logo
DATABASE RESOURCES PRICING ABOUT US

RHEL 7 / 8 : OpenShift Container Platform 4.7.0 packages (RHSA-2020:5634)

Description

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5634 advisory. - atomic-openshift: cross-namespace owner references can trigger deletions of valid children (CVE-2019-3884) - containerd: credentials leak during image pull (CVE-2020-15157) - python-rsa: bleichenbacher timing oracle attack against RSA decryption (CVE-2020-25658) - golang: math/big: panic during recursive division of very large numbers (CVE-2020-28362) - kubernetes: Ceph RBD adminSecrets exposed in logs when loglevel >= 4 (CVE-2020-8566) - gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation (CVE-2021-3121) Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.


Related