RHSA-2019:3143

Description

Red Hat Security Advisory: OpenShift Container Platform 3.11 atomic-openshift security update

CVSS Metrics

• v3.0•MEDIUM•Score: 5.9CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:L

Affected Systems

• redhat•atomic-openshift

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-clients

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-clients-redistributable

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-docker-excluder

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-excluder

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-hyperkube

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-hypershift

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-master

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-node

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-pod

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-sdn-ovs

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-template-service-broker

  < 0:3.11.153-1.git.0.aaf3f71.el7

• redhat•atomic-openshift-tests

  < 0:3.11.153-1.git.0.aaf3f71.el7

References (8)

• https://access.redhat.com/errata/RHSA-2019:3143
• https://access.redhat.com/security/updates/classification/#moderate
• https://bugzilla.redhat.com/show_bug.cgi?id=1713433
• https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3143.json
• https://access.redhat.com/security/cve/CVE-2019-10150
• https://www.cve.org/CVERecord?id=CVE-2019-10150
• https://nvd.nist.gov/vuln/detail/CVE-2019-10150
• https://docs.openshift.com/container-platform/3.11/dev_guide/builds/build_inputs.html#source-secrets-ssh-key-authentication