{"id":"RHSA-2018:3537","summary":"Red Hat Security Advisory: OpenShift Container Platform 3.11 security update","modified":"2026-03-11T07:12:49.836675Z","published":"2024-09-29T17:23:15Z","upstream":["CVE-2018-1002105","CVE-2018-12115","CVE-2018-3830"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:3537"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#critical"},{"type":"ARTICLE","url":"https://access.redhat.com/security/vulnerabilities/3716411"},{"type":"ARTICLE","url":"https://docs.openshift.com/container-platform/3.11/release_notes/ocp_3_11_release_notes.html"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1552304"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1613722"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1614904"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1615884"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1620219"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1622822"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1625090"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1626228"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1626538"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1627086"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1627689"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1628235"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1628381"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1628902"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1629558"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1632364"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1632450"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1632648"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1632895"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1633574"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1633923"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1634700"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1634835"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1635672"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1636248"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1637413"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1637737"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1641245"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1641321"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1641657"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1641796"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1642002"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1642350"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1643119"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1643301"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1643948"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1648138"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3537.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-3830"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-3830"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-3830"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-12115"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-12115"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-12115"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-1002105"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-1002105"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1002105"},{"type":"ARTICLE","url":"https://groups.google.com/forum/#!topic/kubernetes-announce/GVllWCg6L88"}],"affected":[{"package":{"name":"kibana","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/kibana"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.6.12-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"jenkins-2-plugins","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/jenkins-2-plugins"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.1539805268-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift-clients-redistributable","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-clients-redistributable"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift-docker-excluder","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-docker-excluder"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift-excluder","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-excluder"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift-hyperkube","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-hyperkube"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift-hypershift","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-hypershift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift-master","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-master"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift-node","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-node"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift-pod","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-pod"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift-sdn-ovs","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-sdn-ovs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift-template-service-broker","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-template-service-broker"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}},{"package":{"name":"atomic-openshift-tests","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-tests"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.43-1.git.0.647ac05.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3537.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}