关键漏洞信息 漏洞编号 CVE-2025-6032 CVE-2025-22871 影响的产品 Red Hat OpenShift Container Platform 4.17 for RHEL 9 x86_64 Red Hat OpenShift Container Platform 4.17 for RHEL 8 x86_64 Red Hat OpenShift Container Platform for Power 4.17 for RHEL 9 ppc64le Red Hat OpenShift Container Platform for Power 4.17 for RHEL 8 ppc64le Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.17 for RHEL 9 s390x Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.17 for RHEL 8 s390x Red Hat OpenShift Container Platform for ARM 64 4.17 for RHEL 9 aarch64 Red Hat OpenShift Container Platform for ARM 64 4.17 for RHEL 8 aarch64 安全修复 podman: podman missing TLS verification (CVE-2025-6032) net/http: Request smuggling due to acceptance of invalid chunked data in net/http (CVE-2025-22871) 解决方案 建议所有受影响的用户升级到更新的包和镜像,并参考以下文档进行集群升级: https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli https://access.redhat.com/errata/RHSA-2025:10294 参考链接 https://access.redhat.com/security/updates/classification/#important