Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.22.0 security, enhancement & bug fix update
🔗 CVE IDs covered (51)
📋 Description
CVE-2024-25621 — github.com/containerd/containerd: containerd local privilege escalation CVE-2024-40635 — containerd: containerd has an integer overflow in User ID handling CVE-2024-45310 — runc: runc can be tricked into creating empty files/directories on host CVE-2025-8766 — noobaa-core: Excessive permissions of /etc could lead to escalation of privilege in the noobaa-core container CVE-2025-21613 — go-git: argument injection via the URL field CVE-2025-21614 — go-git: go-git clients vulnerable to DoS via maliciously crafted Git server replies CVE-2025-22870 — golang.org/x/net/proxy: golang.org/x/net/http/httpproxy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net CVE-2025-47911 — golang.org/x/net/html: Quadratic parsing complexity in golang.org/x/net/html CVE-2025-52881 — runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects CVE-2025-54410 — github.com/moby/moby: Moby's Firewalld reload removes bridge network isolation CVE-2025-58058 — github.com/ulikunitz/xz: github.com/ulikunitz/xz leaks memory CVE-2025-64329 — github.com/containerd/containerd: containerd: Memory exhaustion via CRI Attach implementation goroutine leaks CVE-2025-66506 — github.com/sigstore/fulcio: Fulcio: Denial of Service via crafted OpenID Connect (OIDC) token CVE-2026-22772 — fulcio: Fulcio: Server-Side Request Forgery (SSRF) via unanchored regex in MetaIssuer URL validation CVE-2026-23831 — github.com/sigstore/rekor: Rekor denial of service CVE-2026-24117 — github.com/sigstore/rekor: Rekor Server-Side Request Forgery (SSRF) CVE-2026-25680 — golang.org/x/net/html: golang.org/x/net/html: Denial of Service due to excessive HTML parsing CVE-2026-25681 — golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting CVE-2026-25934 — go-git/go-git: go-git: Data integrity issue due to improper verification of pack and index files CVE-2026-27136 — golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via HTML parsing bypass CVE-2026-27141 — golang.org/x/net/http2: golang.org/x/net/http2: Denial of Service due to malformed HTTP/2 frames CVE-2026-27903 — minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns CVE-2026-33540 — github.com/distribution/distribution: Distribution: Information disclosure via improper validation of authentication realm URL CVE-2026-33747 — BuildKit: github.com/moby/buildkit: BuildKit: Arbitrary file write and code execution via untrusted frontend CVE-2026-33748 — github.com/moby/buildkit: BuildKit: Unauthorized file access via Git URL fragment subdir components CVE-2026-33814 — net/http/internal/http2: golang: golang.org/x/net: Go HTTP/2: Denial of Service via malformed SETTINGS_MAX_FRAME_SIZE frame CVE-2026-34986 — github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object CVE-2026-35172 — github.com/distribution/distribution: Distribution: Information disclosure via stale references after content deletion CVE-2026-35469 — Kubelet: CRI-O: kube-apiserver: Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code CVE-2026-39821 — golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39827 — golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via repeated rejected channel openings CVE-2026-39828 — golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions CVE-2026-39829 — golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters CVE-2026-39830 — golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses CVE-2026-39831 — golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Security key bypass due to missing user presence check CVE-2026-39832 — golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions CVE-2026-39833 — golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to unenforced key confirmation CVE-2026-39834 — golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service due to integer overflow in SSH channel write CVE-2026-39835 — golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate CVE-2026-39883 — github.com/open-telemetry/opentelemetry-go: OpenTelemetry-Go: Arbitrary code execution via PATH hijacking on BSD/Solaris CVE-2026-41506 — golang: github.com/go-git/go-git: go-git: Information disclosure of HTTP authentication credentials via redirects CVE-2026-41567 — docker: Moby/Docker Engine: Arbitrary Code Execution via malicious container