1155 matches found
Exploit for OS Command Injection in Redhat Openshift_Container_Platform
No d...
Important: Red Hat Security Advisory: Network Observability 1.12.0 for OpenShift
Network Observability 1.12 for Red Hat OpenShift. Network flows collector and monitoring solution...
Important: Red Hat Security Advisory: Red Hat OpenShift GitOps v1.20.4 security update
Important: Red Hat OpenShift GitOps v1.20.4 security update An update is now available for Red Hat OpenShift GitOps. Bug Fixes and Enhancements: GITOPS-8784 Service-CA annotation removed from argocd-server Service during v1.12.3 - v1.12.4 upgrade path, persists in later versions GITOPS-9549...
Critical: Red Hat Security Advisory: RHOAI 3.3.3 - Red Hat OpenShift AI
Updated images are now available for Red Hat OpenShift AI. Release of RHOAI 3.3.3 provides these changes:...
Important: Red Hat Security Advisory: zero trust workload identity manager for Red Hat OpenShift 1.0.1
zero trust workload identity manager for Red Hat OpenShift 1.0.1 The Zero Trust Workload Identity Manager ZTWIM is a day-2 operator. The operator manages lifecycle of operand components from SPIRE project. The goal of ZTWIM is to provide secure, verifiable workload identities for workloads in...
Important: Red Hat Security Advisory: zero trust workload identity manager for Red Hat OpenShift 1.0.1
zero trust workload identity manager for Red Hat OpenShift 1.0.1 The Zero Trust Workload Identity Manager ZTWIM is a day-2 operator. The operator manages lifecycle of operand components from SPIRE project. The goal of ZTWIM is to provide secure, verifiable workload identities for workloads in...
Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.2.5
Red Hat OpenShift Service Mesh 3.2.5 This update has a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section. Red Hat OpenShift Service Mesh 3.2....
Important: Red Hat Security Advisory: OpenShift Container Platform 4.14.65 bug fix and security update
Red Hat OpenShift Container Platform release 4.14.65 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.14. Red Hat Product Security has rated this update as having a...
Important: Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.9.3 release
Red Hat OpenShift distributed tracing platform Tempo 3.9.3 has been released This release of the Red Hat OpenShift distributed tracing platform Tempo provides security improvements and bug fixes. Breaking changes: None. Deprecations: None. Technology Preview features: None. Enhancements: None. Bu...
RHCOS 4 : Red Hat OpenShift Container Platform 4.1 jenkins-2-plugins (RHSA-2019:2662)
The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:2662 advisory. - jenkins-plugin-script-security: Sandbox bypass through type casts in Script Security Plugin CVE-2019-10355 -...
RHCOS 2 : Red Hat OpenShift Enterprise 2.2.7 (RHSA-2015:1844)
The remote Red Hat Enterprise Linux CoreOS 2 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:1844 advisory. - jenkins: Combination filter Groovy script unsecured SECURITY-125 CVE-2015-1806 - jenkins: directory traversal from artifacts via...
RHCOS 3 : Red Hat OpenShift Container Platform 3.11 atomic-openshift (RHSA-2019:1633)
The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:1633 advisory. - kubernetes: Incomplete fix for CVE-2019-1002101 allows for arbitrary file write via kubectl cp CVE-2019-11246 Note that Nessus has not test...
RHCOS 6 : Red Hat OpenShift Enterprise 1.1.1 update (Moderate) (RHSA-2013:0582)
The remote Red Hat Enterprise Linux CoreOS 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:0582 advisory. - rubygem-actionpack: Unsafe query generation CVE-2012-2660 - rubygem-activerecord: SQL injection when processing nested query...
RHCOS 3 : Red Hat OpenShift Container Platform 3.10 (RHSA-2018:2709)
The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2709 advisory. - atomic-openshift: oc patch with json causes masterapi service crash CVE-2018-14632 - haproxy: Out-of-bounds read in HPACK decoder...
RHCOS 2 : Red Hat OpenShift Enterprise 2.1.9 (RHSA-2014:1906)
The remote Red Hat Enterprise Linux CoreOS 2 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:1906 advisory. - OpenShift: /proc/net/tcp information disclosure CVE-2014-3602 - Enterprise: gears fail to properly isolate network traffic...
RHCOS 2 : Red Hat OpenShift Enterprise 2.2.8 (RHSA-2015:2666)
The remote Red Hat Enterprise Linux CoreOS 2 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2015:2666 advisory. - haproxy: information leak in bufferslowrealign CVE-2015-3281 Note that Nessus has not tested for this issue but has instead relied only on...
RHCOS 3 : Red Hat OpenShift Container Platform 3.11 jenkins-2-plugins (RHSA-2019:1423)
The remote Red Hat Enterprise Linux CoreOS 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:1423 advisory. - jenkins-plugin-script-security: Sandbox bypass in Script Security Plugin and Pipeline: Groovy Plugin SECURITY-1353 CVE-2019-100304...
Important: Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.2.10
Logging for Red Hat OpenShift - 6.2.10 Red Hat OpenShift Logging 6.2.10 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs...
Moderate: Red Hat Security Advisory: Red Hat OpenStack Services on OpenShift 18.0.18 (golang-github-openstack-k8s-operators-os-diff) security update
An update for golang-github-openstack-k8s-operators-os-diff is now available for Red Hat OpenStack Services on OpenShift 18.0.18 Antelope. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a...
Important: Red Hat Security Advisory: RHOAI 2.25.6 - Red Hat OpenShift AI
Updated images are now available for Red Hat OpenShift AI. Release of RHOAI 2.25.6 provides these changes:...