(RHSA-2016:2064) Important: atomic-openshift security update

2016-10-17T21:12:16
ID RHSA-2016:2064
Type redhat
Reporter RedHat
Modified 2016-10-17T21:13:31

Description

Red Hat OpenShift Container Platform is the company's cloud computing Platform-as-a-Service (PaaS) solution designed for on-premise or private cloud deployments.

Security Fix(es):

  • It was found that Kubernetes did not correctly validate X.509 client intermediate certificate host name fields. An attacker could use this flaw to bypass authentication requirements by using a specially crafted X.509 certificate. (CVE-2016-7075)

This advisory contains the RPM packages for this release. See the following advisory for the container images for this release:

https://access.redhat.com/errata/RHBA-2016:2065

All OpenShift Container Platform 3 users are advised to upgrade to these updated images.