VDB
RHSA-2025%3A14855
RHSA-2025%3A14855
PUBLISHED
CVSS 7.099999904632568 HIGH
A flaw was found in glog, a logging library. This vulnerability allows an unprivileged attacker to overwrite sensitive files via a symbolic link planted in a widely writable directory, exploiting the log file path predictability.
Risk Scores
CVSS 3.0
7.099999904632568
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | registry.redhat.io/openshift4/ose-cluster-kube-storage-version-migrator-rhel8-operator@sha256:44576b150568b18dd14dbd93a0df8b436b3f210d728c6f8c0a0ccaa377b713f9_amd64 as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-cluster-kube-storage-version-migrator-rhel8-operator@sha256:44576b150568b18dd14dbd93a0df8b436b3f210d728c6f8c0a0ccaa377b713f9_amd64, registry.redhat.io/openshift4/ose-cluster-kube-storage-version-migrator-rhel8-operator@sha256:44576b150568b18dd14dbd93a0df8b436b3f210d728c6f8c0a0ccaa377b713f9_amd64, registry.redhat.io/openshift4/ose-cluster-kube-storage-version-migrator-rhel8-operator@sha256:44576b150568b18dd14dbd93a0df8b436b3f210d728c6f8c0a0ccaa377b713f9_amd64 |
| Red Hat | registry.redhat.io/openshift4/ose-prometheus-operator@sha256:69eb6c44a16287706659db6acdc53e7780599d86a02adb63e728ce7d70f1c975_ppc64le as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-prometheus-operator@sha256:69eb6c44a16287706659db6acdc53e7780599d86a02adb63e728ce7d70f1c975_ppc64le, *, registry.redhat.io/openshift4/ose-prometheus-operator@sha256:69eb6c44a16287706659db6acdc53e7780599d86a02adb63e728ce7d70f1c975_ppc64le |
| Red Hat | registry.redhat.io/openshift4/ose-csi-driver-shared-resource-rhel8@sha256:1c79f18eae6233510e5390df0e297fb15e7d0c95a5910086abe48b5f71e63628_s390x as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-csi-driver-shared-resource-rhel8@sha256:1c79f18eae6233510e5390df0e297fb15e7d0c95a5910086abe48b5f71e63628_s390x, *, registry.redhat.io/openshift4/ose-csi-driver-shared-resource-rhel8@sha256:1c79f18eae6233510e5390df0e297fb15e7d0c95a5910086abe48b5f71e63628_s390x |
| Red Hat | registry.redhat.io/openshift4/ose-gcp-pd-csi-driver-operator-rhel8@sha256:3d266b342c1578fcc59e22c7cddc71636cc0054662a3c95b19b25c19c776d0b5_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-gcp-pd-csi-driver-operator-rhel8@sha256:3d266b342c1578fcc59e22c7cddc71636cc0054662a3c95b19b25c19c776d0b5_arm64, registry.redhat.io/openshift4/ose-gcp-pd-csi-driver-operator-rhel8@sha256:3d266b342c1578fcc59e22c7cddc71636cc0054662a3c95b19b25c19c776d0b5_arm64, * |
| Red Hat | registry.redhat.io/openshift4/ose-ironic-static-ip-manager-rhel9@sha256:71fc4b946594912062dbd9641c0d85356199c7d54cd2f0074afd358b09c9fa67_amd64 as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-ironic-static-ip-manager-rhel9@sha256:71fc4b946594912062dbd9641c0d85356199c7d54cd2f0074afd358b09c9fa67_amd64, *, registry.redhat.io/openshift4/ose-ironic-static-ip-manager-rhel9@sha256:71fc4b946594912062dbd9641c0d85356199c7d54cd2f0074afd358b09c9fa67_amd64 |
| Red Hat | registry.redhat.io/openshift4/ose-agent-installer-csr-approver-rhel8@sha256:ff59e124f429e20da21ce2ee5ffb4f6d8c6d137f0efc7eb3bff0d2ef6be4ed0c_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | *, *, * |
| Red Hat | registry.redhat.io/openshift4/ose-installer@sha256:c5c8ce7a938bb893ae31b38105a8365bd5713f2dde91bce3a47522eb52b87d91_s390x as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-installer@sha256:c5c8ce7a938bb893ae31b38105a8365bd5713f2dde91bce3a47522eb52b87d91_s390x, registry.redhat.io/openshift4/ose-installer@sha256:c5c8ce7a938bb893ae31b38105a8365bd5713f2dde91bce3a47522eb52b87d91_s390x, * |
