RHSA-2021:0799MediumCVSS 8.6

Red Hat Security Advisory: OpenShift Virtualization 2.6.0 security and bug fix update

Published
March 10, 2021
Last Modified
June 30, 2026

🔗 CVE IDs covered (10)

📋 Description

CVE-2020-9283 — golang.org/x/crypto: Processing of crafted ssh-ed25519 public keys allows for panic CVE-2020-14040 — golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash CVE-2020-15586 — golang: data race in certain net/http servers including ReverseProxy can lead to DoS CVE-2020-16845 — golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs CVE-2020-26160 — jwt-go: access restriction bypass vulnerability CVE-2020-27813 — golang-github-gorilla-websocket: integer overflow leads to denial of service CVE-2020-28362 — golang: math/big: panic during recursive division of very large numbers CVE-2020-29652 — golang: crypto/ssh: crafted authentication request can lead to nil pointer dereference CVE-2021-3121 — gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation CVE-2021-20206 — containernetworking-cni: Arbitrary path injection via type field in CNI configuration

🔗 References (81)