RHSA-2022:0055

Description

Red Hat Security Advisory: OpenShift Container Platform 4.10.3 bug fix and security update

CVSS Metrics

• v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Systems

• redhat•cri-o

  < 0:1.23.0-92.rhaos4.10.gitdaab4d1.el7 | < 0:1.23.1-9.rhaos4.10.gitbdffb9a.el8

• redhat•cri-o-debuginfo

  < 0:1.23.0-92.rhaos4.10.gitdaab4d1.el7 | < 0:1.23.1-9.rhaos4.10.gitbdffb9a.el8

• redhat•cri-o-debugsource

  < 0:1.23.1-9.rhaos4.10.gitbdffb9a.el8

• redhat•jenkins

  < 0:2.319.2.1643288987-1.el8

• redhat•jenkins-2-plugins

  < 0:4.10.1643404185-1.el8

• redhat•openshift

  < 0:4.10.0-202202250816.p0.ge419edf.assembly.stream.el7 | < 0:4.10.0-202202250816.p0.ge419edf.assembly.stream.el8

• redhat•openshift-clients

  < 0:4.10.0-202202160023.p0.gf93da17.assembly.stream.el7 | < 0:4.10.0-202202160023.p0.gf93da17.assembly.stream.el8

• redhat•openshift-clients-redistributable

  < 0:4.10.0-202202160023.p0.gf93da17.assembly.stream.el7 | < 0:4.10.0-202202160023.p0.gf93da17.assembly.stream.el8

• redhat•openshift-hyperkube

  < 0:4.10.0-202202250816.p0.ge419edf.assembly.stream.el7 | < 0:4.10.0-202202250816.p0.ge419edf.assembly.stream.el8

References (39)

• https://access.redhat.com/errata/RHSA-2022:0055
• https://access.redhat.com/security/updates/classification/#moderate
• https://bugzilla.redhat.com/show_bug.cgi?id=1129074
• https://bugzilla.redhat.com/show_bug.cgi?id=2011949
• https://bugzilla.redhat.com/show_bug.cgi?id=2024938
• https://bugzilla.redhat.com/show_bug.cgi?id=2030801
• https://bugzilla.redhat.com/show_bug.cgi?id=2030806
• https://bugzilla.redhat.com/show_bug.cgi?id=2051730
• https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0055.json
• https://access.redhat.com/security/cve/CVE-2014-3577
• https://www.cve.org/CVERecord?id=CVE-2014-3577
• https://nvd.nist.gov/vuln/detail/CVE-2014-3577
• https://access.redhat.com/security/cve/CVE-2021-21684
• https://www.cve.org/CVERecord?id=CVE-2021-21684
• https://nvd.nist.gov/vuln/detail/CVE-2021-21684
• https://www.jenkins.io/security/advisory/2021-10-06/#SECURITY-2499
• https://access.redhat.com/security/cve/CVE-2021-41190
• https://www.cve.org/CVERecord?id=CVE-2021-41190
• https://nvd.nist.gov/vuln/detail/CVE-2021-41190
• https://github.com/moby/moby/security/advisories/GHSA-xmmx-7jpf-fx42
• https://github.com/opencontainers/distribution-spec/security/advisories/GHSA-mc8v-mgrf-8f4m
• https://github.com/opencontainers/image-spec/security/advisories/GHSA-77vh-xpmg-72qh
• https://access.redhat.com/security/cve/CVE-2021-41772
• https://bugzilla.redhat.com/show_bug.cgi?id=2020736
• https://www.cve.org/CVERecord?id=CVE-2021-41772
• https://nvd.nist.gov/vuln/detail/CVE-2021-41772
• https://groups.google.com/g/golang-announce/c/0fM21h43arc
• https://access.redhat.com/security/cve/CVE-2021-44716
• https://www.cve.org/CVERecord?id=CVE-2021-44716
• https://nvd.nist.gov/vuln/detail/CVE-2021-44716
• https://groups.google.com/g/golang-announce/c/hcmEScgc00k
• https://access.redhat.com/security/cve/CVE-2021-44717
• https://www.cve.org/CVERecord?id=CVE-2021-44717
• https://nvd.nist.gov/vuln/detail/CVE-2021-44717
• https://access.redhat.com/security/cve/CVE-2022-0532
• https://www.cve.org/CVERecord?id=CVE-2022-0532
• https://nvd.nist.gov/vuln/detail/CVE-2022-0532
• https://github.com/cri-o/cri-o/security/advisories/GHSA-w2j5-3rcx-vx7x
• https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/#enabling-unsafe-sysctls