RHSA-2023:7201
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: OpenShift Container Platform 4.15.0 packages and security update
CVSS Metrics
- v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Systems
- redhat•buildah
< 1:1.29.1-20.2.rhaos4.15.el8 | < 1:1.29.1-20.2.rhaos4.15.el9
- redhat•buildah-debuginfo
< 1:1.29.1-20.2.rhaos4.15.el8 | < 1:1.29.1-20.2.rhaos4.15.el9
- redhat•buildah-debugsource
< 1:1.29.1-20.2.rhaos4.15.el8 | < 1:1.29.1-20.2.rhaos4.15.el9
- redhat•buildah-tests
< 1:1.29.1-20.2.rhaos4.15.el8 | < 1:1.29.1-20.2.rhaos4.15.el9
- redhat•buildah-tests-debuginfo
< 1:1.29.1-20.2.rhaos4.15.el8 | < 1:1.29.1-20.2.rhaos4.15.el9
- redhat•butane
< 0:0.20.0-1.rhaos4.15.el8
- redhat•butane-debuginfo
< 0:0.20.0-1.rhaos4.15.el8
- redhat•butane-debugsource
< 0:0.20.0-1.rhaos4.15.el8
- redhat•butane-redistributable
< 0:0.20.0-1.rhaos4.15.el8
- redhat•containernetworking-plugins
< 1:1.4.0-1.1.rhaos4.15.el8
- redhat•containernetworking-plugins-debuginfo
< 1:1.4.0-1.1.rhaos4.15.el8
- redhat•containernetworking-plugins-debugsource
< 1:1.4.0-1.1.rhaos4.15.el8
- redhat•cri-o
< 0:1.28.3-14.rhaos4.15.git33aabd8.el8 | < 0:1.28.3-14.rhaos4.15.git33aabd8.el9
- redhat•cri-o-debuginfo
< 0:1.28.3-14.rhaos4.15.git33aabd8.el8 | < 0:1.28.3-14.rhaos4.15.git33aabd8.el9
- redhat•cri-o-debugsource
< 0:1.28.3-14.rhaos4.15.git33aabd8.el8 | < 0:1.28.3-14.rhaos4.15.git33aabd8.el9
- redhat•cri-tools
< 0:1.28.0-3.el8 | < 0:1.28.0-3.el9
- redhat•cri-tools-debuginfo
< 0:1.28.0-3.el8 | < 0:1.28.0-3.el9
- redhat•cri-tools-debugsource
< 0:1.28.0-3.el8 | < 0:1.28.0-3.el9
- redhat•ignition
< 0:2.16.2-2.rhaos4.15.el9
- redhat•ignition-debuginfo
< 0:2.16.2-2.rhaos4.15.el9
- redhat•ignition-debugsource
< 0:2.16.2-2.rhaos4.15.el9
- redhat•ignition-validate
< 0:2.16.2-2.rhaos4.15.el9
- redhat•ignition-validate-debuginfo
< 0:2.16.2-2.rhaos4.15.el9
- redhat•openshift
< 0:4.15.0-202402142009.p0.g6216ea1.assembly.stream.el8 | < 0:4.15.0-202402142009.p0.g6216ea1.assembly.stream.el9
- redhat•openshift-clients
< 0:4.15.0-202402070507.p0.g48dcf59.assembly.stream.el8 | < 0:4.15.0-202402070507.p0.g48dcf59.assembly.stream.el9
- redhat•openshift-clients-redistributable
< 0:4.15.0-202402070507.p0.g48dcf59.assembly.stream.el8 | < 0:4.15.0-202402070507.p0.g48dcf59.assembly.stream.el9
- redhat•openshift-hyperkube
< 0:4.15.0-202402142009.p0.g6216ea1.assembly.stream.el8 | < 0:4.15.0-202402142009.p0.g6216ea1.assembly.stream.el9
- redhat•podman
< 3:4.4.1-21.rhaos4.15.el8 | < 3:4.4.1-21.rhaos4.15.el9
- redhat•podman-catatonit
< 3:4.4.1-21.rhaos4.15.el8
- redhat•podman-catatonit-debuginfo
< 3:4.4.1-21.rhaos4.15.el8
- redhat•podman-debuginfo
< 3:4.4.1-21.rhaos4.15.el8 | < 3:4.4.1-21.rhaos4.15.el9
- redhat•podman-debugsource
< 3:4.4.1-21.rhaos4.15.el8 | < 3:4.4.1-21.rhaos4.15.el9
- redhat•podman-docker
< 3:4.4.1-21.rhaos4.15.el8 | < 3:4.4.1-21.rhaos4.15.el9
- redhat•podman-gvproxy
