Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code
Summary
Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code. Red Hat rates this important (CVSS 6.5). Weakness: CWE-770. Affected package(s): openshift4/ose-node-feature-discovery-rhel9:1779252023, openshift4/ose-sriov-network-config-daemon:1780955979, container-native-virtualization/virt-exportserver-rhel9:1782358244, openshift4/ose-sriov-network-webhook-rhel9:1779249801, advanced-cluster-security/rhacs-roxctl-rhel8:1777986630, multicluster-engine/assisted-service. Resolved in Red Hat advisory RHSA-2026:29795 — update the affected packages (`sudo dnf update`).
- openshift4/ose-node-feature-discovery-rhel9:1779252023
- openshift4/ose-sriov-network-config-daemon:1780955979
- container-native-virtualization/virt-exportserver-rhel9:1782358244
- openshift4/ose-sriov-network-webhook-rhel9:1779249801
- advanced-cluster-security/rhacs-roxctl-rhel8:1777986630
- multicluster-engine/assisted-service-8-rhel8:1778288655
- container-native-virtualization/virt-exportserver-rhel9:1782184329
- openshift4/ose-cluster-node-tuning-rhel9-operator:1781023952
- multicluster-engine/assisted-service-9-rhel9:1778892370
- rhacm2/multicloud-integrations-rhel9:1778264389
- openshift4/ose-node-feature-discovery:1780956818
- openshift4/ose-node-feature-discovery-rhel9:1778701022
Official advisory · high-confidence parse· fetched 4 hours ago·verify at source
- RHSA-2026:29795
Official advisory · high-confidence parse· fetched 4 hours ago·verify at source
Mitigation checklist
- Update the affected package(s) to the fixed version shipped in RHSA-2026:29795 (`sudo dnf update` / `yum update`).
Official advisory · high-confidence parse· fetched 4 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.