RHSA-2019:3132

Description

Red Hat Security Advisory: OpenShift Container Platform 4.1.20 openshift security update

CVSS Metrics

• v3.0•HIGH•Score: 7.5CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Systems

• redhat•openshift

  < 0:4.1.20-201910101746.git.0.a80aad5.el7 | < 0:4.1.20-201910101746.git.0.a80aad5.el8

• redhat•openshift-clients

  < 0:4.1.20-201910101746.git.0.a80aad5.el7 | < 0:4.1.20-201910101746.git.0.a80aad5.el8

• redhat•openshift-clients-redistributable

  < 0:4.1.20-201910101746.git.0.a80aad5.el7 | < 0:4.1.20-201910101746.git.0.a80aad5.el8

• redhat•openshift-hyperkube

  < 0:4.1.20-201910101746.git.0.a80aad5.el7 | < 0:4.1.20-201910101746.git.0.a80aad5.el8

References (8)

• https://access.redhat.com/errata/RHSA-2019:3132
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=1757701
• https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3132.json
• https://access.redhat.com/security/cve/CVE-2019-11253
• https://www.cve.org/CVERecord?id=CVE-2019-11253
• https://nvd.nist.gov/vuln/detail/CVE-2019-11253
• https://www.stackrox.com/post/2019/09/protecting-kubernetes-api-against-cve-2019-11253-billion-laughs-attack/