关键漏洞信息 漏洞概述 类型/严重性: 重要安全更新 影响产品: Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, Red Hat Enterprise Linux 8.6 Extended Update Support EXTENSION, 和 Red Hat Enterprise Linux 8.6 Telecommunications Update Service. 漏洞详情 CVE编号: - CVE-2025-49175 - CVE-2025-49176 - CVE-2025-49178 - CVE-2025-49179 - CVE-2025-49180 漏洞描述: - Out-of-Bounds Read in X Rendering Extension Animated Cursors (CVE-2025-49175) - Integer Overflow in Big Requests Extension (CVE-2025-49176) - Unprocessed Client Request Due to Bytes to Ignore (CVE-2025-49178) - Integer overflow in X Record extension (CVE-2025-49179) - Integer Overflow in X Resize, Rotate and Reflect (RandR) Extension (CVE-2025-49180) 解决方案 参考链接: Red Hat 安全更新指南 影响的产品 Red Hat Enterprise Linux for x86_64 – Extended Update Support Extension 8.6 x86_64 Red Hat Enterprise Linux Server – TUS 8.6 x86_64 Red Hat Enterprise Linux Server for Power LE – Update Services for SAP Solutions 8.6 ppc64le Red Hat Enterprise Linux for x86_64 – Update Services for SAP Solutions 8.6 x86_64 修复信息 相关Bugzilla ID: - BZ #2369947 - BZ #2369954 - BZ #2369977 - BZ #2369978 - BZ #2369980 参考资料 Red Hat 安全分类