First published: Fri Mar 20 2020(Updated: )
Red Hat OpenShift Container Platform is Red Hat's cloud computing<br>Kubernetes application platform solution designed for on-premise or private<br>cloud deployments.<br>Security Fix(es):<br><li> openshift/apb-base: /etc/passwd is given incorrect privileges (CVE-2019-19348)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software | Affected Version | How to fix |
---|---|---|
Red Hat OpenShift Container Platform for IBM LinuxONE |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of RHSA-2020:0796 is classified as moderate.
To fix RHSA-2020:0796, update the affected OpenShift Container Platform packages to the latest version that includes the security patch.
RHSA-2020:0796 addresses the vulnerability CVE-2019-19348 related to incorrect privileged settings of /etc/passwd.
RHSA-2020:0796 affects installations of Red Hat OpenShift Container Platform.
While the best practice is to apply the security update, temporarily limiting access to the affected resources may reduce exposure.