What is RHSA-2025:3297?

RHSA-2025:3297 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: OpenShift Container Platform 4.17.23 bug fix and security update

Which CVE IDs does RHSA-2025:3297 cover?

RHSA-2025:3297 covers the following CVE IDs: CVE-2025-24928, CVE-2024-8676, CVE-2025-0624. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHSA-2025:3297?

RHSA-2025:3297 has a CVSS v3 base score of 7.8, published by Red Hat Product Security.

RHSA-2025:3297HighCVSS 7.8

Red Hat Security Advisory: OpenShift Container Platform 4.17.23 bug fix and security update

Vendor

Red Hat Product Security

Published

April 3, 2025

Last Modified

June 2, 2026

🔗 CVE IDs covered (3)

CVE-2025-24928 →CVE-2024-8676 →CVE-2025-0624 →

📋 Description

CVE-2024-8676 — cri-o: Checkpoint restore can be triggered from different namespaces CVE-2025-0624 — grub2: net: Out-of-bounds write in grub_net_search_config_file() CVE-2025-24928 — libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2

🔗 References (14)

selfhttps://access.redhat.com/errata/RHSA-2025:3297
externalhttps://access.redhat.com/security/updates/classification/#important
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2313842
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2346112
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2346421
externalhttps://issues.redhat.com/browse/OCPBUGS-48439
externalhttps://issues.redhat.com/browse/OCPBUGS-49816
externalhttps://issues.redhat.com/browse/OCPBUGS-51117
externalhttps://issues.redhat.com/browse/OCPBUGS-52961
externalhttps://issues.redhat.com/browse/OCPBUGS-53071
externalhttps://issues.redhat.com/browse/OCPBUGS-53086
externalhttps://issues.redhat.com/browse/OCPBUGS-53283
externalhttps://issues.redhat.com/browse/OCPBUGS-53441
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3297.json