RHSA-2022:6422: Critical: Multicluster Engine for Kubernetes 2.0.2 security and bug fixes
Multicluster Engine for Kubernetes 2.0.2 imagesMulticluster engine for Kubernetes provides the foundational componentsthat are necessary for the centralized management of multipleKubernetes-based clusters across data centers, public clouds, and privateclouds.You can use the engine to create new Red Hat OpenShift Container Platformclusters or to bring existing Kubernetes-based clusters under management byimporting them. After the clusters are managed, you can use the APIs thatare provided by the engine to distribute configuration based on placementpolicy.Security updates: moment: inefficient parsing algorithm resulting in DoS (CVE-2022-31129) vm2: Sandbox Escape in vm2 (CVE-2022-36067) Bug fix: MCE 2.0.2 images (BZ# 2104569)
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2022:6422?
The severity of RHSA-2022:6422 is classified as important.
How do I fix RHSA-2022:6422?
To fix RHSA-2022:6422, update the Multicluster Engine for Kubernetes to the latest version as recommended in the advisory.
What vulnerabilities are addressed in RHSA-2022:6422?
RHSA-2022:6422 addresses multiple vulnerabilities related to Multicluster Engine for Kubernetes that could impact cluster operations.
Which versions of Multicluster Engine for Kubernetes are affected by RHSA-2022:6422?
RHSA-2022:6422 affects version 2.0.2 of Multicluster Engine for Kubernetes.
Who should be concerned about RHSA-2022:6422?
Organizations using Multicluster Engine for Kubernetes 2.0.2 should be concerned about RHSA-2022:6422 and take appropriate action.