Linux Security
    Linux Security
    Linux Security

    RedHat: RHSA-2020-3184:01 Moderate: OpenShift Container Platform 4.3.31

    Date
    297
    Posted By
    An update for openshift-enterprise-hyperkube-container is now available for Red Hat OpenShift Container Platform 4.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA256
    
    =====================================================================
                       Red Hat Security Advisory
    
    Synopsis:          Moderate: OpenShift Container Platform 4.3.31 openshift-enterprise-hyperkube-container security update
    Advisory ID:       RHSA-2020:3184-01
    Product:           Red Hat OpenShift Enterprise
    Advisory URL:      https://access.redhat.com/errata/RHSA-2020:3184
    Issue date:        2020-08-05
    CVE Names:         CVE-2020-8558 CVE-2020-12049 
    =====================================================================
    
    1. Summary:
    
    An update for openshift-enterprise-hyperkube-container is now available for
    Red Hat OpenShift Container Platform 4.3.
    
    Red Hat Product Security has rated this update as having a security impact
    of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
    gives a detailed severity rating, is available for each vulnerability from
    the CVE link(s) in the References section.
    
    2. Description:
    
    Red Hat OpenShift Container Platform is Red Hat's cloud computing
    Kubernetes application platform solution designed for on-premise or private
    cloud deployments.
    
    Security Fix(es):
    
    * kubernetes: A flaw was found in Kubernetes that allows attackers on
    adjacent networks to reach services exposed on localhost ports, previously
    thought to be unreachable. This flaw allows an attacker to gain privileges
    or access confidential information for any services listening on localhost
    ports that are not protected by authentication. (CVE-2020-8558)
    
    For more details about the security issue(s), including the impact, a CVSS
    score, acknowledgments, and other related information, refer to the CVE
    page(s) listed in the References section.
    
    3. Solution:
    
    For OpenShift Container Platform 4.3 see the following documentation, which
    will be updated shortly for release 4.3.32, for important instructions on
    how to upgrade your cluster and fully apply this asynchronous errata
    update:
    
    https://docs.openshift.com/container-platform/4.3/release_notes/ocp-4-3-rel
    ease-notes.html
    
    Details on how to access this content are available at
    https://docs.openshift.com/container-platform/4.3/updating/updating-cluster
    - -cli.html.
    
    4. Bugs fixed (https://bugzilla.redhat.com/):
    
    1843358 - CVE-2020-8558 kubernetes: node localhost services reachable via martian packets
    
    5. References:
    
    https://access.redhat.com/security/cve/CVE-2020-8558
    https://access.redhat.com/security/cve/CVE-2020-12049
    https://access.redhat.com/security/updates/classification/#moderate
    
    6. Contact:
    
    The Red Hat security contact is . More contact
    details at https://access.redhat.com/security/team/contact/
    
    Copyright 2020 Red Hat, Inc.
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1
    
    iQIVAwUBXyqJwtzjgjWX9erEAQiLZA//dXhltft7KkqjvmC5TDHwOVPDGpox8npy
    irnzXLlcSVTL1MSVGBBEkpmskijBOil0B14tZBbL31F6aD+PnF1VGpNgMzFsY5bL
    7Pm+xi8I0DsKcHDO4dP1JmtMASwukLxuT05JZy/C+zSaZwfPUdw3CR8q476SOpZj
    5/iylf37q2HtaFt2FwpEiRDaudeBcI+nNZAcK9Br8CG1nLfLoO3yf1ZvwgCvdu1s
    6Ep3vXHd6oMafs/f355Ed52RNvrrTT6XJwYDEFRiT1iqpSpSDD6qBMwO64rDr5GT
    Qcad/8PJ8AcqCg8t91rqAltKzwmxYQSfgsMUVG3OyFWOROf/RRUZ94yXuo9uEf6T
    Qn71xg5ltin0og2Ytsdp5Tt6Z4vb/Y8iuR8kEXfnCoR12YTRHPpP6D+L4WaYl/nE
    O6brwDEm+oRbgletQSWSVpZOOOBIUrInZZzja9V9PRo+jUPsRF9ivZdVnjzOlI6I
    6fxKJYBFmNlfa0XLbM/BGIRfF/39kzopUgOrCSNT0Iddvo0wpfxHbwUdtufTMpX6
    6iTUyxxKA+ilr4w0JMlmrWi8Bq5HY4U8dozdtB3T4u3ICV2ziiEEIeQ3Nz8uwIC+
    NgubCAFK6Gc5NYWUVo+cvOgiW3CDCTeSY+anQrRmZehPdkz2CWBy52LeGQo3OESA
    nUS/Sa3mz8o=
    =lj2G
    -----END PGP SIGNATURE-----
    
    --
    RHSA-announce mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    https://www.redhat.com/mailman/listinfo/rhsa-announce
    

    Advisories

    LinuxSecurity Poll

    Tails is the most secure Linux distro out there.

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 2 answer(s).
    /main-polls/41-ubuntu-is-a-more-secure-distro-than-fedora?task=poll.vote&format=json
    41
    radio
    [{"id":"142","title":"Yes - Tails get my vote!","votes":"1","type":"x","order":"1","pct":100,"resources":[]},{"id":"143","title":"Nope - Parrot OS has surpassed Tails in its security and privacy.","votes":"0","type":"x","order":"2","pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350


    VIEW MORE POLLS

    bottom 200

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.