ALSA-2026:8492 Important: libarchive security update

🗓️ 16 Apr 2026 00:00:00Reported by GoogleType

osv

osv🔗 osv.dev👁 2 Views

Libarchive security update fixes heap out-of-bounds read in RAR processing (CVE-2026-4424).

Reporter	Title	Published	Views	Family All 149
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to multiple Operator package issues	21 May 202615:57	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Guardium Data Protection is affected by multiple vulnerabilities	20 May 202615:34	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	25 May 202613:53	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container UBI updates	1 Jun 202609:28	–	ibm
ATTACKERKB	CVE-2026-4424	19 Mar 202613:50	–	attackerkb
Tenable Nessus	AlmaLinux 10 : libarchive (ALSA-2026:8492)	21 Apr 202600:00	–	nessus
Tenable Nessus	AlmaLinux 9 : libarchive (ALSA-2026:8510)	17 Apr 202600:00	–	nessus
Tenable Nessus	AlmaLinux 8 : libarchive (ALSA-2026:8534)	20 Apr 202600:00	–	nessus
Tenable Nessus	Debian dla-4563 : libarchive-dev - security update	5 May 202600:00	–	nessus
Tenable Nessus	IBM QRadar SIEM 7.5.x < 7.5.0 UP15 IF03 Multiple Vulnerabilities	4 Jun 202600:00	–	nessus

Source	Link
access	www.access.redhat.com/errata/RHSA-2026:8492
access	www.access.redhat.com/security/cve/CVE-2026-4424
bugzilla	www.bugzilla.redhat.com/2449006
errata	www.errata.almalinux.org/10/ALSA-2026-8492.html

17 Apr 2026 13:18Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.17.5

EPSS0.001

SSVC

libarchive rar processing information disclosure out of bounds security update