RHSA-2024:6811HighCVSS 7.5
Red Hat Security Advisory: OpenShift Container Platform 4.13.51 bug fix and security update
🔗 CVE IDs covered (5)
📋 Description
CVE-2023-45142 — opentelemetry: DoS vulnerability in otelhttp CVE-2023-45288 — golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS CVE-2023-47108 — opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics CVE-2024-6104 — go-retryablehttp: url might write sensitive information to log file CVE-2024-7409 — QEMU: Denial of Service via Improper Synchronization in QEMU NBD Server During Socket Closure
🔗 References (15)
- selfhttps://access.redhat.com/errata/RHSA-2024:6811
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2245180
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2251198
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2268273
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2294000
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2302487
- externalhttps://issues.redhat.com/browse/OCPBUGS-37921
- externalhttps://issues.redhat.com/browse/OCPBUGS-38254
- externalhttps://issues.redhat.com/browse/OCPBUGS-38264
- externalhttps://issues.redhat.com/browse/OCPBUGS-41515
- externalhttps://issues.redhat.com/browse/OCPBUGS-41594
- externalhttps://issues.redhat.com/browse/OCPBUGS-41723
- externalhttps://issues.redhat.com/browse/OCPBUGS-41786
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_6811.json