RHEL 9 : Red Hat Edge Manager Version 1.0.3 Security Update (Important) (RHSA-2026:36796)

high Nessus Plugin ID 325733

Synopsis

The remote Red Hat host is missing one or more security updates.

Description

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:36796 advisory.

Red Hat Edge Manager (RHEM) provides simple, scalable, and security-focused management of edge devices and applications. It supports image-mode RHEL and container workloads that run on Podman/Docker or Kubernetes.

RHEM is now available as a standalone feature, providing greater flexibility for edge deployments. In addition to the standalone version, RHEM continues to be offered as a plugin for the following platforms:

Red Hat Advanced Cluster Management (RHACM): Extends fleet management to edge devices.
Red Hat Ansible Automation Platform (AAP): Integrates edge management with Ansible automation.

This integration enables organizations to optimize the management and orchestration of their fleets of edge devices; whether its thousands of dispersed retail point-of-sale systems or industrial machinery on remote factory floors.

Value for customers and partners:

* This solution not only helps customers manage thousands of devices but helps scale operations.
* To manage large-scale deployments, customers need to be able to integrate with their existing management systems, support remote configuration and over-the-air updates, and collect telemetry data for advanced analytics.
* Red Hat Edge Manager offers a simple and security-focused lifecycle management, from onboarding to decommissioning of edge devices.

This complete end-to-end solution empowers organizations to gain the most value from the fleets of devices that generate data, all from a centralized location.

Security fixes:

* golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate (CVE-2026-39835)
* golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses (CVE-2026-39830)
* golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters (CVE-2026-39829)
* golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions (CVE-2026-39828)
* golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation (CVE-2026-46595)
* golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions (CVE-2026-39832)
* golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey (CVE-2026-42508)
* golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing (CVE-2026-39821)
* Go net package: Denial of Service via long CNAME response in LookupCNAME (CVE-2026-33811)
* Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)
* Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810)
* Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)
* Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)
* Go crypto/x509: Incorrect enforcement of email constraints (CVE-2026-27137)
* Go net/url: Incorrect parsing of IPv6 host literals (CVE-2026-25679)
* golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)
* github.com/jackc/pgx: Memory-safety vulnerability (CVE-2026-33815)
* github.com/jackc/pgx: Memory-safety vulnerability (CVE-2026-33816)
* gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186)
* Prometheus: Information disclosure of Azure OAuth client secret via config API (CVE-2026-42151)
* Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint (CVE-2026-42154)
* Root.Chmod can follow symlinks out of the root (CVE-2026-32282)
* Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code (CVE-2026-35469)

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected flightctl-agent, flightctl-cli and / or flightctl-selinux packages.

See Also

https://access.redhat.com/errata/RHSA-2026:36796

https://access.redhat.com/security/updates/classification/#important

https://bugzilla.redhat.com/show_bug.cgi?id=2418462

https://bugzilla.redhat.com/show_bug.cgi?id=2445345

https://bugzilla.redhat.com/show_bug.cgi?id=2445356

https://bugzilla.redhat.com/show_bug.cgi?id=2449833

https://bugzilla.redhat.com/show_bug.cgi?id=2455972

https://bugzilla.redhat.com/show_bug.cgi?id=2455975

https://bugzilla.redhat.com/show_bug.cgi?id=2456333

https://bugzilla.redhat.com/show_bug.cgi?id=2456335

https://bugzilla.redhat.com/show_bug.cgi?id=2456336

https://bugzilla.redhat.com/show_bug.cgi?id=2456338

https://bugzilla.redhat.com/show_bug.cgi?id=2456339

https://bugzilla.redhat.com/show_bug.cgi?id=2457729

https://bugzilla.redhat.com/show_bug.cgi?id=2466505

https://bugzilla.redhat.com/show_bug.cgi?id=2466507

https://bugzilla.redhat.com/show_bug.cgi?id=2467822

https://bugzilla.redhat.com/show_bug.cgi?id=2480680

https://bugzilla.redhat.com/show_bug.cgi?id=2480681

https://bugzilla.redhat.com/show_bug.cgi?id=2480684

https://bugzilla.redhat.com/show_bug.cgi?id=2480685

https://bugzilla.redhat.com/show_bug.cgi?id=2480687

https://bugzilla.redhat.com/show_bug.cgi?id=2480688

https://bugzilla.redhat.com/show_bug.cgi?id=2480689

https://bugzilla.redhat.com/show_bug.cgi?id=2480756

http://www.nessus.org/u?6f8cebed

http://www.nessus.org/u?717a8c45

http://www.nessus.org/u?85bc1df2

Plugin Details

Severity: High

ID: 325733

File Name: redhat-RHSA-2026-36796.nasl

Version: 1.1

Type: Local

Agent: unix

Published: 7/9/2026

Updated: 7/9/2026

Supported Sensors: Continuous Assessment, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.3

Percentile: 96.81

Vendor

Vendor Severity: Important

CVSS v2

Risk Factor: High

Base Score: 8.5

Temporal Score: 6.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:P/A:N

CVSS Score Source: CVE-2026-33810

CVSS v3

Risk Factor: High

Base Score: 8.2

Temporal Score: 7.4

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

CVSS v4

Risk Factor: High

Base Score: 8.7

Threat Score: 7.7

Threat Vector: CVSS:4.0/E:P

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

CVSS Score Source: CVE-2026-35469

Vulnerability Information

CPE: cpe:/o:redhat:enterprise_linux:9, p-cpe:/a:redhat:enterprise_linux:flightctl, p-cpe:/a:redhat:enterprise_linux:flightctl-agent, p-cpe:/a:redhat:enterprise_linux:flightctl-selinux, p-cpe:/a:redhat:enterprise_linux:flightctl-cli

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 7/8/2026

Vulnerability Publication Date: 12/2/2025

Reference Information

CVE: CVE-2025-61729, CVE-2026-25679, CVE-2026-27137, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-33186, CVE-2026-33810, CVE-2026-33811, CVE-2026-33815, CVE-2026-33816, CVE-2026-35469, CVE-2026-39821, CVE-2026-39828, CVE-2026-39829, CVE-2026-39830, CVE-2026-39832, CVE-2026-39835, CVE-2026-42151, CVE-2026-42154, CVE-2026-42508, CVE-2026-46595