f3371e6292c19a15afb89b5b1454b4a24792dd16505e5d565c5c4ce38a1e
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.