Red Hat Alert
1948Warning Date
Severity Level
Warning Number
Target Sector
6 January, 2022
● High
2022-4167
All
Red Hat has released security updates to address serveral vulnerabilities in the following products:
- rh-sso-7/sso75 container images
- Red Hat OpenShift Container Platform
- OpenShift Container Platform 4.8.25
- Red Hat OpenShift Container Platform
- Red Hat OpenShift Container Platform for Power
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE
- rh-sso-7/sso75 container images for IBM P/Z
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE
- Red Hat OpenShift Container Platform for Power
An attacker could exploit these vulnerabilities by doing the following:
- Unauthorized disclosure of information
- Denial of service attack (DoS)
- Incorrect authorization allows unprivileged users to create other users
The CERT team encourages users to review Red Hat security advisory and apply the necessary updates: