RHEA-2025:0507MediumCVSS 7.5
Red Hat Enhancement Advisory: Advisory for publishing Helm 3.15.4 GA release
🔗 CVE IDs covered (3)
📋 Description
CVE-2024-24788 — golang: net: malformed DNS message can cause infinite loop CVE-2024-24789 — golang: archive/zip: Incorrect handling of certain ZIP files CVE-2024-24790 — golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses
🔗 References (4)
- selfhttps://access.redhat.com/errata/RHEA-2025:0507
- externalhttps://docs.openshift.com/container-platform/latest/applications/working_with_helm_charts/installing-helm.html
- externalhttps://issues.redhat.com/browse/DPROD-391
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhea-2025_0507.json