Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 0 articles for you...
98
security advisorymoderatesecurity updateRedHat OpenShift 4.12.8 RHSA-2023:1268 Moderate: Request Smuggling Issue
Red Hat OpenShift Container Platform release 4.12.8 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: OpenShift Container Platform 4.12.8 security update Advisory ID: RHSA-2023:1268-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2023:1268 Issue date: 2023-03-21 CVE Names: CVE-2023-25725 ==================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.12.8 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenShift Container Platform 4.12 - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.12.8. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHBA-2023:1269 Security Fix(es): * haproxy: request smuggling attack in HTTP/1 header parsing (CVE-2023-25725) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to theCVE page(s) listed in the References section. All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/updating_clusters/updating-cluster-cli 4. Solution: For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes/ocp-4-12-release-notes The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 2169089 - CVE-2023-25725 haproxy: request smuggling attack in HTTP/1 header parsing 6. Package List: Red Hat OpenShift Container Platform4.12: Source: haproxy-2.2.24-3.rhaos4.12.el8.src.rpm kernel-4.18.0-372.49.1.el8_6.src.rpm kernel-rt-4.18.0-372.49.1.rt7.206.el8_6.src.rpm openshift-4.12.0-202303132316.p0.geab9cc9.assembly.stream.el8.src.rpm aarch64: bpftool-4.18.0-372.49.1.el8_6.aarch64.rpm bpftool-debuginfo-4.18.0-372.49.1.el8_6.aarch64.rpm haproxy-debugsource-2.2.24-3.rhaos4.12.el8.aarch64.rpm haproxy22-2.2.24-3.rhaos4.12.el8.aarch64.rpm haproxy22-debuginfo-2.2.24-3.rhaos4.12.el8.aarch64.rpm kernel-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-core-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-cross-headers-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-debug-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-debug-core-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-debug-debuginfo-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-debug-devel-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-debug-modules-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-debug-modules-extra-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-debug-modules-internal-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-debuginfo-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-debuginfo-common-aarch64-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-devel-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-headers-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-modules-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-modules-extra-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-modules-internal-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-selftests-internal-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-tools-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-tools-debuginfo-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-tools-libs-4.18.0-372.49.1.el8_6.aarch64.rpm kernel-tools-libs-devel-4.18.0-372.49.1.el8_6.aarch64.rpm openshift-hyperkube-4.12.0-202303132316.p0.geab9cc9.assembly.stream.el8.aarch64.rpm perf-4.18.0-372.49.1.el8_6.aarch64.rpm perf-debuginfo-4.18.0-372.49.1.el8_6.aarch64.rpm python3-perf-4.18.0-372.49.1.el8_6.aarch64.rpm python3-perf-debuginfo-4.18.0-372.49.1.el8_6.aarch64.rpm noarch: kernel-doc-4.18.0-372.49.1.el8_6.noarch.rpm ppc64le: bpftool-4.18.0-372.49.1.el8_6.ppc64le.rpm bpftool-debuginfo-4.18.0-372.49.1.el8_6.ppc64le.rpm haproxy-debugsource-2.2.24-3.rhaos4.12.el8.ppc64le.rpm haproxy22-2.2.24-3.rhaos4.12.el8.ppc64le.rpm haproxy22-debuginfo-2.2.24-3.rhaos4.12.el8.ppc64le.rpm kernel-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-core-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-cross-headers-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-debug-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-debug-core-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-debug-debuginfo-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-debug-devel-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-debug-modules-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-debug-modules-extra-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-debug-modules-internal-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-debuginfo-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-devel-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-headers-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-ipaclones-internal-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-modules-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-modules-extra-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-modules-internal-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-selftests-internal-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-tools-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-tools-debuginfo-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-tools-libs-4.18.0-372.49.1.el8_6.ppc64le.rpm kernel-tools-libs-devel-4.18.0-372.49.1.el8_6.ppc64le.rpm openshift-hyperkube-4.12.0-202303132316.p0.geab9cc9.assembly.stream.el8.ppc64le.rpm perf-4.18.0-372.49.1.el8_6.ppc64le.rpm perf-debuginfo-4.18.0-372.49.1.el8_6.ppc64le.rpm python3-perf-4.18.0-372.49.1.el8_6.ppc64le.rpm python3-perf-debuginfo-4.18.0-372.49.1.el8_6.ppc64le.rpm s390x: bpftool-4.18.0-372.49.1.el8_6.s390x.rpm bpftool-debuginfo-4.18.0-372.49.1.el8_6.s390x.rpm haproxy-debugsource-2.2.24-3.rhaos4.12.el8.s390x.rpm haproxy22-2.2.24-3.rhaos4.12.el8.s390x.rpm haproxy22-debuginfo-2.2.24-3.rhaos4.12.el8.s390x.rpm kernel-4.18.0-372.49.1.el8_6.s390x.rpm kernel-core-4.18.0-372.49.1.el8_6.s390x.rpm kernel-cross-headers-4.18.0-372.49.1.el8_6.s390x.rpm kernel-debug-4.18.0-372.49.1.el8_6.s390x.rpm kernel-debug-core-4.18.0-372.49.1.el8_6.s390x.rpm kernel-debug-debuginfo-4.18.0-372.49.1.el8_6.s390x.rpm kernel-debug-devel-4.18.0-372.49.1.el8_6.s390x.rpm kernel-debug-modules-4.18.0-372.49.1.el8_6.s390x.rpm kernel-debug-modules-extra-4.18.0-372.49.1.el8_6.s390x.rpm kernel-debug-modules-internal-4.18.0-372.49.1.el8_6.s390x.rpm kernel-debuginfo-4.18.0-372.49.1.el8_6.s390x.rpm kernel-debuginfo-common-s390x-4.18.0-372.49.1.el8_6.s390x.rpm kernel-devel-4.18.0-372.49.1.el8_6.s390x.rpm kernel-headers-4.18.0-372.49.1.el8_6.s390x.rpm kernel-modules-4.18.0-372.49.1.el8_6.s390x.rpm kernel-modules-extra-4.18.0-372.49.1.el8_6.s390x.rpm kernel-modules-internal-4.18.0-372.49.1.el8_6.s390x.rpm kernel-selftests-internal-4.18.0-372.49.1.el8_6.s390x.rpm kernel-tools-4.18.0-372.49.1.el8_6.s390x.rpm kernel-tools-debuginfo-4.18.0-372.49.1.el8_6.s390x.rpm kernel-zfcpdump-4.18.0-372.49.1.el8_6.s390x.rpm kernel-zfcpdump-core-4.18.0-372.49.1.el8_6.s390x.rpm kernel-zfcpdump-debuginfo-4.18.0-372.49.1.el8_6.s390x.rpm kernel-zfcpdump-devel-4.18.0-372.49.1.el8_6.s390x.rpm kernel-zfcpdump-modules-4.18.0-372.49.1.el8_6.s390x.rpm kernel-zfcpdump-modules-extra-4.18.0-372.49.1.el8_6.s390x.rpm kernel-zfcpdump-modules-internal-4.18.0-372.49.1.el8_6.s390x.rpm openshift-hyperkube-4.12.0-202303132316.p0.geab9cc9.assembly.stream.el8.s390x.rpm