Headline
RHSA-2023:4730: Red Hat Security Advisory: OpenShift Container Platform 4.13.10 security update
Red Hat OpenShift Container Platform release 4.13.10 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Related CVEs:
- CVE-2021-20329: A flaw was found in Mongo. Specific cstrings input may not be properly validated in the MongoDB Go Driver when marshaling Go objects into BSON. This flaw allows a malicious user to use a Go object with a specific string to inject additional fields into marshaled documents.
Issued:
2023-08-30
Updated:
2023-08-30
RHSA-2023:4730 - Security Advisory
- Overview
- Updated Images
Synopsis
Moderate: OpenShift Container Platform 4.13.10 security update
Type/Severity
Security Advisory: Moderate
Topic
Red Hat OpenShift Container Platform release 4.13.10 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.13.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
Red Hat OpenShift Container Platform is Red Hat’s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.13.10. See the following advisory for the container images for this release:
https://access.redhat.com/errata/RHSA-2023:4731
Security Fix(es):
- mongo-go-driver: specific cstrings input may not be properly validated (CVE-2021-20329)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.13/updating/updating-cluster-cli.html
Affected Products
- Red Hat OpenShift Container Platform 4.13 for RHEL 9 x86_64
- Red Hat OpenShift Container Platform 4.13 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform for Power 4.13 for RHEL 9 ppc64le
- Red Hat OpenShift Container Platform for Power 4.13 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.13 for RHEL 9 s390x
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.13 for RHEL 8 s390x
- Red Hat OpenShift Container Platform for ARM 64 4.13 for RHEL 9 aarch64
- Red Hat OpenShift Container Platform for ARM 64 4.13 for RHEL 8 aarch64
Fixes
- BZ - 1971033 - CVE-2021-20329 mongo-go-driver: specific cstrings input may not be properly validated
- OCPBUGS-14954 - bf2-switch-mode.sh fails if multiple devices are detected
- OCPBUGS-15830 - LocalStorageOperator does not create PersistentVolumes
- OCPBUGS-17425 - Internal error occurred: add operation does not apply: doc is missing path: "/spec/containers/0/volumeMounts/-": missing value
- OCPBUGS-17525 - Prefer wwn- and scsi- prefixed device-ids in LSO
aarch64
openshift4/metallb-rhel8@sha256:d9293cd8470846d087e71409a37763e7af264384ae3b947a4287eb51da67496d
openshift-tech-preview/metallb-rhel8@sha256:d9293cd8470846d087e71409a37763e7af264384ae3b947a4287eb51da67496d
openshift4/dpu-network-rhel8-operator@sha256:d7cd610bf7909a5162f4cad5762bd1685f58b61aacd917ff9c26dc47157be329
openshift4/frr-rhel8@sha256:3db6792a0faa8aa026552f1d1a79a92037827ed6252c046e561feca5b894e2e0
openshift4/ingress-node-firewall@sha256:0d48bd259d2efb5b87798f1cf74501539ffe1b149ac073189eee0ab8b88d1004
