Red Hat Updates
1780Warning Date
Severity Level
Warning Number
Target Sector
26 January, 2021
● Medium
2021-2374
All
Description:
Red Hat has released security updates to address multiple vulnerabilities in the following products:
- dnsmasq security
- Red Hat Enterprise Linux Server - AUS 7.2 x86_64
- Red Hat Enterprise Linux Server - AUS 7.3 x86_64
- Red Hat JBoss Enterprise Application Platform 7.3.5
- JBoss Enterprise Application Platform 7.3 for RHEL 6 x86_64
- JBoss Enterprise Application Platform 7.3 for RHEL 7 x86_64
- JBoss Enterprise Application Platform 7.3 for RHEL 8 x86_64
- JBoss Enterprise Application Platform Text-Only Advisories x86_64
- OpenShift Container Platform 4.6.13
- Red Hat OpenShift Container Platform 4.6 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 4.6 for RHEL 7 x86_64
- Red Hat OpenShift Container Platform for Power 4.6 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.6 for RHEL 8 s390x
- Red Hat OpenShift Container Platform 4.6 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform for Power 4.6 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.6 for RHEL 8 s390x
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Execute arbitrary code
- Memory corruption
- Sensitive information disclosure
Best practice and Recommendations:
The CERT team encourages users to review Red Hat security advisory and apply the necessary updates:
- https://access.redhat.com/errata/RHSA-2021:0240
- https://access.redhat.com/errata/RHSA-2021:0245
- https://access.redhat.com/errata/RHSA-2021:0246
- https://access.redhat.com/errata/RHSA-2021:0247
- https://access.redhat.com/errata/RHSA-2021:0248
- https://access.redhat.com/errata/RHSA-2021:0250
- https://access.redhat.com/errata/RHSA-2021:0172
- https://access.redhat.com/errata/RHSA-2021:0171