What is RHSA-2026:10097?

RHSA-2026:10097 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: OpenShift Container Platform 4.16.60 bug fix and security update

Which CVE IDs does RHSA-2026:10097 cover?

RHSA-2026:10097 covers the following CVE IDs: CVE-2025-61662, CVE-2026-4424, CVE-2026-25749, CVE-2026-28417, CVE-2026-28421, CVE-2026-33412, CVE-2026-4111, CVE-2026-5121, CVE-2026-25646. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHSA-2026:10097?

RHSA-2026:10097 has a CVSS v3 base score of 7.8, published by Red Hat Product Security.

RHSA-2026:10097HighCVSS 7.8

Red Hat Security Advisory: OpenShift Container Platform 4.16.60 bug fix and security update

Vendor

Red Hat Product Security

Published

April 30, 2026

Last Modified

May 29, 2026

🔗 CVE IDs covered (9)

CVE-2025-61662 →CVE-2026-4424 →CVE-2026-25749 →CVE-2026-28417 →CVE-2026-28421 →CVE-2026-33412 · pendingCVE-2026-4111 →CVE-2026-5121 →CVE-2026-25646 →

📋 Description

CVE-2025-61662 — grub2: Missing unregister call for gettext command may lead to use-after-free CVE-2026-4111 — libarchive: Infinite Loop Denial of Service in RAR5 Decompression via archive_read_data() in libarchive CVE-2026-4424 — libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing CVE-2026-5121 — libarchive: libarchive: Arbitrary code execution via integer overflow in ISO9660 image processing CVE-2026-25646 — libpng: LIBPNG has a heap buffer overflow in png_set_quantize CVE-2026-25749 — vim: Vim: Arbitrary code execution via 'helpfile' option processing CVE-2026-28417 — vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin CVE-2026-28421 — vim: Vim: Denial of service and information disclosure via crafted swap file CVE-2026-33412 — vim: Vim: Arbitrary code execution via command injection in glob() function

🔗 CVE IDs covered (9)

📋 Description

🔗 References (12)