openshift4/ingress-node-firewall-rhel8-operator@sha256:a54ca93e525b07369bfb1658c52f2a1f0d8410d252dd5bd377e6ecf82cfe1b92
openshift4/kubernetes-nmstate-rhel8-operator@sha256:db73017c52f514e5630573489f5ded9d84cec8ad7c8033a84c7328c7d074a05b
openshift4/metallb-rhel8-operator@sha256:1c0776329f175ca96950225d3301859e75e4dc955cc3b6279ccebc92c0529028
openshift4/ose-ansible-operator@sha256:b2bf1593bcb5cd3b02b763d8cf5a280451c3be637783dd9a3ed7b6acd765c6d7
openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:aa5921f7d1ee6166e76f713c9bab38cd6eb9e8baa26c577bc149b800d1a194a1
openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:9e40d072636d65c6ca5ae8c3a21df074a600bbdee923bdeb23bc1cfe6b66089e
openshift4/ose-cloud-event-proxy-rhel8@sha256:69b5e0698849cbd28e18e90ec7c16559e0e47394a51e1e4002fc3a8de6424521
openshift4/ose-cloud-event-proxy@sha256:69b5e0698849cbd28e18e90ec7c16559e0e47394a51e1e4002fc3a8de6424521
openshift4/ose-cluster-capacity@sha256:1d9dc38e20e26508a31038c444b2fc1f00a4a0828e7cdff06a2c6744ed6b0be7
openshift4/ose-cluster-kube-descheduler-operator@sha256:58a7c4212f3d8fa1e74ef06e984437b8970cdc097af552f7367000e1b4d6a478
openshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:58a7c4212f3d8fa1e74ef06e984437b8970cdc097af552f7367000e1b4d6a478
openshift4/ose-cluster-nfd-operator@sha256:38c38acc4b764a446c75ddffea74190c59528797fc2aa59b8e9933862528495f
openshift4/ose-clusterresourceoverride-rhel8@sha256:a3a2c4cfaf86560eb2deb06aa27beea9c41958a90afbbe5f498782d352e0b4ef
openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:792e0a0f1ddbd1fec0efeeb4b5d1c08ff0400077699f5861aa4b1863baad9703
openshift4/ose-csi-driver-shared-resource-mustgather-rhel8@sha256:8c738d4f884128a6669a9ea4f46e96375b5db46a9a3fd525953e872f5165cf63
openshift4/ose-descheduler@sha256:af18e72ccd7f929d9a6f468e6bdfdc8a6bbc5d6d64fcf2386dd521d9396c6a78
openshift4/ose-egress-dns-proxy@sha256:b4db2f2280c54684b645e56bb41926f1a7e8c4900f72338935ff37a7c888dbfe
openshift4/ose-egress-http-proxy@sha256:4726d76a8a381e1880a95154b341a98cff0f4ad1d1049a56d6f60f932df262e4
openshift4/ose-egress-router@sha256:8f9881084295d5bef406bffb41910994f9daafc656df82252a80540c75b7b072
openshift4/ose-gcp-filestore-csi-driver-rhel8@sha256:56d9becb29694e1b44caa998542aa23a9856bf6f0b2ac9480fa9ddf252e57022
openshift4/ose-gcp-filestore-csi-driver-rhel8-operator@sha256:7eebadd8ca702c01d75d8f93caf16949bebffd2fd458cf8128ca174f90530d4d
openshift4/ose-helm-operator@sha256:63c41d05e82662e9ccfc3711522315df6d3f0ffa4d1874eddffa9e923dde9aa2
openshift4/ose-kubernetes-nmstate-handler-rhel8@sha256:c82a9f7a7d1c23a228dd53b5d9e1b45a1ba683f363d5d7f2200b0f51d892dc24
openshift4/ose-local-storage-diskmaker@sha256:ca7fa3405f2155cfcc1e9d70077fb4901ce97327482076143fab034049b9945d
openshift4/ose-local-storage-mustgather-rhel8@sha256:1e9addbb6630af75443efbff26078092516fe884d749f583a1edde340d7a895d
openshift4/ose-local-storage-operator@sha256:9960f590e77ac94c447ff45edb01bc46751b8e48f3d2a65493a116c81b5b1e36