perf-4.18.0-372.49.1.el8_6.s390x.rpm perf-debuginfo-4.18.0-372.49.1.el8_6.s390x.rpm python3-perf-4.18.0-372.49.1.el8_6.s390x.rpm python3-perf-debuginfo-4.18.0-372.49.1.el8_6.s390x.rpm x86_64: bpftool-4.18.0-372.49.1.el8_6.x86_64.rpm bpftool-debuginfo-4.18.0-372.49.1.el8_6.x86_64.rpm haproxy-debugsource-2.2.24-3.rhaos4.12.el8.x86_64.rpm haproxy22-2.2.24-3.rhaos4.12.el8.x86_64.rpm haproxy22-debuginfo-2.2.24-3.rhaos4.12.el8.x86_64.rpm kernel-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-core-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-cross-headers-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-debug-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-debug-core-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-debug-debuginfo-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-debug-devel-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-debug-modules-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-debug-modules-extra-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-debug-modules-internal-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-debuginfo-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-debuginfo-common-x86_64-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-devel-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-headers-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-ipaclones-internal-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-modules-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-modules-extra-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-modules-internal-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-rt-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-core-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-debug-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-debug-core-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-debug-debuginfo-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-debug-devel-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-debug-kvm-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-debug-modules-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-debug-modules-extra-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-debug-modules-internal-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-debuginfo-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-debuginfo-common-x86_64-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-devel-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-kvm-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-modules-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-modules-extra-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-modules-internal-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-rt-selftests-internal-4.18.0-372.49.1.rt7.206.el8_6.x86_64.rpm kernel-selftests-internal-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-tools-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-tools-debuginfo-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-tools-libs-4.18.0-372.49.1.el8_6.x86_64.rpm kernel-tools-libs-devel-4.18.0-372.49.1.el8_6.x86_64.rpm openshift-hyperkube-4.12.0-202303132316.p0.geab9cc9.assembly.stream.el8.x86_64.rpm perf-4.18.0-372.49.1.el8_6.x86_64.rpm perf-debuginfo-4.18.0-372.49.1.el8_6.x86_64.rpm python3-perf-4.18.0-372.49.1.el8_6.x86_64.rpm python3-perf-debuginfo-4.18.0-372.49.1.el8_6.x86_64.rpm Red Hat OpenShift Container Platform 4.12: Source: openshift-4.12.0-202303132316.p0.geab9cc9.assembly.stream.el9.src.rpm aarch64: openshift-hyperkube-4.12.0-202303132316.p0.geab9cc9.assembly.stream.el9.aarch64.rpm ppc64le: openshift-hyperkube-4.12.0-202303132316.p0.geab9cc9.assembly.stream.el9.ppc64le.rpm s390x: openshift-hyperkube-4.12.0-202303132316.p0.geab9cc9.assembly.stream.el9.s390x.rpm x86_64: openshift-hyperkube-4.12.0-202303132316.p0.geab9cc9.assembly.stream.el9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2023-25725 https://access.redhat.com/security/updates/classification#moderate https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes/ocp-4-12-release-notes 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBZBxe+dzjgjWX9erEAQjZ0g/+JyXlMXYOTdYk4bvoCBPAxkVMkVeUsRCN w6VYfU0hkPv3iqamd3xwniFovzCXlrzkD7W466FFhmHsDm5sgTcufT1e8E3++mkR HoFujTjiGB3i+GirvvmR3b9jYzJG7ycfegPOPVC4jXje2L5Ct4xETgT+HcIioGOA I6psBIde9rkbgY8sp9+ueYIYRAY3MfpzR6HXm2GfDZDPQE8zcvZyasxmMFK89QOK s9GriqUktZ8OlPoklSQL8Zep3hwx5TCT0F0EuR5m3w/dxNMAzOAWpwWby5wgk80J QyUGl29KG/6hUz18A0UFwV7Et/kR1LZ4F3aFRaIB2gm6mGEgjXyoc/m7VN4sVDKv oSETZSNwbqZG/GDn7AuJoVqweOLXP+FuC6A2V2j/ODXKLNU2PdvkyYQ8FdXiC6IT Vz+SFGDD3+mdIHv3Ofye0DWTyumM/VVpDl+EdAlMoD9kbQLRWmalAmfh4st7p75U w16uSXyltKlvjri7SliAGXMiu7MdLP85U89eVnYyIO5SsXwxJk2s7k2iBkF9dhpq Sed02uFmIFlInZqFLlb+lqnNPuXM1fKS/WpHHA4OJiilqX6A0H1wEdBT70xIx6bl Tt+9d7Dbz+GYALbOeUse62CgSnkZqABuZ7NQdF9hQ8BNLNAkGaRCrFL4e3U7VRXH af8/b6bVDuE=ee5J -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Mar 23, 2023
Red Hat
98
security advisorymoderatesecurity issueRed Hat OpenShift 4.12.3 RHSA-2023:0727-01 Moderate: Security Issues
Red Hat OpenShift Container Platform release 4.12.3 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: OpenShift Container Platform 4.12.3 security update Advisory ID: RHSA-2023:0727-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2023:0727 Issue date: 2023-02-16 CVE Names: CVE-2022-2879 CVE-2022-2880 CVE-2022-41715 ==================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.12.3 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenShift Container Platform 4.12 - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.12.3. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHSA-2023:0728 Security Fix(es): * golang: archive/tar: unbounded memory consumption when reading headers(CVE-2022-2879) * golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters (CVE-2022-2880) *golang: regexp/syntax: limit memory used by parsing regexps (CVE-2022-41715) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/updating_clusters/updating-cluster-cli 4. Solution: For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes/ocp-4-12-release-notes The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 2132867 - CVE-2022-2879 golang: archive/tar: unbounded memory consumption when reading headers2132868 - CVE-2022-2880 golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters2132872 - CVE-2022-41715 golang: regexp/syntax: limit memory used by parsing regexps 6. Package List: Red Hat OpenShift Container Platform4.12: Source: buildah-1.23.4-4.rhaos4.12.el8.src.rpm conmon-2.1.2-3.rhaos4.12.el8.src.rpm container-selinux-2.188.0-2.rhaos4.12.el8.src.rpm containernetworking-plugins-1.0.1-6.rhaos4.12.el8.src.rpm containers-common-1-33.rhaos4.12.el8.src.rpm cri-o-1.25.2-6.rhaos4.12.git3c4e50c.el8.src.rpm crun-1.4.2-2.rhaos4.12.el8.src.rpm fuse-overlayfs-1.9-2.rhaos4.12.el8.src.rpm haproxy-2.2.24-2.el8.src.rpm kernel-rt-4.18.0-372.43.1.rt7.200.el8_6.src.rpm openshift-clients-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el8.src.rpm runc-1.1.4-2.rhaos4.12.el8.src.rpm skopeo-1.9.4-2.rhaos4.12.el8.src.rpm slirp4netns-1.1.8-2.rhaos4.12.el8.src.rpm toolbox-0.1.1-3.rhaos4.12.el8.src.rpm aarch64: buildah-1.23.4-4.rhaos4.12.el8.aarch64.rpm buildah-debuginfo-1.23.4-4.rhaos4.12.el8.aarch64.rpm