(RHSA-2020:0475) Important: Red Hat Quay v3.2.1 security update

2020-02-11T23:23:36
ID RHSA-2020:0475
Type redhat
Reporter RedHat
Modified 2020-02-11T23:24:36

Description

Quay 3.2.1 release, including:

Security Fix(es):

  • CVE-2019-10773 nodejs-yarn: Install functionality can be abused to generate arbitrary symlinks

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • Quay 3.2.1 errata (BZ#1793520)