RHSA-2025:10295HighCVSS 8.3
Red Hat Security Advisory: OpenShift Container Platform 4.17.35 packages and security update
🔗 CVE IDs covered (2)
📋 Description
CVE-2025-6032 — podman: podman missing TLS verification CVE-2025-22871 — net/http: Request smuggling due to acceptance of invalid chunked data in net/http
🔗 References (5)
- selfhttps://access.redhat.com/errata/RHSA-2025:10295
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2358493
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2372501
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_10295.json