The Red Hat Web Terminal 1.11 on RHEL 9 web-terminal-tooling container image has been updated to fix nine important CVEs (CVE-2025-5914, CVE-2025-49794, CVE-2025-49796, CVE-2025-6020, CVE-2025-48384, CVE-2025-48385, CVE-2025-7425, CVE-2025-6965, CVE-2025-8941). These vulnerabilities affect multiple components including libarchive (double free), libxml (heap use-after-free and type confusion), linux-pam (directory traversal and incomplete fix), git (arbitrary code execution and file writes), libxslt (heap use-after-free), and sqlite (integer truncation). The advisory recommends upgrading to the updated container image and rebuilding dependent images. The vendor advisory (RHSA-2025:15827) confirms the availability of patches and provides guidance on applying the update.

The vulnerabilities fixed in this update include memory corruption issues (double free, use-after-free), directory traversal, arbitrary code execution, arbitrary file writes, and integer truncation. These could potentially allow attackers to cause denial of service, execute arbitrary code, or manipulate files within the affected container environment. However, there are no reports of known exploits in the wild at the time of this advisory.

Red Hat has released an updated web-terminal/tooling container image that contains patches for all identified vulnerabilities. Users should upgrade to this updated image immediately. Additionally, users are encouraged to rebuild all container images that depend on the affected images to ensure the security fixes are applied throughout their container deployments. Prior to applying this update, ensure all previously released errata relevant to your system have been applied. Detailed update instructions are available in the Red Hat advisory. No further mitigation actions are indicated beyond applying the official update.