buildah-debugsource-1.23.4-4.rhaos4.12.el8.aarch64.rpm buildah-tests-1.23.4-4.rhaos4.12.el8.aarch64.rpm buildah-tests-debuginfo-1.23.4-4.rhaos4.12.el8.aarch64.rpm conmon-2.1.2-3.rhaos4.12.el8.aarch64.rpm conmon-debuginfo-2.1.2-3.rhaos4.12.el8.aarch64.rpm conmon-debugsource-2.1.2-3.rhaos4.12.el8.aarch64.rpm containernetworking-plugins-1.0.1-6.rhaos4.12.el8.aarch64.rpm containernetworking-plugins-debuginfo-1.0.1-6.rhaos4.12.el8.aarch64.rpm containernetworking-plugins-debugsource-1.0.1-6.rhaos4.12.el8.aarch64.rpm containers-common-1-33.rhaos4.12.el8.aarch64.rpm cri-o-1.25.2-6.rhaos4.12.git3c4e50c.el8.aarch64.rpm cri-o-debuginfo-1.25.2-6.rhaos4.12.git3c4e50c.el8.aarch64.rpm cri-o-debugsource-1.25.2-6.rhaos4.12.git3c4e50c.el8.aarch64.rpm crun-1.4.2-2.rhaos4.12.el8.aarch64.rpm crun-debuginfo-1.4.2-2.rhaos4.12.el8.aarch64.rpm crun-debugsource-1.4.2-2.rhaos4.12.el8.aarch64.rpm fuse-overlayfs-1.9-2.rhaos4.12.el8.aarch64.rpm fuse-overlayfs-debuginfo-1.9-2.rhaos4.12.el8.aarch64.rpm fuse-overlayfs-debugsource-1.9-2.rhaos4.12.el8.aarch64.rpm haproxy-debugsource-2.2.24-2.el8.aarch64.rpm haproxy22-2.2.24-2.el8.aarch64.rpm haproxy22-debuginfo-2.2.24-2.el8.aarch64.rpm openshift-clients-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el8.aarch64.rpm runc-1.1.4-2.rhaos4.12.el8.aarch64.rpm runc-debuginfo-1.1.4-2.rhaos4.12.el8.aarch64.rpm runc-debugsource-1.1.4-2.rhaos4.12.el8.aarch64.rpm skopeo-1.9.4-2.rhaos4.12.el8.aarch64.rpm skopeo-debuginfo-1.9.4-2.rhaos4.12.el8.aarch64.rpm skopeo-debugsource-1.9.4-2.rhaos4.12.el8.aarch64.rpm skopeo-tests-1.9.4-2.rhaos4.12.el8.aarch64.rpm slirp4netns-1.1.8-2.rhaos4.12.el8.aarch64.rpm slirp4netns-debuginfo-1.1.8-2.rhaos4.12.el8.aarch64.rpm slirp4netns-debugsource-1.1.8-2.rhaos4.12.el8.aarch64.rpm noarch: container-selinux-2.188.0-2.rhaos4.12.el8.noarch.rpm toolbox-0.1.1-3.rhaos4.12.el8.noarch.rpm ppc64le: buildah-1.23.4-4.rhaos4.12.el8.ppc64le.rpm buildah-debuginfo-1.23.4-4.rhaos4.12.el8.ppc64le.rpm buildah-debugsource-1.23.4-4.rhaos4.12.el8.ppc64le.rpm buildah-tests-1.23.4-4.rhaos4.12.el8.ppc64le.rpm buildah-tests-debuginfo-1.23.4-4.rhaos4.12.el8.ppc64le.rpm conmon-2.1.2-3.rhaos4.12.el8.ppc64le.rpm conmon-debuginfo-2.1.2-3.rhaos4.12.el8.ppc64le.rpm conmon-debugsource-2.1.2-3.rhaos4.12.el8.ppc64le.rpm containernetworking-plugins-1.0.1-6.rhaos4.12.el8.ppc64le.rpm containernetworking-plugins-debuginfo-1.0.1-6.rhaos4.12.el8.ppc64le.rpm containernetworking-plugins-debugsource-1.0.1-6.rhaos4.12.el8.ppc64le.rpm containers-common-1-33.rhaos4.12.el8.ppc64le.rpm cri-o-1.25.2-6.rhaos4.12.git3c4e50c.el8.ppc64le.rpm cri-o-debuginfo-1.25.2-6.rhaos4.12.git3c4e50c.el8.ppc64le.rpm cri-o-debugsource-1.25.2-6.rhaos4.12.git3c4e50c.el8.ppc64le.rpm crun-1.4.2-2.rhaos4.12.el8.ppc64le.rpm crun-debuginfo-1.4.2-2.rhaos4.12.el8.ppc64le.rpm crun-debugsource-1.4.2-2.rhaos4.12.el8.ppc64le.rpm fuse-overlayfs-1.9-2.rhaos4.12.el8.ppc64le.rpm fuse-overlayfs-debuginfo-1.9-2.rhaos4.12.el8.ppc64le.rpm fuse-overlayfs-debugsource-1.9-2.rhaos4.12.el8.ppc64le.rpm haproxy-debugsource-2.2.24-2.el8.ppc64le.rpm haproxy22-2.2.24-2.el8.ppc64le.rpm haproxy22-debuginfo-2.2.24-2.el8.ppc64le.rpm openshift-clients-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el8.ppc64le.rpm runc-1.1.4-2.rhaos4.12.el8.ppc64le.rpm runc-debuginfo-1.1.4-2.rhaos4.12.el8.ppc64le.rpm runc-debugsource-1.1.4-2.rhaos4.12.el8.ppc64le.rpm skopeo-1.9.4-2.rhaos4.12.el8.ppc64le.rpm skopeo-debuginfo-1.9.4-2.rhaos4.12.el8.ppc64le.rpm skopeo-debugsource-1.9.4-2.rhaos4.12.el8.ppc64le.rpm skopeo-tests-1.9.4-2.rhaos4.12.el8.ppc64le.rpm slirp4netns-1.1.8-2.rhaos4.12.el8.ppc64le.rpm slirp4netns-debuginfo-1.1.8-2.rhaos4.12.el8.ppc64le.rpm slirp4netns-debugsource-1.1.8-2.rhaos4.12.el8.ppc64le.rpm s390x: buildah-1.23.4-4.rhaos4.12.el8.s390x.rpm buildah-debuginfo-1.23.4-4.rhaos4.12.el8.s390x.rpm buildah-debugsource-1.23.4-4.rhaos4.12.el8.s390x.rpm buildah-tests-1.23.4-4.rhaos4.12.el8.s390x.rpm buildah-tests-debuginfo-1.23.4-4.rhaos4.12.el8.s390x.rpm conmon-2.1.2-3.rhaos4.12.el8.s390x.rpm conmon-debuginfo-2.1.2-3.rhaos4.12.el8.s390x.rpm conmon-debugsource-2.1.2-3.rhaos4.12.el8.s390x.rpm containernetworking-plugins-1.0.1-6.rhaos4.12.el8.s390x.rpm containernetworking-plugins-debuginfo-1.0.1-6.rhaos4.12.el8.s390x.rpm containernetworking-plugins-debugsource-1.0.1-6.rhaos4.12.el8.s390x.rpm containers-common-1-33.rhaos4.12.el8.s390x.rpm cri-o-1.25.2-6.rhaos4.12.git3c4e50c.el8.s390x.rpm cri-o-debuginfo-1.25.2-6.rhaos4.12.git3c4e50c.el8.s390x.rpm cri-o-debugsource-1.25.2-6.rhaos4.12.git3c4e50c.el8.s390x.rpm crun-1.4.2-2.rhaos4.12.el8.s390x.rpm crun-debuginfo-1.4.2-2.rhaos4.12.el8.s390x.rpm crun-debugsource-1.4.2-2.rhaos4.12.el8.s390x.rpm fuse-overlayfs-1.9-2.rhaos4.12.el8.s390x.rpm fuse-overlayfs-debuginfo-1.9-2.rhaos4.12.el8.s390x.rpm fuse-overlayfs-debugsource-1.9-2.rhaos4.12.el8.s390x.rpm haproxy-debugsource-2.2.24-2.el8.s390x.rpm haproxy22-2.2.24-2.el8.s390x.rpm haproxy22-debuginfo-2.2.24-2.el8.s390x.rpm openshift-clients-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el8.s390x.rpm runc-1.1.4-2.rhaos4.12.el8.s390x.rpm runc-debuginfo-1.1.4-2.rhaos4.12.el8.s390x.rpm runc-debugsource-1.1.4-2.rhaos4.12.el8.s390x.rpm skopeo-1.9.4-2.rhaos4.12.el8.s390x.rpm skopeo-debuginfo-1.9.4-2.rhaos4.12.el8.s390x.rpm skopeo-debugsource-1.9.4-2.rhaos4.12.el8.s390x.rpm skopeo-tests-1.9.4-2.rhaos4.12.el8.s390x.rpm slirp4netns-1.1.8-2.rhaos4.12.el8.s390x.rpm slirp4netns-debuginfo-1.1.8-2.rhaos4.12.el8.s390x.rpm slirp4netns-debugsource-1.1.8-2.rhaos4.12.el8.s390x.rpm x86_64: buildah-1.23.4-4.rhaos4.12.el8.x86_64.rpm buildah-debuginfo-1.23.4-4.rhaos4.12.el8.x86_64.rpm buildah-debugsource-1.23.4-4.rhaos4.12.el8.x86_64.rpm buildah-tests-1.23.4-4.rhaos4.12.el8.x86_64.rpm buildah-tests-debuginfo-1.23.4-4.rhaos4.12.el8.x86_64.rpm conmon-2.1.2-3.rhaos4.12.el8.x86_64.rpm conmon-debuginfo-2.1.2-3.rhaos4.12.el8.x86_64.rpm conmon-debugsource-2.1.2-3.rhaos4.12.el8.x86_64.rpm containernetworking-plugins-1.0.1-6.rhaos4.12.el8.x86_64.rpm containernetworking-plugins-debuginfo-1.0.1-6.rhaos4.12.el8.x86_64.rpm containernetworking-plugins-debugsource-1.0.1-6.rhaos4.12.el8.x86_64.rpm containers-common-1-33.rhaos4.12.el8.x86_64.rpm cri-o-1.25.2-6.rhaos4.12.git3c4e50c.el8.x86_64.rpm cri-o-debuginfo-1.25.2-6.rhaos4.12.git3c4e50c.el8.x86_64.rpm cri-o-debugsource-1.25.2-6.rhaos4.12.git3c4e50c.el8.x86_64.rpm crun-1.4.2-2.rhaos4.12.el8.x86_64.rpm crun-debuginfo-1.4.2-2.rhaos4.12.el8.x86_64.rpm crun-debugsource-1.4.2-2.rhaos4.12.el8.x86_64.rpm fuse-overlayfs-1.9-2.rhaos4.12.el8.x86_64.rpm fuse-overlayfs-debuginfo-1.9-2.rhaos4.12.el8.x86_64.rpm fuse-overlayfs-debugsource-1.9-2.rhaos4.12.el8.x86_64.rpm haproxy-debugsource-2.2.24-2.el8.x86_64.rpm haproxy22-2.2.24-2.el8.x86_64.rpm haproxy22-debuginfo-2.2.24-2.el8.x86_64.rpm