RHSA-2025:15397HighCVSS 9.1
Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update
🔗 CVE IDs covered (6)
📋 Description
CVE-2025-5914 — libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c CVE-2025-5994 — unbound: Unbound Cache poisoning CVE-2025-6032 — podman: podman missing TLS verification CVE-2025-6965 — sqlite: Integer Truncation in SQLite CVE-2025-49794 — libxml: Heap use after free (UAF) leads to Denial of service (DoS) CVE-2025-49796 — libxml: Type confusion leads to Denial of service (DoS)
🔗 References (18)
- selfhttps://access.redhat.com/errata/RHSA-2025:15397
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2370861
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2372373
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2372385
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2372501
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2380149
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2380949
- externalhttps://issues.redhat.com/browse/OCPBUGS-55905
- externalhttps://issues.redhat.com/browse/OCPBUGS-55906
- externalhttps://issues.redhat.com/browse/OCPBUGS-56277
- externalhttps://issues.redhat.com/browse/OCPBUGS-56645
- externalhttps://issues.redhat.com/browse/OCPBUGS-58117
- externalhttps://issues.redhat.com/browse/OCPBUGS-59201
- externalhttps://issues.redhat.com/browse/OCPBUGS-59630
- externalhttps://issues.redhat.com/browse/OCPBUGS-60099
- externalhttps://issues.redhat.com/browse/OCPBUGS-60664
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15397.json