Login
Newsletter
Werbung

Sicherheit: Denial of Service in OpenShift Virtualization 4.17.3 Images
Aktuelle Meldungen Distributionen
Name: Denial of Service in OpenShift Virtualization 4.17.3 Images
ID: RHSA-2025:0048
Distribution: Red Hat
Plattformen: Red Hat CNV 4.17 for RHEL 9
Datum: Do, 9. Januar 2025, 16:15
Referenzen: https://issues.redhat.com/browse/CNV-49568
https://issues.redhat.com/browse/CNV-52434
https://bugzilla.redhat.com/show_bug.cgi?id=2333122
https://issues.redhat.com/browse/CNV-53960
https://access.redhat.com/security/cve/CVE-2024-45338
https://issues.redhat.com/browse/CNV-50914
https://issues.redhat.com/browse/CNV-39213
https://issues.redhat.com/browse/CNV-50452
https://access.redhat.com/errata/RHSA-2025:0048
Applikationen: OpenShift Virtualization 4.17.3 Images

Originalnachricht

Red Hat OpenShift Virtualization release 4.17.3 is now available with updates
to packages and images that fix several bugs and add enhancements.

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

OpenShift Virtualization is Red Hat's virtualization solution designed for
Red Hat OpenShift Container Platform.

This advisory contains OpenShift Virtualization 4.17.3 images.

Security Fix(es):

* golang.org/x/net/html: Non-linear parsing of case-insensitive content in
golang.org/x/net/html (CVE-2024-45338)

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2024-45338: Allocation of Resources Without Limits or Throttling (CWE-770)
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung