RHSA-2023:4421HighCVSS 8.1
Red Hat Security Advisory: OpenShift Virtualization 4.12.5 security and bug fix update
🔗 CVE IDs covered (3)
📋 Description
CVE-2022-41723 — golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding CVE-2023-3089 — openshift: OCP & FIPS mode CVE-2023-24540 — golang: html/template: improper handling of JavaScript whitespace
🔗 References (18)
- selfhttps://access.redhat.com/errata/RHSA-2023:4421
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-001
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2027959
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2182056
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2196027
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2208641
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2209318
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2209848
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2212085
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2214454
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2216447
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2216449
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2217913
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2220843
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2221222
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2222011
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4421.json