Important: Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.4.5

Logging for Red Hat OpenShift - 6.4.5 Red Hat OpenShift Logging 6.4.5 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs...

Important: Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.0.14

Logging for Red Hat OpenShift - 6.0.14 Red Hat OpenShift Logging 6.0.14 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs...

Important: Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.3.4

Logging for Red Hat OpenShift - 6.3.4 Red Hat OpenShift Logging 6.3.4 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs...

Important: Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.2.9

Logging for Red Hat OpenShift - 6.2.9 Red Hat OpenShift Logging 6.2.9 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs...

Important: Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.4.3

Logging for Red Hat OpenShift - 6.4.3 Red Hat OpenShift Logging 6.4.3 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs...

Important: Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.2.7

Logging for Red Hat OpenShift - 6.2.7 Red Hat OpenShift Logging 6.2.7 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs...

EUVD-2020-20317

Malware in sbrugna...

EUVD-2023-54312

Malicious code in bioql PyPI...

EUVD-2022-15674

Malicious code in bioql PyPI...

Important: Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.8.20

Logging for Red Hat OpenShift - 5.8.20 Logging for Red Hat OpenShift - 5.8.20 logging-loki-container: Non-linear parsing of case-insensitive content in golang.org/x/net/html （CVE-2024-45338）...

Important: Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.8.14

Logging for Red Hat OpenShift - 5.8.14 Logging for Red Hat OpenShift - 5.8.14...

Moderate: Red Hat Security Advisory: security update Logging for Red Hat OpenShift - 5.8.6

Moderate Logging for Red Hat OpenShift - 5.8.6 Logging for Red Hat OpenShift - 5.8.6...

Moderate: Red Hat Security Advisory: Logging Subsystem 5.6.11 - Red Hat OpenShift security update

Logging Subsystem 5.6.11 - Red Hat OpenShift Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

Moderate: Red Hat Security Advisory: Logging Subsystem 5.5.16 - Red Hat OpenShift security update

Logging Subsystem 5.5.16 - Red Hat OpenShift Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

Moderate: Red Hat Security Advisory: Logging Subsystem 5.7.6 - Red Hat OpenShift security update

Logging Subsystem 5.7.6 - Red Hat OpenShift Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the Referenc...

CVE-2023-4456

A flaw was found in openshift-logging LokiStack. The key used for caching is just the token, which is too broad. This issue allows a user with a token valid for one action to execute other actions as long as the authorization allowing the original action is still cached...

Authorization

A flaw was found in openshift-logging LokiStack. The key used for caching is just the token, which is too broad. This issue allows a user with a token valid for one action to execute other actions as long as the authorization allowing the original action is still cached...

CVE-2023-4456 Openshift-logging: lokistack authorisation is cached too broadly

A flaw was found in openshift-logging LokiStack. The key used for caching is just the token, which is too broad. This issue allows a user with a token valid for one action to execute other actions as long as the authorization allowing the original action is still cached...

CVE-2023-4456

Summary: CVE-2023-4456 affects OpenShift OpenShift Logging LokiStack. The vulnerability arises because the cache key is the token, which is too broad, allowing a user with a token valid for one action to perform other actions as long as the original action’s authorization remains cached. Affected...

CVE-2023-4456 Openshift-logging: lokistack authorisation is cached too broadly

A flaw was found in openshift-logging LokiStack. The key used for caching is just the token, which is too broad. This issue allows a user with a token valid for one action to execute other actions as long as the authorization allowing the original action is still cached...