Vulnerability Database
Blog
FAQ
Docs
arrow_forward
search
RHSA-2026:2670
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2026:2670
Import Source
https://security.access.redhat.com/data/osv/RHSA-2026:2670.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2026:2670
Upstream
CVE-2025-65637
Published
2026-02-19T10:25:46Z
Modified
2026-02-26T10:22:23Z
Severity
7.5 (High)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.17.49 packages and security update
Details
References
https://access.redhat.com/errata/RHSA-2026:2670
https://access.redhat.com/security/updates/classification/#moderate
https://bugzilla.redhat.com/show_bug.cgi?id=2418900
https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_2670.json
https://access.redhat.com/security/cve/CVE-2025-65637
https://www.cve.org/CVERecord?id=CVE-2025-65637
https://nvd.nist.gov/vuln/detail/CVE-2025-65637
https://github.com/mjuanxd/logrus-dos-poc
https://github.com/mjuanxd/logrus-dos-poc/blob/main/README.md
https://github.com/sirupsen/logrus/issues/1370
https://github.com/sirupsen/logrus/pull/1376
https://github.com/sirupsen/logrus/releases/tag/v1.8.3
https://github.com/sirupsen/logrus/releases/tag/v1.9.1
https://github.com/sirupsen/logrus/releases/tag/v1.9.3
https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMSIRUPSENLOGRUS-5564391
Affected packages
Red Hat:openshift:4.17::el8
openshift
Package
Name
openshift
Purl
pkg:rpm/redhat/openshift
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el8
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
openshift-hyperkube
Package
Name
openshift-hyperkube
Purl
pkg:rpm/redhat/openshift-hyperkube
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el8
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
openshift-kube-apiserver
Package
Name
openshift-kube-apiserver
Purl
pkg:rpm/redhat/openshift-kube-apiserver
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el8
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
openshift-kube-controller-manager
Package
Name
openshift-kube-controller-manager
Purl
pkg:rpm/redhat/openshift-kube-controller-manager
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el8
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
openshift-kube-scheduler
Package
Name
openshift-kube-scheduler
Purl
pkg:rpm/redhat/openshift-kube-scheduler
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el8
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
openshift-kubelet
Package
Name
openshift-kubelet
Purl
pkg:rpm/redhat/openshift-kubelet
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el8
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
Red Hat:openshift:4.17::el9
openshift
Package
Name
openshift
Purl
pkg:rpm/redhat/openshift
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el9
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
openshift-hyperkube
Package
Name
openshift-hyperkube
Purl
pkg:rpm/redhat/openshift-hyperkube
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el9
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
openshift-kube-apiserver
Package
Name
openshift-kube-apiserver
Purl
pkg:rpm/redhat/openshift-kube-apiserver
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el9
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
openshift-kube-controller-manager
Package
Name
openshift-kube-controller-manager
Purl
pkg:rpm/redhat/openshift-kube-controller-manager
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el9
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
openshift-kube-scheduler
Package
Name
openshift-kube-scheduler
Purl
pkg:rpm/redhat/openshift-kube-scheduler
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el9
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
openshift-kubelet
Package
Name
openshift-kubelet
Purl
pkg:rpm/redhat/openshift-kubelet
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.17.0-202602031716.p2.g4e295fa.assembly.stream.el9
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:2670.json"
RHSA-2026:2670 - OSV