RHBA-2023:1649

Description

Red Hat Bug Fix Advisory: OpenShift Container Platform 4.11.35 packages and security update

CVSS Metrics

• v3.1•HIGH•Score: 8.2CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L

Affected Systems

• redhat•cri-o

  < 0:1.24.5-2.rhaos4.11.gitb007cb6.el8

• redhat•cri-o-debuginfo

  < 0:1.24.5-2.rhaos4.11.gitb007cb6.el8

• redhat•cri-o-debugsource

  < 0:1.24.5-2.rhaos4.11.gitb007cb6.el8

• redhat•haproxy

  < 0:2.2.24-3.rhaos4.11.el8

• redhat•haproxy-debugsource

  < 0:2.2.24-3.rhaos4.11.el8

• redhat•haproxy22

  < 0:2.2.24-3.rhaos4.11.el8

• redhat•haproxy22-debuginfo

  < 0:2.2.24-3.rhaos4.11.el8

• redhat•kernel-rt

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-core

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-debug

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-debug-core

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-debug-debuginfo

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-debug-devel

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-debug-kvm

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-debug-modules

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-debug-modules-extra

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-debug-modules-internal

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-debuginfo

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-debuginfo-common-x86_64

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-devel

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-kvm

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-modules

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-modules-extra

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-modules-internal

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•kernel-rt-selftests-internal

  < 0:4.18.0-372.51.1.rt7.208.el8_6

• redhat•openshift

  < 0:4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8

• redhat•openshift-hyperkube

  < 0:4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8

References (14)

• https://access.redhat.com/errata/RHBA-2023:1649
• https://issues.redhat.com/browse/OCPBUGS-11407
• https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhba-2023_1649.json
• https://access.redhat.com/security/cve/CVE-2021-38561
• https://bugzilla.redhat.com/show_bug.cgi?id=2100495
• https://www.cve.org/CVERecord?id=CVE-2021-38561
• https://nvd.nist.gov/vuln/detail/CVE-2021-38561
• https://pkg.go.dev/vuln/GO-2021-0113
• https://access.redhat.com/security/cve/CVE-2023-25725
• https://bugzilla.redhat.com/show_bug.cgi?id=2169089
• https://www.cve.org/CVERecord?id=CVE-2023-25725
• https://nvd.nist.gov/vuln/detail/CVE-2023-25725
• https://www.haproxy.com/blog/february-2023-header-parser-fixed/
• https://www.mail-archive.com/haproxy@formilux.org/msg43229.html