RHSA-2025:14396HighCVSS 8.3
Red Hat Security Advisory: OpenShift Container Platform 4.15.57 bug fix and security update
🔗 CVE IDs covered (5)
📋 Description
CVE-2025-6021 — libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2 CVE-2025-7425 — libxslt: libxml2: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr CVE-2025-48060 — jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt) CVE-2025-48384 — git: Git arbitrary code execution CVE-2025-48385 — git: Git arbitrary file writes
🔗 References (8)
- selfhttps://access.redhat.com/errata/RHSA-2025:14396
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2367842
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2372406
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2378806
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2378808
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2379274
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14396.json