< 3:4.4.1-21.rhaos4.15.el8 | < 3:4.4.1-21.rhaos4.15.el9
- redhat•podman-gvproxy-debuginfo
< 3:4.4.1-21.rhaos4.15.el8 | < 3:4.4.1-21.rhaos4.15.el9
- redhat•podman-plugins
< 3:4.4.1-21.rhaos4.15.el8 | < 3:4.4.1-21.rhaos4.15.el9
- redhat•podman-plugins-debuginfo
< 3:4.4.1-21.rhaos4.15.el8 | < 3:4.4.1-21.rhaos4.15.el9
- redhat•podman-remote
< 3:4.4.1-21.rhaos4.15.el8 | < 3:4.4.1-21.rhaos4.15.el9
- redhat•podman-remote-debuginfo
< 3:4.4.1-21.rhaos4.15.el8 | < 3:4.4.1-21.rhaos4.15.el9
- redhat•podman-tests
< 3:4.4.1-21.rhaos4.15.el8 | < 3:4.4.1-21.rhaos4.15.el9
- redhat•runc
< 4:1.1.12-1.rhaos4.15.el8 | < 4:1.1.12-1.rhaos4.15.el9
- redhat•runc-debuginfo
< 4:1.1.12-1.rhaos4.15.el8 | < 4:1.1.12-1.rhaos4.15.el9
- redhat•runc-debugsource
< 4:1.1.12-1.rhaos4.15.el8 | < 4:1.1.12-1.rhaos4.15.el9
- redhat•skopeo
< 2:1.11.2-21.1.rhaos4.15.el8 | < 2:1.11.2-21.1.rhaos4.15.el9
- redhat•skopeo-debuginfo
< 2:1.11.2-21.1.rhaos4.15.el8 | < 2:1.11.2-21.1.rhaos4.15.el9
- redhat•skopeo-debugsource
< 2:1.11.2-21.1.rhaos4.15.el8 | < 2:1.11.2-21.1.rhaos4.15.el9
- redhat•skopeo-tests
< 2:1.11.2-21.1.rhaos4.15.el8 | < 2:1.11.2-21.1.rhaos4.15.el9
References (33)
- https://access.redhat.com/errata/RHSA-2023:7201
- https://access.redhat.com/security/updates/classification/#important
- https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
- https://bugzilla.redhat.com/show_bug.cgi?id=2231370
- https://bugzilla.redhat.com/show_bug.cgi?id=2242803
- https://bugzilla.redhat.com/show_bug.cgi?id=2243296
- https://bugzilla.redhat.com/show_bug.cgi?id=2251198
- https://bugzilla.redhat.com/show_bug.cgi?id=2253193
- https://bugzilla.redhat.com/show_bug.cgi?id=2253330
- https://bugzilla.redhat.com/show_bug.cgi?id=2253994
- https://bugzilla.redhat.com/show_bug.cgi?id=2254210
- https://bugzilla.redhat.com/show_bug.cgi?id=2258725
- https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2023_7201.json
- https://access.redhat.com/security/cve/CVE-2023-39325
- https://www.cve.org/CVERecord?id=CVE-2023-39325
- https://nvd.nist.gov/vuln/detail/CVE-2023-39325
- https://access.redhat.com/security/cve/CVE-2023-44487
- https://go.dev/issue/63417
- https://pkg.go.dev/vuln/GO-2023-2102
- https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487
- https://access.redhat.com/security/cve/CVE-2023-39326
- https://www.cve.org/CVERecord?id=CVE-2023-39326
- https://nvd.nist.gov/vuln/detail/CVE-2023-39326
- https://pkg.go.dev/vuln/GO-2023-2382
- https://access.redhat.com/security/cve/CVE-2023-45287
- https://www.cve.org/CVERecord?id=CVE-2023-45287
- https://nvd.nist.gov/vuln/detail/CVE-2023-45287
- https://pkg.go.dev/vuln/GO-2023-2375
- https://access.redhat.com/security/cve/CVE-2023-48795
- https://www.cve.org/CVERecord?id=CVE-2023-48795
- https://nvd.nist.gov/vuln/detail/CVE-2023-48795
- https://access.redhat.com/solutions/7071748
- https://terrapin-attack.com/