RHSA-2026:33612MediumCVSS 5.3
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.10.1 release
🔗 CVE IDs covered (2)
📋 Description
CVE-2025-5278 — coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification CVE-2026-42507 — net/textproto: golang: Golang net/textproto: Misleading error messages via input injection
🔗 References (6)
- selfhttps://access.redhat.com/errata/RHSA-2026:33612
- externalhttps://access.redhat.com/security/cve/CVE-2025-5278
- externalhttps://access.redhat.com/security/cve/CVE-2026-42507
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/distributed_tracing/distributed-tracing-platform-tempo
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_33612.json