RHSA-2025:7326MediumCVSS 5.9
Red Hat Security Advisory: rhc security update
🔗 CVE IDs covered (2)
📋 Description
CVE-2024-45336 — golang: net/http: net/http: sensitive headers incorrectly sent after cross-domain redirect CVE-2025-22866 — crypto/internal/nistec: golang: Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec
🔗 References (8)
- selfhttps://access.redhat.com/errata/RHSA-2025:7326
- externalhttps://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.6_release_notes/index
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2341751
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2344219
- externalhttps://issues.redhat.com/browse/RHEL-53958
- externalhttps://issues.redhat.com/browse/RHEL-59506
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_7326.json