Red Hat Updates
1704Warning Date
Severity Level
Warning Number
Target Sector
1 December, 2020
● High
2020-2123
All
Description:
Red Hat has released security updates to address several vulnerabilities in the following products:
- thunderbird
- Red Hat Enterprise Linux Desktop
- Red Hat Enterprise Linux for Power, little endian
- Red Hat Enterprise Linux for x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- Red Hat Enterprise Linux Server
- Red Hat Enterprise Linux Server - TUS
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions
- Red Hat Enterprise Linux Workstation
- Firefox
- Red Hat Enterprise Linux Desktop
- Red Hat Enterprise Linux for IBM z Systems
- Red Hat Enterprise Linux for Power, big endian
- Red Hat Enterprise Linux for Power, little endian
- Red Hat Enterprise Linux for x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- Red Hat Enterprise Linux Server
- Red Hat Enterprise Linux Server - TUS
- Red Hat Enterprise Linux Workstation
- rh-mariadb103-mariadb and rh-mariadb103-galera
- Red Hat Software Collections (for RHEL Workstation)
- Red Hat Software Collections (for RHEL Server)
- Red Hat Ansible Tower 3.7.4-1 - RHEL7 Container
- OpenShift Container Platform 4.6.6
- Red Hat Single Sign-On 7.4.3 one-off
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Denial of service attack (DoS)
- Unauthorized disclosure of information
- Unauthorized modification
- Cross-site scripting (XSS)
Best practice and Recommendations:
The CERT team encourages users to review Red Hat security advisory and apply the necessary updates:
- https://access.redhat.com/errata/RHSA-2020:5231
- https://access.redhat.com/errata/RHSA-2020:5232
- https://access.redhat.com/errata/RHSA-2020:5233
- https://access.redhat.com/errata/RHSA-2020:5234
- https://access.redhat.com/errata/RHSA-2020:5235
- https://access.redhat.com/errata/RHSA-2020:5236
- https://access.redhat.com/errata/RHSA-2020:5237
- https://access.redhat.com/errata/RHSA-2020:5238
- https://access.redhat.com/errata/RHSA-2020:5239
- https://access.redhat.com/errata/RHSA-2020:5240
- https://access.redhat.com/errata/RHSA-2020:5246
- https://access.redhat.com/errata/RHSA-2020:5249
- https://access.redhat.com/errata/RHSA-2020:5159
- https://access.redhat.com/errata/RHSA-2020:5254
- https://access.redhat.com/errata/RHSA-2020:5257