RHSA-2026:17456HighCVSS 7.5
Red Hat Security Advisory: zero trust workload identity manager for Red Hat OpenShift 1.0.1
🔗 CVE IDs covered (1)
📋 Description
CVE-2026-21441 — urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)
🔗 References (5)
- selfhttps://access.redhat.com/errata/RHSA-2026:17456
- externalhttps://access.redhat.com/security/cve/CVE-2026-21441
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/security_and_compliance/zero-trust-workload-identity-manager
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_17456.json