(RHSA-2023:5233) Moderate: OpenShift Virtualization 4.13.4 security and bug fix update

2023-09-1911:40:05

access.redhat.com

openshift virtualization

red hat

security fix

bug fix

cve-2022-41723

bz#2221220

bz#2232347

quadratic complexity

hpack decoding

usb-redirection

dataimportcron dvs.

0.02 Low

EPSS

Percentile

88.9%

JSON

OpenShift Virtualization is Red Hat’s virtualization solution designed for Red Hat OpenShift Container Platform.

This advisory contains OpenShift Virtualization 4.13.4 images.

Security Fix(es):

net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

USB-redirection regression (BZ#2221220)
DataImportCron DVs do not respond to default storage class being set (BZ#2232347)

(RHSA-2023:5233) Moderate: OpenShift Virtualization 4.13.4 security and bug fix update

Related