RHSA-2025:3301HighCVSS 8.1

Red Hat Security Advisory: OpenShift Container Platform 4.16.38 bug fix and security update

Published
April 3, 2025
Last Modified
June 2, 2026

🔗 CVE IDs covered (9)

CVE-2025-0624CVE-2025-24928CVE-2024-9675CVE-2024-9676CVE-2024-36620CVE-2024-50302CVE-2025-27144CVE-2024-53197CVE-2024-56171

📋 Description

CVE-2024-9675 — buildah: Buildah allows arbitrary directory mount CVE-2024-9676 — Podman: Buildah: CRI-O: symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS) CVE-2024-36620 — github.com/moby/moby: NULL Pointer Dereference in Moby CVE-2024-50302 — kernel: HID: core: zero-initialize the report buffer CVE-2024-53197 — kernel: ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices CVE-2024-56171 — libxml2: Use-After-Free in libxml2 CVE-2025-0624 — grub2: net: Out-of-bounds write in grub_net_search_config_file() CVE-2025-24928 — libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2 CVE-2025-27144 — go-jose: Go JOSE's Parsing Vulnerable to Denial of Service

🔗 References (50)