| Red Hat | registry.redhat.io/openshift4/ose-cluster-update-keys@sha256:6b4a9cecea357c53a7235aef224a70ae5848f25bdd3b1f884692386b65079caa_ppc64le as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-cluster-update-keys@sha256:6b4a9cecea357c53a7235aef224a70ae5848f25bdd3b1f884692386b65079caa_ppc64le, registry.redhat.io/openshift4/ose-cluster-update-keys@sha256:6b4a9cecea357c53a7235aef224a70ae5848f25bdd3b1f884692386b65079caa_ppc64le, registry.redhat.io/openshift4/ose-cluster-update-keys@sha256:6b4a9cecea357c53a7235aef224a70ae5848f25bdd3b1f884692386b65079caa_ppc64le |
| Red Hat | registry.redhat.io/openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:0774437207f9023ad0d0cc64a1113bb4a4854c29e573a0fa006c377e46222453_s390x as a component of Red Hat OpenShift Container Platform 4.14 | *, registry.redhat.io/openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:0774437207f9023ad0d0cc64a1113bb4a4854c29e573a0fa006c377e46222453_s390x, registry.redhat.io/openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:0774437207f9023ad0d0cc64a1113bb4a4854c29e573a0fa006c377e46222453_s390x |
| Red Hat | registry.redhat.io/openshift4/ose-openstack-cinder-csi-driver-rhel8@sha256:eb675a5fac8140bcfa7442ab9c94f0050ede342b11000484323b32bdc9a41b0b_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-openstack-cinder-csi-driver-rhel8@sha256:eb675a5fac8140bcfa7442ab9c94f0050ede342b11000484323b32bdc9a41b0b_arm64, *, registry.redhat.io/openshift4/ose-openstack-cinder-csi-driver-rhel8@sha256:eb675a5fac8140bcfa7442ab9c94f0050ede342b11000484323b32bdc9a41b0b_arm64 |
| Red Hat | registry.redhat.io/openshift4/ose-csi-node-driver-registrar-rhel8@sha256:1e601e80d7f871c028a79e515e9d07a25b6a1e02a42ee19f017ab0a968525b66_s390x as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-csi-node-driver-registrar-rhel8@sha256:1e601e80d7f871c028a79e515e9d07a25b6a1e02a42ee19f017ab0a968525b66_s390x, *, registry.redhat.io/openshift4/ose-csi-node-driver-registrar-rhel8@sha256:1e601e80d7f871c028a79e515e9d07a25b6a1e02a42ee19f017ab0a968525b66_s390x |
| Red Hat | registry.redhat.io/openshift4/ose-coredns@sha256:30ff6deda826696982a8981aa7f276cae5b08ee0ee6bd88eef2e405163fe329f_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | *, registry.redhat.io/openshift4/ose-coredns@sha256:30ff6deda826696982a8981aa7f276cae5b08ee0ee6bd88eef2e405163fe329f_arm64, registry.redhat.io/openshift4/ose-coredns@sha256:30ff6deda826696982a8981aa7f276cae5b08ee0ee6bd88eef2e405163fe329f_arm64 |
| Red Hat | registry.redhat.io/openshift4/ose-cloud-credential-operator@sha256:2aa11a5b4b9bbf358d49623de4c6900456179ca201efae8fc96b6b75fdc3e3b1_amd64 as a component of Red Hat OpenShift Container Platform 4.14 | *, *, registry.redhat.io/openshift4/ose-cloud-credential-operator@sha256:2aa11a5b4b9bbf358d49623de4c6900456179ca201efae8fc96b6b75fdc3e3b1_amd64 |
| Red Hat | registry.redhat.io/openshift4/ose-prometheus-alertmanager@sha256:270cefaeb59482d89580be541b9ff8501697ae8fb8fb0fc757512551a1c0a229_amd64 as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-prometheus-alertmanager@sha256:270cefaeb59482d89580be541b9ff8501697ae8fb8fb0fc757512551a1c0a229_amd64, *, * |
| Red Hat | registry.redhat.io/openshift4/ose-multus-whereabouts-ipam-cni-rhel8@sha256:133f501f1b9773ae1181f36ec2dd790c16b7217223ab1881b0dce10d715f5c5a_amd64 as a component of Red Hat OpenShift Container Platform 4.14 | *, *, registry.redhat.io/openshift4/ose-multus-whereabouts-ipam-cni-rhel8@sha256:133f501f1b9773ae1181f36ec2dd790c16b7217223ab1881b0dce10d715f5c5a_amd64 |
| Red Hat | registry.redhat.io/openshift4/ose-csi-external-provisioner-rhel8@sha256:999761386822360784bbe07badfdf83814aa52d83ac6b467ba848dd1387ad56a_ppc64le as a component of Red Hat OpenShift Container Platform 4.14 | *, *, registry.redhat.io/openshift4/ose-csi-external-provisioner-rhel8@sha256:999761386822360784bbe07badfdf83814aa52d83ac6b467ba848dd1387ad56a_ppc64le |
