Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2021:5128
HistoryDec 14, 2021 - 4:46 p.m.

(RHSA-2021:5128) Moderate: Openshift Logging security and bug update (5.1.5)

2021-12-1416:46:13
access.redhat.com
46

0.976 High

EPSS

Percentile

100.0%

JSON

Openshift Logging Security and Bug Fix Release (5.1.5)

Security Fix(es):

  • log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value (CVE-2021-44228)

  • netty: Request smuggling via content-length header (CVE-2021-21409)

  • netty-codec: Bzip2Decoder doesn’t allow setting size restrictions for decompressed data (CVE-2021-37136)

  • netty-codec: SnappyFrameDecoder doesn’t restrict chunk length and may buffer skippable chunks in an unnecessary way (CVE-2021-37137)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Related

redhat 21
nessus 70
osv 14
rocky 4
oraclelinux 5
almalinux 5
f5 1
ibm 1
openvas 32
redos 26
ubuntu 3
fedora 2
altlinux 1
amazon 1
gentoo 1
photon 4
debian 3
suse 1
cloudfoundry 2
rosalinux 1
mageia 1
redhat
redhat
(RHSA-2021:5129) Moderate: Openshift Logging security and bug update (5.3.1)
2021-12-14 16:46:20
(RHSA-2022:0318) Moderate: Red Hat OpenShift distributed tracing 2.1.0 security update
2022-01-27 16:46:55
(RHSA-2021:5127) Moderate: Openshift Logging security and bug update (5.2.4)
2021-12-14 16:45:56
nessus
nessus
AlmaLinux 8 : libwebp (ALSA-2021:4231)
2022-02-09 00:00:00
Oracle Linux 8 : libwebp (ELSA-2021-4231)
2021-11-17 00:00:00
NewStart CGSL MAIN 6.02 : libwebp Multiple Vulnerabilities (NS-SA-2022-0091)
2022-11-15 00:00:00
osv
osv
Moderate: libwebp security update
2021-11-09 08:47:24
Moderate: libwebp security update
2021-11-09 08:47:24
Moderate: sqlite security update
2021-11-09 09:16:47
rocky
rocky
libwebp security update
2021-11-09 08:47:24
libtiff security and bug fix update
2021-11-09 08:50:38
sqlite security update
2021-11-09 09:16:47
oraclelinux
oraclelinux
libwebp security update
2021-11-16 00:00:00
sqlite security update
2021-11-16 00:00:00
libtiff security and bug fix update
2021-11-16 00:00:00
almalinux
almalinux
Moderate: libwebp security update
2021-11-09 08:47:24
Moderate: sqlite security update
2021-11-09 09:16:47
Moderate: libsepol security update
2021-11-09 09:39:50
f5
f5
K14760551 : Multiple libwebp vulnerabilities
2022-03-17 00:00:00
ibm
ibm
Security Bulletin: IBM Sterling Connect:Direct for UNIX Certified Container is affected by multiple vulnerabilities in Red Hat Universal Base Image version 8.4-206.1626828523 and Binutils version 2.30-93
2022-03-14 20:12:12
openvas
openvas
Fedora: Security Advisory for libtiff (FEDORA-2021-1bf4f2f13a)
2021-04-23 00:00:00
Debian: Security Advisory (DSA-4930-1)
2021-06-12 00:00:00
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2021-2003)
2021-07-01 00:00:00
redos
redos
ROS-2-591
2021-09-08 00:00:00
ROS-2-533
2023-07-06 00:00:00
ROS-2-909
2021-09-08 00:00:00
ubuntu
ubuntu
libwebp vulnerabilities
2021-06-01 00:00:00
libsepol vulnerabilities
2022-04-27 00:00:00
libwebp vulnerabilities
2021-06-10 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: libtiff-4.1.0-8.fc33
2021-04-21 21:41:44
[SECURITY] Fedora 35 Update: libsepol-3.3-2.fc35
2021-11-15 05:48:45
altlinux
altlinux
Security fix for the ALT Linux 10 package libtiff version 4.2.0-alt1
2020-12-25 00:00:00
amazon
amazon
Medium: libsepol
2023-10-12 15:09:00
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2021-04-30 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2021-0244
2021-05-27 00:00:00
Critical Photon OS Security Update - PHSA-2021-3.0-0244
2021-05-28 00:00:00
Critical Photon OS Security Update - PHSA-2021-0241
2021-05-21 00:00:00
debian
debian
[SECURITY] [DLA 2672-1] libwebp security update
2021-06-05 17:43:33
[SECURITY] [DSA 4930-1] libwebp security update
2021-06-10 21:04:30
[SECURITY] [DLA 2677-1] libwebp security update
2021-06-06 18:38:17
suse
suse
Security update for libwebp (critical)
2021-07-11 00:00:00
cloudfoundry
cloudfoundry
USN-5391-1: libsepol vulnerabilities | Cloud Foundry
2022-05-23 00:00:00
USN-4971-1: libwebp vulnerabilities | Cloud Foundry
2021-06-11 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2183
2023-07-11 11:03:27
mageia
mageia
Updated libtiff packages fix security vulnerabilities
2021-03-04 15:26:19

0.976 High

EPSS

Percentile

100.0%

JSON
Related for RHSA-2021:5128
redhat21nessus70osv14rocky4oraclelinux5almalinux5f51ibm1openvas32redos26ubuntu3fedora2altlinux1amazon1gentoo1photon4debian3suse1cloudfoundry2rosalinux1mageia1