RHSA-2021:0037: Moderate: OpenShift Container Platform 4.6.12 bug fix and security update

First published: Mon Jan 18 2021(Updated: )

Red Hat OpenShift Container Platform is Red Hat's cloud computing<br>Kubernetes application platform solution designed for on-premise or private<br>cloud deployments.<br>This advisory contains the container images for Red Hat OpenShift Container<br>Platform 4.6.12. See the following advisory for the RPM packages for this<br>release:<br><a href="https://access.redhat.com/errata/RHSA-2021:0038" target="_blank">https://access.redhat.com/errata/RHSA-2021:0038</a> Space precludes documenting all of the container images in this advisory.<br>See the following Release Notes documentation, which will be updated<br>shortly for this release, for details about these changes:<br><a href="https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-release-notes.html" target="_blank">https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-release-notes.html</a> Security Fix(es):<br><li> kubernetes: Ceph RBD adminSecrets exposed in logs when loglevel &gt;= 4 (CVE-2020-8566)</li> <li> golang: math/big: panic during recursive division of very large numbers (CVE-2020-28362)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>You may download the oc tool and use it to inspect release image metadata as follows:<br>(For x86_64 architecture)<br>$ oc adm release info quay.io/openshift-release-dev/ocp-release:4.6.12-x86_64<br>The image digest is sha256:5c3618ab914eb66267b7c552a9b51c3018c3a8f8acf08ce1ff7ae4bfdd3a82bd<br>(For s390x architecture)<br>$ oc adm release info quay.io/openshift-release-dev/ocp-release:4.6.12-s390x<br>The image digest is sha256:9e78700d5b1b8618d67d39f12a2c163f08e537eb4cea89cd28d1aa3f4ea356bb<br>(For ppc64le architecture)<br>$ oc adm release info quay.io/openshift-release-dev/ocp-release:4.6.12-ppc64le<br>The image digest is sha256:290cd8207d81123ba05c2f4f6f29c99c4001e1afbbfdee94c327ceb81ab75924<br>All OpenShift Container Platform 4.6 users are advised to upgrade to these<br>updated packages and images when they are available in the appropriate<br>release channel. To check for available updates, use the OpenShift Console<br>or the CLI oc command. Instructions for upgrading a cluster are available<br>at<br><a href="https://docs.openshift.com/container-platform/4.6/updating/updating-cluster-between-minor.html#understanding-upgrade-channels_updating-cluster-between-minor." target="_blank">https://docs.openshift.com/container-platform/4.6/updating/updating-cluster-between-minor.html#understanding-upgrade-channels_updating-cluster-between-minor.</a>

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/references
• agent/severity
• agent/first-publish-date
• agent/last-modified-date
• collector/redhat-errata
• source/Red Hat
• anchor-id/RHSA-2021:0037
• agent/event
• agent/type
• agent/trending
• agent/title
• agent/remedy
• agent/description
• agent/source
• agent/softwarecombine
• agent/tags
• agent/guess-ai
• agent/software-canonical-lookup
• agent/software-canonical-lookup-request
• vendor/red hat
• canonical/red hat openshift container platform for ibm linuxone