openshift4/ose-node-feature-discovery@sha256:2cbf40a0228213af7b8c9c99010af329d7521472614517161a76a5e003710748
openshift4/ose-node-problem-detector-rhel8@sha256:4d1023f1a9651ca76f9e161cbde4e283d1c35c7bd0f6f955c74b8cbd9ed044ef
openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:169619e6d8b2a30ccd791765cddee791b2ea12261cfc7105c0b810b13a7fa88f
openshift4/ose-operator-sdk-rhel8@sha256:8a3677913d742326daa550adf967e15522418a833d92ede4ccf5b0723f17acd1
openshift4/ose-ptp@sha256:1ad01122475b433662f1807d3adc9c00f8de1f4add42f494c0a34e2da8a39787
openshift4/ose-ptp-operator@sha256:d96d9b1618c1be83ac61a90280d2907533b5fae26cd91165315090f162facd93
openshift4/ose-sriov-cni@sha256:9feac24da71de0a1abd9ed1c98a14888589031ce1047046374a3b60c07677287
openshift4/ose-sriov-dp-admission-controller@sha256:f93452bde940b813e92ce477347e4bb78fc44bc6395a06c1f0056d0f09a8d729
openshift4/ose-sriov-infiniband-cni@sha256:0c9707a2e2333b3071fa0f610c51d2be2080d27abbfd6a9ad9cc535d6927c0cc
openshift4/ose-sriov-network-config-daemon@sha256:0af18a23459d5bfee8081b6bb7d0169ebcbde9431b6aa76447e320b96e48aa9d
openshift4/ose-sriov-network-device-plugin@sha256:0c9338507d824c8b9fa477a4b5b0d29d30137993f599d34807a7c6c4f8c22e98
openshift4/ose-sriov-network-operator@sha256:8158b15aeb91b257b86be6db08e61ae0bec4266e07640b6c69858d3070f35b72
openshift4/ose-sriov-network-webhook@sha256:432426c91257ed1b59d36ebc029b4702da4e0e6a61a74961e5e24543a0c24859
openshift4/ose-vertical-pod-autoscaler-rhel8@sha256:7f2990aeaedd2f62bc8ed88dff62102da76569c7b1ff31726fc65a38fdbf2d3e
openshift4/ose-vertical-pod-autoscaler-rhel8-operator@sha256:36b42330ec7f5f1e22502afcdab39d15131e50ac4c4ee3419c6d27917e2af6c0
openshift4/ptp-must-gather-rhel8@sha256:79e5055e946e52cad6014d9d00019767be9b8b2afe47531f3e78c6b3b344ad58
ppc64le
openshift4/metallb-rhel8@sha256:2305918e859d2ea4d609c38946d4612009e72201bce4c5a8f86ac08648d1e08a
openshift-tech-preview/metallb-rhel8@sha256:2305918e859d2ea4d609c38946d4612009e72201bce4c5a8f86ac08648d1e08a
openshift4/frr-rhel8@sha256:c85443e9f3d891b7780c3e31f3a5a104cb7c26e565cfd6973e0ee971d921848d
openshift4/ingress-node-firewall@sha256:376e5a18c3a975839c171e80f76fef9dc519f9bf06ca56e18be8f994ac785d2e
openshift4/ingress-node-firewall-rhel8-operator@sha256:dc1439bbe40d9102b4f3b7903cd27876fe6c25b6a03ad542fba4827b788c2605
openshift4/kubernetes-nmstate-rhel8-operator@sha256:0d5aebf94a87c48e42a8bb0462f37120a9b5624d1c76ecbd00426b83f0f39b96
openshift4/metallb-rhel8-operator@sha256:f42c283c2fce63d42402d78529781ccc7103672e3a94ed1a4ad9864530c20be1
openshift4/ose-ansible-operator@sha256:3c8ae7ac1c6e92f12fa3685be3b28ff23617c4bdb725a2632469049596377c69
openshift4/ose-cloud-event-proxy-rhel8@sha256:89452c3b59b8bb77345959e118a47ed16f5b93e72fcc7d2c96d03d0321d89e6c
openshift4/ose-cloud-event-proxy@sha256:89452c3b59b8bb77345959e118a47ed16f5b93e72fcc7d2c96d03d0321d89e6c
openshift4/ose-cluster-capacity@sha256:ed90e8654e207bc1f756bf4e5b0039c585ae809306a16a774154ffec8adc8a58
