{"id":"RHSA-2020:5634","summary":"Red Hat Security Advisory: OpenShift Container Platform 4.7.0 packages security update","modified":"2026-03-27T10:02:19Z","published":"2024-09-16T05:16:25Z","upstream":["CVE-2019-3884","CVE-2020-15157","CVE-2020-25658","CVE-2020-28362","CVE-2020-8566","CVE-2021-3121"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:5634"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1693905"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1886640"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1888248"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889972"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1910081"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1921650"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2020_5634.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-3884"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-3884"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-3884"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-8566"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-8566"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-8566"},{"type":"ARTICLE","url":"https://github.com/kubernetes/kubernetes/issues/95624"},{"type":"ARTICLE","url":"https://groups.google.com/g/kubernetes-announce/c/ScdmyORnPDk"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-15157"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-15157"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-15157"},{"type":"ARTICLE","url":"https://github.com/containerd/containerd/releases/tag/v1.2.14"},{"type":"ARTICLE","url":"https://github.com/containerd/containerd/security/advisories/GHSA-742w-89gc-8m9c"},{"type":"ARTICLE","url":"https://www.openwall.com/lists/oss-security/2020/10/15/1"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-25658"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-25658"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-25658"},{"type":"ARTICLE","url":"https://github.com/sybrenstuvel/python-rsa/issues/165"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-28362"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1897635"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-28362"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-28362"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-3121"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-3121"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3121"}],"affected":[{"package":{"name":"openshift","ecosystem":"Red Hat:openshift:4.7::el7","purl":"pkg:rpm/redhat/openshift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202102060108.p0.git.97095.7271b90.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"openshift-hyperkube","ecosystem":"Red Hat:openshift:4.7::el7","purl":"pkg:rpm/redhat/openshift-hyperkube"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202102060108.p0.git.97095.7271b90.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"openshift","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/openshift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202102060108.p0.git.97095.7271b90.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"openshift-hyperkube","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/openshift-hyperkube"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202102060108.p0.git.97095.7271b90.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"python-rsa","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/python-rsa"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"python3-rsa","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/python3-rsa"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"ignition","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/ignition"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.9.0-2.rhaos4.7.git1d56dc8.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"ignition-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/ignition-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.9.0-2.rhaos4.7.git1d56dc8.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"ignition-debugsource","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/ignition-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.9.0-2.rhaos4.7.git1d56dc8.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"ignition-validate","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/ignition-validate"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.9.0-2.rhaos4.7.git1d56dc8.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"ignition-validate-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/ignition-validate-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.9.0-2.rhaos4.7.git1d56dc8.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"cri-o","ecosystem":"Red Hat:openshift:4.7::el7","purl":"pkg:rpm/redhat/cri-o"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.0-0.rhaos4.7.git8921e00.el7.51"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"cri-o-debuginfo","ecosystem":"Red Hat:openshift:4.7::el7","purl":"pkg:rpm/redhat/cri-o-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.0-0.rhaos4.7.git8921e00.el7.51"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"cri-tools","ecosystem":"Red Hat:openshift:4.7::el7","purl":"pkg:rpm/redhat/cri-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.18.0-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"cri-tools-debuginfo","ecosystem":"Red Hat:openshift:4.7::el7","purl":"pkg:rpm/redhat/cri-tools-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.18.0-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"cri-o","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/cri-o"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.0-0.rhaos4.7.git8921e00.el8.51"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"cri-o-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/cri-o-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.0-0.rhaos4.7.git8921e00.el8.51"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"cri-o-debugsource","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/cri-o-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.0-0.rhaos4.7.git8921e00.el8.51"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"cri-tools","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/cri-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.0-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"cri-tools-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/cri-tools-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.0-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}},{"package":{"name":"cri-tools-debugsource","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/cri-tools-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.0-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5634.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H"}]}