RHSA-2024:8418

Description

Red Hat Security Advisory: OpenShift Container Platform 4.16.z security update

CVSS Metrics

• v3.1•MEDIUM•Score: 6.7CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected Systems

• redhat•cri-o

  < 0:1.29.9-6.rhaos4.16.gite7bd45a.el8 | < 0:1.29.9-6.rhaos4.16.gite7bd45a.el9

• redhat•cri-o-debuginfo

  < 0:1.29.9-6.rhaos4.16.gite7bd45a.el8 | < 0:1.29.9-6.rhaos4.16.gite7bd45a.el9

• redhat•cri-o-debugsource

  < 0:1.29.9-6.rhaos4.16.gite7bd45a.el8 | < 0:1.29.9-6.rhaos4.16.gite7bd45a.el9

• redhat•python-zipp

  < 0:3.19.1-1.el9

• redhat•python3-zipp

  < 0:3.19.1-1.el9

References (19)

• https://access.redhat.com/errata/RHSA-2024:8418
• https://access.redhat.com/security/updates/classification/#moderate
• https://bugzilla.redhat.com/show_bug.cgi?id=2292787
• https://bugzilla.redhat.com/show_bug.cgi?id=2296413
• https://bugzilla.redhat.com/show_bug.cgi?id=2317467
• https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8418.json
• https://access.redhat.com/security/cve/CVE-2024-5569
• https://www.cve.org/CVERecord?id=CVE-2024-5569
• https://nvd.nist.gov/vuln/detail/CVE-2024-5569
• https://github.com/jaraco/zipp/commit/fd604bd34f0343472521a36da1fbd22e793e14fd
• https://huntr.com/bounties/be898306-11f9-46b4-b28c-f4c4aa4ffbae
• https://access.redhat.com/security/cve/CVE-2024-9676
• https://www.cve.org/CVERecord?id=CVE-2024-9676
• https://nvd.nist.gov/vuln/detail/CVE-2024-9676
• https://github.com/advisories/GHSA-wq2p-5pc6-wpgf
• https://access.redhat.com/security/cve/CVE-2024-24790
• https://www.cve.org/CVERecord?id=CVE-2024-24790
• https://nvd.nist.gov/vuln/detail/CVE-2024-24790
• https://github.com/containers/storage/commit/935c58f4b3e364a9c9d33ed06476a831e6ad5679