openshift4/ose-cluster-kube-descheduler-operator@sha256:801486def2afec44d6dd8a5529b61e67687a054a1b32d0481b73480ff7960e25
openshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:801486def2afec44d6dd8a5529b61e67687a054a1b32d0481b73480ff7960e25
openshift4/ose-cluster-nfd-operator@sha256:50aa3ca5885ff5feb181c95ab2ee480dba4d194103affd40072e625e10133b83
openshift4/ose-clusterresourceoverride-rhel8@sha256:2e53c4078673939e9e35eddd721756f92ce9af556f5176a3daab3fc07b31c4c9
openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ac70c975512b58b796ae136193300d18acce151949c011a2fc459b721f8dd6f7
openshift4/ose-csi-driver-shared-resource-mustgather-rhel8@sha256:52e74e275ab96432aa29b2ce4607fe189b9ad2a52865c1b7e2c77bea323f3aec
openshift4/ose-descheduler@sha256:16b5934a91c6569ba6008332cfd4a5a8b42eef92cc68901ea81ee83528da7271
openshift4/ose-egress-dns-proxy@sha256:d9649cff9e752a58d3091c821a5c19df752e0450999d068c3b477b4a3a7aee70
openshift4/ose-egress-http-proxy@sha256:985a7c3c247761ecdf485b558cfc0aa14601833474b5cb36d69a6804fd3e83e6
openshift4/ose-egress-router@sha256:beaff3f7e13b4274b60d8eb442afe814b8dc13d8a4f59c3b7fa0e538a1ec3348
openshift4/ose-gcp-filestore-csi-driver-rhel8@sha256:774ec7853d49e5760d9578e0d628fe8c9e95b5795d06235dac80ba18e67f56d1
openshift4/ose-gcp-filestore-csi-driver-rhel8-operator@sha256:b9ebc0b5032d5da44b5455fe2f90ef15bba45656332b394c65a709e4a14f3ca4
openshift4/ose-helm-operator@sha256:c222223bdc47c97c8a5715bb3e509a4335db39bbc4ed52ddb26c073a1a17d587
openshift4/ose-kubernetes-nmstate-handler-rhel8@sha256:c61bfee34151e8cb1f0df3c2290babae808dd4ea0e5e33aa2fefdb28df5a43a9
openshift4/ose-local-storage-diskmaker@sha256:621f960c20269699b4feb5961f88c3d19349ea1c2e3dfb964956d175b3493e7c
openshift4/ose-local-storage-mustgather-rhel8@sha256:1cfcbd2ffe7bfce855412d81463c9185fafa3806234a099c83b947de06eb8d1d
openshift4/ose-local-storage-operator@sha256:a54dda710c9f453ff95af7e4d1e0898f61163e6e8ef1e08435aff80451cb1030
openshift4/ose-node-feature-discovery@sha256:775ae0626ac9fc5c4565ed52f7ace706d15f098d02e8bb7d633c8facf913a438
openshift4/ose-node-problem-detector-rhel8@sha256:b839675c7b52c3e9639c5b460d8889f9a04dfd9924f1ae266ce561d7b41d3b42
openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:59527503fdb9947bdab2c2182be9612f8ba66fb9f91ece560feb90936c95dbe6
openshift4/ose-operator-sdk-rhel8@sha256:932b59b8ea04a33987d0f85139159b7935caadd972d9ad9c62569b1437d29c22
openshift4/ose-ptp@sha256:bf79f565387edf2703b82b25d2eb3b0e073c68a4ecc39c2b87487a34269cc5db
openshift4/ose-ptp-operator@sha256:d1f525662d6fa6a57b2460b70b979d3f87b54bcf959c1e0d3c3724bee15c0f08
openshift4/ose-sriov-cni@sha256:e9952c511d88aef34a0a2074a2582cd9aaabbf24b730f2fe5bfd35e08bb23cd9
openshift4/ose-sriov-dp-admission-controller@sha256:011c0deb5d3d01a9935b93394336836bd85f29ff8b0aa5d4834fbc99eaa5fccf
openshift4/ose-sriov-infiniband-cni@sha256:2a1704232ba11bd5f4b6d2419aa7af4f19eeddce8d8862df90de41121da9b57f
