RHSA-2023:5008HighCVSS 8.0

Red Hat Security Advisory: Red Hat build of MicroShift 4.14.0 security update

Published
October 31, 2023
Last Modified
June 4, 2026

🔗 CVE IDs covered (7)

📋 Description

CVE-2023-1260 — kube-apiserver: PrivEsc CVE-2023-2727 — kube-apiserver: Bypassing policies imposed by the ImagePolicyWebhook admission plugin CVE-2023-2728 — kube-apiserver: Bypassing enforce mountable secrets policy imposed by the ServiceAccount admission plugin CVE-2023-39318 — golang: html/template: improper handling of HTML-like comments within script contexts CVE-2023-39319 — golang: html/template: improper handling of special tags within script contexts CVE-2023-39321 — golang: crypto/tls: panic when processing post-handshake message on QUIC connections CVE-2023-39322 — golang: crypto/tls: lack of a limit on buffered post-handshake

🔗 References (55)