kernel-rt-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-core-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-debug-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-debug-core-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-debug-debuginfo-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-debug-devel-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-debug-kvm-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-debug-modules-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-debug-modules-extra-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-debug-modules-internal-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-debuginfo-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-debuginfo-common-x86_64-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-devel-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-kvm-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-modules-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-modules-extra-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-modules-internal-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm kernel-rt-selftests-internal-4.18.0-372.43.1.rt7.200.el8_6.x86_64.rpm openshift-clients-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el8.x86_64.rpm openshift-clients-redistributable-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el8.x86_64.rpm runc-1.1.4-2.rhaos4.12.el8.x86_64.rpm runc-debuginfo-1.1.4-2.rhaos4.12.el8.x86_64.rpm runc-debugsource-1.1.4-2.rhaos4.12.el8.x86_64.rpm skopeo-1.9.4-2.rhaos4.12.el8.x86_64.rpm skopeo-debuginfo-1.9.4-2.rhaos4.12.el8.x86_64.rpm skopeo-debugsource-1.9.4-2.rhaos4.12.el8.x86_64.rpm skopeo-tests-1.9.4-2.rhaos4.12.el8.x86_64.rpm slirp4netns-1.1.8-2.rhaos4.12.el8.x86_64.rpm slirp4netns-debuginfo-1.1.8-2.rhaos4.12.el8.x86_64.rpm slirp4netns-debugsource-1.1.8-2.rhaos4.12.el8.x86_64.rpm Red Hat OpenShift Container Platform4.12: Source: buildah-1.23.4-4.rhaos4.12.el9.src.rpm conmon-2.1.2-4.rhaos4.12.el9.src.rpm crun-1.4.2-3.rhaos4.12.el9.src.rpm openshift-clients-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el9.src.rpm podman-4.2.0-5.rhaos4.12.el9.src.rpm skopeo-1.9.4-2.rhaos4.12.el9.src.rpm aarch64: buildah-1.23.4-4.rhaos4.12.el9.aarch64.rpm buildah-debuginfo-1.23.4-4.rhaos4.12.el9.aarch64.rpm buildah-debugsource-1.23.4-4.rhaos4.12.el9.aarch64.rpm buildah-tests-1.23.4-4.rhaos4.12.el9.aarch64.rpm buildah-tests-debuginfo-1.23.4-4.rhaos4.12.el9.aarch64.rpm conmon-2.1.2-4.rhaos4.12.el9.aarch64.rpm conmon-debuginfo-2.1.2-4.rhaos4.12.el9.aarch64.rpm conmon-debugsource-2.1.2-4.rhaos4.12.el9.aarch64.rpm crun-1.4.2-3.rhaos4.12.el9.aarch64.rpm crun-debuginfo-1.4.2-3.rhaos4.12.el9.aarch64.rpm crun-debugsource-1.4.2-3.rhaos4.12.el9.aarch64.rpm openshift-clients-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el9.aarch64.rpm podman-4.2.0-5.rhaos4.12.el9.aarch64.rpm podman-catatonit-4.2.0-5.rhaos4.12.el9.aarch64.rpm podman-catatonit-debuginfo-4.2.0-5.rhaos4.12.el9.aarch64.rpm podman-debuginfo-4.2.0-5.rhaos4.12.el9.aarch64.rpm podman-debugsource-4.2.0-5.rhaos4.12.el9.aarch64.rpm podman-gvproxy-4.2.0-5.rhaos4.12.el9.aarch64.rpm podman-gvproxy-debuginfo-4.2.0-5.rhaos4.12.el9.aarch64.rpm podman-plugins-4.2.0-5.rhaos4.12.el9.aarch64.rpm podman-plugins-debuginfo-4.2.0-5.rhaos4.12.el9.aarch64.rpm podman-remote-4.2.0-5.rhaos4.12.el9.aarch64.rpm podman-remote-debuginfo-4.2.0-5.rhaos4.12.el9.aarch64.rpm podman-tests-4.2.0-5.rhaos4.12.el9.aarch64.rpm skopeo-1.9.4-2.rhaos4.12.el9.aarch64.rpm skopeo-debuginfo-1.9.4-2.rhaos4.12.el9.aarch64.rpm skopeo-debugsource-1.9.4-2.rhaos4.12.el9.aarch64.rpm skopeo-tests-1.9.4-2.rhaos4.12.el9.aarch64.rpm noarch: podman-docker-4.2.0-5.rhaos4.12.el9.noarch.rpm ppc64le: buildah-1.23.4-4.rhaos4.12.el9.ppc64le.rpm buildah-debuginfo-1.23.4-4.rhaos4.12.el9.ppc64le.rpm buildah-debugsource-1.23.4-4.rhaos4.12.el9.ppc64le.rpm buildah-tests-1.23.4-4.rhaos4.12.el9.ppc64le.rpm buildah-tests-debuginfo-1.23.4-4.rhaos4.12.el9.ppc64le.rpm conmon-2.1.2-4.rhaos4.12.el9.ppc64le.rpm conmon-debuginfo-2.1.2-4.rhaos4.12.el9.ppc64le.rpm conmon-debugsource-2.1.2-4.rhaos4.12.el9.ppc64le.rpm crun-1.4.2-3.rhaos4.12.el9.ppc64le.rpm crun-debuginfo-1.4.2-3.rhaos4.12.el9.ppc64le.rpm crun-debugsource-1.4.2-3.rhaos4.12.el9.ppc64le.rpm openshift-clients-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el9.ppc64le.rpm podman-4.2.0-5.rhaos4.12.el9.ppc64le.rpm podman-catatonit-4.2.0-5.rhaos4.12.el9.ppc64le.rpm podman-catatonit-debuginfo-4.2.0-5.rhaos4.12.el9.ppc64le.rpm podman-debuginfo-4.2.0-5.rhaos4.12.el9.ppc64le.rpm podman-debugsource-4.2.0-5.rhaos4.12.el9.ppc64le.rpm podman-gvproxy-4.2.0-5.rhaos4.12.el9.ppc64le.rpm podman-gvproxy-debuginfo-4.2.0-5.rhaos4.12.el9.ppc64le.rpm podman-plugins-4.2.0-5.rhaos4.12.el9.ppc64le.rpm podman-plugins-debuginfo-4.2.0-5.rhaos4.12.el9.ppc64le.rpm podman-remote-4.2.0-5.rhaos4.12.el9.ppc64le.rpm podman-remote-debuginfo-4.2.0-5.rhaos4.12.el9.ppc64le.rpm podman-tests-4.2.0-5.rhaos4.12.el9.ppc64le.rpm skopeo-1.9.4-2.rhaos4.12.el9.ppc64le.rpm skopeo-debuginfo-1.9.4-2.rhaos4.12.el9.ppc64le.rpm skopeo-debugsource-1.9.4-2.rhaos4.12.el9.ppc64le.rpm skopeo-tests-1.9.4-2.rhaos4.12.el9.ppc64le.rpm s390x: buildah-1.23.4-4.rhaos4.12.el9.s390x.rpm buildah-debuginfo-1.23.4-4.rhaos4.12.el9.s390x.rpm buildah-debugsource-1.23.4-4.rhaos4.12.el9.s390x.rpm buildah-tests-1.23.4-4.rhaos4.12.el9.s390x.rpm buildah-tests-debuginfo-1.23.4-4.rhaos4.12.el9.s390x.rpm conmon-2.1.2-4.rhaos4.12.el9.s390x.rpm conmon-debuginfo-2.1.2-4.rhaos4.12.el9.s390x.rpm conmon-debugsource-2.1.2-4.rhaos4.12.el9.s390x.rpm crun-1.4.2-3.rhaos4.12.el9.s390x.rpm crun-debuginfo-1.4.2-3.rhaos4.12.el9.s390x.rpm crun-debugsource-1.4.2-3.rhaos4.12.el9.s390x.rpm openshift-clients-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el9.s390x.rpm podman-4.2.0-5.rhaos4.12.el9.s390x.rpm podman-catatonit-4.2.0-5.rhaos4.12.el9.s390x.rpm podman-catatonit-debuginfo-4.2.0-5.rhaos4.12.el9.s390x.rpm podman-debuginfo-4.2.0-5.rhaos4.12.el9.s390x.rpm podman-debugsource-4.2.0-5.rhaos4.12.el9.s390x.rpm podman-gvproxy-4.2.0-5.rhaos4.12.el9.s390x.rpm podman-gvproxy-debuginfo-4.2.0-5.rhaos4.12.el9.s390x.rpm podman-plugins-4.2.0-5.rhaos4.12.el9.s390x.rpm podman-plugins-debuginfo-4.2.0-5.rhaos4.12.el9.s390x.rpm podman-remote-4.2.0-5.rhaos4.12.el9.s390x.rpm podman-remote-debuginfo-4.2.0-5.rhaos4.12.el9.s390x.rpm podman-tests-4.2.0-5.rhaos4.12.el9.s390x.rpm skopeo-1.9.4-2.rhaos4.12.el9.s390x.rpm skopeo-debuginfo-1.9.4-2.rhaos4.12.el9.s390x.rpm skopeo-debugsource-1.9.4-2.rhaos4.12.el9.s390x.rpm skopeo-tests-1.9.4-2.rhaos4.12.el9.s390x.rpm x86_64: buildah-1.23.4-4.rhaos4.12.el9.x86_64.rpm buildah-debuginfo-1.23.4-4.rhaos4.12.el9.x86_64.rpm buildah-debugsource-1.23.4-4.rhaos4.12.el9.x86_64.rpm buildah-tests-1.23.4-4.rhaos4.12.el9.x86_64.rpm buildah-tests-debuginfo-1.23.4-4.rhaos4.12.el9.x86_64.rpm conmon-2.1.2-4.rhaos4.12.el9.x86_64.rpm conmon-debuginfo-2.1.2-4.rhaos4.12.el9.x86_64.rpm conmon-debugsource-2.1.2-4.rhaos4.12.el9.x86_64.rpm crun-1.4.2-3.rhaos4.12.el9.x86_64.rpm crun-debuginfo-1.4.2-3.rhaos4.12.el9.x86_64.rpm crun-debugsource-1.4.2-3.rhaos4.12.el9.x86_64.rpm openshift-clients-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el9.x86_64.rpm openshift-clients-redistributable-4.12.0-202301312133.p0.gb05f7d4.assembly.stream.el9.x86_64.rpm podman-4.2.0-5.rhaos4.12.el9.x86_64.rpm podman-catatonit-4.2.0-5.rhaos4.12.el9.x86_64.rpm podman-catatonit-debuginfo-4.2.0-5.rhaos4.12.el9.x86_64.rpm podman-debuginfo-4.2.0-5.rhaos4.12.el9.x86_64.rpm podman-debugsource-4.2.0-5.rhaos4.12.el9.x86_64.rpm podman-gvproxy-4.2.0-5.rhaos4.12.el9.x86_64.rpm podman-gvproxy-debuginfo-4.2.0-5.rhaos4.12.el9.x86_64.rpm podman-plugins-4.2.0-5.rhaos4.12.el9.x86_64.rpm podman-plugins-debuginfo-4.2.0-5.rhaos4.12.el9.x86_64.rpm podman-remote-4.2.0-5.rhaos4.12.el9.x86_64.rpm podman-remote-debuginfo-4.2.0-5.rhaos4.12.el9.x86_64.rpm