openshift4/ose-sriov-network-config-daemon@sha256:9005639223b1effde2a35e44c02a0870527ebf2560e064fcee33ed0b021b92a1
openshift4/ose-sriov-network-device-plugin@sha256:0b070b9dac3403ee030d2ac50cf112610d7bc2cf7d59b0c48c301bb078e807a4
openshift4/ose-sriov-network-operator@sha256:06add6d3726a6597c02f025a0b467a5fa1f3aa0ba57d9ffcd3294bed46d9a23f
openshift4/ose-sriov-network-webhook@sha256:aba77423eb1c58ef87bcab41d11618cfa3967d3b6fdf09b7460b17c3d0adee68
openshift4/ose-vertical-pod-autoscaler-rhel8@sha256:7b0f965fdde6d0c922ec555cb01fc6c9abdd0522dce0ffe339b8f6022edf3a2d
openshift4/ose-vertical-pod-autoscaler-rhel8-operator@sha256:70e6c7f4e2c20b626c6e4c3acca931a4e5929b70a45ee579bf61d8d0ca692592
openshift4/ptp-must-gather-rhel8@sha256:f21ec4d5819f2a8b4c04e989481e12a3d8151cd42c7a5c8ffd4d213c4c9609a9
s390x
openshift4/metallb-rhel8@sha256:de0cdc69537082018f99b890d223e036f67b35df25de2ac25f0e44b87765fac6
openshift-tech-preview/metallb-rhel8@sha256:de0cdc69537082018f99b890d223e036f67b35df25de2ac25f0e44b87765fac6
openshift4/frr-rhel8@sha256:2ddd4cb70a4072e7476db256cd74104aadd78c59bf481b37b1c0880ff016e9fd
openshift4/ingress-node-firewall@sha256:c7d12302e4f9f2d77d4a401e2f5ba75ba3d8b51d3eb019e7f320f9bee4538f55
openshift4/ingress-node-firewall-rhel8-operator@sha256:f64a46dad6ae9bfbeec5486226064a54aed7d5a3d0ba6c0e5ae8dce28955600d
openshift4/kubernetes-nmstate-rhel8-operator@sha256:fa8a87737acd9a5642d7c0f7156e2e57dde5e8241402b7fbf11efe2a46222680
openshift4/metallb-rhel8-operator@sha256:c3622aa93d8da3c638ebbd3af1348c257249aca107d30993cf666850ee9f494a
openshift4/ose-ansible-operator@sha256:4113a990f955b895f066a0f77ed0188bc31dce4c1bb8f0ec4d5e2e7297a64738
openshift4/ose-cluster-capacity@sha256:9d367203823fc67fd7413aa4893ee5bef11231e6b32ba081e7ce357db81599f2
openshift4/ose-cluster-kube-descheduler-operator@sha256:095da0163e3780856fc042528f7260b4575c90190cadb0510617ad4f4694f310
openshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:095da0163e3780856fc042528f7260b4575c90190cadb0510617ad4f4694f310
openshift4/ose-cluster-nfd-operator@sha256:b03e050b62bbdadd084acc7731f63362f146bb39e8c6c7303cd94a9074a46f8f
openshift4/ose-clusterresourceoverride-rhel8@sha256:c0f2e7d40d33ed58be336048b46d2a36b27e4acb5b863388070072355d1f75c5
openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:36685ad3d46ad80f8098c2f0718c6b7e3c6f9168215dca54cae6e071a3981bbf
openshift4/ose-csi-driver-shared-resource-mustgather-rhel8@sha256:a826b96194e7a2705050036dd124fa0664a232454002b474de1017cfc94bba89
openshift4/ose-descheduler@sha256:8d399257a1559ca731f603647c7513e11e6aa389065e0d2b70190439a98477e1
openshift4/ose-egress-dns-proxy@sha256:282fb0f5ea81591c4819ebb7e0edbec9939c1fd182fa4d49f1c3e725fe50adc4
openshift4/ose-egress-http-proxy@sha256:f08fafd87c00b193d1dd23586997e182b7b3f4cc0c4bb6b398bb616ba9153033
openshift4/ose-egress-router@sha256:6c61b4a3f69f26c8f074f64c1e07daf227a58f58df96f84d225ec6690d8e9fe7
openshift4/ose-helm-operator@sha256:f54d4f84e9ad966244fdebad8b98c8944a056fbcbdc01a2b73ffc9fbf93dbc76
