RHCOS 3 : OpenShift Container Platform 3.9 (RHSA-2018:2908)

The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2908 advisory. - atomic-openshift: oc patch with json causes masterapi service crash CVE-2018-14632 - kubernetes: authentication/authorization bypa...

RHCOS 3 : OpenShift Container Platform 3.6 (RHSA-2018:2654)

The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2654 advisory. - atomic-openshift: oc patch with json causes masterapi service crash CVE-2018-14632 Note that Nessus has not tested for this issue but has...

CVE-2018-14632

An out of bounds write can occur when patching an Openshift object using the 'oc patch' functionality in OpenShift Container Platform 3.x. An attacker can use this flaw to cause a denial of service attack on the Openshift master API service which provides cluster management...

RHEL 7 : OpenShift Container Platform 3.7 (RHSA-2018:2906)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2906 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

RHEL 7 : OpenShift Container Platform 3.6 (RHSA-2018:2654)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2654 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud...

RHEL 7 : Red Hat OpenShift Container Platform 3.10 (RHSA-2018:2709)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2709 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

Critical: Red Hat Security Advisory: OpenShift Container Platform 3.9 security update

An update is now available for Red Hat OpenShift Container Platform 3.9. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

Important: Red Hat Security Advisory: OpenShift Container Platform 3.6 security and bug fix update

Red Hat OpenShift Container Platform release 3.6.173.0.130 is now available with updates to packages that fix one security issue and several bugs. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which...

CVE-2018-14632

An out of bound write can occur when patching an Openshift object using the 'oc patch' functionality in OpenShift Container Platform before 3.7. An attacker can use this flaw to cause a denial of service attack on the Openshift master api service which provides cluster management...

CVE-2018-14632

An out of bound write can occur when patching an Openshift object using the 'oc patch' functionality in OpenShift Container Platform before 3.7. An attacker can use this flaw to cause a denial of service attack on the Openshift master api service which provides cluster management...

CVE-2018-14632

OpenShift Container Platform before 3.7 is vulnerable to an out-of-bounds write when patching an object via oc patch, which could cause a denial of service to the master API service. Root cause: JSON Patch out-of-bounds write. Remediation/fix version is not specified in the provided documents; mo...