RHSA-2021:0956: Low: OpenShift Container Platform 4.6.23 security update

ed Hat OpenShift Container Platform is Red Hat's cloud computing<br>Kubernetes application platform solution designed for on-premise or private<br>cloud deployments.<br>This advisory contains the RPM packages for Red Hat OpenShift Container<br>Platform 4.6.23. See the following advisory for the container images for<br>this release:<br><a href="https://access.redhat.com/errata/RHBA-2021:0952" target="blank">https://access.redhat.com/errata/RHBA-2021:0952</a> All OpenShift Container Platform 4.6 users are advised to upgrade to these<br>updated packages and images when they are available in the appropriate<br>release channel. To check for available updates, use the OpenShift Console<br>or the CLI oc command. Instructions for upgrading a cluster are available<br>at<br><a href="https://docs.openshift.com/container-platform/4.6/updating/updating-cluster" target="blank">https://docs.openshift.com/container-platform/4.6/updating/updating-cluster</a> <li>between-minor.html#understanding-upgrade-channelsupdating-cluster-between</li> <li>minor.</li> Security Fix(es):<br><li> golang: data race in certain net/http servers including ReverseProxy can lead to DoS (CVE-2020-15586)</li> <li> golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs (CVE-2020-16845)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.