ALAS2023-2026-1799

Amazon Linux 2023 Security Advisory: ALAS2023-2026-1799
Advisory Released Date: 2026-06-08
Advisory Updated Date: 2026-06-08

Severity: Important

References: CVE-2026-48715
FAQs regarding Amazon Linux ALAS/CVE Severity

Issue Overview:

Stack Buffer Overflow in radvdump Route Information Option Parser

NOTE: https://github.com/radvd-project/radvd/security/advisories/GHSA-52px-gh9p-m379 (CVE-2026-48715)

Affected Packages:

radvd

Issue Correction:
Run dnf update radvd --releasever 2023.12.20260608 or dnf update --advisory ALAS2023-2026-1799 --releasever 2023.12.20260608 to update your system.
More information on how to update your system can be found on this page: Amazon Linux 2023 documentation

New Packages:

aarch64:
    radvd-debugsource-2.19-2.amzn2023.0.3.aarch64
    radvd-2.19-2.amzn2023.0.3.aarch64
    radvd-debuginfo-2.19-2.amzn2023.0.3.aarch64

src:
    radvd-2.19-2.amzn2023.0.3.src

x86_64:
    radvd-debugsource-2.19-2.amzn2023.0.3.x86_64
    radvd-debuginfo-2.19-2.amzn2023.0.3.x86_64
    radvd-2.19-2.amzn2023.0.3.x86_64

Additional References

Release Notes: Amazon Linux 2023 Release Notes

Red Hat: CVE-2026-48715

Mitre: CVE-2026-48715