RHSA-2022:8932: Low: Release of OpenShift Serverless Client kn 1.26.0
Red Hat OpenShift Serverless Client kn 1.26.0 provides a CLI to interact with Red Hat OpenShift Serverless 1.26.0. The kn CLI is delivered as an RPM package for installation on RHEL platforms, and as binaries for non-Linux platforms.Security Fix(es): golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191) For more details about the security issue(s), including the impact; a CVSSscore; acknowledgments; and other related information refer to the CVE page(s)listed in the References section.
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2022:8932?
The severity of RHSA-2022:8932 is classified as low.
How do I fix RHSA-2022:8932?
To fix RHSA-2022:8932, upgrade to the remedied version 1.5.0-3.el8 of the openshift-serverless-clients package.
Which software is affected by RHSA-2022:8932?
RHSA-2022:8932 affects the openshift-serverless-clients package version up to 1.5.0-3.el8 on RHEL platforms.
What is the impact of RHSA-2022:8932?
The impact of RHSA-2022:8932 includes a crash vulnerability in the Go programming language used in the kn CLI.
Is there a workaround for RHSA-2022:8932?
There are no specific workarounds mentioned for RHSA-2022:8932; upgrading is recommended.