RHBA-2018:3743HighCVSS 6.5
Red Hat Bug Fix Advisory: OpenShift Container Platform 3.11 bug fix and enhancement update
🔗 CVE IDs covered (8)
📋 Description
CVE-2018-17246 — kibana: Arbitrary file inclusion vulnerability in the Console plugin CVE-2018-1000406 — jenkins: Arbitrary file write vulnerability using file parameter definitions CVE-2018-1000407 — jenkins: Reflected XSS vulnerability CVE-2018-1000408 — jenkins: Ephemeral user record creation CVE-2018-1000409 — jenkins: Session fixation vulnerability on user signup CVE-2018-1000410 — jenkins: Failures to process form submission data could result in secrets being displayed or written to logs CVE-2018-1000997 — jenkins: Path traversal vulnerability in Stapler allowed accessing internal data CVE-2018-1999043 — jenkins: Ephemeral user record was created on some invalid authentication attempts
🔗 References (15)
- selfhttps://access.redhat.com/errata/RHBA-2018:3743
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1614155
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1630324
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1635804
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1639655
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1640078
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1640497
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1640746
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1642361
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1645258
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1647516
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1649062
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1649997
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1650129
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2018/rhba-2018_3743.json