Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2021:0146
HistoryJan 14, 2021 - 1:24 p.m.

(RHSA-2021:0146) Moderate: Release of OpenShift Serverless 1.12.0

2021-01-1413:24:22
access.redhat.com
243

0.582 Medium

EPSS

Percentile

97.7%

JSON

Red Hat OpenShift Serverless 1.12.0 is a generally available release of the
OpenShift Serverless Operator.

This version of the OpenShift Serverless
Operator is supported on Red Hat OpenShift Container Platform version 4.6, and includes security and bug fixes and enhancements. For more information, see the documentation listed in the References section.

Security Fix(es):

  • golang: default Content-Type setting in net/http/cgi and net/http/fcgi could cause XSS (CVE-2020-24553)

  • golang: math/big: panic during recursive division of very large numbers (CVE-2020-28362)

  • golang: malicious symbol names can lead to code execution at build time (CVE-2020-28366)

  • golang: improper validation of cgo flags can lead to code execution at build time (CVE-2020-28367)

For more details about the security issues and their impact, the CVSS
score, acknowledgements, and other related information, see the CVE pages
listed in the References section.

Related

nessus 84
almalinux 6
redhat 16
oraclelinux 8
amazon 7
suse 4
fedora 9
ibm 14
osv 4
openvas 28
freebsd 1
rocky 3
archlinux 1
altlinux 3
centos 2
mageia 2
ics 1
ubuntu 2
cloudfoundry 1
gentoo 2
photon 1
nessus
nessus
NewStart CGSL MAIN 6.02 : sqlite Multiple Vulnerabilities (NS-SA-2021-0064)
2021-03-10 00:00:00
RHEL 8 : sqlite (RHSA-2020:4442)
2020-11-04 00:00:00
AlmaLinux 8 : sqlite (ALSA-2020:4442)
2022-02-09 00:00:00
almalinux
almalinux
Moderate: sqlite security update
2020-11-03 12:04:56
Moderate: go-toolset:rhel8 security update
2020-12-15 16:02:27
Moderate: mingw packages security and bug fix update
2021-05-18 06:30:39
redhat
redhat
(RHSA-2020:4442) Moderate: sqlite security update
2020-11-03 12:04:56
(RHSA-2020:5149) Moderate: Release of OpenShift Serverless 1.11.0
2020-11-18 13:59:56
(RHSA-2021:2021) Moderate: Release of OpenShift Serverless 1.10.2 security update
2021-05-19 02:03:59
oraclelinux
oraclelinux
sqlite security update
2020-11-10 00:00:00
go-toolset:ol8 security update
2020-12-22 00:00:00
libxml2 security and bug fix update
2020-10-06 00:00:00
amazon
amazon
Medium: golang
2021-01-12 22:52:00
Medium: golang
2021-01-05 23:34:00
Medium: libxml2
2020-10-26 18:09:00
suse
suse
Security update for go1.14 (moderate)
2020-11-27 00:00:00
Security update for go1.14 (moderate)
2020-11-26 00:00:00
Security update for go1.15 (moderate)
2020-12-01 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: golang-1.14.13-1.fc32
2020-12-16 01:27:45
[SECURITY] Fedora 32 Update: mingw-libxml2-2.9.10-1.fc32
2020-05-01 04:08:08
[SECURITY] Fedora 33 Update: golang-1.15.5-1.fc33
2020-11-23 01:08:21
ibm
ibm
Security Bulletin: IBM Event Streams is affected by multiple Go vulnerabilities
2021-01-15 14:41:11
Security Bulletin: App Connect Enterprise Certified Container Operator and Integration Servers are vulnerable to code injection and Denial of Service attacks
2020-12-11 17:06:17
Security Bulletin: Security vulnerabilities in Go affect IBM Cloud Pak for Multicloud Management Hybrid GRC.
2021-02-25 18:35:58
osv
osv
Moderate: mingw packages security and bug fix update
2021-05-18 06:30:39
Moderate: libssh security, bug fix, and enhancement update
2020-11-03 12:14:19
vtk vulnerabilities
2021-03-15 22:38:15
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:3368-1)
2021-06-09 00:00:00
Fedora: Security Advisory for golang (FEDORA-2020-864922e78a)
2020-11-23 00:00:00
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-1533)
2020-04-30 00:00:00
freebsd
freebsd
go -- math/big: panic during recursive division of very large numbers; cmd/go: arbitrary code execution at build time through cgo
2020-11-09 00:00:00
rocky
rocky
mingw packages security and bug fix update
2021-05-18 00:00:00
libssh security, bug fix, and enhancement update
2020-11-03 12:14:19
expat security update
2020-11-03 12:09:00
archlinux
archlinux
[ASA-202011-16] go: multiple issues
2020-11-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package golang version 1.15.5-alt1
2020-11-14 00:00:00
Security fix for the ALT Linux 10 package golang version 1.15.5-alt1
2020-11-14 00:00:00
Security fix for the ALT Linux 9 package expat version 2.2.9-alt1
2020-05-31 00:00:00
centos
centos
libxml2 security update
2020-10-20 18:27:26
expat security update
2020-10-20 17:58:03
mageia
mageia
Updated golang packages fix security vulnerabilities
2021-01-10 22:46:12
Updated libxml2_2 packages fix security vulnerabilities
2020-02-25 00:44:46
ics
ics
Siemens SINEMA Remote Connect Server
2021-04-13 12:00:00
ubuntu
ubuntu
libxml2 vulnerabilities
2020-02-10 00:00:00
VTK vulnerabilities
2021-03-15 00:00:00
cloudfoundry
cloudfoundry
USN-4274-1: libxml2 vulnerabilities | Cloud Foundry
2020-02-20 00:00:00
gentoo
gentoo
libxml2: Multiple vulnerabilities
2020-10-20 00:00:00
Expat: Multiple vulnerabilities
2019-11-25 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2020-0173
2020-12-09 00:00:00

0.582 Medium

EPSS

Percentile

97.7%

JSON
Related for RHSA-2021:0146
nessus84almalinux6redhat16oraclelinux8amazon7suse4fedora9ibm14osv4openvas28freebsd1rocky3archlinux1altlinux3centos2mageia2ics1ubuntu2cloudfoundry1gentoo2photon1