| Red Hat | registry.redhat.io/openshift4/ose-multus-admission-controller@sha256:932cde6aa7808148a0cb6d6e793d4f428c3cf36807bcb0dde455cd5f352a87ea_s390x as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-multus-admission-controller@sha256:932cde6aa7808148a0cb6d6e793d4f428c3cf36807bcb0dde455cd5f352a87ea_s390x, *, registry.redhat.io/openshift4/ose-multus-admission-controller@sha256:932cde6aa7808148a0cb6d6e793d4f428c3cf36807bcb0dde455cd5f352a87ea_s390x |
| Red Hat | registry.redhat.io/openshift4/ose-machine-api-operator@sha256:4e7f67d1bf0b5ec196d80a301d13eab26fe27fa8877ff66cdd422826324000ff_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-machine-api-operator@sha256:4e7f67d1bf0b5ec196d80a301d13eab26fe27fa8877ff66cdd422826324000ff_arm64, *, * |
| Red Hat | registry.redhat.io/openshift4/ose-multus-networkpolicy-rhel8@sha256:bbbb33fb8d00e60e54497305fe42dd1f24e4f28477ddbbbc0ad42163b9ede91c_ppc64le as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-multus-networkpolicy-rhel8@sha256:bbbb33fb8d00e60e54497305fe42dd1f24e4f28477ddbbbc0ad42163b9ede91c_ppc64le, registry.redhat.io/openshift4/ose-multus-networkpolicy-rhel8@sha256:bbbb33fb8d00e60e54497305fe42dd1f24e4f28477ddbbbc0ad42163b9ede91c_ppc64le, registry.redhat.io/openshift4/ose-multus-networkpolicy-rhel8@sha256:bbbb33fb8d00e60e54497305fe42dd1f24e4f28477ddbbbc0ad42163b9ede91c_ppc64le |
| Red Hat | registry.redhat.io/openshift4/ose-multus-networkpolicy-rhel8@sha256:15fb7cfa20039955bb6c8e18a25b942aaa09d148cf8a83ed3d9b31ead91c230b_s390x as a component of Red Hat OpenShift Container Platform 4.14 | registry.redhat.io/openshift4/ose-multus-networkpolicy-rhel8@sha256:15fb7cfa20039955bb6c8e18a25b942aaa09d148cf8a83ed3d9b31ead91c230b_s390x, registry.redhat.io/openshift4/ose-multus-networkpolicy-rhel8@sha256:15fb7cfa20039955bb6c8e18a25b942aaa09d148cf8a83ed3d9b31ead91c230b_s390x, registry.redhat.io/openshift4/ose-multus-networkpolicy-rhel8@sha256:15fb7cfa20039955bb6c8e18a25b942aaa09d148cf8a83ed3d9b31ead91c230b_s390x |
…and 1322 more
Timeline
- Sep 4, 2025 CVE Published
- Apr 24, 2026 Distribution Patch
- Apr 24, 2026 Distribution Patch
- Apr 24, 2026 Security Advisory
- Apr 24, 2026 Security Advisory
- Apr 24, 2026 Security Advisory
- May 16, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2025:14855 advisory
- https://access.redhat.com/security/cve/CVE-2024-45339 advisory
- https://access.redhat.com/security/cve/CVE-2025-30204 advisory
- https://access.redhat.com/security/updates/classification/ advisory
- https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14855.json advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2342463 issue
- https://www.cve.org/CVERecord?id=CVE-2024-45339 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2024-45339 advisory
- https://github.com/golang/glog/pull/74 advisory
- https://github.com/golang/glog/pull/74/commits/b8741656e406e66d6992bc2c9575e460ecaa0ec2 advisory
- https://groups.google.com/g/golang-announce/c/H-Q4ouHWyKs advisory
- https://owasp.org/www-community/vulnerabilities/Insecure_Temporary_File advisory
- https://pkg.go.dev/vuln/GO-2025-3372 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2354195 issue
- https://www.cve.org/CVERecord?id=CVE-2025-30204 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2025-30204 advisory
- https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3 advisory
- https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp advisory
- https://pkg.go.dev/vuln/GO-2025-3553 advisory