38 matches found
K000151459: OpenShift vulnerability CVE-2023-2253
Security Advisory Description A flaw was found in the /v2/catalog endpoint in distribution/distribution, which accepts a parameter to control the maximum number of records returned query string: n. This vulnerability allows a malicious user to submit an unreasonably large value for n, causing the...
Azure Linux 3.0 Security Update: cert-manager / helm / moby-cli / moby-compose / moby-engine (CVE-2023-2253)
The version of cert-manager / helm / moby-cli / moby-compose / moby-engine installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2253 advisory. - A flaw was found in the /v2/catalog endpoint in...
CVE-2023-2253 affecting package cert-manager for versions less than 1.11.2-14
CVE-2023-2253 affecting package cert-manager for versions less than 1.11.2-14. A patched version of the package is available...
CVE-2023-2253 affecting package cert-manager for versions less than 1.12.12-1
CVE-2023-2253 affecting package cert-manager for versions less than 1.12.12-1. An upgraded version of the package is available that resolves this issue...
Security Bulletin: IBM Cloud Pak for Data is vulnerable to denial of service due to github.com/docker/distribution ( CVE-2023-2253 )
Summary Go module github.com/docker/distribution is used by IBM Cloud Pak for Data. CVE-2023-2253. Vulnerability Details CVEID:CVE-2023-2253 DESCRIPTION: Distribution is vulnerable to a denial of service, caused by improper input validation by the /v2/catalog endpoint. By sending a specially...
CBL Mariner 2.0 Security Update: cert-manager / helm / moby-cli / moby-compose / moby-engine (CVE-2023-2253)
The version of cert-manager / helm / moby-cli / moby-compose / moby-engine installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2253 advisory. - A flaw was found in the /v2/catalog endpoint in...
CVE-2023-2253 affecting package moby-compose for versions less than 2.17.3-5
CVE-2023-2253 affecting package moby-compose for versions less than 2.17.3-5. A patched version of the package is available...
CVE-2023-2253 affecting package moby-engine for versions less than 25.0.3-1
CVE-2023-2253 affecting package moby-engine for versions less than 25.0.3-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-2253 affecting package moby-cli for versions less than 20.10.27-1
CVE-2023-2253 affecting package moby-cli for versions less than 20.10.27-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-2253 affecting package moby-engine for versions less than 20.10.27-1
CVE-2023-2253 affecting package moby-engine for versions less than 20.10.27-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-2253 affecting package helm for versions less than 3.13.2-1
CVE-2023-2253 affecting package helm for versions less than 3.13.2-1. An upgraded version of the package is available that resolves this issue...
Security Bulletin: IBM Cloud Pak for Data Scheduling is affected by opm vulnerability ( CVE-2023-2253 )
Summary Opm is used by IBM Cloud Pak for Data Scheduling as part of the ibm-cpd-scheduler-operator-catalog image used for installation of the Scheduler. Vulnerability Details CVEID:CVE-2023-2253 DESCRIPTION: Distribution is vulnerable to a denial of service, caused by improper input validation by...
CVE-2023-2253 affecting package skopeo for versions less than 1.13.3-1
CVE-2023-2253 affecting package skopeo for versions less than 1.13.3-1. An upgraded version of the package is available that resolves this issue...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.11.52 bug fix and security update
Red Hat OpenShift Container Platform release 4.11.52 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a...
Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.12.36 bug fix and security update
Red Hat OpenShift Container Platform release 4.12.36 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...
Security Bulletin: IBM Operational Decision Manager September 2023 - Multiple CVEs addressed
Summary IBM Operational Decision Manager is vulnerable to multiple remote code execution and denial of service attacks in third party and open source used in the product for various functions. See full list below. The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2023-2253...
Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Distribution
Summary IBM Watson Discovery Cartridge for IBM Cloud Pak for Data contains a vulnerable version of Distribution. Vulnerability Details CVEID:CVE-2023-2253 DESCRIPTION: Distribution is vulnerable to a denial of service, caused by improper input validation by the /v2/catalog endpoint. By sending a...
Moderate: Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.1.6 security and bug fix update
OpenShift API for Data Protection OADP 1.1.6 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
Moderate: Red Hat Security Advisory: [impact]: OpenShift Container Platform 4.13.13 bug fix and security update
Red Hat OpenShift Container Platform release 4.13.13 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a...
Ubuntu: Security Advisory (USN-6336-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...