podman-tests-4.2.0-5.rhaos4.12.el9.x86_64.rpm skopeo-1.9.4-2.rhaos4.12.el9.x86_64.rpm skopeo-debuginfo-1.9.4-2.rhaos4.12.el9.x86_64.rpm skopeo-debugsource-1.9.4-2.rhaos4.12.el9.x86_64.rpm skopeo-tests-1.9.4-2.rhaos4.12.el9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2022-2879 https://access.redhat.com/security/cve/CVE-2022-2880 https://access.redhat.com/security/cve/CVE-2022-41715 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY+5149zjgjWX9erEAQh79g//X7soE5+j6JR46rjha/fPthyhgY5W71yT c2J8JlIZGB1B/MdUz3MefjjQOSlPHMOcKydZ8cZSUqo/TUhtp11HiH4aRxhEgbuM TWhQF5y3GGa2qsecfGYj2HV9BDDpehaN1OxVNMnIgTX/Appt0T+nONvqZKaKGfnR +buIyTi0e2gT6ckPxA1CXOwynepwctTd8W4nkK6bJTaX1UcgWhMWrivbL5497HD6 uh5nODOJARypPNgMzZRJIXuBG6rCnX4UynpXS8PkDYiS7KGCySQCg8p3X4hEAEIT S/PG1w5CTrhB8Wh4bYstnSD9US4G8Pqa14crO8ZfCrwR95dPtTtF6fbkkUpEwrvm GNWMrh8RchpBkZofOUvLaU0DasD+kN8AlAgCmgDrSbGI6ZELqF/VK12kLa6/Ytkz kr5ETUk2pAg5qyZQPFsCBNZflolpfb43RQTJveBu5EmmA/9CvZheL+U1BAlHihIA qO+RMFhx3FRNx7xqSNuIIz1yNR4ANJ1o5K6phgzg5lV82yNXbNTGZAO9+1KXIMzE IfV/1Z55z5Na2C2yEqn3eXjkz2ZRik9TZLXA9TEmdtsZplGJSERE2aXWQua/463F PgsLmKARviref6GGd9uN2VYTOad3cbaVOGUB/TlXYl+rPz5xGr74qsRN2bcCC3au m8uIIbf44Gg=hUKM -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Feb 16, 2023
Red Hat
98
security advisorydenial of servicesecurity updateRed Hat OpenShift 4.11.16 RHSA-2022-8534-01 Low Severity: DoS Issue
Red Hat OpenShift Container Platform release 4.11.16 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Low: OpenShift Container Platform 4.11.16 security update Advisory ID: RHSA-2022:8534-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2022:8534 Issue date: 2022-11-24 CVE Names: CVE-2022-32189 ==================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.11.16 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenShift Container Platform 4.11 - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.11.16. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHSA-2022:8535 Security Fix(es): * golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service (CVE-2022-32189) For more details about the security issue(s), including the impact, aCVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. All OpenShift Container Platform 4.11 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift Console or the CLI oc command. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.11/html/updating_clusters/updating-cluster-cli 4. Solution: See the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.11/html/release_notes/ocp-4-11-release-notes Details on how to access this content are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.11/html/updating_clusters/updating-cluster-cli 5. Bugs fixed (https://bugzilla.redhat.com/): 2113814 - CVE-2022-32189 golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service 6. Package List: Red Hat OpenShift Container Platform4.11: Source: atomic-openshift-service-idler-4.11.0-202211072116.p0.ga0f9090.assembly.stream.el8.src.rpm butane-0.15.0-3.rhaos4.11.el8.src.rpm openshift-4.11.0-202211072116.p0.g5157800.assembly.stream.el8.src.rpm openshift-ansible-4.11.0-202211072116.p0.gdf73941.assembly.stream.el8.src.rpm openshift-clients-4.11.0-202211072116.p0.g142cb44.assembly.stream.el8.src.rpm openshift-kuryr-4.11.0-202211072116.p0.g93daed6.assembly.stream.el8.src.rpm openvswitch2.17-2.17.0-62.el8fdp.src.rpm aarch64: atomic-openshift-service-idler-4.11.0-202211072116.p0.ga0f9090.assembly.stream.el8.aarch64.rpm butane-0.15.0-3.rhaos4.11.el8.aarch64.rpm butane-debuginfo-0.15.0-3.rhaos4.11.el8.aarch64.rpm butane-debugsource-0.15.0-3.rhaos4.11.el8.aarch64.rpm network-scripts-openvswitch2.17-2.17.0-62.el8fdp.aarch64.rpm openshift-clients-4.11.0-202211072116.p0.g142cb44.assembly.stream.el8.aarch64.rpm openshift-hyperkube-4.11.0-202211072116.p0.g5157800.assembly.stream.el8.aarch64.rpm openvswitch2.17-2.17.0-62.el8fdp.aarch64.rpm openvswitch2.17-debuginfo-2.17.0-62.el8fdp.aarch64.rpm openvswitch2.17-debugsource-2.17.0-62.el8fdp.aarch64.rpm openvswitch2.17-devel-2.17.0-62.el8fdp.aarch64.rpm openvswitch2.17-ipsec-2.17.0-62.el8fdp.aarch64.rpm python3-openvswitch2.17-2.17.0-62.el8fdp.aarch64.rpm python3-openvswitch2.17-debuginfo-2.17.0-62.el8fdp.aarch64.rpm noarch: butane-redistributable-0.15.0-3.rhaos4.11.el8.noarch.rpm openshift-ansible-4.11.0-202211072116.p0.gdf73941.assembly.stream.el8.noarch.rpm openshift-ansible-test-4.11.0-202211072116.p0.gdf73941.assembly.stream.el8.noarch.rpm openshift-kuryr-cni-4.11.0-202211072116.p0.g93daed6.assembly.stream.el8.noarch.rpm openshift-kuryr-common-4.11.0-202211072116.p0.g93daed6.assembly.stream.el8.noarch.rpm openshift-kuryr-controller-4.11.0-202211072116.p0.g93daed6.assembly.stream.el8.noarch.rpm openvswitch2.17-test-2.17.0-62.el8fdp.noarch.rpm python3-kuryr-kubernetes-4.11.0-202211072116.p0.g93daed6.assembly.stream.el8.noarch.rpm ppc64le: atomic-openshift-service-idler-4.11.0-202211072116.p0.ga0f9090.assembly.stream.el8.ppc64le.rpm butane-0.15.0-3.rhaos4.11.el8.ppc64le.rpm butane-debuginfo-0.15.0-3.rhaos4.11.el8.ppc64le.rpm butane-debugsource-0.15.0-3.rhaos4.11.el8.ppc64le.rpm network-scripts-openvswitch2.17-2.17.0-62.el8fdp.ppc64le.rpm openshift-clients-4.11.0-202211072116.p0.g142cb44.assembly.stream.el8.ppc64le.rpm openshift-hyperkube-4.11.0-202211072116.p0.g5157800.assembly.stream.el8.ppc64le.rpm openvswitch2.17-2.17.0-62.el8fdp.ppc64le.rpm openvswitch2.17-debuginfo-2.17.0-62.el8fdp.ppc64le.rpm openvswitch2.17-debugsource-2.17.0-62.el8fdp.ppc64le.rpm openvswitch2.17-devel-2.17.0-62.el8fdp.ppc64le.rpm openvswitch2.17-ipsec-2.17.0-62.el8fdp.ppc64le.rpm python3-openvswitch2.17-2.17.0-62.el8fdp.ppc64le.rpm python3-openvswitch2.17-debuginfo-2.17.0-62.el8fdp.ppc64le.rpm s390x: atomic-openshift-service-idler-4.11.0-202211072116.p0.ga0f9090.assembly.stream.el8.s390x.rpm butane-0.15.0-3.rhaos4.11.el8.s390x.rpm butane-debuginfo-0.15.0-3.rhaos4.11.el8.s390x.rpm butane-debugsource-0.15.0-3.rhaos4.11.el8.s390x.rpm network-scripts-openvswitch2.17-2.17.0-62.el8fdp.s390x.rpm openshift-clients-4.11.0-202211072116.p0.g142cb44.assembly.stream.el8.s390x.rpm openshift-hyperkube-4.11.0-202211072116.p0.g5157800.assembly.stream.el8.s390x.rpm openvswitch2.17-2.17.0-62.el8fdp.s390x.rpm openvswitch2.17-debuginfo-2.17.0-62.el8fdp.s390x.rpm openvswitch2.17-debugsource-2.17.0-62.el8fdp.s390x.rpm openvswitch2.17-devel-2.17.0-62.el8fdp.s390x.rpm openvswitch2.17-ipsec-2.17.0-62.el8fdp.s390x.rpm python3-openvswitch2.17-2.17.0-62.el8fdp.s390x.rpm python3-openvswitch2.17-debuginfo-2.17.0-62.el8fdp.s390x.rpm x86_64: atomic-openshift-service-idler-4.11.0-202211072116.p0.ga0f9090.assembly.stream.el8.x86_64.rpm butane-0.15.0-3.rhaos4.11.el8.x86_64.rpm butane-debuginfo-0.15.0-3.rhaos4.11.el8.x86_64.rpm butane-debugsource-0.15.0-3.rhaos4.11.el8.x86_64.rpm network-scripts-openvswitch2.17-2.17.0-62.el8fdp.x86_64.rpm openshift-clients-4.11.0-202211072116.p0.g142cb44.assembly.stream.el8.x86_64.rpm openshift-clients-redistributable-4.11.0-202211072116.p0.g142cb44.assembly.stream.el8.x86_64.rpm openshift-hyperkube-4.11.0-202211072116.p0.g5157800.assembly.stream.el8.x86_64.rpm openvswitch2.17-2.17.0-62.el8fdp.x86_64.rpm openvswitch2.17-debuginfo-2.17.0-62.el8fdp.x86_64.rpm openvswitch2.17-debugsource-2.17.0-62.el8fdp.x86_64.rpm openvswitch2.17-devel-2.17.0-62.el8fdp.x86_64.rpm openvswitch2.17-ipsec-2.17.0-62.el8fdp.x86_64.rpm python3-openvswitch2.17-2.17.0-62.el8fdp.x86_64.rpm python3-openvswitch2.17-debuginfo-2.17.0-62.el8fdp.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2022-32189 https://access.redhat.com/security/updates/classification#low 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY38VZ9zjgjWX9erEAQgEMhAAhjqGsfr5SqPrvV1shtcSGDOofkZKaQhG BsWvXApooS/lIJrJ9tuUwSREDrD8sw2iddS7cT2Fo+MFs6slTlfM9obahZEPoO8Y RklJHcaI6n5qxfrHPNeho71L0awjksi/yCvo7PBZy1w3aYwhwAkHrDZs3srUNEN4 qWvdTu/Gxvmre13MA0OMNVKud9OqRayJehFaWjizdbe1Q19lJSiYaIRtzyo14+j5 ZB62tuT7gObTr90M9YsNWic8Ato2A5s3IGY6mFmh6WEhJbHXojEnXonE6ph/2q80 Fu+wN3iiX5u++lNGF/UZzYONIiO9L7ik61F931a/oUv5mDuJvll0zPtArxCuvb/J TiDYnPsyaaB9wWetpL2cI9TYzRjeqmzX2UEDdrAIQ+sPFPlwtbTEFqkoyZt47ko1 TPzTsOMrSv/wFrP0+ntyLcUZgEOrfElZX6OB1FtBsJV1I//1Pte6N9bDgSpCMQ8r v9qlBw9bOS0a2ifSK9Dng/y10dlK05UVOuljkq+i1wE/cjnSGD1F8uoTHdiGGPcr W6G1MJmvhlreHUtwyd/S/WbrTzv2jK3FTxMpGerM6pUPt/4EV1JMnUBXEVx1kZfL A8LJ2y1AoqJAgP/5y3ORAZ2CKWeUfspjUgOeKVq9oFBbkIHe8Ol96eRmLr2bxf9J TU+JSdiRJas=2ICB -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Nov 24, 2022
•Low
Red Hat
98
security advisorymoderatesecurity issueRed Hat OpenShift 3.11 Moderate: RHSA-2022:2281-01 Security Update
Red Hat OpenShift Container Platform release 3.11.705 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 3.11.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: OpenShift Container Platform 3.11.705 security update Advisory ID: RHSA-2022:2281-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2022:2281 Issue date: 2022-05-31 CVE Names: CVE-2018-25032 CVE-2022-1271 CVE-2022-1677 CVE-2022-21426 CVE-2022-21434 CVE-2022-21443 CVE-2022-21476 CVE-2022-21496 CVE-2022-21698 CVE-2022-29036 CVE-2022-29046 CVE-2022-29599 ==================================================================== 1. Summary: Red Hat OpenShift Container Platform release 3.11.705 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 3.11. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 3.11.705. See the following advisory for the RPM packages for this release: https://access.redhat.com/errata/RHSA-2022:2280 Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will beupdated shortly for this release, for details about these changes: Security Fix(es): * openshift/router: route hijacking attack via crafted HAProxy configuration file (CVE-2022-1677) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: For OpenShift Container Platform 3.11 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/3.11/html/release_notes/release-notes-ocp-3-11-release-notes Details on how to access this content are available at https://docs.redhat.com/en/documentation/openshift_container_platform/3.11/html/upgrading_clusters/install-config-upgrading-index 4. Bugs fixed (https://bugzilla.redhat.com/): 2076211 - CVE-2022-1677 openshift/router: route hijacking attack via crafted HAProxy configuration file 2086938 - Placeholder bug for OCP 3.11.z image release 5. References: https://access.redhat.com/security/cve/CVE-2018-25032 https://access.redhat.com/security/cve/CVE-2022-1271 https://access.redhat.com/security/cve/CVE-2022-1677 https://access.redhat.com/security/cve/CVE-2022-21426 https://access.redhat.com/security/cve/CVE-2022-21434 https://access.redhat.com/security/cve/CVE-2022-21443 https://access.redhat.com/security/cve/CVE-2022-21476 https://access.redhat.com/security/cve/CVE-2022-21496 https://access.redhat.com/security/cve/CVE-2022-21698 https://access.redhat.com/security/cve/CVE-2022-29036 https://access.redhat.com/security/cve/CVE-2022-29046 https://access.redhat.com/security/cve/CVE-2022-29599 https://access.redhat.com/security/updates/classification/#moderate 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGPSIGNATURE----- Version: GnuPG v1 iQIVAwUBYpYjptzjgjWX9erEAQgU8g/8C/b0KCGsh0xLI3l6ShAaJibDJ1XyplL0 5NvgtdukOIi1TF3o3HI3Fy8tM7arDpXUSuf/fGW6Bk/+mud8OIbl7cJFBJq9aVDw eoDovnWkbiSMtegakiCazmhtF5N0diSIj8oKYbBx3hccZ2wJl7XpZgJaQbsz5A0d gQdYKx/Jnrhj48FCMlKk5VbEfP76Cm3TtSdkAralvRUKrv3kKFc7e6Jyjl/9+YpN FkqGJHlbpvKetBLZGMJOaMcXlcOb27sbURdJrRYoLLCphz0sR7MCV30rPmqSdq5F 9my92ABfaQ9ODGsn3YIG5qL8S6ZE4X/wjM+rIwV7C5NGzC8UQVwi8DdRZp0cm4qA o0DWb6dXXwIAOCJz08qShb0wP4gAf4PIrfcm4fcK6JdtRkVJ5FSbQS1KXysE/cPw maiJ6MF5R1vQRyrDe1g3+m3DsVgyeQcmKZSrH8lYaTqS8TSeieiuNOQjLJcqDmXi 3O5v+vgSYJv1K/V9E6rzvc3w4fE2C1FjOL0wCTfvVMv7SdfgrV6UEV4Gf2LD4GtR icLhnTAKTqw0A817U2A3gKPKdRA2+c75s5YM6cXW8Arv3Mzt+nkHTdPJnUtoZwNb vFZDIY/LXi/5b0VIyU3AQpjTIPoHAfT+P9wqB9xgG1OGatzZIdnnOk1T37U7S2Ou Xg7Lxx50JNQ=DTk8 -----END PGP SIGNATURE----- -- RHSA-announce mailing list
May 31, 2022
Red Hat
98
security advisoryupdatered hatRed Hat OpenShift 4.5.34 RHSA-2021:0713-01 Low: Data Race DoS
Red Hat OpenShift Container Platform release 4.5.34 is now available with updates to packages and images that fix several bugs and add enhancements. This release also includes a security update for Red Hat OpenShift Container Platform 4.5.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Low: OpenShift Container Platform 4.5.34 packages and security update Advisory ID: RHSA-2021:0713-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2021:0713 Issue date: 2021-03-11 CVE Names: CVE-2020-15586 CVE-2020-16845 ==================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.5.34 is now available with updates to packages and images that fix several bugs and add enhancements. This release also includes a security update for Red Hat OpenShift Container Platform 4.5. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenShift Container Platform 4.5 - noarch, ppc64le, s390x, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Security Fix(es): * golang: Data race in certain net/http servers including ReverseProxy can lead to DoS (CVE-2020-15586) * golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs (CVE-2020-16845) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. This advisorycontains the RPM packages for Red Hat OpenShift Container Platform 4.5.34. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHBA-2021:0714 All OpenShift Container Platform 4.5 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift Console or the CLI oc command. Instructions for upgrading a cluster are available at - -between-minor.html#understanding-upgrade-channels_updating-cluster-between - -minor. 