Vulnerability Database
Blog
FAQ
Docs
RHSA-2020:5634
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2020:5634
Import Source
https://security.access.redhat.com/data/osv/RHSA-2020:5634.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2020:5634
Related
CVE-2019-3884
CVE-2020-15157
CVE-2020-25658
CVE-2020-28362
CVE-2020-8566
CVE-2021-3121
Published
2024-09-16T05:16:25Z
Modified
2024-11-22T16:16:18Z
Severity
8.6 (High)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.7.0 packages security update
Details
References
https://access.redhat.com/errata/RHSA-2020:5634
https://access.redhat.com/security/updates/classification/#moderate
https://bugzilla.redhat.com/show_bug.cgi?id=1693905
https://bugzilla.redhat.com/show_bug.cgi?id=1886640
https://bugzilla.redhat.com/show_bug.cgi?id=1888248
https://bugzilla.redhat.com/show_bug.cgi?id=1889972
https://bugzilla.redhat.com/show_bug.cgi?id=1910081
https://bugzilla.redhat.com/show_bug.cgi?id=1921650
https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2020_5634.json
https://access.redhat.com/security/cve/CVE-2019-3884
https://www.cve.org/CVERecord?id=CVE-2019-3884
https://nvd.nist.gov/vuln/detail/CVE-2019-3884
https://access.redhat.com/security/cve/CVE-2020-8566
https://www.cve.org/CVERecord?id=CVE-2020-8566
https://nvd.nist.gov/vuln/detail/CVE-2020-8566
https://github.com/kubernetes/kubernetes/issues/95624
https://groups.google.com/g/kubernetes-announce/c/ScdmyORnPDk
https://access.redhat.com/security/cve/CVE-2020-15157
https://www.cve.org/CVERecord?id=CVE-2020-15157
https://nvd.nist.gov/vuln/detail/CVE-2020-15157
https://github.com/containerd/containerd/releases/tag/v1.2.14
https://github.com/containerd/containerd/security/advisories/GHSA-742w-89gc-8m9c
https://www.openwall.com/lists/oss-security/2020/10/15/1
https://access.redhat.com/security/cve/CVE-2020-25658
https://www.cve.org/CVERecord?id=CVE-2020-25658
https://nvd.nist.gov/vuln/detail/CVE-2020-25658
https://github.com/sybrenstuvel/python-rsa/issues/165
https://access.redhat.com/security/cve/CVE-2020-28362
https://bugzilla.redhat.com/show_bug.cgi?id=1897635
https://www.cve.org/CVERecord?id=CVE-2020-28362
https://nvd.nist.gov/vuln/detail/CVE-2020-28362
https://access.redhat.com/security/cve/CVE-2021-3121
https://www.cve.org/CVERecord?id=CVE-2021-3121
https://nvd.nist.gov/vuln/detail/CVE-2021-3121
Affected packages
Red Hat:openshift:4.7::el7
/
openshift
Package
Name
openshift
Purl
pkg:rpm/redhat/openshift
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.7.0-202102060108.p0.git.97095.7271b90.el7
Red Hat:openshift:4.7::el7
/
openshift-hyperkube
Package
Name
openshift-hyperkube
Purl
pkg:rpm/redhat/openshift-hyperkube
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.7.0-202102060108.p0.git.97095.7271b90.el7
Red Hat:openshift:4.7::el8
/
openshift
Package
Name
openshift
Purl
pkg:rpm/redhat/openshift
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.7.0-202102060108.p0.git.97095.7271b90.el8
Red Hat:openshift:4.7::el8
/
openshift-hyperkube
Package
Name
openshift-hyperkube
Purl
pkg:rpm/redhat/openshift-hyperkube
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.7.0-202102060108.p0.git.97095.7271b90.el8
Red Hat:openshift:4.7::el8
/
python-rsa
Package
Name
python-rsa
Purl
pkg:rpm/redhat/python-rsa
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.7-1.el8
Red Hat:openshift:4.7::el8
/
python3-rsa
Package
Name
python3-rsa
Purl
pkg:rpm/redhat/python3-rsa
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.7-1.el8
Red Hat:openshift:4.7::el8
/
ignition
Package
Name
ignition
Purl
pkg:rpm/redhat/ignition
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.9.0-2.rhaos4.7.git1d56dc8.el8
Red Hat:openshift:4.7::el8
/
ignition-debuginfo
Package
Name
ignition-debuginfo
Purl
pkg:rpm/redhat/ignition-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.9.0-2.rhaos4.7.git1d56dc8.el8
Red Hat:openshift:4.7::el8
/
ignition-debugsource
Package
Name
ignition-debugsource
Purl
pkg:rpm/redhat/ignition-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.9.0-2.rhaos4.7.git1d56dc8.el8
Red Hat:openshift:4.7::el8
/
ignition-validate
Package
Name
ignition-validate
Purl
pkg:rpm/redhat/ignition-validate
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.9.0-2.rhaos4.7.git1d56dc8.el8
Red Hat:openshift:4.7::el8
/
ignition-validate-debuginfo
Package
Name
ignition-validate-debuginfo
Purl
pkg:rpm/redhat/ignition-validate-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.9.0-2.rhaos4.7.git1d56dc8.el8
Red Hat:openshift:4.7::el7
/
cri-o
Package
Name
cri-o
Purl
pkg:rpm/redhat/cri-o
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.20.0-0.rhaos4.7.git8921e00.el7.51
Red Hat:openshift:4.7::el7
/
cri-o-debuginfo
Package
Name
cri-o-debuginfo
Purl
pkg:rpm/redhat/cri-o-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.20.0-0.rhaos4.7.git8921e00.el7.51
Red Hat:openshift:4.7::el7
/
cri-tools
Package
Name
cri-tools
Purl
pkg:rpm/redhat/cri-tools
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.18.0-3.el7
Red Hat:openshift:4.7::el7
/
cri-tools-debuginfo
Package
Name
cri-tools-debuginfo
Purl
pkg:rpm/redhat/cri-tools-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.18.0-3.el7
Red Hat:openshift:4.7::el8
/
cri-o
Package
Name
cri-o
Purl
pkg:rpm/redhat/cri-o
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.20.0-0.rhaos4.7.git8921e00.el8.51
Red Hat:openshift:4.7::el8
/
cri-o-debuginfo
Package
Name
cri-o-debuginfo
Purl
pkg:rpm/redhat/cri-o-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.20.0-0.rhaos4.7.git8921e00.el8.51
Red Hat:openshift:4.7::el8
/
cri-o-debugsource
Package
Name
cri-o-debugsource
Purl
pkg:rpm/redhat/cri-o-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.20.0-0.rhaos4.7.git8921e00.el8.51
Red Hat:openshift:4.7::el8
/
cri-tools
Package
Name
cri-tools
Purl
pkg:rpm/redhat/cri-tools
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.20.0-1.el8
Red Hat:openshift:4.7::el8
/
cri-tools-debuginfo
Package
Name
cri-tools-debuginfo
Purl
pkg:rpm/redhat/cri-tools-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.20.0-1.el8
Red Hat:openshift:4.7::el8
/
cri-tools-debugsource
Package
Name
cri-tools-debugsource
Purl
pkg:rpm/redhat/cri-tools-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.20.0-1.el8
RHSA-2020:5634 - OSV