SUSE Package Hub - openSUSE-2026-176

Update Info

openSUSE-2026-176

Security update for cockpit

Type: security

Severity: important

Issued: 2026-05-22

Description:

This update for cockpit fixes the following issues:

- CVE-2026-4802: Fixed a remote command execution via unsanitized user-controlled parameters within crafted links in system logs UI (boo#1265040).

References

CVE: CVE-2026-4802
Bugzilla: 1265040 VUL-0: CVE-2026-4802: cockpit: remote command execution via unsanitized user-controlled parameters within crafted links in system logs UI

Packages

cockpit-321-bp157.2.3.2