7 - RHSA-2020:0796

Executive Summary

Summary
Title	OpenShift Container Platform 3.11 openshift-enterprise-apb-base-container security update

Informations
Name	RHSA-2020:0796	First vendor Publication	2020-03-20
Vendor	RedHat	Last vendor Modification	2020-03-20
Severity (Vendor)	N/A	Revision	01

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Overall CVSS Score	7
Base Score	7	Environmental Score	7
impact SubScore	5.9	Temporal Score	7
Exploitabality Sub Score	1

Attack Vector	Local	Attack Complexity	High
Privileges Required	Low	User Interaction	None
Scope	Unchanged	Confidentiality Impact	High
Integrity Impact	High	Availability Impact	High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score	4.4	Attack Range	Local
Cvss Impact Score	6.4	Attack Complexity	Medium
Cvss Expoit Score	3.4	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

An update for openshift-enterprise-apb-base-container is now available for Red Hat OpenShift Container Platform 3.11.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

2. Description:

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

Security Fix(es):

* openshift/apb-base: /etc/passwd is given incorrect privileges (CVE-2019-19348)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

3. Solution:

See the following documentation, which will be updated shortly for release 3.11.188, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:

https://docs.openshift.com/container-platform/3.11/release_notes/ocp_3_11_r elease_notes.html

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258.

4. Bugs fixed (https://bugzilla.redhat.com/):

1793286 - CVE-2019-19348 openshift/apb-base: /etc/passwd is given incorrect privileges

5. References:

https://access.redhat.com/security/cve/CVE-2019-19348 https://access.redhat.com/security/updates/classification/#moderate

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2020-0796.html

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-269	Improper Privilege Management

CPE : Common Platform Enumeration

Type	Description	Count
Application	Redhat Openshift cpe:2.3:a:redhat:openshift:4.2:::::::* cpe:2.3:a:redhat:openshift:4.1:::::::* cpe:2.3:a:redhat:openshift:4.0:::::::* cpe:2.3:a:redhat:openshift:3.9::::enterprise::: cpe:2.3:a:redhat:openshift:3.9:::::::* cpe:2.3:a:redhat:openshift:3.8::::enterprise::: cpe:2.3:a:redhat:openshift:3.8:::::::* cpe:2.3:a:redhat:openshift:3.7:::::::* cpe:2.3:a:redhat:openshift:3.7::::enterprise::: cpe:2.3:a:redhat:openshift:3.6:::::::* cpe:2.3:a:redhat:openshift:3.6::::enterprise::: cpe:2.3:a:redhat:openshift:3.5:::::::* cpe:2.3:a:redhat:openshift:3.5::::enterprise::: cpe:2.3:a:redhat:openshift:3.4::::enterprise::: cpe:2.3:a:redhat:openshift:3.4:::::::* cpe:2.3:a:redhat:openshift:3.3.1.11::::enterprise::: cpe:2.3:a:redhat:openshift:3.3::::enterprise::: cpe:2.3:a:redhat:openshift:3.2.1.23::::enterprise::: cpe:2.3:a:redhat:openshift:3.2::::enterprise::: cpe:2.3:a:redhat:openshift:3.11:::::::* cpe:2.3:a:redhat:openshift:3.10::::enterprise::: cpe:2.3:a:redhat:openshift:3.10:::::::* cpe:2.3:a:redhat:openshift:3.1::::enterprise::: cpe:2.3:a:redhat:openshift:3.0.0.0::::enterprise::: cpe:2.3:a:redhat:openshift:3.0::::enterprise::: cpe:2.3:a:redhat:openshift:3.0:::::::* cpe:2.3:a:redhat:openshift:2.2::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.7::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.6::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.5::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.4::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.3::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.2::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.1::::enterprise::: cpe:2.3:a:redhat:openshift:2.1::::enterprise::: cpe:2.3:a:redhat:openshift:2.0.6::::enterprise::: cpe:2.3:a:redhat:openshift:2.0.5::enterprise::::: cpe:2.3:a:redhat:openshift:2.0.4::enterprise::::: cpe:2.3:a:redhat:openshift:2.0.3::enterprise::::: cpe:2.3:a:redhat:openshift:2.0.2::enterprise::::: cpe:2.3:a:redhat:openshift:2.0.1::enterprise::::: cpe:2.3:a:redhat:openshift:2.0::::enterprise::: cpe:2.3:a:redhat:openshift:2.0:::::::* cpe:2.3:a:redhat:openshift:1.2.8::::enterprise::: cpe:2.3:a:redhat:openshift:1.2.7::enterprise::::: cpe:2.3:a:redhat:openshift:1.2::::enterprise::: cpe:2.3:a:redhat:openshift:1.0::::-::: cpe:2.3:a:redhat:openshift:1.0:-:enterprise:::::* cpe:2.3:a:redhat:openshift:1.0::::enterprise::: cpe:2.3:a:redhat:openshift:0.0.5:::::::* cpe:2.3:a:redhat:openshift:::::::: cpe:2.3:a:redhat:openshift:::::enterprise:::* cpe:2.3:a:redhat:openshift:-:::::::* cpe:2.3:a:redhat:openshift:-:::::aws::	54
Os	Redhat Openshift cpe:2.3:o:redhat:openshift:2.0::enterprise:::::	1

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-12 07:01:42	First insertion

Global Informations

Type	Count
CWE ID(s)	1
CPE ID(s)	55

	Related
7	CVE-2019-19348
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

7 - RHSA-2020:0796

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Alert History

Global Informations

Open Standards

COMPANY

STANDARDS

RECENT POSTS

MENU