Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2018:2013
HistoryJun 27, 2018 - 5:48 p.m.

(RHSA-2018:2013) Important: OpenShift Container Platform 3.9 security, bug fix, and enhancement update

2018-06-2717:48:27
access.redhat.com
61

0.003 Low

EPSS

Percentile

69.0%

JSON

Red Hat OpenShift Container Platform is the company’s cloud computing Platform-as-a-Service (PaaS) solution designed for on-premise or private cloud deployments.

This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.9.31. See the following advisory for the container images for this release:

https://access.redhat.com/errata/RHBA-2018:2014

Security Fix(es):

  • routing: Malicious Service configuration can bring down routing for an entire shard (CVE-2018-1070)

  • openshift-ansible: Incorrectly quoted values in etcd.conf causes disabling of SSL client certificate authentication (CVE-2018-1085)

  • source-to-image: Builder images with assembler-user LABEL set to root allows attackers to execute arbitrary code (CVE-2018-10843)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Red Hat would like to thank David Hocky (Comcast) for reporting CVE-2018-1085. The CVE-2018-1070 issue was discovered by Mark Chappell (Red Hat) and the CVE-2018-10843 issue was discovered by Jeremy Choi (Red Hat).

Space precludes documenting all of the bug fixes and enhancements in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:

https://docs.openshift.com/container-platform/3.9/release_notes/ocp_3_9_release_notes.html

All OpenShift Container Platform 3.9 users are advised to upgrade to these updated packages and images.

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64atomic-openshift-federation-services< 3.9.31-1.git.0.ef9737b.el7atomic-openshift-federation-services-3.9.31-1.git.0.ef9737b.el7.x86_64.rpm
RedHat7x86_64atomic-openshift-node< 3.9.31-1.git.0.ef9737b.el7atomic-openshift-node-3.9.31-1.git.0.ef9737b.el7.x86_64.rpm
RedHat7noarchatomic-openshift-excluder< 3.9.31-1.git.0.ef9737b.el7atomic-openshift-excluder-3.9.31-1.git.0.ef9737b.el7.noarch.rpm
RedHat7noarchatomic-openshift-utils< 3.9.31-1.git.34.154617d.el7atomic-openshift-utils-3.9.31-1.git.34.154617d.el7.noarch.rpm
RedHat7x86_64atomic-openshift-node-problem-detector< 3.9.13-1.git.167.5d6b0d4.el7atomic-openshift-node-problem-detector-3.9.13-1.git.167.5d6b0d4.el7.x86_64.rpm
RedHat7x86_64atomic-openshift-tests< 3.9.31-1.git.0.ef9737b.el7atomic-openshift-tests-3.9.31-1.git.0.ef9737b.el7.x86_64.rpm
RedHat7noarchopenshift-ansible-playbooks< 3.9.31-1.git.34.154617d.el7openshift-ansible-playbooks-3.9.31-1.git.34.154617d.el7.noarch.rpm
RedHat7x86_64atomic-openshift-master< 3.9.31-1.git.0.ef9737b.el7atomic-openshift-master-3.9.31-1.git.0.ef9737b.el7.x86_64.rpm
RedHat7x86_64atomic-openshift-template-service-broker< 3.9.31-1.git.0.ef9737b.el7atomic-openshift-template-service-broker-3.9.31-1.git.0.ef9737b.el7.x86_64.rpm
RedHat7x86_64prometheus-node-exporter< 3.9.31-1.git.890.a55de06.el7prometheus-node-exporter-3.9.31-1.git.890.a55de06.el7.x86_64.rpm
Rows per page:
1-10 of 251

Related

nessus 1
nvd 3
veracode 3
cve 3
prion 3
cvelist 3
redhatcve 3
nessus
nessus
RHEL 7 : OpenShift Container Platform 3.9 (RHSA-2018:2013)
2018-12-04 00:00:00
nvd
nvd
CVE-2018-10843
2018-07-02 17:29:00
CVE-2018-1070
2018-06-12 13:29:00
CVE-2018-1085
2018-06-15 13:29:01
veracode
veracode
Privilege Escalation
2019-05-16 03:03:02
Denial Of Service (DoS)
2019-01-15 09:23:57
Privilege Escalation
2019-05-16 03:03:03
cve
cve
CVE-2018-10843
2018-07-02 17:29:00
CVE-2018-1070
2018-06-12 13:29:00
CVE-2018-1085
2018-06-15 13:29:01
prion
prion
Privilege escalation
2018-07-02 17:29:00
Input validation
2018-06-12 13:29:00
Design/Logic Flaw
2018-06-15 13:29:00
cvelist
cvelist
CVE-2018-10843
2018-07-02 17:00:00
CVE-2018-1070
2018-06-12 13:00:00
CVE-2018-1085
2018-06-15 13:00:00
redhatcve
redhatcve
CVE-2018-10843
2018-05-28 07:26:24
CVE-2018-1070
2018-06-08 05:21:19
CVE-2018-1085
2018-03-23 03:18:55

0.003 Low

EPSS

Percentile

69.0%

JSON
Related for RHSA-2018:2013
nessus1nvd3veracode3cve3prion3cvelist3redhatcve3