53 matches found
Moderate: Red Hat Security Advisory: Openshift Logging security and bug update (5.3.1)
An update is now available for OpenShift Logging 5.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in th...
Moderate: Red Hat Security Advisory: Openshift Logging security and bug update (5.2.4)
An update is now available for OpenShift Logging 5.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in th...
Low: Red Hat Security Advisory: Openshift Logging 5.2.3 bug fix and security update
An update is now available for OpenShift Logging 5.2. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...
Low: Red Hat Security Advisory: Openshift Logging 5.1.4 bug fix and security update
An update is now available for OpenShift Logging 5.1.4. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...
Moderate: Red Hat Security Advisory: Openshift Logging 5.3.0 bug fix and security update
An update is now available for OpenShift Logging 5.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in th...
Moderate: Red Hat Bug Fix Advisory: Openshift Logging Bug Fix Release (5.2.0)
Openshift Logging Bug Fix Release 5.2.0 Openshift Logging Bug Fix Release 5.2.0...
Moderate: Red Hat Security Advisory: Openshift Logging Bug Fix Release (5.0.5)
Openshift Logging Bug Fix Release 5.0.5 This release includes a security update. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...
Moderate: Red Hat Security Advisory: Openshift Logging security and bugs update (5.0.4)
Openshift Logging Bug Fix Release 5.0.4 This release includes a security update. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...
Important: Red Hat Security Advisory: Openshift Logging Bug Fix Release (5.0.3)
Openshift Logging Bug Fix Release 5.0.3 This release includes a security update. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Moderate: Red Hat Bug Fix Advisory: Openshift Logging Bug Fix Release (5.0.2)
Openshift Logging Bug Fix Release 5.0.2 Openshift Logging Bug Fix Release 5.0.2 You use the Red Hat OpenShift Logging product to forward, store, and visualize log data from your cluster. Changes to the Red Hat OpenShift Logging product: If you did not set .proxy in the cluster installation...
Design/Logic Flaw
The elasticsearch-operator does not validate the namespace where kibana logging resource is created and due to that it is possible to replace the original openshift-logging console link kibana console to different one, created based on the new CR for the new kibana resource. This could lead to an...
CVE-2020-27816
The CVE-2020-27816 issue affects the elasticsearch-operator (container) prior to version 4.7, where the operator does not validate the namespace for kibana logging resources, enabling replacement of the openshift-logging console link and potential arbitrary URL redirection. Red Hat advisory RHSA-...
CVE-2020-27816
The elasticsearch-operator does not validate the namespace where kibana logging resource is created and due to that it is possible to replace the original openshift-logging console link kibana console to different one, created based on the new CR for the new kibana resource. This could lead to an...