RHSA-2026:6492HighCVSS 8.2
Red Hat Security Advisory: OpenShift Container Platform 4.12.87 bug fix and security update
🔗 CVE IDs covered (3)
📋 Description
CVE-2025-31133 — runc: container escape via 'masked path' abuse due to mount race conditions CVE-2025-52565 — runc: container escape with malicious config due to /dev/console mount and related races CVE-2025-61662 — grub2: Missing unregister call for gettext command may lead to use-after-free
🔗 References (6)
- selfhttps://access.redhat.com/errata/RHSA-2026:6492
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2404705
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2404708
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2414683
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6492.json