AlmaLinux OS is an open-source, community-driven Linux operating system that fills the gap left by the discontinuation of the CentOS Linux stable release. AlmaLinux OS is a 1:1 binary compatible fork of RHEL®, guided and built by the community.

Alma Linux

OpenShift Node is a component of Red Hat OpenShift, a Kubernetes-based container platform. It refers to the worker machines in an OpenShift cluster that run containerized applications. OpenShift Nodes are responsible for executing and managing the containers, providing the compute resources necessary for running applications and services within the OpenShift environment.

OpenShift Node

Debian GNU/Linux is a Linux distribution composed of free and open-source software.

Linux Debian

Ubuntu is a Linux distribution based on Debian, mostly composed of free and open-source software. Ubuntu is officially released in three editions: Desktop, Server, and Core for internet of things devices and robots. All the editions can run on the computer alone or in a virtual machine.

Linux Ubuntu

Red Hat Enterprise Linux is a Linux distribution developed by Red Hat for the commercial market.

Linux Red Hat

Oracle Linux is a Linux distribution packaged and freely distributed by Oracle, available partially under the GNU General Public License since late 2006. It is compiled from Red Hat Enterprise Linux source code, replacing Red Hat branding with Oracle's.

Linux Oracle

Echo is a secure, minimal Linux OS built vulnerability-free. It is fully compatible across environments and continuously patched - making it a clean, dependable base layer for modern applications. Echo is used by organizations focused on security and reliability, including those with compliance or FIPS requirements.

Echo

A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-4631	CRITICAL	9.8	Alma Linux	cockpit	No	Yes	Apr 07, 2026
CVE-2026-33116	HIGH	7.5	C#	dotnet-8	No	Yes	Apr 14, 2026
CVE-2026-32203	HIGH	7.5	Visual Studio 2022	aspnetcore-runtime-10.0	No	Yes	Apr 14, 2026
CVE-2026-32178	HIGH	7.5	C#	dotnet8-runtime	No	Yes	Apr 14, 2026
CVE-2026-26171	HIGH	7.5	C#	dotnet-sdk-10.0-source-built-artifacts	No	Yes	Apr 14, 2026

CVE-2026-5121:
Alma Linux vulnerability analysis and mitigation

7.5

Related Alma Linux vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2026-5121: Alma Linux vulnerability analysis and mitigation