RHSA-2026:28962CriticalCVSS 8.8
Red Hat Security Advisory: OpenShift Container Platform 4.15.66 bug fix and security update
🔗 CVE IDs covered (4)
📋 Description
CVE-2026-35385 — OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode CVE-2026-43037 — kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err() CVE-2026-46243 — kernel: Linux kernel: smb: client: reject userspace cifs.spnego descriptions CVE-2026-46331 — kernel: net/sched: act_pedit: extend the writable skb range per key
🔗 References (7)
- selfhttps://access.redhat.com/errata/RHSA-2026:28962
- externalhttps://access.redhat.com/security/updates/classification/#critical
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2454469
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2464351
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2479492
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2481486
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_28962.json