RHSA-2025:0029MediumCVSS 7.5
Red Hat Security Advisory: OpenShift Container Platform 4.14.44 bug fix and security update
🔗 CVE IDs covered (2)
📋 Description
CVE-2023-47108 — opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics CVE-2024-6104 — go-retryablehttp: url might write sensitive information to log file
🔗 References (14)
- selfhttps://access.redhat.com/errata/RHSA-2025:0029
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2251198
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2294000
- externalhttps://issues.redhat.com/browse/OCPBUGS-39368
- externalhttps://issues.redhat.com/browse/OCPBUGS-45331
- externalhttps://issues.redhat.com/browse/OCPBUGS-45464
- externalhttps://issues.redhat.com/browse/OCPBUGS-46487
- externalhttps://issues.redhat.com/browse/OCPBUGS-46559
- externalhttps://issues.redhat.com/browse/OCPBUGS-46595
- externalhttps://issues.redhat.com/browse/OCPBUGS-47320
- externalhttps://issues.redhat.com/browse/OCPBUGS-47537
- externalhttps://issues.redhat.com/browse/OCPBUGS-47546
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_0029.json