RHSA-2024:0880

Description

Red Hat Security Advisory: Release of OpenShift Serverless Client kn 1.31.1 security update

CVSS Metrics

• v3.1•HIGH•Score: 8.1CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•openshift-serverless-clients

  < 0:1.10.0-6.el8

References (25)

• https://access.redhat.com/errata/RHSA-2024:0880
• https://access.redhat.com/security/updates/classification/#critical
• https://access.redhat.com/documentation/en-us/red_hat_openshift_serverless/1.31
• https://bugzilla.redhat.com/show_bug.cgi?id=2253330
• https://bugzilla.redhat.com/show_bug.cgi?id=2254210
• https://bugzilla.redhat.com/show_bug.cgi?id=2258143
• https://bugzilla.redhat.com/show_bug.cgi?id=2258165
• https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0880.json
• https://access.redhat.com/security/cve/CVE-2023-39326
• https://www.cve.org/CVERecord?id=CVE-2023-39326
• https://nvd.nist.gov/vuln/detail/CVE-2023-39326
• https://pkg.go.dev/vuln/GO-2023-2382
• https://access.redhat.com/security/cve/CVE-2023-48795
• https://www.cve.org/CVERecord?id=CVE-2023-48795
• https://nvd.nist.gov/vuln/detail/CVE-2023-48795
• https://access.redhat.com/solutions/7071748
• https://terrapin-attack.com/
• https://access.redhat.com/security/cve/CVE-2023-49568
• https://www.cve.org/CVERecord?id=CVE-2023-49568
• https://nvd.nist.gov/vuln/detail/CVE-2023-49568
• https://github.com/go-git/go-git/security/advisories/GHSA-mw99-9chc-xw7r
• https://access.redhat.com/security/cve/CVE-2023-49569
• https://www.cve.org/CVERecord?id=CVE-2023-49569
• https://nvd.nist.gov/vuln/detail/CVE-2023-49569
• https://github.com/go-git/go-git/security/advisories/GHSA-449p-3h89-pw88