Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage

CVE-2024-5642 — python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used CVE-2025-4598 — systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump CVE-2025-6069 — cpython: Python HTMLParser quadratic complexity CVE-2025-6075 — python: Quadratic complexity in os.path.expandvars() with user-controlled template CVE-2025-8291 — cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked CVE-2025-9714 — libxslt: libxml2: Inifinite recursion at exsltDynMapFunction function in libexslt/dynamic.c CVE-2025-12816 — node-forge: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications CVE-2025-15284 — qs: qs: Denial of Service via improper input validation in array parsing CVE-2025-45582 — tar: Tar path traversal CVE-2025-59375 — firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing CVE-2025-59682 — django: Potential partial directory-traversal via archive.extract() CVE-2025-61984 — openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand CVE-2025-61985 — openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand CVE-2025-64460 — Django: Django: Algorithmic complexity in XML Deserializer leads to denial of service CVE-2025-64720 — libpng: LIBPNG buffer overflow CVE-2025-64756 — glob: glob: Command Injection Vulnerability via Malicious Filenames CVE-2025-65018 — libpng: LIBPNG heap buffer overflow CVE-2025-66031 — node-forge: node-forge ASN.1 Unbounded Recursion CVE-2025-66293 — libpng: LIBPNG out-of-bounds read in png_image_read_composite CVE-2025-66418 — urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion