Login
Newsletter
Werbung

Sicherheit: Preisgabe von Informationen in OpenShift Virtualization 4.14.6 Images
Aktuelle Meldungen Distributionen
Name: Preisgabe von Informationen in OpenShift Virtualization 4.14.6 Images
ID: RHSA-2024:3473
Distribution: Red Hat
Plattformen: Red Hat CNV 4.14 for RHEL 9
Datum: Do, 30. Mai 2024, 07:11
Referenzen: https://access.redhat.com/errata/RHSA-2024:3473
https://issues.redhat.com/browse/CNV-36026
https://access.redhat.com/security/cve/CVE-2023-45857
https://bugzilla.redhat.com/show_bug.cgi?id=2248979
https://issues.redhat.com/browse/CNV-39569
Applikationen: OpenShift Virtualization 4.14.6 Images

Originalnachricht

Red Hat OpenShift Virtualization release 4.14.6 is now available with updates
to packages and images that fix several bugs and add enhancements.

Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

OpenShift Virtualization is Red Hat's virtualization solution designed for
Red Hat OpenShift Container Platform.

This advisory contains OpenShift Virtualization 4.14.6 images.

Security Fix(es):

* axios: exposure of confidential data stored in cookies (CVE-2023-45857)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2023-45857: Exposure of Sensitive Information to an Unauthorized Actor
(CWE-200)
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung