Red Hat Update
4083Warning Date
Severity Level
Warning Number
Target Sector
22 August, 2019
● Medium
2019-363
All
Description:
Red Hat has released security updates to address vulnerabilities in the following products:
- Red Hat 3scale API Management Platform 2.6 x86_64
- Red Hat Ceph Storage 3 x86_64
- Red Hat Ceph Storage MON 3 x86_64, MON for Power 3 ppc64le
- Red Hat Ceph Storage OSD 3 x86_64, OSD for Power 3 ppc64le
- Red Hat Ceph Storage for Power 3 ppc64le
- Red Hat Ansible Engine 2.8 for RHEL 8 x86_64, RHEL 8 s390x, RHEL 8 ppc64le, RHEL 8 aarch64, RHEL 7 x86_64, RHEL 7 s390x, RHEL 7 ppc64le
- Red Hat Ansible Engine 2 for RHEL 8 x86_64, RHEL 8 s390x, RHEL 8 ppc64le, RHEL 8 aarch64, RHEL 7 x86_64, RHEL 7 s390x, RHEL 7 ppc64le
- Red Hat Ansible Engine 2.7 x86_64, 2.7 ppc64le
- Red Hat Ansible Engine 2.6 x86_64, 2.6 ppc64le
- Red Hat OpenShift Container Platform 3.10 x86_64, for Power 3.10 ppc64le
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Escalation of privilege.
- Unauthorized disclosure of information.
- Denial of service attack (DoS).
Best practice and Recommendations:
The CERT team encourages users to review Red Hat security advisory and apply the necessary updates: