RHBA-2019:2794
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 16 Sept 2024, 02:53
Last modified:21 Feb 2026, 10:02
Vulnerability Summary
Overall Risk (default)
low
19/100 CVSS Score
4.8 MEDIUM
3.0 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
16 Sept 2024, 02:53
Published
Vulnerability first disclosed
21 Feb 2026, 10:02
Last Modified
Vulnerability information updated
Description
Red Hat Bug Fix Advisory: OpenShift Container Platform 4.1.16 packages update
CVSS Metrics
- v3.0•MEDIUM•Score: 4.8CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
Affected Systems
- redhat•atomic-enterprise-service-catalog
< 1:4.1.16-201909090609.git.1.cc4acc1.el7
- redhat•atomic-enterprise-service-catalog-svcat
< 1:4.1.16-201909090609.git.1.cc4acc1.el7
- redhat•jenkins-2-plugins
< 0:4.1.1567784275-1.el7
- redhat•openshift
< 0:4.1.16-201909090609.git.0.2f97059.el7 | < 0:4.1.16-201909090609.git.0.2f97059.el8
- redhat•openshift-ansible
< 0:4.1.16-201909090609.git.162.a0800db.el7
- redhat•openshift-clients
< 0:4.1.16-201909090609.git.0.2f97059.el7 | < 0:4.1.16-201909090609.git.0.2f97059.el8
- redhat•openshift-clients-redistributable
< 0:4.1.16-201909090609.git.0.2f97059.el7 | < 0:4.1.16-201909090609.git.0.2f97059.el8
- redhat•openshift-hyperkube
< 0:4.1.16-201909090609.git.0.2f97059.el7 | < 0:4.1.16-201909090609.git.0.2f97059.el8
References (8)
- https://access.redhat.com/errata/RHBA-2019:2794
- https://bugzilla.redhat.com/show_bug.cgi?id=1749938
- https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhba-2019_2794.json
- https://access.redhat.com/security/cve/CVE-2019-11249
- https://bugzilla.redhat.com/show_bug.cgi?id=1737651
- https://www.cve.org/CVERecord?id=CVE-2019-11249
- https://nvd.nist.gov/vuln/detail/CVE-2019-11249
- https://groups.google.com/forum/#!topic/kubernetes-security-discuss/Vf31dXp0EJc