RHSA-2022:1056: Moderate: Release of OpenShift Serverless Client kn 1.21.0
Red Hat OpenShift Serverless Client kn 1.21.0 provides a CLI to interact with Red Hat OpenShift Serverless 1.21.0. The kn CLI is delivered as an RPM package for installation on RHEL platforms, and as binaries for non-Linux platforms.Security Fix(es): golang: syscall: don't close fd 0 on ForkExec error (CVE-2021-44717) golang: net/http: limit growth of header canonicalization cache (CVE-2021-44716) For more details about the security issue(s), including the impact, a CVSSscore, acknowledgments, and other related information, refer to the CVE page(s)listed in the References section.
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2022:1056?
The vulnerability RHSA-2022:1056 is classified as a moderate severity issue.
How do I fix RHSA-2022:1056?
To fix RHSA-2022:1056, update the openshift-serverless-clients package to version 1.0.0-2.el8.
Which platforms are affected by RHSA-2022:1056?
RHSA-2022:1056 affects RHEL platforms where the openshift-serverless-clients package is installed.
What is the impact of RHSA-2022:1056?
The impact of RHSA-2022:1056 could allow for unauthorized access or manipulation when using the kn CLI.
Is there a workaround for RHSA-2022:1056?
There is no validated workaround for RHSA-2022:1056; updating the package is mandatory.