Lucene search
RedHatRHSA-2019:3942HistoryNov 21, 2019 - 9:55 a.m.
(RHSA-2019:3942) Low: OpenShift Container Platform 4.1.24 openshift security update
2019-11-2109:55:43
access.redhat.com
39
0.001 Low
EPSS
Percentile
32.6%
Red Hat OpenShift Container Platform is Red Hat’s cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the openshift container images for Red Hat OpenShift
Container Platform 4.1.24.
Security Fix(es):
- A flaw was found in kubectl that leaves http-cache files with read/write permissions for any user. In conjunction with a non-default value for --cache-dir, this could lead to the cache content being placed in a location accessible to other users in the system. (CVE-2019-11244)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | x86_64 | openshift-clients-redistributable | < 4.1.24-201911080309.git.0.c41acf2.el7 | openshift-clients-redistributable-4.1.24-201911080309.git.0.c41acf2.el7.x86_64.rpm |
| RedHat | 8 | x86_64 | openshift-clients-redistributable | < 4.1.24-201911080309.git.0.c41acf2.el8 | openshift-clients-redistributable-4.1.24-201911080309.git.0.c41acf2.el8.x86_64.rpm |
| RedHat | 7 | x86_64 | openshift-hyperkube | < 4.1.24-201911080309.git.0.c41acf2.el7 | openshift-hyperkube-4.1.24-201911080309.git.0.c41acf2.el7.x86_64.rpm |
| RedHat | 8 | x86_64 | openshift-hyperkube | < 4.1.24-201911080309.git.0.c41acf2.el8 | openshift-hyperkube-4.1.24-201911080309.git.0.c41acf2.el8.x86_64.rpm |
| RedHat | 8 | x86_64 | openshift-clients | < 4.1.24-201911080309.git.0.c41acf2.el8 | openshift-clients-4.1.24-201911080309.git.0.c41acf2.el8.x86_64.rpm |
| RedHat | 7 | x86_64 | openshift-clients | < 4.1.24-201911080309.git.0.c41acf2.el7 | openshift-clients-4.1.24-201911080309.git.0.c41acf2.el7.x86_64.rpm |
Related
prion
prion
Design/Logic Flaw
2019-04-22 15:29:00
nessus
nessus
Oracle Linux 7 : kubernetes (ELSA-2019-4716)
2023-09-07 00:00:00
RHEL 7 / 8 : OpenShift Container Platform 4.1.24 openshift (RHSA-2019:3942)
2019-11-22 00:00:00
Oracle Linux 7 : kubeadm-ha-setup (ELSA-2019-4717)
2023-09-07 00:00:00
redhat
redhat
redhatcve
redhatcve
CVE-2019-11244
2020-04-06 23:05:27
ibm
ibm
gitlab
gitlab
Incorrect Permission Assignment for Critical Resource
2019-04-22 00:00:00
oraclelinux
oraclelinux
kubernetes security update
2019-07-29 00:00:00
kubeadm-ha-setup security update
2019-07-29 00:00:00
kubernetes security update
2019-07-29 00:00:00
osv
osv
Kubernetes Unsafe Cacheing
2022-02-15 01:57:18
CVE-2019-11244
2019-04-22 15:29:00
symantec
symantec
Kubernetes CVE-2019-11244 Local Unauthorized Access Vulnerability
2019-04-22 00:00:00
github
github
Kubernetes Unsafe Cacheing
2022-02-15 01:57:18
veracode
veracode
Insecure Cache Configurations
2019-04-23 07:11:27
debiancve
debiancve
CVE-2019-11244
2019-04-22 15:29:00
cve
cve
CVE-2019-11244
2019-04-22 15:29:00
cvelist
cvelist
CVE-2019-11244 kubectl creates world-writeable cached schema files
2019-04-22 14:54:15
photon
photon