Red Hat Security Advisory: RHOAI 3.3 - Red Hat OpenShift AI
🔗 CVE IDs covered (46)
📋 Description
CVE-2024-25621 — github.com/containerd/containerd: containerd local privilege escalation CVE-2025-6242 — vllm: Server Side request forgery (SSRF) in MediaConnector CVE-2025-12638 — keras: Path Traversal Vulnerability in keras CVE-2025-12816 — node-forge: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications CVE-2025-14180 — php: PHP: Denial of Service via invalid character sequence in PDO PostgreSQL prepared statement CVE-2025-14920 — transformers: code execution when processing a malicious Perceiver model file CVE-2025-14921 — transformers: code execution when processing a malicious Transformer-XL model file CVE-2025-14922 — diffusers: Hugging Face Diffusers: Remote Code Execution via Deserialization of Untrusted Data CVE-2025-14924 — transformers: code execution when processing a malicious megatron_gpt2 model file CVE-2025-14925 — accelerate: Hugging Face Accelerate: Remote Code Execution via Deserialization of Untrusted Data CVE-2025-14926 — transformers: code execution when converting a malicious SEW model checkpoint CVE-2025-14927 — transformers: code execution when converting a malicious SEW-D model checkpoint CVE-2025-14928 — transformers: code execution when converting a malicious HuBERT model checkpoint CVE-2025-14929 — transformers: code execution when processing a malicious X-CLIP model file CVE-2025-14930 — transformers: code execution when processing a malicious GLM4 model file CVE-2025-15284 — qs: qs: Denial of Service via improper input validation in array parsing CVE-2025-48956 — vllm: HTTP header size limit not enforced allows Denial of Service from Unauthenticated requests CVE-2025-52881 — runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects CVE-2025-59425 — vllm: Timing Attack in vLLM API Token Verification Leading to Authentication Bypass CVE-2025-61726 — golang: net/url: Memory exhaustion in query parameter parsing in net/url CVE-2025-61729 — crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate CVE-2025-62164 — vllm: VLLM deserialization vulnerability leading to DoS and potential RCE CVE-2025-62593 — ray: Ray is vulnerable to RCE via Safari & Firefox Browsers through DNS Rebinding Attack CVE-2025-64756 — glob: glob: Command Injection Vulnerability via Malicious Filenames CVE-2025-66031 — node-forge: node-forge ASN.1 Unbounded Recursion CVE-2025-66034 — fonttools: fontTools: Arbitrary file write leading to remote code execution via malicious .designspace file CVE-2025-66416 — mcp: DNS Rebinding Protection Disabled by Default in Model Context Protocol Python SDK CVE-2025-66418 — urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion CVE-2025-66448 — vllm: vLLM: Remote Code Execution via malicious model configuration CVE-2025-66471 — urllib3: urllib3 Streaming API improperly handles highly compressed data CVE-2025-66506 — github.com/sigstore/fulcio: Fulcio: Denial of Service via crafted OpenID Connect (OIDC) token CVE-2025-66626 — github.com/argoproj/argo-workflows: argoproj/argo-workflows is vulnerable to RCE via ZipSlip and symbolic links CVE-2025-67725 — tornado: Tornado Quadratic DoS via Repeated Header Coalescing CVE-2025-67726 — tornado: Tornado Quadratic DoS via Crafted Multipart Parameters CVE-2025-68156 — github.com/expr-lang/expr: Expr: Denial of Service via uncontrolled recursion in expression evaluation CVE-2025-68476 — github.com/kedacore/keda: KEDA: Arbitrary file read vulnerability in Vault authentication CVE-2025-68665 — langchain-core: LangChain: Arbitrary Code Execution via Serialization Injection CVE-2025-69223 — aiohttp: AIOHTTP's HTTP Parser auto_decompress feature is vulnerable to zip bomb CVE-2025-69872 — python-diskcache: python-diskcache: Arbitrary code execution via insecure