RHSA-2024:8113HighCVSS 7.5
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.3 security and bug fix update
🔗 CVE IDs covered (5)
📋 Description
CVE-2024-43788 — webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule CVE-2024-43796 — express: Improper Input Handling in Express Redirects CVE-2024-43799 — send: Code Execution Vulnerability in Send Library CVE-2024-43800 — serve-static: Improper Sanitization in serve-static CVE-2024-45590 — body-parser: Denial of Service Vulnerability in body-parser
🔗 References (14)
- selfhttps://access.redhat.com/errata/RHSA-2024:8113
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2283959
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2295324
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2296521
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2300333
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2302463
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2303083
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2304905
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2308445
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2310370
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2312055
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2315708
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8113.json