4. Solution: For OpenShift Container Platform 4.5 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.5/html/release_notes/ocp-4-5-release-notes Details on how to access this content are available at - -cli.html. 5. Bugs fixed (https://bugzilla.redhat.com/): 1856953 - CVE-2020-15586 golang: data race in certain net/http servers including ReverseProxy can lead to DoS 1867099 - CVE-2020-16845 golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs 1934454 - Placeholder bug for OCP 4.5.z rpm release 6. Package List: Red Hat OpenShift Container Platform4.5: Source: apb-2.0.3-3.el7.src.rpm containernetworking-plugins-0.8.6-2.rhaos4.5.el7.src.rpm cri-o-1.18.4-7.rhaos4.5.git572d9f7.el7.src.rpm cri-tools-1.18.0-4.el7.src.rpm golang-github-prometheus-promu-0.5.0-3.git642a960.el7.src.rpm openshift-4.5.0-202102261511.p0.git.0.f0229b9.el7.src.rpm noarch: apb-container-scripts-2.0.3-3.el7.noarch.rpm apb-devel-2.0.3-3.el7.noarch.rpm ppc64le: apb-2.0.3-3.el7.ppc64le.rpm containernetworking-plugins-0.8.6-2.rhaos4.5.el7.ppc64le.rpm containernetworking-plugins-debuginfo-0.8.6-2.rhaos4.5.el7.ppc64le.rpm cri-o-1.18.4-7.rhaos4.5.git572d9f7.el7.ppc64le.rpm cri-o-debuginfo-1.18.4-7.rhaos4.5.git572d9f7.el7.ppc64le.rpm cri-tools-1.18.0-4.el7.ppc64le.rpm cri-tools-debuginfo-1.18.0-4.el7.ppc64le.rpm golang-github-prometheus-promu-0.5.0-3.git642a960.el7.ppc64le.rpm openshift-hyperkube-4.5.0-202102261511.p0.git.0.f0229b9.el7.ppc64le.rpm prometheus-promu-0.5.0-3.git642a960.el7.ppc64le.rpm s390x: apb-2.0.3-3.el7.s390x.rpm containernetworking-plugins-0.8.6-2.rhaos4.5.el7.s390x.rpm containernetworking-plugins-debuginfo-0.8.6-2.rhaos4.5.el7.s390x.rpm cri-o-1.18.4-7.rhaos4.5.git572d9f7.el7.s390x.rpm cri-o-debuginfo-1.18.4-7.rhaos4.5.git572d9f7.el7.s390x.rpm cri-tools-1.18.0-4.el7.s390x.rpm cri-tools-debuginfo-1.18.0-4.el7.s390x.rpm golang-github-prometheus-promu-0.5.0-3.git642a960.el7.s390x.rpm openshift-hyperkube-4.5.0-202102261511.p0.git.0.f0229b9.el7.s390x.rpm prometheus-promu-0.5.0-3.git642a960.el7.s390x.rpm x86_64: apb-2.0.3-3.el7.x86_64.rpm containernetworking-plugins-0.8.6-2.rhaos4.5.el7.x86_64.rpm containernetworking-plugins-debuginfo-0.8.6-2.rhaos4.5.el7.x86_64.rpm cri-o-1.18.4-7.rhaos4.5.git572d9f7.el7.x86_64.rpm cri-o-debuginfo-1.18.4-7.rhaos4.5.git572d9f7.el7.x86_64.rpm cri-tools-1.18.0-4.el7.x86_64.rpm cri-tools-debuginfo-1.18.0-4.el7.x86_64.rpm golang-github-prometheus-promu-0.5.0-3.git642a960.el7.x86_64.rpm openshift-hyperkube-4.5.0-202102261511.p0.git.0.f0229b9.el7.x86_64.rpm prometheus-promu-0.5.0-3.git642a960.el7.x86_64.rpm Red Hat OpenShift Container Platform4.5: Source: buildah-1.11.6-9.rhaos4.5.el8.src.rpm containernetworking-plugins-0.8.6-2.rhaos4.5.el8.src.rpm cri-o-1.18.4-7.rhaos4.5.git572d9f7.el8.src.rpm cri-tools-1.18.0-4.el8.src.rpm openshift-4.5.0-202102261511.p0.git.0.f0229b9.el8.src.rpm ppc64le: buildah-1.11.6-9.rhaos4.5.el8.ppc64le.rpm buildah-debuginfo-1.11.6-9.rhaos4.5.el8.ppc64le.rpm buildah-debugsource-1.11.6-9.rhaos4.5.el8.ppc64le.rpm buildah-tests-1.11.6-9.rhaos4.5.el8.ppc64le.rpm buildah-tests-debuginfo-1.11.6-9.rhaos4.5.el8.ppc64le.rpm containernetworking-plugins-0.8.6-2.rhaos4.5.el8.ppc64le.rpm containernetworking-plugins-debuginfo-0.8.6-2.rhaos4.5.el8.ppc64le.rpm containernetworking-plugins-debugsource-0.8.6-2.rhaos4.5.el8.ppc64le.rpm cri-o-1.18.4-7.rhaos4.5.git572d9f7.el8.ppc64le.rpm cri-o-debuginfo-1.18.4-7.rhaos4.5.git572d9f7.el8.ppc64le.rpm cri-o-debugsource-1.18.4-7.rhaos4.5.git572d9f7.el8.ppc64le.rpm cri-tools-1.18.0-4.el8.ppc64le.rpm cri-tools-debuginfo-1.18.0-4.el8.ppc64le.rpm cri-tools-debugsource-1.18.0-4.el8.ppc64le.rpm openshift-hyperkube-4.5.0-202102261511.p0.git.0.f0229b9.el8.ppc64le.rpm s390x: buildah-1.11.6-9.rhaos4.5.el8.s390x.rpm buildah-debuginfo-1.11.6-9.rhaos4.5.el8.s390x.rpm buildah-debugsource-1.11.6-9.rhaos4.5.el8.s390x.rpm buildah-tests-1.11.6-9.rhaos4.5.el8.s390x.rpm buildah-tests-debuginfo-1.11.6-9.rhaos4.5.el8.s390x.rpm containernetworking-plugins-0.8.6-2.rhaos4.5.el8.s390x.rpm containernetworking-plugins-debuginfo-0.8.6-2.rhaos4.5.el8.s390x.rpm containernetworking-plugins-debugsource-0.8.6-2.rhaos4.5.el8.s390x.rpm cri-o-1.18.4-7.rhaos4.5.git572d9f7.el8.s390x.rpm cri-o-debuginfo-1.18.4-7.rhaos4.5.git572d9f7.el8.s390x.rpm cri-o-debugsource-1.18.4-7.rhaos4.5.git572d9f7.el8.s390x.rpm cri-tools-1.18.0-4.el8.s390x.rpm cri-tools-debuginfo-1.18.0-4.el8.s390x.rpm cri-tools-debugsource-1.18.0-4.el8.s390x.rpm openshift-hyperkube-4.5.0-202102261511.p0.git.0.f0229b9.el8.s390x.rpm x86_64: buildah-1.11.6-9.rhaos4.5.el8.x86_64.rpm buildah-debuginfo-1.11.6-9.rhaos4.5.el8.x86_64.rpm buildah-debugsource-1.11.6-9.rhaos4.5.el8.x86_64.rpm buildah-tests-1.11.6-9.rhaos4.5.el8.x86_64.rpm buildah-tests-debuginfo-1.11.6-9.rhaos4.5.el8.x86_64.rpm containernetworking-plugins-0.8.6-2.rhaos4.5.el8.x86_64.rpm containernetworking-plugins-debuginfo-0.8.6-2.rhaos4.5.el8.x86_64.rpm containernetworking-plugins-debugsource-0.8.6-2.rhaos4.5.el8.x86_64.rpm cri-o-1.18.4-7.rhaos4.5.git572d9f7.el8.x86_64.rpm cri-o-debuginfo-1.18.4-7.rhaos4.5.git572d9f7.el8.x86_64.rpm cri-o-debugsource-1.18.4-7.rhaos4.5.git572d9f7.el8.x86_64.rpm cri-tools-1.18.0-4.el8.x86_64.rpm cri-tools-debuginfo-1.18.0-4.el8.x86_64.rpm cri-tools-debugsource-1.18.0-4.el8.x86_64.rpm openshift-hyperkube-4.5.0-202102261511.p0.git.0.f0229b9.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-15586 https://access.redhat.com/security/cve/CVE-2020-16845 https://access.redhat.com/security/updates/classification/#low 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYEmhTtzjgjWX9erEAQhkPg/9FhZC6mR9uIG6Md+AnwHhE6/kxmGywEbM wNVq1SxweGOPe9DcXDkHdcwahJ9Xs0mX275IrJZoMLid7BGKg/Gxe4YhQchHvSdt qxYqqOEhXWTpv1MlnMxutqp3ck47CEOIBvr6maEt5bm4XUAOPSk8rbS/Viv6mXQS L9zfHTGj8mXcUblyQhxD3Crn+0U8Iqb0/3feIUhjJcH0WwoaIfxBzFWHCAZYSpHj naOtyvoYr/q+JfMNHIuXtvvxp2hmn+/xRM/TNHYjM3YtBlVzNHKBnujWpjnipfCX JnNOvC3kUl1vIi9kLIkBrDV8iEbfZLqxoujOWcDnSTAnSwJW+vdDdUxYB5Gv323E c5+CokoxsTx8aGj+LFeluHH7p1XtUX0z9vO/WX9zG1DaH2LeSvJOkA0h/aoMGtAW NuUEuYyB7EdzZ5yFBK1r7aiZbhcJLmN2BBmn72tSIBf6rvs1qPPlvjI/Yi6oIuB1 zUSz8159OBSDXXuB+wzUX56R0Zc+u9ClWIKeFA7a7rRVqHEYbX4v05Aa0y+LMFLx CCmQUHfnRYp56OAXbb+dt3aUtgRdgBuynwY0Qa8QPAJprL1jZlrri+nRdjja9W1P nLKxYlQ84V+SbZ7BQyTWCx/G/i7gWNKQWCnMdioqD0ZCznSAeh74xhxSJqE+YSBs OcLzx3zOesQ=A+WZ -----END PGP SIGNATURE----- -- RHSA-announce mailinglist
Mar 10, 2021
•Low
Red Hat
98
security advisoryRed Hatred hatRed Hat OpenShift 4.5: RHSA-2021:0313-01 Important Auth Issues
Red Hat OpenShift Container Platform release 4.5.31 is now available with updates to packages and images that fix several bugs. This release also includes a security update for Red Hat OpenShift Container Platform 4.5.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: OpenShift Container Platform 4.5.31 bug fix and security update Advisory ID: RHSA-2021:0313-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2021:0313 Issue date: 2021-02-09 CVE Names: CVE-2020-14382 CVE-2021-20198 ==================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.5.31 is now available with updates to packages and images that fix several bugs. This release also includes a security update for Red Hat OpenShift Container Platform 4.5. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.5.31. See the following advisory for the RPM packages for this release: https://access.redhat.com/errata/RHBA-2021:0314 Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes: https://docs.redhat.com/en/documentation/openshift_container_platform/4.5/html/release_notes/ocp-4-5-release-notes You may download the oc tool and use it to inspectrelease image metadata as follows: (For x86_64 architecture) $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.5.31-x86_64 The image digest is sha256:27951dd757d472bf913daaffa548b865e87968831ca6f42c1f6946f7dcf0564e (For s390x architecture) $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.5.31-s390x The image digest is sha256:4ee2c785e4a3b1cb0716e84d649a1489d7a72f6735ffd7a3a933218609cb58ec (For ppc64le architecture) $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.5.31-ppc64le The image digest is sha256:8469f7f1f98d595f503c7ebc1df2f3c2755012441d4d21684914db45193a55ef All OpenShift Container Platform 4.5 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift Console or the CLI oc command. Instructions for