VDB

RHSA-2026%3A29835

RHSA-2026%3A29835 PUBLISHED CVSS 6.5 MEDIUM

A flaw was found in the SPDY streaming code used by Kubelet, CRI-O, and kube-apiserver. An attacker with specific cluster roles, such as those allowing access to pod port forwarding, execution, or attachment, or node proxying, could exploit this vulnerability. This could lead to a Denial of Service (DoS) by causing the affected components to become unresponsive.

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Red Hatregistry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:72a7eb673c2b463f75c431c2d6c99adfd2e427c650bae73a99bee74d2f00aaa4_s390x as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator@sha256:dfed5c35daa1bb2d32084422b7c8f3b8c420a39524cf7b0c9eda37be65c606d9_arm64 as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-support-log-gather-rhel9-operator@sha256:71765e6b9f1244bc533956338d6157fa4e7dd1fdd9be7026a67b1cf5510be6a2_arm64 as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:e4d4865991bc7d25f6c1831d9a89b0528d4f8d83df1762262b7d9a1e2a08ab87_arm64 as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-ptp-rhel9@sha256:f22594999261b66535f151c9181f13c429e5e825ae4f5878ebe6e371a108a69f_amd64 as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator@sha256:3fcdc116289f607c152d5fe75f532acd266b3537bf86dd9c171e23ca8af73271_amd64 as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-dpu-daemon-rhel9@sha256:3921e18ec7a4345b5243f7d64037698cb4693a5f84793eb4970d679b67a87ab5_s390x as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:4237b39a17db62b13211eb7d4b0b84f582c67e7dc97ecd94c1c6b8fe961e9c87_arm64 as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-node-feature-discovery-rhel9@sha256:6df36ada655ed6fa823236e53e74da5e32d15234754d0e8c1a5c25616b24022e_ppc64le as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-local-storage-rhel9-operator@sha256:f122f745bb955d6b49dc75576d45c52549583452a39b7144d8a20176f6776ab2_ppc64le as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-smb-csi-driver-rhel9@sha256:1fce2cb4222acc3241e9ca32a7590d717273bcd9c2588f0f2053f6a6487393e3_s390x as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:2151cd170695be8cf3c5048e4eed63813fcbf198fe0a74a2bc0900628bbbbea1_amd64 as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9@sha256:d01a14d6daab4c0d4250737c202c18a0fe3fe3571e1ce6d2736ce4aea96f5522_arm64 as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-dpu-marvell-vsp-rhel9@sha256:6cf920c3d9c7d05de835f4f45d6bc0145a19f8abb7e44c74fdd04519c86747df_arm64 as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:a5ff655c1edc2a0e558092b9572dec0448a3931e6e9d527583ed004292f618ea_ppc64le as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ingress-node-firewall-rhel9@sha256:ecb6432e02ee9ef09cc9321294cd52c370708f712e368371eda7d6c8fa4c0f84_amd64 as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-ptp-rhel9-operator@sha256:705eac759175d06f980e04c82d79a6ca79049bf592f214b245d6dac1d810cbd3_ppc64le as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9@sha256:2becf7a344ebf37af7a8b05f3cfd16c711dd58231ff4e8bc702368810a376f9e_ppc64le as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/pf-status-relay-rhel9-operator@sha256:cbefdd4a6e0caf1192b379184d138a92e6a878eaf7b8ee008a8f60abc294ab5e_s390x as a component of Red Hat OpenShift Container Platform 4.21*
Red Hatregistry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:6a6858a4457ba19c44074b93112c7450c1f22b752eb20cbf46b7d114a0e0eee2_arm64 as a component of Red Hat OpenShift Container Platform 4.21*

…and 170 more

Timeline

  • Jun 30, 2026 CVE Published
  • Jul 1, 2026 CVE Updated
  • Jul 1, 2026 Distribution Patch
  • Jul 1, 2026 Distribution Patch
  • Jul 1, 2026 Security Advisory
  • Jul 1, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›