RHSA-2025:11487HighCVSS 7.8
Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage
🔗 CVE IDs covered (6)
📋 Description
CVE-2024-53920 — emacs: arbitrary code execution via Lisp macro expansion CVE-2025-3576 — krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions CVE-2025-4802 — glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH CVE-2025-5702 — glibc: Vector register overwrite bug in glibc CVE-2025-6020 — linux-pam: Linux-pam directory Traversal CVE-2025-25724 — libarchive: Buffer Overflow vulnerability in libarchive
🔗 References (10)
- selfhttps://access.redhat.com/errata/RHSA-2025:11487
- externalhttps://access.redhat.com/security/cve/CVE-2024-53920
- externalhttps://access.redhat.com/security/cve/CVE-2025-25724
- externalhttps://access.redhat.com/security/cve/CVE-2025-3576
- externalhttps://access.redhat.com/security/cve/CVE-2025-4802
- externalhttps://access.redhat.com/security/cve/CVE-2025-5702
- externalhttps://access.redhat.com/security/cve/CVE-2025-6020
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://docs.redhat.com/en/documentation/subscription_central/1-latest/#Discovery
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11487.json