RHSA-2023:5008HighCVSS 8.0
Red Hat Security Advisory: Red Hat build of MicroShift 4.14.0 security update
🔗 CVE IDs covered (7)
📋 Description
CVE-2023-1260 — kube-apiserver: PrivEsc CVE-2023-2727 — kube-apiserver: Bypassing policies imposed by the ImagePolicyWebhook admission plugin CVE-2023-2728 — kube-apiserver: Bypassing enforce mountable secrets policy imposed by the ServiceAccount admission plugin CVE-2023-39318 — golang: html/template: improper handling of HTML-like comments within script contexts CVE-2023-39319 — golang: html/template: improper handling of special tags within script contexts CVE-2023-39321 — golang: crypto/tls: panic when processing post-handshake message on QUIC connections CVE-2023-39322 — golang: crypto/tls: lack of a limit on buffered post-handshake
🔗 References (55)
- selfhttps://access.redhat.com/errata/RHSA-2023:5008
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2176267
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2211322
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2211348
- externalhttps://issues.redhat.com/browse/OCPBUGS-10201
- externalhttps://issues.redhat.com/browse/OCPBUGS-10226
- externalhttps://issues.redhat.com/browse/OCPBUGS-10766
- externalhttps://issues.redhat.com/browse/OCPBUGS-11296
- externalhttps://issues.redhat.com/browse/OCPBUGS-11374
- externalhttps://issues.redhat.com/browse/OCPBUGS-11421
- externalhttps://issues.redhat.com/browse/OCPBUGS-11512
- externalhttps://issues.redhat.com/browse/OCPBUGS-11538
- externalhttps://issues.redhat.com/browse/OCPBUGS-11592
- externalhttps://issues.redhat.com/browse/OCPBUGS-11734
- externalhttps://issues.redhat.com/browse/OCPBUGS-11829
- externalhttps://issues.redhat.com/browse/OCPBUGS-11967
- externalhttps://issues.redhat.com/browse/OCPBUGS-12146
- externalhttps://issues.redhat.com/browse/OCPBUGS-12736
- externalhttps://issues.redhat.com/browse/OCPBUGS-12744
- externalhttps://issues.redhat.com/browse/OCPBUGS-12977
- externalhttps://issues.redhat.com/browse/OCPBUGS-13078
- externalhttps://issues.redhat.com/browse/OCPBUGS-13221
- externalhttps://issues.redhat.com/browse/OCPBUGS-14364
- externalhttps://issues.redhat.com/browse/OCPBUGS-14678
- externalhttps://issues.redhat.com/browse/OCPBUGS-15397
- externalhttps://issues.redhat.com/browse/OCPBUGS-15740
- externalhttps://issues.redhat.com/browse/OCPBUGS-15948
- externalhttps://issues.redhat.com/browse/OCPBUGS-16339
- externalhttps://issues.redhat.com/browse/OCPBUGS-16392
- externalhttps://issues.redhat.com/browse/OCPBUGS-18696
- externalhttps://issues.redhat.com/browse/OCPBUGS-18773
- externalhttps://issues.redhat.com/browse/OCPBUGS-19339
- externalhttps://issues.redhat.com/browse/OCPBUGS-19423
- externalhttps://issues.redhat.com/browse/OCPBUGS-19518
- externalhttps://issues.redhat.com/browse/OCPBUGS-19638
- externalhttps://issues.redhat.com/browse/OCPBUGS-19646
- externalhttps://issues.redhat.com/browse/OCPBUGS-19772
- externalhttps://issues.redhat.com/browse/OCPBUGS-19872
- externalhttps://issues.redhat.com/browse/OCPBUGS-19939
- externalhttps://issues.redhat.com/browse/OCPBUGS-20059
- externalhttps://issues.redhat.com/browse/OCPBUGS-20174
- externalhttps://issues.redhat.com/browse/OCPBUGS-6861
- externalhttps://issues.redhat.com/browse/OCPBUGS-7535
- externalhttps://issues.redhat.com/browse/OCPBUGS-7779
- externalhttps://issues.redhat.com/browse/OCPBUGS-7791
- externalhttps://issues.redhat.com/browse/OCPBUGS-7874
- externalhttps://issues.redhat.com/browse/OCPBUGS-8277
- externalhttps://issues.redhat.com/browse/OCPBUGS-8278
- externalhttps://issues.redhat.com/browse/OCPBUGS-8301
- externalhttps://issues.redhat.com/browse/OCPBUGS-8329
- externalhttps://issues.redhat.com/browse/OCPBUGS-8411
- externalhttps://issues.redhat.com/browse/OCPBUGS-8516
- externalhttps://issues.redhat.com/browse/OCPBUGS-9996
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5008.json