Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2021:3748
HistoryOct 07, 2021 - 2:11 p.m.

(RHSA-2021:3748) Moderate: OpenShift Container Storage 3.11.z Container Images Security and Bug Fix Update

2021-10-0714:11:23
access.redhat.com
28

0.014 Low

EPSS

Percentile

86.6%

JSON

The OpenShift Container Storage solution provides persistent storage service for OpenShift Containers and OpenShift Infrastructure services.

Security Fix(es):

  • golang: crypto/elliptic: incorrect operations on the P-224 curve (CVE-2021-3114)

  • golang: net/http: panic in ReadRequest and ReadResponse when reading a very large header (CVE-2021-31525)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

All users of OpenShift Container Storage 3.11 container images are advised to pull these updated images from the Red Hat Container Registry.

Related

redhat 10
nessus 69
ibm 8
cbl_mariner 3
openvas 28
mageia 1
veracode 3
osv 15
alpinelinux 3
redhatcve 2
ubuntucve 4
amazon 5
cloudfoundry 1
ubuntu 3
cve 4
suse 3
oraclelinux 4
gentoo 1
fedora 4
cvelist 4
gitlab 2
altlinux 2
rocky 2
debiancve 4
prion 4
nvd 3
f5 1
freebsd 1
cgr 1
almalinux 2
centos 1
photon 1
redhat
redhat
(RHSA-2022:0308) Moderate: OpenShift Container Storage 3.11.z security and bug fix update
2022-01-27 13:03:28
(RHSA-2021:4103) Moderate: OpenShift Virtualization 4.9.0 RPMs security and bug fix update
2021-11-02 13:25:34
(RHSA-2021:3572) Moderate: nss and nspr security, bug fix, and enhancement update
2021-09-21 07:08:30
nessus
nessus
RHEL 7 : OpenShift Container Storage 3.11.z (RHSA-2022:0308)
2022-01-28 00:00:00
RHEL 7 / 8 : OpenShift Virtualization 4.9.0 RPMs (RHSA-2021:4103)
2024-04-28 00:00:00
SUSE SLES11 Security Update : openldap2 (SUSE-SU-2020:14541-1)
2021-06-10 00:00:00
ibm
ibm
Security Bulletin: IBM QRadar Network Security is affected by multiple vulnerabilities (CVE-2020-25648, CVE-2021-31535, CVE-2021-20305, CVE-2020-25692)
2021-11-08 03:57:51
Security Bulletin: IBM MQ Appliance is affected by an OpenLDAP vulnerability (CVE-2020-25692)
2021-07-09 15:21:52
Security Bulletin: IBM MQ Appliance is affected by Mozilla Network Security Services (NSS) vulnerability (CVE-2020-25648)
2021-07-09 15:20:56
cbl_mariner
cbl_mariner
CVE-2020-25692 affecting package openldap 2.4.50-3
2020-12-16 04:51:58
CVE-2021-31525 affecting package golang 1.15.11-1
2021-07-08 21:56:48
CVE-2021-27219 affecting package glib for versions less than 2.60.1-5
2022-04-09 06:51:45
openvas
openvas
Ubuntu: Security Advisory (USN-4622-1)
2020-11-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:14541-1)
2021-06-09 00:00:00
Debian: Security Advisory (DSA-4782-1)
2020-11-03 00:00:00
mageia
mageia
Updated openldap packages fix a security vulnerability
2020-11-10 18:20:00
veracode
veracode
Denial Of Service (DoS)
2020-12-10 16:17:25
Denial Of Service (DoS)
2020-12-04 16:26:27
Stack Overflow
2021-05-09 02:20:52
osv
osv
CVE-2020-25692
2020-12-08 01:15:12
BIT-openldap-2020-25692
2024-03-06 11:02:23
openldap - security update
2020-10-30 00:00:00
alpinelinux
alpinelinux
CVE-2020-25692
2020-12-08 01:15:12
CVE-2020-25648
2020-10-20 22:15:43
CVE-2021-31525
2021-05-27 13:15:08
redhatcve
