RHSA-2024:8991HighCVSS 8.0
Red Hat Security Advisory: OpenShift Container Platform 4.15.38 bug fix and security update
🔗 CVE IDs covered (4)
📋 Description
CVE-2023-45142 — opentelemetry: DoS vulnerability in otelhttp CVE-2024-6508 — openshift-console: OAuth2 insufficient state parameter entropy CVE-2024-7409 — QEMU: Denial of Service via Improper Synchronization in QEMU NBD Server During Socket Closure CVE-2024-47875 — dompurify: nesting-based mutation XSS vulnerability
🔗 References (22)
- selfhttps://access.redhat.com/errata/RHSA-2024:8991
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2245180
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2295777
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2302487
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2318052
- externalhttps://issues.redhat.com/browse/OCPBUGS-30207
- externalhttps://issues.redhat.com/browse/OCPBUGS-34510
- externalhttps://issues.redhat.com/browse/OCPBUGS-42110
- externalhttps://issues.redhat.com/browse/OCPBUGS-42865
- externalhttps://issues.redhat.com/browse/OCPBUGS-42930
- externalhttps://issues.redhat.com/browse/OCPBUGS-43268
- externalhttps://issues.redhat.com/browse/OCPBUGS-43575
- externalhttps://issues.redhat.com/browse/OCPBUGS-43582
- externalhttps://issues.redhat.com/browse/OCPBUGS-43646
- externalhttps://issues.redhat.com/browse/OCPBUGS-43656
- externalhttps://issues.redhat.com/browse/OCPBUGS-43855
- externalhttps://issues.redhat.com/browse/OCPBUGS-43876
- externalhttps://issues.redhat.com/browse/OCPBUGS-43918
- externalhttps://issues.redhat.com/browse/OCPBUGS-44035
- externalhttps://issues.redhat.com/browse/OCPBUGS-44201
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8991.json