RHSA-2025:21913HighCVSS 9.1
Red Hat Security Advisory: OpenShift File Integrity Operator bug fix and enhancement update
🔗 CVE IDs covered (6)
📋 Description
CVE-2025-5914 — libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c CVE-2025-6965 — sqlite: Integer Truncation in SQLite CVE-2025-7425 — libxslt: libxml2: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr CVE-2025-49794 — libxml: Heap use after free (UAF) leads to Denial of service (DoS) CVE-2025-49796 — libxml: Type confusion leads to Denial of service (DoS) CVE-2025-54389 — aide: improper output neutralization enables bypassing
🔗 References (9)
- selfhttps://access.redhat.com/errata/RHSA-2025:21913
- externalhttps://access.redhat.com/security/cve/CVE-2025-49794
- externalhttps://access.redhat.com/security/cve/CVE-2025-49796
- externalhttps://access.redhat.com/security/cve/CVE-2025-54389
- externalhttps://access.redhat.com/security/cve/CVE-2025-5914
- externalhttps://access.redhat.com/security/cve/CVE-2025-6965
- externalhttps://access.redhat.com/security/cve/CVE-2025-7425
- externalhttps://access.redhat.com/security/updates/classification/
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_21913.json