image and compressed archive upload CVE-2026-41568 — github.com/docker/docker: github.com/moby/moby: Moby: Denial of Service via race condition in docker cp mount setup CVE-2026-42502 — golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via unexpected HTML tree rendering CVE-2026-42506 — golang.org/x/net/html: golang.org/x/net/html: Cross-Site Scripting (XSS) via arbitrary HTML parsing CVE-2026-42508 — golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey CVE-2026-44740 — github.com/go-git/go-billy: Billy: Denial of Service via crafted input due to insufficient validation CVE-2026-45571 — github.com/go-git/go-git: go-git: Path validation flaw allows unauthorized file access CVE-2026-46595 — golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation CVE-2026-46597 — golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted AES-GCM packet decoder inputs CVE-2026-46598 — golang.org/x/crypto/ssh/agent: golang: golang.org/x/crypto/ssh/agent: Denial of Service via malformed input
🔗 References (55)
- selfhttps://access.redhat.com/errata/RHSA-2026:37387
- externalhttps://access.redhat.com/security/cve/CVE-2024-25621
- externalhttps://access.redhat.com/security/cve/CVE-2024-40635
- externalhttps://access.redhat.com/security/cve/CVE-2024-45310
- externalhttps://access.redhat.com/security/cve/CVE-2025-21613
- externalhttps://access.redhat.com/security/cve/CVE-2025-21614
- externalhttps://access.redhat.com/security/cve/CVE-2025-22870
- externalhttps://access.redhat.com/security/cve/CVE-2025-47911
- externalhttps://access.redhat.com/security/cve/CVE-2025-52881
- externalhttps://access.redhat.com/security/cve/CVE-2025-54410
- externalhttps://access.redhat.com/security/cve/CVE-2025-58058
- externalhttps://access.redhat.com/security/cve/CVE-2025-64329
- externalhttps://access.redhat.com/security/cve/CVE-2025-66506
- externalhttps://access.redhat.com/security/cve/CVE-2025-8766
- externalhttps://access.redhat.com/security/cve/CVE-2026-22772
- externalhttps://access.redhat.com/security/cve/CVE-2026-23831
- externalhttps://access.redhat.com/security/cve/CVE-2026-24117
- externalhttps://access.redhat.com/security/cve/CVE-2026-25680
- externalhttps://access.redhat.com/security/cve/CVE-2026-25681
- externalhttps://access.redhat.com/security/cve/CVE-2026-25934
- externalhttps://access.redhat.com/security/cve/CVE-2026-27136
- externalhttps://access.redhat.com/security/cve/CVE-2026-27141
- externalhttps://access.redhat.com/security/cve/CVE-2026-27903
- externalhttps://access.redhat.com/security/cve/CVE-2026-33540
- externalhttps://access.redhat.com/security/cve/CVE-2026-33747
- externalhttps://access.redhat.com/security/cve/CVE-2026-33748
- externalhttps://access.redhat.com/security/cve/CVE-2026-33814
- externalhttps://access.redhat.com/security/cve/CVE-2026-34986
- externalhttps://access.redhat.com/security/cve/CVE-2026-35172
- externalhttps://access.redhat.com/security/cve/CVE-2026-35469
- externalhttps://access.redhat.com/security/cve/CVE-2026-39821
- externalhttps://access.redhat.com/security/cve/CVE-2026-39827
- externalhttps://access.redhat.com/security/cve/CVE-2026-39828
- externalhttps://access.redhat.com/security/cve/CVE-2026-39829
- externalhttps://access.redhat.com/security/cve/CVE-2026-39830
- externalhttps://access.redhat.com/security/cve/CVE-2026-39831
- externalhttps://access.redhat.com/security/cve/CVE-2026-39832
- externalhttps://access.redhat.com/security/cve/CVE-2026-39833
- externalhttps://access.redhat.com/security/cve/CVE-2026-39834
- externalhttps://access.redhat.com/security/cve/CVE-2026-39835
- externalhttps://access.redhat.com/security/cve/CVE-2026-39883
- externalhttps://access.redhat.com/security/cve/CVE-2026-41506
- externalhttps://access.redhat.com/security/cve/CVE-2026-41567
- externalhttps://access.redhat.com/security/cve/CVE-2026-41568
- externalhttps://access.redhat.com/security/cve/CVE-2026-42502
- externalhttps://access.redhat.com/security/cve/CVE-2026-42506
- externalhttps://access.redhat.com/security/cve/CVE-2026-42508
- externalhttps://access.redhat.com/security/cve/CVE-2026-44740
- externalhttps://access.redhat.com/security/cve/CVE-2026-45571
- externalhttps://access.redhat.com/security/cve/CVE-2026-46595
- externalhttps://access.redhat.com/security/cve/CVE-2026-46597
- externalhttps://access.redhat.com/security/cve/CVE-2026-46598
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_37387.json