RHBA-2021:2979

Description

Red Hat Bug Fix Advisory: OpenShift Container Platform 4.7.23 packages update

CVSS Metrics

• v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Systems

• redhat•atomic-openshift-service-idler

  < 0:4.7.0-202107291238.p0.git.39cfc66.assembly.stream.el8

• redhat•cri-o

  < 0:1.20.4-7.rhaos4.7.git6287500.el7 | < 0:1.20.4-7.rhaos4.7.git6287500.el8

• redhat•cri-o-debuginfo

  < 0:1.20.4-7.rhaos4.7.git6287500.el7 | < 0:1.20.4-7.rhaos4.7.git6287500.el8

• redhat•cri-o-debugsource

  < 0:1.20.4-7.rhaos4.7.git6287500.el8

• redhat•ignition

  < 0:2.9.0-4.rhaos4.7.git1d56dc8.el8

• redhat•ignition-debuginfo

  < 0:2.9.0-4.rhaos4.7.git1d56dc8.el8

• redhat•ignition-debugsource

  < 0:2.9.0-4.rhaos4.7.git1d56dc8.el8

• redhat•ignition-validate

  < 0:2.9.0-4.rhaos4.7.git1d56dc8.el8

• redhat•ignition-validate-debuginfo

  < 0:2.9.0-4.rhaos4.7.git1d56dc8.el8

• redhat•openshift

  < 0:4.7.0-202107292242.p0.git.558d959.assembly.stream.el7 | < 0:4.7.0-202107292242.p0.git.558d959.assembly.stream.el8

• redhat•openshift-clients

  < 0:4.7.0-202107292242.p0.git.8b4b094.assembly.stream.el7 | < 0:4.7.0-202107292242.p0.git.8b4b094.assembly.stream.el8

• redhat•openshift-clients-redistributable

  < 0:4.7.0-202107292242.p0.git.8b4b094.assembly.stream.el7 | < 0:4.7.0-202107292242.p0.git.8b4b094.assembly.stream.el8

• redhat•openshift-hyperkube

  < 0:4.7.0-202107292242.p0.git.558d959.assembly.stream.el7 | < 0:4.7.0-202107292242.p0.git.558d959.assembly.stream.el8

• redhat•redhat-release-coreos

  < 0:47.84-1.el8

References (27)

• https://access.redhat.com/errata/RHBA-2021:2979
• https://bugzilla.redhat.com/show_bug.cgi?id=1988937
• https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhba-2021_2979.json
• https://access.redhat.com/security/cve/CVE-2021-31525
• https://bugzilla.redhat.com/show_bug.cgi?id=1958341
• https://www.cve.org/CVERecord?id=CVE-2021-31525
• https://nvd.nist.gov/vuln/detail/CVE-2021-31525
• https://groups.google.com/g/golang-announce/c/cu9SP4eSXMc
• https://access.redhat.com/security/cve/CVE-2021-33195
• https://bugzilla.redhat.com/show_bug.cgi?id=1989564
• https://www.cve.org/CVERecord?id=CVE-2021-33195
• https://nvd.nist.gov/vuln/detail/CVE-2021-33195
• https://groups.google.com/g/golang-announce/c/RgCMkAEQjSI
• https://access.redhat.com/security/cve/CVE-2021-33197
• https://bugzilla.redhat.com/show_bug.cgi?id=1989570
• https://www.cve.org/CVERecord?id=CVE-2021-33197
• https://nvd.nist.gov/vuln/detail/CVE-2021-33197
• https://access.redhat.com/security/cve/CVE-2021-33198
• https://bugzilla.redhat.com/show_bug.cgi?id=1989575
• https://www.cve.org/CVERecord?id=CVE-2021-33198
• https://nvd.nist.gov/vuln/detail/CVE-2021-33198
• https://access.redhat.com/security/cve/CVE-2021-34558
• https://bugzilla.redhat.com/show_bug.cgi?id=1983596
• https://www.cve.org/CVERecord?id=CVE-2021-34558
• https://nvd.nist.gov/vuln/detail/CVE-2021-34558
• https://golang.org/doc/devel/release#go1.15.minor
• https://golang.org/doc/devel/release#go1.16.minor