RHSA-2022:6187: Important: Node Health Check Operator 0.3.1 security update

Published Aug 25, 2022

Updated

This is an updated release of the Node Health Check Operator. You can use the Node Health Check Operator to deploy the Node Health Check controller. The controller identifies unhealthy nodes and uses the Self Node Remediation Operator to remediate the unhealthy nodes.Security Fix(es): golang: compress/gzip: stack exhaustion in Reader.Read (CVE-2022-30631) golang: net/http: improper sanitization of Transfer-Encoding header (CVE-2022-1705) golang: crypto/elliptic: panic caused by oversized scalar (CVE-2022-28327) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, see the CVE page(s) listed in the References section.

Affected Software

1 affected component

Node Health Check Operator Node Health Check Operator

Remediation

Event History

Aug 25, 2022

Advisory Published

12:00 AM

Data Sourced

12:00 AM

RemedyDescriptionAffected Software

Frequently Asked Questions

What is the severity of RHSA-2022:6187?

The severity of RHSA-2022:6187 is classified as important.

How do I fix RHSA-2022:6187?

To fix RHSA-2022:6187, you need to apply the recommended updates to the Node Health Check Operator.

What products are affected by RHSA-2022:6187?

RHSA-2022:6187 affects systems utilizing the Node Health Check Operator.

What is the purpose of RHSA-2022:6187?

RHSA-2022:6187 addresses vulnerabilities in the Node Health Check Operator to enhance node management and remediation.

Is a reboot required after applying RHSA-2022:6187?

It may be necessary to reboot your system after applying updates associated with RHSA-2022:6187 to ensure changes take effect.