Red Hat Security Advisory: Red Hat Ceph Storage

CVE-2025-9820 — gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function CVE-2025-12801 — nfs-utils: rpc.mountd in the nfs-utils privilege escalation CVE-2025-14831 — gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification CVE-2025-15281 — glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory CVE-2025-15366 — cpython: IMAP command injection in user-controlled commands CVE-2025-15367 — cpython: POP3 command injection in user-controlled commands CVE-2026-0861 — glibc: Integer overflow in memalign leads to heap corruption CVE-2026-0865 — cpython: wsgiref.headers.Headers allows header newline injection in Python CVE-2026-0915 — glibc: glibc: Information disclosure via zero-valued network query CVE-2026-1299 — cpython: email header injection due to unquoted newlines CVE-2026-22695 — libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read CVE-2026-22801 — libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API CVE-2026-23490 — pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID CVE-2026-25646 — libpng: LIBPNG has a heap buffer overflow in png_set_quantize