RHSA-2024:1328MediumCVSS 7.5
Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.3 security and bug fix container updates
🔗 CVE IDs covered (4)
📋 Description
CVE-2023-45142 — opentelemetry: DoS vulnerability in otelhttp CVE-2023-47108 — opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics CVE-2024-25620 — helm: Dependency management path traversal CVE-2024-26147 — helm: Missing YAML Content Leads To Panic
🔗 References (20)
- selfhttps://access.redhat.com/errata/RHSA-2024:1328
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2245180
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2251198
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2264336
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2265440
- externalhttps://issues.redhat.com/browse/ACM-8728
- externalhttps://issues.redhat.com/browse/ACM-8998
- externalhttps://issues.redhat.com/browse/ACM-9123
- externalhttps://issues.redhat.com/browse/ACM-9145
- externalhttps://issues.redhat.com/browse/ACM-9186
- externalhttps://issues.redhat.com/browse/ACM-9311
- externalhttps://issues.redhat.com/browse/ACM-9467
- externalhttps://issues.redhat.com/browse/ACM-9719
- externalhttps://issues.redhat.com/browse/ACM-9724
- externalhttps://issues.redhat.com/browse/ACM-9746
- externalhttps://issues.redhat.com/browse/ACM-9885
- externalhttps://issues.redhat.com/browse/ACM-9930
- externalhttps://issues.redhat.com/browse/ACM-9947
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1328.json