openshift4/ose-kubernetes-nmstate-handler-rhel8@sha256:45ae7074f1d4e95b35c179788215b6a2e74be76eff66602bc46c739508176922
openshift4/ose-local-storage-diskmaker@sha256:cde6395ebd554b23d66650129a8a7eddf4048395c702dadf9805129063dd0684
openshift4/ose-local-storage-mustgather-rhel8@sha256:508cff3ef8517894e6ae2b6bd0c66d8037333368be492da953fa201943fb4ea5
openshift4/ose-local-storage-operator@sha256:03615b6cf787ef164c3b7ea8d72d9a1c1a6e608d70c48225320976ab3d896e04
openshift4/ose-node-feature-discovery@sha256:485776592f2f95fcbc4a00195e7eac438186a7d5fc607cd4626f57638af8cc5d
openshift4/ose-node-problem-detector-rhel8@sha256:614176c931169c0187f0b8751396f47d3a3469c4b1edbd9c38e3efe06efcd155
openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cbde927a56df05bb3e68432a144c1c83c1438b3b20aaa3c1efbfb6eab24a8358
openshift4/ose-operator-sdk-rhel8@sha256:2b28b4e78dc5c8bdc1b80e6e3273ad0f1c34ab4a41acd26299842bfa309e8f8d
openshift4/ose-vertical-pod-autoscaler-rhel8@sha256:fdcfaa94c859f652515a039e5b847c8734316f9b79d286454722bca9dddf4f5a
openshift4/ose-vertical-pod-autoscaler-rhel8-operator@sha256:50b545f906bc664b4289373672b26d06f1ff4955753deab94033e2bcdb6118c8
x86_64
openshift4/metallb-rhel8@sha256:0f810eee76322040f500037df6a4396bbf0d87b10c71a17994e40d8a223e4cd5
openshift-tech-preview/metallb-rhel8@sha256:0f810eee76322040f500037df6a4396bbf0d87b10c71a17994e40d8a223e4cd5
openshift4/dpu-network-rhel8-operator@sha256:ba0a58563776146d75340e193499bd811efc097f711b7dc7665403a094dbc605
openshift4/frr-rhel8@sha256:c4567564b21a2eff0bc7a063098c2b58014590705ec2c58782051926c93c09a2
openshift4/ingress-node-firewall@sha256:f93b73cacf4aac462fbdd22a47747760443a21a7f9e572bac0a69c00ef58b991
openshift4/ingress-node-firewall-rhel8-operator@sha256:2a9cf1838cea2f203e2011e232cefd8f3114793e16d6cd6bd67545cb2c45cd3d
openshift4/kubernetes-nmstate-rhel8-operator@sha256:fe0445e88fc69383bb2119425211cb4147a6051cd4ffab6cbcda981f626b71b5
openshift4/metallb-rhel8-operator@sha256:325f0f5a451d0921b234231ef2d52526c98569078921424aedfe1ce94e557799
openshift4/ose-ansible-operator@sha256:f9424b2d68c6c52699e2ccd4b557c7c1c6a06da760feb3e116bc0cd6c822ea0c
openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:4033967f9382e98873c56e36100201d784814ba06485b0957112818f9d70ae0e
openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:09f83dcffe39cb8f34d947f9cff2583df86bae5cac3382e52cf502a6161a90ee
openshift4/ose-cloud-event-proxy-rhel8@sha256:66777ebb5d3d08c2b86977fe258c197a1beb05443c17242d2e35f215b1387a47
openshift4/ose-cloud-event-proxy@sha256:66777ebb5d3d08c2b86977fe258c197a1beb05443c17242d2e35f215b1387a47
openshift4/ose-cluster-capacity@sha256:a82b9bc9586a3aea32e8f343e1077fa51680da77400958bf8c2d4831f4a988d5
openshift4/ose-cluster-kube-descheduler-operator@sha256:a4fd8e15ccb13f0ef4afa46ece4269d4f17e893de404855bae22ec626da60b32
openshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:a4fd8e15ccb13f0ef4afa46ece4269d4f17e893de404855bae22ec626da60b32
