Vulnerability Database
Blog
FAQ
Docs
RHSA-2024:0043
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2024:0043
Import Source
https://security.access.redhat.com/data/osv/RHSA-2024:0043.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2024:0043
Related
CVE-2024-24786
CVE-2024-3177
GO-2024-2611
Published
2024-10-01T23:06:16Z
Modified
2024-12-18T10:04:52Z
Severity
5.9 (Medium)
CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: Red Hat build of MicroShift 4.16.0 security update
Details
References
https://access.redhat.com/errata/RHSA-2024:0043
https://access.redhat.com/security/updates/classification/#important
https://bugzilla.redhat.com/show_bug.cgi?id=2268046
https://bugzilla.redhat.com/show_bug.cgi?id=2274118
https://issues.redhat.com/browse/OCPBUGS-21901
https://issues.redhat.com/browse/OCPBUGS-23336
https://issues.redhat.com/browse/OCPBUGS-24444
https://issues.redhat.com/browse/OCPBUGS-24689
https://issues.redhat.com/browse/OCPBUGS-25030
https://issues.redhat.com/browse/OCPBUGS-25784
https://issues.redhat.com/browse/OCPBUGS-27849
https://issues.redhat.com/browse/OCPBUGS-29037
https://issues.redhat.com/browse/OCPBUGS-29847
https://issues.redhat.com/browse/OCPBUGS-30039
https://issues.redhat.com/browse/OCPBUGS-30807
https://issues.redhat.com/browse/OCPBUGS-30833
https://issues.redhat.com/browse/OCPBUGS-31739
https://issues.redhat.com/browse/OCPBUGS-32946
https://issues.redhat.com/browse/OCPBUGS-33588
https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0043.json
https://access.redhat.com/security/cve/CVE-2024-3177
https://www.cve.org/CVERecord?id=CVE-2024-3177
https://nvd.nist.gov/vuln/detail/CVE-2024-3177
https://discuss.kubernetes.io/t/security-advisory-cve-2024-3177-bypassing-mountable-secrets-policy-imposed-by-the-serviceaccount-admission-plugin/27905
https://access.redhat.com/security/cve/CVE-2024-24786
https://www.cve.org/CVERecord?id=CVE-2024-24786
https://nvd.nist.gov/vuln/detail/CVE-2024-24786
https://go.dev/cl/569356
https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/
https://pkg.go.dev/vuln/GO-2024-2611
Affected packages
Red Hat:openshift:4.16::el9
/
microshift
Package
Name
microshift
Purl
pkg:rpm/redhat/microshift
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.16.0-202406260523.p0.gc5a37df.assembly.4.16.0.el9
Red Hat:openshift:4.16::el9
/
microshift-greenboot
Package
Name
microshift-greenboot
Purl
pkg:rpm/redhat/microshift-greenboot
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.16.0-202406260523.p0.gc5a37df.assembly.4.16.0.el9
Red Hat:openshift:4.16::el9
/
microshift-multus
Package
Name
microshift-multus
Purl
pkg:rpm/redhat/microshift-multus
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.16.0-202406260523.p0.gc5a37df.assembly.4.16.0.el9
Red Hat:openshift:4.16::el9
/
microshift-multus-release-info
Package
Name
microshift-multus-release-info
Purl
pkg:rpm/redhat/microshift-multus-release-info
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.16.0-202406260523.p0.gc5a37df.assembly.4.16.0.el9
Red Hat:openshift:4.16::el9
/
microshift-networking
Package
Name
microshift-networking
Purl
pkg:rpm/redhat/microshift-networking
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.16.0-202406260523.p0.gc5a37df.assembly.4.16.0.el9
Red Hat:openshift:4.16::el9
/
microshift-olm
Package
Name
microshift-olm
Purl
pkg:rpm/redhat/microshift-olm
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.16.0-202406260523.p0.gc5a37df.assembly.4.16.0.el9
Red Hat:openshift:4.16::el9
/
microshift-olm-release-info
Package
Name
microshift-olm-release-info
Purl
pkg:rpm/redhat/microshift-olm-release-info
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.16.0-202406260523.p0.gc5a37df.assembly.4.16.0.el9
Red Hat:openshift:4.16::el9
/
microshift-release-info
Package
Name
microshift-release-info
Purl
pkg:rpm/redhat/microshift-release-info
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.16.0-202406260523.p0.gc5a37df.assembly.4.16.0.el9
Red Hat:openshift:4.16::el9
/
microshift-selinux
Package
Name
microshift-selinux
Purl
pkg:rpm/redhat/microshift-selinux
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.16.0-202406260523.p0.gc5a37df.assembly.4.16.0.el9
RHSA-2024:0043 - OSV