{"id":"RHBA-2020:0527","summary":"Red Hat Bug Fix Advisory: OpenShift Container Platform 4.3.3 packages update","modified":"2026-03-11T07:16:15.871146Z","published":"2024-09-16T03:31:35Z","upstream":["CVE-2019-10392","CVE-2020-8608"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHBA-2020:0527"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1802141"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhba-2020_0527.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-10392"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1819704"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-10392"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-10392"},{"type":"ARTICLE","url":"https://jenkins.io/security/advisory/2019-09-12/#SECURITY-1534"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-8608"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1798453"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-8608"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-8608"}],"affected":[{"package":{"name":"atomic-enterprise-service-catalog","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/atomic-enterprise-service-catalog"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:4.3.3-202002170501.git.1.f30799e.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"atomic-enterprise-service-catalog-svcat","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:4.3.3-202002170501.git.1.f30799e.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"atomic-openshift-service-idler","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/atomic-openshift-service-idler"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002170501.git.1.4feff9c.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"cri-o","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/cri-o"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.16.3-20.dev.rhaos4.3.git11c04e3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"cri-o-debuginfo","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/cri-o-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.16.3-20.dev.rhaos4.3.git11c04e3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"jenkins","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/jenkins"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.204.1.1581950993-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"jenkins-2-plugins","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/jenkins-2-plugins"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.1581956184-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/openshift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002140552.git.0.e38059c.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-ansible","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/openshift-ansible"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002142331.git.173.bb0b5a1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-ansible-test","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/openshift-ansible-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002142331.git.173.bb0b5a1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-clients","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/openshift-clients"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002140552.git.1.ff73b47.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-clients-redistributable","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/openshift-clients-redistributable"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002140552.git.1.ff73b47.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-hyperkube","ecosystem":"Red Hat:openshift:4.3::el7","purl":"pkg:rpm/redhat/openshift-hyperkube"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002140552.git.0.e38059c.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"cri-o","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/cri-o"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.16.3-22.dev.rhaos4.3.git11c04e3.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"cri-o-debuginfo","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/cri-o-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.16.3-22.dev.rhaos4.3.git11c04e3.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"cri-o-debugsource","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/cri-o-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.16.3-22.dev.rhaos4.3.git11c04e3.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"cri-tools","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/cri-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.17.0-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"dracut","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/dracut"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:049-64.git20200123.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"dracut-caps","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/dracut-caps"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:049-64.git20200123.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"dracut-config-generic","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/dracut-config-generic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:049-64.git20200123.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"dracut-config-rescue","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/dracut-config-rescue"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:049-64.git20200123.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"dracut-debuginfo","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/dracut-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:049-64.git20200123.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"dracut-debugsource","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/dracut-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:049-64.git20200123.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"dracut-live","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/dracut-live"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:049-64.git20200123.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"dracut-network","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/dracut-network"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:049-64.git20200123.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"dracut-squash","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/dracut-squash"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:049-64.git20200123.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"dracut-tools","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/dracut-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:049-64.git20200123.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"machine-config-daemon","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/machine-config-daemon"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002170501.git.1.6b1b155.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/openshift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002140552.git.0.e38059c.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-clients","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/openshift-clients"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002140552.git.1.ff73b47.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-clients-redistributable","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/openshift-clients-redistributable"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002140552.git.1.ff73b47.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-hyperkube","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/openshift-hyperkube"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002140552.git.0.e38059c.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-kuryr","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/openshift-kuryr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002170501.git.1.3b8b4cc.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-kuryr-cni","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/openshift-kuryr-cni"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002170501.git.1.3b8b4cc.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-kuryr-common","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/openshift-kuryr-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002170501.git.1.3b8b4cc.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"openshift-kuryr-controller","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/openshift-kuryr-controller"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002170501.git.1.3b8b4cc.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"python3-kuryr-kubernetes","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/python3-kuryr-kubernetes"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.3-202002170501.git.1.3b8b4cc.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"slirp4netns","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/slirp4netns"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.4.2-4.git21fdece.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"slirp4netns-debuginfo","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/slirp4netns-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.4.2-4.git21fdece.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"slirp4netns-debugsource","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/slirp4netns-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.4.2-4.git21fdece.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}},{"package":{"name":"toolbox","ecosystem":"Red Hat:openshift:4.3::el8","purl":"pkg:rpm/redhat/toolbox"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.0.6-1.rhaos4.3.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:0527.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}