RHSA-2026:28887CriticalCVSS 8.8

Red Hat Security Advisory: OpenShift Container Platform 4.14.68 bug fix and security update

Published
July 1, 2026
Last Modified
July 6, 2026

🔗 CVE IDs covered (10)

📋 Description

CVE-2026-4878 — libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() CVE-2026-35385 — OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode CVE-2026-35535 — sudo: Sudo: Privilege escalation due to failure in privilege drop calls CVE-2026-39979 — jq: out-of-bounds read in jv_parse_sized() on error formatting for non-NUL-terminated buffers CVE-2026-40164 — jq: jq: Denial of Service via crafted JSON object causing hash collisions CVE-2026-41035 — rsync: Rsync: Use-after-free vulnerability in extended attribute handling CVE-2026-43037 — kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err() CVE-2026-46243 — kernel: Linux kernel: smb: client: reject userspace cifs.spnego descriptions CVE-2026-46300 — kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel CVE-2026-46331 — kernel: net/sched: act_pedit: extend the writable skb range per key

🔗 References (13)