PT-2026-25531 · Dnf5 · Dnf5

Published

2026-01-01

Updated

2026-03-26

CVE-2026-3836

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions dnf5 (affected versions not specified)

Description The package manager's D-Bus interface, which runs with root privileges and is always active, is susceptible to a crash when processed with an invalid locale. This issue allows for a denial of service without requiring authentication.

Recommendations Upgrade dnf5 to the latest version.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-3836

RHSA-2026:7349

Affected Products

Dnf5

PT-2026-25531 · Dnf5 · Dnf5

CVE-2026-3836

Related Identifiers

Affected Products

References · 7