RHSA-2025:1931MediumCVSS 6.8
Red Hat Security Advisory: Red Hat Developer Hub 1.4.2 release.
🔗 CVE IDs covered (2)
📋 Description
CVE-2024-30261 — nodejs-undici: fetch() with integrity option is too lax when algorithm is specified but hash value is in incorrect CVE-2025-22150 — undici: Undici Uses Insufficiently Random Values
🔗 References (8)
- selfhttps://access.redhat.com/errata/RHSA-2025:1931
- externalhttps://access.redhat.com/security/cve/CVE-2025-22150
- externalhttps://access.redhat.com/security/cve/CVE-2024-30261
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://catalog.redhat.com/search?gs&searchType=containers&q=rhdh
- externalhttps://developers.redhat.com/rhdh/overview
- externalhttps://docs.redhat.com/en/documentation/red_hat_developer_hub
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_1931.json