RHSA-2026:6503HighCVSS 7.5
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.20.9 security, enhancement & bug fix update
🔗 CVE IDs covered (5)
📋 Description
CVE-2024-5042 — submariner-operator: RBAC permissions can allow for the spread of node compromises CVE-2025-22870 — golang.org/x/net/proxy: golang.org/x/net/http/httpproxy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net CVE-2025-47913 — golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS CVE-2025-47914 — golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages CVE-2025-58181 — golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authentication
🔗 References (9)
- selfhttps://access.redhat.com/errata/RHSA-2026:6503
- externalhttps://access.redhat.com/security/cve/CVE-2024-5042
- externalhttps://access.redhat.com/security/cve/CVE-2025-22870
- externalhttps://access.redhat.com/security/cve/CVE-2025-47913
- externalhttps://access.redhat.com/security/cve/CVE-2025-47914
- externalhttps://access.redhat.com/security/cve/CVE-2025-58181
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6503.json