Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

RedHat: RHSA-2023-5407 Moderate: OpenShift GitOps 1.10 Denial of Service

red hat
Calendar Grey September 29, 2023
Dist Redhat Esm H88
New patch issued for openshift-gitops-kam classified as moderate by Red Hat, targeting potential security vulnerabilities related to denial of service risks.
An update for openshift-gitops-kam is now available for Red Hat OpenShift GitOps 1.10

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Summary

OpenShift GitOps KAM OpenShift GitOps Kubernetes Application Manager CLI tool
Security Fix(es):
* goproxy: Denial of service (DoS) via unspecified vectors (CVE-2023-37788)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Topics%20covered

Topics Covered

security advisory moderate denial of service Red Hat update openshift

References

https://access.redhat.com/security/cve/CVE-2023-37788 https://access.redhat.com/security/updates/classification/#moderate

Package List

Red Hat OpenShift GitOps 1.10:
Source: openshift-gitops-kam-1.10.0-34.el8.src.rpm
aarch64: openshift-gitops-kam-1.10.0-34.el8.aarch64.rpm
ppc64le: openshift-gitops-kam-1.10.0-34.el8.ppc64le.rpm
s390x: openshift-gitops-kam-1.10.0-34.el8.s390x.rpm
x86_64: openshift-gitops-kam-1.10.0-34.el8.x86_64.rpm openshift-gitops-kam-redistributable-1.10.0-34.el8.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/


Advisory ID: RHSA-2023:5407-01
Product: Red Hat OpenShift GitOps
Advisory URL: https://access.redhat.com/errata/RHSA-2023:5407
Issue date: 2023-09-29

Topic

An update for openshift-gitops-kam is now available for Red Hat OpenShiftGitOps 1.10.Red Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.

Topics%20covered

Topics Covered

security advisory moderate denial of service Red Hat update openshift

Relevant Releases Architectures

Red Hat OpenShift GitOps 1.10 - aarch64, ppc64le, s390x, x86_64

Bugs Fixed

2224245 - CVE-2023-37788 goproxy: Denial of service (DoS) via unspecified vectors.

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here