Red Hat Security Advisory: cert-manager Operator for Red Hat OpenShift 1.16.0
🔗 CVE IDs covered (10)
📋 Description
CVE-2024-12718 — cpython: python: Bypass extraction filter to modify file metadata outside extraction directory CVE-2025-4138 — cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory CVE-2025-4517 — python: cpython: Arbitrary writes via tarfile realpath overflow CVE-2025-5914 — libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c CVE-2025-6020 — linux-pam: Linux-pam directory Traversal CVE-2025-6965 — sqlite: Integer Truncation in SQLite CVE-2025-7425 — libxslt: libxml2: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr CVE-2025-8941 — linux-pam: Incomplete fix for CVE-2025-6020 CVE-2025-49794 — libxml: Heap use after free (UAF) leads to Denial of service (DoS) CVE-2025-49796 — libxml: Type confusion leads to Denial of service (DoS)
🔗 References (14)
- selfhttps://access.redhat.com/errata/RHSA-2025:18219
- externalhttps://access.redhat.com/security/cve/CVE-2024-12718
- externalhttps://access.redhat.com/security/cve/CVE-2025-4138
- externalhttps://access.redhat.com/security/cve/CVE-2025-4517
- externalhttps://access.redhat.com/security/cve/CVE-2025-49794
- externalhttps://access.redhat.com/security/cve/CVE-2025-49796
- externalhttps://access.redhat.com/security/cve/CVE-2025-5914
- externalhttps://access.redhat.com/security/cve/CVE-2025-6020
- externalhttps://access.redhat.com/security/cve/CVE-2025-6965
- externalhttps://access.redhat.com/security/cve/CVE-2025-7425
- externalhttps://access.redhat.com/security/cve/CVE-2025-8941
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_18219.json