RHSA-2024:0040CriticalCVSS 8.1

Red Hat Security Advisory: OpenShift Container Platform 4.16.0 security and extras update

Published
June 27, 2024
Last Modified
May 23, 2026

🔗 CVE IDs covered (4)

CVE-2024-24786CVE-2024-28110CVE-2023-48795CVE-2023-49569

📋 Description

CVE-2023-48795 — ssh: Prefix truncation attack on Binary Packet Protocol (BPP) CVE-2023-49569 — go-git: Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients CVE-2024-24786 — golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON CVE-2024-28110 — cloudevents/sdk-go: usage of WithRoundTripper to create a Client leaks credentials

🔗 References (42)