Important: Red Hat Security Advisory: brotli security update

🗓️ 09 Feb 2026 02:38:28Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 4 Views

Red Hat updates brotli on RHEL 9.4 EUS for CVE-2025-6176 decompression bomb DoS.

Reporter	Title	Published	Views	Family All 183
IBM Security Bulletins	Security Bulletin: Muliple security vulnerabilities found in IBM CICS TX Standard.	22 Apr 202614:23	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in brotli affects IBM Netezza Appliance	16 Apr 202611:17	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a denial of service in the Base OS image package: Scrapy [CVE-2025-6176]	14 Apr 202615:32	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in brotli affects IBM Netezza Appliance	27 Apr 202613:05	–	ibm
IBM Security Bulletins	Security Bulletin: ELM on Hybrid Cloud vulnerabilities addressed in 2.0.0	20 Apr 202609:57	–	ibm
Huntr	Brotli decompression bomb DoS	14 Jun 202518:41	–	huntr
Tenable Nessus	Alibaba Cloud Linux 3 : 0039: brotli (ALINUX3-SA-2026:0039)	5 Mar 202600:00	–	nessus
Tenable Nessus	AlmaLinux 10 : brotli (ALSA-2026:0845)	21 Jan 202600:00	–	nessus
Tenable Nessus	AlmaLinux 9 : brotli (ALSA-2026:2042)	5 Feb 202600:00	–	nessus
Tenable Nessus	AlmaLinux 8 : brotli (ALSA-2026:2389)	11 Feb 202600:00	–	nessus

Source	Link
access	www.access.redhat.com/security/updates/classification/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

13 Apr 2026 19:35Current

7.1High risk

Vulners AI Score7.1

CVSS 37.5

EPSS0.00036

SSVC

brotli update red hat rhel nine four security issue decompression bomb python scrapy