Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2023:3976
HistoryJul 12, 2023 - 4:02 a.m.

(RHSA-2023:3976) Important: OpenShift Container Platform 4.12.24 packages and security update

2023-07-1204:02:56
access.redhat.com
8
red hat
openshift
kubernetes
security update
privilege escalation
cve-2023-1260
rpm packages
cloud computing

0.004 Low

EPSS

Percentile

72.8%

JSON

Red Hat OpenShift Container Platform is Red Hat’s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.12.24. See the following advisory for the container images for this release:

https://access.redhat.com/errata/RHBA-2023:3977

Security Fix(es):

  • kube-apiserver: PrivEsc (CVE-2023-1260)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.12/updating/updating-cluster-cli.html

OSVersionArchitecturePackageVersionFilename
RedHat8ppc64leopenshift-hyperkube< 4.12.0-202307040929.p0.g1485cc9.assembly.stream.el8openshift-hyperkube-4.12.0-202307040929.p0.g1485cc9.assembly.stream.el8.ppc64le.rpm
RedHat8aarch64openshift-hyperkube< 4.12.0-202307040929.p0.g1485cc9.assembly.stream.el8openshift-hyperkube-4.12.0-202307040929.p0.g1485cc9.assembly.stream.el8.aarch64.rpm
RedHat9aarch64openshift-hyperkube< 4.12.0-202307040929.p0.g1485cc9.assembly.stream.el9openshift-hyperkube-4.12.0-202307040929.p0.g1485cc9.assembly.stream.el9.aarch64.rpm
RedHat9s390xopenshift-hyperkube< 4.12.0-202307040929.p0.g1485cc9.assembly.stream.el9openshift-hyperkube-4.12.0-202307040929.p0.g1485cc9.assembly.stream.el9.s390x.rpm
RedHat9x86_64openshift-hyperkube< 4.12.0-202307040929.p0.g1485cc9.assembly.stream.el9openshift-hyperkube-4.12.0-202307040929.p0.g1485cc9.assembly.stream.el9.x86_64.rpm
RedHat8x86_64openshift-hyperkube< 4.12.0-202307040929.p0.g1485cc9.assembly.stream.el8openshift-hyperkube-4.12.0-202307040929.p0.g1485cc9.assembly.stream.el8.x86_64.rpm
RedHat8s390xopenshift-hyperkube< 4.12.0-202307040929.p0.g1485cc9.assembly.stream.el8openshift-hyperkube-4.12.0-202307040929.p0.g1485cc9.assembly.stream.el8.s390x.rpm
RedHat9ppc64leopenshift-hyperkube< 4.12.0-202307040929.p0.g1485cc9.assembly.stream.el9openshift-hyperkube-4.12.0-202307040929.p0.g1485cc9.assembly.stream.el9.ppc64le.rpm

Related

nessus 9
redhat 8
veracode 1
prion 1
cvelist 1
redhatcve 1
osv 1
nvd 1
github 1
ibm 1
cve 1
nessus
nessus
RHCOS 4 : OpenShift Container Platform 4.10.67 (RHSA-2023:4898)
2024-01-24 00:00:00
RHEL 8 / 9 : OpenShift Container Platform 4.12.24 (RHSA-2023:3976)
2024-04-28 00:00:00
RHEL 7 / 8 : OpenShift Container Platform 4.10.67 (RHSA-2023:4898)
2024-04-23 00:00:00
redhat
redhat
(RHSA-2023:4898) Important: OpenShift Container Platform 4.10.67 security update
2023-09-06 01:11:03
(RHSA-2023:4312) Important: OpenShift Container Platform 4.11.46 security update
2023-08-02 01:05:30
(RHSA-2023:5008) Important: Red Hat build of MicroShift 4.14.0 security update
2023-10-31 14:16:38
veracode
veracode
Authentication Bypass
2023-09-27 05:55:13
prion
prion
Authentication flaw
2023-09-24 01:15:00
cvelist
cvelist
CVE-2023-1260 Kube-apiserver: privesc
2023-09-24 00:07:08
redhatcve
redhatcve
CVE-2023-1260
2023-04-04 21:43:02
osv
osv
kube-apiserver authentication bypass vulnerability
2023-09-24 03:30:20
nvd
nvd
CVE-2023-1260
2023-09-24 01:15:42
github
github
kube-apiserver authentication bypass vulnerability
2023-09-24 03:30:20
ibm
ibm
Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by a Kubernetes API server security vulnerability (CVE-2023-1260)
2023-10-19 01:39:34
cve
cve
CVE-2023-1260
2023-09-24 01:15:42

0.004 Low

EPSS

Percentile

72.8%

JSON
Related for RHSA-2023:3976
nessus9redhat8veracode1prion1cvelist1redhatcve1osv1nvd1github1ibm1cve1