- Vulnerability/
- RHSA-2022:0855
RHSA-2022:0855: Moderate: OpenShift sandboxed containers 1.2.0 security update
First published: Mon Mar 14 2022(Updated: )
OpenShift sandboxed containers support for OpenShift Container Platform<br>provides users with built-in support for running Kata containers as an<br>additional, optional runtime.<br>This advisory contains an update for OpenShift sandboxed containers with enhancements, security updates, and bug fixes.<br>Space precludes documenting all of the updates to OpenShift sandboxed<br>containers in this advisory. See the following Release Notes documentation,<br>which will be updated shortly for this release, for details about these<br>changes:<br><a href="https://docs.openshift.com/container-platform/4.10/sandboxed_containers/sandboxed-containers-release-notes.html" target="_blank">https://docs.openshift.com/container-platform/4.10/sandboxed_containers/sandboxed-containers-release-notes.html</a> Security Fixes:<br><li> net/<a href="http:" target="_blank">http:</a> limit growth of header canonicalization cache (CVE-2021-44716)</li> <li> net/http/httputil: panic due to racy read of persistConn after handler panic (CVE-2021-36221)</li> For more details about the security issues, including the impact, a CVSS<br>score, acknowledgments, and other related information, refer to the CVE<br>pages listed in the References section.
| Affected Software | Affected Version | How to fix |
|---|
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/severity
- agent/references
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/remedy
- agent/title
- agent/description
- agent/tags
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2022:0855