pickle deserialization CVE-2026-0897 — Keras: Keras: Denial of Service via crafted HDF5 weight loading file CVE-2026-1260 — sentencepiece: Sentencepiece: Invalid memory access leading to potential arbitrary code execution via a crafted model file. CVE-2026-21441 — urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API) CVE-2026-22778 — vLLM: vLLM: Remote code execution via invalid image processing in the multimodal endpoint. CVE-2026-22807 — vLLM: vLLM: Arbitrary code execution via untrusted model loading CVE-2026-24049 — wheel: wheel: Privilege Escalation or Arbitrary Code Execution via malicious wheel file unpacking CVE-2026-24486 — python-multipart: Python-Multipart: Arbitrary file write via path traversal vulnerability
🔗 References (50)
- selfhttps://access.redhat.com/errata/RHSA-2026:3713
- externalhttps://access.redhat.com/security/cve/CVE-2024-25621
- externalhttps://access.redhat.com/security/cve/CVE-2025-12638
- externalhttps://access.redhat.com/security/cve/CVE-2025-12816
- externalhttps://access.redhat.com/security/cve/CVE-2025-14180
- externalhttps://access.redhat.com/security/cve/CVE-2025-14920
- externalhttps://access.redhat.com/security/cve/CVE-2025-14921
- externalhttps://access.redhat.com/security/cve/CVE-2025-14922
- externalhttps://access.redhat.com/security/cve/CVE-2025-14924
- externalhttps://access.redhat.com/security/cve/CVE-2025-14925
- externalhttps://access.redhat.com/security/cve/CVE-2025-14926
- externalhttps://access.redhat.com/security/cve/CVE-2025-14927
- externalhttps://access.redhat.com/security/cve/CVE-2025-14928
- externalhttps://access.redhat.com/security/cve/CVE-2025-14929
- externalhttps://access.redhat.com/security/cve/CVE-2025-14930
- externalhttps://access.redhat.com/security/cve/CVE-2025-15284
- externalhttps://access.redhat.com/security/cve/CVE-2025-48956
- externalhttps://access.redhat.com/security/cve/CVE-2025-52881
- externalhttps://access.redhat.com/security/cve/CVE-2025-59425
- externalhttps://access.redhat.com/security/cve/CVE-2025-61726
- externalhttps://access.redhat.com/security/cve/CVE-2025-61729
- externalhttps://access.redhat.com/security/cve/CVE-2025-62164
- externalhttps://access.redhat.com/security/cve/CVE-2025-6242
- externalhttps://access.redhat.com/security/cve/CVE-2025-62593
- externalhttps://access.redhat.com/security/cve/CVE-2025-64756
- externalhttps://access.redhat.com/security/cve/CVE-2025-66031
- externalhttps://access.redhat.com/security/cve/CVE-2025-66034
- externalhttps://access.redhat.com/security/cve/CVE-2025-66416
- externalhttps://access.redhat.com/security/cve/CVE-2025-66418
- externalhttps://access.redhat.com/security/cve/CVE-2025-66448
- externalhttps://access.redhat.com/security/cve/CVE-2025-66471
- externalhttps://access.redhat.com/security/cve/CVE-2025-66506
- externalhttps://access.redhat.com/security/cve/CVE-2025-66626
- externalhttps://access.redhat.com/security/cve/CVE-2025-67725
- externalhttps://access.redhat.com/security/cve/CVE-2025-67726
- externalhttps://access.redhat.com/security/cve/CVE-2025-68156
- externalhttps://access.redhat.com/security/cve/CVE-2025-68476
- externalhttps://access.redhat.com/security/cve/CVE-2025-68665
- externalhttps://access.redhat.com/security/cve/CVE-2025-69223
- externalhttps://access.redhat.com/security/cve/CVE-2025-69872
- externalhttps://access.redhat.com/security/cve/CVE-2026-0897
- externalhttps://access.redhat.com/security/cve/CVE-2026-1260
- externalhttps://access.redhat.com/security/cve/CVE-2026-21441
- externalhttps://access.redhat.com/security/cve/CVE-2026-22778
- externalhttps://access.redhat.com/security/cve/CVE-2026-22807
- externalhttps://access.redhat.com/security/cve/CVE-2026-24049
- externalhttps://access.redhat.com/security/cve/CVE-2026-24486
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3713.json