RHSA-2024:4836MediumCVSS 6.5
Red Hat Security Advisory: RHACS 4.5 enhancement and security update
🔗 CVE IDs covered (3)
📋 Description
CVE-2024-28849 — follow-redirects: Possible credential leak CVE-2024-29902 — cosign: Malicious attachments can cause system-wide denial of service CVE-2024-29903 — cosign: Malicious artifects can cause machine-wide denial of service
🔗 References (7)
- selfhttps://access.redhat.com/errata/RHSA-2024:4836
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://docs.openshift.com/acs/4.5/release_notes/45-release-notes.html
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2269576
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2274504
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2274508
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4836.json