Red Hat Security Advisory: Red Hat AI Inference Server 3.2.2 (CUDA)
🔗 CVE IDs covered (9)
📋 Description
CVE-2023-40403 — libxslt: Processing web content may disclose sensitive information CVE-2023-52356 — libtiff: Segment fault in libtiff in TIFFReadRGBATileExt() leading to denial of service CVE-2025-14831 — gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification CVE-2026-4111 — libarchive: Infinite Loop Denial of Service in RAR5 Decompression via archive_read_data() in libarchive CVE-2026-4519 — python: Python: Command-line option injection in webbrowser.open() via crafted URLs CVE-2026-25749 — vim: Vim: Arbitrary code execution via 'helpfile' option processing CVE-2026-28417 — vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin CVE-2026-28421 — vim: Vim: Denial of service and information disclosure via crafted swap file CVE-2026-33412 — vim: Vim: Arbitrary code execution via command injection in glob() function
🔗 References (13)
- selfhttps://access.redhat.com/errata/RHSA-2026:7335
- externalhttps://access.redhat.com/security/cve/CVE-2023-40403
- externalhttps://access.redhat.com/security/cve/CVE-2023-52356
- externalhttps://access.redhat.com/security/cve/CVE-2025-14831
- externalhttps://access.redhat.com/security/cve/CVE-2026-25749
- externalhttps://access.redhat.com/security/cve/CVE-2026-28417
- externalhttps://access.redhat.com/security/cve/CVE-2026-28421
- externalhttps://access.redhat.com/security/cve/CVE-2026-33412
- externalhttps://access.redhat.com/security/cve/CVE-2026-4111
- externalhttps://access.redhat.com/security/cve/CVE-2026-4519
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://www.redhat.com/en/products/ai/inference-server
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_7335.json