{"id":22136,"date":"2022-03-25T20:19:29","date_gmt":"2022-03-25T16:19:29","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/166460\/RHSA-2022-1056-01.txt"},"modified":"2022-04-03T10:58:10","modified_gmt":"2022-04-03T06:28:10","slug":"red-hat-security-advisory-2022-1056-01","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/red-hat-security-advisory-2022-1056-01\/","title":{"rendered":"Red Hat Security Advisory 2022-1056-01"},"content":{"rendered":"

—–BEGIN PGP SIGNED MESSAGE—–
\nHash: SHA256<\/p>\n

====================================================================
\nRed Hat Security Advisory<\/p>\n

Synopsis: Moderate: Release of OpenShift Serverless Client kn 1.21.0
\nAdvisory ID: RHSA-2022:1056-01
\nProduct: Red Hat OpenShift Serverless
\nAdvisory URL: https:\/\/access.redhat.com\/errata\/RHSA-2022:1056
\nIssue date: 2022-03-24
\nCVE Names: CVE-2021-44716 CVE-2021-44717
\n====================================================================
\n1. Summary:<\/p>\n

Release of OpenShift Serverless Client kn 1.21.0<\/p>\n

Red Hat Product Security has rated this update as having a security impact
\nof
\nModerate. A Common Vulnerability Scoring System (CVSS) base score, which
\ngives a
\ndetailed severity rating, is available for each vulnerability from the CVE
\nlink(s) in the References section.<\/p>\n

2. Relevant releases\/architectures:<\/p>\n

Openshift Serverless 1 on RHEL 8Base – ppc64le, s390x, x86_64<\/p>\n

3. Description:<\/p>\n

Red Hat OpenShift Serverless Client kn 1.21.0 provides a CLI to interact
\nwith Red Hat OpenShift Serverless 1.21.0. The kn CLI is delivered as an RPM
\npackage for installation on RHEL platforms, and as binaries for non-Linux
\nplatforms.<\/p>\n

Security Fix(es):<\/p>\n

* golang: syscall: don’t close fd 0 on ForkExec error (CVE-2021-44717)<\/p>\n

* golang: net\/http: limit growth of header canonicalization cache
\n(CVE-2021-44716)<\/p>\n

For more details about the security issue(s), including the impact, a CVSS
\nscore, acknowledgments, and other related information, refer to the CVE
\npage(s)
\nlisted in the References section.<\/p>\n

4. Solution:<\/p>\n

See the Red Hat OpenShift Container Platform 4.6 documentation at:
\nhttps:\/\/access.redhat.com\/documentation\/en-us\/openshift_container_platform\/4.6\/html\/serverless\/index
\nSee the Red Hat OpenShift Container Platform 4.7 documentation at:
\nhttps:\/\/access.redhat.com\/documentation\/en-us\/openshift_container_platform\/4.7\/html\/serverless\/index
\nSee the Red Hat OpenShift Container Platform 4.8 documentation at:
\nhttps:\/\/access.redhat.com\/documentation\/en-us\/openshift_container_platform\/4.8\/html\/serverless\/index
\nSee the Red Hat OpenShift Container Platform 4.9 documentation at:
\nhttps:\/\/access.redhat.com\/documentation\/en-us\/openshift_container_platform\/4.9\/html\/serverless\/index
\nSee the Red Hat OpenShift Container Platform 4.10 documentation at:
\nhttps:\/\/access.redhat.com\/documentation\/en-us\/openshift_container_platform\/4.10\/html\/serverless\/index<\/p>\n

5. Bugs fixed (https:\/\/bugzilla.redhat.com\/):<\/p>\n

2030801 – CVE-2021-44716 golang: net\/http: limit growth of header canonicalization cache
\n2030806 – CVE-2021-44717 golang: syscall: don’t close fd 0 on ForkExec error
\n2054716 – Release of Openshift Serverless Client 1.21.0<\/p>\n

6. Package List:<\/p>\n

Openshift Serverless 1 on RHEL 8Base:<\/p>\n

Source:
\nopenshift-serverless-clients-1.0.0-2.el8.src.rpm<\/p>\n

ppc64le:
\nopenshift-serverless-clients-1.0.0-2.el8.ppc64le.rpm<\/p>\n

s390x:
\nopenshift-serverless-clients-1.0.0-2.el8.s390x.rpm<\/p>\n

x86_64:
\nopenshift-serverless-clients-1.0.0-2.el8.x86_64.rpm<\/p>\n

These packages are GPG signed by Red Hat for security. Our key and
\ndetails on how to verify the signature are available from
\nhttps:\/\/access.redhat.com\/security\/team\/key\/<\/p>\n

