RHSA-2020:5634
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: OpenShift Container Platform 4.7.0 packages security update
CVSS Metrics
- v3.1•HIGH•Score: 8.6CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
Affected Systems
- redhat•cri-o
< 0:1.20.0-0.rhaos4.7.git8921e00.el7.51 | < 0:1.20.0-0.rhaos4.7.git8921e00.el8.51
- redhat•cri-o-debuginfo
< 0:1.20.0-0.rhaos4.7.git8921e00.el7.51 | < 0:1.20.0-0.rhaos4.7.git8921e00.el8.51
- redhat•cri-o-debugsource
< 0:1.20.0-0.rhaos4.7.git8921e00.el8.51
- redhat•cri-tools
< 0:1.18.0-3.el7 | < 0:1.20.0-1.el8
- redhat•cri-tools-debuginfo
< 0:1.18.0-3.el7 | < 0:1.20.0-1.el8
- redhat•cri-tools-debugsource
< 0:1.20.0-1.el8
- redhat•ignition
< 0:2.9.0-2.rhaos4.7.git1d56dc8.el8
- redhat•ignition-debuginfo
< 0:2.9.0-2.rhaos4.7.git1d56dc8.el8
- redhat•ignition-debugsource
< 0:2.9.0-2.rhaos4.7.git1d56dc8.el8
- redhat•ignition-validate
< 0:2.9.0-2.rhaos4.7.git1d56dc8.el8
- redhat•ignition-validate-debuginfo
< 0:2.9.0-2.rhaos4.7.git1d56dc8.el8
- redhat•openshift
< 0:4.7.0-202102060108.p0.git.97095.7271b90.el7 | < 0:4.7.0-202102060108.p0.git.97095.7271b90.el8
- redhat•openshift-hyperkube
< 0:4.7.0-202102060108.p0.git.97095.7271b90.el7 | < 0:4.7.0-202102060108.p0.git.97095.7271b90.el8
- redhat•python-rsa
< 0:4.7-1.el8
- redhat•python3-rsa
< 0:4.7-1.el8
References (34)
- https://access.redhat.com/errata/RHSA-2020:5634
- https://access.redhat.com/security/updates/classification/#moderate
- https://bugzilla.redhat.com/show_bug.cgi?id=1693905
- https://bugzilla.redhat.com/show_bug.cgi?id=1886640
- https://bugzilla.redhat.com/show_bug.cgi?id=1888248
- https://bugzilla.redhat.com/show_bug.cgi?id=1889972
- https://bugzilla.redhat.com/show_bug.cgi?id=1910081
- https://bugzilla.redhat.com/show_bug.cgi?id=1921650
- https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2020_5634.json
- https://access.redhat.com/security/cve/CVE-2019-3884
- https://www.cve.org/CVERecord?id=CVE-2019-3884
- https://nvd.nist.gov/vuln/detail/CVE-2019-3884
- https://access.redhat.com/security/cve/CVE-2020-8566
- https://www.cve.org/CVERecord?id=CVE-2020-8566
- https://nvd.nist.gov/vuln/detail/CVE-2020-8566
- https://github.com/kubernetes/kubernetes/issues/95624
- https://groups.google.com/g/kubernetes-announce/c/ScdmyORnPDk
- https://access.redhat.com/security/cve/CVE-2020-15157
- https://www.cve.org/CVERecord?id=CVE-2020-15157
- https://nvd.nist.gov/vuln/detail/CVE-2020-15157
- https://github.com/containerd/containerd/releases/tag/v1.2.14
- https://github.com/containerd/containerd/security/advisories/GHSA-742w-89gc-8m9c
- https://www.openwall.com/lists/oss-security/2020/10/15/1
- https://access.redhat.com/security/cve/CVE-2020-25658
- https://www.cve.org/CVERecord?id=CVE-2020-25658
- https://nvd.nist.gov/vuln/detail/CVE-2020-25658
- https://github.com/sybrenstuvel/python-rsa/issues/165
- https://access.redhat.com/security/cve/CVE-2020-28362
- https://bugzilla.redhat.com/show_bug.cgi?id=1897635
- https://www.cve.org/CVERecord?id=CVE-2020-28362
- https://nvd.nist.gov/vuln/detail/CVE-2020-28362
- https://access.redhat.com/security/cve/CVE-2021-3121
- https://www.cve.org/CVERecord?id=CVE-2021-3121
- https://nvd.nist.gov/vuln/detail/CVE-2021-3121