- Vulnerability/
- RHSA-2022:0557
23/2/2022
RHSA-2022:0557: Moderate: OpenShift Container Platform 4.9.22 security update
First published: Wed Feb 23 2022(Updated: )
Red Hat OpenShift Container Platform is Red Hat's cloud computing<br>Kubernetes application platform solution designed for on-premise or private<br>cloud deployments.<br>Security Fix(es):<br><li> golang: net: incorrect parsing of extraneous zero characters at the beginning of an IP address octet (CVE-2021-29923)</li> <li> golang: net/http/httputil: panic due to racy read of persistConn after handler panic (CVE-2021-36221)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/butane | <0.13.1-2.rhaos4.9.el8 | 0.13.1-2.rhaos4.9.el8 |
| redhat/cri-o | <1.22.1-17.rhaos4.9.git3029b1d.2.el8 | 1.22.1-17.rhaos4.9.git3029b1d.2.el8 |
| redhat/cri-tools | <1.22.0-2.el8 | 1.22.0-2.el8 |
| redhat/golang-github-prometheus-promu | <0.5.0-5.git642a960.el8 | 0.5.0-5.git642a960.el8 |
| redhat/ignition | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/jenkins | <2-plugins-4.9.1644822177-1.el8 | 2-plugins-4.9.1644822177-1.el8 |
| redhat/openshift | <4.9.0-202202111950.p0.gb93fd35.assembly.stream.el8 | 4.9.0-202202111950.p0.gb93fd35.assembly.stream.el8 |
| redhat/openshift-clients | <4.9.0-202202140924.p0.g340e212.assembly.stream.el8 | 4.9.0-202202140924.p0.g340e212.assembly.stream.el8 |
| redhat/ovn21.12 | <21.12.0-25.el8fd | 21.12.0-25.el8fd |
| redhat/butane | <0.13.1-2.rhaos4.9.el8 | 0.13.1-2.rhaos4.9.el8 |
| redhat/butane-debuginfo | <0.13.1-2.rhaos4.9.el8 | 0.13.1-2.rhaos4.9.el8 |
| redhat/butane-debugsource | <0.13.1-2.rhaos4.9.el8 | 0.13.1-2.rhaos4.9.el8 |
| redhat/butane-redistributable | <0.13.1-2.rhaos4.9.el8 | 0.13.1-2.rhaos4.9.el8 |
| redhat/cri-o | <1.22.1-17.rhaos4.9.git3029b1d.2.el8 | 1.22.1-17.rhaos4.9.git3029b1d.2.el8 |
| redhat/cri-o-debuginfo | <1.22.1-17.rhaos4.9.git3029b1d.2.el8 | 1.22.1-17.rhaos4.9.git3029b1d.2.el8 |
| redhat/cri-o-debugsource | <1.22.1-17.rhaos4.9.git3029b1d.2.el8 | 1.22.1-17.rhaos4.9.git3029b1d.2.el8 |
| redhat/cri-tools | <1.22.0-2.el8 | 1.22.0-2.el8 |
| redhat/cri-tools-debuginfo | <1.22.0-2.el8 | 1.22.0-2.el8 |
| redhat/cri-tools-debugsource | <1.22.0-2.el8 | 1.22.0-2.el8 |
| redhat/golang-github-prometheus-promu | <0.5.0-5.git642a960.el8 | 0.5.0-5.git642a960.el8 |
| redhat/ignition | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/ignition-debuginfo | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/ignition-debugsource | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/ignition-validate | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/ignition-validate-debuginfo | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/jenkins | <2-plugins-4.9.1644822177-1.el8 | 2-plugins-4.9.1644822177-1.el8 |
| redhat/openshift-clients | <4.9.0-202202140924.p0.g340e212.assembly.stream.el8 | 4.9.0-202202140924.p0.g340e212.assembly.stream.el8 |
| redhat/openshift-clients-redistributable | <4.9.0-202202140924.p0.g340e212.assembly.stream.el8 | 4.9.0-202202140924.p0.g340e212.assembly.stream.el8 |
| redhat/openshift-hyperkube | <4.9.0-202202111950.p0.gb93fd35.assembly.stream.el8 | 4.9.0-202202111950.p0.gb93fd35.assembly.stream.el8 |
| redhat/ovn21.12-central | <21.12.0-25.el8fd | 21.12.0-25.el8fd |
| redhat/ovn21.12-central-debuginfo | <21.12.0-25.el8fd | 21.12.0-25.el8fd |
| redhat/ovn21.12-debuginfo | <21.12.0-25.el8fd | 21.12.0-25.el8fd |
| redhat/ovn21.12-debugsource | <21.12.0-25.el8fd | 21.12.0-25.el8fd |
