What is RHSA-2025:0654?

RHSA-2025:0654 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: OpenShift Container Platform 4.17.14 bug fix and security update

Which CVE IDs does RHSA-2025:0654 cover?

RHSA-2025:0654 covers the following CVE IDs: CVE-2023-44270, CVE-2024-24786, CVE-2024-45338, CVE-2024-48910, CVE-2024-55565, CVE-2025-21613, CVE-2025-21614. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHSA-2025:0654?

RHSA-2025:0654 has a CVSS v3 base score of 8.2, published by Red Hat Product Security.

RHSA-2025:0654HighCVSS 8.2

Red Hat Security Advisory: OpenShift Container Platform 4.17.14 bug fix and security update

Vendor

Red Hat Product Security

Published

January 28, 2025

Last Modified

May 26, 2026

🔗 CVE IDs covered (7)

CVE-2023-44270 →CVE-2024-24786 →CVE-2024-45338 →CVE-2024-48910 →CVE-2024-55565 →CVE-2025-21613 · pendingCVE-2025-21614 · pending

📋 Description

CVE-2023-44270 — PostCSS: Improper input validation in PostCSS CVE-2024-24786 — golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON CVE-2024-45338 — golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html CVE-2024-48910 — dompurify: DOMPurify vulnerable to tampering by prototype pollution CVE-2024-55565 — nanoid: nanoid mishandles non-integer values CVE-2025-21613 — go-git: argument injection via the URL field CVE-2025-21614 — go-git: go-git clients vulnerable to DoS via maliciously crafted Git server replies

🔗 References (37)

selfhttps://access.redhat.com/errata/RHSA-2025:0654
externalhttps://access.redhat.com/security/updates/classification/#important
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2268046
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2322949
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2326998
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2331063
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2333122
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2335888
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2335901
externalhttps://issues.redhat.com/browse/OCPBUGS-38810
externalhttps://issues.redhat.com/browse/OCPBUGS-45340
externalhttps://issues.redhat.com/browse/OCPBUGS-45344
externalhttps://issues.redhat.com/browse/OCPBUGS-45813
externalhttps://issues.redhat.com/browse/OCPBUGS-45845
externalhttps://issues.redhat.com/browse/OCPBUGS-46432
externalhttps://issues.redhat.com/browse/OCPBUGS-46512
externalhttps://issues.redhat.com/browse/OCPBUGS-46592
externalhttps://issues.redhat.com/browse/OCPBUGS-47475
externalhttps://issues.redhat.com/browse/OCPBUGS-47754
externalhttps://issues.redhat.com/browse/OCPBUGS-47768
externalhttps://issues.redhat.com/browse/OCPBUGS-47769
externalhttps://issues.redhat.com/browse/OCPBUGS-47770
externalhttps://issues.redhat.com/browse/OCPBUGS-48060
externalhttps://issues.redhat.com/browse/OCPBUGS-48064
externalhttps://issues.redhat.com/browse/OCPBUGS-48069
externalhttps://issues.redhat.com/browse/OCPBUGS-48119
externalhttps://issues.redhat.com/browse/OCPBUGS-48155
externalhttps://issues.redhat.com/browse/OCPBUGS-48161
externalhttps://issues.redhat.com/browse/OCPBUGS-48227
externalhttps://issues.redhat.com/browse/OCPBUGS-48267
externalhttps://issues.redhat.com/browse/OCPBUGS-48359
externalhttps://issues.redhat.com/browse/OCPBUGS-48363
externalhttps://issues.redhat.com/browse/OCPBUGS-48493
externalhttps://issues.redhat.com/browse/OCPBUGS-48537
externalhttps://issues.redhat.com/browse/OCPBUGS-48543
externalhttps://issues.redhat.com/browse/OCPBUGS-48606
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_0654.json