- Vulnerability/
- RHSA-2020:4264
RHSA-2020:4264: Low: OpenShift Container Platform 4.3.40 security and bug fix update
First published: Tue Oct 20 2020(Updated: )
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.<br>Security Fix(es):<br><li> golang.org/x/crypto: Processing of crafted ssh-ed25519 public keys allows for panic (CVE-2020-9283)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> Gather image registry config (backport to 4.3) (BZ#1836815)</li> <li> Builds fail after running postCommit script if OCP cluster is configured with a container registry whitelist (BZ#1849176)</li> <li> Login with OpenShift not working after cluster upgrade (BZ#1852429)</li> <li> Limit the size of gathered federated metrics from alerts in Insights Operator (BZ#1874018)</li> <li> [4.3] Storage operator stops reconciling when going Upgradeable=False on v1alpha1 CRDs (BZ#1879110)</li> <li> [release 4.3] OpenShift APIs become unavailable for more than 15 minutes after one of master nodes went down(OAuth) (BZ#1880293)</li> You may download the oc tool and use it to inspect release image metadata<br>as follows:<br>(For x86_64 architecture)<br>$ oc adm release info<br>quay.io/openshift-release-dev/ocp-release:4.3.40-x86_64<br>The image digest is sha256:9ff90174a170379e90a9ead6e0d8cf6f439004191f80762764a5ca3dbaab01dc<br>(For s390x architecture)<br>$ oc adm release info<br>quay.io/openshift-release-dev/ocp-release:4.3.40-s390x<br>The image digest is sha256:605ddde0442e604cfe2d6bd1541ce48df5956fe626edf9cc95b1fca75d231b64<br>(For ppc64le architecture)<br>$ oc adm release info<br>quay.io/openshift-release-dev/ocp-release:4.3.40-ppc64le<br>The image digest is sha256:d3c9e391c145338eae3feb7f6a4e487dadc8139a353117d642fe686d277bcccc
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat OpenShift Container Platform for IBM LinuxONE |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of RHSA-2020:4264?
The severity of RHSA-2020:4264 is classified as important.
How do I fix RHSA-2020:4264?
To fix RHSA-2020:4264, you should update the affected packages to the latest version provided by Red Hat.
What vulnerabilities are addressed by RHSA-2020:4264?
RHSA-2020:4264 addresses a vulnerability in the processing of crafted ssh-ed25519 public keys that can cause a panic.
Which versions of Red Hat OpenShift Container Platform are affected by RHSA-2020:4264?
RHSA-2020:4264 affects various versions of Red Hat OpenShift Container Platform that use the vulnerable Go library.
Is there a workaround for RHSA-2020:4264?
There are no specific workarounds mentioned for RHSA-2020:4264, so it is recommended to apply the update.
- agent/severity
- agent/type
- agent/remedy
- agent/first-publish-date
- agent/last-modified-date
- agent/description
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2020:4264
- agent/title
- agent/references
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/red hat
- canonical/red hat openshift container platform for ibm linuxone