redhatcve
CVE-2020-25692
2020-11-04 14:29:33
CVE-2020-25648
2020-10-20 04:16:03
ubuntucve
ubuntucve
CVE-2020-25692
2020-10-30 00:00:00
CVE-2020-25648
2020-10-20 00:00:00
CVE-2021-31525
2021-05-27 00:00:00
amazon
amazon
Medium: nss
2021-07-08 18:38:00
Medium: openldap
2021-05-20 15:59:00
Medium: nss
2021-06-16 20:37:00
cloudfoundry
cloudfoundry
USN-5410-1: NSS vulnerability | Cloud Foundry
2022-05-26 00:00:00
ubuntu
ubuntu
OpenLDAP vulnerability
2020-11-09 00:00:00
NSS vulnerability
2022-05-11 00:00:00
OpenLDAP vulnerability
2020-11-11 00:00:00
cve
cve
CVE-2020-25692
2020-12-08 01:15:12
CVE-2020-25648
2020-10-20 22:15:43
CVE-2021-31525
2021-05-27 13:15:08
suse
suse
Security update for openldap2 (important)
2020-11-14 00:00:00
Security update for go1.15 (moderate)
2021-06-24 00:00:00
Security update for openldap2 (important)
2020-11-14 00:00:00
oraclelinux
oraclelinux
nss security and bug fix update
2021-04-28 00:00:00
nss and nspr security, bug fix, and enhancement update
2021-09-21 00:00:00
glib2 security update
2021-06-21 00:00:00
gentoo
gentoo
Mozilla Network Security Service (NSS): Denial of service
2020-12-23 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: nss-3.58.0-3.fc31
2020-11-13 01:55:03
[SECURITY] Fedora 33 Update: golang-1.15.12-1.fc33
2021-05-19 01:31:16
[SECURITY] Fedora 32 Update: nss-3.58.0-3.fc32
2020-11-13 01:31:05
cvelist
cvelist
CVE-2020-25648
2020-10-20 00:00:00
CVE-2021-27219
2021-02-15 16:27:38
CVE-2021-31525
2021-05-27 12:17:11
gitlab
gitlab
Uncontrolled Recursion
2022-05-24 00:00:00
Incorrect Conversion between Numeric Types
2021-02-15 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package golang version 1.15.12-alt1
2021-05-11 00:00:00
Security fix for the ALT Linux 10 package golang version 1.16.4-alt1
2021-05-06 00:00:00
rocky
rocky
nss and nspr security, bug fix, and enhancement update
2021-09-21 07:08:30
glib2 security and bug fix update
2021-06-01 09:04:25
debiancve
debiancve
CVE-2020-25648
2020-10-20 22:15:43
CVE-2021-31525
2021-05-27 13:15:08
CVE-2021-27219
2021-02-15 17:15:13
prion
prion
Code injection
2021-05-27 13:15:00
Design/Logic Flaw
2020-10-20 22:15:00
Integer overflow
2021-02-15 17:15:00
nvd
nvd
CVE-2021-31525
2021-05-27 13:15:08
CVE-2020-25648
2020-10-20 22:15:43
CVE-2020-25692
2020-12-08 01:15:12
f5
f5
K55518036 : GO vulnerability CVE-2021-31525
2021-11-03 00:00:00
freebsd
freebsd
go -- net/http: ReadRequest can stack overflow due to recursion with very large headers
2021-04-22 00:00:00
cgr
cgr
CVE-2021-31525 vulnerabilities
2024-05-19 03:07:16
almalinux
almalinux
Moderate: nss and nspr security, bug fix, and enhancement update
2021-09-21 07:08:30
Important: glib2 security and bug fix update
2021-06-01 09:04:25
centos
centos
glib2 security update
2021-06-14 18:42:36
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0349
2020-12-17 00:00:00

0.014 Low

EPSS

Percentile

86.6%

JSON
Related for RHSA-2021:3748
redhat10nessus69ibm8cbl_mariner3openvas28mageia1veracode3osv15alpinelinux3redhatcve2ubuntucve4amazon5cloudfoundry1ubuntu3cve4suse3oraclelinux4gentoo1fedora4cvelist4gitlab2altlinux2rocky2debiancve4prion4nvd3f51freebsd1cgr1almalinux2centos1photon1