RHSA-2024:0043
- Source
- https://access.redhat.com/errata/RHSA-2024:0043
- Import Source
- https://security.access.redhat.com/data/osv/RHSA-2024:0043.json
- JSON Data
- https://api.osv.dev/v1/vulns/RHSA-2024:0043
- Related
- Published
- 2024-10-01T23:06:16Z
- Modified
- 2024-10-30T22:54:20Z
- Severity
-
- 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- Red Hat Security Advisory: Red Hat build of MicroShift 4.16.0 security update
- Details
- References
-
- https://access.redhat.com/errata/RHSA-2024:0043
- https://access.redhat.com/security/updates/classification/#important
- https://bugzilla.redhat.com/show_bug.cgi?id=2268046
- https://bugzilla.redhat.com/show_bug.cgi?id=2274118
- https://issues.redhat.com/browse/OCPBUGS-21901
- https://issues.redhat.com/browse/OCPBUGS-23336
- https://issues.redhat.com/browse/OCPBUGS-24444
- https://issues.redhat.com/browse/OCPBUGS-24689
- https://issues.redhat.com/browse/OCPBUGS-25030
- https://issues.redhat.com/browse/OCPBUGS-25784
- https://issues.redhat.com/browse/OCPBUGS-27849
- https://issues.redhat.com/browse/OCPBUGS-29037
- https://issues.redhat.com/browse/OCPBUGS-29847
- https://issues.redhat.com/browse/OCPBUGS-30039
- https://issues.redhat.com/browse/OCPBUGS-30807
- https://issues.redhat.com/browse/OCPBUGS-30833
- https://issues.redhat.com/browse/OCPBUGS-31739
- https://issues.redhat.com/browse/OCPBUGS-32946
- https://issues.redhat.com/browse/OCPBUGS-33588
- https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0043.json
- https://access.redhat.com/security/cve/CVE-2024-3177
- https://www.cve.org/CVERecord?id=CVE-2024-3177
- https://nvd.nist.gov/vuln/detail/CVE-2024-3177
- https://discuss.kubernetes.io/t/security-advisory-cve-2024-3177-bypassing-mountable-secrets-policy-imposed-by-the-serviceaccount-admission-plugin/27905
- https://access.redhat.com/security/cve/CVE-2024-24786
- https://www.cve.org/CVERecord?id=CVE-2024-24786
- https://nvd.nist.gov/vuln/detail/CVE-2024-24786
- https://go.dev/cl/569356
- https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/
- https://pkg.go.dev/vuln/GO-2024-2611
Affected packages
Red Hat:openshift:4.16::el9 / microshift
Package
- Name
- microshift
- Purl
- pkg:rpm/redhat/microshift
Red Hat:openshift:4.16::el9 / microshift-greenboot
Package
- Name
- microshift-greenboot
- Purl
- pkg:rpm/redhat/microshift-greenboot
Red Hat:openshift:4.16::el9 / microshift-multus
Package
- Name
- microshift-multus
- Purl
- pkg:rpm/redhat/microshift-multus
Red Hat:openshift:4.16::el9 / microshift-multus-release-info
Package
- Name
- microshift-multus-release-info
- Purl
- pkg:rpm/redhat/microshift-multus-release-info
Red Hat:openshift:4.16::el9 / microshift-networking
Package
- Name
- microshift-networking
- Purl
- pkg:rpm/redhat/microshift-networking
Red Hat:openshift:4.16::el9 / microshift-olm
Package
- Name
- microshift-olm
- Purl
- pkg:rpm/redhat/microshift-olm
Red Hat:openshift:4.16::el9 / microshift-olm-release-info
Package
- Name
- microshift-olm-release-info
- Purl
- pkg:rpm/redhat/microshift-olm-release-info
Red Hat:openshift:4.16::el9 / microshift-release-info
Package
- Name
- microshift-release-info
- Purl
- pkg:rpm/redhat/microshift-release-info