openshift4/ose-cluster-nfd-operator@sha256:ee6cbe324e6bf036f3dfbfd4585124f0f146c9aa466f54c57e33d0b1594a1043
openshift4/ose-clusterresourceoverride-rhel8@sha256:b8c219691f4c514dfd8e59aa4416ee02555784671f246a83d8c56fe4260fe99c
openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:79e37356a4801e4433f51c2d6fea08e95fd8daecfe1d1936c277be109ef60ad4
openshift4/ose-csi-driver-shared-resource-mustgather-rhel8@sha256:abe0ef1f5db20f0c2de42ab5d851934ac60cd8a7a0c1ae977dade31e8da496e3
openshift4/ose-descheduler@sha256:3b4515fd5c3961ca56087ccea98ae8afe5a73698304738ff49ee810a0ba40703
openshift4/ose-egress-dns-proxy@sha256:a4fdf3ed53727ff77eb95a154de42ad4ffcb7cc63ebfe687f7720ac7597d15b8
openshift4/ose-egress-http-proxy@sha256:da0441344a65890b7b0a1bd0e7c6af8a3c3ed0b6c5045d05c835de75328d93d9
openshift4/ose-egress-router@sha256:b90e89097fe92b1f160e44f5108f942ce1299dfdd4e2f4bcb179a4ee8ba04119
openshift4/ose-gcp-filestore-csi-driver-rhel8@sha256:0dd68b7c758a9c41217dd36a7f443dd103e0e35f7561bf87a77c8ffe41996fe4
openshift4/ose-gcp-filestore-csi-driver-rhel8-operator@sha256:aa31238fcd5f475833fb8606b0823d803edcff4df5c3254daa73609813722c97
openshift4/ose-helm-operator@sha256:891faeafe673079eca29b15aa41a05dd4f5bafaaf5e0f7a520a6eb64b8db4007
openshift4/ose-kubernetes-nmstate-handler-rhel8@sha256:ac60c6ed21ed415c2b6a732e5940d938f3d7a392edb235c650d505e3c3d46253
openshift4/ose-local-storage-diskmaker@sha256:c04efe96aacde0cca8e90f73f7e410fe70370efd4864c1952f3e69b3a250f7e9
openshift4/ose-local-storage-mustgather-rhel8@sha256:56ab60232e56f080f0cac49ab77eb3d085a069873f7a2358ad6eaaed50ec3d20
openshift4/ose-local-storage-operator@sha256:b341858b15f17fca4a9343af8a888baf27ed2ee3c22a8e45ecf7a53763a5fe82
openshift4/ose-node-feature-discovery@sha256:445eb3a7ebcd822c3d340cbce95d49d3b533ec2dec84c2b51246fffc1fcc8a87
openshift4/ose-node-problem-detector-rhel8@sha256:46ed5182da03358d6662e8ddcd5acb4ec9329bacc35c1ff6f851e2eaca34b3e2
openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:f19aec68d82acb6332f7e576f0faa20e810bb38d3a928aeaae9c1b7299d09a74
openshift4/ose-operator-sdk-rhel8@sha256:49f4499bc071bc9ae01f3e4221e9a977f18f328570c1ff258f4eb31206229da1
openshift4/ose-ptp@sha256:5a5308ad26368f25af5edfe99b5ff1d2f0f9c05f2fc8dc26925e673f7e3f7dcd
openshift4/ose-ptp-operator@sha256:a294602cfbe751f1277fb2c6ee2ff881e656b2cd9a1df3db747f522b4f12af7c
openshift4/ose-sriov-cni@sha256:131883a250e0022dad4fc0cadcd0eccd01378a8a006ef9601312697dcc92cffc
openshift4/ose-sriov-dp-admission-controller@sha256:bee402ff4139a900112032e1361396b79f816f4d6ffbf6b2ea22921c0bc0e521
openshift4/ose-sriov-infiniband-cni@sha256:656b2b30fb5017041ba4869a594fde332f847ed61bd437233325b638006623da
openshift4/ose-sriov-network-config-daemon@sha256:e2f331e0868e6e0850640e73b1754dd43395e2e17baba48624d2554c5325e80b
openshift4/ose-sriov-network-device-plugin@sha256:13d4a5f353176742baa908af51cb8e24718bcab7d3d4816d3f21b775896003f8
