{"id":"RHSA-2023:0017","summary":"Red Hat Security Advisory: OpenShift Container Platform 4.8.56 packages and security update","modified":"2026-03-21T10:04:27Z","published":"2024-09-20T15:16:08Z","upstream":["CVE-2022-2048","CVE-2022-29047","CVE-2022-30945","CVE-2022-30946","CVE-2022-30948","CVE-2022-30952","CVE-2022-30953","CVE-2022-30954","CVE-2022-34174","CVE-2022-34176","CVE-2022-34177","CVE-2022-36881","CVE-2022-36882","CVE-2022-36883","CVE-2022-36884","CVE-2022-36885"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2023:0017"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2074855"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2103548"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2103551"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2114755"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2116840"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2116952"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2119642"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2119643"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2119644"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2119645"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2119646"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2119647"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2119653"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2119656"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2119657"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2119658"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_0017.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-2048"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-2048"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-2048"},{"type":"ARTICLE","url":"https://github.com/eclipse/jetty.project/security/advisories/GHSA-wgmr-mf83-7x4j"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-29047"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-29047"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-29047"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-1951"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-30945"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-30945"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-30945"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-359"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-30946"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-30946"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-30946"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-30948"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-30948"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-30948"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2478"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-30952"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-30952"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-30952"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-30953"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-30953"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-30953"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-30954"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-30954"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-30954"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-34174"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-34174"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-34174"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2566"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-34176"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-34176"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-34176"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2760"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-34177"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-34177"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-34177"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2705"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-36881"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-36881"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-36881"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-cm7j-p8hc-97vj"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1468"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-36882"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-36882"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-36882"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-36883"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-36883"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-36883"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-36884"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-36884"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-36884"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-36885"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-36885"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-36885"},{"type":"ARTICLE","url":"https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849"}],"affected":[{"package":{"name":"jenkins","ecosystem":"Red Hat:openshift:4.8::el8","purl":"pkg:rpm/redhat/jenkins"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.361.1.1672840472-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:0017.json"}},{"package":{"name":"jenkins-2-plugins","ecosystem":"Red Hat:openshift:4.8::el8","purl":"pkg:rpm/redhat/jenkins-2-plugins"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.8.1672842762-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:0017.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}