RHSA-2021:1339: Moderate: Release of OpenShift Serverless Client kn 1.14.0 and security update
Red Hat OpenShift Serverless Client kn 1.14.0 provides a CLI to interact with Red Hat OpenShift Serverless 1.14.0. The kn CLI is delivered as an RPM package for installation on RHEL platforms, and as binaries for non-Linux platforms.Security Fix(es): golang: crypto/elliptic: incorrect operations on the P-224 curve (CVE-2021-3114) golang: cmd/go: packages using cgo can cause arbitrary code execution at build time (CVE-2021-3115) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2021:1339?
The severity of RHSA-2021:1339 is considered important due to specific vulnerabilities addressed in the fix.
How do I fix RHSA-2021:1339?
To fix RHSA-2021:1339, update the OpenShift Serverless Clients to version 0.20.0-6.el8 or later.
What software does RHSA-2021:1339 affect?
RHSA-2021:1339 affects the OpenShift Serverless Clients package version up to 0.20.0-6.el8.
Is RHSA-2021:1339 a critical vulnerability?
While not classified as critical, RHSA-2021:1339 addresses important security issues that should be rectified.
When was RHSA-2021:1339 published?
RHSA-2021:1339 was published as an advisory addressing vulnerabilities in Red Hat's OpenShift Serverless Clients.