openshift4/ose-sriov-network-operator@sha256:380018d26009fd8b4bf74aee60ba6d1b5c8e67aaaf787e930edabb977d102eaa
openshift4/ose-sriov-network-webhook@sha256:7726307851f14cd915609779772613f3ff5cd93580ce359590fcb73fa3bc3fa1
openshift4/ose-vertical-pod-autoscaler-rhel8@sha256:14ce40bbb34c498531b445d5cd8f60a7564fde9058b3b51cd0b641e30a4e3f74
openshift4/ose-vertical-pod-autoscaler-rhel8-operator@sha256:233c07b1de246707e24e177b0afe290aa04cbe834460aaa0e870d548d0437f62
openshift4/ptp-must-gather-rhel8@sha256:5369a882949c3a6542de2b0b6960606d436b41388991627e1c14b51855f835e5
The Red Hat security contact is [email protected]. More contact details at https://access.redhat.com/security/team/contact/.
Related news
Red Hat Security Advisory 2024-0193-03 - An update is now available for Red Hat OpenShift Container Platform 4.13.
Red Hat Security Advisory 2023-1328-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include denial of service and out of bounds read vulnerabilities.
Red Hat Security Advisory 2023-1326-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.13.0. Issues addressed include bypass, denial of service, information leakage, out of bounds read, and remote SQL injection vulnerabilities.
Red Hat OpenShift Container Platform release 4.13.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-4235: A flaw was found in go-yaml. This issue occurs due to unbounded alias chasing, where a maliciously crafted YAML file can cause the system to consume significant system resources. If p...
Red Hat Security Advisory 2023-1525-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.9.59.
Dell Streaming Data Platform prior to 1.4 contains Open Redirect vulnerability. An attacker with privileges same as a legitimate user can phish the legitimate the user to redirect to malicious website leading to information disclosure and launch of phishing attacks.
Red Hat OpenShift Container Platform release 4.11.34 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-20329: A flaw was found in Mongo. Specific cstrings input may not be properly validated in the MongoDB Go Driver when marshaling Go objects into BSON. This flaw allows a malicious user to u...
Red Hat Security Advisory 2023-1392-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.10.55.
Red Hat Security Advisory 2023-1409-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.12.9.
Red Hat OpenShift Container Platform release 4.12.9 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-20329: A flaw was found in Mongo. Specific cstrings input may not be properly validated in the MongoDB Go Driver when marshaling Go objects into BSON. This flaw allows a malicious user to us...
Specific cstrings input may not be properly validated in the MongoDB Go Driver when marshalling Go objects into BSON. A malicious user could use a Go object with specific string to potentially inject additional fields into marshalled documents. This issue affects all MongoDB GO Drivers up to (and including) 1.5.0.