The official site for Saudi CERT
Red Hat Updates
2612
Warning Date
Severity Level
Warning Number
Target Sector
14 October, 2020
● Medium
2020-1911
All
Description:
Red Hat has released security updates to address several vulnerabilities in the following products:
- OpenShift Container Platform 4.4.27 openshift-jenkins-2-container
- Red Hat OpenShift Container Platform 4.4 for RHEL 7 x86_64
- Red Hat OpenShift Container Platform for Power 4.4 for RHEL 7 ppc64le
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.4 for RHEL 7 s390x
- chromium-browser
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux Desktop 6 x86_64
- Red Hat Enterprise Linux Desktop 6 i386
- Red Hat Enterprise Linux for Scientific Computing 6 x86_64
- kernel security
- Red Hat Enterprise Linux Server - TUS 7.7 x86_64
- Red Hat JBoss Enterprise Application Platform 7.3.3
- JBoss Enterprise Application Platform 7.3 for RHEL 6 x86_64
- JBoss Enterprise Application Platform Text-Only Advisories x86_64
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Authentication bypass
- Man in the middle attack
- Cross-site scripting (XSS)
Best practice and Recommendations:
The CERT team encourages users to review Red Hat security advisory and apply the necessary updates:
- https://access.redhat.com/errata/RHSA-2020:4220
- https://access.redhat.com/errata/RHSA-2020:4235
- https://access.redhat.com/errata/RHSA-2020:4236
- https://access.redhat.com/errata/RHSA-2020:4244
- https://access.redhat.com/errata/RHSA-2020:4245
- https://access.redhat.com/errata/RHSA-2020:4246
- https://access.redhat.com/errata/RHSA-2020:4247
Rate the content
Share the page
