Your review has been sent successfully

Red Hat Updates

2791
Classification
These posts contain security alerts, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Most Viewed Warnings

Dell EMC Alert

● Critical

F5 Alert

● High

IBM Alert

● Critical

Fortinet Alert

● High

Red Hat Alert

● High

حملات تصيدية تستهدف مايكروسوفت تيمز (Microsoft Teams)

● High

Warning Date

Severity Level

Warning Number

Target Sector

21 October, 2020

● High

2020-1956

All

Description:

Red Hat has released security updates to address multiple vulnerabilities in the following products:

  • OpenShift Container Platform 4.3.40
    • Red Hat OpenShift Container Platform 4.3 for RHEL 8 x86_64
    • Red Hat OpenShift Container Platform 4.3 for RHEL 7 x86_64
    • Red Hat OpenShift Container Platform for Power 4.3 for RHEL 8 ppc64le
    • Red Hat OpenShift Container Platform for Power 4.3 for RHEL 7 ppc64le
    • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.3 for RHEL 8 s390x
    • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.3 for RHEL 7 s390x
  • rh-python38
    • Red Hat Software Collections (for RHEL Server) 1 for RHEL 7.7 x86_64
    • Red Hat Software Collections (for RHEL Server for System Z) 1 for RHEL 7.7 s390x
    • Red Hat Software Collections (for RHEL Server for IBM Power LE) 1 for RHEL 7.7 ppc64le
    • Red Hat Software Collections (for RHEL Server) 1 for RHEL 7.6 x86_64
    • Red Hat Software Collections (for RHEL Server for System Z) 1 for RHEL 7.6 s390x
    • Red Hat Software Collections (for RHEL Server for IBM Power LE) 1 for RHEL 7.6 ppc64le
    • Red Hat Software Collections (for RHEL Server) 1 for RHEL 7 x86_64
    • Red Hat Software Collections (for RHEL Server for System Z) 1 for RHEL 7 s390x
    • Red Hat Software Collections (for RHEL Server for IBM Power LE) 1 for RHEL 7 ppc64le
    • Red Hat Software Collections (for RHEL Server for ARM) 1 aarch64
    • Red Hat Software Collections (for RHEL Workstation) 1 for RHEL 7 x86_64
  • python27
    • Red Hat Software Collections (for RHEL Server) 1 for RHEL 7.7 x86_64
    • Red Hat Software Collections (for RHEL Server for System Z) 1 for RHEL 7.7 s390x
    • Red Hat Software Collections (for RHEL Server for IBM Power LE) 1 for RHEL 7.7 ppc64le
    • Red Hat Software Collections (for RHEL Server) 1 for RHEL 7.6 x86_64
    • Red Hat Software Collections (for RHEL Server for System Z) 1 for RHEL 7.6 s390x
    • Red Hat Software Collections (for RHEL Server for IBM Power LE) 1 for RHEL 7.6 ppc64le
    • Red Hat Software Collections (for RHEL Server) 1 for RHEL 7 x86_64
    • Red Hat Software Collections (for RHEL Server for System Z) 1 for RHEL 7 s390x
    • Red Hat Software Collections (for RHEL Server for IBM Power LE) 1 for RHEL 7 ppc64le
    • Red Hat Software Collections (for RHEL Workstation) 1 for RHEL 7 x86_64
  • OpenShift Container Platform 4.3.40 jenkins-2-plugins
    • Red Hat OpenShift Container Platform 4.3 for RHEL 8 x86_64
    • Red Hat OpenShift Container Platform 4.3 for RHEL 7 x86_64
    • Red Hat OpenShift Container Platform for Power 4.3 for RHEL 8 ppc64le
    • Red Hat OpenShift Container Platform for Power 4.3 for RHEL 7 ppc64le
    • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.3 for RHEL 8 s390x
    • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.3 for RHEL 7 s390x
  • virt:8.2 and virt-devel:8.2
    • Red Hat Enterprise Linux Advanced Virtualization 8 x86_64
    • Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM Power LE) 8 ppc64le
    • Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for ARM 64) 8 aarch64
    • Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM System Z) 8 s390x
  • virt:8.1 and virt-devel:8.1
    • Red Hat Enterprise Linux Advanced Virtualization 8 x86_64
    • Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM Power LE) 8 ppc64le
    • Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for ARM 64) 8 aarch64
    • Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM System Z) 8 s390x
  • kernel-rt security
    • Red Hat Enterprise Linux for Real Time 8 x86_64
    • Red Hat Enterprise Linux for Real Time for NFV 8 x86_64
    • Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.2 x86_64
    • Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.2 x86_64
  • kernel
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.0 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.0 x86_64
    • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.1 x86_64
    • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.1 s390x
    • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.1 ppc64le
    • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.1 aarch64
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.1 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.1 x86_64
    • Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.1 x86_64
    • Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.1 ppc64le
    • Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.1 aarch64
    • Red Hat Enterprise Linux for x86_64 8 x86_64
    • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.2 x86_64
    • Red Hat Enterprise Linux Server - AUS 8.2 x86_64
    • Red Hat Enterprise Linux for IBM z Systems 8 s390x
    • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.2 s390x
    • Red Hat Enterprise Linux for Power, little endian 8 ppc64le
    • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.2 ppc64le
    • Red Hat Enterprise Linux Server - TUS 8.2 x86_64
    • Red Hat Enterprise Linux for ARM 64 8 aarch64
    • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.2 aarch64
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.2 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.2 x86_64
    • Red Hat CodeReady Linux Builder for x86_64 8 x86_64
    • Red Hat CodeReady Linux Builder for Power, little endian 8 ppc64le
    • Red Hat CodeReady Linux Builder for ARM 64 8 aarch64
    • Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.2 x86_64
    • Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.2 ppc64le
    • Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.2 aarch64

Threats:

An attacker could exploit these vulnerabilities by doing the following:

  • Denial of service (DoS)
  • Memory corruption
  • Information leak
  • Privilege escalation
  • Arbitrary Code Execution

Best practice and Recommendations:

The CERT team encourages users to review Red Hat security advisory and apply the necessary updates:

Last updated at 21 October, 2020

Rate the content

rate-icon
up icon