RHSA-2022:7401: Moderate: OpenShift Container Platform 4.12 security update
Red Hat OpenShift Container Platform is Red Hat's cloud computingKubernetes application platform solution designed for on-premise or privatecloud deployments.Security Fix(es): golang: out-of-bounds read in golang.org/x/text/language leads to DoS (CVE-2021-38561) golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191) For more details about the security issue(s), including the impact, a CVSSscore, acknowledgments, and other related information, refer to the CVEpage(s)listed in the References section.
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2022:7401?
RHSA-2022:7401 is classified as a moderate severity vulnerability.
How do I fix RHSA-2022:7401?
To fix RHSA-2022:7401, you should upgrade to the latest version of the affected packages as provided in the security advisory.
What is the impact of CVE-2021-3852 mentioned in RHSA-2022:7401?
CVE-2021-3852 can lead to an out-of-bounds read that may result in a denial of service condition.
Which software is affected by RHSA-2022:7401?
RHSA-2022:7401 affects the Red Hat OpenShift Container Platform and is related to its use of golang libraries.
Is there any workaround for RHSA-2022:7401?
There are no specific workarounds recommended for RHSA-2022:7401, so patching is the preferred method.