Lucene search

RedHatRHSA-2022:0024

HistoryJan 12, 2022 - 8:36 a.m.

(RHSA-2022:0024) Moderate: OpenShift Container Platform 4.6.53 security update

2022-01-1208:36:14

access.redhat.com

red hat

openshift

container platform

4.6.53

security update

haproxy

http method

request smuggling

cve-2021-39241

cve-2021-40346

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.019

Percentile

88.7%

JSON

Red Hat OpenShift Container Platform is Red Hat’s cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.

This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.6.53. See the following advisory for the container images for this release:

https://access.redhat.com/errata/RHBA-2022:0025

Security Fix(es):

haproxy: an HTTP method name may contain a space followed by the name of
a protected resource (CVE-2021-39241)
haproxy: request smuggling attack or response splitting via duplicate
content-length header (CVE-2021-40346)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s)
listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8ppc64lehaproxy20< 2.0.16-4.el8haproxy20-2.0.16-4.el8.ppc64le.rpm
RedHat8s390xopenshift-hyperkube< 4.6.0-202112092023.p0.g845f228.assembly.stream.el8openshift-hyperkube-4.6.0-202112092023.p0.g845f228.assembly.stream.el8.s390x.rpm
RedHat8ppc64lehaproxy20-debuginfo< 2.0.16-4.el8haproxy20-debuginfo-2.0.16-4.el8.ppc64le.rpm
RedHat8s390xhaproxy20< 2.0.16-4.el8haproxy20-2.0.16-4.el8.s390x.rpm
RedHat7x86_64haproxy-debuginfo< 2.0.16-2.el7haproxy-debuginfo-2.0.16-2.el7.x86_64.rpm
RedHat7x86_64haproxy20< 2.0.16-2.el7haproxy20-2.0.16-2.el7.x86_64.rpm
RedHat8s390xhaproxy20-debuginfo< 2.0.16-4.el8haproxy20-debuginfo-2.0.16-4.el8.s390x.rpm
RedHat8x86_64haproxy-debugsource< 2.0.16-4.el8haproxy-debugsource-2.0.16-4.el8.x86_64.rpm
RedHat8x86_64openshift-hyperkube< 4.6.0-202112092023.p0.g845f228.assembly.stream.el8openshift-hyperkube-4.6.0-202112092023.p0.g845f228.assembly.stream.el8.x86_64.rpm
RedHat8ppc64lehaproxy-debugsource< 2.0.16-4.el8haproxy-debugsource-2.0.16-4.el8.ppc64le.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	ppc64le	haproxy20	< 2.0.16-4.el8	haproxy20-2.0.16-4.el8.ppc64le.rpm
RedHat	8	s390x	openshift-hyperkube	< 4.6.0-202112092023.p0.g845f228.assembly.stream.el8	openshift-hyperkube-4.6.0-202112092023.p0.g845f228.assembly.stream.el8.s390x.rpm
RedHat	8	ppc64le	haproxy20-debuginfo	< 2.0.16-4.el8	haproxy20-debuginfo-2.0.16-4.el8.ppc64le.rpm
RedHat	8	s390x	haproxy20	< 2.0.16-4.el8	haproxy20-2.0.16-4.el8.s390x.rpm
RedHat	7	x86_64	haproxy-debuginfo	< 2.0.16-2.el7	haproxy-debuginfo-2.0.16-2.el7.x86_64.rpm
RedHat	7	x86_64	haproxy20	< 2.0.16-2.el7	haproxy20-2.0.16-2.el7.x86_64.rpm
RedHat	8	s390x	haproxy20-debuginfo	< 2.0.16-4.el8	haproxy20-debuginfo-2.0.16-4.el8.s390x.rpm
RedHat	8	x86_64	haproxy-debugsource	< 2.0.16-4.el8	haproxy-debugsource-2.0.16-4.el8.x86_64.rpm
RedHat	8	x86_64	openshift-hyperkube	< 4.6.0-202112092023.p0.g845f228.assembly.stream.el8	openshift-hyperkube-4.6.0-202112092023.p0.g845f228.assembly.stream.el8.x86_64.rpm
RedHat	8	ppc64le	haproxy-debugsource	< 2.0.16-4.el8	haproxy-debugsource-2.0.16-4.el8.ppc64le.rpm