| redhat/ovn21.12-host | <21.12.0-25.el8fd | 21.12.0-25.el8fd |
| redhat/ovn21.12-host-debuginfo | <21.12.0-25.el8fd | 21.12.0-25.el8fd |
| redhat/ovn21.12-vtep | <21.12.0-25.el8fd | 21.12.0-25.el8fd |
| redhat/ovn21.12-vtep-debuginfo | <21.12.0-25.el8fd | 21.12.0-25.el8fd |
| redhat/prometheus-promu | <0.5.0-5.git642a960.el8 | 0.5.0-5.git642a960.el8 |
| redhat/cri-o | <1.22.1-17.rhaos4.9.git3029b1d.el7 | 1.22.1-17.rhaos4.9.git3029b1d.el7 |
| redhat/openshift | <4.9.0-202202111950.p0.gb93fd35.assembly.stream.el7 | 4.9.0-202202111950.p0.gb93fd35.assembly.stream.el7 |
| redhat/openshift-ansible | <4.9.0-202202111950.p0.g4d833d3.assembly.stream.el7 | 4.9.0-202202111950.p0.g4d833d3.assembly.stream.el7 |
| redhat/openshift-clients | <4.9.0-202202140924.p0.g340e212.assembly.stream.el7 | 4.9.0-202202140924.p0.g340e212.assembly.stream.el7 |
| redhat/cri-o | <1.22.1-17.rhaos4.9.git3029b1d.el7 | 1.22.1-17.rhaos4.9.git3029b1d.el7 |
| redhat/cri-o-debuginfo | <1.22.1-17.rhaos4.9.git3029b1d.el7 | 1.22.1-17.rhaos4.9.git3029b1d.el7 |
| redhat/openshift-ansible | <4.9.0-202202111950.p0.g4d833d3.assembly.stream.el7 | 4.9.0-202202111950.p0.g4d833d3.assembly.stream.el7 |
| redhat/openshift-ansible-test | <4.9.0-202202111950.p0.g4d833d3.assembly.stream.el7 | 4.9.0-202202111950.p0.g4d833d3.assembly.stream.el7 |
| redhat/openshift-clients | <4.9.0-202202140924.p0.g340e212.assembly.stream.el7 | 4.9.0-202202140924.p0.g340e212.assembly.stream.el7 |
| redhat/openshift-clients-redistributable | <4.9.0-202202140924.p0.g340e212.assembly.stream.el7 | 4.9.0-202202140924.p0.g340e212.assembly.stream.el7 |
| redhat/openshift-hyperkube | <4.9.0-202202111950.p0.gb93fd35.assembly.stream.el7 | 4.9.0-202202111950.p0.gb93fd35.assembly.stream.el7 |
| redhat/butane | <0.13.1-2.rhaos4.9.el8 | 0.13.1-2.rhaos4.9.el8 |
| redhat/butane-debuginfo | <0.13.1-2.rhaos4.9.el8 | 0.13.1-2.rhaos4.9.el8 |
| redhat/butane-debugsource | <0.13.1-2.rhaos4.9.el8 | 0.13.1-2.rhaos4.9.el8 |
| redhat/cri-o | <1.22.1-17.rhaos4.9.git3029b1d.2.el8 | 1.22.1-17.rhaos4.9.git3029b1d.2.el8 |
| redhat/cri-o-debuginfo | <1.22.1-17.rhaos4.9.git3029b1d.2.el8 | 1.22.1-17.rhaos4.9.git3029b1d.2.el8 |
| redhat/cri-o-debugsource | <1.22.1-17.rhaos4.9.git3029b1d.2.el8 | 1.22.1-17.rhaos4.9.git3029b1d.2.el8 |
| redhat/cri-tools | <1.22.0-2.el8 | 1.22.0-2.el8 |
| redhat/cri-tools-debuginfo | <1.22.0-2.el8 | 1.22.0-2.el8 |
| redhat/cri-tools-debugsource | <1.22.0-2.el8 | 1.22.0-2.el8 |
| redhat/golang-github-prometheus-promu | <0.5.0-5.git642a960.el8 | 0.5.0-5.git642a960.el8 |
| redhat/ignition | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/ignition-debuginfo | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/ignition-debugsource | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/ignition-validate | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/ignition-validate-debuginfo | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/openshift-clients | <4.9.0-202202140924.p0.g340e212.assembly.stream.el8 | 4.9.0-202202140924.p0.g340e212.assembly.stream.el8 |
| redhat/openshift-hyperkube | <4.9.0-202202111950.p0.gb93fd35.assembly.stream.el8 | 4.9.0-202202111950.p0.gb93fd35.assembly.stream.el8 |
| redhat/prometheus-promu | <0.5.0-5.git642a960.el8 | 0.5.0-5.git642a960.el8 |
| redhat/butane-debuginfo | <0.13.1-2.rhaos4.9.el8 | 0.13.1-2.rhaos4.9.el8 |
| redhat/butane-debugsource | <0.13.1-2.rhaos4.9.el8 | 0.13.1-2.rhaos4.9.el8 |
| redhat/cri-o-debuginfo | <1.22.1-17.rhaos4.9.git3029b1d.2.el8 | 1.22.1-17.rhaos4.9.git3029b1d.2.el8 |
