Red Hat Security Advisory: Red Hat AI Inference Server 3.2.2 (ROCm)

CVE-2023-48022 — ray: Ray Job Submission Arbitrary Code Execution CVE-2023-52355 — libtiff: TIFFRasterScanlineSize64 produce too-big size and could cause OOM CVE-2023-52356 — libtiff: Segment fault in libtiff in TIFFReadRGBATileExt() leading to denial of service CVE-2024-56433 — shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise CVE-2025-5318 — libssh: out-of-bounds read in sftp_handle() CVE-2025-6242 — vllm: Server Side request forgery (SSRF) in MediaConnector CVE-2025-6965 — sqlite: Integer Truncation in SQLite CVE-2025-8176 — libtiff: LibTIFF Use-After-Free Vulnerability CVE-2025-9230 — openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap CVE-2025-9900 — libtiff: Libtiff Write-What-Where CVE-2025-22868 — golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws CVE-2025-22869 — golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh CVE-2025-52565 — runc: container escape with malicious config due to /dev/console mount and related races CVE-2025-53905 — vim: Vim path traversial CVE-2025-53906 — vim: Vim path traversal CVE-2025-59375 — firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing CVE-2025-59425 — vllm: Timing Attack in vLLM API Token Verification Leading to Authentication Bypass CVE-2025-62593 — ray: Ray is vulnerable to RCE via Safari & Firefox Browsers through DNS Rebinding Attack CVE-2025-62727 — starlette: Starlette DoS via Range header merging CVE-2025-66448 — vllm: vLLM: Remote Code Execution via malicious model configuration