What is RHSA-2024:4591?

RHSA-2024:4591 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.0 security, enhancement \u0026 bug fix update

What is the CVSS v3 score of RHSA-2024:4591?

RHSA-2024:4591 has a CVSS v3 base score of 7.5, published by Red Hat Product Security.

RHSA-2024:4591HighCVSS 7.5

Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.0 security, enhancement & bug fix update

Vendor

Red Hat Product Security

Published

July 17, 2024

Last Modified

May 26, 2026

🔗 CVE IDs covered (11)

CVE-2024-28176 →CVE-2024-28180 →CVE-2024-37890 →CVE-2023-43646 →CVE-2024-5042 →CVE-2024-24785 →CVE-2024-28863 →CVE-2023-47108 →CVE-2024-1394 →CVE-2024-24783 →CVE-2024-24786 →

📋 Description

CVE-2023-43646 — get-func-name: ReDoS in chai module CVE-2023-47108 — opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics CVE-2024-1394 — golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-5042 — submariner-operator: RBAC permissions can allow for the spread of node compromises CVE-2024-24783 — golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm CVE-2024-24785 — golang: html/template: errors returned from MarshalJSON methods may break template escaping CVE-2024-24786 — golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON CVE-2024-28176 — jose: resource exhaustion CVE-2024-28180 — jose-go: improper handling of highly compressed data CVE-2024-28863 — node-tar: denial of service while parsing a tar file due to lack of folders depth validation CVE-2024-37890 — nodejs-ws: denial of service when handling a request with many HTTP headers

🔗 CVE IDs covered (11)

📋 Description

🔗 References (227)