Red Hat Security Advisory: Red Hat AI Inference Server Model Optimization Tools 3.3.5 (CUDA)
🔗 CVE IDs covered (17)
📋 Description
CVE-2025-14926 — transformers: code execution when converting a malicious SEW model checkpoint CVE-2025-14927 — transformers: code execution when converting a malicious SEW-D model checkpoint CVE-2025-14928 — transformers: code execution when converting a malicious HuBERT model checkpoint CVE-2025-14930 — transformers: code execution when processing a malicious GLM4 model file CVE-2026-4775 — libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing CVE-2026-4786 — python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API CVE-2026-4878 — libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() CVE-2026-6100 — python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules CVE-2026-10118 — poppler: Integer overflow in Poppler SplashOutputDev::tilingPatternFill leads to heap buffer overflow via unchecked dimension multiplication CVE-2026-34588 — OpenEXR: OpenEXR: Arbitrary code execution and information disclosure via crafted EXR file CVE-2026-34982 — vim: arbitrary command execution via modeline sandbox bypass CVE-2026-35385 — OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode CVE-2026-37555 — libsndfile: integer overflow in ima_reader_init() CVE-2026-39979 — jq: out-of-bounds read in jv_parse_sized() on error formatting for non-NUL-terminated buffers CVE-2026-40164 — jq: jq: Denial of Service via crafted JSON object causing hash collisions CVE-2026-44431 — urllib3: urllib3: Information disclosure via cross-origin redirects forwarding sensitive headers CVE-2026-44432 — urllib3: urllib3: Denial of Service due to excessive HTTP response decompression
🔗 References (21)
- selfhttps://access.redhat.com/errata/RHSA-2026:30078
- externalhttps://access.redhat.com/security/cve/CVE-2025-14926
- externalhttps://access.redhat.com/security/cve/CVE-2025-14927
- externalhttps://access.redhat.com/security/cve/CVE-2025-14928
- externalhttps://access.redhat.com/security/cve/CVE-2025-14930
- externalhttps://access.redhat.com/security/cve/CVE-2026-10118
- externalhttps://access.redhat.com/security/cve/CVE-2026-34588
- externalhttps://access.redhat.com/security/cve/CVE-2026-34982
- externalhttps://access.redhat.com/security/cve/CVE-2026-35385
- externalhttps://access.redhat.com/security/cve/CVE-2026-37555
- externalhttps://access.redhat.com/security/cve/CVE-2026-39979
- externalhttps://access.redhat.com/security/cve/CVE-2026-40164
- externalhttps://access.redhat.com/security/cve/CVE-2026-44431
- externalhttps://access.redhat.com/security/cve/CVE-2026-44432
- externalhttps://access.redhat.com/security/cve/CVE-2026-4775
- externalhttps://access.redhat.com/security/cve/CVE-2026-4786
- externalhttps://access.redhat.com/security/cve/CVE-2026-4878
- externalhttps://access.redhat.com/security/cve/CVE-2026-6100
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://www.redhat.com/en/products/ai/inference-server
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_30078.json