Search for packages
| purl | pkg:rpm/redhat/containernetworking-plugins@1:1.4.0-5.rhaos4.17?arch=el8 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-7y8a-8can-nba1
Aliases: CVE-2025-22871 GHSA-g9pc-8g42-g6vq |
RoadRunner is at risk of HTTP Request/Response Smuggling through vulnerable dependency The net/http package dependency used by RoadRunner improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-10T08:23:02.762971+00:00 | RedHat Importer | Affected by | VCID-7y8a-8can-nba1 | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-22871.json | 38.1.0 |
| 2026-04-01T13:41:02.398808+00:00 | RedHat Importer | Affected by | VCID-7y8a-8can-nba1 | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-22871.json | 38.0.0 |