RHSA-2024:3314HighCVSS 7.5
Red Hat Security Advisory: OpenShift Virtualization 4.15.2 Images security update
🔗 CVE IDs covered (3)
📋 Description
CVE-2023-26159 — follow-redirects: Improper Input Validation due to the improper handling of URLs by the url.parse() CVE-2023-45288 — golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS CVE-2023-45857 — axios: exposure of confidential data stored in cookies
🔗 References (22)
- selfhttps://access.redhat.com/errata/RHSA-2024:3314
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2248979
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2256413
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2268273
- externalhttps://issues.redhat.com/browse/CNV-34292
- externalhttps://issues.redhat.com/browse/CNV-34963
- externalhttps://issues.redhat.com/browse/CNV-37007
- externalhttps://issues.redhat.com/browse/CNV-37018
- externalhttps://issues.redhat.com/browse/CNV-38360
- externalhttps://issues.redhat.com/browse/CNV-38599
- externalhttps://issues.redhat.com/browse/CNV-38661
- externalhttps://issues.redhat.com/browse/CNV-38699
- externalhttps://issues.redhat.com/browse/CNV-38845
- externalhttps://issues.redhat.com/browse/CNV-39100
- externalhttps://issues.redhat.com/browse/CNV-39557
- externalhttps://issues.redhat.com/browse/CNV-39686
- externalhttps://issues.redhat.com/browse/CNV-39704
- externalhttps://issues.redhat.com/browse/CNV-40159
- externalhttps://issues.redhat.com/browse/CNV-40904
- externalhttps://issues.redhat.com/browse/CNV-41508
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_3314.json