RHSA-2024:7624HighCVSS 7.5
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.14.11 security and bug fix update
🔗 CVE IDs covered (3)
📋 Description
CVE-2024-6104 — go-retryablehttp: url might write sensitive information to log file CVE-2024-29041 — express: cause malformed URLs to be evaluated CVE-2024-41818 — fast-xml-parser: ReDOS at currency parsing in currency.js
🔗 References (8)
- selfhttps://access.redhat.com/errata/RHSA-2024:7624
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2276934
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2290901
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2294000
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2300499
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2314151
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_7624.json