RHSA-2024:5094MediumCVSS 7.5
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.0 security update
🔗 CVE IDs covered (4)
📋 Description
CVE-2018-12608 — moby: cert signing bypass CVE-2024-22189 — quic-go: memory exhaustion attack against QUIC's connection ID mechanism CVE-2024-24789 — golang: archive/zip: Incorrect handling of certain ZIP files CVE-2024-28176 — jose: resource exhaustion
🔗 References (24)
- selfhttps://access.redhat.com/errata/RHSA-2024:5094
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2268820
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2273513
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2275812
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2292668
- externalhttps://issues.redhat.com/browse/OSSM-2101
- externalhttps://issues.redhat.com/browse/OSSM-5687
- externalhttps://issues.redhat.com/browse/OSSM-5854
- externalhttps://issues.redhat.com/browse/OSSM-6009
- externalhttps://issues.redhat.com/browse/OSSM-6296
- externalhttps://issues.redhat.com/browse/OSSM-6336
- externalhttps://issues.redhat.com/browse/OSSM-6391
- externalhttps://issues.redhat.com/browse/OSSM-6682
- externalhttps://issues.redhat.com/browse/OSSM-6693
- externalhttps://issues.redhat.com/browse/OSSM-6699
- externalhttps://issues.redhat.com/browse/OSSM-6700
- externalhttps://issues.redhat.com/browse/OSSM-6703
- externalhttps://issues.redhat.com/browse/OSSM-6762
- externalhttps://issues.redhat.com/browse/OSSM-6769
- externalhttps://issues.redhat.com/browse/OSSM-6774
- externalhttps://issues.redhat.com/browse/OSSM-6777
- externalhttps://issues.redhat.com/browse/OSSM-6781
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5094.json