2456336 – (CVE-2026-32282) CVE-2026-32282 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

Bug 2456336 (CVE-2026-32282) - CVE-2026-32282 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

Summary: CVE-2026-32282 golang: internal/syscall/unix: Root.Chmod can follow symlinks ...

Keywords:
Status:	NEW
Alias:	CVE-2026-32282
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2456942
Blocks:
TreeView+	depends on / blocked

Reported:	2026-04-08 02:01 UTC by OSIDB Bzimport
Modified:	2026-05-06 21:10 UTC (History)
CC List:	157 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2026:10217	None	None	None	2026-04-23 21:35:57 UTC
Red Hat Product Errata	RHSA-2026:10219	None	None	None	2026-04-24 02:33:44 UTC
Red Hat Product Errata	RHSA-2026:10704	None	None	None	2026-04-27 02:09:39 UTC
Red Hat Product Errata	RHSA-2026:11507	None	None	None	2026-04-29 07:28:14 UTC
Red Hat Product Errata	RHSA-2026:11514	None	None	None	2026-04-29 08:02:08 UTC
Red Hat Product Errata	RHSA-2026:11704	None	None	None	2026-04-29 13:03:40 UTC
Red Hat Product Errata	RHSA-2026:11711	None	None	None	2026-04-29 13:27:15 UTC
Red Hat Product Errata	RHSA-2026:11712	None	None	None	2026-04-29 13:09:49 UTC
Red Hat Product Errata	RHSA-2026:11863	None	None	None	2026-04-29 17:50:41 UTC
Red Hat Product Errata	RHSA-2026:14200	None	None	None	2026-05-06 15:29:47 UTC
Red Hat Product Errata	RHSA-2026:14391	None	None	None	2026-05-06 21:10:24 UTC

Description OSIDB Bzimport 2026-04-08 02:01:35 UTC

On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target of the symlink, even when the target lies outside the root. The Linux fchmodat syscall silently ignores the AT_SYMLINK_NOFOLLOW flag, which Root.Chmod uses to avoid symlink traversal. Root.Chmod checks its target before acting and returns an error if the target is a symlink lying outside the root, so the impact is limited to cases where the target is replaced with a symlink between the check and operation.

Comment 5 errata-xmlrpc 2026-04-23 21:35:48 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:10217 https://access.redhat.com/errata/RHSA-2026:10217

Comment 6 errata-xmlrpc 2026-04-24 02:33:37 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:10219 https://access.redhat.com/errata/RHSA-2026:10219

Comment 7 errata-xmlrpc 2026-04-27 02:09:30 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2026:10704 https://access.redhat.com/errata/RHSA-2026:10704

Comment 8 errata-xmlrpc 2026-04-29 07:28:06 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2026:11507 https://access.redhat.com/errata/RHSA-2026:11507

Comment 9 errata-xmlrpc 2026-04-29 08:02:00 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2026:11514 https://access.redhat.com/errata/RHSA-2026:11514

Comment 10 errata-xmlrpc 2026-04-29 13:03:31 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:11704 https://access.redhat.com/errata/RHSA-2026:11704

Comment 11 errata-xmlrpc 2026-04-29 13:09:41 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:11712 https://access.redhat.com/errata/RHSA-2026:11712

Comment 12 errata-xmlrpc 2026-04-29 13:27:07 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:11711 https://access.redhat.com/errata/RHSA-2026:11711

Comment 13 errata-xmlrpc 2026-04-29 17:50:31 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:11863 https://access.redhat.com/errata/RHSA-2026:11863

Comment 17 errata-xmlrpc 2026-05-06 15:29:35 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:14200 https://access.redhat.com/errata/RHSA-2026:14200

Comment 18 errata-xmlrpc 2026-05-06 21:10:12 UTC

This issue has been addressed in the following products:

  Cryostat 4 on RHEL 9

Via RHSA-2026:14391 https://access.redhat.com/errata/RHSA-2026:14391

Note You need to log in before you can comment on or make changes to this bug.

aazores
abarbaro
abrianik
akostadi
akoudelk
alcohan
alebedev
alizardo
amasferr
amctagga
anjoseph
anpicker
ansmith
anthomas
aoconnor
asatyam
ataylor
bbrownin
bdettelb
bniver
bparees
chfoley
ckandaga
cmah
crizzo
csutherl
dbruscin
dhanak
diagrawa
dmayorov
doconnor
drosa
dschmidt
dsimansk
dsoumis
dymurray
eaguilar
ebaron
eborisov
eglynn
ehelms
erezende
ewittman
fdeutsch
flucifre
ggainey
ggrzybek
gmeno
gparvin
groman
hasun
ibolton
janstey
jbalunas
jburrell
jcantril
jchui
jclere
jeder
jfula
jhe
jjoyce
jkoehler
jlanda
jlledo
jmatthew
jmontleo
jolong
jowilson
jprabhak
jpretori
jraez
jschluet
juwatts
kingland
kshier
ktsao
kvanderr
kverlaen
lball
lbragsta
lchilton
lgamliel
lhh
lphiri
manissin
mbenjamin
mbocek
mburns
mgarciac
mhackett
mhulan
mnovotny
mrunge
mwringe
nboldt
ngough
nipatil
nmoumoul
nyancey
oaljalju
ometelka
oramraz
osousa
pahickey
pantinor
parichar
pcreech
peholase
pgaikwad
pjindal
plodge
psrna
ptisnovs
pvasanth
rchan
rfreiman
rgodfrey
rhaigner
rhel-process-autobot
rjohnson
rkubis
rmaucher
rojacob
sabiswas
sakbas
sausingh
sdawley
sfeifer
simaishi
slucidi
smallamp
smcdonal
smullick
sostapov
sseago
stcannon
stirabos
swoodman
syedriko
szappis
tasato
teagle
thason
tmalecek
tsedmik
tzivkovi
vereddy
veshanka
vimartin
vkarehfa
watson-tool-maintainers
wenshen
whayutin
wtam
xdharmai
yguenane