Red Hat Openshift Container Platform For Linuxone 4.12

CPE Details

Red Hat Openshift Container Platform For Linuxone 4.12
redhat
openshift_container_platform_for_linuxone
4.12
2023-07-11
17h59 +00:00
2023-07-15
01h24 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.12:*:*:*:*:*:*:*

Informations

Vendor

redhat

Product

openshift_container_platform_for_linuxone

Version

4.12

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-9676 2024-10-15 15h27 +00:00 A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace (`--userns=auto` in Podman and Buildah). The containers/storage library will read /etc/passwd inside the container, but does not properly validate if that file is a symlink, which can be used to cause the library to read an arbitrary file on the host.
6.5
Medium
CVE-2023-5625 2023-11-01 13h28 +00:00 A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products.
7.5
High
CVE-2022-4318 2023-09-25 19h23 +00:00 A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.
7.8
High
CVE-2023-3089 2023-07-05 12h21 +00:00 A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated.
7.5
High