RHSA-2024:4118MediumCVSS 8.1
Red Hat Security Advisory: Red Hat Ceph Storage 5.3 security, bug fix, and enhancement update
🔗 CVE IDs covered (3)
📋 Description
CVE-2023-39325 — golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) CVE-2023-45142 — opentelemetry: DoS vulnerability in otelhttp CVE-2023-49569 — go-git: Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients
🔗 References (19)
- selfhttps://access.redhat.com/errata/RHSA-2024:4118
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003
- externalhttps://access.redhat.com/security/cve/CVE-2023-39325
- externalhttps://access.redhat.com/security/cve/CVE-2023-45142
- externalhttps://access.redhat.com/security/cve/CVE-2023-49569
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2243296
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2245180
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2257733
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2258143
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2259054
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2260356
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2264991
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2279946
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2281592
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2291136
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2292323
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2292327
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4118.json