RHSA-2022:2183MediumCVSS 8.8

Red Hat Security Advisory: Release of containers for OSP 16.2.z director operator tech preview

Published
May 11, 2022
Last Modified
June 30, 2026

🔗 CVE IDs covered (5)

📋 Description

CVE-2019-11253 — kubernetes: YAML parsing vulnerable to "Billion Laughs" attack, allowing for remote denial of service CVE-2019-19794 — golang-github-miekg-dns: predictable TXID can lead to response forgeries CVE-2020-15257 — containerd: unrestricted access to abstract Unix domain socket can lead to privileges escalation CVE-2021-29482 — ulikunitz/xz: Infinite loop in readUvarint allows for denial of service CVE-2021-32760 — containerd: pulling and extracting crafted container image may result in Unix file permission changes

🔗 References (9)