upgrading a cluster are available at - -between-minor.html#understanding-upgrade-channels_updating-cluster-between - -minor. Security Fix(es): * openshift/installer: Bootstrap nodes allow anonymous authentication on kubelet port 10250 (CVE-2021-20198) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: For OpenShift Container Platform 4.5 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.5/html/release_notes/ocp-4-5-release-notes Details on how to access this content are available at - -cli.html. 4. Bugs fixed (https://bugzilla.redhat.com/): 1880333 - [release 4.5] machine-config-operator: Fix bug in reflector not recovering from "Too large resource version" 1882694 - [4.5] PIN OVS version for OVN-Kubernetes 1895202 - Helm chart fails to install using developerconsole because of TLS certificate error 1905106 - (release-4.5) Collect spec config for clusteroperator resources 1919848 - Placeholder bug for OCP 4.5.z rpm release 1920764 - CVE-2021-20198 openshift/installer: Bootstrap nodes allow anonymous authentication on kubelet port 10250 1921252 - with sharded ingresscontrollers, all shards reload when any endpoint changes 5. References: https://access.redhat.com/security/cve/CVE-2020-14382 https://access.redhat.com/security/cve/CVE-2021-20198 https://access.redhat.com/security/updates/classification#important 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYCKTz9zjgjWX9erEAQiz0RAApBxS7Ml5xWuBMKrm+Ntux7Jn0ybjvyGR F2GCtQV1XrZ7HFPGUF7mT4IsQc/tt6JPi6A48L9/r4cs6+6Lr30LYAeSP7pyZtcA w5lbN/Q/y3VPVCCbJQOCg47w4S3SJmCCV51np0uFfa1V+shh75x4k2+ej1TQBku5 GRyaEfTZOcFfGUOPID5/SwoMHu43BKzf3XXuSY/JPLuRI2M0bm9GHrHvhKkC87nF 9uocCGNZBgJKTNJFsyZEBZnw9/rOXmt4OgqJ7lcrbSnrDraopCEqZcAZfXj7T+Th 1urGpxmh0VZTRfoYMnZLpY88WLVtpRvXo7vgAhjicXPcINNNLTfm5fILbwpbs+Qb zqarWzzt8ToTMphDFmNkvrREfwd4MQRobMUYrq+dC6RDRJA6HM5K5UA/wSRuTc9J kgNdVQI+waMcH4bWo+VcdBCxF8nijuOA6LQaWGcxaJ280a0ZzM5wgUP5bvctUn7t nrjYgUchWA8bwA1ydeEGBdnU4CQ8XmZVslAURi42SGf0JLsESq0+qV2LERjbW8RY WmzvaWi2jET3vhZSysgeICzZMfcGwRw8BaUZ9Drr30jn80l3RSVh/5bUT1qXAZnz GasGJhl7fc8ubaMYCjz5txOMF+b9Rcj8yKzTa5QBtIlnuF2bU/AL9DbL2BT7lz3R zg7YwconLzc=YI/B -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Feb 09, 2021
•Important
Red Hat
98
security advisorymoderatesecurity fixRedHat OpenShift 3.11: RHSA-2020-0796 Moderate: APB Base Privilege Issue
An update for openshift-enterprise-apb-base-container is now available for Red Hat OpenShift Container Platform 3.11. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: OpenShift Container Platform 3.11 openshift-enterprise-apb-base-container security update Advisory ID: RHSA-2020:0796-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2020:0796 Issue date: 2020-03-20 CVE Names: CVE-2019-19348 ==================================================================== 1. Summary: An update for openshift-enterprise-apb-base-container is now available for Red Hat OpenShift Container Platform 3.11. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Security Fix(es): * openshift/apb-base: /etc/passwd is given incorrect privileges (CVE-2019-19348) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: See the following documentation, which will be updated shortly for release 3.11.188, for important instructions on how to upgrade your cluster and fully apply this asynchronous errataupdate: https://docs.redhat.com/en/documentation/openshift_container_platform/3.11/html/release_notes/release-notes-ocp-3-11-release-notes This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258. 4. Bugs fixed (https://bugzilla.redhat.com/): 1793286 - CVE-2019-19348 openshift/apb-base: /etc/passwd is given incorrect privileges 5. References: https://access.redhat.com/security/cve/CVE-2019-19348 https://access.redhat.com/security/updates/classification#moderate 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXnQOFtzjgjWX9erEAQixKhAAhRBVk1o2L/nmPZo0afW5S62zpWbq+8YT c+IabBbVK3GMnKGSn1vrNqfp8la0dowqu1wX+9DSYuU05InDgEDW6Znbmdo17gv6 1iJfIamLzf1/tnFife8suv+YDipvqSOFueOy3/HOEX+plqbPXtRxw9gWcTuZGWY/ MgoPdAIsQD8CHCmEBIX0kkEU/ZIP1Ho0Pa7FrADDH6WmwT/ebwFn0s2awAPxW43P kSnfR0yGukFyB7mPGaoqFBeRt7PRNsdb/LBDUjIgr4Kwnv5BXKNVyV8kcLNW1B3r zeR0s8vwpFmKg4NbTQabMfCy9jKfCoP9gBTow9zkwKLOHfQKFOrdovK00XTRvnZe l33nf2kF2lzNJTZd32Hnt2MQc1wPiHOVAeTDOdB7ZXuOJYN472xdUeWQGb3vS/Ik KZP16L4CzF6OKfS5W9c4Gp22nsh2wj0ypCAjCnEgVLNHrPgug8XWzebPuyhHCzwL MmUZ+bV655VPCJJORmlJ7PQJkGqzGzzZFFBs4szOS3TXGllDbtNDcv4o1vuzgLm7 DOTuxZZhpFlyz4RmAylpUXol9or/6BasnzJHa3G6Tin5CKBhJaNj4zmbnyvQG/tc Ol3STS6ReVQixemGhvgpsv6fIaZB1ElrrmRndtOwh11+fgZlmwqy+R0SxhZG7SEd S3KcSyW1eLk=aVKy -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Mar 19, 2020
Red Hat
98
security advisorymoderateaccess restrictionsRedHat RHSA-2019-4090:01 Moderate OpenShift 4.1 libseccomp-golang Update
An update for openshift-enterprise-cli-container, openshift-enterprise-hyperkube-container, openshift-enterprise-hypershift-container, openshift-enterprise-node-container, and ose-cli-artifacts-container is now. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: OpenShift Container Platform 4.1 libseccomp-golang security update Advisory ID: RHSA-2019:4090-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2019:4090 Issue date: 2019-12-17 CVE Names: CVE-2017-18367 ==================================================================== 1. Summary: An update for openshift-enterprise-cli-container, openshift-enterprise-hyperkube-container, openshift-enterprise-hypershift-container, openshift-enterprise-node-container, and ose-cli-artifacts-container is now available for Red Hat OpenShift Container Platform 4.1. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Security Fix(es): * libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions (CVE-2017-18367) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: For OpenShift Container Platform 4.1 see the following documentation, which will be updated shortly for release 4.1.27, for important instructions on how to upgrade your cluster and fully apply thisasynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.1/html/release_notes/ocp-4-1-release-notes Details on how to access this content are available at - -cli.html. 4. Bugs fixed (https://bugzilla.redhat.com/): 1706826 - CVE-2017-18367 libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions 5. References: https://access.redhat.com/security/cve/CVE-2017-18367 https://access.redhat.com/security/updates/classification/#moderate 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXfiGktzjgjWX9erEAQgp1Q/9EjtQiNa09je9qHH3h84SR7I4BzQGyqlk AkCrnrtFRWxbYocLgbK4GW772h5j8XvjXNExMDjjxYkPWqjlqYkTc0CJPHt77lwz gRFPFfYex3dxgmflf23S5UK0GPQegzx4e1IOO4cHLzy/0MCLue2LOEEvw+b3z9VO L6mz8Bw9hTiuLiuzzkC5Yrn1IguIz2y3xsX+KNqrU43a60OS34ErJwwnx72tf3nT +Kqop+yN8RceJX5fYWIt13el7pUQM+vsXDnfyNvZ469tbAN8u9n4BSTIFanLFsRy WadY5SvYLtfwlOlrCg19b6HBVS0Om3Ov6fp4sh9H8BLqc+BHFFfL2nGF4lp2cUJ+ mnn0spXr1EOMowSQ7l5xAevfql8XBCpkKPICVWScqXfk/LivvGCccmxoQu5zcTwP lhcgl61MasoAKhI7GiOTTKHU4gr3R5g44c985GdhyDYeW9YvKVeBvKs3IAlUoSPX 1506J7TJNVmdlnRRCU36Y5UU4z4QW8pINxfn1ZXhmNxNBrDCpG1ur1EePElLz90A qheFY2p71BbivzKp/ahVK3Ay9bPVFJ4OOXUhnALGVRgg59NMgfoYZ2mRBJcenKHy ZmetMLVG4xqQou9q6cUienxLLQH/4+2SlFNQoROTERy89WYrLe1iIwZuTyDWOCFZ tR0RN1pGARA=B1rm -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Dec 17, 2019
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!