| redhat/cri-o-debugsource | <1.22.1-17.rhaos4.9.git3029b1d.2.el8 | 1.22.1-17.rhaos4.9.git3029b1d.2.el8 |
| redhat/cri-tools-debuginfo | <1.22.0-2.el8 | 1.22.0-2.el8 |
| redhat/cri-tools-debugsource | <1.22.0-2.el8 | 1.22.0-2.el8 |
| redhat/ignition-debuginfo | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/ignition-debugsource | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/ignition-validate | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/ignition-validate-debuginfo | <2.12.0-3.rhaos4.9.el8 | 2.12.0-3.rhaos4.9.el8 |
| redhat/openshift-hyperkube | <4.9.0-202202111950.p0.gb93fd35.assembly.stream.el8 | 4.9.0-202202111950.p0.gb93fd35.assembly.stream.el8 |
| redhat/prometheus-promu | <0.5.0-5.git642a960.el8 | 0.5.0-5.git642a960.el8 |
| redhat/butane | <0.13.1-2.rhaos4.9.el8.aa | 0.13.1-2.rhaos4.9.el8.aa |
| redhat/butane-debuginfo | <0.13.1-2.rhaos4.9.el8.aa | 0.13.1-2.rhaos4.9.el8.aa |
| redhat/butane-debugsource | <0.13.1-2.rhaos4.9.el8.aa | 0.13.1-2.rhaos4.9.el8.aa |
| redhat/cri-o | <1.22.1-17.rhaos4.9.git3029b1d.2.el8.aa | 1.22.1-17.rhaos4.9.git3029b1d.2.el8.aa |
| redhat/cri-o-debuginfo | <1.22.1-17.rhaos4.9.git3029b1d.2.el8.aa | 1.22.1-17.rhaos4.9.git3029b1d.2.el8.aa |
| redhat/cri-o-debugsource | <1.22.1-17.rhaos4.9.git3029b1d.2.el8.aa | 1.22.1-17.rhaos4.9.git3029b1d.2.el8.aa |
| redhat/cri-tools | <1.22.0-2.el8.aa | 1.22.0-2.el8.aa |
| redhat/cri-tools-debuginfo | <1.22.0-2.el8.aa | 1.22.0-2.el8.aa |
| redhat/cri-tools-debugsource | <1.22.0-2.el8.aa | 1.22.0-2.el8.aa |
| redhat/golang-github-prometheus-promu | <0.5.0-5.git642a960.el8.aa | 0.5.0-5.git642a960.el8.aa |
| redhat/ignition | <2.12.0-3.rhaos4.9.el8.aa | 2.12.0-3.rhaos4.9.el8.aa |
| redhat/ignition-debuginfo | <2.12.0-3.rhaos4.9.el8.aa | 2.12.0-3.rhaos4.9.el8.aa |
| redhat/ignition-debugsource | <2.12.0-3.rhaos4.9.el8.aa | 2.12.0-3.rhaos4.9.el8.aa |
| redhat/ignition-validate | <2.12.0-3.rhaos4.9.el8.aa | 2.12.0-3.rhaos4.9.el8.aa |
| redhat/ignition-validate-debuginfo | <2.12.0-3.rhaos4.9.el8.aa | 2.12.0-3.rhaos4.9.el8.aa |
| redhat/openshift-clients | <4.9.0-202202140924.p0.g340e212.assembly.stream.el8.aa | 4.9.0-202202140924.p0.g340e212.assembly.stream.el8.aa |
| redhat/openshift-hyperkube | <4.9.0-202202111950.p0.gb93fd35.assembly.stream.el8.aa | 4.9.0-202202111950.p0.gb93fd35.assembly.stream.el8.aa |
| redhat/prometheus-promu | <0.5.0-5.git642a960.el8.aa | 0.5.0-5.git642a960.el8.aa |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of RHSA-2022:0557?
The severity of RHSA-2022:0557 is classified as moderate.
How do I fix RHSA-2022:0557?
To fix RHSA-2022:0557, update the affected packages to their latest versions as recommended by Red Hat.
Which packages are affected by RHSA-2022:0557?
The affected packages include butane, cri-o, cri-tools, ignition, and openshift, among others.
What vulnerabilities are addressed in RHSA-2022:0557?
RHSA-2022:0557 addresses vulnerabilities related to incorrect parsing of IP address formats in Go.
Is RHSA-2022:0557 applicable to all versions of Red Hat OpenShift?
RHSA-2022:0557 is applicable specifically to certain versions of Red Hat OpenShift Container Platform.
- agent/severity
- agent/references
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/remedy
- agent/title
- agent/description
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2022:0557
- agent/software-canonical-lookup
- agent/event
- agent/trending
- agent/tags
- agent/source
- package-manager/redhat