RHCOS 4 : OpenShift Container Platform 4.1 openshift (RHSA-2019:4087)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:4087 advisory. - libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions CVE-2017-18367 -...

CVE-2017-18367

libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...