RHEL 7 : atomic-openshift (RHSA-2016:2064)
Medium Nessus Plugin ID 119382
SynopsisThe remote Red Hat host is missing one or more security updates.
DescriptionAn update for atomic-openshift is now available for Red Hat OpenShift
Container Platform 3.1, 3.2, and 3.3.
Red Hat Product Security has rated this update as having a security
impact of Important. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.
Red Hat OpenShift Container Platform is the company's cloud computing
Platform-as-a-Service (PaaS) solution designed for on-premise or
private cloud deployments.
Security Fix(es) :
* It was found that Kubernetes did not correctly validate X.509 client
intermediate certificate host name fields. An attacker could use this
flaw to bypass authentication requirements by using a specially
crafted X.509 certificate. (CVE-2016-7075)
This advisory contains the RPM packages for this release. See the
following advisory for the container images for this release :
All OpenShift Container Platform 3 users are advised to upgrade to
these updated images.
SolutionUpdate the affected packages.