RHSA-2026:39894HighCVSS 8.2
Red Hat Security Advisory: Release of containers for RHOSO 18.0.21
🔗 CVE IDs covered (3)
📋 Description
CVE-2025-52881 — runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects CVE-2026-23490 — pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID CVE-2026-32280 — crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building
🔗 References (7)
- selfhttps://access.redhat.com/errata/RHSA-2026:39894
- externalhttps://access.redhat.com/security/cve/CVE-2025-52881
- externalhttps://access.redhat.com/security/cve/CVE-2026-23490
- externalhttps://access.redhat.com/security/cve/CVE-2026-32280
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://catalog.redhat.com/software/containers/search
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_39894.json