7. References:<\/p>\n

https:\/\/access.redhat.com\/security\/cve\/CVE-2021-44716
\nhttps:\/\/access.redhat.com\/security\/cve\/CVE-2021-44717
\nhttps:\/\/access.redhat.com\/security\/updates\/classification\/#moderate
\nhttps:\/\/access.redhat.com\/documentation\/en-us\/openshift_container_platform\/4.6\/html\/serverless\/index
\nhttps:\/\/access.redhat.com\/documentation\/en-us\/openshift_container_platform\/4.7\/html\/serverless\/index
\nhttps:\/\/access.redhat.com\/documentation\/en-us\/openshift_container_platform\/4.8\/html\/serverless\/index
\nhttps:\/\/access.redhat.com\/documentation\/en-us\/openshift_container_platform\/4.9\/html\/serverless\/index
\nhttps:\/\/access.redhat.com\/documentation\/en-us\/openshift_container_platform\/4.10\/html\/serverless\/index<\/p>\n

8. Contact:<\/p>\n

The Red Hat security contact is <secalert@redhat.com>. More contact
\ndetails at https:\/\/access.redhat.com\/security\/team\/contact\/<\/p>\n

Copyright 2022 Red Hat, Inc.
\n—–BEGIN PGP SIGNATURE—–
\nVersion: GnuPG v1<\/p>\n

iQIVAwUBYjziy9zjgjWX9erEAQiXOg\/+JBwhDnuT94yLPdg3aoFpTU90KrQZwlEG
\noLob\/u8hWTAd+TuGV7od\/ExZg8G7PyhqNamjGBRx+1xdW6Ou+zCoEIefqNqconJJ
\n6+V\/RLZFFi4GV1JRZJi+IHUzUc7+I2trGnM+MTIAJiAz4CGAzcAtyoMlI\/GZTEr\/
\n\/q9sw4s1jjSSbpQ0UNGDaO\/tiRz66hmYJrrXEFpxxzgZWMMPoaUdXdtbNGnFxWBs
\n9g2hiXk6ThuoFQKT6RiqaNwkBIEbZNBQeZuJY6iRvCMczu8S6+vXI7NvJIjuUmkF
\nM8cqxTdVmgH6ai2LsA9PZRRNgN2Xee2p0VJx7f1hyhT5cYooNF5xc5tu+bIbnzXg
\nxxX1c7d8jCUjAwWAyj0hd+Z6vorLR4OJME9F90Yk0vecNpQrhooEp\/PB9RLVKtsA
\n\/goPGG2au0WzbqYPl\/1wpZuXRDdvki7NeuG36nUVwY3VOBZAYtmFDymTK\/1XIJMs
\n18Ju\/peeZBwnKwxnAqC5+wU+Vf8nVE9NiMWAJtQrU4lSmHQb1gh7NbKxCOlkG046
\new5Nyl\/1g7NjxHbMReASs2u4oli7H8VAnzzpstDdbtU+Twsp+nZXW4yHfd5E8gP4
\nsaygg+q\/sFzNc8IinaXJTPW0mG0NSauPFmBHb9iNFF\/gL0hEVAe\/LDh9ikvyltf9
\nDAh6MvQ7G5Q=gg0B
\n—–END PGP SIGNATURE—–
\n—
\nRHSA-announce mailing list
\nRHSA-announce@redhat.com
\nhttps:\/\/listman.redhat.com\/mailman\/listinfo\/rhsa-announce<\/p>\n","protected":false},"excerpt":{"rendered":"

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Release of OpenShift Serverless Client kn 1.21.0 Advisory ID: RHSA-2022:1056-01 Product: Red Hat OpenShift Serverless Advisory URL: https:\/\/access.redhat.com\/errata\/RHSA-2022:1056 Issue date: 2022-03-24 CVE Names: CVE-2021-44716 CVE-2021-44717 ==================================================================== 1. Summary: Release of OpenShift Serverless Client kn 1.21.0 Red Hat Product Security has rated this …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-22136","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/22136","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=22136"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/22136\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=22136"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=22136"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=22136"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}