{"id":"RHSA-2021:2555","summary":"Red Hat Security Advisory: OpenShift Container Platform 4.7.19 packages and security update","modified":"2026-03-11T07:19:46.983251Z","published":"2024-09-16T05:59:50Z","upstream":["CVE-2021-25217","CVE-2021-3560"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2021:2555"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1961710"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1963258"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1976688"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2555.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-3560"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-3560"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3560"},{"type":"ARTICLE","url":"https://github.blog/2021-06-10-privilege-escalation-polkit-root-on-linux-with-bug/"},{"type":"ARTICLE","url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-25217"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-25217"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-25217"},{"type":"ARTICLE","url":"https://kb.isc.org/docs/cve-2021-25217"}],"affected":[{"package":{"name":"cri-o","ecosystem":"Red Hat:openshift:4.7::el7","purl":"pkg:rpm/redhat/cri-o"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.3-6.rhaos4.7.git0d0f863.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"cri-o-debuginfo","ecosystem":"Red Hat:openshift:4.7::el7","purl":"pkg:rpm/redhat/cri-o-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.3-6.rhaos4.7.git0d0f863.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"openshift-clients","ecosystem":"Red Hat:openshift:4.7::el7","purl":"pkg:rpm/redhat/openshift-clients"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202106252127.p0.git.8b4b094.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"openshift-clients-redistributable","ecosystem":"Red Hat:openshift:4.7::el7","purl":"pkg:rpm/redhat/openshift-clients-redistributable"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202106252127.p0.git.8b4b094.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"cri-o","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/cri-o"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.3-6.rhaos4.7.git0d0f863.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"cri-o-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/cri-o-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.3-6.rhaos4.7.git0d0f863.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"cri-o-debugsource","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/cri-o-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.3-6.rhaos4.7.git0d0f863.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"dhcp","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/dhcp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12:4.3.6-41.el8_3.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"dhcp-client","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/dhcp-client"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12:4.3.6-41.el8_3.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"dhcp-client-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/dhcp-client-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12:4.3.6-41.el8_3.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"dhcp-common","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/dhcp-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12:4.3.6-41.el8_3.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"dhcp-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/dhcp-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12:4.3.6-41.el8_3.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"dhcp-debugsource","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/dhcp-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12:4.3.6-41.el8_3.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"dhcp-libs","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/dhcp-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12:4.3.6-41.el8_3.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"dhcp-libs-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/dhcp-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12:4.3.6-41.el8_3.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"dhcp-relay-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/dhcp-relay-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12:4.3.6-41.el8_3.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"dhcp-server-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/dhcp-server-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12:4.3.6-41.el8_3.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"openshift-clients","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/openshift-clients"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202106252127.p0.git.8b4b094.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"openshift-clients-redistributable","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/openshift-clients-redistributable"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202106252127.p0.git.8b4b094.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"openshift-kuryr","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/openshift-kuryr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202106232224.p0.git.c7654fb.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"openshift-kuryr-cni","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/openshift-kuryr-cni"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202106232224.p0.git.c7654fb.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"openshift-kuryr-common","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/openshift-kuryr-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202106232224.p0.git.c7654fb.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"openshift-kuryr-controller","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/openshift-kuryr-controller"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202106232224.p0.git.c7654fb.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"polkit","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/polkit"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.115-11.el8_3.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"polkit-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/polkit-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.115-11.el8_3.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"polkit-debugsource","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/polkit-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.115-11.el8_3.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"polkit-libs","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/polkit-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.115-11.el8_3.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"polkit-libs-debuginfo","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/polkit-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.115-11.el8_3.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}},{"package":{"name":"python3-kuryr-kubernetes","ecosystem":"Red Hat:openshift:4.7::el8","purl":"pkg:rpm/redhat/python3-kuryr-kubernetes"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.7.0-202106232224.p0.git.c7654fb.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:2555.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}