- Vulnerability/
- RHSA-2023:3943
RHSA-2023:3943: Moderate: ACS 4.1 enhancement and security update
First published: Thu Jun 29 2023(Updated: )
The release of ACS 4.1 provides these changes:<br>Security Fix(es):<br><li> golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191)</li> <li> net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)</li> <li> golang: net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534)</li> <li> golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536)</li> <li> golang: go/parser: Infinite loop in parsing (CVE-2023-24537)</li> <li> golang: html/template: backticks not treated as string delimiters (CVE-2023-24538)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>New features:<br><li> Manual renewal of Central and Sensor certificates</li> <li> Vulnerability Management 2.0 (Technology Preview)</li> <li> RHACS Cloud Service scanning support for images pulled from on-premise registries</li> <li> eBPF collection method on IBM Z and IBM® LinuxONE</li> <li> Ability to configure the display of default compliance standards in the Compliance Dashboard</li> <li> Declarative configurations for authentication and authorization</li> <li> SSO configuration using the roxctl CLI</li> <li> New collection method based on BPF CO-RE (Technology Preview)</li> <li> Network graph updates</li> <li> Policy Management simplification</li> <li> New permission sets</li> <li> Improvements for Sensor resync (General Availability)</li> For notable technical changes, deprecated and removed features, bug fixes, and known issues, refer to the Release Notes.
| Affected Software | Affected Version | How to fix |
|---|
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=2064702
- https://bugzilla.redhat.com/show_bug.cgi?id=2178358
- https://bugzilla.redhat.com/show_bug.cgi?id=2184481
- https://bugzilla.redhat.com/show_bug.cgi?id=2184482
- https://bugzilla.redhat.com/show_bug.cgi?id=2184483
- https://bugzilla.redhat.com/show_bug.cgi?id=2184484
- https://issues.redhat.com/browse/ROX-18018
- https://access.redhat.com/security/updates/classification/#moderate
- https://docs.openshift.com/acs/4.1/release_notes/41-release-notes.html
- https://access.redhat.com/errata/RHSA-2023:3943 (Advisory)
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2023:3943
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type