This advisory covers Red Hat OpenShift Container Platform 4.14.56, which contains security fixes for several vulnerabilities: CVE-2025-7425 (heap use-after-free in libxslt due to type corruption), CVE-2025-48384 (arbitrary code execution in git), CVE-2025-48385 (arbitrary file writes in git), CVE-2025-32414 and CVE-2025-32415 (out-of-bounds reads in libxml2), and CVE-2025-48060 (stack-buffer-overflow in jq). The update is delivered as container images without RPM packages. Red Hat rates the security impact as Important and advises users to upgrade using the OpenShift CLI or web console. Detailed upgrade instructions and release notes are available on Red Hat's documentation site. The advisory does not provide CVSS scores but references the CVE pages for more details.

The vulnerabilities fixed in this update could allow for heap use-after-free conditions, arbitrary code execution, arbitrary file writes, and out-of-bounds memory reads, which may lead to potential compromise of the affected OpenShift Container Platform environments. The security impact is rated as Important by Red Hat Product Security. No known exploits in the wild have been reported at the time of this advisory.

Red Hat has released updated container images for OpenShift Container Platform 4.14.56 that address these vulnerabilities. Users should upgrade to these updated images through the appropriate release channels using the OpenShift CLI (oc) or web console. Detailed upgrade instructions are available at Red Hat's official documentation. Since this is a container image update, no RPM packages are involved. Patch status is confirmed by the vendor advisory. There are no indications that additional mitigation steps are required beyond applying the update.